Ai-Activator[.]7z

Sharing

Copy URL Twitter E-mail

General

Target

Ai-Activator.7z
Size

24.8MB
MD5

2e950b5afc911c2b76db88fabf460737
SHA1

06bbb9ae92b322f89aa04852e027c95884e6d20d
SHA256

230255247db24f1d139d3e7fa4806dfbab308270b77f917a1eed44ad413e79a9
SHA512

cfcf0a73ff4ad4ab8c53f11b77d6fe13090a8ea5022e20796217535b0ee4cf5dbe43606a17eed5ab2745730b2274129773bcc32e63274eecf4a568f51d14e320
SSDEEP

786432:eyo867NTtIAIchEvw8gxbPVXTAaGksbfE:ef8oxIwCLCTV7erE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Installer.exe

Files

Ai-Activator.7z
.7z

Password: 2024
Installer.exe
.exe windows:4 windows x86 arch:x86

Password: 2024

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

c j
Size: 334KB - Virtual size: 334KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
KeyFile/1033/sharedmanagementobjects_keyfile.dll
.dll windows:6 windows x86 arch:x86

Password: 2024

7ccb9c5f3f9fc1eda5b1015ecdb98e95

Code Sign

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/11/2011, 22:39

Not After

01/02/2013, 22:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:05:19:96:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2011, 20:42

Not After

25/10/2012, 20:42

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:9E78-864B-039D,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:49:55:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

10/10/2011, 20:45

Not After

10/01/2013, 20:55

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9
Signer

Actual PE Digest

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9

Digest Algorithm

sha256

PE Digest Matches

true

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45
Signer

Actual PE Digest

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

KeyFile.pdb

Imports

msvcr100

_crt_debugger_hook
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
free
_malloc_crt

kernel32

EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
InterlockedExchange
DecodePointer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KeyFile/1033/sqlsysclrtypes_keyfile.dll
.dll windows:6 windows x86 arch:x86

Password: 2024

7ccb9c5f3f9fc1eda5b1015ecdb98e95

Code Sign

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/11/2011, 22:39

Not After

01/02/2013, 22:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:05:19:96:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2011, 20:42

Not After

25/10/2012, 20:42

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:9E78-864B-039D,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:49:55:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

10/10/2011, 20:45

Not After

10/01/2013, 20:55

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9
Signer

Actual PE Digest

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9

Digest Algorithm

sha256

PE Digest Matches

true

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45
Signer

Actual PE Digest

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

KeyFile.pdb

Imports

msvcr100

_crt_debugger_hook
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
free
_malloc_crt

kernel32

EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
InterlockedExchange
DecodePointer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KeyFile/1049/sharedmanagementobjects_keyfile.dll
.dll windows:6 windows x86 arch:x86

Password: 2024

7ccb9c5f3f9fc1eda5b1015ecdb98e95

Code Sign

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/11/2011, 22:39

Not After

01/02/2013, 22:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:05:19:96:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2011, 20:42

Not After

25/10/2012, 20:42

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:9E78-864B-039D,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:49:55:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

10/10/2011, 20:45

Not After

10/01/2013, 20:55

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9
Signer

Actual PE Digest

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9

Digest Algorithm

sha256

PE Digest Matches

true

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45
Signer

Actual PE Digest

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

KeyFile.pdb

Imports

msvcr100

_crt_debugger_hook
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
free
_malloc_crt

kernel32

EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
InterlockedExchange
DecodePointer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KeyFile/1049/sqlsysclrtypes_keyfile.dll
.dll windows:6 windows x86 arch:x86

Password: 2024

7ccb9c5f3f9fc1eda5b1015ecdb98e95

Code Sign

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/11/2011, 22:39

Not After

01/02/2013, 22:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:05:19:96:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2011, 20:42

Not After

25/10/2012, 20:42

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:9E78-864B-039D,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:49:55:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

10/10/2011, 20:45

Not After

10/01/2013, 20:55

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9
Signer

Actual PE Digest

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9

Digest Algorithm

sha256

PE Digest Matches

true

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45
Signer

Actual PE Digest

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

KeyFile.pdb

Imports

msvcr100

_crt_debugger_hook
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
free
_malloc_crt

kernel32

EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
InterlockedExchange
DecodePointer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/SqlUserInstance.rll
.dll windows:6 windows x86 arch:x86

Password: 2024

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9b:16:03:9c:04:ee:13:e5:75:08:18:40:6d:70:85:86:7e:2f:53:25:5a:95:ad:7b:48:e8:bc:10:88:f1:07:e0
Signer

Actual PE Digest

9b:16:03:9c:04:ee:13:e5:75:08:18:40:6d:70:85:86:7e:2f:53:25:5a:95:ad:7b:48:e8:bc:10:88:f1:07:e0

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\dbs\sh\s19c\0719_152503\cmd\k\obj\x86retail\sql\ntdbms\userinstance\res\sqluserinstance.vcxproj\SqlUserInstance.pdb

Sections

.rdata
Size: 4KB - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/de-DE/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Password: 2024

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

97:cf:19:ff:6c:0b:7d:25:00:6c:f7:f9:9a:1c:af:24:74:4c:8c:d4:ce:4b:51:cc:ce:9f:1e:f3:f5:b7:25:4f
Signer

Actual PE Digest

97:cf:19:ff:6c:0b:7d:25:00:6c:f7:f9:9a:1c:af:24:74:4c:8c:d4:ce:4b:51:cc:ce:9f:1e:f3:f5:b7:25:4f

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/en-US/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Password: 2024

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

b5:d5:23:c5:ae:fe:92:9f:7e:80:90:b8:53:98:50:b5:e0:9a:6c:f4:50:b1:2a:e9:c0:1e:93:b1:41:c8:38:22
Signer

Actual PE Digest

b5:d5:23:c5:ae:fe:92:9f:7e:80:90:b8:53:98:50:b5:e0:9a:6c:f4:50:b1:2a:e9:c0:1e:93:b1:41:c8:38:22

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/es-ES/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8d:d2:f5:8b:03:1f:94:8e:50:25:56:fa:4e:8b:a4:eb:53:8c:0a:74:0f:75:3b:88:78:9b:49:ac:2d:b0:71:aa
Signer

Actual PE Digest

8d:d2:f5:8b:03:1f:94:8e:50:25:56:fa:4e:8b:a4:eb:53:8c:0a:74:0f:75:3b:88:78:9b:49:ac:2d:b0:71:aa

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/fr-FR/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7b:66:58:e8:f2:f8:ea:7e:ee:34:3c:84:02:29:f4:7b:04:2f:02:6e:17:0b:ec:55:ff:f8:92:98:7c:b6:dd:83
Signer

Actual PE Digest

7b:66:58:e8:f2:f8:ea:7e:ee:34:3c:84:02:29:f4:7b:04:2f:02:6e:17:0b:ec:55:ff:f8:92:98:7c:b6:dd:83

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/it-IT/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a0:12:2c:dd:ff:4d:7a:26:2b:72:66:f1:0d:e4:e5:ab:83:2d:2c:b9:48:58:49:ec:c7:6a:21:bf:fe:12:a2:5f
Signer

Actual PE Digest

a0:12:2c:dd:ff:4d:7a:26:2b:72:66:f1:0d:e4:e5:ab:83:2d:2c:b9:48:58:49:ec:c7:6a:21:bf:fe:12:a2:5f

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/ja-JP/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f6:a1:94:13:82:63:d5:d1:ee:5e:e0:8b:da:69:43:14:cf:bd:6d:c7:bf:57:fa:74:ff:f1:45:d0:bf:e9:a7:db
Signer

Actual PE Digest

f6:a1:94:13:82:63:d5:d1:ee:5e:e0:8b:da:69:43:14:cf:bd:6d:c7:bf:57:fa:74:ff:f1:45:d0:bf:e9:a7:db

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/ko-KR/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

6d:46:c6:30:7b:da:06:55:eb:10:30:95:ea:15:ee:07:2d:54:d9:2e:fd:f3:d1:c4:e3:92:d0:1d:81:22:2b:fb
Signer

Actual PE Digest

6d:46:c6:30:7b:da:06:55:eb:10:30:95:ea:15:ee:07:2d:54:d9:2e:fd:f3:d1:c4:e3:92:d0:1d:81:22:2b:fb

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/pt-BR/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ae:49:aa:00:77:f3:c2:07:15:19:38:db:b7:a3:3f:62:12:1c:5e:f9:c8:a3:a4:4e:31:b4:b0:a1:44:19:d8:9c
Signer

Actual PE Digest

ae:49:aa:00:77:f3:c2:07:15:19:38:db:b7:a3:3f:62:12:1c:5e:f9:c8:a3:a4:4e:31:b4:b0:a1:44:19:d8:9c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/ru-RU/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

78:59:70:85:72:bc:1e:34:0f:d0:d0:77:49:df:f9:b3:2d:47:cf:fa:f3:6a:3d:e3:db:5a:99:01:a7:4d:25:c7
Signer

Actual PE Digest

78:59:70:85:72:bc:1e:34:0f:d0:d0:77:49:df:f9:b3:2d:47:cf:fa:f3:6a:3d:e3:db:5a:99:01:a7:4d:25:c7

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/zh-CN/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:6d:71:e4:55:1e:26:15:25:de:03:8f:28:33:2a:d4:f4:c9:59:cb:e3:f4:18:4d:e5:33:f0:a6:61:78:9b:b1
Signer

Actual PE Digest

39:6d:71:e4:55:1e:26:15:25:de:03:8f:28:33:2a:d4:f4:c9:59:cb:e3:f4:18:4d:e5:33:f0:a6:61:78:9b:b1

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/Resources/zh-TW/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f2:b2:cc:93:41:50:a0:8b:48:66:49:f9:7f:de:aa:41:d2:31:f9:1b:ab:a7:ed:05:c3:38:75:26:10:9d:1c:26
Signer

Actual PE Digest

f2:b2:cc:93:41:50:a0:8b:48:66:49:f9:7f:de:aa:41:d2:31:f9:1b:ab:a7:ed:05:c3:38:75:26:10:9d:1c:26

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/SqlUserInstance.dll
.dll windows:6 windows x86 arch:x86

b0547bab9ed2aabbbfc847c2d4a998fe

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

64:97:7a:44:d3:6b:8b:ea:fd:1b:65:08:75:fd:a3:08:a1:92:ba:c6:44:13:97:91:88:95:a6:c4:b1:f8:42:1a
Signer

Actual PE Digest

64:97:7a:44:d3:6b:8b:ea:fd:1b:65:08:75:fd:a3:08:a1:92:ba:c6:44:13:97:91:88:95:a6:c4:b1:f8:42:1a

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\dbs\sh\s19c\0719_152503\cmd\19\obj\x86retail\sql\ntdbms\userinstance\dll\sqluserinstance.vcxproj\SqlUserInstance.pdb

Imports

vcruntime140

__std_type_info_destroy_list
memset
_purecall
wcsrchr
_except_handler4_common
__std_exception_copy
__CxxFrameHandler3
__std_exception_destroy
_CxxThrowException
wcschr
memcpy

api-ms-win-crt-string-l1-1-0

wcsncmp
_wcsnicmp
_wcsnicmp_l
towlower
_wcsicmp
_wcsicmp_l

api-ms-win-crt-convert-l1-1-0

_ultow_s

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vswscanf
__stdio_common_vswprintf
__stdio_common_vswprintf_s
__stdio_common_vsprintf

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

api-ms-win-crt-runtime-l1-1-0

_initterm
_initterm_e
_configure_narrow_argv
terminate
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment

shlwapi

SHDeleteKeyW

odbc32

ord24
ord31
ord241
ord75
ord111
ord136

bcrypt

BCryptGenRandom

kernel32

SetLastError
HeapFree
ExpandEnvironmentStringsW
GetEnvironmentVariableW
GetPrivateProfileStringW
CreateDirectoryW
EnterCriticalSection
HeapAlloc
GetModuleHandleExW
TerminateProcess
GetFinalPathNameByHandleW
GetModuleFileNameW
CreateNamedPipeW
WaitForMultipleObjects
CompareStringOrdinal
LeaveCriticalSection
InitializeCriticalSection
CreateMutexW
WaitForSingleObject
LocalAlloc
CreateFileW
GetFileAttributesW
FreeLibraryAndExitThread
ReleaseMutex
DisconnectNamedPipe
OpenProcess
CreateEventW
GetExitCodeThread
FormatMessageW
GetLastError
DeleteFileW
CloseHandle
CompareStringEx
LoadLibraryW
CreateThread
LocalFree
FreeLibrary
CopyFileW
IsWow64Process
GetProcessTimes
LoadLibraryExW
GetProcAddress
Sleep
CreateToolhelp32Snapshot
GetModuleHandleW
Module32NextW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetProcessHeap
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
InitializeSListHead
IsDebuggerPresent
DebugBreak
VirtualQuery
CompareStringW
GetCurrentProcess
IsProcessorFeaturePresent

user32

CharLowerBuffW
CharUpperBuffW

advapi32

ReportEventW
RegisterEventSourceW
DeregisterEventSource
SetSecurityDescriptorDacl
GetSecurityDescriptorDacl
RegGetKeySecurity
RegCloseKey
RegDeleteKeyExW
SetSecurityDescriptorOwner
SetTokenInformation
RegQueryValueExW
AddAccessAllowedAce
GetLengthSid
ConvertSidToStringSidW
CreateProcessAsUserW
GetTokenInformation
RegGetValueW
RegOpenKeyExW
InitializeAcl
InitializeSecurityDescriptor
RegCopyTreeW
CreateRestrictedToken
OpenProcessToken
RegSetValueExW
RegDeleteTreeW
RegSetKeySecurity
SetEntriesInAclW
CreateWellKnownSid
RegCreateKeyExW
ConvertStringSidToSidW
RegEnumKeyExW

shell32

SHGetKnownFolderPath

ole32

CoTaskMemFree
CoInitializeEx
CoCreateGuid
CoCreateInstance
StringFromGUID2

oleaut32

VariantInit
SysFreeString
SysStringLen
SysStringByteLen
VariantClear
SysAllocString
VariantChangeType

Exports

Exports

LOCALDB_PRODUCT_NAME
LocalDBCreateInstance
LocalDBDeleteInstance
LocalDBFormatMessage
LocalDBGetInstanceInfo
LocalDBGetInstances
LocalDBGetVersionInfo
LocalDBGetVersions
LocalDBShareInstance
LocalDBStartInstance
LocalDBStartTracing
LocalDBStopInstance
LocalDBStopTracing
LocalDBUnshareInstance

Sections

.text
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
License Terms/150/LocalDB/Binn/localdbxeventconfig.xml
License Terms/150/Shared/xe.dll
.dll windows:6 windows x86 arch:x86

a717c506893e6eb4a4cd9bdf05e01b92

Code Sign

33:00:00:01:df:6b:f0:2e:92:a7:4a:b4:d0:00:00:00:00:01:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7f:94:fb:b5:1d:d4:a1:73:82:01:c3:fe:01:54:f7:d5:a7:48:e8:22:9b:b5:cb:f9:70:b5:6a:a0:29:90:09:97
Signer

Actual PE Digest

7f:94:fb:b5:1d:d4:a1:73:82:01:c3:fe:01:54:f7:d5:a7:48:e8:22:9b:b5:cb:f9:70:b5:6a:a0:29:90:09:97

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\dbs\sh\s19c\0719_152503\cmd\y\obj\x86retail\sql\common\xecommon\dll\xe.vcxproj\xe.pdb

Imports

vcruntime140

__CxxFrameHandler3
_purecall
wcschr
_CxxThrowException
memcpy
memmove
_except_handler4_common
memset
__std_type_info_destroy_list

api-ms-win-crt-runtime-l1-1-0

_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
abort
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_initterm_e
_errno
_invalid_parameter_noinfo
_initterm
_cexit
terminate
_wassert

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
__stdio_common_vswprintf

kernel32

lstrcmpW
CreateThread
LoadLibraryW
Module32NextW
CreateToolhelp32Snapshot
SetNamedPipeHandleState
ReadFile
TransactNamedPipe
FlushFileBuffers
DisconnectNamedPipe
GetCurrentThreadId
GetCurrentProcessId
DebugBreak
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
CreateNamedPipeW
IsDebuggerPresent
GetModuleHandleW
InitializeCriticalSection
QueryPerformanceFrequency
HeapFree
GetProcessHeap
HeapAlloc
TlsFree
TlsAlloc
GetUserDefaultLCID
VerifyVersionInfoW
VerSetConditionMask
GetSystemInfo
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
ReleaseMutex
WaitForSingleObject
CreateMutexW
UnmapViewOfFile
MapViewOfFileEx
OpenThread
TlsGetValue
GetProcessTimes
ConnectNamedPipe
WaitForMultipleObjects
CancelIo
InitializeSListHead
GetVolumePathNameW
WaitForSingleObjectEx
VirtualQuery
CreateIoCompletionPort
CreateFileMappingW
CreateSemaphoreW
HeapDestroy
HeapCompact
HeapReAlloc
GetExitCodeThread
HeapSize
OpenFileMappingW
GetQueuedCompletionStatus
ReleaseSemaphore
HeapCreate
SystemTimeToTzSpecificLocalTime
SetFileValidData
LocalFree
FormatMessageW
lstrcmpiW
SystemTimeToFileTime
GetDiskFreeSpaceW
SetEndOfFile
GetModuleFileNameW
GetProcAddress
FreeLibrary
LoadLibraryExW
RtlCaptureStackBackTrace
GetLastError
FileTimeToSystemTime
GetNumaHighestNodeNumber
GetProcessAffinityMask
GetTimeZoneInformation
CreateDirectoryW
GetTickCount
VirtualFree
VirtualAlloc
GetSystemTime
DeleteFileW
FindFirstFileW
CreateFileW
FindNextFileW
DeleteCriticalSection
GetDiskFreeSpaceExW
WriteFile
GetOverlappedResult
FindClose
CloseHandle
Sleep
GetTempPathW
SetLastError
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
PostQueuedCompletionStatus
CreateEventW
SetFilePointerEx

user32

MessageBoxW

rpcrt4

UuidCreate

shlwapi

PathCanonicalizeW
PathIsRelativeW
PathFindFileNameW
PathRemoveBackslashW
PathIsURLW
PathRemoveExtensionW
PathRemoveFileSpecW
PathFindExtensionW
PathCombineW
UrlCombineW

api-ms-win-crt-string-l1-1-0

_strnicmp_l
_iswprint_l
isxdigit
isalnum
_wcsnicmp_l
iswalnum
iswspace
_towlower_l
isdigit
_wcsicmp
_wcsicmp_l
_wcsnicmp
strncmp
wcsncmp

api-ms-win-crt-filesystem-l1-1-0

_wfullpath

api-ms-win-crt-convert-l1-1-0

wcstoll

api-ms-win-crt-locale-l1-1-0

__pctype_func

advapi32

TraceEvent
GetTraceLoggerHandle
GetTraceEnableFlags
GetTraceEnableLevel
EnableTrace
RegisterTraceGuidsW
QueryAllTracesW
UnregisterTraceGuids
StartTraceW
ControlTraceW

ole32

CoCreateGuid
CoCreateInstance

oleaut32

VariantClear
SysFreeString
SysStringLen
SysAllocString
VariantInit
VariantChangeType

api-ms-win-crt-math-l1-1-0

_except1

Exports

Exports

SetAssertHandler
XEGetEngine

Sections

.text
Size: 456KB - Virtual size: 453KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
License Terms/150/backupkey.dll
.dll windows:5 windows x86 arch:x86

b4a7bee3cffac50c8a971d661e465c11

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

18:da:d1:9e:26:7d:e8:bb:4a:21:58:cd:cc:6b:3b:4a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

16/07/2036, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1a:08:e4:25:dd:db:b3:4e:1e:26:d6:e7:85:6e:9f:b8
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

27/09/2013, 00:00

Not After

26/12/2016, 23:59

Subject

CN=Bandisoft,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Bandisoft,L=Yeongdeungpogu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\w\devel\CAP2\bandicap\bin\bdcap32.pdb

Imports

dsound

ord7
ord6

kernel32

InterlockedDecrement
InterlockedIncrement
CreateSemaphoreA
ReleaseSemaphore
lstrlenA
CreateFileA
SetFilePointer
ReadFile
GetSystemTimeAsFileTime
SetLastError
GetVolumeInformationA
GetCurrentProcess
GetSystemDirectoryA
GetFileSize
LocalFree
DeleteFileA
CreateProcessA
GetCurrentProcessId
TerminateProcess
GetSystemInfo
GetVersionExA
GetTickCount
CreateFileW
WriteFile
VirtualAlloc
VirtualFree
CreateMutexA
OpenFileMappingA
MapViewOfFile
UnmapViewOfFile
ReleaseMutex
SwitchToThread
LoadLibraryW
SetErrorMode
OutputDebugStringW
lstrcmpA
GetModuleFileNameW
VerSetConditionMask
VerifyVersionInfoW
GetFullPathNameW
ExpandEnvironmentStringsW
lstrcmpW
GetSystemDirectoryW
CreateProcessW
LoadLibraryExW
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetConsoleMode
GetConsoleCP
GetStartupInfoA
GetFileType
SetHandleCount
LCMapStringW
LCMapStringA
ExitProcess
HeapCreate
GetStdHandle
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
GetThreadPriority
VirtualProtect
GetModuleHandleW
WaitForMultipleObjectsEx
ResetEvent
QueryPerformanceCounter
QueryPerformanceFrequency
GetModuleHandleA
GetLastError
WaitForSingleObjectEx
CreateThread
GetProcAddress
LoadLibraryA
MulDiv
SetEvent
CreateEventA
SetThreadPriority
InterlockedExchange
WaitForSingleObject
CloseHandle
FreeLibrary
FindResourceExA
FindResourceA
LoadResource
LockResource
SizeofResource
MultiByteToWideChar
Sleep
GetDiskFreeSpaceExA
WideCharToMultiByte
lstrlenW
GetSystemTime
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
GetModuleFileNameA
GetCPInfo
GetCommandLineA
RtlUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentThreadId
ExitThread
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
LocalAlloc
WaitForMultipleObjects
GetFileAttributesExA
FlushFileBuffers
RaiseException
VirtualQuery

user32

ClientToScreen
GetWindowRect
EqualRect
GetDC
ReleaseDC
WindowFromDC
IntersectRect
OpenInputDesktop
SetThreadDesktop
EnumDisplayDevicesA
MsgWaitForMultipleObjects
GetCursorInfo
GetIconInfo
FillRect
DrawIconEx
CloseDesktop
PeekMessageA
TranslateMessage
DispatchMessageA
GetSystemMetrics
GetForegroundWindow
ScreenToClient
PtInRect
GetAsyncKeyState
SetRect
GetClientRect
CopyRect
OffsetRect
RegisterWindowMessageA

gdi32

GetDIBits
StretchBlt
SetStretchBltMode
CreateCompatibleBitmap
DeleteDC
SelectObject
CreateSolidBrush
CreateDIBSection
CreateCompatibleDC
CreateDCA
GetObjectA
DeleteObject

advapi32

RegCloseKey
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

SHGetFolderPathW

ole32

CoInitialize
CoCreateInstance
CoTaskMemFree
PropVariantClear
PropVariantCopy
CoTaskMemAlloc
CoUninitialize

winmm

waveInMessage
mixerOpen
mixerGetDevCapsA
mixerGetLineInfoA
waveInUnprepareHeader
mixerGetLineControlsA
mixerClose
mixerSetControlDetails
mixerGetControlDetailsA
timeBeginPeriod
waveInGetErrorTextA
waveInGetNumDevs
waveInGetDevCapsA
waveInOpen
waveInPrepareHeader
waveInStart
mmioOpenW
mmioAscend
mmioSeek
waveInReset
waveInStop
waveInAddBuffer
waveInClose
mmioClose
mmioCreateChunk
mmioWrite
mixerGetID

msvfw32

ICOpen
ICGetInfo
ICClose
ICCompress
ICSendMessage

Exports

Exports

CreateBandiCapture

Sections

.text
Size: 7.4MB - Virtual size: 7.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

IPPCODE
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 752KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 394KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IPPDATA
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
License Terms/150/genkey.dll
.dll windows:5 windows x86 arch:x86

797c6bfcf34edb0c460e753dd6ef5abc

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

49:61:ec:fc:88:b7:58:eb:c2:d6:cb:cf:d8:90:0f:b2
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/04/2015, 00:00

Not After

22/04/2017, 23:59

Subject

CN=Awesomium Technologies LLC,OU=Awesomium Technologies LLC,O=Awesomium Technologies LLC,POSTALCODE=77095,STREET=15822 Jamie Lee Dr.,L=Houston,ST=TX,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

51:e3:bf:9f:dc:c8:3f:0a:64:8d:94:40:be:9b:62:fb:7d:62:98:e2
Signer

Actual PE Digest

51:e3:bf:9f:dc:c8:3f:0a:64:8d:94:40:be:9b:62:fb:7d:62:98:e2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\developer\awesomium-1-7\chromium\src\build\Release\awesomium.pdb

Imports

comctl32

InitCommonControlsEx

kernel32

InterlockedCompareExchange
InterlockedExchangeAdd
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
GetCommandLineA
IsProcessorFeaturePresent
WriteFile
GetStdHandle
GetModuleFileNameW
GetLocaleInfoW
GetLastError
InterlockedIncrement
InterlockedDecrement
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
GetCurrentThread
GetProcAddress
ExitProcess
CompareStringW
SetEnvironmentVariableW
SetFileAttributesA
FindFirstFileExA
ExitThread
InterlockedPopEntrySList
GetProcessHeap
InterlockedPushEntrySList
lstrcmpiA
GetDriveTypeW
RaiseException
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
Sleep
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
SetFilePointer
CloseHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LoadLibraryW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
FreeLibrary
InterlockedExchange
MultiByteToWideChar
RtlUnwind
WriteConsoleW
SetStdHandle
LCMapStringW
GetStringTypeW
CreateFileW
GetUserDefaultLCID
FindFirstFileExW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
LocalAlloc
LocalFree
LoadLibraryA
lstrlenW
lstrcmpiW
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
CreateEventW
FlushInstructionCache
GetProcessId
DuplicateHandle
GetExitCodeProcess
SetThreadExecutionState
DeviceIoControl
DefineDosDeviceW
QueryDosDeviceW
GetSystemDirectoryW
GetLongPathNameW
ResumeThread
VirtualAllocEx
SetErrorMode
GetUserDefaultLangID
GetModuleHandleA
InitializeCriticalSection
GetHandleInformation
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
HeapReAlloc
HeapAlloc
HeapFree
HeapCreate
HeapSize
HeapSetInformation
VirtualFree
GetEnvironmentVariableA
VirtualAlloc
GetSystemInfo
GetVersionExW
Module32First
CreateToolhelp32Snapshot
Module32Next
CreateFileA
SetEndOfFile
VirtualQuery
FindClose
VirtualProtect
SwitchToThread
TryEnterCriticalSection
CreateMutexW
CreateProcessW
WaitForSingleObject
FormatMessageA
OutputDebugStringA
ReleaseMutex
DeleteFileW
GetCommandLineW
SetThreadPriority
CreateThread
GetTempFileNameW
GetFileSize
FindFirstFileW
MapViewOfFile
UnmapViewOfFile
MoveFileExW
GetLogicalDriveStringsW
CreateDirectoryW
CopyFileW
GetFileAttributesW
ReplaceFileW
FileTimeToSystemTime
GetTempPathW
GetCurrentDirectoryW
CreateFileMappingW
SetCurrentDirectoryW
RemoveDirectoryW
FindNextFileW
GetFileAttributesExW
FileTimeToLocalFileTime
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
TzSpecificLocalTimeToSystemTime
QueryPerformanceFrequency
SetInformationJobObject
SetPriorityClass
SetHandleInformation
GetProcessTimes
OpenProcess
AssignProcessToJobObject
GetNativeSystemInfo
SetEvent
ResetEvent
WaitForMultipleObjects
ExpandEnvironmentStringsW
GlobalMemoryStatusEx
GetDiskFreeSpaceExW
SetFilePointerEx
SetFileTime
GetFileInformationByHandle
QueueUserWorkItem
PeekNamedPipe
ConnectNamedPipe
CreateNamedPipeW
GetUserDefaultUILanguage
GetWindowsDirectoryW
GetSystemPowerStatus
GetQueuedCompletionStatus
PostQueuedCompletionStatus
CreateIoCompletionPort
RtlCaptureStackBackTrace
RegisterWaitForSingleObject
UnregisterWaitEx
GetDateFormatW
GetTimeFormatW
GetTimeZoneInformation
GetNumberFormatW
GetCurrencyFormatW
GetThreadLocale
GetModuleHandleExW
FormatMessageW
CancelIo
GetFileSizeEx
CreateSemaphoreA
SuspendThread
ReleaseSemaphore
DeleteFileA
GetDriveTypeA
GetFullPathNameA
MoveFileA
CreateDirectoryA
LockFile
UnlockFile
GetSystemTime
CreateFileMappingA
DebugBreak
SetEnvironmentVariableA
GetDiskFreeSpaceA
GetVolumeInformationA
GetComputerNameA
GetLogicalDrives
GlobalMemoryStatus
AreFileApisANSI
LockFileEx
UnlockFileEx
GetFileAttributesA
GetTempPathA
GetFullPathNameW
GetDiskFreeSpaceW
GetThreadContext
IsBadWritePtr
GetSystemDirectoryA
GetTempFileNameA
OpenThread
GetThreadTimes
CreateSemaphoreW
TerminateJobObject
WriteProcessMemory
VirtualProtectEx
SignalObjectAndWait
GetProcessHandleCount
VirtualFreeEx
CreateJobObjectW
OpenEventW
SearchPathW
ReadProcessMemory
GlobalAddAtomW
GlobalDeleteAtom

ole32

CoTaskMemAlloc
CoInitialize
PropVariantClear
StringFromGUID2
CoTaskMemRealloc
CoInitializeEx
CoUninitialize
OleUninitialize
OleInitialize
CoCreateGuid
CoCreateInstance
CoTaskMemFree

oleaut32

SysAllocString
LoadTypeLi
VariantClear
VariantInit
VarUI4FromStr
LoadRegTypeLi
SysStringLen
SysFreeString

xinput9_1_0

XInputGetCapabilities
XInputGetState

userenv

CreateEnvironmentBlock
DestroyEnvironmentBlock

urlmon

CoInternetCreateSecurityManager

rpcrt4

UuidToStringW
RpcStringFreeW
UuidCreateSequential

winhttp

WinHttpCloseHandle
WinHttpGetIEProxyConfigForCurrentUser
WinHttpOpen
WinHttpSetTimeouts
WinHttpGetProxyForUrl

dhcpcsvc

DhcpRequestParams
DhcpCApiInitialize

setupapi

SetupDiEnumDriverInfoW
SetupDiDestroyDriverInfoList
SetupDiSetDeviceInstallParamsW
SetupDiGetDeviceInstallParamsW
SetupDiGetClassDevsW
SetupDiGetDeviceInterfaceDetailW
SetupDiBuildDriverInfoList
SetupDiEnumDeviceInterfaces

msimg32

AlphaBlend

ws2_32

socket
closesocket
gethostname
getnameinfo
ioctlsocket
freeaddrinfo
WSAGetLastError
htonl
htons
ntohl
ntohs
WSACloseEvent
recv
getsockname
setsockopt
WSAIoctl
WSASocketW
bind
shutdown
connect
WSAEventSelect
WSACreateEvent
WSARecv
WSASend
WSAGetOverlappedResult
WSAEnumNetworkEvents
accept
listen
WSALookupServiceEnd
WSALookupServiceNextW
WSALookupServiceBeginW
getaddrinfo
getpeername
WSARecvFrom
WSASendTo
getsockopt
gethostbyname
gethostbyaddr
__WSAFDIsSet
select
send
sendto
recvfrom
WSASetLastError
getservbyname
getservbyport
inet_addr
inet_ntoa
WSASetEvent
WSAWaitForMultipleEvents
WSAStartup
WSAResetEvent

usp10

ScriptXtoCP
ScriptGetFontProperties
ScriptShape
ScriptFreeCache
ScriptItemize
ScriptJustify
ScriptPlace
ScriptCPtoX

psapi

GetProcessMemoryInfo

winmm

waveOutPrepareHeader
waveOutGetNumDevs
waveInClose
waveInReset
waveOutUnprepareHeader
waveInStart
waveInUnprepareHeader
waveInAddBuffer
waveInMessage
waveInOpen
waveInGetDevCapsW
timeBeginPeriod
timeGetTime
timeEndPeriod
waveInPrepareHeader
waveOutPause
waveOutRestart
waveOutOpen
waveOutReset
waveOutClose
waveInGetNumDevs
waveOutWrite

shlwapi

SHGetValueA
PathFindFileNameW
PathGetCharTypeW

imm32

ImmGetOpenStatus
ImmCreateContext
ImmIsIME
ImmSetCandidateWindow
ImmReleaseContext
ImmGetContext
ImmNotifyIME
ImmAssociateContextEx
ImmGetCompositionStringW
ImmSetOpenStatus

oleacc

CreateStdAccessibleObject
LresultFromObject

secur32

QueryContextAttributesW
EncryptMessage
FreeContextBuffer
FreeCredentialsHandle
QuerySecurityPackageInfoW
InitializeSecurityContextW
AcquireCredentialsHandleW
CompleteAuthToken
AcquireCredentialsHandleA
DeleteSecurityContext
DecryptMessage
InitializeSecurityContextA

crypt32

CertAddSerializedElementToStore
CryptExportPublicKeyInfoEx
CryptSignAndEncodeCertificate
CertFreeCertificateChainEngine
CertFreeCertificateContext
CertFreeCertificateChain
CertOpenStore
CertDuplicateCertificateContext
CertCreateCertificateChainEngine
CryptAcquireCertificatePrivateKey
CertOpenSystemStoreW
CertFindChainInStore
CertGetIntendedKeyUsage
CertVerifyTimeValidity
CertGetCertificateContextProperty
CertSetCertificateContextProperty
CertAddEncodedCertificateToStore
CertGetCertificateChain
CertVerifyCertificateChainPolicy
CertRDNValueToStrA
CryptHashCertificate
CertAddCertificateContextToStore
CertSerializeCertificateStoreElement
CertCloseStore
CertFindExtension
CryptDecodeObjectEx
CryptFindOIDInfo
CertGetPublicKeyLength

iphlpapi

CancelIPChangeNotify
NotifyAddrChange
GetAdaptersAddresses

gdi32

GetDIBits
RemoveFontMemResourceEx
AddFontMemResourceEx
SetWorldTransform
GetGlyphOutlineW
SetTextAlign
EndPath
GetTextFaceW
GetCharABCWidthsW
GetFontUnicodeRanges
GetOutlineTextMetricsW
ExtTextOutW
SetBkMode
GdiFlush
SetTextColor
SetGraphicsMode
GdiAlphaBlend
PathToRegion
SetROP2
DeleteObject
GetStockObject
DeleteDC
CreateRectRgn
BitBlt
GetRegionData
SetICMMode
CreateCompatibleDC
GetDeviceCaps
StretchDIBits
SelectObject
CreateDIBSection
GetTextMetricsW
CreateFontIndirectW
EnumFontFamiliesExW
GetObjectW
GetWorldTransform
GetCurrentObject
GetGlyphIndicesW
ModifyWorldTransform
Rectangle
SetDIBits
GetCharWidthI
EnumFontFamiliesW
SwapBuffers
ChoosePixelFormat
SetPixelFormat
SaveDC
IntersectClipRect
RestoreDC
CreateSolidBrush
StretchBlt
CreateBitmap
SetRectRgn
CombineRgn
SetDIBitsToDevice
CreateCompatibleBitmap
CreateFontW
BeginPath
AbortPath
SetBrushOrgEx
SetDCBrushColor
SetBkColor
SetArcDirection
SelectClipRgn
CreateRectRgnIndirect
PolyBezier
SetDCPenColor
SetPolyFillMode
SetStretchBltMode
GetFontData

advapi32

RegCloseKey
SetEntriesInAclW
RegOpenKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
GetSecurityInfo
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegQueryValueExW
GetTokenInformation
OpenProcessToken
CreateProcessAsUserW
RegNotifyChangeKeyValue
ConvertSidToStringSidW
GetTraceEnableFlags
GetTraceLoggerHandle
TraceEvent
UnregisterTraceGuids
GetTraceEnableLevel
RegisterTraceGuidsW
RegOpenKeyExA
RegQueryValueExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CryptReleaseContext
CryptDestroyKey
CryptGenKey
CryptContextAddRef
CryptAcquireContextW
CryptImportKey
CryptExportKey
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptSetHashParam
CryptCreateHash
CopySid
GetLengthSid
CryptSignHashW
CryptGetKeyParam
CryptGetUserKey
RegDisablePredefinedCache
RevertToSelf
SetTokenInformation
ConvertStringSidToSidW
SetSecurityInfo
GetSecurityDescriptorSacl
ConvertStringSecurityDescriptorToSecurityDescriptorW
SetThreadToken
CreateRestrictedToken
DuplicateTokenEx
DuplicateToken
EqualSid
LookupPrivilegeValueW
CreateWellKnownSid

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

Exports

Exports

??0BitmapSurface@Awesomium@@QAE@ABV01@@Z
??0BitmapSurface@Awesomium@@QAE@HH@Z
??0BitmapSurfaceFactory@Awesomium@@QAE@ABV01@@Z
??0BitmapSurfaceFactory@Awesomium@@QAE@XZ
??0DataPakSource@Awesomium@@QAE@ABV01@@Z
??0DataPakSource@Awesomium@@QAE@ABVWebString@1@@Z
??0DataSource@Awesomium@@IAE@XZ
??0DataSource@Awesomium@@QAE@ABV01@@Z
??0Dialog@WebViewListener@Awesomium@@QAE@ABV012@@Z
??0Dialog@WebViewListener@Awesomium@@QAE@XZ
??0Download@WebViewListener@Awesomium@@QAE@ABV012@@Z
??0Download@WebViewListener@Awesomium@@QAE@XZ
??0InputMethodEditor@WebViewListener@Awesomium@@QAE@ABV012@@Z
??0InputMethodEditor@WebViewListener@Awesomium@@QAE@XZ
??0JSArray@Awesomium@@QAE@ABV01@@Z
??0JSArray@Awesomium@@QAE@I@Z
??0JSArray@Awesomium@@QAE@XZ
??0JSObject@Awesomium@@IAE@II@Z
??0JSObject@Awesomium@@QAE@ABV01@@Z
??0JSObject@Awesomium@@QAE@XZ
??0JSValue@Awesomium@@QAE@ABV01@@Z
??0JSValue@Awesomium@@QAE@ABVJSArray@1@@Z
??0JSValue@Awesomium@@QAE@ABVJSObject@1@@Z
??0JSValue@Awesomium@@QAE@ABVWebString@1@@Z
??0JSValue@Awesomium@@QAE@H@Z
??0JSValue@Awesomium@@QAE@N@Z
??0JSValue@Awesomium@@QAE@XZ
??0JSValue@Awesomium@@QAE@_N@Z
??0Load@WebViewListener@Awesomium@@QAE@ABV012@@Z
??0Load@WebViewListener@Awesomium@@QAE@XZ
??0Menu@WebViewListener@Awesomium@@QAE@ABV012@@Z
??0Menu@WebViewListener@Awesomium@@QAE@XZ
??0Print@WebViewListener@Awesomium@@QAE@ABV012@@Z
??0Print@WebViewListener@Awesomium@@QAE@XZ
??0PrintConfig@Awesomium@@QAE@XZ
??0Process@WebViewListener@Awesomium@@QAE@ABV012@@Z
??0Process@WebViewListener@Awesomium@@QAE@XZ
??0Rect@Awesomium@@QAE@HHHH@Z
??0Rect@Awesomium@@QAE@XZ
??0ResourceInterceptor@Awesomium@@QAE@ABV01@@Z
??0ResourceInterceptor@Awesomium@@QAE@XZ
??0ResourceRequest@Awesomium@@QAE@ABV01@@Z
??0ResourceRequest@Awesomium@@QAE@XZ
??0ResourceResponse@Awesomium@@IAE@ABVWebString@1@@Z
??0ResourceResponse@Awesomium@@IAE@IPAEABVWebString@1@@Z
??0ResourceResponse@Awesomium@@QAE@ABV01@@Z
??0Surface@Awesomium@@QAE@ABV01@@Z
??0Surface@Awesomium@@QAE@XZ
??0SurfaceFactory@Awesomium@@QAE@ABV01@@Z
??0SurfaceFactory@Awesomium@@QAE@XZ
??0UploadElement@Awesomium@@QAE@ABV01@@Z
??0UploadElement@Awesomium@@QAE@XZ
??0View@WebViewListener@Awesomium@@QAE@ABV012@@Z
??0View@WebViewListener@Awesomium@@QAE@XZ
??0WebConfig@Awesomium@@QAE@ABU01@@Z
??0WebConfig@Awesomium@@QAE@XZ
??0WebContextMenuInfo@Awesomium@@QAE@ABU01@@Z
??0WebContextMenuInfo@Awesomium@@QAE@XZ
??0WebCore@Awesomium@@QAE@ABV01@@Z
??0WebCore@Awesomium@@QAE@XZ
??0WebFileChooserInfo@Awesomium@@QAE@ABU01@@Z
??0WebFileChooserInfo@Awesomium@@QAE@XZ
??0WebKeyboardEvent@Awesomium@@QAE@IIJ@Z
??0WebKeyboardEvent@Awesomium@@QAE@XZ
??0WebLoginDialogInfo@Awesomium@@QAE@ABU01@@Z
??0WebLoginDialogInfo@Awesomium@@QAE@XZ
??0WebMenuItem@Awesomium@@QAE@ABU01@@Z
??0WebMenuItem@Awesomium@@QAE@XZ
??0WebMenuItemArray@Awesomium@@QAE@ABV01@@Z
??0WebMenuItemArray@Awesomium@@QAE@I@Z
??0WebMenuItemArray@Awesomium@@QAE@XZ
??0WebPageInfo@Awesomium@@QAE@ABU01@@Z
??0WebPageInfo@Awesomium@@QAE@XZ
??0WebPopupMenuInfo@Awesomium@@QAE@ABU01@@Z
??0WebPopupMenuInfo@Awesomium@@QAE@XZ
??0WebPreferences@Awesomium@@QAE@ABU01@@Z
??0WebPreferences@Awesomium@@QAE@XZ
??0WebSession@Awesomium@@QAE@ABV01@@Z
??0WebSession@Awesomium@@QAE@XZ
??0WebString@Awesomium@@AAE@PBX@Z
??0WebString@Awesomium@@QAE@ABV01@@Z
??0WebString@Awesomium@@QAE@ABV01@II@Z
??0WebString@Awesomium@@QAE@PBG@Z
??0WebString@Awesomium@@QAE@PBGI@Z
??0WebString@Awesomium@@QAE@XZ
??0WebStringArray@Awesomium@@QAE@ABV01@@Z
??0WebStringArray@Awesomium@@QAE@I@Z
??0WebStringArray@Awesomium@@QAE@XZ
??0WebTouchEvent@Awesomium@@QAE@XZ
??0WebTouchPoint@Awesomium@@QAE@XZ
??0WebURL@Awesomium@@AAE@PBX@Z
??0WebURL@Awesomium@@QAE@ABV01@@Z
??0WebURL@Awesomium@@QAE@ABVWebString@1@@Z
??0WebURL@Awesomium@@QAE@XZ
??0WebView@Awesomium@@QAE@ABV01@@Z
??0WebView@Awesomium@@QAE@XZ
??1BitmapSurface@Awesomium@@UAE@XZ
??1BitmapSurfaceFactory@Awesomium@@UAE@XZ
??1DataPakSource@Awesomium@@UAE@XZ
??1DataSource@Awesomium@@UAE@XZ
??1Dialog@WebViewListener@Awesomium@@MAE@XZ
??1Download@WebViewListener@Awesomium@@MAE@XZ
??1InputMethodEditor@WebViewListener@Awesomium@@MAE@XZ
??1JSArray@Awesomium@@QAE@XZ
??1JSObject@Awesomium@@QAE@XZ
??1JSValue@Awesomium@@QAE@XZ
??1Load@WebViewListener@Awesomium@@MAE@XZ
??1Menu@WebViewListener@Awesomium@@MAE@XZ
??1Print@WebViewListener@Awesomium@@MAE@XZ
??1Process@WebViewListener@Awesomium@@MAE@XZ
??1ResourceInterceptor@Awesomium@@UAE@XZ
??1ResourceRequest@Awesomium@@MAE@XZ
??1ResourceResponse@Awesomium@@IAE@XZ
??1Surface@Awesomium@@UAE@XZ
??1SurfaceFactory@Awesomium@@UAE@XZ
??1UploadElement@Awesomium@@MAE@XZ
??1View@WebViewListener@Awesomium@@MAE@XZ
??1WebConfig@Awesomium@@QAE@XZ
??1WebContextMenuInfo@Awesomium@@QAE@XZ
??1WebCore@Awesomium@@MAE@XZ
??1WebFileChooserInfo@Awesomium@@QAE@XZ
??1WebLoginDialogInfo@Awesomium@@QAE@XZ
??1WebMenuItem@Awesomium@@QAE@XZ
??1WebMenuItemArray@Awesomium@@QAE@XZ
??1WebPageInfo@Awesomium@@QAE@XZ
??1WebPopupMenuInfo@Awesomium@@QAE@XZ
??1WebPreferences@Awesomium@@QAE@XZ
??1WebSession@Awesomium@@MAE@XZ
??1WebString@Awesomium@@QAE@XZ
??1WebStringArray@Awesomium@@QAE@XZ
??1WebURL@Awesomium@@QAE@XZ
??1WebView@Awesomium@@MAE@XZ
??4BitmapSurface@Awesomium@@QAEAAV01@ABV01@@Z
??4BitmapSurfaceFactory@Awesomium@@QAEAAV01@ABV01@@Z
??4DataPakSource@Awesomium@@QAEAAV01@ABV01@@Z
??4DataSource@Awesomium@@QAEAAV01@ABV01@@Z
??4Dialog@WebViewListener@Awesomium@@QAEAAV012@ABV012@@Z
??4Download@WebViewListener@Awesomium@@QAEAAV012@ABV012@@Z
??4InputMethodEditor@WebViewListener@Awesomium@@QAEAAV012@ABV012@@Z
??4JSArray@Awesomium@@QAEAAV01@ABV01@@Z
??4JSObject@Awesomium@@QAEAAV01@ABV01@@Z
??4JSValue@Awesomium@@QAEAAV01@ABV01@@Z
??4Load@WebViewListener@Awesomium@@QAEAAV012@ABV012@@Z
??4Menu@WebViewListener@Awesomium@@QAEAAV012@ABV012@@Z
??4Print@WebViewListener@Awesomium@@QAEAAV012@ABV012@@Z
??4PrintConfig@Awesomium@@QAEAAU01@ABU01@@Z
??4Process@WebViewListener@Awesomium@@QAEAAV012@ABV012@@Z
??4Rect@Awesomium@@QAEAAU01@ABU01@@Z
??4ResourceInterceptor@Awesomium@@QAEAAV01@ABV01@@Z
??4ResourceRequest@Awesomium@@QAEAAV01@ABV01@@Z
??4ResourceResponse@Awesomium@@QAEAAV01@ABV01@@Z
??4Surface@Awesomium@@QAEAAV01@ABV01@@Z
??4SurfaceFactory@Awesomium@@QAEAAV01@ABV01@@Z
??4UploadElement@Awesomium@@QAEAAV01@ABV01@@Z
??4View@WebViewListener@Awesomium@@QAEAAV012@ABV012@@Z
??4WebConfig@Awesomium@@QAEAAU01@ABU01@@Z
??4WebContextMenuInfo@Awesomium@@QAEAAU01@ABU01@@Z
??4WebCore@Awesomium@@QAEAAV01@ABV01@@Z
??4WebFileChooserInfo@Awesomium@@QAEAAU01@ABU01@@Z
??4WebKeyboardEvent@Awesomium@@QAEAAV01@ABV01@@Z
??4WebLoginDialogInfo@Awesomium@@QAEAAU01@ABU01@@Z
??4WebMenuItem@Awesomium@@QAEAAU01@ABU01@@Z
??4WebMenuItemArray@Awesomium@@QAEAAV01@ABV01@@Z
??4WebPageInfo@Awesomium@@QAEAAU01@ABU01@@Z
??4WebPopupMenuInfo@Awesomium@@QAEAAU01@ABU01@@Z
??4WebPreferences@Awesomium@@QAEAAU01@ABU01@@Z
??4WebSession@Awesomium@@QAEAAV01@ABV01@@Z
??4WebString@Awesomium@@QAEAAV01@ABV01@@Z
??4WebStringArray@Awesomium@@QAEAAV01@ABV01@@Z
??4WebTouchEvent@Awesomium@@QAEAAU01@ABU01@@Z
??4WebTouchPoint@Awesomium@@QAEAAU01@ABU01@@Z
??4WebURL@Awesomium@@QAEAAV01@ABV01@@Z
??4WebView@Awesomium@@QAEAAV01@ABV01@@Z
??8WebString@Awesomium@@QBE_NABV01@@Z
??8WebURL@Awesomium@@QBE_NABV01@@Z
??9WebString@Awesomium@@QBE_NABV01@@Z
??9WebURL@Awesomium@@QBE_NABV01@@Z
??AJSArray@Awesomium@@QAEAAVJSValue@1@I@Z
??AJSArray@Awesomium@@QBEABVJSValue@1@I@Z
??AWebMenuItemArray@Awesomium@@QAEAAUWebMenuItem@1@I@Z
??AWebMenuItemArray@Awesomium@@QBEABUWebMenuItem@1@I@Z
??AWebStringArray@Awesomium@@QAEAAVWebString@1@I@Z
??AWebStringArray@Awesomium@@QBEABVWebString@1@I@Z
??MWebString@Awesomium@@QBE_NABV01@@Z
??MWebURL@Awesomium@@QBE_NABV01@@Z
??_7BitmapSurface@Awesomium@@6B@
??_7BitmapSurfaceFactory@Awesomium@@6B@
??_7DataPakSource@Awesomium@@6B@
??_7DataSource@Awesomium@@6B@
??_7Dialog@WebViewListener@Awesomium@@6B@
??_7Download@WebViewListener@Awesomium@@6B@
??_7InputMethodEditor@WebViewListener@Awesomium@@6B@
??_7Load@WebViewListener@Awesomium@@6B@
??_7Menu@WebViewListener@Awesomium@@6B@
??_7Print@WebViewListener@Awesomium@@6B@
??_7Process@WebViewListener@Awesomium@@6B@
??_7ResourceInterceptor@Awesomium@@6B@
??_7ResourceRequest@Awesomium@@6B@
??_7Surface@Awesomium@@6B@
??_7SurfaceFactory@Awesomium@@6B@
??_7UploadElement@Awesomium@@6B@
??_7View@WebViewListener@Awesomium@@6B@
??_7WebCore@Awesomium@@6B@
??_7WebSession@Awesomium@@6B@
??_7WebView@Awesomium@@6B@
?Append@WebString@Awesomium@@QAEAAV12@ABV12@@Z
?Assign@WebString@Awesomium@@QAEAAV12@ABV12@@Z
?Assign@WebString@Awesomium@@QAEAAV12@ABV12@II@Z
?Assign@WebString@Awesomium@@QAEAAV12@PBG@Z
?Assign@WebString@Awesomium@@QAEAAV12@PBGI@Z
?At@JSArray@Awesomium@@QAEAAVJSValue@2@I@Z
?At@JSArray@Awesomium@@QBEABVJSValue@2@I@Z
?At@WebMenuItemArray@Awesomium@@QAEAAUWebMenuItem@2@I@Z
?At@WebMenuItemArray@Awesomium@@QBEABUWebMenuItem@2@I@Z
?At@WebStringArray@Awesomium@@QAEAAVWebString@2@I@Z
?At@WebStringArray@Awesomium@@QBEABVWebString@2@I@Z
?ChildProcessMain@Awesomium@@YAHPAUHINSTANCE__@@@Z
?Clear@JSArray@Awesomium@@QAEXXZ
?Clear@WebString@Awesomium@@QAEXXZ
?Compare@WebString@Awesomium@@QBEHABV12@@Z
?CopyBuffers@Awesomium@@YAXHHPAEH0HH_N1@Z
?CopyTo@BitmapSurface@Awesomium@@QBEXPAEHH_N1@Z
?Create@ResourceResponse@Awesomium@@SAPAV12@ABVWebString@2@@Z
?Create@ResourceResponse@Awesomium@@SAPAV12@IPAEABVWebString@2@@Z
?CreateFromUTF8@WebString@Awesomium@@SA?AV12@PBDI@Z
?CreateSurface@BitmapSurfaceFactory@Awesomium@@UAEPAVSurface@2@PAVWebView@2@HH@Z
?DestroySurface@BitmapSurfaceFactory@Awesomium@@UAEXPAVSurface@2@@Z
?Erase@JSArray@Awesomium@@QAEXI@Z
?GetAlphaAtPoint@BitmapSurface@Awesomium@@QBEEHH@Z
?GetBridge@JSObject@Awesomium@@IBEPAVJSObjectBridge@2@I@Z
?GetKeyIdentifierFromVirtualKeyCode@Awesomium@@YAXHPAPAD@Z
?GetMethodNames@JSObject@Awesomium@@QBE?AVJSArray@2@XZ
?GetProperty@JSObject@Awesomium@@QBE?AVJSValue@2@ABVWebString@2@@Z
?GetPropertyNames@JSObject@Awesomium@@QBE?AVJSArray@2@XZ
?HasMethod@JSObject@Awesomium@@QBE_NABVWebString@2@@Z
?HasProperty@JSObject@Awesomium@@QBE_NABVWebString@2@@Z
?Initialize@WebCore@Awesomium@@SAPAV12@ABUWebConfig@2@@Z
?Insert@JSArray@Awesomium@@QAEXABVJSValue@2@I@Z
?Invoke@JSObject@Awesomium@@QAE?AVJSValue@2@ABVWebString@2@ABVJSArray@2@@Z
?InvokeAsync@JSObject@Awesomium@@QAEXABVWebString@2@ABVJSArray@2@@Z
?IsArray@JSValue@Awesomium@@QBE_NXZ
?IsBoolean@JSValue@Awesomium@@QBE_NXZ
?IsChildProcess@Awesomium@@YA_NPAUHINSTANCE__@@@Z
?IsDouble@JSValue@Awesomium@@QBE_NXZ
?IsEmpty@Rect@Awesomium@@QBE_NXZ
?IsEmpty@WebString@Awesomium@@QBE_NXZ
?IsEmpty@WebURL@Awesomium@@QBE_NXZ
?IsInteger@JSValue@Awesomium@@QBE_NXZ
?IsNull@JSValue@Awesomium@@QBE_NXZ
?IsNumber@JSValue@Awesomium@@QBE_NXZ
?IsObject@JSValue@Awesomium@@QBE_NXZ
?IsString@JSValue@Awesomium@@QBE_NXZ
?IsUndefined@JSValue@Awesomium@@QBE_NXZ
?IsValid@WebURL@Awesomium@@QBE_NXZ
?Null@JSValue@Awesomium@@SAABV12@XZ
?OnFilterNavigation@ResourceInterceptor@Awesomium@@UAE_NHHABVWebString@2@ABVWebURL@2@_N@Z
?OnRequest@DataPakSource@Awesomium@@UAEXHABVResourceRequest@2@ABVWebString@2@@Z
?OnRequest@ResourceInterceptor@Awesomium@@UAEPAVResourceResponse@2@PAVResourceRequest@2@@Z
?OnWillDownload@ResourceInterceptor@Awesomium@@UAEXHHABVWebURL@2@@Z
?Paint@BitmapSurface@Awesomium@@UAEXPAEHABURect@2@1@Z
?Pop@JSArray@Awesomium@@QAEXXZ
?Push@JSArray@Awesomium@@QAEXABVJSValue@2@@Z
?Push@WebMenuItemArray@Awesomium@@QAEXABUWebMenuItem@2@@Z
?Push@WebStringArray@Awesomium@@QAEXABVWebString@2@@Z
?RemoveProperty@JSObject@Awesomium@@QAEXABVWebString@2@@Z
?SaveToJPEG@BitmapSurface@Awesomium@@QBE_NABVWebString@2@H@Z
?SaveToPNG@BitmapSurface@Awesomium@@QBE_NABVWebString@2@_N@Z
?Scroll@BitmapSurface@Awesomium@@UAEXHHABURect@2@@Z
?SendResponse@DataSource@Awesomium@@QAEXHIPBEABVWebString@2@@Z
?SetCustomMethod@JSObject@Awesomium@@QAEXABVWebString@2@_N@Z
?SetProperty@JSObject@Awesomium@@QAEXABVWebString@2@ABVJSValue@2@@Z
?SetPropertyAsync@JSObject@Awesomium@@QAEXABVWebString@2@ABVJSValue@2@@Z
?Shutdown@WebCore@Awesomium@@SAXXZ
?Swap@WebString@Awesomium@@QAEXAAV12@@Z
?ToArray@JSValue@Awesomium@@QAEAAVJSArray@2@XZ
?ToArray@JSValue@Awesomium@@QBEABVJSArray@2@XZ
?ToBoolean@JSValue@Awesomium@@QBE_NXZ
?ToDouble@JSValue@Awesomium@@QBENXZ
?ToInteger@JSValue@Awesomium@@QBEHXZ
?ToObject@JSValue@Awesomium@@QAEAAVJSObject@2@XZ
?ToObject@JSValue@Awesomium@@QBEABVJSObject@2@XZ
?ToString@JSObject@Awesomium@@QBE?AVWebString@2@XZ
?ToString@JSValue@Awesomium@@QBE?AVWebString@2@XZ
?ToUTF8@WebString@Awesomium@@QBEIPADI@Z
?TranslateError@JSObject@Awesomium@@IBEXPAVJSObjectBridge@2@_N@Z
?Undefined@JSValue@Awesomium@@SAABV12@XZ
?WriteDataPak@Awesomium@@YA_NABVWebString@1@00AAG@Z
?allocated_memory@WebCore@Awesomium@@SAIXZ
?anchor@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?buffer@BitmapSurface@Awesomium@@QBEPBEXZ
?capacity@JSArray@Awesomium@@QBEIXZ
?data@WebString@Awesomium@@QBEPBGXZ
?filename@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?height@BitmapSurface@Awesomium@@QBEHXZ
?host@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?instance@WebCore@Awesomium@@SAPAV12@XZ
?instance_@WebCore@Awesomium@@0PAV12@A
?is_dirty@BitmapSurface@Awesomium@@QBE_NXZ
?last_error@JSObject@Awesomium@@QBE?AW4Error@2@XZ
?length@WebString@Awesomium@@QBEIXZ
?owner@JSObject@Awesomium@@QBEPAVWebView@2@XZ
?password@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?path@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?port@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?query@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?ref_count@JSObject@Awesomium@@QBEHXZ
?release_memory@WebCore@Awesomium@@SAXXZ
?remote_id@JSObject@Awesomium@@QBEIXZ
?row_span@BitmapSurface@Awesomium@@QBEHXZ
?scheme@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?set_is_dirty@BitmapSurface@Awesomium@@QAEX_N@Z
?set_session@DataSource@Awesomium@@IAEXPAVWebSession@2@H@Z
?size@JSArray@Awesomium@@QBEIXZ
?size@WebMenuItemArray@Awesomium@@QBEIXZ
?size@WebStringArray@Awesomium@@QBEIXZ
?spec@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?type@JSObject@Awesomium@@QBE?AW4JSObjectType@2@XZ
?used_memory@WebCore@Awesomium@@SAIXZ
?username@WebURL@Awesomium@@QBE?AVWebString@2@XZ
?width@BitmapSurface@Awesomium@@QBEHXZ
_Awe_BitmapSurfaceFactory_CreateSurface@16
_Awe_BitmapSurfaceFactory_CreateSurfaceExplicitBitmapSurfaceFactory@16
_Awe_BitmapSurfaceFactory_DestroySurface@8
_Awe_BitmapSurfaceFactory_DestroySurfaceExplicitBitmapSurfaceFactory@8
_Awe_BitmapSurfaceFactory_Upcast@4
_Awe_BitmapSurfaceFactory_director_connect@12
_Awe_BitmapSurface_CopyTo@24
_Awe_BitmapSurface_GetAlphaAtPoint@12
_Awe_BitmapSurface_Paint@44
_Awe_BitmapSurface_PaintExplicitBitmapSurface@44
_Awe_BitmapSurface_SaveToJPEG_0@12
_Awe_BitmapSurface_SaveToJPEG_1@8
_Awe_BitmapSurface_SaveToPNG_0@12
_Awe_BitmapSurface_SaveToPNG_1@8
_Awe_BitmapSurface_Scroll@28
_Awe_BitmapSurface_ScrollExplicitBitmapSurface@28
_Awe_BitmapSurface_Upcast@4
_Awe_BitmapSurface_buffer@4
_Awe_BitmapSurface_director_connect@12
_Awe_BitmapSurface_height@4
_Awe_BitmapSurface_is_dirty@4
_Awe_BitmapSurface_row_span@4
_Awe_BitmapSurface_set_is_dirty@8
_Awe_BitmapSurface_width@4
_Awe_ChildProcessMain@4
_Awe_CopyBuffers@36
_Awe_DataPakSource_OnRequest@16
_Awe_DataPakSource_OnRequestExplicitDataPakSource@16
_Awe_DataPakSource_Upcast@4
_Awe_DataPakSource_director_connect@8
_Awe_DataSource_OnRequest@16
_Awe_DataSource_SendResponse@20
_Awe_DataSource_director_connect@8
_Awe_Dialog_OnShowCertificateErrorDialog@20
_Awe_Dialog_OnShowFileChooser@12
_Awe_Dialog_OnShowLoginDialog@12
_Awe_Dialog_OnShowPageInfoDialog@12
_Awe_Dialog_director_connect@20
_Awe_Download_OnFinishDownload@20
_Awe_Download_OnRequestDownload@24
_Awe_Download_OnUpdateDownload@36
_Awe_Download_director_connect@16
_Awe_GetKeyIdentifierFromVirtualKeyCode@8
_Awe_InputMethodEditor_OnCancelIME@8
_Awe_InputMethodEditor_OnChangeIMERange@16
_Awe_InputMethodEditor_OnUpdateIME@20
_Awe_InputMethodEditor_director_connect@16
_Awe_IsChildProcess@4
_Awe_JSArray_At_0@8
_Awe_JSArray_Clear@4
_Awe_JSArray_Erase@8
_Awe_JSArray_Insert@12
_Awe_JSArray_Pop@4
_Awe_JSArray_Push@8
_Awe_JSArray_capacity@4
_Awe_JSArray_size@4
_Awe_JSMethodHandler_OnMethodCall@20
_Awe_JSMethodHandler_OnMethodCallWithReturnValue@20
_Awe_JSMethodHandler_director_connect@12
_Awe_JSObject_GetMethodNames@4
_Awe_JSObject_GetProperty@8
_Awe_JSObject_GetPropertyNames@4
_Awe_JSObject_HasMethod@8
_Awe_JSObject_HasProperty@8
_Awe_JSObject_Invoke@12
_Awe_JSObject_InvokeAsync@12
_Awe_JSObject_RemoveProperty@8
_Awe_JSObject_SetCustomMethod@12
_Awe_JSObject_SetProperty@12
_Awe_JSObject_SetPropertyAsync@12
_Awe_JSObject_ToString@4
_Awe_JSObject_last_error@4
_Awe_JSObject_owner@4
_Awe_JSObject_ref_count@4
_Awe_JSObject_remote_id@4
_Awe_JSObject_type@4
_Awe_JSValue_IsArray@4
_Awe_JSValue_IsBoolean@4
_Awe_JSValue_IsDouble@4
_Awe_JSValue_IsInteger@4
_Awe_JSValue_IsNull@4
_Awe_JSValue_IsNumber@4
_Awe_JSValue_IsObject@4
_Awe_JSValue_IsString@4
_Awe_JSValue_IsUndefined@4
_Awe_JSValue_Null@0
_Awe_JSValue_ToArray_0@4
_Awe_JSValue_ToBoolean@4
_Awe_JSValue_ToDouble@4
_Awe_JSValue_ToInteger@4
_Awe_JSValue_ToObject_0@4
_Awe_JSValue_ToString@4
_Awe_JSValue_Undefined@0
_Awe_Load_OnBeginLoadingFrame@28
_Awe_Load_OnDocumentReady@12
_Awe_Load_OnFailLoadingFrame@32
_Awe_Load_OnFinishLoadingFrame@24
_Awe_Load_director_connect@20
_Awe_Menu_OnShowContextMenu@12
_Awe_Menu_OnShowPopupMenu@12
_Awe_Menu_director_connect@12
_Awe_Print_OnFailPrint@12
_Awe_Print_OnFinishPrint@16
_Awe_Print_OnRequestPrint@8
_Awe_Print_director_connect@16
_Awe_Process_OnCrashed@12
_Awe_Process_OnLaunch@8
_Awe_Process_OnResponsive@8
_Awe_Process_OnUnresponsive@8
_Awe_Process_director_connect@20
_Awe_RegisterStringCallback@4
_Awe_ResourceInterceptor_OnFilterNavigation@24
_Awe_ResourceInterceptor_OnFilterNavigationExplicitResourceInterceptor@24
_Awe_ResourceInterceptor_OnRequest@8
_Awe_ResourceInterceptor_OnRequestExplicitResourceInterceptor@8
_Awe_ResourceInterceptor_OnWillDownload@16
_Awe_ResourceInterceptor_OnWillDownloadExplicitResourceInterceptor@16
_Awe_ResourceInterceptor_director_connect@16
_Awe_ResourceRequest_AppendExtraHeader@12
_Awe_ResourceRequest_AppendUploadBytes@12
_Awe_ResourceRequest_AppendUploadFilePath@8
_Awe_ResourceRequest_Cancel@4
_Awe_ResourceRequest_ClearUploadElements@4
_Awe_ResourceRequest_GetUploadElement@8
_Awe_ResourceRequest_extra_headers@4
_Awe_ResourceRequest_method@4
_Awe_ResourceRequest_num_upload_elements@4
_Awe_ResourceRequest_origin_process_id@4
_Awe_ResourceRequest_origin_routing_id@4
_Awe_ResourceRequest_referrer@4
_Awe_ResourceRequest_set_extra_headers@8
_Awe_ResourceRequest_set_ignore_data_source_handler@8
_Awe_ResourceRequest_set_method@8
_Awe_ResourceRequest_set_referrer@8
_Awe_ResourceRequest_url@4
_Awe_ResourceResponse_Create_0@12
_Awe_ResourceResponse_Create_1@4
_Awe_SurfaceFactory_CreateSurface@16
_Awe_SurfaceFactory_DestroySurface@8
_Awe_SurfaceFactory_director_connect@12
_Awe_Surface_Paint@44
_Awe_Surface_Scroll@28
_Awe_Surface_director_connect@12
_Awe_UploadElement_IsBytes@4
_Awe_UploadElement_IsFilePath@4
_Awe_UploadElement_bytes@4
_Awe_UploadElement_file_path@4
_Awe_UploadElement_num_bytes@4
_Awe_View_OnAddConsoleMessage@20
_Awe_View_OnChangeAddressBar@12
_Awe_View_OnChangeCursor@12
_Awe_View_OnChangeFocus@12
_Awe_View_OnChangeTargetURL@12
_Awe_View_OnChangeTitle@12
_Awe_View_OnChangeTooltip@12
_Awe_View_OnShowCreatedWebView@40
_Awe_View_director_connect@36
_Awe_WebConfig_additional_options_get@4
_Awe_WebConfig_additional_options_set@8
_Awe_WebConfig_asset_protocol_get@4
_Awe_WebConfig_asset_protocol_set@8
_Awe_WebConfig_child_process_path_get@4
_Awe_WebConfig_child_process_path_set@8
_Awe_WebConfig_log_level_get@4
_Awe_WebConfig_log_level_set@8
_Awe_WebConfig_log_path_get@4
_Awe_WebConfig_log_path_set@8
_Awe_WebConfig_package_path_get@4
_Awe_WebConfig_package_path_set@8
_Awe_WebConfig_plugin_path_get@4
_Awe_WebConfig_plugin_path_set@8
_Awe_WebConfig_reduce_memory_usage_on_navigation_get@4
_Awe_WebConfig_reduce_memory_usage_on_navigation_set@8
_Awe_WebConfig_remote_debugging_host_get@4
_Awe_WebConfig_remote_debugging_host_set@8
_Awe_WebConfig_remote_debugging_port_get@4
_Awe_WebConfig_remote_debugging_port_set@8
_Awe_WebConfig_user_agent_get@4
_Awe_WebConfig_user_agent_set@8
_Awe_WebConfig_user_script_get@4

Sections

.text
Size: 15.8MB - Virtual size: 15.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 168KB - Virtual size: 433KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.unwante
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 821KB - Virtual size: 821KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
License Terms/License_SQLNCLI_ENU.txt
License Terms/SqlUserInstance.dll
.dll windows:6 windows x86 arch:x86

f2b222e5b77bb5e02c203c041a4e8c66

Code Sign

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/11/2011, 22:39

Not After

01/02/2013, 22:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:05:13:36:00:00:00:00:00:1a
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2011, 20:42

Not After

25/10/2012, 20:42

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:159C-A3F7-2570,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:49:55:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

10/10/2011, 20:45

Not After

10/01/2013, 20:55

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9a:0b:c2:36:d6:5f:e4:98:4c:e1:d9:34:1e:ac:93:34:85:80:73:24:7b:ab:cd:e1:78:6b:1e:63:fb:e1:e5:c1
Signer

Actual PE Digest

9a:0b:c2:36:d6:5f:e4:98:4c:e1:d9:34:1e:ac:93:34:85:80:73:24:7b:ab:cd:e1:78:6b:1e:63:fb:e1:e5:c1

Digest Algorithm

sha256

PE Digest Matches

true

b4:c2:d6:ad:f1:7d:f0:e2:01:67:a9:54:16:61:48:9a:cd:d1:c0:e1
Signer

Actual PE Digest

b4:c2:d6:ad:f1:7d:f0:e2:01:67:a9:54:16:61:48:9a:cd:d1:c0:e1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

SqlUserInstance.pdb

Imports

kernel32

GetPrivateProfileStringW
ExpandEnvironmentStringsW
DebugBreak
GetProcessHeap
HeapFree
HeapAlloc
VirtualQuery
GetModuleHandleW
GetProcAddress
CompareStringW
SetLastError
CreateThread
LocalFree
DeleteFileW
CloseHandle
ReleaseMutex
GetFinalPathNameByHandleW
WaitForMultipleObjects
CreateEventW
GetExitCodeThread
IsWow64Process
LocalAlloc
EnterCriticalSection
GetLongPathNameW
GetLastError
FreeLibraryAndExitThread
DisconnectNamedPipe
CreateFileW
GetModuleFileNameW
TerminateProcess
GetFileAttributesW
LeaveCriticalSection
FormatMessageW
CopyFileW
CompareStringOrdinal
LoadLibraryW
OpenProcess
GetProcessTimes
InitializeCriticalSection
CompareStringEx
CreateNamedPipeW
WaitForSingleObject
CreateMutexW
CreateDirectoryW
GetModuleHandleExW
GetCurrentProcess
LoadLibraryExW
FreeLibrary
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InterlockedCompareExchange
InterlockedExchange
DecodePointer
EncodePointer
Module32NextW
CreateToolhelp32Snapshot
Sleep

advapi32

RegQueryValueExW
RegOpenKeyW
CreateWellKnownSid
GetSecurityDescriptorDacl
RegSetValueExW
RegCloseKey
ConvertSidToStringSidW
RegEnumKeyExW
GetLengthSid
ReportEventW
RegOpenKeyExW
RegSetKeySecurity
SetEntriesInAclW
AddAccessAllowedAce
SetSecurityDescriptorOwner
RegGetValueW
RegDeleteTreeW
InitializeAcl
CryptGenRandom
RegGetKeySecurity
SetSecurityDescriptorDacl
ConvertStringSidToSidW
SetTokenInformation
InitializeSecurityDescriptor
DeregisterEventSource
CreateProcessAsUserW
CryptReleaseContext
RegCreateKeyExW
CreateRestrictedToken
GetTokenInformation
RegDeleteKeyExW
CryptAcquireContextW
OpenProcessToken
RegCopyTreeW
RegisterEventSourceW

user32

CharUpperBuffW
CharLowerBuffW

shlwapi

SHDeleteKeyW

odbc32

ord75
ord24
ord31
ord241
ord111
ord136

ole32

CoCreateInstance
StringFromGUID2
CoCreateGuid
CoTaskMemFree
CoInitializeEx

shell32

SHGetKnownFolderPath

msvcr100

__dllonexit
?_type_info_dtor_internal_method@type_info@@QAEXXZ
towlower
free
malloc
_ultow
wcsrchr
_vsnwprintf
_vsnprintf
??3@YAXPAX@Z
??2@YAPAXI@Z
memset
wcslen
_purecall
_wcsicmp_l
_wcsicmp
swprintf_s
wcschr
_swscanf_s_l
memcpy
_wcsnicmp
swscanf_s
wcsncmp
_vsnwprintf_l
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_unlock
__CxxFrameHandler3
_lock
_onexit
?terminate@@YAXXZ
_crt_debugger_hook
__clean_type_info_names_internal
_except_handler4_common
_CxxThrowException

oleaut32

SysFreeString
SysStringLen
SysStringByteLen
VariantChangeType
VariantInit
SysAllocString
VariantClear

Exports

Exports

LOCALDB_PRODUCT_NAME
LocalDBCreateInstance
LocalDBDeleteInstance
LocalDBFormatMessage
LocalDBGetInstanceInfo
LocalDBGetInstances
LocalDBGetVersionInfo
LocalDBGetVersions
LocalDBShareInstance
LocalDBStartInstance
LocalDBStartTracing
LocalDBStopInstance
LocalDBStopTracing
LocalDBUnshareInstance

Sections

.text
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LocalDB/Binn/Resources/SqlUserInstance.rll
.dll windows:6 windows x86 arch:x86

Code Sign

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/11/2011, 22:39

Not After

01/02/2013, 22:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:05:13:36:00:00:00:00:00:1a
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2011, 20:42

Not After

25/10/2012, 20:42

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:159C-A3F7-2570,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:49:55:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

10/10/2011, 20:45

Not After

10/01/2013, 20:55

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9b:16:9b:4e:69:80:e0:40:32:15:13:97:6d:d3:5c:85:10:29:ec:c1:8e:32:c0:a3:a2:62:82:56:a5:25:5a:10
Signer

Actual PE Digest

9b:16:9b:4e:69:80:e0:40:32:15:13:97:6d:d3:5c:85:10:29:ec:c1:8e:32:c0:a3:a2:62:82:56:a5:25:5a:10

Digest Algorithm

sha256

PE Digest Matches

true

c9:33:e1:a8:35:44:e9:cc:07:16:d4:64:67:b8:aa:67:cb:3d:94:68
Signer

Actual PE Digest

c9:33:e1:a8:35:44:e9:cc:07:16:d4:64:67:b8:aa:67:cb:3d:94:68

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
LocalDB/Binn/Resources/en-US/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/11/2011, 22:39

Not After

01/02/2013, 22:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:05:13:36:00:00:00:00:00:1a
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2011, 20:42

Not After

25/10/2012, 20:42

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:159C-A3F7-2570,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:49:55:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

10/10/2011, 20:45

Not After

10/01/2013, 20:55

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e1:e0:2a:1c:0d:63:54:10:5d:30:3e:23:27:cb:f9:10:67:da:21:fa:7d:a8:36:d4:4d:ee:02:cd:f9:02:a2:4e
Signer

Actual PE Digest

e1:e0:2a:1c:0d:63:54:10:5d:30:3e:23:27:cb:f9:10:67:da:21:fa:7d:a8:36:d4:4d:ee:02:cd:f9:02:a2:4e

Digest Algorithm

sha256

PE Digest Matches

true

e2:7d:10:d9:92:1b:50:5f:93:a9:15:db:3b:05:fe:b5:b3:c7:72:e9
Signer

Actual PE Digest

e2:7d:10:d9:92:1b:50:5f:93:a9:15:db:3b:05:fe:b5:b3:c7:72:e9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
LocalDB/Binn/Resources/ru-RU/SqlUserInstance.rll.mui
.dll windows:5 windows x86 arch:x86

Code Sign

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/11/2011, 22:39

Not After

01/02/2013, 22:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:05:19:96:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2011, 20:42

Not After

25/10/2012, 20:42

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:9E78-864B-039D,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:49:55:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

10/10/2011, 20:45

Not After

10/01/2013, 20:55

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e0:09:e9:f0:06:6e:48:76:7e:03:dd:92:63:49:fb:22:43:6d:5e:22:4c:a7:7c:98:0a:fb:2b:b6:e0:d0:f7:10
Signer

Actual PE Digest

e0:09:e9:f0:06:6e:48:76:7e:03:dd:92:63:49:fb:22:43:6d:5e:22:4c:a7:7c:98:0a:fb:2b:b6:e0:d0:f7:10

Digest Algorithm

sha256

PE Digest Matches

true

60:58:75:36:d9:8a:a1:46:db:41:8e:6e:2b:2a:6a:ab:db:be:32:f2
Signer

Actual PE Digest

60:58:75:36:d9:8a:a1:46:db:41:8e:6e:2b:2a:6a:ab:db:be:32:f2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
LocalDB/Binn/SqlUserInstance.dll
.dll windows:6 windows x86 arch:x86

f2b222e5b77bb5e02c203c041a4e8c66

Code Sign

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/11/2011, 22:39

Not After

01/02/2013, 22:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:05:13:36:00:00:00:00:00:1a
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2011, 20:42

Not After

25/10/2012, 20:42

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:159C-A3F7-2570,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:05:49:55:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

10/10/2011, 20:45

Not After

10/01/2013, 20:55

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9a:0b:c2:36:d6:5f:e4:98:4c:e1:d9:34:1e:ac:93:34:85:80:73:24:7b:ab:cd:e1:78:6b:1e:63:fb:e1:e5:c1
Signer

Actual PE Digest

9a:0b:c2:36:d6:5f:e4:98:4c:e1:d9:34:1e:ac:93:34:85:80:73:24:7b:ab:cd:e1:78:6b:1e:63:fb:e1:e5:c1

Digest Algorithm

sha256

PE Digest Matches

true

b4:c2:d6:ad:f1:7d:f0:e2:01:67:a9:54:16:61:48:9a:cd:d1:c0:e1
Signer

Actual PE Digest

b4:c2:d6:ad:f1:7d:f0:e2:01:67:a9:54:16:61:48:9a:cd:d1:c0:e1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

SqlUserInstance.pdb

Imports

kernel32

GetPrivateProfileStringW
ExpandEnvironmentStringsW
DebugBreak
GetProcessHeap
HeapFree
HeapAlloc
VirtualQuery
GetModuleHandleW
GetProcAddress
CompareStringW
SetLastError
CreateThread
LocalFree
DeleteFileW
CloseHandle
ReleaseMutex
GetFinalPathNameByHandleW
WaitForMultipleObjects
CreateEventW
GetExitCodeThread
IsWow64Process
LocalAlloc
EnterCriticalSection
GetLongPathNameW
GetLastError
FreeLibraryAndExitThread
DisconnectNamedPipe
CreateFileW
GetModuleFileNameW
TerminateProcess
GetFileAttributesW
LeaveCriticalSection
FormatMessageW
CopyFileW
CompareStringOrdinal
LoadLibraryW
OpenProcess
GetProcessTimes
InitializeCriticalSection
CompareStringEx
CreateNamedPipeW
WaitForSingleObject
CreateMutexW
CreateDirectoryW
GetModuleHandleExW
GetCurrentProcess
LoadLibraryExW
FreeLibrary
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InterlockedCompareExchange
InterlockedExchange
DecodePointer
EncodePointer
Module32NextW
CreateToolhelp32Snapshot
Sleep

advapi32

RegQueryValueExW
RegOpenKeyW
CreateWellKnownSid
GetSecurityDescriptorDacl
RegSetValueExW
RegCloseKey
ConvertSidToStringSidW
RegEnumKeyExW
GetLengthSid
ReportEventW
RegOpenKeyExW
RegSetKeySecurity
SetEntriesInAclW
AddAccessAllowedAce
SetSecurityDescriptorOwner
RegGetValueW
RegDeleteTreeW
InitializeAcl
CryptGenRandom
RegGetKeySecurity
SetSecurityDescriptorDacl
ConvertStringSidToSidW
SetTokenInformation
InitializeSecurityDescriptor
DeregisterEventSource
CreateProcessAsUserW
CryptReleaseContext
RegCreateKeyExW
CreateRestrictedToken
GetTokenInformation
RegDeleteKeyExW
CryptAcquireContextW
OpenProcessToken
RegCopyTreeW
RegisterEventSourceW

user32

CharUpperBuffW
CharLowerBuffW

shlwapi

SHDeleteKeyW

odbc32

ord75
ord24
ord31
ord241
ord111
ord136

ole32

CoCreateInstance
StringFromGUID2
CoCreateGuid
CoTaskMemFree
CoInitializeEx

shell32

SHGetKnownFolderPath

msvcr100

__dllonexit
?_type_info_dtor_internal_method@type_info@@QAEXXZ
towlower
free
malloc
_ultow
wcsrchr
_vsnwprintf
_vsnprintf
??3@YAXPAX@Z
??2@YAPAXI@Z
memset
wcslen
_purecall
_wcsicmp_l
_wcsicmp
swprintf_s
wcschr
_swscanf_s_l
memcpy
_wcsnicmp
swscanf_s
wcsncmp
_vsnwprintf_l
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_unlock
__CxxFrameHandler3
_lock
_onexit
?terminate@@YAXXZ
_crt_debugger_hook
__clean_type_info_names_internal
_except_handler4_common
_CxxThrowException

oleaut32

SysFreeString
SysStringLen
SysStringByteLen
VariantChangeType
VariantInit
SysAllocString
VariantClear

Exports

Exports

LOCALDB_PRODUCT_NAME
LocalDBCreateInstance
LocalDBDeleteInstance
LocalDBFormatMessage
LocalDBGetInstanceInfo
LocalDBGetInstances
LocalDBGetVersionInfo
LocalDBGetVersions
LocalDBShareInstance
LocalDBStartInstance
LocalDBStartTracing
LocalDBStopInstance
LocalDBStopTracing
LocalDBUnshareInstance

Sections

.text
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LocalDB/Binn/localdbxeventconfig.xml
ServicesSettings.ini
data/Engine.dll
.dll windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Code Sign

fe:ae:e2:df:98:47:d4:af:b8:3e:8a:2a:3f:8e:39:8d
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

30/04/2021, 00:00

Not After

11/05/2024, 23:59

Subject

CN=NCSOFT Corporation,O=NCSOFT Corporation,L=Seongnam-si,ST=Gyeonggi-do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:44:b7:3f:fc:ef:5a:cf:a2:7a:00:00:00:00:00:44
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/07/2015, 21:03

Not After

22/07/2025, 21:03

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

fe:ae:e2:df:98:47:d4:af:b8:3e:8a:2a:3f:8e:39:8d
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

30/04/2021, 00:00

Not After

11/05/2024, 23:59

Subject

CN=NCSOFT Corporation,O=NCSOFT Corporation,L=Seongnam-si,ST=Gyeonggi-do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:44:b7:3f:fc:ef:5a:cf:a2:7a:00:00:00:00:00:44
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/07/2015, 21:03

Not After

22/07/2025, 21:03

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ad:0f:1f:20:11:13:e1:b4:15:6e:62:7e:72:f9:11:bb:2e:3d:18:90:cc:b4:e3:f5:bb:e0:0a:83:36:04:f3:17
Signer

Actual PE Digest

ad:0f:1f:20:11:13:e1:b4:15:6e:62:7e:72:f9:11:bb:2e:3d:18:90:cc:b4:e3:f5:bb:e0:0a:83:36:04:f3:17

Digest Algorithm

sha256

PE Digest Matches

true

5f:63:46:32:6c:f1:54:1d:1f:85:a2:00:5a:52:3f:44:d7:9c:7c:92
Signer

Actual PE Digest

5f:63:46:32:6c:f1:54:1d:1f:85:a2:00:5a:52:3f:44:d7:9c:7c:92

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

?$TSS0@?1??eventReset@UCanvas@@QAEXXZ@4HA
?$TSS0@?3??RenderCameraFrustum@FPlayerSceneNode@@AAEXPAVFRenderInterface@@@Z@4HA
?$TSS0@?6??RenderScreenFlash@FPlayerSceneNode@@AAEXPAVFRenderInterface@@@Z@4HA
?$TSS0@?7??RenderDepthComplexity@FCameraSceneNode@@AAEXPAVFRenderInterface@@@Z@4HA
?$TSS0@?7??RenderDepthComplexity@FPlayerSceneNode@@AAEXPAVFRenderInterface@@@Z@4HA
?$TSS0@?7??RenderEditorStencilMask@FLevelSceneNode@@AAEXPAVFRenderInterface@@@Z@4HA
?$TSS0@?7??RenderStencilMask@FLevelSceneNode@@AAEXPAVFRenderInterface@@@Z@4HA
?$TSS0@?7??RenderWide@FPlayerSceneNode@@AAEXPAVFRenderInterface@@@Z@4HA
??0?$TArray@E@@QAE@ABV0@@Z
??0?$TArray@E@@QAE@H@Z
??0?$TArray@E@@QAE@W4ENoInit@@@Z
??0?$TArray@E@@QAE@XZ
??0?$TLazyArray@E@@QAE@ABV0@@Z
??0?$TLazyArray@E@@QAE@H@Z
??0?$TSingleton@VBR_EventManager@@@@IAE@XZ
??0?$TSingleton@VBR_EventManager@@@@QAE@ABV0@@Z
??0?$TSingleton@VBR_GrpExchanger@@@@IAE@XZ
??0?$TSingleton@VBR_GrpExchanger@@@@QAE@ABV0@@Z
??0?$TSingleton@VCSceneManager@@@@IAE@XZ
??0?$TSingleton@VCSceneManager@@@@QAE@ABV0@@Z
??0?$TSingleton@VConnectInfo@@@@IAE@XZ
??0?$TSingleton@VConnectInfo@@@@QAE@ABV0@@Z
??0?$TSingleton@VFDepthOfField@@@@IAE@XZ
??0?$TSingleton@VFDepthOfField@@@@QAE@ABV0@@Z
??0?$TSingleton@VL2EventManager@@@@IAE@XZ
??0?$TSingleton@VL2EventManager@@@@QAE@ABV0@@Z
??0?$TSingleton@VL2OutlineColor@@@@IAE@XZ
??0?$TSingleton@VL2OutlineColor@@@@QAE@ABV0@@Z
??0?$TSingleton@VL2PacketHistoryManager@@@@IAE@XZ
??0?$TSingleton@VL2PacketHistoryManager@@@@QAE@ABV0@@Z
??0?$TSingleton@VL2WeatherManager@@@@IAE@XZ
??0?$TSingleton@VL2WeatherManager@@@@QAE@ABV0@@Z
??0?$TSingleton@VServerManager@@@@IAE@XZ
??0?$TSingleton@VServerManager@@@@QAE@ABV0@@Z
??0?$TSingleton@VServerTextureNameManager@@@@IAE@XZ
??0?$TSingleton@VServerTextureNameManager@@@@QAE@ABV0@@Z
??0?$TSingleton@VUClientSpawnedPawnManager@@@@IAE@XZ
??0?$TSingleton@VUClientSpawnedPawnManager@@@@QAE@ABV0@@Z
??0?$TSingleton@VUDecoration@@@@IAE@XZ
??0?$TSingleton@VUDecoration@@@@QAE@ABV0@@Z
??0?$TSingleton@VUDepthEffect@@@@IAE@XZ
??0?$TSingleton@VUDepthEffect@@@@QAE@ABV0@@Z
??0?$TSingleton@VUEditorColorEffect@@@@IAE@XZ
??0?$TSingleton@VUEditorColorEffect@@@@QAE@ABV0@@Z
??0?$TSingleton@VUPostEffEnvManager@@@@IAE@XZ
??0?$TSingleton@VUPostEffEnvManager@@@@QAE@ABV0@@Z
??0?$TSingleton@VURLDownloader@URLDownload@@@@IAE@XZ
??0?$TSingleton@VURLDownloader@URLDownload@@@@QAE@ABV0@@Z
??0?$TSingleton@VUSSAOEffect@@@@IAE@XZ
??0?$TSingleton@VUSSAOEffect@@@@QAE@ABV0@@Z
??0AAIAgent@@QAE@ABV0@@Z
??0AAIAgent@@QAE@XZ
??0AAIController@@QAE@ABV0@@Z
??0AAIController@@QAE@XZ
??0AAIMarker@@QAE@ABV0@@Z
??0AAIMarker@@QAE@XZ
??0AAIScript@@QAE@ABV0@@Z
??0AAIScript@@QAE@XZ
??0AActor@@QAE@ABV0@@Z
??0AActor@@QAE@XZ
??0AAirEmitter@@IAE@XZ
??0AAirEmitter@@QAE@ABV0@@Z
??0AAirShip@@QAE@ABV0@@Z
??0AAirShip@@QAE@XZ
??0AAirVolume@@IAE@XZ
??0AAirVolume@@QAE@ABV0@@Z
??0AAmbientEventActor@@QAE@ABV0@@Z
??0AAmbientEventActor@@QAE@XZ
??0AAmbientSound@@QAE@ABV0@@Z
??0AAmbientSound@@QAE@XZ
??0AAmbientVolume@@QAE@ABV0@@Z
??0AAmbientVolume@@QAE@XZ
??0AAmmo@@IAE@XZ
??0AAmmo@@QAE@ABV0@@Z
??0AAmmunition@@QAE@ABV0@@Z
??0AAmmunition@@QAE@XZ
??0AAntiPortalActor@@IAE@XZ
??0AAntiPortalActor@@QAE@ABV0@@Z
??0AAutoDoor@@IAE@XZ
??0AAutoDoor@@QAE@ABV0@@Z
??0AAutoLadder@@QAE@ABV0@@Z
??0AAutoLadder@@QAE@XZ
??0AAvoidMarker@@IAE@XZ
??0AAvoidMarker@@QAE@ABV0@@Z
??0ABeautyShopCameraActor@@QAE@ABV0@@Z
??0ABeautyShopCameraActor@@QAE@XZ
??0ABlockingVolume@@QAE@ABV0@@Z
??0ABlockingVolume@@QAE@XZ
??0ABrush@@QAE@ABV0@@Z
??0ABrush@@QAE@XZ
??0ACamera@@QAE@ABV0@@Z
??0ACamera@@QAE@XZ
??0ACameraControlPawn@@QAE@ABV0@@Z
??0ACameraControlPawn@@QAE@XZ
??0ACameraEffectInfo@@QAE@ABV0@@Z
??0ACameraEffectInfo@@QAE@XZ
??0ACameraVolume@@QAE@ABV0@@Z
??0ACameraVolume@@QAE@XZ
??0ACarriedObject@@QAE@ABV0@@Z
??0ACarriedObject@@QAE@XZ
??0AClipMarker@@IAE@XZ
??0AClipMarker@@QAE@ABV0@@Z
??0AController@@QAE@ABV0@@Z
??0AController@@QAE@XZ
??0ACustomizableStaticMeshActor@@QAE@ABV0@@Z
??0ACustomizableStaticMeshActor@@QAE@XZ
??0ADamageType@@IAE@XZ
??0ADamageType@@QAE@ABV0@@Z
??0ADecoVolumeObject@@IAE@XZ
??0ADecoVolumeObject@@QAE@ABV0@@Z
??0ADecoration@@QAE@ABV0@@Z
??0ADecoration@@QAE@XZ
??0ADecorationList@@IAE@XZ
??0ADecorationList@@QAE@ABV0@@Z
??0ADefaultPhysicsVolume@@IAE@XZ
??0ADefaultPhysicsVolume@@QAE@ABV0@@Z
??0ADoor@@QAE@ABV0@@Z
??0ADoor@@QAE@XZ
??0ADynamicLight@@QAE@ABV0@@Z
??0ADynamicLight@@QAE@XZ
??0AEmitter@@QAE@ABV0@@Z
??0AEmitter@@QAE@XZ
??0AEmitterLight@@QAE@ABV0@@Z
??0AEmitterLight@@QAE@XZ
??0AEnvCreatureManagerInfo@@QAE@ABV0@@Z
??0AEnvCreatureManagerInfo@@QAE@XZ
??0AFileLog@@IAE@XZ
??0AFileLog@@QAE@ABV0@@Z
??0AFluidSurfaceInfo@@IAE@XZ
??0AFluidSurfaceInfo@@QAE@ABV0@@Z
??0AFluidSurfaceOscillator@@QAE@ABV0@@Z
??0AFluidSurfaceOscillator@@QAE@XZ
??0AGameInfo@@IAE@XZ
??0AGameInfo@@QAE@ABV0@@Z
??0AGameReplicationInfo@@QAE@ABV0@@Z
??0AGameReplicationInfo@@QAE@XZ
??0AGameStats@@IAE@XZ
??0AGameStats@@QAE@ABV0@@Z
??0AHUD@@IAE@XZ
??0AHUD@@QAE@ABV0@@Z
??0AInfo@@IAE@XZ
??0AInfo@@QAE@ABV0@@Z
??0AInspector@@IAE@XZ
??0AInspector@@QAE@ABV0@@Z
??0AInternetInfo@@IAE@XZ
??0AInternetInfo@@QAE@ABV0@@Z
??0AInterpolationPoint@@QAE@ABV0@@Z
??0AInterpolationPoint@@QAE@XZ
??0AInventory@@QAE@ABV0@@Z
??0AInventory@@QAE@XZ
??0AInventoryAttachment@@IAE@XZ
??0AInventoryAttachment@@QAE@ABV0@@Z
??0AInventorySpot@@QAE@ABV0@@Z
??0AInventorySpot@@QAE@XZ
??0AJumpDest@@QAE@ABV0@@Z
??0AJumpDest@@QAE@XZ
??0AJumpPad@@QAE@ABV0@@Z
??0AJumpPad@@QAE@XZ
??0AKActor@@QAE@ABV0@@Z
??0AKActor@@QAE@XZ
??0AKBSJoint@@IAE@XZ
??0AKBSJoint@@QAE@ABV0@@Z
??0AKCarWheelJoint@@QAE@ABV0@@Z
??0AKCarWheelJoint@@QAE@XZ
??0AKConeLimit@@QAE@ABV0@@Z
??0AKConeLimit@@QAE@XZ
??0AKConstraint@@QAE@ABV0@@Z
??0AKConstraint@@QAE@XZ
??0AKHinge@@QAE@ABV0@@Z
??0AKHinge@@QAE@XZ
??0AKTire@@IAE@XZ
??0AKTire@@QAE@ABV0@@Z
??0AKVehicle@@QAE@ABV0@@Z
??0AKVehicle@@QAE@XZ
??0AKeypoint@@IAE@XZ
??0AKeypoint@@QAE@ABV0@@Z
??0AL2Alarm@@QAE@ABV0@@Z
??0AL2Alarm@@QAE@XZ
??0AL2CenterdDiamond@@QAE@ABV0@@Z
??0AL2CenterdDiamond@@QAE@XZ
??0AL2Dice@@QAE@ABV0@@Z
??0AL2Dice@@QAE@XZ
??0AL2Float@@QAE@ABV0@@Z
??0AL2Float@@QAE@XZ
??0AL2Indicator@@IAE@XZ
??0AL2Indicator@@QAE@ABV0@@Z
??0AL2MovableStaticMeshActor@@QAE@ABV0@@Z
??0AL2MovableStaticMeshActor@@QAE@XZ
??0AL2NMover@@QAE@ABV0@@Z
??0AL2NMover@@QAE@XZ
??0AL2Pickup@@QAE@ABV0@@Z
??0AL2Pickup@@QAE@XZ
??0AL2Radar@@IAE@XZ
??0AL2Radar@@QAE@ABV0@@Z
??0AL2SeamlessInfo@@QAE@ABV0@@Z
??0AL2SeamlessInfo@@QAE@XZ
??0ALadder@@QAE@ABV0@@Z
??0ALadder@@QAE@XZ
??0ALadderVolume@@QAE@ABV0@@Z
??0ALadderVolume@@QAE@XZ
??0ALevelInfo@@QAE@ABV0@@Z
??0ALevelInfo@@QAE@XZ
??0ALiftCenter@@QAE@ABV0@@Z
??0ALiftCenter@@QAE@XZ
??0ALiftExit@@IAE@XZ
??0ALiftExit@@QAE@ABV0@@Z
??0ALight@@QAE@ABV0@@Z
??0ALight@@QAE@XZ
??0ALineOfSightTrigger@@QAE@ABV0@@Z
??0ALineOfSightTrigger@@QAE@XZ
??0ALineagePlayerController@@QAE@ABV0@@Z
??0ALineagePlayerController@@QAE@XZ
??0ALocationInfo@@IAE@XZ
??0ALocationInfo@@QAE@ABV0@@Z
??0ALogOnCameraControlPawn@@QAE@ABV0@@Z
??0ALogOnCameraControlPawn@@QAE@XZ
??0ALookTarget@@IAE@XZ
??0ALookTarget@@QAE@ABV0@@Z
??0AMarkProjector@@IAE@XZ
??0AMarkProjector@@QAE@ABV0@@Z
??0AMatDemoActor@@IAE@XZ
??0AMatDemoActor@@QAE@ABV0@@Z
??0AMovableStaticMeshActor@@QAE@ABV0@@Z
??0AMovableStaticMeshActor@@QAE@XZ
??0AMover@@QAE@ABV0@@Z
??0AMover@@QAE@XZ
??0AMusicVolume@@QAE@ABV0@@Z
??0AMusicVolume@@QAE@XZ
??0AMutator@@IAE@XZ
??0AMutator@@QAE@ABV0@@Z
??0ANAgathion@@QAE@ABV0@@Z
??0ANAgathion@@QAE@XZ
??0ANCubics@@QAE@ABV0@@Z
??0ANCubics@@QAE@XZ
??0ANMoon@@QAE@ABV0@@Z
??0ANMoon@@QAE@XZ
??0ANMovableSunLight@@QAE@ABV0@@Z
??0ANMovableSunLight@@QAE@XZ
??0ANProjectile@@QAE@ABV0@@Z
??0ANProjectile@@QAE@XZ
??0ANSkillProjectile@@QAE@ABV0@@Z
??0ANSkillProjectile@@QAE@XZ
??0ANSun@@QAE@ABV0@@Z
??0ANSun@@QAE@XZ
??0ANavigationPoint@@QAE@ABV0@@Z
??0ANavigationPoint@@QAE@XZ
??0ANote@@QAE@ABV0@@Z
??0ANote@@QAE@XZ
??0ANpcPosInfo@@IAE@XZ
??0ANpcPosInfo@@QAE@ABV0@@Z
??0AParticleProjector@@QAE@ABV0@@Z
??0AParticleProjector@@QAE@XZ
??0APathNode@@QAE@ABV0@@Z
??0APathNode@@QAE@XZ
??0APawn@@QAE@ABV0@@Z
??0APawn@@QAE@XZ
??0APhysicsVolume@@QAE@ABV0@@Z
??0APhysicsVolume@@QAE@XZ
??0APickup@@QAE@ABV0@@Z
??0APickup@@QAE@XZ
??0APlayerController@@QAE@ABV0@@Z
??0APlayerController@@QAE@XZ
??0APlayerReplicationInfo@@QAE@ABV0@@Z
??0APlayerReplicationInfo@@QAE@XZ
??0APlayerStart@@QAE@ABV0@@Z
??0APlayerStart@@QAE@XZ
??0APolyMarker@@IAE@XZ
??0APolyMarker@@QAE@ABV0@@Z
??0APotentialClimbWatcher@@IAE@XZ
??0APotentialClimbWatcher@@QAE@ABV0@@Z
??0APowerups@@QAE@ABV0@@Z
??0APowerups@@QAE@XZ
??0AProjectedEmitter@@QAE@ABV0@@Z
??0AProjectedEmitter@@QAE@XZ
??0AProjectile@@QAE@ABV0@@Z
??0AProjectile@@QAE@XZ
??0AProjector@@QAE@ABV0@@Z
??0AProjector@@QAE@XZ
??0AReplicationInfo@@QAE@ABV0@@Z
??0AReplicationInfo@@QAE@XZ
??0ASavedMove@@IAE@XZ
??0ASavedMove@@QAE@ABV0@@Z
??0ASceneManager@@QAE@ABV0@@Z
??0ASceneManager@@QAE@XZ
??0AScout@@QAE@ABV0@@Z
??0AScout@@QAE@XZ
??0ASecurity@@QAE@ABV0@@Z
??0ASecurity@@QAE@XZ
??0AServerBlockingVolume@@IAE@XZ
??0AServerBlockingVolume@@QAE@ABV0@@Z
??0AServerPrimitive@@QAE@ABV0@@Z
??0AServerPrimitive@@QAE@XZ
??0AShadowProjector@@IAE@XZ
??0AShadowProjector@@QAE@ABV0@@Z
??0AShuttle@@QAE@ABV0@@Z
??0AShuttle@@QAE@XZ
??0AShuttleDoor@@QAE@ABV0@@Z
??0AShuttleDoor@@QAE@XZ
??0AShuttleWall@@QAE@ABV0@@Z
??0AShuttleWall@@QAE@XZ
??0ASkyMeshActor@@IAE@XZ
??0ASkyMeshActor@@QAE@ABV0@@Z
??0ASkyRenderInfo@@QAE@ABV0@@Z
??0ASkyRenderInfo@@QAE@XZ
??0ASkyZoneInfo@@IAE@XZ
??0ASkyZoneInfo@@QAE@ABV0@@Z
??0ASmallNavigationPoint@@IAE@XZ
??0ASmallNavigationPoint@@QAE@ABV0@@Z
??0ASpawnableStaticMeshActor@@QAE@ABV0@@Z
??0ASpawnableStaticMeshActor@@QAE@XZ
??0ASpawnedLight@@QAE@ABV0@@Z
??0ASpawnedLight@@QAE@XZ
??0AStatLog@@IAE@XZ
??0AStatLog@@QAE@ABV0@@Z
??0AStatLogFile@@IAE@XZ
??0AStatLogFile@@QAE@ABV0@@Z
??0AStaticMeshActor@@QAE@ABV0@@Z
??0AStaticMeshActor@@QAE@XZ
??0AStationaryWeapons@@QAE@ABV0@@Z
??0AStationaryWeapons@@QAE@XZ
??0ASuperPointInfo@@QAE@ABV0@@Z
??0ASuperPointInfo@@QAE@XZ
??0ATeamInfo@@QAE@ABV0@@Z
??0ATeamInfo@@QAE@XZ
??0ATeleporter@@QAE@ABV0@@Z
??0ATeleporter@@QAE@XZ
??0ATerrainInfo@@QAE@ABV0@@Z
??0ATerrainInfo@@QAE@XZ
??0ATerritoryInfo@@QAE@ABV0@@Z
??0ATerritoryInfo@@QAE@XZ
??0ATrigger@@IAE@XZ
??0ATrigger@@QAE@ABV0@@Z
??0ATriggers@@IAE@XZ
??0ATriggers@@QAE@ABV0@@Z
??0AVehicle@@QAE@ABV0@@Z
??0AVehicle@@QAE@XZ
??0AVehicleMeshPart@@IAE@XZ
??0AVehicleMeshPart@@QAE@ABV0@@Z
??0AVehiclePart@@IAE@XZ
??0AVehiclePart@@QAE@ABV0@@Z
??0AVehicleRoutePoint@@QAE@ABV0@@Z
??0AVehicleRoutePoint@@QAE@XZ
??0AVehicleServerPart@@IAE@XZ
??0AVehicleServerPart@@QAE@ABV0@@Z
??0AViewportWindowController@@QAE@ABV0@@Z
??0AViewportWindowController@@QAE@XZ
??0AVolume@@QAE@ABV0@@Z
??0AVolume@@QAE@XZ
??0AWarpZoneInfo@@QAE@ABV0@@Z
??0AWarpZoneInfo@@QAE@XZ
??0AWarpZoneMarker@@QAE@ABV0@@Z
??0AWarpZoneMarker@@QAE@XZ
??0AWaterHitEmitter@@IAE@XZ
??0AWaterHitEmitter@@QAE@ABV0@@Z
??0AWeapon@@QAE@ABV0@@Z
??0AWeapon@@QAE@XZ
??0AWeaponAttachment@@QAE@ABV0@@Z
??0AWeaponAttachment@@QAE@XZ
??0AZoneInfo@@QAE@ABV0@@Z
??0AZoneInfo@@QAE@XZ
??0ActorFunc@@QAE@$$QAV0@@Z
??0ActorFunc@@QAE@ABV0@@Z
??0ActorFunc@@QAE@XZ
??0AutoClock@@QAE@PAH@Z
??0AutoClock@@QAE@PAK@Z
??0BR_EventManager@@QAE@ABV0@@Z
??0BR_EventManager@@QAE@XZ
??0BR_GrpExchanger@@QAE@ABV0@@Z
??0BR_GrpExchanger@@QAE@XZ
??0CAtmosphere@@QAE@XZ
??0CNPAuthTokenRequester@@QAE@ABV0@@Z
??0CNPAuthTokenRequester@@QAE@XZ
??0CSceneManager@@AAE@XZ
??0CSceneManager@@QAE@ABV0@@Z
??0CSun@@QAE@MMM@Z
??0ChangeSelectObjectEvent@InGameEvent@@QAE@PAVUObject@@@Z
??0ConnectInfo@@QAE@ABV0@@Z
??0ConnectInfo@@QAE@XZ
??0DataBase@L2GDB@@QAE@$$QAV01@@Z
??0DataBase@L2GDB@@QAE@ABV01@@Z
??0DataBase@L2GDB@@QAE@XZ
??0FAIAgentCachedData@@QAE@$$QAU0@@Z
??0FAIAgentCachedData@@QAE@ABU0@@Z
??0FAIAgentCachedData@@QAE@XZ
??0FAIAgentStateData@@QAE@XZ
??0FAbstractShaderAttribute@@QAE@ABU0@@Z
??0FAbstractShaderAttribute@@QAE@XZ
??0FActorSceneNode@@QAE@$$QAV0@@Z
??0FActorSceneNode@@QAE@ABV0@@Z
??0FActorSceneNode@@QAE@PAVUViewport@@PAVFRenderTarget@@PAVAActor@@2ABUFVector@@ABUFRotator@@M@Z
??0FAnywhereNpcMaker@@QAE@$$QAU0@@Z
??0FAnywhereNpcMaker@@QAE@ABU0@@Z
??0FAnywhereNpcMaker@@QAE@XZ
??0FAuxRenderTarget@@QAE@ABV0@@Z
??0FAuxRenderTarget@@QAE@HHW4ETextureFormat@@H@Z
??0FBezierContPoint@@QAE@XZ
??0FBoneAdditionalEffect@@QAE@XZ
??0FBspBoundListRender@@QAE@ABV0@@Z
??0FBspBoundListRender@@QAE@XZ
??0FCameraSceneNode@@QAE@ABV0@@Z
??0FCameraSceneNode@@QAE@PAVUViewport@@PAVFRenderTarget@@PAVAActor@@ABUFVector@@ABUFRotator@@M@Z
??0FCanvasConsoleUtil@@QAE@ABV0@@Z
??0FCanvasConsoleUtil@@QAE@PAVFRenderTarget@@PAVFRenderInterface@@W4EVertexShader@@W4EPixelShader@@@Z
??0FCanvasUtil@@QAE@ABV0@@Z
??0FCanvasUtil@@QAE@PAVFRenderTarget@@PAVFRenderInterface@@W4EVertexShader@@W4EPixelShader@@@Z
??0FCanvasUtil@@QAE@XZ
??0FCommandMacro@@QAE@PAVUGameEngine@@PAEH@Z
??0FConsoleMessage@@QAE@$$QAU0@@Z
??0FConsoleMessage@@QAE@ABU0@@Z
??0FConsoleMessage@@QAE@XZ
??0FDecoInfo@@QAE@$$QAU0@@Z
??0FDecoInfo@@QAE@ABU0@@Z
??0FDecoInfo@@QAE@XZ
??0FDecoQuadInfo@@QAE@$$QAU0@@Z
??0FDecoQuadInfo@@QAE@ABU0@@Z
??0FDecoQuadInfo@@QAE@XZ
??0FDecorationLayer@@QAE@$$QAU0@@Z
??0FDecorationLayer@@QAE@ABU0@@Z
??0FDecorationLayer@@QAE@XZ
??0FDepthOfField@@AAE@XZ
??0FDepthOfField@@QAE@ABV0@@Z
??0FDissolveShaderAttribute@shaderAttribute@@QAE@ABU01@@Z
??0FDissolveShaderAttribute@shaderAttribute@@QAE@M@Z
??0FDissolveShaderAttribute@shaderAttribute@@QAE@XZ
??0FDynamicActor@@QAE@ABV0@@Z
??0FDynamicActor@@QAE@PAVAActor@@@Z
??0FDynamicLight@@QAE@$$QAV0@@Z
??0FDynamicLight@@QAE@ABV0@@Z
??0FDynamicLight@@QAE@PAVAEmitterLight@@@Z
??0FDynamicLight@@QAE@PAVALight@@@Z
??0FEdgeEffectShaderAttribute@shaderAttribute@@QAE@ABU01@@Z
??0FEdgeEffectShaderAttribute@shaderAttribute@@QAE@XZ
??0FEffectPawnLightParam@@QAE@$$QAU0@@Z
??0FEffectPawnLightParam@@QAE@ABU0@@Z
??0FEffectPawnLightParam@@QAE@XZ
??0FEngineStats@@QAE@XZ
??0FEvent@InGameEvent@@AAE@XZ
??0FEvent@InGameEvent@@QAE@W4Type@1@@Z
??0FExtrudePositionShaderAttribute@shaderAttribute@@QAE@ABU01@@Z
??0FExtrudePositionShaderAttribute@shaderAttribute@@QAE@HM@Z
??0FExtrudePositionShaderAttribute@shaderAttribute@@QAE@XZ
??0FFlashData@@QAE@$$QAV0@@Z
??0FFlashData@@QAE@ABV0@@Z
??0FFlashData@@QAE@PAVUGFxFlash@@@Z
??0FForceColorShaderAttribute@shaderAttribute@@QAE@$$QAU01@@Z
??0FForceColorShaderAttribute@shaderAttribute@@QAE@ABU01@@Z
??0FForceColorShaderAttribute@shaderAttribute@@QAE@XZ
??0FFrustumBatcher@@QAE@PAVFRenderInterface@@H@Z
??0FGPUSkinVertexStream@@QAE@ABV0@@Z
??0FGPUSkinVertexStream@@QAE@XZ
??0FHitCause@@QAE@PAVFHitObserver@@PAVUViewport@@KMM@Z
??0FHitCause@@QAE@XZ
??0FKeyValuePair@@QAE@$$QAU0@@Z
??0FKeyValuePair@@QAE@ABU0@@Z
??0FKeyValuePair@@QAE@XZ
??0FL2AdditionalEffectData@@QAE@$$QAU0@@Z
??0FL2AdditionalEffectData@@QAE@ABU0@@Z
??0FL2AdditionalEffectData@@QAE@XZ
??0FL2AgitDecoNPCData@@QAE@$$QAU0@@Z
??0FL2AgitDecoNPCData@@QAE@ABU0@@Z
??0FL2AgitDecoNPCData@@QAE@XZ
??0FL2AlterAbnormalStatusManager@@QAE@ABV0@@Z
??0FL2AlterAbnormalStatusManager@@QAE@XZ
??0FL2AlterSkillData@@QAE@XZ
??0FL2ArmorGradeLookChange@@QAE@$$QAV0@@Z
??0FL2ArmorGradeLookChange@@QAE@ABV0@@Z
??0FL2ArmorGradeLookChange@@QAE@XZ
??0FL2ArmorItemData@@QAE@$$QAV0@@Z
??0FL2ArmorItemData@@QAE@ABV0@@Z
??0FL2ArmorItemData@@QAE@XZ
??0FL2CharData@@QAE@$$QAU0@@Z
??0FL2CharData@@QAE@ABU0@@Z
??0FL2CharData@@QAE@XZ
??0FL2CharHeadExData@@QAE@$$QAU0@@Z
??0FL2CharHeadExData@@QAE@ABU0@@Z
??0FL2CharHeadExData@@QAE@XZ
??0FL2CollectionData@@QAE@ABU0@@Z
??0FL2CollectionData@@QAE@XZ
??0FL2ColorExData@@QAE@$$QAV0@@Z
??0FL2ColorExData@@QAE@ABV0@@Z
??0FL2ColorExData@@QAE@XZ
??0FL2CombinationItemData@@QAE@$$QAU0@@Z
??0FL2CombinationItemData@@QAE@ABU0@@Z
??0FL2CombinationItemData@@QAE@XZ
??0FL2EnsoulOptionData@@QAE@$$QAU0@@Z
??0FL2EnsoulOptionData@@QAE@ABU0@@Z
??0FL2EnsoulOptionData@@QAE@XZ
??0FL2EnterEventData@@QAE@XZ
??0FL2EtcItemData@@QAE@$$QAV0@@Z
??0FL2EtcItemData@@QAE@ABV0@@Z
??0FL2EtcItemData@@QAE@XZ
??0FL2EventLookChangeData@@QAE@$$QAV0@@Z
??0FL2EventLookChangeData@@QAE@ABV0@@Z
??0FL2EventLookChangeData@@QAE@XZ
??0FL2ExDatabase@@QAE@$$QAV0@@Z
??0FL2ExDatabase@@QAE@ABV0@@Z
??0FL2ExDatabase@@QAE@XZ
??0FL2ExceptionMinimapData@@QAE@$$QAU0@@Z
??0FL2ExceptionMinimapData@@QAE@ABU0@@Z
??0FL2ExceptionMinimapData@@QAE@XZ

Sections

Size: 4.3MB - Virtual size: 34.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hqcbbyhk
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wofpjnnb
Size: 2.0MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
data/data.u
data/linc.xdat
data/remote_settings.ini
iconengine/qsvgicon.dll
.dll windows:6 windows x86 arch:x86

d80f8733bbbe0d549bd8643260d81557

Code Sign

e4:12:82:66:79:32:d8:54:6f:96:d4:d4:62:32:c0:6f
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/09/2019, 00:00

Not After

08/09/2024, 23:59

Subject

CN=Artem Shevchenko,O=Artem Shevchenko,POSTALCODE=04050,STREET=Melnikova st. 15\, 5 apt.,L=Kiev,ST=Kiev,C=UA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

92:16:86:28:c8:7b:78:6b:8d:f5:5e:29:f8:30:7a:79:9a:ee:9c:ca
Signer

Actual PE Digest

92:16:86:28:c8:7b:78:6b:8d:f5:5e:29:f8:30:7a:79:9a:ee:9c:ca

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

qt5svg

?render@QSvgRenderer@@QAEXPAVQPainter@@@Z
?load@QSvgRenderer@@QAE_NABVQByteArray@@@Z
?load@QSvgRenderer@@QAE_NABVQString@@@Z
?defaultSize@QSvgRenderer@@QBE?AVQSize@@XZ
?isValid@QSvgRenderer@@QBE_NXZ
??1QSvgRenderer@@UAE@XZ
??0QSvgRenderer@@QAE@ABVQString@@PAVQObject@@@Z
??0QSvgRenderer@@QAE@PAVQObject@@@Z

qt5gui

?self@QGuiApplicationPrivate@@0PAV1@A
?staticMetaObject@QGuiApplication@@2UQMetaObject@@B
?virtual_hook@QIconEngine@@UAEXHPAX@Z
?iconName@QIconEngine@@UBE?AVQString@@XZ
?availableSizes@QIconEngine@@UBE?AV?$QList@VQSize@@@@W4Mode@QIcon@@W4State@4@@Z
?insert@QPixmapCache@@SA_NABVQString@@ABVQPixmap@@@Z
?find@QPixmapCache@@SA_NABVQString@@AAVQPixmap@@@Z
?drawPixmap@QPainter@@QAEXABVQRectF@@ABVQPixmap@@0@Z
?end@QPainter@@QAE_NXZ
?device@QPainter@@QBEPAVQPaintDevice@@XZ
??1QPainter@@QAE@XZ
??0QPainter@@QAE@PAVQPaintDevice@@@Z
??1QIconEngine@@UAE@XZ
??0QIconEngine@@QAE@XZ
??6@YAAAVQDataStream@@AAV0@ABVQPixmap@@@Z
??5@YAAAVQDataStream@@AAV0@AAVQPixmap@@@Z
?fromImage@QPixmap@@SA?AV1@ABVQImage@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?size@QPixmap@@QBE?AVQSize@@XZ
?isNull@QPixmap@@QBE_NXZ
??4QPixmap@@QAEAAV0@$$QAV0@@Z
??4QPixmap@@QAEAAV0@ABV0@@Z
??1QPixmap@@UAE@XZ
??0QPixmap@@QAE@ABV0@@Z
??0QPixmap@@QAE@ABVQString@@PBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
??0QPixmap@@QAE@XZ
?fill@QImage@@QAEXI@Z
??1QImage@@UAE@XZ
??0QImage@@QAE@ABVQSize@@W4Format@0@@Z
?devicePixelRatio@QPaintDevice@@QBEHXZ
?staticMetaObject@QIconEnginePlugin@@2UQMetaObject@@B
??1QIconEnginePlugin@@UAE@XZ
??0QIconEnginePlugin@@QAE@PAVQObject@@@Z
?qt_metacall@QIconEnginePlugin@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QIconEnginePlugin@@UAEPAXPBD@Z

qt5core

?self@QCoreApplication@@0PAV1@A
?shared_null@QHashData@@2U1@B
??0QString@@QAE@VQLatin1String@@@Z
??0QString@@QAE@ABV0@@Z
??1QString@@QAE@XZ
?isNull@QString@@QBE_NXZ
?detach@QListData@@QAEPAUData@1@H@Z
?detach_grow@QListData@@QAEPAUData@1@PAHH@Z
?dispose@QListData@@SAXPAUData@1@@Z
?append@QListData@@QAEPAPAXXZ
?dynamicMetaObject@QObjectData@@QBEPAUQMetaObject@@XZ
?getAndRef@ExternalRefCountData@QtSharedPointer@@SAPAU12@PBVQObject@@@Z
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?connectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?disconnectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?event@QObject@@UAE_NPAVQEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
?shared_null@QListData@@2UData@1@B
??0QChar@@QAE@UQLatin1Char@@@Z
?realloc@QListData@@QAEXH@Z
??0QByteArray@@QAE@XZ
??0QByteArray@@QAE@ABV0@@Z
??1QByteArray@@QAE@XZ
??4QByteArray@@QAEAAV0@ABV0@@Z
??4QByteArray@@QAEAAV0@$$QAV0@@Z
?constData@QByteArray@@QBEPBDXZ
?qUncompress@@YA?AVQByteArray@@PBEH@Z
??6@YAAAVQDataStream@@AAV0@ABVQByteArray@@@Z
??5@YAAAVQDataStream@@AAV0@AAVQByteArray@@@Z
?qCompress@@YA?AVQByteArray@@PBEHH@Z
??0QString@@QAE@XZ
??4QString@@QAEAAV0@ABV0@@Z
??4QString@@QAEAAV0@$$QAV0@@Z
?at@QString@@QBE?BVQChar@@H@Z
?endsWith@QString@@QBE_NVQLatin1String@@W4CaseSensitivity@Qt@@@Z
?append@QString@@QAEAAV1@VQChar@@@Z
?append@QString@@QAEAAV1@ABV1@@Z
?number@QString@@SA?AV1@HH@Z
??6@YAAAVQDataStream@@AAV0@ABVQString@@@Z
??5@YAAAVQDataStream@@AAV0@AAVQString@@@Z
?scaled@QSize@@QBE?AV1@ABV1@W4AspectRatioMode@Qt@@@Z
??XQSize@@QAEAAV0@N@Z
?cast@QMetaObject@@QBEPAVQObject@@PAV2@@Z
??0QRectF@@QAE@ABVQRect@@@Z
?allocateNode@QHashData@@QAEPAXH@Z
?detach_helper@QHashData@@QAEPAU1@P6AXPAUNode@1@PAX@ZP6AX0@ZHH@Z
?rehash@QHashData@@QAEXH@Z
?free_helper@QHashData@@QAEXP6AXPAUNode@1@@Z@Z
?nextNode@QHashData@@SAPAUNode@1@PAU21@@Z
?previousNode@QHashData@@SAPAUNode@1@PAU21@@Z
??0QSharedData@@QAE@XZ
??0QSharedData@@QAE@ABV0@@Z
?readAll@QIODevice@@QAE?AVQByteArray@@XZ
?atEnd@QDataStream@@QBE_NXZ
?status@QDataStream@@QBE?AW4Status@1@XZ
?setStatus@QDataStream@@QAEXW4Status@1@@Z
?resetStatus@QDataStream@@QAEXXZ
??5QDataStream@@QAEAAV0@AAH@Z
??6QDataStream@@QAEAAV0@H@Z
??0QFile@@QAE@ABVQString@@@Z
??1QFile@@UAE@XZ
?open@QFile@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??0QFileInfo@@QAE@ABVQString@@@Z
??1QFileInfo@@QAE@XZ
?absoluteFilePath@QFileInfo@@QBE?AVQString@@XZ

msvcp120

?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?_Xbad_alloc@std@@YAXXZ

msvcr120

_initterm_e
_initterm
_malloc_crt
_except_handler4_common
_amsg_exit
__CppXcptFilter
??1type_info@@UAE@XZ
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
memcpy
memmove
??3@YAXPAX@Z
??2@YAPAXI@Z
_purecall
?terminate@@YAXXZ
__clean_type_info_names_internal
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
free

kernel32

IsProcessorFeaturePresent
IsDebuggerPresent
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
DecodePointer
EncodePointer

Exports

Exports

qt_plugin_instance
qt_plugin_query_metadata

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qtmetad
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libEGL.dll
.dll windows:6 windows x86 arch:x86

48c72c12b3685003a84e2caf235b2330

Code Sign

e4:12:82:66:79:32:d8:54:6f:96:d4:d4:62:32:c0:6f
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/09/2019, 00:00

Not After

08/09/2024, 23:59

Subject

CN=Artem Shevchenko,O=Artem Shevchenko,POSTALCODE=04050,STREET=Melnikova st. 15\, 5 apt.,L=Kiev,ST=Kiev,C=UA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

fd:86:6f:d5:3e:03:39:78:5d:dc:76:c5:2a:2b:ad:5d:d5:81:ff:08
Signer

Actual PE Digest

fd:86:6f:d5:3e:03:39:78:5d:dc:76:c5:2a:2b:ad:5d:d5:81:ff:08

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libglesv2

?SwapInterval@egl@@YGIPAXH@Z
?BindAPI@egl@@YGII@Z
?QueryAPI@egl@@YGIXZ
?CreatePbufferFromClientBuffer@egl@@YGPAXPAXI00PBH@Z
?ReleaseThread@egl@@YGIXZ
?WaitClient@egl@@YGIXZ
?GetCurrentContext@egl@@YGPAXXZ
?CreateSync@egl@@YGPAXPAXIPBH@Z
?DestroySync@egl@@YGIPAX0@Z
?ClientWaitSync@egl@@YGHPAX0H_K@Z
?SurfaceAttrib@egl@@YGIPAX0HH@Z
?CreateImage@egl@@YGPAXPAX0I0PBH@Z
?DestroyImage@egl@@YGIPAX0@Z
?GetPlatformDisplay@egl@@YGPAXIPAXPBH@Z
?CreatePlatformWindowSurface@egl@@YGPAXPAX00PBH@Z
?CreatePlatformPixmapSurface@egl@@YGPAXPAX00PBH@Z
?WaitSync@egl@@YGIPAX0H@Z
?QuerySurfacePointerANGLE@egl@@YGIPAX0HPAPAX@Z
?PostSubBufferNV@egl@@YGIPAX0HHHH@Z
?GetPlatformDisplayEXT@egl@@YGPAXIPAXPBH@Z
?ReleaseTexImage@egl@@YGIPAX0H@Z
?BindTexImage@egl@@YGIPAX0H@Z
?WaitNative@egl@@YGIH@Z
?WaitGL@egl@@YGIXZ
?Terminate@egl@@YGIPAX@Z
?SwapBuffers@egl@@YGIPAX0@Z
?QuerySurface@egl@@YGIPAX0HPAH@Z
?QueryString@egl@@YGPBDPAXH@Z
?QueryContext@egl@@YGIPAX0HPAH@Z
?MakeCurrent@egl@@YGIPAX000@Z
?Initialize@egl@@YGIPAXPAH1@Z
?GetProcAddress@egl@@YGP6AXXZPBD@Z
?GetError@egl@@YGHXZ
?GetDisplay@egl@@YGPAXPAUHDC__@@@Z
?GetCurrentSurface@egl@@YGPAXH@Z
?GetConfigs@egl@@YGIPAXPAPAXHPAH@Z
?GetCurrentDisplay@egl@@YGPAXXZ
?GetConfigAttrib@egl@@YGIPAX0HPAH@Z
?DestroySurface@egl@@YGIPAX0@Z
?DestroyContext@egl@@YGIPAX0@Z
?CreateWindowSurface@egl@@YGPAXPAX0PAUHWND__@@PBH@Z
?CreatePixmapSurface@egl@@YGPAXPAX0PAUHBITMAP__@@PBH@Z
?CreatePbufferSurface@egl@@YGPAXPAX0PBH@Z
?CreateContext@egl@@YGPAXPAX00PBH@Z
?CopyBuffers@egl@@YGIPAX0PAUHBITMAP__@@@Z
?GetSyncAttrib@egl@@YGIPAX0HPAH@Z
?ChooseConfig@egl@@YGIPAXPBHPAPAXHPAH@Z

msvcr120

__crtTerminateProcess
_crt_debugger_hook
_except_handler4_common
__clean_type_info_names_internal
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
_initterm_e
_initterm
_malloc_crt
free
_amsg_exit
__CppXcptFilter
__crtUnhandledException

kernel32

IsDebuggerPresent
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
DecodePointer
EncodePointer
IsProcessorFeaturePresent

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSync
eglCopyBuffers
eglCreateContext
eglCreateImage
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurface
eglCreatePlatformWindowSurface
eglCreateSync
eglCreateWindowSurface
eglDestroyContext
eglDestroyImage
eglDestroySurface
eglDestroySync
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetPlatformDisplay
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttrib
eglInitialize
eglMakeCurrent
eglPostSubBufferNV
eglQueryAPI
eglQueryContext
eglQueryString
eglQuerySurface
eglQuerySurfacePointerANGLE
eglReleaseTexImage
eglReleaseThread
eglSurfaceAttrib
eglSwapBuffers
eglSwapInterval
eglTerminate
eglWaitClient
eglWaitGL
eglWaitNative
eglWaitSync

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libGLESV4.dll
.dll windows:6 windows x86 arch:x86

abea2434f9b7d3b2a3c225bb90b22116

Code Sign

e4:12:82:66:79:32:d8:54:6f:96:d4:d4:62:32:c0:6f
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/09/2019, 00:00

Not After

08/09/2024, 23:59

Subject

CN=Artem Shevchenko,O=Artem Shevchenko,POSTALCODE=04050,STREET=Melnikova st. 15\, 5 apt.,L=Kiev,ST=Kiev,C=UA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

07:76:ce:03:73:62:be:f7:84:27:05:15:62:fa:be:5a:eb:2f:86:63
Signer

Actual PE Digest

07:76:ce:03:73:62:be:f7:84:27:05:15:62:fa:be:5a:eb:2f:86:63

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
GetTempPathA
GetTempFileNameA
FreeLibrary
GetProcAddress
LoadLibraryW
GetLastError
SetLastError
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
QueryPerformanceFrequency
GetModuleHandleW
VerSetConditionMask
VerifyVersionInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
DecodePointer
EncodePointer
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetSystemTimeAsFileTime

user32

DestroyWindow
WindowFromDC
CallWindowProcW
SetPropW
GetPropW
RemovePropW
SetWindowLongW
GetClientRect
IsIconic
IsWindow
CreateWindowExW
GetWindowThreadProcessId
InvalidateRect

d3d9

D3DPERF_SetMarker
D3DPERF_GetStatus
Direct3DCreate9
D3DPERF_EndEvent
D3DPERF_BeginEvent

msvcp120

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QAE?AVlocale@2@ABV32@@Z
?classic@locale@std@@SAABV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?_Ios_base_dtor@ios_base@std@@CAXPAV12@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?_BADOFF@std@@3_JB
??_7ios_base@std@@6B@
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
_FNan
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z

msvcr120

_amsg_exit
_malloc_crt
_initterm
_initterm_e
_except_handler4_common
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__clean_type_info_names_internal
__CppXcptFilter
_purecall
??2@YAPAXI@Z
??3@YAXPAX@Z
memmove
_libm_sse2_log_precise
_libm_sse2_pow_precise
floor
memcpy
fclose
fopen
fwrite
free
malloc
__CxxFrameHandler3
memset
atoi
memchr
strncpy
??_V@YAXPAX@Z
ceil
_wgetenv
sprintf_s
strncmp
strstr
wcstombs
ldexp
modf
_snprintf
__iob_func
fprintf
_errno
exit
realloc
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
_except1
??1type_info@@UAE@XZ
_vsnprintf
?terminate@@YAXXZ

Exports

Exports

?ANGLEPlatformCurrent@@YAPAVPlatform@angle@@XZ
?ANGLEPlatformInitialize@@YAXPAVPlatform@angle@@@Z
?ANGLEPlatformShutdown@@YAXXZ
?ActiveTexture@gl@@YGXI@Z
?AttachShader@gl@@YGXII@Z
?BeginQuery@gl@@YGXII@Z
?BeginQueryEXT@gl@@YGXII@Z
?BeginTransformFeedback@gl@@YGXI@Z
?BindAPI@egl@@YGII@Z
?BindAttribLocation@gl@@YGXIIPBD@Z
?BindBuffer@gl@@YGXII@Z
?BindBufferBase@gl@@YGXIII@Z
?BindBufferRange@gl@@YGXIIIJJ@Z
?BindFramebuffer@gl@@YGXII@Z
?BindRenderbuffer@gl@@YGXII@Z
?BindSampler@gl@@YGXII@Z
?BindTexImage@egl@@YGIPAX0H@Z
?BindTexture@gl@@YGXII@Z
?BindTransformFeedback@gl@@YGXII@Z
?BindVertexArray@gl@@YGXI@Z
?BlendColor@gl@@YGXMMMM@Z
?BlendEquation@gl@@YGXI@Z
?BlendEquationSeparate@gl@@YGXII@Z
?BlendFunc@gl@@YGXII@Z
?BlendFuncSeparate@gl@@YGXIIII@Z
?BlitFramebuffer@gl@@YGXHHHHHHHHII@Z
?BlitFramebufferANGLE@gl@@YGXHHHHHHHHII@Z
?BufferData@gl@@YGXIJPBXI@Z
?BufferSubData@gl@@YGXIJJPBX@Z
?CheckFramebufferStatus@gl@@YGII@Z
?ChooseConfig@egl@@YGIPAXPBHPAPAXHPAH@Z
?Clear@gl@@YGXI@Z
?ClearBufferfi@gl@@YGXIHMH@Z
?ClearBufferfv@gl@@YGXIHPBM@Z
?ClearBufferiv@gl@@YGXIHPBH@Z
?ClearBufferuiv@gl@@YGXIHPBI@Z
?ClearColor@gl@@YGXMMMM@Z
?ClearDepthf@gl@@YGXM@Z
?ClearStencil@gl@@YGXH@Z
?ClientWaitSync@egl@@YGHPAX0H_K@Z
?ClientWaitSync@gl@@YGIPAU__GLsync@@I_K@Z
?ColorMask@gl@@YGXEEEE@Z
?CompileShader@gl@@YGXI@Z
?CompressedTexImage2D@gl@@YGXIHIHHHHPBX@Z
?CompressedTexImage3D@gl@@YGXIHIHHHHHPBX@Z
?CompressedTexSubImage2D@gl@@YGXIHHHHHIHPBX@Z
?CompressedTexSubImage3D@gl@@YGXIHHHHHHHIHPBX@Z
?CopyBufferSubData@gl@@YGXIIJJJ@Z
?CopyBuffers@egl@@YGIPAX0PAUHBITMAP__@@@Z
?CopyTexImage2D@gl@@YGXIHIHHHHH@Z
?CopyTexSubImage2D@gl@@YGXIHHHHHHH@Z
?CopyTexSubImage3D@gl@@YGXIHHHHHHHH@Z
?CreateContext@egl@@YGPAXPAX00PBH@Z
?CreateImage@egl@@YGPAXPAX0I0PBH@Z
?CreatePbufferFromClientBuffer@egl@@YGPAXPAXI00PBH@Z
?CreatePbufferSurface@egl@@YGPAXPAX0PBH@Z
?CreatePixmapSurface@egl@@YGPAXPAX0PAUHBITMAP__@@PBH@Z
?CreatePlatformPixmapSurface@egl@@YGPAXPAX00PBH@Z
?CreatePlatformWindowSurface@egl@@YGPAXPAX00PBH@Z
?CreateProgram@gl@@YGIXZ
?CreateShader@gl@@YGII@Z
?CreateSync@egl@@YGPAXPAXIPBH@Z
?CreateWindowSurface@egl@@YGPAXPAX0PAUHWND__@@PBH@Z
?CullFace@gl@@YGXI@Z
?DeleteBuffers@gl@@YGXHPBI@Z
?DeleteFencesNV@gl@@YGXHPBI@Z
?DeleteFramebuffers@gl@@YGXHPBI@Z
?DeleteProgram@gl@@YGXI@Z
?DeleteQueries@gl@@YGXHPBI@Z
?DeleteQueriesEXT@gl@@YGXHPBI@Z
?DeleteRenderbuffers@gl@@YGXHPBI@Z
?DeleteSamplers@gl@@YGXHPBI@Z
?DeleteShader@gl@@YGXI@Z
?DeleteSync@gl@@YGXPAU__GLsync@@@Z
?DeleteTextures@gl@@YGXHPBI@Z
?DeleteTransformFeedbacks@gl@@YGXHPBI@Z
?DeleteVertexArrays@gl@@YGXHPBI@Z
?DepthFunc@gl@@YGXI@Z
?DepthMask@gl@@YGXE@Z
?DepthRangef@gl@@YGXMM@Z
?DestroyContext@egl@@YGIPAX0@Z
?DestroyImage@egl@@YGIPAX0@Z
?DestroySurface@egl@@YGIPAX0@Z
?DestroySync@egl@@YGIPAX0@Z
?DetachShader@gl@@YGXII@Z
?Disable@gl@@YGXI@Z
?DisableVertexAttribArray@gl@@YGXI@Z
?DrawArrays@gl@@YGXIHH@Z
?DrawArraysInstanced@gl@@YGXIHHH@Z
?DrawArraysInstancedANGLE@gl@@YGXIHHH@Z
?DrawBuffers@gl@@YGXHPBI@Z
?DrawBuffersEXT@gl@@YGXHPBI@Z
?DrawElements@gl@@YGXIHIPBX@Z
?DrawElementsInstanced@gl@@YGXIHIPBXH@Z
?DrawElementsInstancedANGLE@gl@@YGXIHIPBXH@Z
?DrawRangeElements@gl@@YGXIIIHIPBX@Z
?Enable@gl@@YGXI@Z
?EnableVertexAttribArray@gl@@YGXI@Z
?EndQuery@gl@@YGXI@Z
?EndQueryEXT@gl@@YGXI@Z
?EndTransformFeedback@gl@@YGXXZ
?FenceSync_@gl@@YGPAU__GLsync@@II@Z
?Finish@gl@@YGXXZ
?FinishFenceNV@gl@@YGXI@Z
?Flush@gl@@YGXXZ
?FlushMappedBufferRange@gl@@YGXIJJ@Z
?FlushMappedBufferRangeEXT@gl@@YGXIJJ@Z
?FramebufferRenderbuffer@gl@@YGXIIII@Z
?FramebufferTexture2D@gl@@YGXIIIIH@Z
?FramebufferTextureLayer@gl@@YGXIIIHH@Z
?FrontFace@gl@@YGXI@Z
?GenBuffers@gl@@YGXHPAI@Z
?GenFencesNV@gl@@YGXHPAI@Z
?GenFramebuffers@gl@@YGXHPAI@Z
?GenQueries@gl@@YGXHPAI@Z
?GenQueriesEXT@gl@@YGXHPAI@Z
?GenRenderbuffers@gl@@YGXHPAI@Z
?GenSamplers@gl@@YGXHPAI@Z
?GenTextures@gl@@YGXHPAI@Z
?GenTransformFeedbacks@gl@@YGXHPAI@Z
?GenVertexArrays@gl@@YGXHPAI@Z
?GenerateMipmap@gl@@YGXI@Z
?GetActiveAttrib@gl@@YGXIIHPAH0PAIPAD@Z
?GetActiveUniform@gl@@YGXIIHPAH0PAIPAD@Z
?GetActiveUniformBlockName@gl@@YGXIIHPAHPAD@Z
?GetActiveUniformBlockiv@gl@@YGXIIIPAH@Z
?GetActiveUniformsiv@gl@@YGXIHPBIIPAH@Z
?GetAttachedShaders@gl@@YGXIHPAHPAI@Z
?GetAttribLocation@gl@@YGHIPBD@Z
?GetBooleanv@gl@@YGXIPAE@Z
?GetBufferParameteri64v@gl@@YGXIIPA_J@Z
?GetBufferParameteriv@gl@@YGXIIPAH@Z
?GetBufferPointerv@gl@@YGXIIPAPAX@Z
?GetBufferPointervOES@gl@@YGXIIPAPAX@Z
?GetConfigAttrib@egl@@YGIPAX0HPAH@Z
?GetConfigs@egl@@YGIPAXPAPAXHPAH@Z
?GetCurrentContext@egl@@YGPAXXZ
?GetCurrentDisplay@egl@@YGPAXXZ
?GetCurrentSurface@egl@@YGPAXH@Z
?GetDisplay@egl@@YGPAXPAUHDC__@@@Z
?GetError@egl@@YGHXZ
?GetError@gl@@YGIXZ
?GetFenceivNV@gl@@YGXIIPAH@Z
?GetFloatv@gl@@YGXIPAM@Z
?GetFragDataLocation@gl@@YGHIPBD@Z
?GetFramebufferAttachmentParameteriv@gl@@YGXIIIPAH@Z
?GetGraphicsResetStatusEXT@gl@@YGIXZ
?GetInteger64i_v@gl@@YGXIIPA_J@Z
?GetInteger64v@gl@@YGXIPA_J@Z
?GetIntegeri_v@gl@@YGXIIPAH@Z
?GetIntegerv@gl@@YGXIPAH@Z
?GetInternalformativ@gl@@YGXIIIHPAH@Z
?GetPlatformDisplay@egl@@YGPAXIPAXPBH@Z
?GetPlatformDisplayEXT@egl@@YGPAXIPAXPBH@Z
?GetProcAddress@egl@@YGP6AXXZPBD@Z
?GetProgramBinary@gl@@YGXIHPAHPAIPAX@Z
?GetProgramBinaryOES@gl@@YGXIHPAHPAIPAX@Z
?GetProgramInfoLog@gl@@YGXIHPAHPAD@Z
?GetProgramiv@gl@@YGXIIPAH@Z
?GetQueryObjectuiv@gl@@YGXIIPAI@Z
?GetQueryObjectuivEXT@gl@@YGXIIPAI@Z
?GetQueryiv@gl@@YGXIIPAH@Z
?GetQueryivEXT@gl@@YGXIIPAH@Z
?GetRenderbufferParameteriv@gl@@YGXIIPAH@Z
?GetSamplerParameterfv@gl@@YGXIIPAM@Z
?GetSamplerParameteriv@gl@@YGXIIPAH@Z
?GetShaderInfoLog@gl@@YGXIHPAHPAD@Z
?GetShaderPrecisionFormat@gl@@YGXIIPAH0@Z
?GetShaderSource@gl@@YGXIHPAHPAD@Z
?GetShaderiv@gl@@YGXIIPAH@Z
?GetString@gl@@YGPBEI@Z
?GetStringi@gl@@YGPBEII@Z
?GetSyncAttrib@egl@@YGIPAX0HPAH@Z
?GetSynciv@gl@@YGXPAU__GLsync@@IHPAH1@Z
?GetTexParameterfv@gl@@YGXIIPAM@Z
?GetTexParameteriv@gl@@YGXIIPAH@Z
?GetTransformFeedbackVarying@gl@@YGXIIHPAH0PAIPAD@Z
?GetTranslatedShaderSourceANGLE@gl@@YGXIHPAHPAD@Z
?GetUniformBlockIndex@gl@@YGIIPBD@Z
?GetUniformIndices@gl@@YGXIHPBQBDPAI@Z
?GetUniformLocation@gl@@YGHIPBD@Z
?GetUniformfv@gl@@YGXIHPAM@Z
?GetUniformiv@gl@@YGXIHPAH@Z
?GetUniformuiv@gl@@YGXIHPAI@Z
?GetVertexAttribIiv@gl@@YGXIIPAH@Z
?GetVertexAttribIuiv@gl@@YGXIIPAI@Z
?GetVertexAttribPointerv@gl@@YGXIIPAPAX@Z
?GetVertexAttribfv@gl@@YGXIIPAM@Z
?GetVertexAttribiv@gl@@YGXIIPAH@Z
?GetnUniformfvEXT@gl@@YGXIHHPAM@Z
?GetnUniformivEXT@gl@@YGXIHHPAH@Z
?Hint@gl@@YGXII@Z
?Initialize@egl@@YGIPAXPAH1@Z
?InvalidateFramebuffer@gl@@YGXIHPBI@Z
?InvalidateSubFramebuffer@gl@@YGXIHPBIHHHH@Z
?IsBuffer@gl@@YGEI@Z
?IsEnabled@gl@@YGEI@Z
?IsFenceNV@gl@@YGEI@Z
?IsFramebuffer@gl@@YGEI@Z
?IsProgram@gl@@YGEI@Z
?IsQuery@gl@@YGEI@Z
?IsQueryEXT@gl@@YGEI@Z
?IsRenderbuffer@gl@@YGEI@Z
?IsSampler@gl@@YGEI@Z
?IsShader@gl@@YGEI@Z
?IsSync@gl@@YGEPAU__GLsync@@@Z
?IsTexture@gl@@YGEI@Z
?IsTransformFeedback@gl@@YGEI@Z
?IsVertexArray@gl@@YGEI@Z
?LineWidth@gl@@YGXM@Z
?LinkProgram@gl@@YGXI@Z
?MakeCurrent@egl@@YGIPAX000@Z
?MapBufferOES@gl@@YGPAXII@Z
?MapBufferRange@gl@@YGPAXIJJI@Z
?MapBufferRangeEXT@gl@@YGPAXIJJI@Z
?PauseTransformFeedback@gl@@YGXXZ
?PixelStorei@gl@@YGXIH@Z
?PolygonOffset@gl@@YGXMM@Z
?PostSubBufferNV@egl@@YGIPAX0HHHH@Z
?ProgramBinary@gl@@YGXIIPBXH@Z
?ProgramBinaryOES@gl@@YGXIIPBXH@Z
?ProgramParameteri@gl@@YGXIIH@Z
?QueryAPI@egl@@YGIXZ
?QueryContext@egl@@YGIPAX0HPAH@Z
?QueryString@egl@@YGPBDPAXH@Z
?QuerySurface@egl@@YGIPAX0HPAH@Z
?QuerySurfacePointerANGLE@egl@@YGIPAX0HPAPAX@Z
?ReadBuffer@gl@@YGXI@Z
?ReadPixels@gl@@YGXHHHHIIPAX@Z
?ReadnPixelsEXT@gl@@YGXHHHHIIHPAX@Z
?ReleaseShaderCompiler@gl@@YGXXZ
?ReleaseTexImage@egl@@YGIPAX0H@Z
?ReleaseThread@egl@@YGIXZ
?RenderbufferStorage@gl@@YGXIIHH@Z
?RenderbufferStorageMultisample@gl@@YGXIHIHH@Z
?RenderbufferStorageMultisampleANGLE@gl@@YGXIHIHH@Z
?ResumeTransformFeedback@gl@@YGXXZ
?SampleCoverage@gl@@YGXME@Z
?SamplerParameterf@gl@@YGXIIM@Z
?SamplerParameterfv@gl@@YGXIIPBM@Z
?SamplerParameteri@gl@@YGXIIH@Z
?SamplerParameteriv@gl@@YGXIIPBH@Z
?Scissor@gl@@YGXHHHH@Z
?SetFenceNV@gl@@YGXII@Z
?ShaderBinary@gl@@YGXHPBIIPBXH@Z
?ShaderSource@gl@@YGXIHPBQBDPBH@Z
?StencilFunc@gl@@YGXIHI@Z
?StencilFuncSeparate@gl@@YGXIIHI@Z
?StencilMask@gl@@YGXI@Z
?StencilMaskSeparate@gl@@YGXII@Z
?StencilOp@gl@@YGXIII@Z
?StencilOpSeparate@gl@@YGXIIII@Z
?SurfaceAttrib@egl@@YGIPAX0HH@Z
?SwapBuffers@egl@@YGIPAX0@Z
?SwapInterval@egl@@YGIPAXH@Z
?Terminate@egl@@YGIPAX@Z
?TestFenceNV@gl@@YGEI@Z
?TexImage2D@gl@@YGXIHHHHHIIPBX@Z
?TexImage3D@gl@@YGXIHHHHHHIIPBX@Z
?TexParameterf@gl@@YGXIIM@Z
?TexParameterfv@gl@@YGXIIPBM@Z
?TexParameteri@gl@@YGXIIH@Z
?TexParameteriv@gl@@YGXIIPBH@Z
?TexStorage2D@gl@@YGXIHIHH@Z
?TexStorage2DEXT@gl@@YGXIHIHH@Z
?TexStorage3D@gl@@YGXIHIHHH@Z
?TexSubImage2D@gl@@YGXIHHHHHIIPBX@Z
?TexSubImage3D@gl@@YGXIHHHHHHHIIPBX@Z
?TransformFeedbackVaryings@gl@@YGXIHPBQBDI@Z
?Uniform1f@gl@@YGXHM@Z
?Uniform1fv@gl@@YGXHHPBM@Z
?Uniform1i@gl@@YGXHH@Z
?Uniform1iv@gl@@YGXHHPBH@Z
?Uniform1ui@gl@@YGXHI@Z
?Uniform1uiv@gl@@YGXHHPBI@Z
?Uniform2f@gl@@YGXHMM@Z
?Uniform2fv@gl@@YGXHHPBM@Z
?Uniform2i@gl@@YGXHHH@Z
?Uniform2iv@gl@@YGXHHPBH@Z
?Uniform2ui@gl@@YGXHII@Z
?Uniform2uiv@gl@@YGXHHPBI@Z
?Uniform3f@gl@@YGXHMMM@Z
?Uniform3fv@gl@@YGXHHPBM@Z
?Uniform3i@gl@@YGXHHHH@Z
?Uniform3iv@gl@@YGXHHPBH@Z
?Uniform3ui@gl@@YGXHIII@Z
?Uniform3uiv@gl@@YGXHHPBI@Z
?Uniform4f@gl@@YGXHMMMM@Z
?Uniform4fv@gl@@YGXHHPBM@Z
?Uniform4i@gl@@YGXHHHHH@Z
?Uniform4iv@gl@@YGXHHPBH@Z
?Uniform4ui@gl@@YGXHIIII@Z
?Uniform4uiv@gl@@YGXHHPBI@Z
?UniformBlockBinding@gl@@YGXIII@Z
?UniformMatrix2fv@gl@@YGXHHEPBM@Z
?UniformMatrix2x3fv@gl@@YGXHHEPBM@Z
?UniformMatrix2x4fv@gl@@YGXHHEPBM@Z
?UniformMatrix3fv@gl@@YGXHHEPBM@Z
?UniformMatrix3x2fv@gl@@YGXHHEPBM@Z
?UniformMatrix3x4fv@gl@@YGXHHEPBM@Z
?UniformMatrix4fv@gl@@YGXHHEPBM@Z
?UniformMatrix4x2fv@gl@@YGXHHEPBM@Z
?UniformMatrix4x3fv@gl@@YGXHHEPBM@Z
?UnmapBuffer@gl@@YGEI@Z
?UnmapBufferOES@gl@@YGEI@Z
?UseProgram@gl@@YGXI@Z
?ValidateProgram@gl@@YGXI@Z
?VertexAttrib1f@gl@@YGXIM@Z
?VertexAttrib1fv@gl@@YGXIPBM@Z
?VertexAttrib2f@gl@@YGXIMM@Z
?VertexAttrib2fv@gl@@YGXIPBM@Z
?VertexAttrib3f@gl@@YGXIMMM@Z
?VertexAttrib3fv@gl@@YGXIPBM@Z
?VertexAttrib4f@gl@@YGXIMMMM@Z
?VertexAttrib4fv@gl@@YGXIPBM@Z
?VertexAttribDivisor@gl@@YGXII@Z
?VertexAttribDivisorANGLE@gl@@YGXII@Z
?VertexAttribI4i@gl@@YGXIHHHH@Z
?VertexAttribI4iv@gl@@YGXIPBH@Z
?VertexAttribI4ui@gl@@YGXIIIII@Z
?VertexAttribI4uiv@gl@@YGXIPBI@Z
?VertexAttribIPointer@gl@@YGXIHIHPBX@Z
?VertexAttribPointer@gl@@YGXIHIEHPBX@Z
?Viewport@gl@@YGXHHHH@Z
?WaitClient@egl@@YGIXZ
?WaitGL@egl@@YGIXZ
?WaitNative@egl@@YGIH@Z
?WaitSync@egl@@YGIPAX0H@Z
?WaitSync@gl@@YGXPAU__GLsync@@I_K@Z
SetTraceFunctionPointers
glActiveTexture
glAttachShader
glBeginQuery
glBeginQueryEXT
glBeginTransformFeedback
glBindAttribLocation
glBindBuffer
glBindBufferBase
glBindBufferRange
glBindFramebuffer
glBindRenderbuffer
glBindSampler
glBindTexture
glBindTransformFeedback
glBindVertexArray
glBlendColor
glBlendEquation
glBlendEquationSeparate
glBlendFunc
glBlendFuncSeparate
glBlitFramebuffer
glBlitFramebufferANGLE
glBufferData
glBufferSubData
glCheckFramebufferStatus
glClear
glClearBufferfi
glClearBufferfv
glClearBufferiv
glClearBufferuiv
glClearColor
glClearDepthf
glClearStencil
glClientWaitSync
glColorMask
glCompileShader
glCompressedTexImage2D
glCompressedTexImage3D
glCompressedTexSubImage2D
glCompressedTexSubImage3D
glCopyBufferSubData
glCopyTexImage2D
glCopyTexSubImage2D
glCopyTexSubImage3D
glCreateProgram
glCreateShader
glCullFace
glDeleteBuffers
glDeleteFencesNV
glDeleteFramebuffers
glDeleteProgram
glDeleteQueries
glDeleteQueriesEXT
glDeleteRenderbuffers
glDeleteSamplers
glDeleteShader
glDeleteSync
glDeleteTextures
glDeleteTransformFeedbacks
glDeleteVertexArrays
glDepthFunc
glDepthMask
glDepthRangef
glDetachShader
glDisable
glDisableVertexAttribArray
glDrawArrays
glDrawArraysInstanced
glDrawArraysInstancedANGLE
glDrawBuffers
glDrawBuffersEXT
glDrawElements
glDrawElementsInstanced
glDrawElementsInstancedANGLE
glDrawRangeElements
glEnable
glEnableVertexAttribArray
glEndQuery
glEndQueryEXT
glEndTransformFeedback
glFenceSync
glFinish
glFinishFenceNV
glFlush
glFlushMappedBufferRange
glFlushMappedBufferRangeEXT
glFramebufferRenderbuffer
glFramebufferTexture2D
glFramebufferTextureLayer
glFrontFace
glGenBuffers
glGenFencesNV
glGenFramebuffers
glGenQueries
glGenQueriesEXT
glGenRenderbuffers
glGenSamplers
glGenTextures
glGenTransformFeedbacks
glGenVertexArrays
glGenerateMipmap
glGetActiveAttrib
glGetActiveUniform
glGetActiveUniformBlockName
glGetActiveUniformBlockiv
glGetActiveUniformsiv
glGetAttachedShaders
glGetAttribLocation
glGetBooleanv
glGetBufferParameteri64v
glGetBufferParameteriv
glGetBufferPointerv
glGetBufferPointervOES
glGetError
glGetFenceivNV
glGetFloatv
glGetFragDataLocation
glGetFramebufferAttachmentParameteriv
glGetGraphicsResetStatusEXT
glGetInteger64i_v
glGetInteger64v
glGetIntegeri_v
glGetIntegerv
glGetInternalformativ
glGetProgramBinary
glGetProgramBinaryOES
glGetProgramInfoLog
glGetProgramiv
glGetQueryObjectuiv
glGetQueryObjectuivEXT
glGetQueryiv
glGetQueryivEXT
glGetRenderbufferParameteriv
glGetSamplerParameterfv
glGetSamplerParameteriv
glGetShaderInfoLog
glGetShaderPrecisionFormat
glGetShaderSource
glGetShaderiv
glGetString
glGetStringi
glGetSynciv
glGetTexParameterfv
glGetTexParameteriv
glGetTransformFeedbackVarying
glGetTranslatedShaderSourceANGLE
glGetUniformBlockIndex
glGetUniformIndices
glGetUniformLocation
glGetUniformfv
glGetUniformiv
glGetUniformuiv
glGetVertexAttribIiv
glGetVertexAttribIuiv
glGetVertexAttribPointerv
glGetVertexAttribfv
glGetVertexAttribiv
glGetnUniformfvEXT
glGetnUniformivEXT
glHint
glInvalidateFramebuffer
glInvalidateSubFramebuffer
glIsBuffer
glIsEnabled
glIsFenceNV
glIsFramebuffer
glIsProgram
glIsQuery
glIsQueryEXT
glIsRenderbuffer

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 258KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libeay64.dll
.dll windows:6 windows x86 arch:x86

0ab3c0ccca6cffc5857fa9eaa9166822

Code Sign

e4:12:82:66:79:32:d8:54:6f:96:d4:d4:62:32:c0:6f
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/09/2019, 00:00

Not After

08/09/2024, 23:59

Subject

CN=Artem Shevchenko,O=Artem Shevchenko,POSTALCODE=04050,STREET=Melnikova st. 15\, 5 apt.,L=Kiev,ST=Kiev,C=UA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

85:cb:51:af:bb:c7:e1:d2:fe:91:ea:b6:8f:f1:94:2c:2c:05:c1:6c
Signer

Actual PE Digest

85:cb:51:af:bb:c7:e1:d2:fe:91:ea:b6:8f:f1:94:2c:2c:05:c1:6c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\bas\browserautomationstudiobuild\build32\builddevrelease\openssl\src\openssl-1.0.1f\out32dll\libeay32.pdb

Imports

ws2_32

sendto
recvfrom
WSACleanup
WSAStartup
getservbyname
gethostbyname
ntohs
ntohl
listen
getsockopt
ioctlsocket
bind
accept
socket
setsockopt
htons
htonl
connect
WSAGetLastError
WSASetLastError
shutdown
send
recv
closesocket

gdi32

SelectObject
GetDeviceCaps
GetBitmapBits
DeleteObject
DeleteDC
CreateDCA
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetObjectA

advapi32

RegisterEventSourceA
DeregisterEventSource
ReportEventA

user32

GetDesktopWindow
MessageBoxA
GetUserObjectInformationW
GetProcessWindowStation

msvcr120

__clean_type_info_names_internal
_onexit
_snprintf
_exit
getenv
strtoul
wcsstr
__iob_func
sscanf
vfprintf
_vsnprintf
raise
realloc
malloc
free
memcpy
_localtime64
_time64
memset
_gmtime64
_stricmp
_strnicmp
_errno
strncpy
memmove
_read
_write
isdigit
isxdigit
fprintf
atoi
sprintf
strstr
fputs
fclose
feof
ferror
fflush
fgets
_fileno
fopen
fread
fseek
ftell
fwrite
_wfopen
_setmode
strchr
perror
_ftime64
qsort
strcmp
_fdopen
_chmod
_open
_stat64i32
strerror
isspace
isalnum
tolower
strncmp
isupper
strrchr
exit
strtol
memchr
signal
_getch
printf
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_lock
_unlock
_calloc_crt
__dllonexit

kernel32

FreeLibrary
CloseHandle
FindNextFileA
FindFirstFileA
LoadLibraryA
GetVersion
GetCurrentThreadId
GetLastError
GetFileType
GetStdHandle
SetLastError
MultiByteToWideChar
QueryPerformanceCounter
GetCurrentProcessId
GetTickCount
GetVersionExA
GlobalMemoryStatus
FlushConsoleInputBuffer
IsDebuggerPresent
EncodePointer
IsProcessorFeaturePresent
DecodePointer
GetSystemTimeAsFileTime
FindClose
GetProcAddress
GetModuleHandleA
ExitProcess

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
AES_bi_ige_encrypt
AES_cbc_encrypt
AES_cfb128_encrypt
AES_cfb1_encrypt
AES_cfb8_encrypt
AES_ctr128_encrypt
AES_decrypt
AES_ecb_encrypt
AES_encrypt
AES_ige_encrypt
AES_ofb128_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
AES_unwrap_key
AES_wrap_key
ASN1_ANY_it
ASN1_BIT_STRING_check
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_adj
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PCTX_free
ASN1_PCTX_get_cert_flags
ASN1_PCTX_get_flags
ASN1_PCTX_get_nm_flags
ASN1_PCTX_get_oid_flags
ASN1_PCTX_get_str_flags
ASN1_PCTX_new
ASN1_PCTX_set_cert_flags
ASN1_PCTX_set_flags
ASN1_PCTX_set_nm_flags
ASN1_PCTX_set_oid_flags
ASN1_PCTX_set_str_flags
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SEQUENCE_ANY_it
ASN1_SEQUENCE_it
ASN1_SET_ANY_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_cmp
ASN1_STRING_copy
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_free
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set0
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_adj
ASN1_TIME_check
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TIME_set_string
ASN1_TIME_to_generalizedtime
ASN1_TYPE_cmp
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_set
ASN1_TYPE_set1
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_adj
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_add_oid_module
ASN1_bn_print
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_fp
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_pack
ASN1_item_print
ASN1_item_sign
ASN1_item_sign_ctx
ASN1_item_unpack
ASN1_item_verify
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_pack_string
ASN1_parse
ASN1_parse_dump
ASN1_primitive_free
ASN1_primitive_new
ASN1_put_eoc
ASN1_put_object
ASN1_seq_pack
ASN1_seq_unpack
ASN1_sign
ASN1_tag2bit
ASN1_tag2str
ASN1_template_d2i
ASN1_template_free
ASN1_template_i2d
ASN1_template_new
ASN1_unpack_string
ASN1_verify
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIGNUM_it
BIO_accept
BIO_asn1_get_prefix
BIO_asn1_get_suffix
BIO_asn1_set_prefix
BIO_asn1_set_suffix
BIO_callback_ctrl
BIO_clear_flags
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_dgram_non_fatal_error
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_asn1
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_callback
BIO_get_callback_arg
BIO_get_ex_data
BIO_get_ex_new_index
BIO_get_host_ip
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_gethostbyname
BIO_gets
BIO_indent
BIO_int_ctrl
BIO_method_name
BIO_method_type
BIO_new
BIO_new_CMS
BIO_new_NDEF
BIO_new_PKCS7
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_dgram
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_datagram
BIO_s_fd
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_socket
BIO_set
BIO_set_callback
BIO_set_callback_arg
BIO_set_cipher
BIO_set_ex_data
BIO_set_flags
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_cleanup
BIO_sock_error
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket_ioctl
BIO_socket_nbio
BIO_test_flags
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_get_thread_id
BN_BLINDING_invert
BN_BLINDING_invert_ex
BN_BLINDING_new
BN_BLINDING_set_flags
BN_BLINDING_set_thread_id
BN_BLINDING_thread_id
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_init
BN_CTX_new
BN_CTX_start
BN_GENCB_call
BN_GF2m_add
BN_GF2m_arr2poly
BN_GF2m_mod
BN_GF2m_mod_arr
BN_GF2m_mod_div
BN_GF2m_mod_div_arr
BN_GF2m_mod_exp
BN_GF2m_mod_exp_arr
BN_GF2m_mod_inv
BN_GF2m_mod_inv_arr
BN_GF2m_mod_mul
BN_GF2m_mod_mul_arr
BN_GF2m_mod_solve_quad
BN_GF2m_mod_solve_quad_arr
BN_GF2m_mod_sqr
BN_GF2m_mod_sqr_arr
BN_GF2m_mod_sqrt
BN_GF2m_mod_sqrt_arr
BN_GF2m_poly2arr
BN_MONT_CTX_copy
BN_MONT_CTX_free
BN_MONT_CTX_init
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_MONT_CTX_set_locked
BN_RECP_CTX_free
BN_RECP_CTX_init
BN_RECP_CTX_new
BN_RECP_CTX_set
BN_X931_derive_prime_ex
BN_X931_generate_Xpq
BN_X931_generate_prime_ex
BN_add
BN_add_word
BN_asc2bn
BN_bin2bn
BN_bn2bin
BN_bn2dec
BN_bn2hex
BN_bn2mpi
BN_bntest_rand
BN_clear
BN_clear_bit
BN_clear_free
BN_cmp
BN_copy
BN_dec2bn
BN_div
BN_div_recp
BN_div_word
BN_dup
BN_exp
BN_free
BN_from_montgomery
BN_gcd
BN_generate_prime
BN_generate_prime_ex
BN_get0_nist_prime_192
BN_get0_nist_prime_224
BN_get0_nist_prime_256
BN_get0_nist_prime_384
BN_get0_nist_prime_521
BN_get_params
BN_get_word
BN_hex2bn
BN_init
BN_is_bit_set
BN_is_prime
BN_is_prime_ex
BN_is_prime_fasttest
BN_is_prime_fasttest_ex
BN_kronecker
BN_lshift
BN_lshift1
BN_mask_bits
BN_mod_add
BN_mod_add_quick
BN_mod_exp
BN_mod_exp2_mont
BN_mod_exp_mont
BN_mod_exp_mont_consttime
BN_mod_exp_mont_word
BN_mod_exp_recp
BN_mod_exp_simple
BN_mod_inverse
BN_mod_lshift
BN_mod_lshift1
BN_mod_lshift1_quick
BN_mod_lshift_quick
BN_mod_mul
BN_mod_mul_montgomery
BN_mod_mul_reciprocal
BN_mod_sqr
BN_mod_sqrt
BN_mod_sub
BN_mod_sub_quick
BN_mod_word
BN_mpi2bn
BN_mul
BN_mul_word
BN_new
BN_nist_mod_192
BN_nist_mod_224
BN_nist_mod_256
BN_nist_mod_384
BN_nist_mod_521
BN_nnmod
BN_num_bits
BN_num_bits_word
BN_options
BN_print
BN_print_fp
BN_pseudo_rand
BN_pseudo_rand_range
BN_rand
BN_rand_range
BN_reciprocal
BN_rshift
BN_rshift1
BN_set_bit
BN_set_negative
BN_set_params
BN_set_word
BN_sqr
BN_sub
BN_sub_word
BN_swap
BN_to_ASN1_ENUMERATED
BN_to_ASN1_INTEGER
BN_uadd
BN_ucmp
BN_usub
BN_value_one
BUF_MEM_free
BUF_MEM_grow
BUF_MEM_grow_clean
BUF_MEM_new

Sections

.text
Size: 759KB - Virtual size: 759KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 319KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
platform/win32.dll
.dll windows:4 windows x86 arch:x86

348455ac79d3a5ef49002e19f2d2acef

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

49:61:ec:fc:88:b7:58:eb:c2:d6:cb:cf:d8:90:0f:b2
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/04/2015, 00:00

Not After

22/04/2017, 23:59

Subject

CN=Awesomium Technologies LLC,OU=Awesomium Technologies LLC,O=Awesomium Technologies LLC,POSTALCODE=77095,STREET=15822 Jamie Lee Dr.,L=Houston,ST=TX,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

fc:02:44:82:ee:02:70:74:f1:fc:6d:17:dc:f0:e3:94:d9:ea:5f:f9
Signer

Actual PE Digest

fc:02:44:82:ee:02:70:74:f1:fc:6d:17:dc:f0:e3:94:d9:ea:5f:f9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileMappingA
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetConsoleScreenBufferInfo
GetLastError
GetModuleHandleA
GetProcAddress
GetStdHandle
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MapViewOfFile
MultiByteToWideChar
SetConsoleTextAttribute
Sleep
TlsGetValue
UnmapViewOfFile
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

_close
_fstat
_isatty
_open
_read
__dllonexit
__lc_codepage
__mb_cur_max
_errno
_get_osfhandle
_iob
_isctype
_pctype
_stricmp
_strnicmp
_winmajor
abort
acos
asin
atan
bsearch
calloc
ceil
clock
cos
cosh
exp
fflush
floor
fputc
fputs
free
frexp
fwrite
getenv
gmtime
ldexp
localeconv
localtime
log
malloc
memcpy
memset
mktime
pow
realloc
sin
sinh
sqrt
strchr
strcmp
strcpy
strlen
strspn
strtol
strtoul
tan
tanh
time
toupper
vfprintf
wcslen

Exports

Exports

av_add_q
av_adler32_update
av_aes_crypt
av_aes_init
av_aes_size
av_base64_decode
av_base64_encode
av_bmg_get
av_compare_mod
av_compare_ts
av_crc
av_crc_get_table
av_crc_init
av_d2q
av_d2str
av_dbl2ext
av_dbl2int
av_default_item_name
av_des_crypt
av_des_init
av_dict_copy
av_dict_free
av_dict_get
av_dict_set
av_div_q
av_dynarray_add
av_eval_expr
av_evaluate_lls
av_expr_eval
av_expr_free
av_expr_parse
av_expr_parse_and_eval
av_ext2dbl
av_fifo_alloc
av_fifo_drain
av_fifo_free
av_fifo_generic_read
av_fifo_generic_write
av_fifo_realloc2
av_fifo_reset
av_fifo_size
av_fifo_space
av_file_map
av_file_unmap
av_find_info_tag
av_find_nearest_q_idx
av_find_opt
av_flt2int
av_force_cpu_flags
av_free
av_free_expr
av_freep
av_gcd
av_get_bits_per_pixel
av_get_bits_per_sample_fmt
av_get_bytes_per_sample
av_get_channel_layout
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_cpu_flags
av_get_double
av_get_int
av_get_picture_type_char
av_get_pix_fmt
av_get_pix_fmt_name
av_get_pix_fmt_string
av_get_q
av_get_random_seed
av_get_sample_fmt
av_get_sample_fmt_name
av_get_sample_fmt_string
av_get_string
av_get_token
av_image_alloc
av_image_check_size
av_image_copy
av_image_copy_plane
av_image_fill_linesizes
av_image_fill_max_pixsteps
av_image_fill_pointers
av_image_get_linesize
av_init_lls
av_int2dbl
av_int2flt
av_lfg_init
av_log
av_log_default_callback
av_log_get_level
av_log_set_callback
av_log_set_flags
av_log_set_level
av_lzo1x_decode
av_malloc
av_mallocz
av_md5_final
av_md5_init
av_md5_size
av_md5_sum
av_md5_update
av_memcpy_backptr
av_mul_q
av_nearer_q
av_next_option
av_opt_find
av_opt_flag_is_set
av_opt_free
av_opt_set_defaults
av_opt_set_defaults2
av_opt_set_dict
av_opt_show2
av_parse_and_eval_expr
av_parse_color
av_parse_expr
av_parse_time
av_parse_video_rate
av_parse_video_size
av_pix_fmt_descriptors
av_rc4_crypt
av_rc4_init
av_read_image_line
av_realloc
av_reduce
av_rescale
av_rescale_q
av_rescale_rnd
av_reverse
av_samples_alloc
av_samples_fill_arrays
av_set_double
av_set_int
av_set_options_string
av_set_q
av_set_string3
av_sha_final
av_sha_init
av_sha_size
av_sha_update
av_solve_lls
av_strdup
av_strerror
av_stristart
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strstart
av_strtod
av_sub_q
av_tree_destroy
av_tree_enumerate
av_tree_find
av_tree_insert
av_tree_node_size
av_update_lls
av_vlog
av_write_image_line
avutil_configuration
avutil_license
avutil_version
ff_get_cpu_flags_x86
ff_inverse
ff_log2_tab
ff_set_systematic_pal2
ff_sqrt_tab

Sections

.text
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 368B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 17KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
platform/win64.dll
.dll windows:6 windows x86 arch:x86

9d6607e0bc6f62711cae201eebf31e8b

Code Sign

e4:12:82:66:79:32:d8:54:6f:96:d4:d4:62:32:c0:6f
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/09/2019, 00:00

Not After

08/09/2024, 23:59

Subject

CN=Artem Shevchenko,O=Artem Shevchenko,POSTALCODE=04050,STREET=Melnikova st. 15\, 5 apt.,L=Kiev,ST=Kiev,C=UA

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

c2:81:44:fe:7e:1a:60:d9:7e:cc:df:85:44:0e:fc:72:47:f5:ed:bc
Signer

Actual PE Digest

c2:81:44:fe:7e:1a:60:d9:7e:cc:df:85:44:0e:fc:72:47:f5:ed:bc

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

GetDeviceCaps
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCW
DeleteDC
SelectObject
CreateFontIndirectW
GetCharABCWidthsW
GetCharABCWidthsFloatW
GetFontData
GetGlyphOutlineW
GetOutlineTextMetricsW
GetStockObject
GetTextExtentPoint32W
GetCharABCWidthsI
SetBkMode
SetGraphicsMode
SetTextColor
OffsetRgn
GetTextMetricsW
SetWorldTransform
ExtTextOutW
GetTextFaceW
EnumFontFamiliesExW
AddFontResourceExW
RemoveFontResourceExW
AddFontMemResourceEx
RemoveFontMemResourceEx
GetObjectW
GetBitmapBits
CreateDIBSection
GdiFlush
ChoosePixelFormat
SetPixelFormat
DescribePixelFormat
GetPixelFormat
SwapBuffers
DeleteObject
CreateRectRgn
SetTextAlign
CombineRgn

ole32

OleGetClipboard
OleSetClipboard
CoCreateInstance
CoInitialize
CoTaskMemFree
ReleaseStgMedium
CoGetMalloc
OleFlushClipboard
OleUninitialize
OleInitialize
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
CoTaskMemAlloc
OleIsCurrentClipboard
CoCreateGuid
DoDragDrop

user32

GetCursor
SetCursorPos
GetClipboardFormatNameW
RegisterClipboardFormatW
LoadCursorW
GetWindowTextW
EnumWindows
CreateCursor
CreateIconIndirect
GetIconInfo
GetCursorInfo
RegisterWindowMessageW
CreateCaret
DestroyCaret
HideCaret
SetCaretPos
GetSysColor
NotifyWinEvent
ChangeClipboardChain
SetClipboardViewer
RegisterClassW
MessageBeep
GetAsyncKeyState
GetMessageExtraInfo
TrackMouseEvent
SetMenuItemInfoW
TrackPopupMenuEx
GetMenu
MapVirtualKeyW
ToUnicode
ToAscii
GetKeyboardState
GetKeyState
IsZoomed
PeekMessageW
GetKeyboardLayout
EnumDisplayMonitors
GetMonitorInfoW
LoadImageW
GetSysColorBrush
ChildWindowFromPointEx
GetCursorPos
GetClientRect
GetFocus
RegisterClassExW
GetClassInfoW
UnregisterClassW
GetKeyboardLayoutList
SystemParametersInfoW
GetDoubleClickTime
GetAncestor
DestroyIcon
DestroyCursor
SetParent
GetParent
GetDesktopWindow
SetWindowLongW
GetWindowLongW
ScreenToClient
ClientToScreen
GetCaretBlinkTime
SetCursor
AdjustWindowRectEx
GetWindowRect
SetWindowTextW
InvalidateRect
SetWindowRgn
GetUpdateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
SetForegroundWindow
GetForegroundWindow
EnableMenuItem
GetSystemMenu
GetSystemMetrics
ReleaseCapture
SetCapture
GetCapture
SetFocus
IsIconic
IsWindowVisible
SetWindowPlacement
GetWindowPlacement
SetWindowPos
MoveWindow
FlashWindowEx
ShowWindow
DestroyWindow
IsChild
CreateWindowExW
DefWindowProcW
PostMessageW
SendMessageW
GetWindowThreadProcessId
RealGetWindowClassW
LoadIconW

imm32

ImmGetCompositionStringW
ImmNotifyIME
ImmSetCompositionWindow
ImmSetCandidateWindow
ImmReleaseContext
ImmGetContext
ImmGetDefaultIMEWnd
ImmAssociateContext
ImmGetVirtualKey

winmm

PlaySoundW

oleaut32

VariantInit
SysStringLen
SysAllocString
SystemTimeToVariantTime
SysFreeString
SysAllocStringLen
VariantChangeType

shell32

SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteW
SHGetFileInfoW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

qt5gui

?shareHandle@QOpenGLContext@@QBEPAVQPlatformOpenGLContext@@XZ
??0QPlatformOpenGLContext@@QAE@XZ
??1QPlatformOpenGLContext@@UAE@XZ
?parseOpenGLVersion@QPlatformOpenGLContext@@SA_NABVQByteArray@@AAH1@Z
?defaultFramebufferObject@QPlatformOpenGLContext@@UBEIPAVQPlatformSurface@@@Z
?initialize@QPlatformOpenGLContext@@UAEXXZ
?isSharing@QPlatformOpenGLContext@@UBE_NXZ
?isValid@QPlatformOpenGLContext@@UBE_NXZ
?setVersion@QSurfaceFormat@@QAEXHH@Z
?setOptions@QSurfaceFormat@@QAEXV?$QFlags@W4FormatOption@QSurfaceFormat@@@@@Z
?options@QSurfaceFormat@@QBE?AV?$QFlags@W4FormatOption@QSurfaceFormat@@@@XZ
?setSwapInterval@QSurfaceFormat@@QAEXH@Z
??6@YA?AVQDebug@@V0@ABVQColor@@@Z
?invalidate@QColor@@AAEXXZ
??6@YA?AVQDebug@@V0@ABVQImage@@@Z
??0QInternalMimeData@@QAE@XZ
??1QInternalMimeData@@UAE@XZ
??1QPlatformClipboard@@UAE@XZ
?emitChanged@QPlatformClipboard@@QAEXW4Mode@QClipboard@@@Z
?formats@QInternalMimeData@@UBE?AVQStringList@@XZ
?hasFormat@QInternalMimeData@@UBE_NABVQString@@@Z
?metaObject@QInternalMimeData@@UBEPBUQMetaObject@@XZ
?qt_metacall@QInternalMimeData@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QInternalMimeData@@UAEPAXPBD@Z
?retrieveData@QInternalMimeData@@MBE?AVQVariant@@ABVQString@@W4Type@2@@Z
?mimeData@QDrag@@QBEPAVQMimeData@@XZ
?pixmap@QDrag@@QBE?AVQPixmap@@XZ
?hotSpot@QDrag@@QBE?AVQPoint@@XZ
?dragCursor@QDrag@@QBE?AVQPixmap@@W4DropAction@Qt@@@Z
?supportedActions@QDrag@@QBE?AV?$QFlags@W4DropAction@Qt@@@@XZ
??1QPaintDevice@@UAE@XZ
??0QPixmap@@QAE@HH@Z
?width@QPixmap@@QBEHXZ
?height@QPixmap@@QBEHXZ
?devicePixelRatio@QPixmap@@QBENXZ
??1QWindow@@UAE@XZ
?setFormat@QWindow@@QAEXABVQSurfaceFormat@@@Z
?format@QWindow@@UBE?AVQSurfaceFormat@@XZ
?devicePixelRatio@QWindow@@QBENXZ
?setFramePosition@QWindow@@QAEXABVQPoint@@@Z
?resize@QWindow@@QAEXABVQSize@@@Z
?show@QWindow@@QAEXXZ
?isAccepted@QPlatformDropQtResponse@@QBE_NXZ
?acceptedAction@QPlatformDropQtResponse@@QBE?AW4DropAction@Qt@@XZ
?answerRect@QPlatformDragQtResponse@@QBE?AVQRect@@XZ
??0QPlatformDrag@@QAE@XZ
??1QPlatformDrag@@UAE@XZ
?currentDrag@QPlatformDrag@@QBEPAVQDrag@@XZ
?updateAction@QPlatformDrag@@QAEXW4DropAction@Qt@@@Z
?drawPixmap@QPainter@@QAEXABVQPointF@@ABVQPixmap@@@Z
?update@QPaintDeviceWindow@@QAEXXZ
??0QRasterWindow@@QAE@PAVQWindow@@@Z
?handleDrag@QWindowSystemInterface@@SA?AVQPlatformDragQtResponse@@PAVQWindow@@PBVQMimeData@@ABVQPoint@@V?$QFlags@W4DropAction@Qt@@@@@Z
?handleDrop@QWindowSystemInterface@@SA?AVQPlatformDropQtResponse@@PAVQWindow@@PBVQMimeData@@ABVQPoint@@V?$QFlags@W4DropAction@Qt@@@@@Z
?accessibleRoot@QWindow@@UBEPAVQAccessibleInterface@@XZ
?defaultAction@QPlatformDrag@@UBE?AW4DropAction@Qt@@V?$QFlags@W4DropAction@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z
?devType@QPaintDevice@@UBEHXZ
?event@QPaintDeviceWindow@@MAE_NPAVQEvent@@@Z
?exposeEvent@QPaintDeviceWindow@@MAEXPAVQExposeEvent@@@Z
?focusInEvent@QWindow@@MAEXPAVQFocusEvent@@@Z
?focusObject@QWindow@@UBEPAVQObject@@XZ
?focusOutEvent@QWindow@@MAEXPAVQFocusEvent@@@Z
?hideEvent@QWindow@@MAEXPAVQHideEvent@@@Z
?initPainter@QPaintDevice@@MBEXPAVQPainter@@@Z
?keyPressEvent@QWindow@@MAEXPAVQKeyEvent@@@Z
?keyReleaseEvent@QWindow@@MAEXPAVQKeyEvent@@@Z
?metaObject@QRasterWindow@@UBEPBUQMetaObject@@XZ
?metric@QRasterWindow@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?mouseDoubleClickEvent@QWindow@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QWindow@@MAEXPAVQMouseEvent@@@Z
?nativeHandle@QOpenGLContext@@QBE?AVQVariant@@XZ
?mouseReleaseEvent@QWindow@@MAEXPAVQMouseEvent@@@Z
?moveEvent@QWindow@@MAEXPAVQMoveEvent@@@Z
?nativeEvent@QWindow@@MAE_NABVQByteArray@@PAXPAJ@Z
?ownsDragObject@QPlatformDrag@@UBE_NXZ
?paintEngine@QPaintDeviceWindow@@EBEPAVQPaintEngine@@XZ
?qt_metacall@QRasterWindow@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QRasterWindow@@UAEPAXPBD@Z
?redirected@QRasterWindow@@MBEPAVQPaintDevice@@PAVQPoint@@@Z
?resizeEvent@QWindow@@MAEXPAVQResizeEvent@@@Z
?sharedPainter@QPaintDevice@@MBEPAVQPainter@@XZ
?showEvent@QWindow@@MAEXPAVQShowEvent@@@Z
?setNativeHandle@QOpenGLContext@@QAEXABVQVariant@@@Z
?surfaceHandle@QWindow@@EBEPAVQPlatformSurface@@XZ
?surfaceType@QWindow@@UBE?AW4SurfaceType@QSurface@@XZ
?tabletEvent@QWindow@@MAEXPAVQTabletEvent@@@Z
?touchEvent@QWindow@@MAEXPAVQTouchEvent@@@Z
?wheelEvent@QWindow@@MAEXPAVQWheelEvent@@@Z
?modifier_buttons@QGuiApplicationPrivate@@2V?$QFlags@W4KeyboardModifier@Qt@@@@A
?mouse_buttons@QGuiApplicationPrivate@@2V?$QFlags@W4MouseButton@Qt@@@@A
?virtualGeometry@QScreen@@QBE?AVQRect@@XZ
?handleTabletEvent@QWindowSystemInterface@@SAXPAVQWindow@@KABVQPointF@@1HHV?$QFlags@W4MouseButton@Qt@@@@NHHNNH_JV?$QFlags@W4KeyboardModifier@Qt@@@@@Z
?handleTabletEnterProximityEvent@QWindowSystemInterface@@SAXKHH_J@Z
?handleTabletLeaveProximityEvent@QWindowSystemInterface@@SAXKHH_J@Z
?tabletPressTarget@QGuiApplicationPrivate@@2PAVQWindow@@A
??0QPlatformSessionManager@@QAE@ABVQString@@0@Z
??1QPlatformSessionManager@@UAE@XZ
?discardCommand@QPlatformSessionManager@@UBE?AVQStringList@@XZ
?isPhase2@QPlatformSessionManager@@UBE_NXZ
?requestPhase2@QPlatformSessionManager@@UAEXXZ
?restartCommand@QPlatformSessionManager@@UBE?AVQStringList@@XZ
?restartHint@QPlatformSessionManager@@UBE?AW4RestartHint@QSessionManager@@XZ
?sessionId@QPlatformSessionManager@@UBE?AVQString@@XZ
?sessionKey@QPlatformSessionManager@@UBE?AVQString@@XZ
?setDiscardCommand@QPlatformSessionManager@@UAEXABVQStringList@@@Z
?setManagerProperty@QPlatformSessionManager@@UAEXABVQString@@0@Z
?setManagerProperty@QPlatformSessionManager@@UAEXABVQString@@ABVQStringList@@@Z
?setRestartCommand@QPlatformSessionManager@@UAEXABVQStringList@@@Z
?setRestartHint@QPlatformSessionManager@@UAEXW4RestartHint@QSessionManager@@@Z
?uniqueId@QAccessible@@SAIPAVQAccessibleInterface@@@Z
?registerAccessibleInterface@QAccessible@@SAIPAVQAccessibleInterface@@@Z
?platformNativeInterface@QGuiApplication@@SAPAVQPlatformNativeInterface@@XZ
??0QPlatformAccessibility@@QAE@XZ
?setActive@QPlatformAccessibility@@QAEX_N@Z
?cleanup@QPlatformAccessibility@@UAEXXZ
?initialize@QPlatformAccessibility@@UAEXXZ
?setRootObject@QPlatformAccessibility@@UAEXPAVQObject@@@Z
?platform_integration@QGuiApplicationPrivate@@2PAVQPlatformIntegration@@A
?accessibleInterface@QAccessible@@SAPAVQAccessibleInterface@@I@Z
?valueInterface@QAccessibleInterface@@QAEPAVQAccessibleValueInterface@@XZ
?actionInterface@QAccessibleInterface@@QAEPAVQAccessibleActionInterface@@XZ
??6@YA?AVQDebug@@V0@PBVQAccessibleInterface@@@Z
?rgb@QColor@@QBEIXZ
?textInterface@QAccessibleInterface@@QAEPAVQAccessibleTextInterface@@XZ
?editableTextInterface@QAccessibleInterface@@QAEPAVQAccessibleEditableTextInterface@@XZ
?tableInterface@QAccessibleInterface@@QAEPAVQAccessibleTableInterface@@XZ
?tableCellInterface@QAccessibleInterface@@QAEPAVQAccessibleTableCellInterface@@XZ
?tr@QAccessibleActionInterface@@SA?AVQString@@PBD0H@Z
?qAccessibleLocalizedActionDescription@@YA?AVQString@@ABV1@@Z
?text@QClipboard@@QBE?AVQString@@W4Mode@1@@Z
?setText@QClipboard@@QAEXABVQString@@W4Mode@1@@Z
?clipboard@QGuiApplication@@SAPAVQClipboard@@XZ
?qt_metacast@QPlatformIntegrationPlugin@@UAEPAXPBD@Z
?qt_metacall@QPlatformIntegrationPlugin@@UAEHW4Call@QMetaObject@@HPAPAX@Z
??0QPlatformIntegrationPlugin@@QAE@PAVQObject@@@Z
??1QPlatformIntegrationPlugin@@UAE@XZ
?create@QPlatformIntegrationPlugin@@UAEPAVQPlatformIntegration@@ABVQString@@ABVQStringList@@@Z
?staticMetaObject@QPlatformIntegrationPlugin@@2UQMetaObject@@B
??0QRegion@@QAE@ABV0@@Z
??_4QRegion@@QAEAAV0@ABVQRect@@@Z
??6@YA?AVQDebug@@V0@ABVQRegion@@@Z
?save@QImage@@QBE_NABVQString@@PBDH@Z
?toPixelFormat@QImage@@SA?AVQPixelFormat@@W4Format@1@@Z
?frameMargins@QWindow@@QBE?AVQMargins@@XZ
?frameGeometry@QWindow@@QBE?AVQRect@@XZ
?mousePressEvent@QWindow@@MAEXPAVQMouseEvent@@@Z
??1QPlatformBackingStore@@UAE@XZ
?window@QPlatformBackingStore@@QBEPAVQWindow@@XZ
?setCompositionMode@QPainter@@QAEXW4CompositionMode@1@@Z
?drawImage@QPainter@@QAEXABVQRectF@@ABVQImage@@0V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?fillRect@QPainter@@QAEXABVQRect@@ABVQColor@@@Z
?qt_scrollRectInImage@@YAXAAVQImage@@ABVQRect@@ABVQPoint@@@Z
?composeAndFlush@QPlatformBackingStore@@UAEXPAVQWindow@@ABVQRegion@@ABVQPoint@@PAVQPlatformTextureList@@PAVQOpenGLContext@@_N@Z
?endPaint@QPlatformBackingStore@@UAEXXZ
?graphicsBuffer@QPlatformBackingStore@@UBEPAVQPlatformGraphicsBuffer@@XZ
?toTexture@QPlatformBackingStore@@UBEIABVQRegion@@PAVQSize@@PAV?$QFlags@W4TextureFlag@QPlatformBackingStore@@@@@Z
??0QRasterPlatformPixmap@@QAE@W4PixelType@QPlatformPixmap@@@Z
??1QRasterPlatformPixmap@@UAE@XZ
?buffer@QRasterPlatformPixmap@@UAEPAVQImage@@XZ
?copy@QRasterPlatformPixmap@@UAEXPBVQPlatformPixmap@@ABVQRect@@@Z
?createCompatiblePlatformPixmap@QRasterPlatformPixmap@@UBEPAVQPlatformPixmap@@XZ
?devicePixelRatio@QRasterPlatformPixmap@@UBENXZ
?fill@QRasterPlatformPixmap@@UAEXABVQColor@@@Z
?fromData@QRasterPlatformPixmap@@UAE_NPBEIPBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?fromFile@QPlatformPixmap@@UAE_NABVQString@@PBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?fromImage@QRasterPlatformPixmap@@UAEXABVQImage@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?fromImageInPlace@QRasterPlatformPixmap@@UAEXAAVQImage@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?fromImageReader@QRasterPlatformPixmap@@UAEXPAVQImageReader@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?hasAlphaChannel@QRasterPlatformPixmap@@UBE_NXZ
?metric@QRasterPlatformPixmap@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?nativeResourceForScreen@QPlatformNativeInterface@@UAEPAXABVQByteArray@@PAVQScreen@@@Z
?nativeResourceFunctionForBackingStore@QPlatformNativeInterface@@UAEP6APAXPAVQBackingStore@@@ZABVQByteArray@@@Z
?nativeResourceFunctionForContext@QPlatformNativeInterface@@UAEP6APAXPAVQOpenGLContext@@@ZABVQByteArray@@@Z
?nativeResourceFunctionForIntegration@QPlatformNativeInterface@@UAEP6APAXXZABVQByteArray@@@Z
?nativeResourceFunctionForScreen@QPlatformNativeInterface@@UAEP6APAXPAVQScreen@@@ZABVQByteArray@@@Z
?nativeResourceFunctionForWindow@QPlatformNativeInterface@@UAEP6APAXPAVQWindow@@@ZABVQByteArray@@@Z
?paintEngine@QRasterPlatformPixmap@@UBEPAVQPaintEngine@@XZ
?resize@QRasterPlatformPixmap@@UAEXHH@Z
?scroll@QRasterPlatformPixmap@@UAE_NHHABVQRect@@@Z
?setDevicePixelRatio@QRasterPlatformPixmap@@UAEXN@Z
?toImage@QRasterPlatformPixmap@@UBE?AVQImage@@ABVQRect@@@Z
?toImage@QRasterPlatformPixmap@@UBE?AVQImage@@XZ
?transformed@QPlatformPixmap@@UBE?AVQPixmap@@ABVQTransform@@W4TransformationMode@Qt@@@Z
?handle@QBackingStore@@QBEPAVQPlatformBackingStore@@XZ
?qt_metacast@QPlatformInputContext@@UAEPAXPBD@Z
?qt_metacall@QPlatformInputContext@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?staticMetaObject@QPlatformInputContext@@2UQMetaObject@@B
??4QFont@@QAEAAV0@ABV0@@Z
?qt_metacast@QPlatformNativeInterface@@UAEPAXPBD@Z
?qt_metacall@QPlatformNativeInterface@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?staticMetaObject@QPlatformNativeInterface@@2UQMetaObject@@B
?subpixelAntialiasingTypeHint@QPlatformFontDatabase@@QBE?AW4SubpixelAntialiasingType@QFontEngine@@XZ
?sendWindowSystemEvents@QWindowSystemInterface@@SA_NV?$QFlags@W4ProcessEventsFlag@QEventLoop@@@@@Z
?increaseAction@QAccessibleActionInterface@@SAABVQString@@XZ
?decreaseAction@QAccessibleActionInterface@@SAABVQString@@XZ
?determinant@QTransform@@QBENXZ
?translate@QTransform@@QAEAAV1@NN@Z
??0QImage@@QAE@PBEHHHW4Format@0@P6AXPAX@Z2@Z
?copy@QImage@@QBE?AV1@ABVQRect@@@Z
?getGlyphPositions@QFontEngine@@QAEXABUQGlyphLayout@@ABVQTransform@@V?$QFlags@W4RenderFlag@QTextItem@@@@AAV?$QVarLengthArray@I$0BAA@@@AAV?$QVarLengthArray@UQFixedPoint@@$0BAA@@@@Z
?alphaRGBMapForGlyph@QFontEngine@@UAE?AVQImage@@IUQFixed@@ABVQTransform@@@Z
?harfbuzzFace@QFontEngine@@QBEPAXXZ
?qt_fontdata_from_index@@YA?AVQByteArray@@H@Z
?qt_addBitmapToPath@@YAXNNPBEHHHPAVQPainterPath@@@Z
?swapInterval@QSurfaceFormat@@QBEHXZ
?testOption@QSurfaceFormat@@QBE_NW4FormatOption@1@@Z
?setOption@QSurfaceFormat@@QAEXW4FormatOption@1@_N@Z
?setStereo@QSurfaceFormat@@QAEX_N@Z
?minorVersion@QSurfaceFormat@@QBEHXZ
?setMinorVersion@QSurfaceFormat@@QAEXH@Z
?majorVersion@QSurfaceFormat@@QBEHXZ
?setMajorVersion@QSurfaceFormat@@QAEXH@Z
?renderableType@QSurfaceFormat@@QBE?AW4RenderableType@1@XZ
?setRenderableType@QSurfaceFormat@@QAEXW4RenderableType@1@@Z
?profile@QSurfaceFormat@@QBE?AW4OpenGLContextProfile@1@XZ
?setProfile@QSurfaceFormat@@QAEXW4OpenGLContextProfile@1@@Z
?swapBehavior@QSurfaceFormat@@QBE?AW4SwapBehavior@1@XZ
?setSwapBehavior@QSurfaceFormat@@QAEXW4SwapBehavior@1@@Z
?samples@QSurfaceFormat@@QBEHXZ
?setSamples@QSurfaceFormat@@QAEXH@Z
?alphaBufferSize@QSurfaceFormat@@QBEHXZ
?setAlphaBufferSize@QSurfaceFormat@@QAEXH@Z
?blueBufferSize@QSurfaceFormat@@QBEHXZ
?setBlueBufferSize@QSurfaceFormat@@QAEXH@Z
?greenBufferSize@QSurfaceFormat@@QBEHXZ
?setGreenBufferSize@QSurfaceFormat@@QAEXH@Z
?redBufferSize@QSurfaceFormat@@QBEHXZ
?setRedBufferSize@QSurfaceFormat@@QAEXH@Z
?stencilBufferSize@QSurfaceFormat@@QBEHXZ
?setStencilBufferSize@QSurfaceFormat@@QAEXH@Z
?depthBufferSize@QSurfaceFormat@@QBEHXZ
?setDepthBufferSize@QSurfaceFormat@@QAEXH@Z
??4QSurfaceFormat@@QAEAAV0@ABV0@@Z
??0QSurfaceFormat@@QAE@XZ
?gpuFeatures@QOpenGLConfig@@SA?AV?$QSet@VQString@@@@ABUGpu@1@ABVQString@@@Z
??0Gpu@QOpenGLConfig@@QAE@ABU01@@Z
??1Gpu@QOpenGLConfig@@QAE@XZ
?fromDevice@Gpu@QOpenGLConfig@@SA?AU12@IIVQVersionNumber@@ABVQByteArray@@@Z
?equals@Gpu@QOpenGLConfig@@QBE_NABU12@@Z
?handle@QOpenGLContext@@QBEPAVQPlatformOpenGLContext@@XZ
?setDC@QRasterPaintEngine@@QAEXPAUHDC__@@@Z
??0QImage@@QAE@PAEHHW4Format@0@P6AXPAX@Z2@Z
?staticMetaObject@QFileDialogOptions@@2UQMetaObject@@B
?styleHint@QPlatformDialogHelper@@UBE?AVQVariant@@W4StyleHint@1@@Z
?qt_metacast@QPlatformFileDialogHelper@@UAEPAXPBD@Z
?qt_metacall@QPlatformFileDialogHelper@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?metaObject@QPlatformFileDialogHelper@@UBEPBUQMetaObject@@XZ
?isSupportedUrl@QPlatformFileDialogHelper@@UBE_NABVQUrl@@@Z
??1QPlatformFileDialogHelper@@UAE@XZ
??0QPlatformFileDialogHelper@@QAE@XZ
?filterSelected@QPlatformFileDialogHelper@@QAEXABVQString@@@Z
?directoryEntered@QPlatformFileDialogHelper@@QAEXABVQUrl@@@Z
?currentChanged@QPlatformFileDialogHelper@@QAEXABVQUrl@@@Z
?options@QPlatformFileDialogHelper@@QBEABV?$QSharedPointer@VQFileDialogOptions@@@@XZ
?initiallySelectedFiles@QFileDialogOptions@@QBE?AV?$QList@VQUrl@@@@XZ
?initiallySelectedNameFilter@QFileDialogOptions@@QBE?AVQString@@XZ
?initialDirectory@QFileDialogOptions@@QBE?AVQUrl@@XZ
?isLabelExplicitlySet@QFileDialogOptions@@QAE_NW4DialogLabel@1@@Z
?labelText@QFileDialogOptions@@QBE?AVQString@@W4DialogLabel@1@@Z
?defaultSuffix@QFileDialogOptions@@QBE?AVQString@@XZ
?nameFilters@QFileDialogOptions@@QBE?AVQStringList@@XZ
?acceptMode@QFileDialogOptions@@QBE?AW4AcceptMode@1@XZ
?fileMode@QFileDialogOptions@@QBE?AW4FileMode@1@XZ
?options@QFileDialogOptions@@QBE?AV?$QFlags@W4FileDialogOption@QFileDialogOptions@@@@XZ
?testOption@QFileDialogOptions@@QBE_NW4FileDialogOption@1@@Z
?windowTitle@QFileDialogOptions@@QBE?AVQString@@XZ
?reject@QPlatformDialogHelper@@QAEXXZ
?accept@QPlatformDialogHelper@@QAEXXZ
?standardButtonText@QPlatformTheme@@UBE?AVQString@@H@Z
?showPlatformMenuBar@QPlatformTheme@@UAEXXZ
?keyBindings@QPlatformTheme@@UBE?AV?$QList@VQKeySequence@@@@W4StandardKey@QKeySequence@@@Z
?createPlatformSystemTrayIcon@QPlatformTheme@@UBEPAVQPlatformSystemTrayIcon@@XZ
?createPlatformMenuItem@QPlatformTheme@@UBEPAVQPlatformMenuItem@@XZ
?createPlatformMenuBar@QPlatformTheme@@UBEPAVQPlatformMenuBar@@XZ
?createPlatformMenu@QPlatformTheme@@UBEPAVQPlatformMenu@@XZ
?createIconEngine@QPlatformTheme@@UBEPAVQIconEngine@@ABVQString@@@Z
?qt_pixmapFromWinHICON@@YA?AVQPixmap@@PAUHICON__@@@Z
?handleThemeChange@QWindowSystemInterface@@SAXPAVQWindow@@@Z
?insert@QPixmapCache@@SA_NABVQString@@ABVQPixmap@@@Z
?find@QPixmapCache@@SA_NABVQString@@AAVQPixmap@@@Z
?desktopSettingsAware@QGuiApplication@@SA_NXZ
?setColorGroup@QPalette@@QAEXW4ColorGroup@1@ABVQBrush@@11111111@Z
?setBrush@QPalette@@QAEXW4ColorGroup@1@W4ColorRole@1@ABVQBrush@@@Z
?setColor@QPalette@@QAEXW4ColorGroup@1@W4ColorRole@1@ABVQColor@@@Z
?color@QPalette@@QBEABVQColor@@W4ColorGroup@1@W4ColorRole@1@@Z
??0QPalette@@QAE@ABV0@@Z
??0QPalette@@QAE@ABVQColor@@000000@Z
?drawPixmap@QPainter@@QAEXABVQRectF@@ABVQPixmap@@0@Z
??1QPainter@@QAE@XZ
??0QPainter@@QAE@PAVQPaintDevice@@@Z
??8QBrush@@QBE_NABV0@@Z
?setStyleHint@QFont@@QAEXW4StyleHint@1@W4StyleStrategy@1@@Z
?pointSize@QFont@@QBEHXZ
??0QFont@@QAE@ABV0@@Z
?setDevicePixelRatio@QPixmap@@QAEXN@Z
?dark@QColor@@QBE?AV1@H@Z
?light@QColor@@QBE?AV1@H@Z
?setRgb@QColor@@QAEXHHHH@Z
?blue@QColor@@QBEHXZ
?green@QColor@@QBEHXZ
?red@QColor@@QBEHXZ
?fileIconPixmap@QPlatformTheme@@UBE?AVQPixmap@@ABVQFileInfo@@ABVQSizeF@@V?$QFlags@W4IconOption@QPlatformTheme@@@@@Z
?standardPixmap@QPlatformTheme@@UBE?AVQPixmap@@W4StandardPixmap@1@ABVQSizeF@@@Z
?themeHint@QPlatformTheme@@UBE?AVQVariant@@W4ThemeHint@1@@Z
??1QPlatformTheme@@UAE@XZ
??0QPlatformTheme@@QAE@XZ
?staticMetaObject@QInputMethod@@2UQMetaObject@@B
?showInputPanel@QPlatformInputContext@@UAEXXZ
?keyboardRect@QPlatformInputContext@@UBE?AVQRectF@@XZ
?isValid@QPlatformInputContext@@UBE_NXZ
?isInputPanelVisible@QPlatformInputContext@@UBE_NXZ
?isAnimating@QPlatformInputContext@@UBE_NXZ
?inputDirection@QPlatformInputContext@@UBE?AW4LayoutDirection@Qt@@XZ
?hideInputPanel@QPlatformInputContext@@UAEXXZ
?filterEvent@QPlatformInputContext@@UAE_NPBVQEvent@@@Z
?commit@QPlatformInputContext@@UAEXXZ
?brush@QPalette@@QBEABVQBrush@@W4ColorGroup@1@W4ColorRole@1@@Z
??1QPalette@@QAE@XZ
?setUnderlineStyle@QTextCharFormat@@QAEXW4UnderlineStyle@1@@Z
??0QTextCharFormat@@QAE@XZ
??BQTextFormat@@QBE?AVQVariant@@XZ
?setProperty@QTextFormat@@QAEXHABVQVariant@@@Z
??1QTextFormat@@QAE@XZ
??0QTextFormat@@QAE@ABV0@@Z
?color@QBrush@@QBEABVQColor@@XZ
??BQBrush@@QBE?AVQVariant@@XZ
??1QBrush@@QAE@XZ
??0QBrush@@QAE@ABVQColor@@W4BrushStyle@Qt@@@Z
?inputMethod@QGuiApplication@@SAPAVQInputMethod@@XZ
?palette@QGuiApplication@@SA?AVQPalette@@XZ
?focusObject@QGuiApplication@@SAPAVQObject@@XZ
?setCommitString@QInputMethodEvent@@QAEXABVQString@@HH@Z
??1QInputMethodEvent@@UAE@XZ
??0QInputMethodEvent@@QAE@ABVQString@@ABV?$QList@VAttribute@QInputMethodEvent@@@@@Z
??0QInputMethodEvent@@QAE@XZ
?inputMethodAccepted@QPlatformInputContext@@QBE_NXZ
?emitLocaleChanged@QPlatformInputContext@@QAEXXZ
?invokeAction@QPlatformInputContext@@UAEXW4Action@QInputMethod@@H@Z
?update@QPlatformInputContext@@UAEXV?$QFlags@W4InputMethodQuery@Qt@@@@@Z
?reset@QPlatformInputContext@@UAEXXZ
??1QPlatformInputContext@@UAE@XZ
??0QPlatformInputContext@@QAE@XZ
?cursorRectangleChanged@QInputMethod@@QAEXXZ
?queryFocusObject@QInputMethod@@SA?AVQVariant@@W4InputMethodQuery@Qt@@V2@@Z
?cursorRectangle@QInputMethod@@QBE?AVQRectF@@XZ
?pointerEvent@QPlatformCursor@@UAEXABVQMouseEvent@@@Z
?qt_createIconMask@@YAPAUHBITMAP__@@ABVQBitmap@@@Z
?qt_pixmapToWinHBITMAP@@YAPAUHBITMAP__@@ABVQPixmap@@H@Z
?factor@QHighDpiScaling@@SANPBVQPlatformScreen@@@Z
??1QBitmap@@UAE@XZ
??0QBitmap@@QAE@ABVQSize@@@Z
??0QPlatformCursor@@QAE@XZ
?cacheKey@QPixmap@@QBE_JXZ
?fromImage@QPixmap@@SA?AV1@ABVQImage@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?toImage@QPixmap@@QBE?AVQImage@@XZ
?scaled@QPixmap@@QBE?AV1@ABVQSize@@W4AspectRatioMode@Qt@@W4TransformationMode@4@@Z
?mask@QPixmap@@QBE?AVQBitmap@@XZ
?fill@QPixmap@@QAEXABVQColor@@@Z
?size@QPixmap@@QBE?AVQSize@@XZ
??4QPixmap@@QAEAAV0@$$QAV0@@Z
??4QPixmap@@QAEAAV0@ABV0@@Z
??0QPixmap@@QAE@ABV0@@Z
??0QPixmap@@QAE@QBQBD@Z
??0QPixmap@@QAE@ABVQString@@PBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
??0QPixmap@@QAE@XZ
?hotSpot@QCursor@@QBE?AVQPoint@@XZ
?pixmap@QCursor@@QBE?AVQPixmap@@XZ
?mask@QCursor@@QBEPBVQBitmap@@XZ
?bitmap@QCursor@@QBEPBVQBitmap@@XZ
?shape@QCursor@@QBE?AW4CursorShape@Qt@@XZ
?scaled@QImage@@QBE?AV1@ABVQSize@@W4AspectRatioMode@Qt@@W4TransformationMode@4@@Z
?color@QImage@@QBEIH@Z
?colorCount@QImage@@QBEHXZ
??0QImage@@QAE@PAEHHHW4Format@0@P6AXPAX@Z2@Z
??0QImage@@QAE@ABVQSize@@W4Format@0@@Z
?devicePixelRatioF@QPaintDevice@@QBENXZ
??0QColor@@QAE@W4GlobalColor@Qt@@@Z
?write@QImageWriter@@QAE_NABVQImage@@@Z
?canWrite@QImageWriter@@QBE_NXZ
??1QImageWriter@@QAE@XZ
??0QImageWriter@@QAE@PAVQIODevice@@ABVQByteArray@@@Z
?supportedImageFormats@QImageReader@@SA?AV?$QList@VQByteArray@@@@XZ
?read@QImageReader@@QAE?AVQImage@@XZ
?canRead@QImageReader@@QBE_NXZ
??1QImageReader@@QAE@XZ
??0QImageReader@@QAE@PAVQIODevice@@ABVQByteArray@@@Z
?renderDataHelper@QInternalMimeData@@SA?AVQByteArray@@ABVQString@@PBVQMimeData@@@Z
?hasFormatHelper@QInternalMimeData@@SA_NABVQString@@PBVQMimeData@@@Z
?formatsHelper@QInternalMimeData@@SA?AVQStringList@@PBVQMimeData@@@Z
?canReadData@QInternalMimeData@@SA_NABVQString@@@Z
?setDotsPerMeterY@QImage@@QAEXH@Z
?setDotsPerMeterX@QImage@@QAEXH@Z
?save@QImage@@QBE_NPAVQIODevice@@PBDH@Z
?loadFromData@QImage@@QAE_NABVQByteArray@@PBD@Z
?hasAlphaChannel@QImage@@QBE_NXZ
?bytesPerLine@QImage@@QBEHXZ
?bits@QImage@@QAEPAEXZ
?size@QImage@@QBE?AVQSize@@XZ
??BQImage@@QBE?AVQVariant@@XZ
?isNull@QImage@@QBE_NXZ
??4QImage@@QAEAAV0@$$QAV0@@Z
?handleLeaveEvent@QWindowSystemInterface@@SAXPAVQWindow@@@Z
?handleEnterEvent@QWindowSystemInterface@@SAXPAVQWindow@@ABVQPointF@@1@Z
?handleTouchEvent@QWindowSystemInterface@@SAXPAVQWindow@@PAVQTouchDevice@@ABV?$QList@UTouchPoint@QWindowSystemInterface@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z
?handleWheelEvent@QWindowSystemInterface@@SAXPAVQWindow@@ABVQPointF@@1HW4Orientation@Qt@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z
?handleFrameStrutMouseEvent@QWindowSystemInterface@@SAXPAVQWindow@@ABVQPointF@@1V?$QFlags@W4MouseButton@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@W4MouseEventSource@Qt@@@Z
?handleMouseEvent@QWindowSystemInterface@@SAXPAVQWindow@@ABVQPointF@@1V?$QFlags@W4MouseButton@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@W4MouseEventSource@Qt@@@Z
?pos@QCursor@@SA?AVQPoint@@XZ
?setMaximumTouchPoints@QTouchDevice@@QAEXH@Z
?setType@QTouchDevice@@QAEXW4DeviceType@1@@Z
?type@QTouchDevice@@QBE?AW4DeviceType@1@XZ
??0QTouchDevice@@QAE@XZ
?qt_needs_a8_gamma_correction@@3_NA
?registerAliasToFontFamily@QPlatformFontDatabase@@SAXABVQString@@0@Z
?registerFontFamily@QPlatformFontDatabase@@SAXABVQString@@@Z
?registerFont@QPlatformFontDatabase@@SAXABVQString@@00W4Weight@QFont@@W4Style@4@W4Stretch@4@_N4H4ABVQSupportedWritingSystems@@PAX@Z
?weightFromInteger@QPlatformFontDatabase@@SA?AW4Weight@QFont@@H@Z
?writingSystemsFromTrueTypeBits@QPlatformFontDatabase@@SA?AVQSupportedWritingSystems@@QAI0@Z
?supported@QSupportedWritingSystems@@QBE_NW4WritingSystem@QFontDatabase@@@Z
?setSupported@QSupportedWritingSystems@@QAEXW4WritingSystem@QFontDatabase@@_N@Z
??1QSupportedWritingSystems@@QAE@XZ
??4QSupportedWritingSystems@@QAEAAV0@ABV0@@Z
??0QSupportedWritingSystems@@QAE@XZ
?hasFamily@QFontDatabase@@QBE_NABVQString@@@Z
?families@QFontDatabase@@QBE?AVQStringList@@W4WritingSystem@1@@Z
?writingSystems@QFontDatabase@@QBE?AV?$QList@W4WritingSystem@QFontDatabase@@@@ABVQString@@@Z
??0QFontDatabase@@QAE@XZ
??6@YA?AVQDebug@@V0@ABVQFont@@@Z
?setStrikeOut@QFont@@QAEX_N@Z
?setOverline@QFont@@QAEX_N@Z
?setUnderline@QFont@@QAEX_N@Z
?setStyle@QFont@@QAEXW4Style@1@@Z
?setWeight@QFont@@QAEXH@Z
?setPointSizeF@QFont@@QAEXN@Z
?setFamily@QFont@@QAEXABVQString@@@Z
?family@QFont@@QBE?AVQString@@XZ
??1QFont@@QAE@XZ
??0QFont@@QAE@ABVQString@@HH_N@Z
?xHeight@QFontEngineMulti@@UBE?AUQFixed@@XZ
?underlinePosition@QFontEngineMulti@@UBE?AUQFixed@@XZ
?supportsSubPixelPositions@QFontEngine@@UBE_NXZ
?stringToCMap@QFontEngineMulti@@UBE_NPBVQChar@@HPAUQGlyphLayout@@PAHV?$QFlags@W4ShaperFlag@QFontEngine@@@@@Z
?shouldLoadFontEngineForCharacter@QFontEngineMulti@@MBE_NHI@Z
?recalcAdvances@QFontEngineMulti@@UBEXPAUQGlyphLayout@@V?$QFlags@W4ShaperFlag@QFontEngine@@@@@Z
?minRightBearing@QFontEngineMulti@@UBENXZ
?minLeftBearing@QFontEngineMulti@@UBENXZ
?maxCharWidth@QFontEngineMulti@@UBENXZ
?lineThickness@QFontEngineMulti@@UBE?AUQFixed@@XZ
?leading@QFontEngineMulti@@UBE?AUQFixed@@XZ
?glyphIndex@QFontEngineMulti@@UBEII@Z
?getSfntTableData@QFontEngine@@UBE_NIPAEPAI@Z
?getGlyphBearings@QFontEngineMulti@@UAEXIPAN0@Z
?ensureFallbackFamiliesQueried@QFontEngineMulti@@MAEXXZ
?doKerning@QFontEngineMulti@@UBEXPAUQGlyphLayout@@V?$QFlags@W4ShaperFlag@QFontEngine@@@@@Z
?descent@QFontEngineMulti@@UBE?AUQFixed@@XZ
?cloneWithSize@QFontEngine@@UBEPAV1@N@Z
?canRender@QFontEngineMulti@@UBE_NPBVQChar@@H@Z
?boundingBox@QFontEngineMulti@@UAE?AUglyph_metrics_t@@I@Z
?boundingBox@QFontEngineMulti@@UAE?AUglyph_metrics_t@@ABUQGlyphLayout@@@Z
?averageCharWidth@QFontEngineMulti@@UBE?AUQFixed@@XZ
?ascent@QFontEngineMulti@@UBE?AUQFixed@@XZ
?alphaRGBMapForGlyph@QFontEngineMulti@@UAE?AVQImage@@IUQFixed@@ABVQTransform@@@Z
?alphaMapForGlyph@QFontEngineMulti@@UAE?AVQImage@@IUQFixed@@ABVQTransform@@@Z
?alphaMapForGlyph@QFontEngineMulti@@UAE?AVQImage@@IUQFixed@@@Z
?alphaMapForGlyph@QFontEngineMulti@@UAE?AVQImage@@IABVQTransform@@@Z
?alphaMapForGlyph@QFontEngineMulti@@UAE?AVQImage@@I@Z
?alphaMapForGlyph@QFontEngine@@UAE?AVQImage@@IUQFixed@@ABVQTransform@@@Z
?alphaMapForGlyph@QFontEngine@@UAE?AVQImage@@IUQFixed@@@Z
?alphaMapBoundingBox@QFontEngine@@UAE?AUglyph_metrics_t@@IUQFixed@@ABVQTransform@@W4GlyphFormat@1@@Z
?addOutlineToPath@QFontEngineMulti@@UAEXNNABUQGlyphLayout@@PAVQPainterPath@@V?$QFlags@W4RenderFlag@QTextItem@@@@@Z
?addGlyphsToPath@QFontEngine@@UAEXPAIPAUQFixedPoint@@HPAVQPainterPath@@V?$QFlags@W4RenderFlag@QTextItem@@@@@Z
?engine@QFontEngineMulti@@QBEPAVQFontEngine@@H@Z
?fallbackFamilyAt@QFontEngineMulti@@QBE?AVQString@@H@Z
??1QFontEngineMulti@@UAE@XZ
??0QFontEngineMulti@@QAE@PAVQFontEngine@@HABVQStringList@@@Z
?loadKerningPairs@QFontEngine@@QAEXUQFixed@@@Z
?convertToPostscriptFontFamilyName@QFontEngine@@SA?AVQByteArray@@ABV2@@Z
?getTrueTypeGlyphIndex@QFontEngine@@SAIPBEHI@Z
?getCMap@QFontEngine@@SAPBEPBEIPA_NPAH@Z
?xHeight@QFontEngine@@UBE?AUQFixed@@XZ
?addBitmapFontToPath@QFontEngine@@QAEXNNABUQGlyphLayout@@PAVQPainterPath@@V?$QFlags@W4RenderFlag@QTextItem@@@@@Z
?getSfntTable@QFontEngine@@QBE?AVQByteArray@@I@Z
?transformed@glyph_metrics_t@@QBE?AU1@ABVQTransform@@@Z
?scanLine@QImage@@QBEPBEH@Z
?format@QImage@@QBE?AW4Format@1@XZ
?type@QTransform@@QBE?AW4TransformationType@1@XZ
?elementAt@QPainterPath@@QBE?AVElement@1@H@Z
?elementCount@QPainterPath@@QBEHXZ
?quadTo@QPainterPath@@QAEXABVQPointF@@0@Z
?hasShortcutForKeySequence@QShortcutMap@@QBE_NABVQKeySequence@@@Z
?handleExtendedKeyEvent@QWindowSystemInterface@@SA_NPAVQWindow@@W4Type@QEvent@@HV?$QFlags@W4KeyboardModifier@Qt@@@@IIIABVQString@@_NG4@Z
?applicationStateChanged@QGuiApplication@@QAEXW4ApplicationState@Qt@@@Z
?modifiers@QKeyEvent@@QBE?AV?$QFlags@W4KeyboardModifier@Qt@@@@XZ
??1QKeySequence@@QAE@XZ
??0QKeySequence@@QAE@HHHH@Z
?setPowerState@QPlatformScreen@@UAEXW4PowerState@1@@Z
?setOrientationUpdateMask@QPlatformScreen@@UAEXV?$QFlags@W4ScreenOrientation@Qt@@@@@Z
?powerState@QPlatformScreen@@UBE?AW4PowerState@1@XZ
?nativeOrientation@QPlatformScreen@@UBE?AW4ScreenOrientation@Qt@@XZ
?qt_pixmapFromWinHBITMAP@@YA?AVQPixmap@@PAUHBITMAP__@@H@Z

qt5core

?willGrow@QHashData@@QAE_NXZ
?at@QListData@@QBEPAPAXH@Z
?size@QListData@@QBEHXZ
?firstNode@QHashData@@QAEPAUNode@1@XZ
?qHash@@YAIABVQByteArray@@I@Z
?fromUtf8@QString@@SA?AV1@PBDH@Z
?contains@QString@@QBE_NVQLatin1String@@W4CaseSensitivity@Qt@@@Z
?remove@QByteArray@@QAEAAV1@HH@Z
?isNativePath@QFileInfo@@QBE_NXZ
??0QPointF@@QAE@XZ
?qt_metacast@QEventDispatcherWin32@@UAEPAXPBD@Z
?qt_metacall@QEventDispatcherWin32@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?staticMetaObject@QEventDispatcherWin32@@2UQMetaObject@@B
?move@QListData@@QAEXHH@Z
?registeredTimers@QEventDispatcherWin32@@UBE?AV?$QList@UTimerInfo@QAbstractEventDispatcher@@@@PAVQObject@@@Z
??1QMutexLocker@@QAE@XZ
??0QMutexLocker@@QAE@PAVQBasicMutex@@@Z
?wakeUp@QEventDispatcherWin32@@UAEXXZ
?unregisterTimers@QEventDispatcherWin32@@UAE_NPAVQObject@@@Z
?unregisterTimer@QEventDispatcherWin32@@UAE_NH@Z
?unregisterSocketNotifier@QEventDispatcherWin32@@UAEXPAVQSocketNotifier@@@Z
?unregisterEventNotifier@QEventDispatcherWin32@@UAEXPAVQWinEventNotifier@@@Z
?startingUp@QEventDispatcherWin32@@UAEXXZ
?registerSocketNotifier@QEventDispatcherWin32@@UAEXPAVQSocketNotifier@@@Z
?registerEventNotifier@QEventDispatcherWin32@@UAE_NPAVQWinEventNotifier@@@Z
?interrupt@QEventDispatcherWin32@@UAEXXZ
?hasPendingEvents@QEventDispatcherWin32@@UAE_NXZ
?flush@QEventDispatcherWin32@@UAEXXZ
?event@QEventDispatcherWin32@@UAE_NPAVQEvent@@@Z
?closingDown@QEventDispatcherWin32@@UAEXXZ
?sendPostedEvents@QEventDispatcherWin32@@MAEXXZ
?processEvents@QEventDispatcherWin32@@UAE_NV?$QFlags@W4ProcessEventsFlag@QEventLoop@@@@@Z
??1QEventDispatcherWin32@@UAE@XZ
??0QEventDispatcherWin32@@QAE@PAVQObject@@@Z
?createInternalHwnd@QEventDispatcherWin32@@IAEXXZ
??0QString@@QAE@UQStringDataPtr@@@Z
?createUuid@QUuid@@SA?AV1@XZ
?toByteArray@QUuid@@QBE?AVQByteArray@@XZ
?end@QListData@@QBEPAPAXXZ
?begin@QListData@@QBEPAPAXXZ
?isEmpty@QByteArray@@QBE_NXZ
?size@QByteArray@@QBEHXZ
?qUnregisterResourceData@@YA_NHPBE00@Z
?qRegisterResourceData@@YA_NHPBE00@Z
?compare@QString@@QBEHVQLatin1String@@W4CaseSensitivity@Qt@@@Z
?countryToString@QLocale@@SA?AVQString@@W4Country@1@@Z
?languageToString@QLocale@@SA?AVQString@@W4Language@1@@Z
?country@QLocale@@QBE?AW4Country@1@XZ
?language@QLocale@@QBE?AW4Language@1@XZ
?applicationVersion@QCoreApplication@@SA?AVQString@@XZ
?applicationName@QCoreApplication@@SA?AVQString@@XZ
?replace@QString@@QAEAAV1@HHABV1@@Z
?insert@QString@@QAEAAV1@HABV1@@Z
??0QString@@QAE@PBVQChar@@H@Z
?nameToType@QVariant@@SA?AW4Type@1@PBD@Z
?toDateTime@QVariant@@QBE?AVQDateTime@@XZ
?toDouble@QVariant@@QBENPA_N@Z
?toULongLong@QVariant@@QBE_KPA_N@Z
?toLongLong@QVariant@@QBE_JPA_N@Z
?toUInt@QVariant@@QBEIPA_N@Z
?convert@QVariant@@QAE_NH@Z
??0QVariant@@QAE@W4Type@0@@Z
?time@QDateTime@@QBE?AVQTime@@XZ
?date@QDateTime@@QBE?AVQDate@@XZ
?isValid@QDateTime@@QBE_NXZ
?isNull@QDateTime@@QBE_NXZ
??1QDateTime@@QAE@XZ
?msec@QTime@@QBEHXZ
?second@QTime@@QBEHXZ
?minute@QTime@@QBEHXZ
?hour@QTime@@QBEHXZ
?isValid@QTime@@QBE_NXZ
?day@QDate@@QBEHXZ
?month@QDate@@QBEHXZ
?year@QDate@@QBEHXZ
??BQByteArray@@QBEPBDXZ
?closingDown@QCoreApplication@@SA_NXZ
?startingUp@QCoreApplication@@SA_NXZ
??4QString@@QAEAAV0@VQLatin1String@@@Z
?allKeys@QSettings@@QBE?AVQStringList@@XZ
?isRelativePath@QDir@@SA_NABVQString@@@Z
?split@QString@@QBE?AVQStringList@@VQChar@@W4SplitBehavior@1@W4CaseSensitivity@Qt@@@Z
?remove@QString@@QAEAAV1@ABVQRegularExpression@@@Z
?remove@QString@@QAEAAV1@ABV1@W4CaseSensitivity@Qt@@@Z
?prepend@QString@@QAEAAV1@ABV1@@Z
??6@YA?AVQDebug@@V0@ABVQPointF@@@Z
?arg@QString@@QBE?AV1@ABV1@HVQChar@@@Z
?arg@QString@@QBE?AV1@IHHVQChar@@@Z
?arg@QString@@QBE?AV1@HHHVQChar@@@Z
?processEvents@QCoreApplication@@SAXV?$QFlags@W4ProcessEventsFlag@QEventLoop@@@@@Z
??6QDebug@@QAEAAV0@_J@Z
??_0QSize@@QAEAAV0@N@Z
?setObjectName@QObject@@QAEXABVQString@@@Z
??6@YA?AVQDebug@@V0@ABVQUrl@@@Z
?qAddPostRoutine@@YAXP6AXXZ@Z
?hasColor@QMimeData@@QBE_NXZ
?colorData@QMimeData@@QBE?AVQVariant@@XZ
?hasHtml@QMimeData@@QBE_NXZ
??6QTextStream@@QAEAAV0@K@Z
?isNull@QVariant@@QBE_NXZ
?canConvert@QVariant@@QBE_NH@Z
?startsWith@QByteArray@@QBE_NPBD@Z
?count@QByteArray@@QBEHD@Z
?location@QLibraryInfo@@SA?AVQString@@W4LibraryLocation@1@@Z
?locate@QStandardPaths@@SA?AVQString@@W4StandardLocation@1@ABV2@V?$QFlags@W4LocateOption@QStandardPaths@@@@@Z
?isFile@QFileInfo@@QBE_NXZ
?isRelative@QFileInfo@@QBE_NXZ
?decodeName@QFile@@SA?AVQString@@ABVQByteArray@@@Z
?testAttribute@QCoreApplication@@SA_NW4ApplicationAttribute@Qt@@@Z
?resetFormat@QDebug@@QAEAAV1@XZ
?uppercasedigits@@YAAAVQTextStream@@AAV1@@Z
?exec@QTextStreamManipulator@@QAEXAAVQTextStream@@@Z
??6QTextStream@@QAEAAV0@ABVQByteArray@@@Z
?setFieldWidth@QTextStream@@QAEXH@Z
?setPadChar@QTextStream@@QAEXVQChar@@@Z
??0QVariant@@QAE@VQLatin1String@@@Z
??6@YA?AVQDebug@@V0@ABVQVersionNumber@@@Z
?toString@QVersionNumber@@QBE?AVQString@@XZ
?qHash@@YAIABVQVersionNumber@@I@Z
?indexOf@QByteArray@@QBEHDH@Z
??4QByteArray@@QAEAAV0@PBD@Z
?debug@QMessageLogger@@QBAXPBDZZ
?qEnvironmentVariableIsSet@@YA_NPBD@Z
?toLower@QByteArray@@QBE?AV1@XZ
?qstrcmp@@YAHABVQByteArray@@PBD@Z
?insert@QString@@QAEAAV1@HVQChar@@@Z
?indexOf@QString@@QBEHABV1@HW4CaseSensitivity@Qt@@@Z
?staticMetaObject@QObject@@2UQMetaObject@@B
?qt_metacast@QThread@@UAEPAXPBD@Z
?qt_metacall@QThread@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?metaObject@QThread@@UBEPBUQMetaObject@@XZ
?event@QThread@@UAE_NPAVQEvent@@@Z
?hasMatch@QRegularExpressionMatch@@QBE_NXZ
??1QRegularExpressionMatch@@QAE@XZ
?match@QRegularExpression@@QBE?AVQRegularExpressionMatch@@ABVQString@@HW4MatchType@1@V?$QFlags@W4MatchOption@QRegularExpression@@@@@Z
??1QRegularExpression@@QAE@XZ
??0QRegularExpression@@QAE@ABVQString@@V?$QFlags@W4PatternOption@QRegularExpression@@@@@Z
??BQUuid@@QBE?AU_GUID@@XZ
?isNull@QUuid@@QBE_NXZ
??0QUuid@@QAE@ABVQString@@@Z
?wait@QThread@@QAE_NK@Z
?terminate@QThread@@QAEXXZ
?start@QThread@@QAEXW4Priority@1@@Z
?isRunning@QThread@@QBE_NXZ
??1QThread@@UAE@XZ
??0QThread@@QAE@PAVQObject@@@Z
?isCriticalEnabled@QLoggingCategory@@QBE_NXZ
?isLocalFile@QUrl@@QBE_NXZ
?path@QUrl@@QBE?AVQString@@V?$QFlags@W4ComponentFormattingOption@QUrl@@@@@Z
?scheme@QUrl@@QBE?AVQString@@XZ
?isEmpty@QUrl@@QBE_NXZ
?adjusted@QUrl@@QBE?AV1@V?$QUrlTwoFlags@W4UrlFormattingOption@QUrl@@W4ComponentFormattingOption@2@@@@Z
??4QUrl@@QAEAAV0@$$QAV0@@Z
??4QUrl@@QAEAAV0@ABV0@@Z
??0QUrl@@QAE@ABV0@@Z
??0QUrl@@QAE@XZ
?cleanPath@QDir@@SA?AVQString@@ABV2@@Z
?fileName@QFileInfo@@QBE?AVQString@@XZ
?setQObjectShared@ExternalRefCountData@QtSharedPointer@@QAEXPBVQObject@@_N@Z
??0QSharedData@@QAE@XZ
?killTimer@QObject@@QAEXH@Z
?startTimer@QObject@@QAEHHW4TimerType@Qt@@@Z
??0QObject@@QAE@PAV0@@Z
?dynamicMetaObject@QObjectData@@QBEPAUQMetaObject@@XZ
?QStringList_join@QtPrivate@@YA?AVQString@@PBVQStringList@@PBVQChar@@H@Z
??1QRegExp@@QAE@XZ
??0QRegExp@@QAE@ABVQString@@W4CaseSensitivity@Qt@@W4PatternSyntax@0@@Z
?replace@QString@@QAEAAV1@ABVQRegExp@@ABV1@@Z
?remove@QString@@QAEAAV1@VQChar@@W4CaseSensitivity@Qt@@@Z
?remove@QString@@QAEAAV1@HH@Z
?trimmed@QString@@QBE?AV1@XZ
?endsWith@QString@@QBE_NVQChar@@W4CaseSensitivity@Qt@@@Z
?startsWith@QString@@QBE_NVQChar@@W4CaseSensitivity@Qt@@@Z
?constData@QString@@QBEPBVQChar@@XZ
?activate@QMetaObject@@SAXPAVQObject@@PBU1@HPAPAX@Z
?unlock@QMutex@@QAEXXZ
?critical@QMessageLogger@@QBE?AVQDebug@@XZ
?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ
??0QVariant@@QAE@ABVQStringList@@@Z
?isRoot@QFileInfo@@QBE_NXZ
?isDir@QFileInfo@@QBE_NXZ
?absoluteFilePath@QFileInfo@@QBE?AVQString@@XZ
?filePath@QFileInfo@@QBE?AVQString@@XZ
??1QFileInfo@@QAE@XZ
??0QFileInfo@@QAE@ABVQString@@@Z
?unregisterConverterFunction@QMetaType@@SAXHH@Z
?registerConverterFunction@QMetaType@@SA_NPBUAbstractConverterFunction@QtPrivate@@HH@Z
?hasRegisteredConverterFunction@QMetaType@@SA_NHH@Z
?typeName@QMetaType@@SAPBDH@Z
?append@QByteArray@@QAEAAV1@PBDH@Z
?endsWith@QByteArray@@QBE_ND@Z
??1QMutex@@QAE@XZ
??0QMutex@@QAE@W4RecursionMode@0@@Z
?qt_localeFromLCID@@YA?AVQLocale@@K@Z
?boundaryReasons@QTextBoundaryFinder@@QBE?AV?$QFlags@W4BoundaryReason@QTextBoundaryFinder@@@@XZ
?toPreviousBoundary@QTextBoundaryFinder@@QAEHXZ
?toNextBoundary@QTextBoundaryFinder@@QAEHXZ
?setPosition@QTextBoundaryFinder@@QAEXH@Z
?position@QTextBoundaryFinder@@QBEHXZ
??0QTextBoundaryFinder@@QAE@W4BoundaryType@0@ABVQString@@@Z
??1QTextBoundaryFinder@@QAE@XZ
?notifyInternal2@QCoreApplication@@CA_NPAVQObject@@PAVQEvent@@@Z
??6@YA?AVQDebug@@V0@ABVQLocale@@@Z
??4QLocale@@QAEAAV0@ABV0@@Z
??0QLocale@@QAE@ABV0@@Z
?toInt@QVariant@@QBEHPA_N@Z
??6@YA?AVQDebug@@V0@PBVQObject@@@Z
?clear@QString@@QAEXXZ
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
?qt_metacast@QObject@@UAEPAXPBD@Z
?qt_metacall@QObject@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?metaObject@QObject@@UBEPBUQMetaObject@@XZ
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?event@QObject@@UAE_NPAVQEvent@@@Z
?disconnectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?connectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
??1QObject@@UAE@XZ
?toSize@QSizeF@@QBE?AVQSize@@XZ
?type@QVariant@@QBE?AW4Type@1@XZ
?close@QBuffer@@UAEXXZ
?open@QBuffer@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??1QBuffer@@UAE@XZ
??0QBuffer@@QAE@PAVQByteArray@@PAVQObject@@@Z
?toNativeSeparators@QDir@@SA?AVQString@@ABV2@@Z
?toLocalFile@QUrl@@QBE?AVQString@@XZ
?fromLocalFile@QUrl@@SA?AV1@ABVQString@@@Z
?toString@QUrl@@QBE?AVQString@@V?$QUrlTwoFlags@W4UrlFormattingOption@QUrl@@W4ComponentFormattingOption@2@@@@Z
??1QUrl@@QAE@XZ
??0QUrl@@QAE@ABVQString@@W4ParsingMode@0@@Z
?setByteOrder@QDataStream@@QAEXW4ByteOrder@1@@Z
?status@QDataStream@@QBE?AW4Status@1@XZ
??1QDataStream@@QAE@XZ
??0QDataStream@@QAE@PAVQByteArray@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?hasImage@QMimeData@@QBE_NXZ
?imageData@QMimeData@@QBE?AVQVariant@@XZ
?html@QMimeData@@QBE?AVQString@@XZ
?hasText@QMimeData@@QBE_NXZ
?text@QMimeData@@QBE?AVQString@@XZ
?hasUrls@QMimeData@@QBE_NXZ
?urls@QMimeData@@QBE?AV?$QList@VQUrl@@@@XZ
?write@QIODevice@@QAE_JPBD_J@Z
?read@QIODevice@@QAE_JPAD_J@Z
?isWritable@QIODevice@@QBE_NXZ
??6@YA?AVQDebug@@V0@W4Type@QVariant@@@Z
??6@YA?AVQDebug@@V0@ABVQVariant@@@Z
??4QVariant@@QAEAAV0@$$QAV0@@Z
??0QVariant@@QAE@$$QAV0@@Z
??0QVariant@@QAE@ABVQUrl@@@Z
??0QVariant@@QAE@ABV?$QList@VQVariant@@@@@Z
??0QVariant@@QAE@ABVQByteArray@@@Z
??0QVariant@@QAE@XZ
?nextNode@QMapNodeBase@@QBEPBU1@XZ
??4QCharRef@@QAEAAV0@VQChar@@@Z
?fromUtf8@QString@@SA?AV1@ABVQByteArray@@@Z
?fromLocal8Bit@QString@@SA?AV1@PBDH@Z
?toUtf8@QString@@QBE?AVQByteArray@@XZ
?replace@QString@@QAEAAV1@ABV1@0W4CaseSensitivity@Qt@@@Z
?startsWith@QString@@QBE_NABV1@W4CaseSensitivity@Qt@@@Z
?midRef@QString@@QBE?AVQStringRef@@HH@Z
?mid@QString@@QBE?AV1@HH@Z
?lastIndexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z
?indexOf@QString@@QBEHVQLatin1String@@HW4CaseSensitivity@Qt@@@Z
?indexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z
??4QByteRef@@QAEAAV0@D@Z
?fromRawData@QByteArray@@SA?AV1@PBDH@Z
?toInt@QByteArray@@QBEHPA_NH@Z
?replace@QByteArray@@QAEAAV1@DPBD@Z
?mid@QByteArray@@QBE?AV1@HH@Z
?indexOf@QByteArray@@QBEHPBDH@Z
?at@QByteArray@@QBEDH@Z
?clear@QByteArray@@QAEXXZ
?detach@QByteArray@@QAEXXZ
?data@QByteArray@@QBEPBDXZ
?resize@QByteArray@@QAEXH@Z
??0QByteArray@@QAE@$$QAV0@@Z
??6QDebug@@QAEAAV0@_K@Z
?moveCenter@QRectF@@QAEXABVQPointF@@@Z
??1?$QVector@VQPointF@@@@QAE@XZ
??0?$QVector@VQPointF@@@@QAE@ABV0@@Z
??0?$QVector@VQPointF@@@@QAE@XZ
?inherits@QObject@@QBE_NPBD@Z
?hasShrunk@QHashData@@QAEXXZ
?realloc@QListData@@QAEXH@Z
?shared_null@QArrayData@@2QBU1@B
?set@QThreadStorageData@@QAEPAPAXPAX@Z
?get@QThreadStorageData@@QBEPAPAXXZ
??1QThreadStorageData@@QAE@XZ
??0QThreadStorageData@@QAE@P6AXPAX@Z@Z
??6QTextStream@@QAEAAV0@PBD@Z
??6QTextStream@@QAEAAV0@ABVQString@@@Z
??1QTextStream@@UAE@XZ
??0QTextStream@@QAE@PAVQString@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?open@QFile@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??1QFile@@UAE@XZ
??0QFile@@QAE@ABVQString@@@Z
?close@QFileDevice@@UAEXXZ
?freeNodeAndRebalance@QMapDataBase@@QAEXPAUQMapNodeBase@@@Z
?readAll@QIODevice@@QAE?AVQByteArray@@XZ
?QStringList_contains@QtPrivate@@YA_NPBVQStringList@@ABVQString@@W4CaseSensitivity@Qt@@@Z
?append@QListData@@QAEPAPAXABU1@@Z
?number@QString@@SA?AV1@_KH@Z
?number@QString@@SA?AV1@KH@Z
?toWCharArray@QString@@QBEHPA_W@Z
??YQString@@QAEAAV0@VQChar@@@Z
?unicode@QString@@QBEPBVQChar@@XZ
?truncate@QString@@QAEXH@Z
?resize@QString@@QAEXH@Z
?data@QByteArray@@QAEPADXZ
??4QByteArray@@QAEAAV0@ABV0@@Z
??0QByteArray@@QAE@HD@Z
?allocate@QArrayData@@SAPAU1@IIIV?$QFlags@W4AllocationOption@QArrayData@@@@@Z
?unlock@QMutexLocker@@QAEXXZ
?lock@QMutex@@QAEXXZ
?critical@QMessageLogger@@QBAXPBDZZ
?shared_null@QMapDataBase@@2U1@B
?encodeName@QFile@@SA?AVQByteArray@@ABVQString@@@Z
??4QVariant@@QAEAAV0@ABV0@@Z
??0QVariant@@QAE@ABV?$QMap@VQString@@VQVariant@@@@@Z
??0QVariant@@QAE@ABV0@@Z
??0QVariant@@QAE@HPBXI@Z
?freeData@QMapDataBase@@SAXPAU1@@Z
?createData@QMapDataBase@@SAPAU1@XZ
?freeTree@QMapDataBase@@QAEXPAUQMapNodeBase@@H@Z
?createNode@QMapDataBase@@QAEPAUQMapNodeBase@@HHPAU2@_N@Z
?recalcMostLeftNode@QMapDataBase@@QAEXXZ
??M@YA_NABVQString@@0@Z
?toLatin1@QString@@QBE?AVQByteArray@@XZ
??4QByteArray@@QAEAAV0@$$QAV0@@Z
??0QDebug@@QAE@PAVQString@@@Z
??1QLocale@@QAE@XZ
??0QLocale@@QAE@XZ
?connectImpl@QObject@@CA?AVConnection@QMetaObject@@PBV1@PAPAX01PAVQSlotObjectBase@QtPrivate@@W4ConnectionType@Qt@@PBHPBU3@@Z
??1Connection@QMetaObject@@QAE@XZ
??0QString@@QAE@VQChar@@@Z
?toUpper@QChar@@SIII@Z
?toLower@QChar@@SIII@Z
?isLetter@QChar@@QBE_NXZ
??0QChar@@QAE@XZ
?reserve@QByteArray@@QAEXH@Z
?contains@QRect@@QBE_NABVQPoint@@_N@Z
?size@QRect@@QBE?AVQSize@@XZ
?toPoint@QPointF@@QBE?AVQPoint@@XZ
??6@YA?AVQDebug@@V0@ABVQPoint@@@Z
?manhattanLength@QPoint@@QBEHXZ
?remove@QListData@@QAEXH@Z
?prepend@QListData@@QAEPAPAXXZ
?erase@QListData@@QAEPAPAXPAPAX@Z
?self@QCoreApplication@@0PAV1@A
?shared_null@QHashData@@2U1@B
?WindowsVersion@QSysInfo@@2W4WinVersion@1@B
?filterNativeEvent@QAbstractEventDispatcher@@QAE_NABVQByteArray@@PAXPAJ@Z
?instance@QAbstractEventDispatcher@@SAPAV1@PAVQThread@@@Z
?get@QObjectPrivate@@SAPAV1@PAVQObject@@@Z
?quit@QCoreApplication@@SAXXZ
?setFilterRules@QLoggingCategory@@SAXABVQString@@@Z
??1QLoggingCategory@@QAE@XZ
??0QLoggingCategory@@QAE@PBD@Z
??6QDebug@@QAEAAV0@G@Z
?getAndRef@ExternalRefCountData@QtSharedPointer@@SAPAU12@PBVQObject@@@Z
?indexOfSignal@QMetaObject@@QBEHPBD@Z
?cast@QMetaObject@@QBEPAVQObject@@PAV2@@Z
?nextNode@QHashData@@SAPAUNode@1@PAU21@@Z
?free_helper@QHashData@@QAEXP6AXPAUNode@1@@Z@Z
?rehash@QHashData@@QAEXH@Z
?detach_helper@QHashData@@QAEPAU1@P6AXPAUNode@1@PAX@ZP6AX0@ZHH@Z
?freeNode@QHashData@@QAEXPAX@Z
?allocateNode@QHashData@@QAEPAXH@Z
??8@YA_NABVQString@@0@Z
?number@QString@@SA?AV1@JH@Z
?number@QString@@SA?AV1@IH@Z
?number@QString@@SA?AV1@HH@Z
?fromLocal8Bit@QString@@SA?AV1@ABVQByteArray@@@Z
?fromLatin1@QString@@SA?AV1@PBDH@Z
?append@QString@@QAEAAV1@ABV1@@Z
??0QString@@QAE@$$QAV0@@Z
??YQByteArray@@QAEAAV0@ABVQString@@@Z
?append@QByteArray@@QAEAAV1@D@Z
??0QByteArray@@QAE@ABV0@@Z
?qHash@@YAIABVQString@@I@Z
?fatal@QMessageLogger@@QBAXPBDZZ
?qgetenv@@YA?AVQByteArray@@PBD@Z
?shared_null@QListData@@2UData@1@B
?isWarningEnabled@QLoggingCategory@@QBE_NXZ
??6QDebug@@QAEAAV0@VQLatin1String@@@Z
??6QDebug@@QAEAAV0@ABVQStringRef@@@Z
??0QVariant@@QAE@N@Z
??0QVariant@@QAE@_N@Z
??0QVariant@@QAE@H@Z
?toInt@QStringRef@@QBEHPA_NH@Z
?isNull@QString@@QBE_NXZ
??8QString@@QBE_NVQLatin1String@@@Z
?endsWith@QString@@QBE_NVQLatin1String@@W4CaseSensitivity@Qt@@@Z
?startsWith@QString@@QBE_NVQLatin1String@@W4CaseSensitivity@Qt@@@Z
?rightRef@QString@@QBE?AVQStringRef@@H@Z
?at@QString@@QBE?BVQChar@@H@Z
?append@QListData@@QAEPAPAXXZ
?detach_grow@QListData@@QAEPAUData@1@PAHH@Z
??0QChar@@QAE@UQLatin1Char@@@Z
?registerNormalizedType@QMetaType@@SAHABVQByteArray@@P6AXPAX@ZP6APAX1PBX@ZHV?$QFlags@W4TypeFlag@QMetaType@@@@PBUQMetaObject@@@Z
?normalizedType@QMetaObject@@SA?AVQByteArray@@PBD@Z
?staticQtMetaObject@QObject@@1UQMetaObject@@B
?qt_QMetaEnum_flagDebugOperator@@YA?AVQDebug@@AAV1@_KPBUQMetaObject@@PBD@Z
?qt_QMetaEnum_debugOperator@@YA?AVQDebug@@AAV1@HPBUQMetaObject@@PBD@Z
??1QDebugStateSaver@@QAE@XZ
??0QDebugStateSaver@@QAE@AAVQDebug@@@Z
??6QDebug@@QAEAAV0@P6AAAVQTextStream@@AAV1@@Z@Z
??6QDebug@@QAEAAV0@PBX@Z
??6QDebug@@QAEAAV0@ABVQByteArray@@@Z
??6QDebug@@QAEAAV0@ABVQString@@@Z
??6QDebug@@QAEAAV0@K@Z
??6QDebug@@QAEAAV0@J@Z
??6QDebug@@QAEAAV0@I@Z
??6QDebug@@QAEAAV0@H@Z
??6QDebug@@QAEAAV0@D@Z
??6QDebug@@QAEAAV0@_N@Z
?noquote@QDebug@@QAEAAV1@XZ
?maybeSpace@QDebug@@QAEAAV1@XZ
?noshowbase@@YAAAVQTextStream@@AAV1@@Z
?showbase@@YAAAVQTextStream@@AAV1@@Z
?hex@@YAAAVQTextStream@@AAV1@@Z
?dec@@YAAAVQTextStream@@AAV1@@Z
??6QTextStream@@QAEAAV0@PBX@Z
??6QTextStream@@QAEAAV0@H@Z
??6QTextStream@@QAEAAV0@D@Z
?qAppName@@YA?AVQString@@XZ
?convert@QVariant@@QBE_NHPAX@Z
?constData@QVariant@@QBEPBXXZ
?toBool@QVariant@@QBE_NXZ
?userType@QVariant@@QBEHXZ
?property@QObject@@QBE?AVQVariant@@PBD@Z
?objectName@QObject@@QBE?AVQString@@XZ
?toRect@QRectF@@QBE?AVQRect@@XZ
??0QRectF@@QAE@ABVQRect@@@Z
??6@YA?AVQDebug@@V0@ABVQRect@@@Z
?marginsRemoved@QRect@@QBE?AV1@ABVQMargins@@@Z
?moveTo@QRect@@QAEXABVQPoint@@@Z
?translated@QRect@@QBE?AV1@ABVQPoint@@@Z
?moveTopLeft@QRect@@QAEXABVQPoint@@@Z
??0QRect@@QAE@ABVQPoint@@ABVQSize@@@Z
??0QRect@@QAE@ABVQPoint@@0@Z
??6@YA?AVQDebug@@V0@ABVQSize@@@Z
??6@YA?AVQDebug@@V0@ABVQMargins@@@Z
?className@QMetaObject@@QBEPBDXZ
?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ
?number@QByteArray@@SA?AV1@_KH@Z
?number@QByteArray@@SA?AV1@IH@Z
?append@QByteArray@@QAEAAV1@ABV1@@Z
?append@QByteArray@@QAEAAV1@PBD@Z
?constData@QByteArray@@QBEPBDXZ
??0QByteArray@@QAE@PBDH@Z
?deallocate@QArrayData@@SAXPAU1@II@Z
?warning@QMessageLogger@@QBE?AVQDebug@@XZ
?windowsVersion@QSysInfo@@SA?AW4WinVersion@1@XZ
?load@QSystemLibrary@@SAPAUHINSTANCE__@@PB_W_N@Z
?value@QSettings@@QBE?AVQVariant@@ABVQString@@ABV2@@Z
??1QSettings@@UAE@XZ
??0QSettings@@QAE@ABVQString@@W4Format@0@PAVQObject@@@Z
?isDebugEnabled@QLoggingCategory@@QBE_NXZ
??6QDebug@@QAEAAV0@PBD@Z
??6QDebug@@QAEAAV0@N@Z
??1QDebug@@QAE@XZ
?toString@QVariant@@QBE?AVQString@@XZ
??0QVariant@@QAE@ABVQString@@@Z
??1QVariant@@QAE@XZ
?dispose@QListData@@SAXPAUData@1@@Z
?detach@QListData@@QAEPAUData@1@H@Z
?fromWCharArray@QString@@SA?AV1@PB_WH@Z
?utf16@QString@@QBEPBGXZ
??4QString@@QAEAAV0@$$QAV0@@Z
??4QString@@QAEAAV0@ABV0@@Z
??1QString@@QAE@XZ
??0QString@@QAE@ABV0@@Z
??0QString@@QAE@VQLatin1String@@@Z
??0QString@@QAE@XZ
??1QByteArray@@QAE@XZ
??0QByteArray@@QAE@XZ
?qErrnoWarning@@YAXPBDZZ
?qErrnoWarning@@YAXHPBDZZ
?debug@QMessageLogger@@QBE?AVQDebug@@XZ
?warning@QMessageLogger@@QBAXPBDZZ
??0QMessageLogger@@QAE@PBDH00@Z
??0QMessageLogger@@QAE@PBDH0@Z
?registerTimer@QEventDispatcherWin32@@UAEXHHW4TimerType@Qt@@PAVQObject@@@Z
?remainingTime@QEventDispatcherWin32@@UAEHH@Z

msvcp120

?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?_Xlength_error@std@@YAXPBD@Z

msvcr120

memchr
strncmp
ftell
fseek
fread
fopen
fclose
_onexit
qsort
strrchr
strncpy
ceil
_libm_sse2_tan_precise
_libm_sse2_sin_precise
_libm_sse2_cos_precise
atol
strstr
_libm_sse2_pow_precise
wcsncmp
realloc
toupper
fflush
memset
memcpy
??_V@YAXPAX@Z
memmove
malloc
free
??3@YAXPAX@Z
??2@YAPAXI@Z
_purecall
_setjmp3
sprintf
_lock
_unlock
_calloc_crt
_libm_sse2_atan_precise
__dllonexit
_CxxThrowException
??1type_info@@UAE@XZ
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
?terminate@@YAXXZ
longjmp
__clean_type_info_names_internal

kernel32

CreateProcessW
CloseHandle
ExpandEnvironmentStringsW
GetCurrentProcessId
GlobalSize
GlobalAlloc
GlobalUnlock
GlobalLock
GetUserDefaultLangID
GetLastError
IsValidLocale
IsValidLanguageGroup
FormatMessageW
LocalFree
GetModuleHandleW
GetProcAddress
LoadLibraryA
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer
OpenProcess
CheckRemoteDebuggerPresent
LoadLibraryW

Exports

Exports

qt_plugin_instance
qt_plugin_query_metadata

Sections

.text
Size: 663KB - Virtual size: 662KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 287KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qtmetad
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: 2024

Password: 2024

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

c j Size: 334KB - Virtual size: 334KB

.text Size: 272KB - Virtual size: 272KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

Size: 512B - Virtual size: 16B

Password: 2024

7ccb9c5f3f9fc1eda5b1015ecdb98e95

Code Sign

61:1a:f5:ea:00:00:00:00:00:6aCertificate

Extended Key Usages

Key Usages

61:05:19:96:00:00:00:00:00:1bCertificate

Extended Key Usages

61:16:68:34:00:00:00:00:00:1cCertificate

Extended Key Usages

Key Usages

61:15:08:27:00:00:00:00:00:0cCertificate

Extended Key Usages

Key Usages

61:05:49:55:00:00:00:00:00:0bCertificate

Extended Key Usages

61:0c:52:4c:00:00:00:00:00:03Certificate

Key Usages

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9Signer

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcr100

kernel32

Sections

.text Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 864B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 334B

Password: 2024

7ccb9c5f3f9fc1eda5b1015ecdb98e95

Code Sign

61:1a:f5:ea:00:00:00:00:00:6aCertificate

Extended Key Usages

Key Usages

61:05:19:96:00:00:00:00:00:1bCertificate

Extended Key Usages

61:16:68:34:00:00:00:00:00:1cCertificate

Extended Key Usages

Key Usages

61:15:08:27:00:00:00:00:00:0cCertificate

Extended Key Usages

Key Usages

61:05:49:55:00:00:00:00:00:0bCertificate

Extended Key Usages

61:0c:52:4c:00:00:00:00:00:03Certificate

Key Usages

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9Signer

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcr100

kernel32

Sections

.text Size: 4KB - Virtual size: 3KB

c j
Size: 334KB - Virtual size: 334KB

.text
Size: 272KB - Virtual size: 272KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

61:05:19:96:00:00:00:00:00:1b
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate

61:15:08:27:00:00:00:00:00:0c
Certificate

61:05:49:55:00:00:00:00:00:0b
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9
Signer

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45
Signer

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 864B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 334B

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

61:05:19:96:00:00:00:00:00:1b
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate

61:15:08:27:00:00:00:00:00:0c
Certificate

61:05:49:55:00:00:00:00:00:0b
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9
Signer

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45
Signer

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 864B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 334B

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

61:05:19:96:00:00:00:00:00:1b
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate

61:15:08:27:00:00:00:00:00:0c
Certificate

61:05:49:55:00:00:00:00:00:0b
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9
Signer

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45
Signer

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 864B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 334B

61:1a:f5:ea:00:00:00:00:00:6a
Certificate

61:05:19:96:00:00:00:00:00:1b
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate

61:15:08:27:00:00:00:00:00:0c
Certificate

61:05:49:55:00:00:00:00:00:0b
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate

dc:a0:90:d3:a8:27:17:2b:2f:1f:f9:01:b7:30:41:d8:0b:17:31:1f:f2:98:19:53:7b:61:23:ad:a6:44:a3:f9
Signer

eb:f5:d6:0a:a8:5f:f3:c9:fa:66:6f:ce:63:70:f7:79:13:f1:7c:45
Signer

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 864B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 334B