kla[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

kla.zip
Size

23.5MB
MD5

859621d51e809ec821062ce7ff995f5c
SHA1

1fd308348ef8ecb1deac0f1799ec94f0e2068cdb
SHA256

c1f1ce81115bed45c594aeeb92adb687bb04478cb40bb9dab538277d0c8cc13e
SHA512

52a63aaafb45c624ae4cb9b1ad61658ac534a1fa1c9d9452800a519dab4a0619295eedb3a49ca3d64d4d5d70c2e5c3904daaf092fd24ec5db333e962e7b30fda
SSDEEP

393216:r09QKb6TTi8BPv7lNJKt2uRpbAuZ5LlRnxskfg0Av0qIFlQtTPOUw3:iQKmj7rI/mExRgV9fBPe3

Score

3^/10

pdf link

Malware Config

Signatures

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/KLA-VPN-Setup-9.4.3-8353/mssvp.dll

Files

kla.zip
.zip
KLA-VPN-Setup-9.4.3-8353/2022_Global_Impact_Report.pdf
.pdf
- http://2050.es
- http://Enrichment.es
- http://Kitchen.es
- http://U.K.es
- http://base.es
- http://better.es
- http://business.es
- http://cells.es
- http://challenges.es
- http://change.es
- http://company.es
- http://compliance.es
- http://consultants.es
- http://control.es
- http://culture.es
- http://customers.es
- http://cyberattacks.es
- http://day.es
- http://development.es
- http://device.es
- http://en-USrequirements.es
- http://en-USvalidation.es
- http://environment.es
- http://es-ESes-ESproducts.es
- http://es-ESinnovation.es
- http://es-ESpotential.es
- http://es-ESprograms.es
- http://es-ESstakeholders.es
- http://es-ESstatements.es
- http://experiences.es
- http://fuels.es
- http://goals.es
- http://grew.es
- http://impacts.es
- http://industry.es
- http://information.es
- http://initiativeses-ES.es
- http://learn.es
- http://management.es
- http://must.es
- http://neighborhoods.es
- http://opportunities.es
- http://outcomes.es
- http://partners.es
- http://path.es
- http://possible.es
- http://practices.es
- http://process.es
- http://products.es
- http://professionals.es
- http://programming.es
- http://programs.es
- http://quickly.es
- http://report.es
- http://responsibilities.es
- http://risk.es
- http://risks.es
- http://scenario.es
- http://scrap.es
- http://stakeholders.es
- http://standards.es
- http://success.es
- http://suppliers.es
- http://targets.es
- http://term.es
- http://ties.es
- http://tone.es
- http://websitees-ES.es
- http://well-being.es
- http://workforce.es
- http://www.apexcos.com
- http://years.es-ESes-ESes-ESes-ESes-ESes-ESes-ES.es
- https://d1io3yog0oux5.cloudfront.net/_8a2f7f510a98cdd3e7db241c63712f9a/klatencor/db/1157/10354/annual_report/Annual+Report+%28Final%29.pdf
- Show all
KLA-VPN-Setup-9.4.3-8353/KLA-Setup.exe
.exe windows:5 windows x86 arch:x86

d4fe8eec31ba44b37546499596e74621

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:c5:74:71:1d:b4:8c:c4:e2:f0:bc:f4:65:29:87:2e
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

14/08/2023, 00:00

Not After

13/08/2024, 23:59

Subject

CN=GFI SOFTWARE INC.,O=GFI SOFTWARE INC.,L=Austin,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

73:b3:12:fa:b2:f8:cc:1d:fe:49:ba:01:fb:ca:7e:8b:6d:a9:fc:3a:48:78:86:17:8d:e4:f1:dc:f6:33:f2:7d
Signer

Actual PE Digest

73:b3:12:fa:b2:f8:cc:1d:fe:49:ba:01:fb:ca:7e:8b:6d:a9:fc:3a:48:78:86:17:8d:e4:f1:dc:f6:33:f2:7d

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\CodeBases\isdev\redist\Language Independent\i386\setup.pdb

Imports

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

comctl32

ord17

kernel32

LoadLibraryW
GetModuleHandleW
lstrcmpW
lstrcmpiW
GetSystemDefaultLangID
GetUserDefaultLangID
VerLanguageNameW
CompareFileTime
CreateDirectoryW
FindClose
FindFirstFileW
FindNextFileW
SetFileAttributesW
GetSystemTimeAsFileTime
GetPrivateProfileStringW
MoveFileW
LocalFree
FormatMessageW
GetSystemInfo
MulDiv
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LoadLibraryExW
GetVersion
GetLocalTime
IsValidLocale
GetCommandLineW
GetFileAttributesW
FlushFileBuffers
SetEndOfFile
VirtualQuery
lstrcpyA
IsBadReadPtr
GetDiskFreeSpaceW
GetDriveTypeW
GetExitCodeProcess
GetCurrentThread
GetLocaleInfoW
InterlockedExchange
LoadLibraryExA
GetProcAddress
FreeLibrary
CompareStringA
CompareStringW
lstrcatW
GetVersionExW
InterlockedDecrement
InterlockedIncrement
CreateEventW
QueryPerformanceFrequency
ReadConsoleW
WriteConsoleW
SetStdHandle
SetFilePointerEx
GetConsoleMode
GetTempFileNameW
SetConsoleCtrlHandler
OutputDebugStringW
EnumSystemLocalesW
GetUserDefaultLCID
FatalAppExitA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetFileType
HeapReAlloc
CreateSemaphoreW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStringTypeW
GetCPInfo
GetOEMCP
IsValidCodePage
GetCurrentThreadId
HeapSize
AreFileApisANSI
GetModuleHandleExW
GetStdHandle
GetACP
IsProcessorFeaturePresent
IsDebuggerPresent
RtlUnwind
lstrcpynA
LocalAlloc
QueryPerformanceCounter
SearchPathW
lstrcmpA
SystemTimeToFileTime
ResetEvent
SetEvent
VirtualProtect
GetCurrentProcessId
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetDateFormatW
GetTimeFormatW
GetCurrentDirectoryW
FindResourceExW
GetLastError
CopyFileW
GetTickCount
GetExitCodeThread
CreateThread
FindResourceW
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
SizeofResource
LockResource
LoadResource
lstrcpyW
GetWindowsDirectoryW
SetErrorMode
GetTempPathW
ExpandEnvironmentStringsW
MoveFileExW
WriteProcessMemory
VirtualProtectEx
GetSystemDirectoryW
FlushInstructionCache
SetThreadContext
GetThreadContext
CreateProcessW
ResumeThread
TerminateProcess
ExitProcess
GetCurrentProcess
Sleep
WaitForSingleObject
DuplicateHandle
RemoveDirectoryW
DeleteFileW
SetCurrentDirectoryW
lstrlenW
lstrcpynW
GetModuleFileNameW
GetProcessHeap
HeapFree
HeapAlloc
WriteFile
SetFilePointer
ReadFile
WideCharToMultiByte
GetEnvironmentVariableW
SetFileTime
GetFileTime
OpenProcess
GetProcessTimes
LCMapStringW
DecodePointer
EncodePointer
MultiByteToWideChar
lstrlenA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
CloseHandle
GetFileSize
CreateFileW
SetLastError
GetConsoleCP

user32

DefWindowProcW
PostMessageW
DispatchMessageW
PostQuitMessage
RegisterClassW
TranslateMessage
GetMessageW
CharUpperW
KillTimer
SetTimer
GetDC
CharPrevW
SendDlgItemMessageW
wvsprintfW
LoadImageW
CreateDialogParamW
MoveWindow
SetCursor
GetWindow
GetDlgItemTextW
SetFocus
EnableWindow
SetForegroundWindow
SetActiveWindow
SetDlgItemTextW
IsDialogMessageW
FindWindowW
SubtractRect
IntersectRect
SetRect
FillRect
GetSysColorBrush
GetSysColor
GetWindowRect
ExitWindowsEx
GetSystemMetrics
GetDlgCtrlID
CreateDialogIndirectParamW
DestroyWindow
IsWindow
SendMessageW
MessageBoxW
CharNextW
WaitForInputIdle
SetWindowLongW
GetWindowLongW
GetClientRect
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
SetWindowPos
SetWindowTextW
GetDlgItem
EndDialog
DialogBoxIndirectParamW
ShowWindow
GetDesktopWindow
MsgWaitForMultipleObjects
PeekMessageW
wsprintfW
LoadIconW
LoadCursorW
CreateWindowExW

gdi32

GetObjectW
SetTextColor
SetBkMode
GetDeviceCaps
CreateFontW
CreateFontIndirectW
SetStretchBltMode
StretchBlt
SelectObject
DeleteDC
CreateDIBitmap
CreateCompatibleDC
BitBlt
DeleteObject
GetStockObject
CreatePalette
GetSystemPaletteEntries
RealizePalette
SelectPalette
GetDIBColorTable
CreateHalftonePalette
UnrealizeObject
TranslateCharsetInfo
CreateSolidBrush

advapi32

RegCloseKey
CryptSignHashW
CryptHashData
CryptCreateHash
CryptAcquireContextW
RegOpenKeyW
RegEnumKeyW
RegCreateKeyW
LookupPrivilegeValueW
AdjustTokenPrivileges
CryptVerifySignatureW
RegOpenKeyExW
RegQueryValueExW
RegDeleteValueW
RegCreateKeyExW
RegEnumValueW
GetTokenInformation
FreeSid
EqualSid
AllocateAndInitializeSid
OpenThreadToken
OpenProcessToken
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegQueryInfoKeyW
RegEnumKeyExW
RegDeleteKeyW
RegSetValueExW

shell32

SHGetSpecialFolderLocation
ShellExecuteW
SHBrowseForFolderW
SHGetPathFromIDListW
CommandLineToArgvW
ShellExecuteExW
SHGetMalloc

ole32

CoCreateInstance
StringFromGUID2
CoCreateGuid
CreateItemMoniker
GetRunningObjectTable
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
ProgIDFromCLSID
CoUninitialize
CoInitializeSecurity
CoInitialize

oleaut32

LoadTypeLi
SysAllocStringLen
SysFreeString
SysReAllocStringLen
SysStringLen
SysAllocString
SysStringByteLen
SysAllocStringByteLen
VarBstrCat
VarBstrFromDate
VariantClear
VariantChangeType
GetErrorInfo
VarUI4FromStr
SystemTimeToVariantTime
RegisterTypeLi
SetErrorInfo
CreateErrorInfo

crypt32

CryptAcquireCertificatePrivateKey
CryptImportPublicKeyInfo
PFXImportCertStore
CertSaveStore
CertOpenStore
CertFindCertificateInStore
CertCompareCertificate
CertOpenSystemStoreW
CertGetIssuerCertificateFromStore
CertSetCertificateContextProperty
CertGetCertificateContextProperty
CertAddCertificateContextToStore
CertEnumCertificatesInStore

rpcrt4

UuidCreate
UuidToStringW
UuidFromStringW
RpcStringFreeW

Sections

.text
Size: 717KB - Virtual size: 717KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
KLA-VPN-Setup-9.4.3-8353/LoggingPlatform.dll
.dll windows:6 windows x86 arch:x86

c4217bcf28c427e746fd876322b449a0

Code Sign

33:00:00:03:f1:62:06:e3:e7:ef:da:8a:be:00:00:00:00:03:f1
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:24

Not After

02/12/2021, 21:24

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c2:9c:91:65:1e:e1:a8:d6:29:28:cd:54:80:41:ea:9c:ea:58:31:eb:6c:2c:e0:b9:b8:6e:74:64:1a:bb:38:a3
Signer

Actual PE Digest

c2:9c:91:65:1e:e1:a8:d6:29:28:cd:54:80:41:ea:9c:ea:58:31:eb:6c:2c:e0:b9:b8:6e:74:64:1a:bb:38:a3

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\dbs\sh\odct\0629_224505_0\client\onedrive\Product\Logging\dll\obj\i386\LoggingPlatform.pdb

Imports

kernel32

GetFileInformationByHandle
GetFileInformationByHandleEx
SetFileInformationByHandle
CompareStringOrdinal
GetFileAttributesW
GetExitCodeProcess
ExpandEnvironmentStringsW
FindFirstVolumeW
FindNextVolumeW
FindVolumeClose
GetFileSizeEx
ReadFile
GetEnvironmentVariableW
GetCommandLineW
CopyFileW
SetDllDirectoryW
ReleaseMutex
RegisterApplicationRestart
SetFilePointer
GetFileSize
GetFileType
LoadLibraryExW
GetFinalPathNameByHandleW
GetProcessTimes
IsDebuggerPresent
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
SetLastError
OpenFileById
InterlockedPushEntrySList
OutputDebugStringW
InitializeSListHead
DisableThreadLibraryCalls
QueryPerformanceCounter
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
CreateIoCompletionPort
ReadDirectoryChangesW
GetQueuedCompletionStatus
PostQueuedCompletionStatus
GetDiskFreeSpaceExW
VerifyVersionInfoW
VerSetConditionMask
DeleteCriticalSection
InitializeCriticalSectionEx
MultiByteToWideChar
WideCharToMultiByte
IsWow64Process
CreateProcessW
CreateMutexW
GetProcessHeap
HeapAlloc
HeapFree
GetModuleFileNameW
GetModuleHandleW
GetCurrentProcess
GetSystemTimeAsFileTime
WaitForSingleObject
TerminateProcess
Sleep
MoveFileW
K32GetModuleFileNameExW
OpenProcess
LocalFree
FreeLibrary
GetProcAddress
LoadLibraryW
FindClose
FindNextFileW
FindFirstFileW
DeviceIoControl
CompareFileTime
DeleteFileW
CreateDirectoryW
WerUnregisterFile
WerRegisterFile
WriteFile
CloseHandle
SetFileTime
SystemTimeToFileTime
GetSystemTime
GetLastError
CreateFileW
GetCurrentThreadId
UnhandledExceptionFilter
GetSystemTimes
GetCurrentProcessId

user32

SendMessageTimeoutW
DestroyWindow
DispatchMessageW
TranslateMessage
ShowWindow
GetMessageW
CreateWindowExW
GetClassNameW
EnumWindows
RegisterClassW
PostMessageW
GetWindowThreadProcessId

advapi32

RegEnumKeyW
CryptAcquireContextW
RegDeleteKeyExW
RegDeleteTreeW
ConvertStringSecurityDescriptorToSecurityDescriptorW
FreeSid
GetAclInformation
StartServiceW
QueryServiceConfigW
CreateWellKnownSid
ControlService
QueryServiceStatusEx
QueryServiceStatus
DeleteService
SetNamedSecurityInfoW
SetEntriesInAclW
AllocateAndInitializeSid
GetNamedSecurityInfoW
CreateProcessAsUserW
DuplicateTokenEx
ConvertSidToStringSidW
OpenServiceW
SetServiceStatus
RegisterServiceCtrlHandlerW
StartServiceCtrlDispatcherW
CloseServiceHandle
ChangeServiceConfig2W
ChangeServiceConfigW
CreateServiceW
OpenSCManagerW
RegUnLoadKeyW
RegLoadKeyW
CryptDestroyHash
RegCreateKeyTransactedW
SetFileSecurityW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegEnumValueW
GetTokenInformation
OpenProcessToken
RegDeleteValueW
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegGetValueW
RegCloseKey
RegSetKeyValueW
RegCreateKeyExW
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptReleaseContext

shell32

SHCreateDirectoryExW
SHGetKnownFolderPath
SHGetSpecialFolderPathW
SHFileOperationW
SHChangeNotify
CommandLineToArgvW
SHCreateItemFromParsingName
SHGetFolderPathW
SHGetFolderPathAndSubDirW
ord526
ShellExecuteExW

ole32

CoCreateInstance
CoCreateGuid
CoCreateFreeThreadedMarshaler
StringFromGUID2
CoSetProxyBlanket
CoInitializeEx
CoUninitialize
CoTaskMemFree
StringFromCLSID

oleaut32

SysAllocStringByteLen
SysStringByteLen
SysAllocString
GetRecordInfoFromTypeInfo
LoadRegTypeLi
LoadTypeLi
SysFreeString
SetErrorInfo
SysStringLen
GetErrorInfo

crypt32

CryptBinaryToStringW
CryptStringToBinaryW

rpcrt4

RpcBindingSetAuthInfoExW
RpcBindingFromStringBindingW
RpcStringBindingComposeW
RpcBindingFree
RpcServerInqCallAttributesW
RpcServerUnregisterIf
RpcEpUnregister
RpcBindingVectorFree
RpcEpRegisterW
RpcServerInqBindings
RpcServerUseProtseqW
RpcStringFreeW
UuidToStringW
UuidCreate
RpcServerRegisterIfEx

secur32

GetUserNameExW

shlwapi

PathIsRelativeW
PathFileExistsW
PathIsDirectoryW
SHGetValueW
PathStripPathW
SHRegGetBoolUSValueW
SHRegGetValueW
SHCreateStreamOnFileW
PathIsPrefixW

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

wininet

InternetCheckConnectionW

ws2_32

accept
send
setsockopt
bind
htonl
WSAGetLastError
htons
socket
WSAStartup
closesocket
listen

wtsapi32

WTSQuerySessionInformationW
WTSQueryUserToken
WTSEnumerateSessionsW
WTSFreeMemory

msvcp140

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
?in@?$codecvt@GDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAG3AAPAG@Z
?out@?$codecvt@GDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBG1AAPBGPAD3AAPAD@Z
??0?$codecvt@GDU_Mbstatet@@@std@@QAE@I@Z
??1?$codecvt@GDU_Mbstatet@@@std@@MAE@XZ
?id@?$codecvt@GDU_Mbstatet@@@std@@2V0locale@2@A
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
_Query_perf_frequency
_Query_perf_counter
?_Random_device@std@@YAIXZ
_Cnd_wait
_Cnd_do_broadcast_at_thread_exit
_Mtx_current_owns
_Cnd_timedwait
_Thrd_id
_Thrd_join
?_Throw_Cpp_error@std@@YAXH@Z
_Cnd_broadcast
_Cnd_destroy_in_situ
_Cnd_init_in_situ
?put@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QBE?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBUtm@@PB_W4@Z
?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@2V0locale@2@A
?widen@?$ctype@_W@std@@QBE_WD@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?id@?$ctype@_W@std@@2V0locale@2@A
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Xinvalid_argument@std@@YAXPBD@Z
_Mtx_trylock
?_Xbad_function_call@std@@YAXXZ
?seekg@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@_JH@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
?clear@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXXZ
?_Xlength_error@std@@YAXPBD@Z
_Xtime_get_ticks
?out@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PB_W1AAPB_WPAD3AAPAD@Z
?_Xbad_alloc@std@@YAXXZ
_Mtx_destroy_in_situ
_Mtx_init_in_situ
_Mtx_unlock
_Mtx_lock
?_Throw_C_error@std@@YAXH@Z
??1?$codecvt@_WDU_Mbstatet@@@std@@MAE@XZ
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?_Incref@facet@locale@std@@UAEXXZ
??Bid@locale@std@@QAEIXZ
??0?$codecvt@_WDU_Mbstatet@@@std@@QAE@I@Z
?_Xout_of_range@std@@YAXPBD@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z
?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
?uncaught_exception@std@@YA_NXZ
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?sbumpc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WD@Z
?put@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@_W@Z
?snextc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?_Ipfx@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE_N_N@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z
?seekg@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@V?$fpos@U_Mbstatet@@@2@@Z
?tellg@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE?AV?$fpos@U_Mbstatet@@@2@XZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAM@Z
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?in@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPA_W3AAPA_W@Z
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?unshift@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?getloc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QBE?AVlocale@2@XZ

userenv

GetDefaultUserProfileDirectoryW
CreateEnvironmentBlock

vcruntime140

__std_type_info_destroy_list
memset
__std_exception_destroy
_CxxThrowException
_except_handler4_common
__current_exception_context
__current_exception
wcsstr
wcsrchr
strrchr
memmove
__RTDynamicCast
memcmp
memcpy
__CxxFrameHandler3
__std_terminate
__std_exception_copy
_purecall

api-ms-win-crt-runtime-l1-1-0

_invalid_parameter_noinfo_noreturn
_invalid_parameter_noinfo
terminate
_beginthreadex
_initterm_e
_initterm
_errno
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll

api-ms-win-crt-stdio-l1-1-0

setvbuf
__stdio_common_vsprintf_s
fsetpos
fgetwc
__stdio_common_vswscanf
_wfopen_s
fgetc
fclose
fputwc
fputc
ungetc
_fseeki64
fflush
ungetwc
fwrite
__stdio_common_vswprintf
__stdio_common_vswprintf_s
fread
fgetpos
_get_stream_buffer_pointers

api-ms-win-crt-heap-l1-1-0

_callnewh
free
malloc

api-ms-win-crt-string-l1-1-0

isxdigit
_wcsicmp
tolower
iswspace
_wcsdup
towupper

api-ms-win-crt-time-l1-1-0

_localtime64_s
_gmtime64_s
_time64

api-ms-win-crt-filesystem-l1-1-0

_wrename
_lock_file
_wstat64
_unlock_file
_wremove

api-ms-win-crt-convert-l1-1-0

_strtod_l
atof
atol
wcstoll
wcstol
strtoll
_wtoi

api-ms-win-crt-math-l1-1-0

log2
ceil

api-ms-win-crt-locale-l1-1-0

_create_locale
_free_locale

Exports

Exports

??0IScenario@ScenarioTracking@@QAE@ABV01@@Z
??0IScenario@ScenarioTracking@@QAE@XZ
??0ScenarioBase@ScenarioTracking@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
??0Scope@ScenarioTracking@@QAE@V?$shared_ptr@VIScenario@ScenarioTracking@@@std@@@Z
??0StructuredEvent@@QAE@PBDH0ABU_GUID@@IIII@Z
??0SuppressTransferScope@ScenarioTracking@@QAE@XZ
??0TelemetryEvent@@QAE@PBD0ABU_GUID@@II00II@Z
??0TransferScope@ScenarioTracking@@QAE@QBVITrace@1@@Z
??0TransferScope@ScenarioTracking@@QAE@V?$unique_ptr@VITrace@ScenarioTracking@@U?$default_delete@VITrace@ScenarioTracking@@@std@@@std@@@Z
??1IScenario@ScenarioTracking@@UAE@XZ
??1ScenarioBase@ScenarioTracking@@UAE@XZ
??1Scope@ScenarioTracking@@QAE@XZ
??1SuppressTransferScope@ScenarioTracking@@QAE@XZ
??1TelemetryEvent@@QAE@XZ
??1TransferScope@ScenarioTracking@@QAE@XZ
??4IScenario@ScenarioTracking@@QAEAAV01@ABV01@@Z
??_7IScenario@ScenarioTracking@@6B@
?ApplyScenarioImplicitParameters@ScenarioTracking@@YGXPB_WABV?$function@$$A6GXPBDV?$variant@PBDPB_WHI_J_K_N@std@@@Z@std@@@Z
?ApplyScenarioTracking@ScenarioTracking@@YGXABV?$function@$$A6GXPBDV?$variant@PBDPB_WHI_J_K_N@std@@@Z@std@@@Z
?AssignLoggingSession@@YGXABV?$shared_ptr@VILoggingSession@@@std@@_N@Z
?CaptureTrace@ScenarioTracking@@YG?AV?$unique_ptr@VITrace@ScenarioTracking@@U?$default_delete@VITrace@ScenarioTracking@@@std@@@std@@XZ
?ClassifyScenarioOutcome@FailuresClassification@@YG?AW4Outcome@QoS@@PB_WW423@K@Z
?ClearLoggingSession@@YGXXZ
?ConvertOutcomeToResultType@QoS@@YGPB_WW4Outcome@1@@Z
?ConvertResultTypeToOutcome@QoS@@YG?AW4Outcome@1@PB_W@Z
?CreateBinaryLoggingSession@@YGPAVILoggingSession@@XZ
?CreateRemoteDebugServer@@YGPAVIRemoteDebugServer@@_NG@Z
?DecrementActiveHydrationsCount@QoS@@YAXXZ
?FlushObfuscationTableToDisk@@YGXXZ
?GetActiveHydrationsCount@QoS@@YAIXZ
?GetApplicationPropertyId@QoS@@YA?AW4Id@PropertyId@TelemetryConstants@@XZ
?GetCurrentTraceId@ScenarioTracking@@YGIXZ
?GetDefaultLoggingPath@@YGJAAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@ABV12@@Z
?GetDuration@ScenarioBase@ScenarioTracking@@UAE?AV?$duration@_JU?$ratio@$00$0DOI@@std@@@chrono@std@@XZ
?GetEmptyTelemetryUsageExperimentVector@@YG?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetErrorType@QoS@@YG?AW4Type@ErrorType@TelemetryConstants@@JI@Z
?GetErrorType@QoS@@YG?AW4Type@ErrorType@TelemetryConstants@@JIABV?$set@IU?$less@I@std@@V?$allocator@I@2@@std@@@Z
?GetId@ScenarioBase@ScenarioTracking@@UAE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetInstance@Telemetry@@CGPAV1@XZ
?GetLoggingSession@@YG?AV?$shared_ptr@VILoggingSession@@@std@@XZ
?GetName@ScenarioBase@ScenarioTracking@@UAE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?GetResultType@QoS@@YAPB_WJI@Z
?GetResultType@QoS@@YAPB_WW4Type@ErrorType@TelemetryConstants@@@Z
?GetTelemetryUsageExperimentVector@@YG?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4ExperimentType@@PB_W11@Z
?GetValueTranslation@TelemetryEvent@@QAEP6G?AV?$variant@Umonostate@std@@PBDH@std@@ABTStructuredEventData@@@ZI@Z
?GuidToString@@YG?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@ABU_GUID@@@Z
?IncrementActiveHydrationsCount@QoS@@YAXXZ
?InsertIntoIrmEnabledLibrarySet@QoS@@YAXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?IsAnyLibraryIrmEnabled@QoS@@YA_NXZ
?IsRecorded@ScenarioBase@ScenarioTracking@@UAE_NXZ
?LoggingAddToMultiValueCommonDatapoint@@YGXPB_W0@Z
?LoggingGetCallbackCount@@YGIXZ
?LoggingInitializeForExternalComponent@@YGJPB_W0_NG11W4TelemetryTransportType@@0K1@Z
?LoggingReconfigure@@YGXPAVIUpdateRingSettingsManager@@@Z
?LoggingRecordAssert@@YGXPB_W000I0_NI1@Z
?LoggingRecordAssert@@YGXPB_W00I0_NI1@Z
?LoggingRecordUnexpectedCrash@@YGXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0K@Z
?LoggingRegisterCallback@@YG_KP6GXPAXPBDI1ABU_GUID@@IIIQAUStructuredEventParameter@@@Z0@Z
?LoggingRemoveFromMultiValueCommonDatapoint@@YGXPB_W0@Z
?LoggingResetAccountSpecificCommonDatapoints@@YGXXZ
?LoggingResetTelemetryLevelsToDefault@@YGXXZ
?LoggingRotate@@YGXXZ
?LoggingRotateIfNeeded@@YGXXZ
?LoggingSanitizeFilename@@YG?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PBD@Z
?LoggingSendTelemetryEvent@@YGXAAUTelemetryEvent@@QAUStructuredEventParameter@@@Z
?LoggingSetCommonDatapoint@@YGXPB_W0@Z
?LoggingSetCommonDatapointUserId@@YGXPB_WW4UserIdType@@@Z
?LoggingSetExperimentSetupData@@YGXPBDIQAUExperimentSetupData@@I1@Z
?LoggingSetLoggingPrivacyLevel@@YGXW4LoggingPrivacyLevel@@@Z
?LoggingSetTelemetryLevelEnabled@@YGXI_N@Z
?LoggingShouldSample@@YG_NN@Z
?LoggingSwitchTelemetryPipeline@@YGXW4TelemetryTransportType@@_N@Z
?LoggingUninitializeForExternalComponent@@YGXXZ
?LoggingUnregisterCallback@@YGX_K@Z
?LoggingWriteDebugString@@YAXHPBDI0_NPB_WZZ
?LoggingWriteDeviceFailureDatagramEntry@@YGXPB_W0@Z
?LoggingWriteFormatString@@YAXHPBDI0_NPB_WZZ
?LoggingWriteFormatStringEx@@YGXHHPBDI0_NPB_WPAD@Z
?LoggingWriteStructuredEvent@@YGXABUStructuredEvent@@QAUStructuredEventParameter@@@Z
?LoggingWriteStructuredEvent@@YGXPBDI0ABU_GUID@@IIIQAUStructuredEventParameter@@@Z
?MarkScenarioReported@ScenarioTracking@@YGXPB_W@Z
?NarrowStringToWideString@@YG?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@PBD@Z
?ObserveTrace@ScenarioTracking@@YGPAVITrace@1@XZ
?OneDriveAssertWorker@@YAXPB_WW4OneDriveAssertType@@0I000ZZ
?OutcomeToTelemetryValue@QoS@@YG?AV?$variant@Umonostate@std@@PBDH@std@@ABTStructuredEventData@@@Z
?OverrideAsserts@@YGXP6GXPB_W000I0_N@Z@Z
?Record@ScenarioBase@ScenarioTracking@@UAEXXZ
?Register@FailuresClassification@@YGX$$QAV?$function@$$A6G?AW4Outcome@QoS@@PB_WW412@K@Z@std@@@Z
?RegisterSensitiveRootPath@@YGXPB_W0@Z
?RemoveFromIrmEnabledLibrarySet@QoS@@YAXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?RemovePrivateInfo@@YGXAAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?ReportExternalAssert@@YGXPB_W_N0I0@Z
?ReportUnrecordedScenario@ScenarioTracking@@YGXAAVIScenario@1@@Z
?Reset@FailuresClassification@@YGXXZ
?SetApplicationId@QoS@@YAXI@Z
?SetValueTranslation@TelemetryEvent@@SGXPAU1@IP6G?AV?$variant@Umonostate@std@@PBDH@std@@ABTStructuredEventData@@@Z@Z
?SizeUnknown@QoS@@YGIXZ
?StartScenario@ScenarioTracking@@YG?AV?$shared_ptr@VIScenario@ScenarioTracking@@@std@@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@3@@Z
?StripPrivateInfoFromString@@YG?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@PB_W@Z
?UnregisterSensitiveRootPath@@YGXPB_W@Z
?UpdateExperimentalAriaRampAPI@@YGX_N@Z
?UpdateOfficePrivacyRamp@@YGX_N@Z
?UpdateTelemetryTransmissionProfile@@YGXPBD_N@Z
?WideStringToNarrowString@@YG?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PB_W@Z
?g_ODHasFatallyAsserted@@3_NA
?g_assertLogger@@3P6GXPB_W000I0_N@ZA
?g_catchAssertCallbackInvoked@@3HA
?initAssertLogger@@YGXP6GXPB_W000I0_N@Z@Z
InitLogging
UninitLogging
_TestInitLogging@4
_TestInitLoggingEx@20
_TestUninitLogging@0

Sections

.text
Size: 289KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KLA-VPN-Setup-9.4.3-8353/Qt5Core.dll
.exe windows:6 windows x86 arch:x86

d89e012bb90c3e56ea22733716ecc3f1

Code Sign

33:00:00:03:f1:62:06:e3:e7:ef:da:8a:be:00:00:00:00:03:f1
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:24

Not After

02/12/2021, 21:24

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1d:db:77:07:94:e2:4e:81:c1:63:71:50:db:4d:99:c3:ce:c2:a5:dd:a6:24:92:41:43:01:90:d8:4b:06:a8:c1
Signer

Actual PE Digest

1d:db:77:07:94:e2:4e:81:c1:63:71:50:db:4d:99:c3:ce:c2:a5:dd:a6:24:92:41:43:01:90:d8:4b:06:a8:c1

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\dbs\sh\odct\0629_224505_0\client\onedrive\Product\FileCoAuth\Desktop\exe\obj\i386\FileCoAuth.pdb

Imports

loggingplatform

?LoggingWriteStructuredEvent@@YGXABUStructuredEvent@@QAUStructuredEventParameter@@@Z
?LoggingRotateIfNeeded@@YGXXZ
??0StructuredEvent@@QAE@PBDH0ABU_GUID@@IIII@Z
?GetActiveHydrationsCount@QoS@@YAIXZ
?LoggingSetCommonDatapointUserId@@YGXPB_WW4UserIdType@@@Z
?GuidToString@@YG?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@ABU_GUID@@@Z
?StripPrivateInfoFromString@@YG?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@PB_W@Z
?LoggingUninitializeForExternalComponent@@YGXXZ
?GetEmptyTelemetryUsageExperimentVector@@YG?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?LoggingSendTelemetryEvent@@YGXAAUTelemetryEvent@@QAUStructuredEventParameter@@@Z
??1TelemetryEvent@@QAE@XZ
??0TelemetryEvent@@QAE@PBD0ABU_GUID@@II00II@Z
?LoggingInitializeForExternalComponent@@YGJPB_W0_NG11W4TelemetryTransportType@@0K1@Z
?LoggingSetCommonDatapoint@@YGXPB_W0@Z
?LoggingRecordAssert@@YGXPB_W00I0_NI1@Z
?IsAnyLibraryIrmEnabled@QoS@@YA_NXZ

updateringsettings

?GetUpdateRingSettingsManager@@YGPAVIUpdateRingSettingsManager@@XZ

propsys

PropVariantToStringAlloc
PropVariantToUInt32

ntdll

NtQueryDirectoryFile
VerSetConditionMask
RtlNtStatusToDosError

kernel32

FindNextFileW
CreateEventExW
GetLongPathNameW
VerifyVersionInfoW
PostQueuedCompletionStatus
GetQueuedCompletionStatus
ReadDirectoryChangesW
CreateIoCompletionPort
CreateFileW
OpenFileById
GetFinalPathNameByHandleW
GetFileInformationByHandle
GetFileInformationByHandleEx
SetFileInformationByHandle
GetExitCodeProcess
ExpandEnvironmentStringsW
FindFirstVolumeW
FindNextVolumeW
FindVolumeClose
DeviceIoControl
GetFileSizeEx
ReadFile
GetEnvironmentVariableW
SetDllDirectoryW
GetCurrentThread
RegisterApplicationRestart
SetFilePointer
GetFileSize
GetFileType
LoadLibraryExW
GetSystemTimes
GetProcessTimes
IsDebuggerPresent
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
SetLastError
DebugBreak
SetFileAttributesW
GetFileAttributesW
CompareStringOrdinal
GetDiskFreeSpaceExW
MultiByteToWideChar
WideCharToMultiByte
SystemTimeToFileTime
CopyFileW
QueueUserWorkItem
MoveFileWithProgressW
GlobalLock
GlobalUnlock
GlobalFree
GlobalAlloc
GetDateFormatW
OpenEventW
GetLocaleInfoW
OpenMutexW
SystemTimeToTzSpecificLocalTime
UnregisterApplicationRestart
GetFileAttributesExW
DuplicateHandle
WaitForMultipleObjects
GetSystemTime
DeleteFileW
FindClose
FindFirstFileW
FreeLibrary
LoadLibraryW
GetComputerNameW
GetUserDefaultLocaleName
GetProductInfo
LCIDToLocaleName
CreateProcessW
CreateMutexW
GetSystemTimeAsFileTime
GetCurrentProcessId
TerminateProcess
MoveFileW
K32GetModuleFileNameExW
OpenProcess
GetVersionExW
LocalFree
QueryFullProcessImageNameW
GetCurrentProcess
IsWow64Process
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
GetModuleHandleW
GetProcessHeap
DeleteCriticalSection
GetProcAddress
DecodePointer
HeapAlloc
CreateThread
RaiseException
CloseHandle
SetEvent
GetLastError
Sleep
CreateEventW
WaitForSingleObject
InitializeCriticalSectionEx
GetModuleFileNameW
GetCommandLineW
HeapFree
FormatMessageW
InitializeSListHead
GetCurrentDirectoryW
InterlockedPushEntrySList
QueryPerformanceCounter
GetStartupInfoW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
InitializeCriticalSectionAndSpinCount
InitOnceBeginInitialize
InitOnceComplete
OutputDebugStringW
ReleaseMutex
GetVolumeInformationW
GetDriveTypeW
GetLogicalDrives
RemoveDirectoryW
GetComputerNameExW
GetTickCount64
WerRegisterFile

user32

GetLastActivePopup
SetFocus
AllowSetForegroundWindow
GetWindowRect
PeekMessageW
MessageBoxW
TrackPopupMenu
GetSubMenu
GetDoubleClickTime
SetMenuDefaultItem
EnableMenuItem
GetMenuStringW
GetMenuItemCount
RemoveMenu
DeleteMenu
PostQuitMessage
AppendMenuW
AdjustWindowRectEx
ModifyMenuW
SendMessageTimeoutW
LoadImageW
GetIconInfo
EndDialog
IsWindow
SetForegroundWindow
FindWindowW
SendMessageW
RegisterClassW
PostThreadMessageW
CreateWindowExW
TranslateMessage
ShowWindow
CharNextW
DispatchMessageW
DestroyWindow
SetWindowPos
CharUpperW
GetMessageW
SetTimer
KillTimer
GetClassNameW
GetWindowThreadProcessId
PostMessageW
EnumWindows
GetLastInputInfo
GetProcessDefaultLayout
IsHungAppWindow
MapWindowPoints
GetWindowLongW
CloseClipboard
OpenClipboard
GetClipboardData
SetClipboardData
EmptyClipboard
SystemParametersInfoW

advapi32

SetNamedSecurityInfoW
InitializeAcl
GetAce
RegDeleteKeyExW
RegDeleteTreeW
ConvertStringSecurityDescriptorToSecurityDescriptorW
FreeSid
GetAclInformation
StartServiceW
QueryServiceConfigW
CreateWellKnownSid
ControlService
QueryServiceStatusEx
QueryServiceStatus
DeleteService
AllocateAndInitializeSid
CreateProcessAsUserW
DuplicateTokenEx
ConvertSidToStringSidW
OpenServiceW
ConvertStringSidToSidW
SetServiceStatus
RegisterServiceCtrlHandlerW
StartServiceCtrlDispatcherW
CloseServiceHandle
ChangeServiceConfig2W
ChangeServiceConfigW
CreateServiceW
OpenSCManagerW
RegUnLoadKeyW
RegLoadKeyW
RegEnumKeyW
RegCreateKeyTransactedW
SetFileSecurityW
AccessCheck
MapGenericMask
DuplicateToken
OpenThreadToken
IsValidAcl
GetNamedSecurityInfoW
AddAce
SetEntriesInAclW
AdjustTokenPrivileges
LookupPrivilegeValueW
CryptHashData
CryptReleaseContext
CryptDestroyHash
CryptGetHashParam
CryptCreateHash
CryptAcquireContextW
RegEnumValueW
CopySid
GetLengthSid
IsValidSid
GetTokenInformation
OpenProcessToken
RegDeleteValueW
RegSetValueExW
RegEnumKeyExW
RegGetValueW
RegSetKeyValueW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey
RegQueryInfoKeyW
RegDeleteKeyW
RegOpenKeyExW
RegCopyTreeW
RegNotifyChangeKeyValue
GetUserNameW
CheckTokenMembership
DeleteAce

shell32

AssocCreateForClasses
SHBrowseForFolderW
SHGetPathFromIDListW
SHAppBarMessage
CommandLineToArgvW
ShellExecuteExW
ord526
SHGetFolderPathAndSubDirW
SHGetFolderPathW
SHCreateDirectoryExW
SHSetKnownFolderPath
ShellExecuteW
Shell_NotifyIconW
SHParseDisplayName
SHGetSpecialFolderPathW
SHGetKnownFolderPath
SHFileOperationW
SHCreateItemFromParsingName
SHChangeNotify

ole32

CoGetObject
CoAllowSetForegroundWindow
CoTaskMemFree
CoTaskMemAlloc
CoCreateFreeThreadedMarshaler
CoReleaseServerProcess
CoAddRefServerProcess
CoInitializeEx
CoRevokeClassObject
CoInitializeSecurity
CoRegisterClassObject
CoCreateInstance
GetRunningObjectTable
PropVariantClear
CoImpersonateClient
CoGetCallContext
CoRevertToSelf
CoUninitialize
CoCreateGuid
CoSetProxyBlanket
CoWaitForMultipleHandles
CLSIDFromString
StringFromCLSID
CoResumeClassObjects
CreateItemMoniker
CreateBindCtx
StringFromGUID2

oleaut32

LoadTypeLi
UnRegisterTypeLi
LoadRegTypeLi
GetRecordInfoFromTypeInfo
SysAllocStringByteLen
SysStringByteLen
RegisterTypeLi
SysAllocString
SysStringLen
SetErrorInfo
SafeArrayAccessData
SafeArrayUnaccessData
GetErrorInfo
SysFreeString

crypt32

CryptStringToBinaryW
CryptBinaryToStringW

rpcrt4

RpcServerUseProtseqW
UuidToStringW
RpcServerRegisterIfEx
RpcStringFreeW
RpcServerInqBindings
RpcEpRegisterW
RpcBindingVectorFree
RpcEpUnregister
RpcServerUnregisterIf
RpcServerInqCallAttributesW
RpcBindingFree
RpcBindingSetAuthInfoExW
RpcBindingFromStringBindingW
RpcStringBindingComposeW

secur32

GetUserNameExW

shlwapi

PathFileExistsW
SHCreateStreamOnFileW
SHCreateStreamOnFileEx
PathFindFileNameW
SHStrDupW
SHDeleteKeyW
SHRegCreateUSKeyW
SHGetValueW
SHRegGetUSValueW
PathStripPathW
PathStripToRootW
SHRegCloseUSKey
SHRegSetUSValueW
SHDeleteValueW
PathIsDirectoryW
PathIsDirectoryEmptyW
PathIsPrefixW
AssocCreate
PathRemoveFileSpecW
StrStrIW
UrlEscapeW
UrlCreateFromPathW
SHRegGetValueW
SHRegGetBoolUSValueW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

wininet

InternetCheckConnectionW
InternetGetConnectedState

wtsapi32

WTSQuerySessionInformationW
WTSQueryUserToken
WTSFreeMemory
WTSEnumerateSessionsW

msvcp140

_Xtime_get_ticks
?in@?$codecvt@GDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAG3AAPAG@Z
?out@?$codecvt@GDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBG1AAPBGPAD3AAPAD@Z
??1?$codecvt@GDU_Mbstatet@@@std@@MAE@XZ
?id@?$codecvt@GDU_Mbstatet@@@std@@2V0locale@2@A
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$codecvt@GDU_Mbstatet@@@std@@QAE@I@Z
?snextc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?_Ipfx@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE_N_N@Z
?sbumpc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z
?out@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PB_W1AAPB_WPAD3AAPAD@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QAE@I@Z
??1?$codecvt@_WDU_Mbstatet@@@std@@MAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
?clear@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xbad_function_call@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
_Mtx_destroy_in_situ
_Mtx_init_in_situ
_Cnd_init_in_situ
_Cnd_destroy_in_situ
_Mtx_lock
?_Throw_C_error@std@@YAXH@Z
_Mtx_unlock
_Cnd_wait
_Cnd_broadcast
_Cnd_unregister_at_thread_exit
?__ExceptionPtrDestroy@@YAXPAX@Z
_Cnd_register_at_thread_exit
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z
?__ExceptionPtrToBool@@YA_NPBX@Z
?_Syserror_map@std@@YAPBDH@Z
?_Throw_future_error@std@@YAXABVerror_code@1@@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrCreate@@YAXPAX@Z
?_ReportUnobservedException@details@Concurrency@@YAXXZ
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AAEXXZ
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?_Reset@_ContextCallback@details@Concurrency@@AAEXXZ
??0task_continuation_context@Concurrency@@AAE@XZ
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?_Release_chore@details@Concurrency@@YAXPAU_Threadpool_chore@12@@Z
?_Schedule_chore@details@Concurrency@@YAHPAU_Threadpool_chore@12@@Z
?_CallInContext@_ContextCallback@details@Concurrency@@QBEXV?$function@$$A6AXXZ@std@@_N@Z
?_Capture@_ContextCallback@details@Concurrency@@AAEXXZ
?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QAEX_N@Z
?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QAEXXZ
?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QAEXXZ
?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QAEXXZ
?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QAEXXZ
?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QAEXXZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?_Incref@facet@locale@std@@UAEXXZ
?uncaught_exception@std@@YA_NXZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??Bid@locale@std@@QAEIXZ
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$ctype@_W@std@@2V0locale@2@A
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?widen@?$ctype@_W@std@@QBE_WD@Z
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

userenv

GetDefaultUserProfileDirectoryW
CreateEnvironmentBlock

vcruntime140

__current_exception
memset
memmove
wcsstr
__current_exception_context
__std_exception_copy
__std_terminate
_purecall
__CxxFrameHandler3
memcpy
_CxxThrowException
__std_exception_destroy
__std_type_info_compare
_except_handler4_common
memcmp

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
_set_new_mode
free

api-ms-win-crt-string-l1-1-0

towupper
wcscat_s
wcscpy_s
isxdigit
wcscspn
_wcsicmp
wcsncpy_s
wcstok_s
iswxdigit
iswspace
isalnum
towlower
strncmp
_wcsdup
_strnicmp

api-ms-win-crt-runtime-l1-1-0

_invalid_parameter_noinfo_noreturn
_initialize_onexit_table
abort
terminate
_register_onexit_function
_errno
_initterm_e
_crt_atexit
_cexit
_controlfp_s
_seh_filter_exe
_register_thread_local_exe_atexit_callback
_c_exit
_set_app_type
_exit
exit
_initterm
_get_wide_winmain_command_line
_initialize_wide_environment
_configure_wide_argv

api-ms-win-crt-time-l1-1-0

_time64
_localtime64_s

api-ms-win-crt-convert-l1-1-0

atof
strtoull
atol
strtoll
_strtod_l
_wtoi

api-ms-win-crt-locale-l1-1-0

_configthreadlocale
_free_locale
_create_locale

api-ms-win-crt-stdio-l1-1-0

fclose
__p__commode
_set_fmode
__stdio_common_vswprintf
_wfopen_s

api-ms-win-crt-math-l1-1-0

ceil
__setusermatherr

gdi32

GetObjectW

Sections

.text
Size: 323KB - Virtual size: 322KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KLA-VPN-Setup-9.4.3-8353/Qt5QuickControls2.dll
.dll windows:6 windows x86 arch:x86

c1a41a453528ae3778e7e0e3b0554399

Code Sign

33:00:00:01:05:8e:ca:29:22:1e:6a:34:5b:00:00:00:00:01:05
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/08/2018, 20:20

Not After

23/11/2019, 20:20

Subject

CN=Microsoft Time-Stamp service,OU=Microsoft Ireland Operations Limited+OU=Thales TSS ESN:3BD4-4B80-69C3,O=Microsoft Corporation,L=Redmond,ST=WA,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:b1:dd:ed:ba:54:e9:65:b8:5f:00:01:00:00:01:b1
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/07/2018, 20:11

Not After

26/07/2019, 20:11

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:02:3b:10:df:65:17:47:51:70:ff:00:00:00:00:02:3b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/07/2018, 20:07

Not After

08/08/2019, 20:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

50:72:16:3a:61:35:88:91:98:74:53:60:eb:a9:5d:ba:55:00:66:04:7f:37:fc:3d:80:4c:02:ce:3d:ef:f1:e0
Signer

Actual PE Digest

50:72:16:3a:61:35:88:91:98:74:53:60:eb:a9:5d:ba:55:00:66:04:7f:37:fc:3d:80:4c:02:ce:3d:ef:f1:e0

Digest Algorithm

sha256

PE Digest Matches

true

ba:85:a6:d7:5b:56:a5:54:c3:a4:af:31:1d:60:6a:f3:04:6e:e2:2c
Signer

Actual PE Digest

ba:85:a6:d7:5b:56:a5:54:c3:a4:af:31:1d:60:6a:f3:04:6e:e2:2c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Qt\qt5.11.1\qt\qtquickcontrols2\lib\Qt5QuickControls2.pdb

Imports

qt5quick

?qt_metacall@QQuickRectangle@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QQuickRectangle@@UAEPAXPBD@Z
?staticMetaObject@QQuickRectangle@@2UQMetaObject@@B
?qt_metacall@QQuickImplicitSizeItem@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QQuickImplicitSizeItem@@UAEPAXPBD@Z
?staticMetaObject@QQuickImplicitSizeItem@@2UQMetaObject@@B
?qt_metacall@QQuickItem@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QQuickItem@@UAEPAXPBD@Z
?qt_metacall@QQuickImage@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QQuickImage@@UAEPAXPBD@Z
?staticMetaObject@QQuickImage@@2UQMetaObject@@B
?qt_metacall@QQuickText@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QQuickText@@UAEPAXPBD@Z
?staticMetaObject@QQuickText@@2UQMetaObject@@B
?wheelEvent@QQuickFlickable@@MAEXPAVQWheelEvent@@@Z
?viewportMoved@QQuickListView@@MAEXV?$QFlags@W4Orientation@Qt@@@@@Z
?updatePolish@QQuickPathView@@MAEXXZ
?updatePolish@QQuickItemView@@MAEXXZ
?timerEvent@QQuickFlickable@@MAEXPAVQTimerEvent@@@Z
?setHighlightMoveDuration@QQuickListView@@UAEXH@Z
?setHighlightFollowsCurrentItem@QQuickListView@@UAEX_N@Z
?setContentY@QQuickItemView@@UAEXN@Z
?setContentX@QQuickItemView@@UAEXN@Z
?qt_metacast@QQuickPathView@@UAEPAXPBD@Z
?qt_metacast@QQuickListView@@UAEPAXPBD@Z
?qt_metacall@QQuickPathView@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickListView@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?originY@QQuickItemView@@UBENXZ
?originX@QQuickItemView@@UBENXZ
?mouseUngrabEvent@QQuickPathView@@MAEXXZ
?mouseUngrabEvent@QQuickFlickable@@MAEXXZ
?mouseReleaseEvent@QQuickPathView@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QQuickFlickable@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QQuickPathView@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QQuickFlickable@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QQuickPathView@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QQuickFlickable@@MAEXPAVQMouseEvent@@@Z
?minYExtent@QQuickItemView@@MBENXZ
?minXExtent@QQuickItemView@@MBENXZ
?metaObject@QQuickPathView@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickListView@@UBEPBUQMetaObject@@XZ
?maxYExtent@QQuickListView@@MBENXZ
?maxXExtent@QQuickListView@@MBENXZ
?keyPressEvent@QQuickListView@@MAEXPAVQKeyEvent@@@Z
?initItem@QQuickListView@@MAEXHPAVQObject@@@Z
?geometryChanged@QQuickListView@@MAEXABVQRectF@@0@Z
?componentComplete@QQuickPathView@@MAEXXZ
?componentComplete@QQuickItemView@@MAEXXZ
?childMouseEventFilter@QQuickPathView@@MAE_NPAVQQuickItem@@PAVQEvent@@@Z
?childMouseEventFilter@QQuickFlickable@@MAE_NPAVQQuickItem@@PAVQEvent@@@Z
?setPathItemCount@QQuickPathView@@QAEXH@Z
?setDelegate@QQuickPathView@@QAEXPAVQQmlComponent@@@Z
?setDragMargin@QQuickPathView@@QAEXN@Z
?setHighlightMoveDuration@QQuickPathView@@QAEXH@Z
?highlightMoveDuration@QQuickPathView@@QBEHXZ
?setPreferredHighlightEnd@QQuickPathView@@QAEXN@Z
?setPreferredHighlightBegin@QQuickPathView@@QAEXN@Z
?setPath@QQuickPathView@@QAEXPAVQQuickPath@@@Z
?setModel@QQuickPathView@@QAEXABVQVariant@@@Z
?model@QQuickPathView@@QBE?AVQVariant@@XZ
??1QQuickPathView@@UAE@XZ
??0QQuickPathView@@QAE@PAVQQuickItem@@@Z
?setSnapMode@QQuickListView@@QAEXW4SnapMode@1@@Z
??1QQuickListView@@UAE@XZ
??0QQuickListView@@QAE@PAVQQuickItem@@@Z
?setPreferredHighlightEnd@QQuickItemView@@QAEXN@Z
?setPreferredHighlightBegin@QQuickItemView@@QAEXN@Z
?setHighlightRangeMode@QQuickItemView@@QAEXW4HighlightRangeMode@1@@Z
?setCurrentIndex@QQuickItemView@@QAEXH@Z
?currentIndex@QQuickItemView@@QBEHXZ
?setDelegate@QQuickItemView@@QAEXPAVQQmlComponent@@@Z
?setModel@QQuickItemView@@QAEXABVQVariant@@@Z
?model@QQuickItemView@@QBE?AVQVariant@@XZ
?setVisible@QQuickItem@@QAEX_N@Z
?setClip@QQuickItem@@QAEX_N@Z
?setParentItem@QQuickItem@@QAEXPAV1@@Z
??0QQuickItem@@QAE@PAV0@@Z
?staticMetaObject@QQuickTextEdit@@2UQMetaObject@@B
?staticMetaObject@QQuickTextInput@@2UQMetaObject@@B
?get@QQuickTextEditPrivate@@SAPAV1@PAVQQuickTextEdit@@@Z
?hAlign@QQuickTextEdit@@QBE?AW4HAlignment@1@XZ
?get@QQuickTextInputPrivate@@SAPAV1@PAVQQuickTextInput@@@Z
?hAlign@QQuickTextInput@@QBE?AW4HAlignment@1@XZ
?resetHAlign@QQuickText@@QAEXXZ
?updatePaintNode@QQuickRectangle@@MAEPAVQSGNode@@PAV2@PAUUpdatePaintNodeData@QQuickItem@@@Z
??0QQuickRectangle@@QAE@PAVQQuickItem@@@Z
?setMatrix@QSGTransformNode@@QAEXABVQMatrix4x4@@@Z
?firstChild@QSGNode@@QBEPAV1@XZ
?appendChildNode@QSGNode@@QAEXPAV1@@Z
?update@QQuickItem@@QAEXXZ
?get@QQuickTextPrivate@@SAPAV1@PAVQQuickText@@@Z
?forceLayout@QQuickText@@QAEXXZ
?setText@QQuickText@@QAEXABVQString@@@Z
??0QQuickImplicitSizeItem@@IAE@AAVQQuickImplicitSizeItemPrivate@@PAVQQuickItem@@@Z
?setImplicitHeight@QQuickItem@@QAEXN@Z
?setImplicitWidth@QQuickItem@@QAEXN@Z
?updatePaintNode@QQuickItem@@MAEPAVQSGNode@@PAV2@PAUUpdatePaintNodeData@1@@Z
?itemChange@QQuickItem@@MAEXW4ItemChange@1@ABTItemChangeData@1@@Z
?boundingRect@QQuickItem@@UBE?AVQRectF@@XZ
?setVerticalAlignment@QQuickImage@@QAEXW4VAlignment@1@@Z
?setHorizontalAlignment@QQuickImage@@QAEXW4HAlignment@1@@Z
??1QQuickItemPrivate@@UAE@XZ
??0QQuickItemPrivate@@QAE@XZ
?setColor@QQuickText@@QAEXABVQColor@@@Z
?window@QQuickItem@@QBEPAVQQuickWindow@@XZ
??0QQuickItem@@IAE@AAVQQuickItemPrivate@@PAV0@@Z
?geometryChanged@QQuickItem@@MAEXABVQRectF@@0@Z
?componentComplete@QQuickItem@@MAEXXZ
?setImplicitSize@QQuickItem@@IAEXNN@Z
?setSize@QQuickItem@@QAEXABVQSizeF@@@Z
?implicitHeight@QQuickItem@@QBENXZ
?implicitWidth@QQuickItem@@QBENXZ
?setPosition@QQuickItem@@QAEXABVQPointF@@@Z
??1QQuickItem@@UAE@XZ
?staticMetaObject@QQuickImageBase@@2UQMetaObject@@B
?updatePolish@QQuickItemPrivate@@UAEXXZ
?transformChanged@QQuickItemPrivate@@UAEXXZ
?setVisible@QQuickItemPrivate@@UAEX_N@Z
?registerAsContainmentMask@QQuickItemPrivate@@UAEXPAVQQuickItem@@_N@Z
?mirrorChange@QQuickItemPrivate@@UAEXXZ
?implicitWidthChanged@QQuickItemPrivate@@UAEXXZ
?implicitHeightChanged@QQuickItemPrivate@@UAEXXZ
?handlePointerEvent@QQuickItemPrivate@@UAE_NPAVQQuickPointerEvent@@_N@Z
?getImplicitWidth@QQuickItemPrivate@@UBENXZ
?getImplicitHeight@QQuickItemPrivate@@UBENXZ
?createTransformNode@QQuickItemPrivate@@UAEPAVQSGTransformNode@@XZ
?accessibleRole@QQuickItemPrivate@@UBE?AW4Role@QAccessible@@XZ
??0QQuickImagePrivate@@QAE@XZ
??1QQuickImageBasePrivate@@UAE@XZ
?updateDevicePixelRatio@QQuickImageBasePrivate@@UAE_NN@Z
?height@QQuickPixmap@@QBEHXZ
?width@QQuickPixmap@@QBEHXZ
??0QQuickImage@@IAE@AAVQQuickImagePrivate@@PAVQQuickItem@@@Z
?setFillMode@QQuickImage@@QAEXW4FillMode@1@@Z
?sourceSizeChanged@QQuickImageBase@@QAEXXZ
?sourceChanged@QQuickImageBase@@QAEXABVQUrl@@@Z
?effectiveDevicePixelRatio@QQuickWindow@@QBENXZ
?updatePolish@QQuickItem@@MAEXXZ
?updatePaintNode@QQuickImage@@MAEPAVQSGNode@@PAV2@PAUUpdatePaintNodeData@QQuickItem@@@Z
?textureProvider@QQuickImage@@UBEPAVQSGTextureProvider@@XZ
?setSourceSize@QQuickImageBase@@UAEXABVQSize@@@Z
?setSource@QQuickImageBase@@UAEXABVQUrl@@@Z
?setMirror@QQuickImageBase@@UAEX_N@Z
?setAutoTransform@QQuickImageBase@@UAEX_N@Z
?requestFinished@QQuickImageBase@@EAEXXZ
?releaseResources@QQuickImage@@MAEXXZ
?mouseReleaseEvent@QQuickItem@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QQuickItem@@MAEXPAVQMouseEvent@@@Z
?load@QQuickImageBase@@MAEXXZ
?itemChange@QQuickImageBase@@MAEXW4ItemChange@QQuickItem@@ABTItemChangeData@3@@Z
?isTextureProvider@QQuickImage@@UBE_NXZ
?hoverMoveEvent@QQuickItem@@MAEXPAVQHoverEvent@@@Z
?hoverLeaveEvent@QQuickItem@@MAEXPAVQHoverEvent@@@Z
?hoverEnterEvent@QQuickItem@@MAEXPAVQHoverEvent@@@Z
?geometryChanged@QQuickImage@@MAEXABVQRectF@@0@Z
?emitAutoTransformBaseChanged@QQuickImage@@UAEXXZ
?componentComplete@QQuickImageBase@@MAEXXZ
?clipRect@QQuickItem@@UBE?AVQRectF@@XZ
?boundingRect@QQuickImage@@UBE?AVQRectF@@XZ
?setImage@QQuickPixmap@@QAEXABVQImage@@@Z
?image@QQuickPixmap@@QBE?AVQImage@@XZ
?pixmapChange@QQuickImage@@MAEXXZ
??1QQuickImage@@UAE@XZ
??0QQuickImage@@QAE@PAVQQuickItem@@@Z
?isComponentComplete@QQuickItem@@IBE_NXZ
?dirty@QQuickItemPrivate@@QAEXW4DirtyType@1@@Z
?height@QQuickItem@@QBENXZ
?width@QQuickItem@@QBENXZ
?windowDeactivateEvent@QQuickItem@@MAEXXZ
?wheelEvent@QQuickItem@@MAEXPAVQWheelEvent@@@Z
?updatePolish@QQuickText@@MAEXXZ
?updatePaintNode@QQuickText@@MAEPAVQSGNode@@PAV2@PAUUpdatePaintNodeData@QQuickItem@@@Z
?touchUngrabEvent@QQuickItem@@MAEXXZ
?touchEvent@QQuickItem@@MAEXPAVQTouchEvent@@@Z
?textureProvider@QQuickItem@@UBEPAVQSGTextureProvider@@XZ
?releaseResources@QQuickItem@@MAEXXZ
?mouseUngrabEvent@QQuickItem@@MAEXXZ
?mouseReleaseEvent@QQuickText@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QQuickText@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QQuickItem@@MAEXPAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QQuickItem@@MAEXPAVQMouseEvent@@@Z
?keyReleaseEvent@QQuickItem@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QQuickItem@@MAEXPAVQKeyEvent@@@Z
?itemChange@QQuickText@@MAEXW4ItemChange@QQuickItem@@ABTItemChangeData@3@@Z
?isTextureProvider@QQuickItem@@UBE_NXZ
?inputMethodQuery@QQuickItem@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QQuickItem@@MAEXPAVQInputMethodEvent@@@Z
?hoverMoveEvent@QQuickText@@MAEXPAVQHoverEvent@@@Z
?hoverLeaveEvent@QQuickText@@MAEXPAVQHoverEvent@@@Z
?hoverEnterEvent@QQuickText@@MAEXPAVQHoverEvent@@@Z
?geometryChanged@QQuickText@@MAEXABVQRectF@@0@Z
?focusOutEvent@QQuickItem@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QQuickItem@@MAEXPAVQFocusEvent@@@Z
?event@QQuickItem@@MAE_NPAVQEvent@@@Z
?dropEvent@QQuickItem@@MAEXPAVQDropEvent@@@Z
?dragMoveEvent@QQuickItem@@MAEXPAVQDragMoveEvent@@@Z
?dragLeaveEvent@QQuickItem@@MAEXPAVQDragLeaveEvent@@@Z
?dragEnterEvent@QQuickItem@@MAEXPAVQDragEnterEvent@@@Z
?contains@QQuickItem@@UBE_NABVQPointF@@@Z
?componentComplete@QQuickText@@UAEXXZ
?clipRect@QQuickText@@UBE?AVQRectF@@XZ
?classBegin@QQuickItem@@MAEXXZ
?childMouseEventFilter@QQuickItem@@MAE_NPAV1@PAVQEvent@@@Z
?boundingRect@QQuickText@@UBE?AVQRectF@@XZ
?setElideMode@QQuickText@@QAEXW4TextElideMode@1@@Z
?setVAlign@QQuickText@@QAEXW4VAlignment@1@@Z
?setHAlign@QQuickText@@QAEXW4HAlignment@1@@Z
??1QQuickText@@UAE@XZ
??0QQuickText@@QAE@PAVQQuickItem@@@Z
?staticMetaObject@QQuickItem@@2UQMetaObject@@B
?removeItemChangeListener@QQuickItemPrivate@@QAEXPAVQQuickItemChangeListener@@V?$QFlags@W4ChangeType@QQuickItemPrivate@@@@@Z
?addItemChangeListener@QQuickItemPrivate@@QAEXPAVQQuickItemChangeListener@@V?$QFlags@W4ChangeType@QQuickItemPrivate@@@@@Z
?get@QQuickItemPrivate@@SAPAV1@PAVQQuickItem@@@Z
?contentItem@QQuickWindow@@QBEPAVQQuickItem@@XZ
?windowChanged@QQuickItem@@QAEXPAVQQuickWindow@@@Z
?childItems@QQuickItem@@QBE?AV?$QList@PAVQQuickItem@@@@XZ
?parentItem@QQuickItem@@QBEPAV1@XZ
?staticMetaObject@QQuickWindow@@2UQMetaObject@@B
?preprocess@QSGNode@@UAEXXZ
?isSubtreeBlocked@QSGNode@@UBE_NXZ
?update@QQuickWindow@@QAEXXZ
?beforeRendering@QQuickWindow@@QAEXXZ
?frameSwapped@QQuickWindow@@QAEXXZ
??1QSGTransformNode@@UAE@XZ
??0QSGTransformNode@@QAE@XZ
?setFont@QQuickText@@QAEXABVQFont@@@Z

qt5gui

?rect@QImage@@QBE?AVQRect@@XZ
??0QPainter@@QAE@PAVQPaintDevice@@@Z
??1QPainter@@QAE@XZ
?setCompositionMode@QPainter@@QAEXW4CompositionMode@1@@Z
?fillRect@QPainter@@QAEXABVQRect@@ABVQColor@@@Z
?devicePixelRatio@QGuiApplication@@QBENXZ
?entryForSize@QIconLoaderEngine@@SAPAVQIconLoaderEngineEntry@@ABUQThemeIconInfo@@ABVQSize@@H@Z
?loadIcon@QIconLoader@@QBE?AUQThemeIconInfo@@ABVQString@@@Z
?instance@QIconLoader@@SAPAV1@XZ
??0QFont@@QAE@XZ
??0QFont@@QAE@ABV0@@Z
??1QFont@@QAE@XZ
??4QFont@@QAEAAV0@ABV0@@Z
??8QFont@@QBE_NABV0@@Z
?visualAlignment@QGuiApplicationPrivate@@SA?AV?$QFlags@W4AlignmentFlag@Qt@@@@W4LayoutDirection@Qt@@V2@@Z
??0QTextFormat@@QAE@ABV0@@Z
??0QTextCharFormat@@QAE@XZ
?setFontUnderline@QTextCharFormat@@QAEX_N@Z
??1QTextCharFormat@@QAE@XZ
??0QTextCharFormat@@QAE@ABV0@@Z
??0QTextCharFormat@@QAE@$$QAV0@@Z
?setFormats@QTextLayout@@QAEXABV?$QVector@UFormatRange@QTextLayout@@@@@Z
??0QMatrix4x4@@QAE@XZ
?translate@QMatrix4x4@@QAEXMM@Z
??0QPlatformTheme@@QAE@XZ
??1QPlatformTheme@@UAE@XZ
?createPlatformMenuItem@QPlatformTheme@@UBEPAVQPlatformMenuItem@@XZ
?createPlatformMenu@QPlatformTheme@@UBEPAVQPlatformMenu@@XZ
?createPlatformMenuBar@QPlatformTheme@@UBEPAVQPlatformMenuBar@@XZ
?usePlatformNativeDialog@QPlatformTheme@@UBE_NW4DialogType@1@@Z
?createPlatformDialogHelper@QPlatformTheme@@UBEPAVQPlatformDialogHelper@@W4DialogType@1@@Z
?createPlatformSystemTrayIcon@QPlatformTheme@@UBEPAVQPlatformSystemTrayIcon@@XZ
?palette@QPlatformTheme@@UBEPBVQPalette@@W4Palette@1@@Z
?font@QPlatformTheme@@UBEPBVQFont@@W4Font@1@@Z
?themeHint@QPlatformTheme@@UBE?AVQVariant@@W4ThemeHint@1@@Z
?standardPixmap@QPlatformTheme@@UBE?AVQPixmap@@W4StandardPixmap@1@ABVQSizeF@@@Z
?fileIcon@QPlatformTheme@@UBE?AVQIcon@@ABVQFileInfo@@V?$QFlags@W4IconOption@QPlatformTheme@@@@@Z
?createIconEngine@QPlatformTheme@@UBEPAVQIconEngine@@ABVQString@@@Z
?isNull@QImage@@QBE_NXZ
?standardButtonText@QPlatformTheme@@UBE?AVQString@@H@Z
?standardButtonShortcut@QPlatformTheme@@UBE?AVQKeySequence@@H@Z
?platform_theme@QGuiApplicationPrivate@@2PAVQPlatformTheme@@A
?color@QPalette@@QBEABVQColor@@W4ColorRole@1@@Z
?styleOverride@QGuiApplicationPrivate@@2VQString@@A
?setFamily@QFont@@QAEXABVQString@@@Z
?setPointSizeF@QFont@@QAEXN@Z
?setPixelSize@QFont@@QAEXH@Z
?setWeight@QFont@@QAEXH@Z
?setStyle@QFont@@QAEXW4Style@1@@Z
?setStyleHint@QFont@@QAEXW4StyleHint@1@W4StyleStrategy@1@@Z
?resolve@QFont@@QBE?AV1@ABV1@@Z
??0QPalette@@QAE@XZ
??0QPalette@@QAE@ABV0@@Z
??1QPalette@@QAE@XZ
?setColor@QPalette@@QAEXW4ColorGroup@1@W4ColorRole@1@ABVQColor@@@Z
?resolve@QPalette@@QBE?AV1@ABV1@@Z
?staticMetaObject@QPalette@@2UQMetaObject@@B
??4QColor@@QAEAAV0@$$QAV0@@Z
??4QFont@@QAEAAV0@$$QAV0@@Z
??9QColor@@QBE_NABV0@@Z
??8QColor@@QBE_NABV0@@Z
?alpha@QColor@@QBEHXZ
??4QColor@@QAEAAV0@ABV0@@Z
??0QColor@@QAE@W4GlobalColor@Qt@@@Z
?setBlueF@QColor@@QAEXN@Z
?setGreenF@QColor@@QAEXN@Z
?setRedF@QColor@@QAEXN@Z
?blueF@QColor@@QBENXZ
?greenF@QColor@@QBENXZ
?redF@QColor@@QBENXZ
?blue@QColor@@QBEHXZ
?green@QColor@@QBEHXZ
?red@QColor@@QBEHXZ
??0QColor@@QAE@$$QAV0@@Z
??0QColor@@QAE@ABV0@@Z
??0QColor@@QAE@HHHH@Z
??0QColor@@QAE@XZ
?parent@QWindow@@QBEPAV1@XZ
?keyBindings@QPlatformTheme@@UBE?AV?$QList@VQKeySequence@@@@W4StandardKey@QKeySequence@@@Z
??1QImage@@UAE@XZ

qt5qml

?staticMetaObject@QQmlComponent@@2UQMetaObject@@B
?qt_metacall@QQmlExtensionPlugin@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QQmlExtensionPlugin@@UAEPAXPBD@Z
?staticMetaObject@QQmlExtensionPlugin@@2UQMetaObject@@B
?baseUrl@QQmlExtensionPlugin@@QBE?AVQUrl@@XZ
??1QQmlExtensionPlugin@@UAE@XZ
??0QQmlExtensionPlugin@@QAE@PAVQObject@@@Z
?isModule@QQmlMetaType@@SA_NABVQString@@HH@Z
?urlToLocalFileOrQrc@QQmlFile@@SA?AVQString@@ABVQUrl@@@Z
?urlToLocalFileOrQrc@QQmlFile@@SA?AVQString@@ABV2@@Z
?isLocalFile@QQmlFile@@SA_NABVQString@@@Z
?qmlEngine@QtQml@@YAPAVQQmlEngine@@PBVQObject@@@Z
?resolvedUrl@QQmlContext@@QAE?AVQUrl@@ABV2@@Z
?qmlContext@QtQml@@YAPAVQQmlContext@@PBVQObject@@@Z
?qmlAttachedPropertiesObject@QtQml@@YAPAVQObject@@PAHPBV2@PBUQMetaObject@@_N@Z
?setContextForObject@QQmlEngine@@SAXPAVQObject@@PAVQQmlContext@@@Z

qt5core

??4QVariant@@QAEAAV0@$$QAV0@@Z
?qt_metacall@QObject@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QObject@@UAEPAXPBD@Z
?dynamicMetaObject@QObjectData@@QBEPAUQMetaObject@@XZ
?activate@QMetaObject@@SAXPAVQObject@@PBU1@HPAPAX@Z
?staticMetaObject@QObject@@2UQMetaObject@@B
??8QVariant@@QBE_NABV0@@Z
??4QVariant@@QAEAAV0@ABV0@@Z
??0QVariant@@QAE@ABV0@@Z
?deleteLater@QObject@@QAEXXZ
?disconnect@QObject@@QBE_NPBV1@PBD@Z
?setParent@QObject@@QAEXPAV1@@Z
?childKeys@QSettings@@QBE?AVQStringList@@XZ
?endGroup@QSettings@@QAEXXZ
?keyToValue@QMetaEnum@@QBEHPBDPA_N@Z
?toReal@QVariant@@QBENPA_N@Z
?toInt@QVariant@@QBEHPA_N@Z
?isValid@QVariant@@QBE_NXZ
??0QVariant@@QAE@H@Z
?toUtf8@QString@@QGBE?AVQByteArray@@XZ
?enumerator@QMetaObject@@QBE?AVQMetaEnum@@H@Z
?indexOfEnumerator@QMetaObject@@QBEHPBD@Z
?selectionHelper@QFileSelectorPrivate@@SA?AVQString@@ABV2@0ABVQStringList@@ABVQChar@@@Z
?platformSelectors@QFileSelectorPrivate@@SA?AVQStringList@@XZ
?toLocalFile@QUrl@@QBE?AVQString@@XZ
?isLocalFile@QUrl@@QBE_NXZ
?path@QUrl@@QBE?AVQString@@V?$QFlags@W4ComponentFormattingOption@QUrl@@@@@Z
?setPath@QUrl@@QAEXABVQString@@W4ParsingMode@1@@Z
?scheme@QUrl@@QBE?AVQString@@XZ
??4QUrl@@QAEAAV0@$$QAV0@@Z
?absoluteFilePath@QFileInfo@@QBE?AVQString@@XZ
?exists@QFileInfo@@QBE_NXZ
?name@QLocale@@QBE?AVQString@@XZ
??1QLocale@@QAE@XZ
??0QLocale@@QAE@XZ
?appendLatin1To@QAbstractConcatenable@@KAXPBDHPAVQChar@@@Z
??8QString@@QBE_NVQLatin1String@@@Z
?remove@QString@@QAEAAV1@HH@Z
??YQString@@QAEAAV0@ABV0@@Z
?prepend@QString@@QAEAAV1@VQChar@@@Z
?endsWith@QString@@QBE_NVQChar@@W4CaseSensitivity@Qt@@@Z
?startsWith@QString@@QBE_NVQChar@@W4CaseSensitivity@Qt@@@Z
??0QChar@@QAE@XZ
?toString@QUrl@@QBE?AVQString@@V?$QUrlTwoFlags@W4UrlFormattingOption@QUrl@@W4ComponentFormattingOption@2@@@@Z
??0QUrl@@QAE@ABVQString@@W4ParsingMode@0@@Z
?data@QString@@QAEPAVQChar@@XZ
?reserve@QString@@QAEXH@Z
?resize@QString@@QAEXH@Z
?qt_metacast@QSettings@@UAEPAXPBD@Z
?qt_metacall@QSettings@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?metaObject@QSettings@@UBEPBUQMetaObject@@XZ
?event@QSettings@@MAE_NPAVQEvent@@@Z
?isValid@QUrl@@QBE_NXZ
?value@QSettings@@QBE?AVQVariant@@ABVQString@@ABV2@@Z
?beginGroup@QSettings@@QAEXABVQString@@@Z
??1QSettings@@UAE@XZ
??0QSettings@@QAE@ABVQString@@W4Format@0@PAVQObject@@@Z
?location@QLibraryInfo@@SA?AVQString@@W4LibraryLocation@1@@Z
?select@QFileSelector@@QBE?AVQString@@ABV2@@Z
??1QFileSelector@@UAE@XZ
??0QFileSelector@@QAE@PAVQObject@@@Z
?listSeparator@QDir@@SA?AVQChar@@XZ
?exists@QDir@@QBE_NXZ
?entryInfoList@QDir@@QBE?AV?$QList@VQFileInfo@@@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4SortFlag@QDir@@@@@Z
?entryList@QDir@@QBE?AVQStringList@@ABV2@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4SortFlag@QDir@@@@@Z
?cd@QDir@@QAE_NABVQString@@@Z
?absoluteFilePath@QDir@@QBE?AVQString@@ABV2@@Z
?absolutePath@QDir@@QBE?AVQString@@XZ
??1QDir@@QAE@XZ
??0QDir@@QAE@ABVQString@@@Z
?path@QFileInfo@@QBE?AVQString@@XZ
?fileName@QFileInfo@@QBE?AVQString@@XZ
??1QFileInfo@@QAE@XZ
??0QFileInfo@@QAE@ABVQString@@@Z
?exists@QFile@@SA_NABVQString@@@Z
?decodeName@QFile@@SA?AVQString@@ABVQByteArray@@@Z
??6QDebug@@QAEAAV0@ABVQByteArray@@@Z
??6QDebug@@QAEAAV0@ABVQString@@@Z
??6QDebug@@QAEAAV0@PBD@Z
?noquote@QDebug@@QAEAAV1@XZ
?nospace@QDebug@@QAEAAV1@XZ
??1QDebug@@QAE@XZ
?setQObjectShared@ExternalRefCountData@QtSharedPointer@@QAEXPBVQObject@@_N@Z
?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ
?toString@QVariant@@QBE?AVQString@@XZ
??0QVariant@@QAE@XZ
??1Connection@QMetaObject@@QAE@XZ
?prepend@QListData@@QAEPAPAXXZ
?realloc@QListData@@QAEXH@Z
??0QString@@QAE@HW4Initialization@Qt@@@Z
??9QString@@QBE_NVQLatin1String@@@Z
?compare@QString@@QBEHABV1@W4CaseSensitivity@Qt@@@Z
?fromLocal8Bit@QString@@SA?AV1@ABVQByteArray@@@Z
?toLocal8Bit@QString@@QGBE?AVQByteArray@@XZ
?split@QString@@QBE?AVQStringList@@VQChar@@W4SplitBehavior@1@W4CaseSensitivity@Qt@@@Z
?endsWith@QString@@QBE_NVQLatin1String@@W4CaseSensitivity@Qt@@@Z
?startsWith@QString@@QBE_NABV1@W4CaseSensitivity@Qt@@@Z
?mid@QString@@QBE?AV1@HH@Z
?left@QString@@QBE?AV1@H@Z
?contains@QString@@QBE_NVQChar@@W4CaseSensitivity@Qt@@@Z
?lastIndexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z
?clear@QString@@QAEXXZ
?constData@QString@@QBEPBVQChar@@XZ
?clear@QByteArray@@QAEXXZ
??4QByteArray@@QAEAAV0@ABV0@@Z
?warning@QMessageLogger@@QBE?AVQDebug@@XZ
?info@QMessageLogger@@QBE?AVQDebug@@XZ
?warning@QMessageLogger@@QBAXPBDZZ
??0QMessageLogger@@QAE@PBDH0@Z
?qEnvironmentVariableIsEmpty@@YA_NPBD@Z
?qgetenv@@YA?AVQByteArray@@PBD@Z
?connect@QObject@@SA?AVConnection@QMetaObject@@PBV1@PBD01W4ConnectionType@Qt@@@Z
??4QCharRef@@QAEAAV0@VQChar@@@Z
??AQString@@QAE?AVQCharRef@@H@Z
?at@QString@@QBE?BVQChar@@H@Z
?truncate@QString@@QAEXH@Z
?length@QString@@QBEHXZ
?size@QString@@QBEHXZ
??0QString@@QAE@HVQChar@@@Z
?sharedNull@QArrayData@@SAPAU1@XZ
?deallocate@QArrayData@@SAXPAU1@II@Z
?allocate@QArrayData@@SAPAU1@IIIV?$QFlags@W4AllocationOption@QArrayData@@@@@Z
?data@QArrayData@@QAEPAXXZ
?isSpace@QChar@@QBE_NXZ
??0QChar@@QAE@UQLatin1Char@@@Z
??0QChar@@QAE@H@Z
?height@QRectF@@QBENXZ
?width@QRectF@@QBENXZ
?topLeft@QRectF@@QBE?AVQPointF@@XZ
?y@QRectF@@QBENXZ
?x@QRectF@@QBENXZ
?setHeight@QSizeF@@QAEXN@Z
?setWidth@QSizeF@@QAEXN@Z
?height@QSizeF@@QBENXZ
?width@QSizeF@@QBENXZ
?isEmpty@QSizeF@@QBE_NXZ
??0QSizeF@@QAE@NN@Z
??0QSizeF@@QAE@XZ
?setObjectName@QObject@@QAEXABVQString@@@Z
??0QString@@QAE@UQStringDataPtr@@@Z
?isEmpty@QString@@QBE_NXZ
??4QString@@QAEAAV0@ABV0@@Z
?get@QObjectPrivate@@SAPAV1@PAVQObject@@@Z
??8QUrl@@QBE_NABV0@@Z
?fromLocalFile@QUrl@@SA?AV1@ABVQString@@@Z
??1QUrl@@QAE@XZ
??4QUrl@@QAEAAV0@ABV0@@Z
??0QUrl@@QAE@ABV0@@Z
??0QUrl@@QAE@XZ
?size@QRectF@@QBE?AVQSizeF@@XZ
?setHeight@QSize@@QAEXH@Z
?setWidth@QSize@@QAEXH@Z
?height@QSize@@QBEHXZ
?width@QSize@@QBEHXZ
??0QSize@@QAE@HH@Z
?instance@QCoreApplication@@SAPAV1@XZ
??8@YA_NABVQString@@0@Z
??4QString@@QAEAAV0@$$QAV0@@Z
??1QString@@QAE@XZ
??0QString@@QAE@ABV0@@Z
??0QString@@QAE@XZ
??0QRectF@@QAE@NNNN@Z
?shared_null@QListData@@2UData@1@B
?getAndRef@ExternalRefCountData@QtSharedPointer@@SAPAU12@PBVQObject@@@Z
?convert@QVariant@@QBE_NHPAX@Z
?constData@QVariant@@QBEPBXXZ
?userType@QVariant@@QBEHXZ
??0QVariant@@QAE@HPBXI@Z
??1QVariant@@QAE@XZ
??0QObject@@IAE@AAVQObjectPrivate@@PAV0@@Z
?sender@QObject@@IBEPAV1@XZ
?parent@QObject@@QBEPAV1@XZ
?property@QObject@@QBE?AVQVariant@@PBD@Z
?setProperty@QObject@@QAE_NPBDABVQVariant@@@Z
?children@QObject@@QBEABV?$QList@PAVQObject@@@@XZ
?typeFlags@QMetaType@@SA?AV?$QFlags@W4TypeFlag@QMetaType@@@@H@Z
?registerNormalizedType@QMetaType@@SAHABVQByteArray@@P6AXPAX@ZP6APAX1PBX@ZHV?$QFlags@W4TypeFlag@QMetaType@@@@PBUQMetaObject@@@Z
?end@QListData@@QBEPAPAXXZ
?begin@QListData@@QBEPAPAXXZ
?at@QListData@@QBEPAPAXH@Z
?isEmpty@QListData@@QBE_NXZ
?size@QListData@@QBEHXZ
?remove@QListData@@QAEXH@Z
?append@QListData@@QAEPAPAXABU1@@Z
?append@QListData@@QAEPAPAXXZ
?dispose@QListData@@SAXPAUData@1@@Z
?detach_grow@QListData@@QAEPAUData@1@PAHH@Z
?detach@QListData@@QAEPAUData@1@H@Z
?end@QByteArray@@QBEPBDXZ
?append@QByteArray@@QAEAAV1@PBD@Z
?append@QByteArray@@QAEAAV1@D@Z
?constData@QByteArray@@QBEPBDXZ
??BQByteArray@@QBEPBDXZ
?reserve@QByteArray@@QAEXH@Z
?resize@QByteArray@@QAEXH@Z
?size@QByteArray@@QBEHXZ
??1QByteArray@@QAE@XZ
??0QByteArray@@QAE@HW4Initialization@Qt@@@Z
?QStringList_removeDuplicates@QtPrivate@@YAHPAVQStringList@@@Z
?tr@QMetaObject@@QBE?AVQString@@PBD0H@Z
??1QObject@@UAE@XZ
?connectImpl@QObject@@CA?AVConnection@QMetaObject@@PBV1@PAPAX01PAVQSlotObjectBase@QtPrivate@@W4ConnectionType@Qt@@PBHPBU3@@Z
?disconnectImpl@QObject@@CA_NPBV1@PAPAX01PBUQMetaObject@@@Z
??0QElapsedTimer@@QAE@XZ
?restart@QElapsedTimer@@QAE_JXZ
?elapsed@QElapsedTimer@@QBE_JXZ
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?connectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?disconnectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?event@QObject@@UAE_NPAVQEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
?className@QMetaObject@@QBEPBDXZ
?cast@QMetaObject@@QBEPAVQObject@@PAV2@@Z
?normalizedType@QMetaObject@@SA?AVQByteArray@@PBD@Z
??0QByteArray@@QAE@XZ
??0QByteArray@@QAE@PBDH@Z
??0QObject@@QAE@PAV0@@Z

qt5quicktemplates2

?staticMetaObject@QQuickTumbler@@2UQMetaObject@@B
?unlockWrap@QQuickTumblerPrivate@@QAEXXZ
?lockWrap@QQuickTumblerPrivate@@QAEXXZ
?_q_onViewCountChanged@QQuickTumblerPrivate@@QAEXXZ
?get@QQuickTumblerPrivate@@SAPAV1@PAVQQuickTumbler@@@Z
?wrapChanged@QQuickTumbler@@QAEXXZ
?visibleItemCountChanged@QQuickTumbler@@QAEXXZ
?wrap@QQuickTumbler@@QBE_NXZ
?visibleItemCount@QQuickTumbler@@QBEHXZ
?currentIndex@QQuickTumbler@@QBEHXZ
?color@QQuickIcon@@QBE?AVQColor@@XZ
?height@QQuickIcon@@QBEHXZ
?width@QQuickIcon@@QBEHXZ
?source@QQuickIcon@@QBE?AVQUrl@@XZ
?name@QQuickIcon@@QBE?AVQString@@XZ
?isEmpty@QQuickIcon@@QBE_NXZ
??8QQuickIcon@@QBE_NABV0@@Z
??4QQuickIcon@@QAEAAV0@ABV0@@Z
??1QQuickIcon@@QAE@XZ
??0QQuickIcon@@QAE@ABV0@@Z
??0QQuickIcon@@QAE@XZ
?staticMetaObject@QQuickPopup@@2UQMetaObject@@B
?popupItem@QQuickPopup@@QBEPAVQQuickItem@@XZ

msvcp140

?_Xbad_function_call@std@@YAXXZ

kernel32

IsDebuggerPresent
DisableThreadLibraryCalls
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
InitializeSListHead
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime

vcruntime140

memcpy
__CxxFrameHandler3
__std_exception_copy
__std_exception_destroy
_CxxThrowException
memset
_except_handler4_common
__std_type_info_destroy_list

api-ms-win-crt-math-l1-1-0

ceil

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_initialize_onexit_table
_configure_narrow_argv
_seh_filter_dll
_execute_onexit_table
_crt_atexit
_cexit
_initterm
_initterm_e
_register_onexit_function

api-ms-win-crt-heap-l1-1-0

free
_callnewh
malloc

Exports

Exports

??0QQuickAnimatedNode@@QAE@PAVQQuickItem@@@Z
??0QQuickAttachedObject@@IAE@AAVQObjectPrivate@@PAVQObject@@@Z
??0QQuickAttachedObject@@QAE@PAVQObject@@@Z
??0QQuickCheckLabel@@QAE@PAVQQuickItem@@@Z
??0QQuickClippedText@@QAE@PAVQQuickItem@@@Z
??0QQuickColor@@QAE@PAVQObject@@@Z
??0QQuickColorImage@@QAE@PAVQQuickItem@@@Z
??0QQuickIconImage@@QAE@PAVQQuickItem@@@Z
??0QQuickIconImagePrivate@@QAE@XZ
??0QQuickIconLabel@@QAE@PAVQQuickItem@@@Z
??0QQuickItemGroup@@QAE@PAVQQuickItem@@@Z
??0QQuickMnemonicLabel@@QAE@PAVQQuickItem@@@Z
??0QQuickPaddedRectangle@@QAE@PAVQQuickItem@@@Z
??0QQuickPlaceholderText@@QAE@PAVQQuickItem@@@Z
??0QQuickProxyTheme@@QAE@PAVQPlatformTheme@@@Z
??0QQuickStylePlugin@@QAE@PAVQObject@@@Z
??0QQuickStyleSelector@@QAE@XZ
??0QQuickTheme@@QAE@ABVQString@@@Z
??0QQuickTumblerView@@QAE@PAVQQuickItem@@@Z
??1QQuickAnimatedNode@@UAE@XZ
??1QQuickAttachedObject@@UAE@XZ
??1QQuickCheckLabel@@UAE@XZ
??1QQuickClippedText@@UAE@XZ
??1QQuickColor@@UAE@XZ
??1QQuickColorImage@@UAE@XZ
??1QQuickIconImage@@UAE@XZ
??1QQuickIconImagePrivate@@UAE@XZ
??1QQuickIconLabel@@UAE@XZ
??1QQuickItemGroup@@UAE@XZ
??1QQuickMnemonicLabel@@UAE@XZ
??1QQuickPaddedRectangle@@UAE@XZ
??1QQuickPlaceholderText@@UAE@XZ
??1QQuickProxyTheme@@UAE@XZ
??1QQuickStylePlugin@@UAE@XZ
??1QQuickStyleSelector@@QAE@XZ
??1QQuickTheme@@UAE@XZ
??1QQuickTumblerView@@UAE@XZ
??4QQuickStyle@@QAEAAV0@$$QAV0@@Z
??4QQuickStyle@@QAEAAV0@ABV0@@Z
??4QQuickStylePrivate@@QAEAAV0@$$QAV0@@Z
??4QQuickStylePrivate@@QAEAAV0@ABV0@@Z
??_7QQuickAnimatedNode@@6BQObject@@@
??_7QQuickAnimatedNode@@6BQSGTransformNode@@@
??_7QQuickAttachedObject@@6BQObject@@@
??_7QQuickAttachedObject@@6BQQuickItemChangeListener@@@
??_7QQuickCheckLabel@@6BQObject@@@
??_7QQuickCheckLabel@@6BQQmlParserStatus@@@
??_7QQuickClippedText@@6BQObject@@@
??_7QQuickClippedText@@6BQQmlParserStatus@@@
??_7QQuickColor@@6B@
??_7QQuickColorImage@@6BQObject@@@
??_7QQuickColorImage@@6BQQmlParserStatus@@@
??_7QQuickIconImage@@6BQObject@@@
??_7QQuickIconImage@@6BQQmlParserStatus@@@
??_7QQuickIconImagePrivate@@6B@
??_7QQuickIconLabel@@6BQObject@@@
??_7QQuickIconLabel@@6BQQmlParserStatus@@@
??_7QQuickItemGroup@@6B@
??_7QQuickItemGroup@@6BQObject@@@
??_7QQuickItemGroup@@6BQQmlParserStatus@@@
??_7QQuickMnemonicLabel@@6BQObject@@@
??_7QQuickMnemonicLabel@@6BQQmlParserStatus@@@
??_7QQuickPaddedRectangle@@6BQObject@@@
??_7QQuickPaddedRectangle@@6BQQmlParserStatus@@@
??_7QQuickPlaceholderText@@6BQObject@@@
??_7QQuickPlaceholderText@@6BQQmlParserStatus@@@
??_7QQuickProxyTheme@@6B@
??_7QQuickStylePlugin@@6BQObject@@@
??_7QQuickStylePlugin@@6BQQmlExtensionInterface@@@
??_7QQuickTheme@@6B@
??_7QQuickTumblerView@@6BQObject@@@
??_7QQuickTumblerView@@6BQQmlParserStatus@@@
??_FQQuickAttachedObject@@QAEXXZ
??_FQQuickCheckLabel@@QAEXXZ
??_FQQuickClippedText@@QAEXXZ
??_FQQuickColor@@QAEXXZ
??_FQQuickColorImage@@QAEXXZ
??_FQQuickIconImage@@QAEXXZ
??_FQQuickIconLabel@@QAEXXZ
??_FQQuickItemGroup@@QAEXXZ
??_FQQuickMnemonicLabel@@QAEXXZ
??_FQQuickPaddedRectangle@@QAEXXZ
??_FQQuickPlaceholderText@@QAEXXZ
??_FQQuickProxyTheme@@QAEXXZ
??_FQQuickStylePlugin@@QAEXXZ
??_FQQuickTumblerView@@QAEXXZ
?advance@QQuickAnimatedNode@@AAEXXZ
?alignment@QQuickIconLabel@@QBE?AV?$QFlags@W4AlignmentFlag@Qt@@@@XZ
?attachTo@QQuickAttachedObject@@AAEXPAVQObject@@@Z
?attachedChildren@QQuickAttachedObject@@QBE?AV?$QList@PAVQQuickAttachedObject@@@@XZ
?attachedParent@QQuickAttachedObject@@QBEPAV1@XZ
?attachedParentChange@QQuickAttachedObject@@MAEXPAV1@0@Z
?availableStyles@QQuickStyle@@SA?AVQStringList@@XZ
?baseUrl@QQuickStyleSelector@@QBE?AVQUrl@@XZ
?blend@QQuickColor@@QBE?AVQColor@@ABV2@0N@Z
?bottomPadding@QQuickIconLabel@@QBENXZ
?bottomPadding@QQuickPaddedRectangle@@QBENXZ
?bottomPaddingChanged@QQuickPaddedRectangle@@QAEXXZ
?calculateDevicePixelRatio@QQuickIconImagePrivate@@QBENXZ
?calculateImplicitSize@QQuickItemGroup@@IBE?AVQSizeF@@XZ
?clipHeight@QQuickClippedText@@QBENXZ
?clipRect@QQuickClippedText@@UBE?AVQRectF@@XZ
?clipWidth@QQuickClippedText@@QBENXZ
?clipX@QQuickClippedText@@QBENXZ
?clipY@QQuickClippedText@@QBENXZ
?color@QQuickColorImage@@QBE?AVQColor@@XZ
?color@QQuickIconImage@@QBE?AVQColor@@XZ
?color@QQuickIconLabel@@QBE?AVQColor@@XZ
?colorChanged@QQuickColorImage@@QAEXXZ
?colorChanged@QQuickIconImage@@QAEXXZ
?componentComplete@QQuickIconImage@@MAEXXZ
?componentComplete@QQuickIconLabel@@MAEXXZ
?componentComplete@QQuickPlaceholderText@@MAEXXZ
?componentComplete@QQuickTumblerView@@MAEXXZ
?configFilePath@QQuickStylePrivate@@SA?AVQString@@XZ
?createIconEngine@QQuickProxyTheme@@UBEPAVQIconEngine@@ABVQString@@@Z
?createPlatformDialogHelper@QQuickProxyTheme@@UBEPAVQPlatformDialogHelper@@W4DialogType@QPlatformTheme@@@Z
?createPlatformMenu@QQuickProxyTheme@@UBEPAVQPlatformMenu@@XZ
?createPlatformMenuBar@QQuickProxyTheme@@UBEPAVQPlatformMenuBar@@XZ
?createPlatformMenuItem@QQuickProxyTheme@@UBEPAVQPlatformMenuItem@@XZ
?createPlatformSystemTrayIcon@QQuickProxyTheme@@UBEPAVQPlatformSystemTrayIcon@@XZ
?createTheme@QQuickStylePlugin@@UBEPAVQQuickProxyTheme@@XZ
?createView@QQuickTumblerView@@AAEXXZ
?currentTime@QQuickAnimatedNode@@QBEHXZ
?d_func@QQuickIconImage@@AAEPAVQQuickIconImagePrivate@@XZ
?d_func@QQuickIconImage@@ABEPBVQQuickIconImagePrivate@@XZ
?d_func@QQuickIconLabel@@AAEPAVQQuickIconLabelPrivate@@XZ
?d_func@QQuickIconLabel@@ABEPBVQQuickIconLabelPrivate@@XZ
?d_func@QQuickStyleSelector@@AAEPAVQQuickStyleSelectorPrivate@@XZ
?d_func@QQuickStyleSelector@@ABEPBVQQuickStyleSelectorPrivate@@XZ
?defaultColor@QQuickColorImage@@QBE?AVQColor@@XZ
?defaultColorChanged@QQuickColorImage@@QAEXXZ
?delegate@QQuickTumblerView@@QBEPAVQQmlComponent@@XZ
?delegateChanged@QQuickTumblerView@@QAEXXZ
?detachFrom@QQuickAttachedObject@@AAEXPAVQObject@@@Z
?display@QQuickIconLabel@@QBE?AW4Display@1@XZ
?duration@QQuickAnimatedNode@@QBEHXZ
?fallbackStyle@QQuickStylePrivate@@SA?AVQString@@XZ
?fileIcon@QQuickProxyTheme@@UBE?AVQIcon@@ABVQFileInfo@@V?$QFlags@W4IconOption@QPlatformTheme@@@@@Z
?font@QQuickIconLabel@@QBE?AVQFont@@XZ
?font@QQuickProxyTheme@@UBEPBVQFont@@W4Font@QPlatformTheme@@@Z
?font@QQuickTheme@@UBEPBVQFont@@W4Font@QPlatformTheme@@@Z
?geometryChanged@QQuickIconImage@@MAEXABVQRectF@@0@Z
?geometryChanged@QQuickIconLabel@@MAEXABVQRectF@@0@Z
?geometryChanged@QQuickItemGroup@@MAEXABVQRectF@@0@Z
?geometryChanged@QQuickTumblerView@@MAEXABVQRectF@@0@Z
?icon@QQuickIconLabel@@QBE?AVQQuickIcon@@XZ
?init@QQuickAttachedObject@@IAEXXZ
?init@QQuickStylePrivate@@SAXABVQUrl@@@Z
?initializeEngine@QQuickStylePlugin@@UAEXPAVQQmlEngine@@PBD@Z
?isCurrent@QQuickStylePlugin@@QBE_NXZ
?isCustomStyle@QQuickStylePrivate@@SA_NXZ
?isDarkSystemTheme@QQuickStylePrivate@@SA_NXZ
?isMirrored@QQuickIconLabel@@QBE_NXZ
?isMnemonicVisible@QQuickMnemonicLabel@@QBE_NXZ
?isRunning@QQuickAnimatedNode@@QBE_NXZ
?itemChange@QQuickIconImage@@MAEXW4ItemChange@QQuickItem@@ABTItemChangeData@3@@Z
?itemChange@QQuickItemGroup@@MAEXW4ItemChange@QQuickItem@@ABTItemChangeData@3@@Z
?itemChange@QQuickTumblerView@@MAEXW4ItemChange@QQuickItem@@ABTItemChangeData@3@@Z
?itemImplicitHeightChanged@QQuickItemGroup@@MAEXPAVQQuickItem@@@Z
?itemImplicitWidthChanged@QQuickItemGroup@@MAEXPAVQQuickItem@@@Z
?itemParentChanged@QQuickAttachedObject@@MAEXPAVQQuickItem@@0@Z
?itemWindowChanged@QQuickAttachedObject@@IAEXPAVQQuickWindow@@@Z
?keyBindings@QQuickProxyTheme@@UBE?AV?$QList@VQKeySequence@@@@W4StandardKey@QKeySequence@@@Z
?leftPadding@QQuickIconLabel@@QBENXZ
?leftPadding@QQuickPaddedRectangle@@QBENXZ
?leftPaddingChanged@QQuickPaddedRectangle@@QAEXXZ
?loopCount@QQuickAnimatedNode@@QBEHXZ
?markClipDirty@QQuickClippedText@@AAEXXZ
?metaObject@QQuickAnimatedNode@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickAttachedObject@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickCheckLabel@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickClippedText@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickColor@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickColorImage@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickIconImage@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickIconLabel@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickItemGroup@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickMnemonicLabel@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickPaddedRectangle@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickPlaceholderText@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickStylePlugin@@UBEPBUQMetaObject@@XZ
?metaObject@QQuickTumblerView@@UBEPBUQMetaObject@@XZ
?model@QQuickTumblerView@@QBE?AVQVariant@@XZ
?modelChanged@QQuickTumblerView@@QAEXXZ
?name@QQuickIconImage@@QBE?AVQString@@XZ
?name@QQuickStyle@@SA?AVQString@@XZ
?name@QQuickStylePlugin@@UBE?AVQString@@XZ
?nameChanged@QQuickIconImage@@QAEXXZ
?padding@QQuickPaddedRectangle@@QBENXZ
?paddingChanged@QQuickPaddedRectangle@@QAEXXZ
?palette@QQuickProxyTheme@@UBEPBVQPalette@@W4Palette@QPlatformTheme@@@Z
?palette@QQuickTheme@@UBEPBVQPalette@@W4Palette@QPlatformTheme@@@Z
?path@QQuickStyle@@SA?AVQString@@XZ
?path@QQuickTumblerView@@QBEPAVQQuickPath@@XZ
?pathChanged@QQuickTumblerView@@QAEXXZ
?pixmapChange@QQuickColorImage@@MAEXXZ
?pixmapChange@QQuickIconImage@@MAEXXZ
?q_func@QQuickIconImagePrivate@@AAEPAVQQuickIconImage@@XZ
?q_func@QQuickIconImagePrivate@@ABEPBVQQuickIconImage@@XZ
?qt_metacall@QQuickAnimatedNode@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickAttachedObject@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickCheckLabel@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickClippedText@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickColor@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickColorImage@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickIconImage@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickIconLabel@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickItemGroup@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickMnemonicLabel@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickPaddedRectangle@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickPlaceholderText@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickStylePlugin@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QQuickTumblerView@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QQuickAnimatedNode@@UAEPAXPBD@Z
?qt_metacast@QQuickAttachedObject@@UAEPAXPBD@Z
?qt_metacast@QQuickCheckLabel@@UAEPAXPBD@Z
?qt_metacast@QQuickClippedText@@UAEPAXPBD@Z
?qt_metacast@QQuickColor@@UAEPAXPBD@Z
?qt_metacast@QQuickColorImage@@UAEPAXPBD@Z
?qt_metacast@QQuickIconImage@@UAEPAXPBD@Z
?qt_metacast@QQuickIconLabel@@UAEPAXPBD@Z
?qt_metacast@QQuickItemGroup@@UAEPAXPBD@Z
?qt_metacast@QQuickMnemonicLabel@@UAEPAXPBD@Z
?qt_metacast@QQuickPaddedRectangle@@UAEPAXPBD@Z
?qt_metacast@QQuickPlaceholderText@@UAEPAXPBD@Z
?qt_metacast@QQuickStylePlugin@@UAEPAXPBD@Z
?qt_metacast@QQuickTumblerView@@UAEPAXPBD@Z
?qt_static_metacall@QQuickAnimatedNode@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickAttachedObject@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickCheckLabel@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickClippedText@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickColor@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickColorImage@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickIconImage@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickIconLabel@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickItemGroup@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickMnemonicLabel@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickPaddedRectangle@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickPlaceholderText@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickStylePlugin@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?qt_static_metacall@QQuickTumblerView@@CAXPAVQObject@@W4Call@QMetaObject@@HPAPAX@Z
?registerTypes@QQuickStylePlugin@@UAEXPBD@Z
?reset@QQuickStylePrivate@@SAXXZ
?resetBottomPadding@QQuickIconLabel@@QAEXXZ
?resetBottomPadding@QQuickPaddedRectangle@@QAEXXZ
?resetColor@QQuickColorImage@@QAEXXZ
?resetDefaultColor@QQuickColorImage@@QAEXXZ
?resetLeftPadding@QQuickIconLabel@@QAEXXZ
?resetLeftPadding@QQuickPaddedRectangle@@QAEXXZ
?resetPadding@QQuickPaddedRectangle@@QAEXXZ
?resetRightPadding@QQuickIconLabel@@QAEXXZ
?resetRightPadding@QQuickPaddedRectangle@@QAEXXZ
?resetTopPadding@QQuickIconLabel@@QAEXXZ
?resetTopPadding@QQuickPaddedRectangle@@QAEXXZ
?resolveFont@QQuickTheme@@IBE?AVQFont@@ABV2@@Z
?resolvePalette@QQuickTheme@@IBE?AVQPalette@@ABV2@@Z
?restart@QQuickAnimatedNode@@QAEXXZ
?rightPadding@QQuickIconLabel@@QBENXZ
?rightPadding@QQuickPaddedRectangle@@QBENXZ
?rightPaddingChanged@QQuickPaddedRectangle@@QAEXXZ
?select@QQuickStyleSelector@@QBE?AVQString@@ABV2@@Z
?setAlignment@QQuickIconLabel@@QAEXV?$QFlags@W4AlignmentFlag@Qt@@@@@Z
?setAttachedParent@QQuickAttachedObject@@QAEXPAV1@@Z
?setBaseUrl@QQuickStyleSelector@@QAEXABVQUrl@@@Z
?setBottomPadding@QQuickIconLabel@@QAEXN@Z
?setBottomPadding@QQuickPaddedRectangle@@AAEXN_N@Z
?setBottomPadding@QQuickPaddedRectangle@@QAEXN@Z
?setClipHeight@QQuickClippedText@@QAEXN@Z
?setClipWidth@QQuickClippedText@@QAEXN@Z
?setClipX@QQuickClippedText@@QAEXN@Z
?setClipY@QQuickClippedText@@QAEXN@Z
?setColor@QQuickColorImage@@QAEXABVQColor@@@Z
?setColor@QQuickIconImage@@QAEXABVQColor@@@Z
?setColor@QQuickIconLabel@@QAEXABVQColor@@@Z
?setCurrentTime@QQuickAnimatedNode@@QAEXH@Z
?setDefaultColor@QQuickColorImage@@QAEXABVQColor@@@Z
?setDelegate@QQuickTumblerView@@QAEXPAVQQmlComponent@@@Z
?setDisplay@QQuickIconLabel@@QAEXW4Display@1@@Z
?setDuration@QQuickAnimatedNode@@QAEXH@Z
?setFallbackStyle@QQuickStyle@@SAXABVQString@@@Z
?setFont@QQuickIconLabel@@QAEXABVQFont@@@Z
?setIcon@QQuickIconLabel@@QAEXABVQQuickIcon@@@Z
?setLeftPadding@QQuickIconLabel@@QAEXN@Z
?setLeftPadding@QQuickPaddedRectangle@@AAEXN_N@Z
?setLeftPadding@QQuickPaddedRectangle@@QAEXN@Z
?setLoopCount@QQuickAnimatedNode@@QAEXH@Z
?setMirrored@QQuickIconLabel@@QAEX_N@Z
?setMnemonicVisible@QQuickMnemonicLabel@@QAEX_N@Z
?setModel@QQuickTumblerView@@QAEXABVQVariant@@@Z
?setName@QQuickIconImage@@QAEXABVQString@@@Z
?setPadding@QQuickPaddedRectangle@@QAEXN@Z
?setPath@QQuickTumblerView@@QAEXPAVQQuickPath@@@Z
?setRightPadding@QQuickIconLabel@@QAEXN@Z
?setRightPadding@QQuickPaddedRectangle@@AAEXN_N@Z
?setRightPadding@QQuickPaddedRectangle@@QAEXN@Z
?setSource@QQuickIconImage@@UAEXABVQUrl@@@Z
?setSpacing@QQuickIconLabel@@QAEXN@Z
?setStyle@QQuickStyle@@SAXABVQString@@@Z
?setText@QQuickIconLabel@@QAEXVQString@@@Z
?setText@QQuickMnemonicLabel@@QAEXABVQString@@@Z
?setTopPadding@QQuickIconLabel@@QAEXN@Z
?setTopPadding@QQuickPaddedRectangle@@AAEXN_N@Z
?setTopPadding@QQuickPaddedRectangle@@QAEXN@Z
?settings@QQuickStylePrivate@@SA?AV?$QSharedPointer@VQSettings@@@@ABVQString@@@Z
?showPlatformMenuBar@QQuickProxyTheme@@UAEXXZ
?spacing@QQuickIconLabel@@QBENXZ
?standardButtonText@QQuickProxyTheme@@UBE?AVQString@@H@Z
?standardPixmap@QQuickProxyTheme@@UBE?AVQPixmap@@W4StandardPixmap@QPlatformTheme@@ABVQSizeF@@@Z
?start@QQuickAnimatedNode@@QAEXH@Z
?started@QQuickAnimatedNode@@QAEXXZ
?staticMetaObject@QQuickAnimatedNode@@2UQMetaObject@@B
?staticMetaObject@QQuickAttachedObject@@2UQMetaObject@@B
?staticMetaObject@QQuickCheckLabel@@2UQMetaObject@@B
?staticMetaObject@QQuickClippedText@@2UQMetaObject@@B
?staticMetaObject@QQuickColor@@2UQMetaObject@@B
?staticMetaObject@QQuickColorImage@@2UQMetaObject@@B
?staticMetaObject@QQuickIconImage@@2UQMetaObject@@B
?staticMetaObject@QQuickIconLabel@@2UQMetaObject@@B
?staticMetaObject@QQuickItemGroup@@2UQMetaObject@@B
?staticMetaObject@QQuickMnemonicLabel@@2UQMetaObject@@B
?staticMetaObject@QQuickPaddedRectangle@@2UQMetaObject@@B
?staticMetaObject@QQuickPlaceholderText@@2UQMetaObject@@B
?staticMetaObject@QQuickStylePlugin@@2UQMetaObject@@B
?staticMetaObject@QQuickTumblerView@@2UQMetaObject@@B
?stop@QQuickAnimatedNode@@QAEXXZ
?stopped@QQuickAnimatedNode@@QAEXXZ
?stylePaths@QQuickStylePrivate@@SA?AVQStringList@@XZ
?sync@QQuickAnimatedNode@@UAEXPAVQQuickItem@@@Z
?text@QQuickIconLabel@@QBE?AVQString@@XZ
?text@QQuickMnemonicLabel@@QBE?AVQString@@XZ
?theme@QQuickProxyTheme@@QBEPAVQPlatformTheme@@XZ
?themeHint@QQuickProxyTheme@@UBE?AVQVariant@@W4ThemeHint@QPlatformTheme@@@Z
?topPadding@QQuickIconLabel@@QBENXZ
?topPadding@QQuickPaddedRectangle@@QBENXZ
?topPaddingChanged@QQuickPaddedRectangle@@QAEXXZ
?tr@QQuickAnimatedNode@@SA?AVQString@@PBD0H@Z
?tr@QQuickAttachedObject@@SA?AVQString@@PBD0H@Z
?tr@QQuickCheckLabel@@SA?AVQString@@PBD0H@Z
?tr@QQuickClippedText@@SA?AVQString@@PBD0H@Z
?tr@QQuickColor@@SA?AVQString@@PBD0H@Z
?tr@QQuickColorImage@@SA?AVQString@@PBD0H@Z
?tr@QQuickIconImage@@SA?AVQString@@PBD0H@Z
?tr@QQuickIconLabel@@SA?AVQString@@PBD0H@Z
?tr@QQuickItemGroup@@SA?AVQString@@PBD0H@Z
?tr@QQuickMnemonicLabel@@SA?AVQString@@PBD0H@Z
?tr@QQuickPaddedRectangle@@SA?AVQString@@PBD0H@Z
?tr@QQuickPlaceholderText@@SA?AVQString@@PBD0H@Z
?tr@QQuickStylePlugin@@SA?AVQString@@PBD0H@Z
?tr@QQuickTumblerView@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickAnimatedNode@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickAttachedObject@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickCheckLabel@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickClippedText@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickColor@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickColorImage@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickIconImage@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickIconLabel@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickItemGroup@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickMnemonicLabel@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickPaddedRectangle@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickPlaceholderText@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickStylePlugin@@SA?AVQString@@PBD0H@Z
?trUtf8@QQuickTumblerView@@SA?AVQString@@PBD0H@Z
?transparent@QQuickColor@@QBE?AVQColor@@ABV2@N@Z
?typeUrl@QQuickStylePlugin@@QBE?AVQUrl@@ABVQString@@@Z
?unwatch@QQuickItemGroup@@IAEXPAVQQuickItem@@@Z
?update@QQuickAnimatedNode@@AAEXXZ
?updateAlignment@QQuickPlaceholderText@@AAEXXZ
?updateCurrentTime@QQuickAnimatedNode@@MAEXH@Z
?updateDevicePixelRatio@QQuickIconImagePrivate@@UAE_NN@Z
?updateFillMode@QQuickIconImagePrivate@@QAEXXZ
?updateIcon@QQuickIconImagePrivate@@QAEXXZ
?updateImplicitSize@QQuickItemGroup@@IAEXXZ
?updateMnemonic@QQuickMnemonicLabel@@AAEXXZ
?updateModel@QQuickTumblerView@@AAEXXZ
?updatePaintNode@QQuickPaddedRectangle@@MAEPAVQSGNode@@PAV2@PAUUpdatePaintNodeData@QQuickItem@@@Z
?updateView@QQuickTumblerView@@AAEXXZ
?usePlatformNativeDialog@QQuickProxyTheme@@UBE_NW4DialogType@QPlatformTheme@@@Z
?view@QQuickTumblerView@@AAEPAVQQuickItem@@XZ
?watch@QQuickItemGroup@@IAEXPAVQQuickItem@@@Z
?window@QQuickAnimatedNode@@QBEPAVQQuickWindow@@XZ

Sections

.text
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KLA-VPN-Setup-9.4.3-8353/UpdateRingSettings.dll
.dll windows:6 windows x86 arch:x86

8f4151e2b47c8157fda35112fe040b85

Code Sign

33:00:00:03:f1:62:06:e3:e7:ef:da:8a:be:00:00:00:00:03:f1
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:24

Not After

02/12/2021, 21:24

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

dd:e0:ef:0f:e2:09:fe:09:e6:90:7b:58:a6:dc:ca:a9:ea:1b:cd:23:9d:5c:bd:b2:11:06:58:88:e2:9d:e4:6c
Signer

Actual PE Digest

dd:e0:ef:0f:e2:09:fe:09:e6:90:7b:58:a6:dc:ca:a9:ea:1b:cd:23:9d:5c:bd:b2:11:06:58:88:e2:9d:e4:6c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\dbs\sh\odct\0629_224505_0\client\onedrive\Product\UpdateRingSettings\dll\obj\i386\UpdateRingSettings.pdb

Imports

loggingplatform

?LoggingWriteStructuredEvent@@YGXABUStructuredEvent@@QAUStructuredEventParameter@@@Z
?LoggingSetCommonDatapoint@@YGXPB_W0@Z
?WideStringToNarrowString@@YG?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PB_W@Z
?NarrowStringToWideString@@YG?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@PBD@Z
??0TelemetryEvent@@QAE@PBD0ABU_GUID@@II00II@Z
??1TelemetryEvent@@QAE@XZ
?LoggingSendTelemetryEvent@@YGXAAUTelemetryEvent@@QAUStructuredEventParameter@@@Z
?LoggingSetExperimentSetupData@@YGXPBDIQAUExperimentSetupData@@I1@Z
??0StructuredEvent@@QAE@PBDH0ABU_GUID@@IIII@Z
?LoggingRotateIfNeeded@@YGXXZ

kernel32

FindNextVolumeW
FindVolumeClose
DeviceIoControl
GetFileSizeEx
ReadFile
GetEnvironmentVariableW
GetCommandLineW
CopyFileW
SetDllDirectoryW
ReleaseMutex
RegisterApplicationRestart
SetFilePointer
GetFileSize
GetFileType
LoadLibraryExW
GetSystemTimes
GetProcessTimes
IsDebuggerPresent
FindFirstVolumeW
DeleteCriticalSection
VerSetConditionMask
VerifyVersionInfoW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetLongPathNameW
SetLastError
ExpandEnvironmentStringsW
InterlockedPushEntrySList
OutputDebugStringW
InitializeSListHead
DisableThreadLibraryCalls
GetCurrentThreadId
QueryPerformanceCounter
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
IsProcessorFeaturePresent
GetExitCodeProcess
GetFileAttributesW
CompareStringOrdinal
SetFileInformationByHandle
GetFileInformationByHandleEx
GetFileInformationByHandle
GetFinalPathNameByHandleW
OpenFileById
CreateFileW
CreateIoCompletionPort
ReadDirectoryChangesW
GetQueuedCompletionStatus
PostQueuedCompletionStatus
GetDiskFreeSpaceExW
MultiByteToWideChar
WideCharToMultiByte
GetSystemTime
DeleteFileW
FindClose
FindFirstFileW
FreeLibrary
LoadLibraryW
IsWow64Process
CreateProcessW
CreateMutexW
GetProcessHeap
HeapAlloc
HeapFree
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
GetCurrentProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
WaitForSingleObject
TerminateProcess
Sleep
GetLastError
MoveFileW
CloseHandle
K32GetModuleFileNameExW
OpenProcess
LocalFree
InitializeCriticalSectionEx
SetUnhandledExceptionFilter
UnhandledExceptionFilter
AcquireSRWLockShared
AcquireSRWLockExclusive
ReleaseSRWLockShared
ReleaseSRWLockExclusive

user32

GetClassNameW
GetWindowThreadProcessId
PostMessageW
SendMessageTimeoutW
ShowWindow
GetMessageW
CreateWindowExW
DestroyWindow
EnumWindows
DispatchMessageW
TranslateMessage
RegisterClassW

advapi32

RegCreateKeyExW
RegSetKeyValueW
RegDeleteKeyExW
RegDeleteTreeW
ConvertStringSecurityDescriptorToSecurityDescriptorW
FreeSid
GetAclInformation
StartServiceW
QueryServiceConfigW
CreateWellKnownSid
ControlService
QueryServiceStatusEx
QueryServiceStatus
DeleteService
SetNamedSecurityInfoW
SetEntriesInAclW
AllocateAndInitializeSid
GetNamedSecurityInfoW
CreateProcessAsUserW
DuplicateTokenEx
ConvertSidToStringSidW
OpenServiceW
SetServiceStatus
RegisterServiceCtrlHandlerW
StartServiceCtrlDispatcherW
CloseServiceHandle
ChangeServiceConfig2W
ChangeServiceConfigW
CreateServiceW
OpenSCManagerW
RegUnLoadKeyW
RegLoadKeyW
RegEnumKeyW
RegCreateKeyTransactedW
SetFileSecurityW
AdjustTokenPrivileges
LookupPrivilegeValueW
CryptHashData
CryptReleaseContext
CryptDestroyHash
CryptGetHashParam
CryptCreateHash
CryptAcquireContextW
RegEnumValueW
GetTokenInformation
OpenProcessToken
RegDeleteValueW
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegGetValueW
RegCloseKey

shell32

SHGetFolderPathAndSubDirW
ShellExecuteExW
SHChangeNotify
SHGetFolderPathW
SHGetSpecialFolderPathW
SHGetKnownFolderPath
SHFileOperationW
ord526
SHCreateItemFromParsingName
SHCreateDirectoryExW
CommandLineToArgvW

ole32

CoCreateInstance
CoTaskMemFree
StringFromCLSID
CoCreateFreeThreadedMarshaler
StringFromGUID2
CLSIDFromString
CoSetProxyBlanket
CoInitializeEx
CoUninitialize
CoCreateGuid

oleaut32

GetErrorInfo
SysStringLen
SetErrorInfo
LoadTypeLi
LoadRegTypeLi
GetRecordInfoFromTypeInfo
SysFreeString
SysAllocString
SysAllocStringByteLen
SysStringByteLen

crypt32

CryptStringToBinaryW
CryptBinaryToStringW

rpcrt4

RpcServerRegisterIfEx
RpcServerUseProtseqW
RpcServerInqBindings
RpcEpRegisterW
RpcBindingVectorFree
RpcEpUnregister
RpcServerUnregisterIf
RpcServerInqCallAttributesW
RpcBindingFree
RpcStringBindingComposeW
RpcBindingFromStringBindingW
RpcStringFreeW
RpcBindingSetAuthInfoExW

secur32

GetUserNameExW

shlwapi

SHRegGetValueW
PathRemoveFileSpecW
StrStrIW
SHRegGetBoolUSValueW
PathStripPathW
SHGetValueW
SHCreateStreamOnFileW
PathFileExistsW
PathIsPrefixW

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

wininet

InternetCheckConnectionW

wtsapi32

WTSQueryUserToken
WTSQuerySessionInformationW
WTSFreeMemory
WTSEnumerateSessionsW

msvcp140

??1?$codecvt@GDU_Mbstatet@@@std@@MAE@XZ
?id@?$codecvt@GDU_Mbstatet@@@std@@2V0locale@2@A
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?out@?$codecvt@GDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBG1AAPBGPAD3AAPAD@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z
?in@?$codecvt@GDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAG3AAPAG@Z
??0?$codecvt@GDU_Mbstatet@@@std@@QAE@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
?clear@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Xbad_function_call@std@@YAXXZ
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
?snextc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?_Ipfx@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE_N_N@Z
?sbumpc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
_Query_perf_frequency
_Query_perf_counter
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
_Mtx_unlock
??0facet@locale@std@@IAE@I@Z
??1facet@locale@std@@MAE@XZ
?_Xlength_error@std@@YAXPBD@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xinvalid_argument@std@@YAXPBD@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
_Strxfrm
_Strcoll
?_Incref@facet@locale@std@@UAEXXZ
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??1_Locinfo@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??0_Locinfo@std@@QAE@PBD@Z
??0_Lockit@std@@QAE@H@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?id@?$ctype@_W@std@@2V0locale@2@A
??Bid@locale@std@@QAEIXZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$ctype@D@std@@2V0locale@2@A
?tolower@?$ctype@D@std@@QBEDD@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?widen@?$ctype@_W@std@@QBE_WD@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?_Xbad_alloc@std@@YAXXZ
?id@?$collate@D@std@@2V0locale@2@A
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?uncaught_exception@std@@YA_NXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?id@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?tolower@?$ctype@D@std@@QBEPBDPADPBD@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?get@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD4@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
_Mtx_destroy_in_situ
_Mtx_init_in_situ
_Mtx_lock
?_Throw_C_error@std@@YAXH@Z

userenv

GetDefaultUserProfileDirectoryW
CreateEnvironmentBlock

vcruntime140

__std_exception_copy
strchr
_purecall
wcsstr
__std_terminate
__current_exception
__current_exception_context
_CxxThrowException
memset
__std_type_info_destroy_list
memmove
memcpy
__CxxFrameHandler3
__std_exception_destroy
_except_handler4_common
memchr
memcmp

api-ms-win-crt-runtime-l1-1-0

_initterm
terminate
_cexit
_initterm_e
_invalid_parameter_noinfo_noreturn
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_errno

api-ms-win-crt-convert-l1-1-0

wcstol
_strtod_l
wcstoul
wcstod
strtoul
atof
atol
strtoll
_wtoi
strtol

api-ms-win-crt-time-l1-1-0

_time64
_mkgmtime64
strftime
_gmtime64_s
_difftime64
_localtime64_s

api-ms-win-crt-heap-l1-1-0

malloc
free
_callnewh
realloc

api-ms-win-crt-stdio-l1-1-0

fclose
__stdio_common_vsprintf_s
_wfopen_s
__stdio_common_vswprintf_s
__stdio_common_vswprintf
__stdio_common_vsprintf

api-ms-win-crt-math-l1-1-0

round
ceil

api-ms-win-crt-string-l1-1-0

isxdigit
_wcsdup
towupper
iswspace
wcstok_s

api-ms-win-crt-locale-l1-1-0

_create_locale
_free_locale

Exports

Exports

?GetECSConfigurationManager@@YGPAVIECSConfigurationManager@@XZ
?GetFeatureSupport@@YGPAVIFeatureSupport@@XZ
?GetUpdateRingSettingsManager@@YGPAVIUpdateRingSettingsManager@@XZ
?OverrideECSConfigurationManager@@YGXPAVIECSConfigurationManager@@@Z
?OverrideFeatureSupport@@YGXPAVIFeatureSupport@@@Z
?OverrideUpdateRingSettingsManager@@YGXPAVIUpdateRingSettingsManager@@@Z
?ResetECSConfigurationManager@@YGXXZ
?ResetFeatureSupport@@YGXXZ
?ResetUpdateRingSettingsManager@@YGXXZ

Sections

.text
Size: 240KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KLA-VPN-Setup-9.4.3-8353/logo.png
.png
KLA-VPN-Setup-9.4.3-8353/mssvp.dll
.dll windows:6 windows x86 arch:x86

fca15a1ca9feaf41b87bc45fd890d389

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapFree
InitializeCriticalSectionEx
HeapSize
GetLastError
HeapReAlloc
HeapAlloc
HeapDestroy
DeleteCriticalSection
GetProcessHeap
Sleep
CloseHandle
AreFileApisANSI
SetFileInformationByHandle
GetFileAttributesExW
FindNextFileW
FindFirstFileExW
FindFirstFileW
FindClose
CreateDirectoryW
GetLocaleInfoEx
FormatMessageA
LocalFree
WideCharToMultiByte
FindResourceW
LoadResource
FindResourceExW
LockResource
MultiByteToWideChar
GetComputerNameExW
GetVersionExW
CreateFileW
OpenFile
GetProcessId
GetModuleFileNameW
WriteFile
SizeofResource
ReadFile
GetModuleHandleW
GetProcAddress
GetSystemDirectoryW
GetFileInformationByHandleEx
IsDebuggerPresent
OutputDebugStringW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead

user32

MessageBoxA

msvcp140

?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$codecvt@_WDU_Mbstatet@@@std@@MAE@XZ
??0?$codecvt@_WDU_Mbstatet@@@std@@QAE@I@Z
?in@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPA_W3AAPA_W@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
??Bid@locale@std@@QAEIXZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?_Throw_Cpp_error@std@@YAXH@Z
?_Xbad_alloc@std@@YAXXZ
?_Throw_C_error@std@@YAXH@Z
?_Xlength_error@std@@YAXPBD@Z
_Cnd_do_broadcast_at_thread_exit
_Thrd_detach
?_Xinvalid_argument@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Winerror_map@std@@YAHH@Z
?_Syserror_map@std@@YAPBDH@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

vcruntime140

_purecall
__std_terminate
__std_exception_copy
__CxxFrameHandler3
memcpy
memmove
memset
__current_exception
__current_exception_context
_except_handler4_common
_local_unwind4
memchr
_CxxThrowException
__std_exception_destroy
__std_type_info_destroy_list

api-ms-win-crt-heap-l1-1-0

malloc
_callnewh
free

api-ms-win-crt-runtime-l1-1-0

_beginthreadex
terminate
_errno
_initterm_e
_initterm
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_invalid_parameter_noinfo
_invalid_parameter_noinfo_noreturn

api-ms-win-crt-convert-l1-1-0

strtol

api-ms-win-crt-utility-l1-1-0

rand

api-ms-win-crt-math-l1-1-0

_isnan
_dclass
_finite
modf

api-ms-win-crt-stdio-l1-1-0

setvbuf
fsetpos
fwrite
_fseeki64
_get_stream_buffer_pointers
fgetpos
ungetc
__stdio_common_vsprintf
fread
fputc
fflush
fgetc
fclose

api-ms-win-crt-string-l1-1-0

wmemcpy_s

api-ms-win-crt-filesystem-l1-1-0

_unlock_file
_lock_file

api-ms-win-crt-locale-l1-1-0

___lc_codepage_func

ole32

CoUninitialize
CoInitialize
CoCreateInstance
CoCreateGuid

oleaut32

SysAllocStringLen

Exports

Exports

AcceptSecurityContext
AcquireCredentialsHandleA
AcquireCredentialsHandleW
AddCredentialsA
AddCredentialsW
AddSecurityPackageA
ApplyControlToken
ChangeAccountPasswordA
ChangeAccountPasswordW
CloseLsaPerformanceData
CollectLsaPerformanceData
CompleteAuthToken
CredMarshalTargetInfo
CredUnmarshalTargetInfo
DecryptMessage
DeleteSecurityContext
DeleteSecurityPackageA
DeleteSecurityPackageW
EncryptMessage
EnumerateSecurityPackagesA
EnumerateSecurityPackagesW
ExportSecurityContext
FreeContextBuffer
FreeCredentialsHandle
GetComputerObjectNameA
GetComputerObjectNameW
GetSecurityUserInfo
GetUserNameExA
GetUserNameExW
ImpersonateSecurityContext
ImportSecurityContextA
ImportSecurityContextW
InitSecurityInterfaceA
InitSecurityInterfaceW
InitializeSecurityContextA
InitializeSecurityContextW
LsaCallAuthenticationPackage
LsaConnectUntrusted
LsaDeregisterLogonProcess
LsaEnumerateLogonSessions
LsaFreeReturnBuffer
LsaGetLogonSessionData
LsaLogonUser
LsaLookupAuthenticationPackage
LsaRegisterLogonProcess
LsaRegisterPolicyChangeNotification
LsaUnregisterPolicyChangeNotification
MakeSignature
OpenLsaPerformanceData
QueryContextAttributesA
QueryContextAttributesW
QueryCredentialsAttributesA
QueryCredentialsAttributesW
QuerySecurityContextToken
QuerySecurityPackageInfoA
QuerySecurityPackageInfoW
RevertSecurityContext
SaslAcceptSecurityContext
SaslEnumerateProfilesA
SaslEnumerateProfilesW
SaslGetContextOption
SaslGetProfilePackageA
SaslGetProfilePackageW
SaslIdentifyPackageA
SaslIdentifyPackageW
SaslInitializeSecurityContextA
SaslInitializeSecurityContextW
SaslSetContextOption
SealMessage
SeciAllocateAndSetCallFlags
SeciAllocateAndSetIPAddress
SeciFreeCallContext
SecpFreeMemory
SecpTranslateName
SecpTranslateNameEx
SetContextAttributesA
SetContextAttributesW
SetCredentialsAttributesA
SetCredentialsAttributesW
SspiCompareAuthIdentities
SspiCopyAuthIdentity
SspiDecryptAuthIdentity
SspiEncodeAuthIdentityAsStrings
SspiEncodeStringsAsAuthIdentity
SspiEncryptAuthIdentity
SspiExcludePackage
SspiFreeAuthIdentity
SspiGetTargetHostName
SspiIsAuthIdentityEncrypted
SspiLocalFree
SspiMarshalAuthIdentity
SspiPrepareForCredRead
SspiPrepareForCredWrite
SspiUnmarshalAuthIdentity
SspiValidateAuthIdentity
SspiZeroAuthIdentity
TranslateNameA
TranslateNameW
UnsealMessage
VerifySignature

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KLA-VPN-Setup-9.4.3-8353/msvcp140.dll
.dll windows:6 windows x86 arch:x86

6dbd7763e94344402d4206b7bab40e1f

Code Sign

33:00:00:01:0c:6c:23:05:0b:07:99:1e:cd:00:00:00:00:01:0c
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/08/2018, 20:20

Not After

23/11/2019, 20:20

Subject

CN=Microsoft Time-Stamp service,OU=Microsoft Ireland Operations Limited+OU=Thales TSS ESN:FC41-4BD4-D220,O=Microsoft Corporation,L=Redmond,ST=WA,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:b1:dd:ed:ba:54:e9:65:b8:5f:00:01:00:00:01:b1
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/07/2018, 20:11

Not After

26/07/2019, 20:11

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:02:3b:10:df:65:17:47:51:70:ff:00:00:00:00:02:3b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/07/2018, 20:07

Not After

08/08/2019, 20:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:10:da:22:0d:a5:13:d1:15:42:f3:81:b9:b7:fd:51:49:e7:ed:ae:02:29:2e:ad:81:b7:c2:b1:1e:b7:45:5d
Signer

Actual PE Digest

52:10:da:22:0d:a5:13:d1:15:42:f3:81:b9:b7:fd:51:49:e7:ed:ae:02:29:2e:ad:81:b7:c2:b1:1e:b7:45:5d

Digest Algorithm

sha256

PE Digest Matches

true

11:97:14:5a:0a:50:e7:57:e3:ec:f6:60:3b:cf:a9:e5:7e:b3:02:8b
Signer

Actual PE Digest

11:97:14:5a:0a:50:e7:57:e3:ec:f6:60:3b:cf:a9:e5:7e:b3:02:8b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\agent\_work\2\s\binaries\x86ret\bin\i386\\msvcp140.i386.pdb

Imports

vcruntime140

_except_handler4_common
__uncaught_exceptions
__uncaught_exception
memmove
__std_terminate
_purecall
__CxxFrameHandler3
_CxxThrowException
__AdjustPointer
__processing_throw
__current_exception
__std_exception_destroy
__std_exception_copy
memset
memcmp
memchr
__std_type_info_destroy_list
memcpy

api-ms-win-crt-heap-l1-1-0

_callnewh
free
calloc
malloc
realloc

api-ms-win-crt-locale-l1-1-0

___mb_cur_max_func
___lc_locale_name_func
___lc_collate_cp_func
localeconv
___lc_codepage_func
_lock_locales
_unlock_locales
setlocale
__pctype_func

api-ms-win-crt-string-l1-1-0

__strncnt
tolower
isalnum
isxdigit
isspace
wcsnlen
isdigit
wcscpy_s
_wcsdup
islower
isupper
iswctype
strcspn

api-ms-win-crt-runtime-l1-1-0

_cexit
_execute_onexit_table
_register_onexit_function
_set_new_handler
terminate
_crt_atexit
_invalid_parameter_noinfo_noreturn
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
abort
_initterm
_initterm_e
_initialize_onexit_table
_beginthreadex
_endthreadex
_errno

api-ms-win-crt-stdio-l1-1-0

fputwc
ungetc
setvbuf
fwrite
_fseeki64
fsetpos
fread
fputs
fgetc
fflush
fclose
_get_stream_buffer_pointers
_wfsopen
_fsopen
__acrt_iob_func
fgetpos
fseek
fputc
__stdio_common_vsprintf_s
fgetwc
ungetwc

api-ms-win-crt-math-l1-1-0

ldexp
_CIpow
_CIlog
frexp

api-ms-win-crt-convert-l1-1-0

btowc
strtod
strtof

api-ms-win-crt-filesystem-l1-1-0

_wchdir
_wrmdir
_unlock_file
_wremove
_lock_file
_wrename

api-ms-win-crt-time-l1-1-0

_W_Getdays
_Getmonths
_Strftime
_Wcsftime
_Getdays
_Gettnames
_W_Gettnames
_W_Getmonths

api-ms-win-crt-environment-l1-1-0

_wgetcwd

api-ms-win-crt-utility-l1-1-0

rand_s

kernel32

RtlCaptureStackBackTrace
DuplicateHandle
WaitForSingleObjectEx
Sleep
GetCurrentProcess
SwitchToThread
GetCurrentThread
GetCurrentThreadId
GetExitCodeThread
GetNativeSystemInfo
QueryPerformanceCounter
QueryPerformanceFrequency
GetStringTypeW
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
WideCharToMultiByte
LoadLibraryExA
FreeLibrary
VirtualQuery
VirtualProtect
GetSystemInfo
InitializeSListHead
GetCurrentProcessId
IsDebuggerPresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetProcAddress
GetModuleHandleW
GetTickCount
GetSystemTimeAsFileTime
CreateEventW
InitializeCriticalSectionAndSpinCount
SetLastError
GetModuleHandleExW
QueueUserWorkItem
IsProcessorFeaturePresent
CloseHandle
TryEnterCriticalSection
FormatMessageW
CreateHardLinkW
CopyFileW
GetLastError
AreFileApisANSI
GetTempPathW
SetFileTime
SetFilePointerEx
SetFileAttributesW
SetEndOfFile
GetFileInformationByHandle
GetFileAttributesExW
GetDiskFreeSpaceExW
FindNextFileW
FindFirstFileExW
FindClose
CreateFileW
CreateDirectoryW
GetLocaleInfoW
LCMapStringW
CompareStringW
GetCPInfo
RaiseException
DecodePointer
EncodePointer

Exports

Exports

??$_Getvals@_W@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z
??$_Getvals@_W@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z
??$_Getvals@_W@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z
??0?$_Yarn@D@std@@QAE@ABV01@@Z
??0?$_Yarn@D@std@@QAE@PBD@Z
??0?$_Yarn@D@std@@QAE@XZ
??0?$_Yarn@G@std@@QAE@ABV01@@Z
??0?$_Yarn@G@std@@QAE@PBG@Z
??0?$_Yarn@G@std@@QAE@XZ
??0?$_Yarn@_W@std@@QAE@ABV01@@Z
??0?$_Yarn@_W@std@@QAE@PB_W@Z
??0?$_Yarn@_W@std@@QAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@ABV01@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@ABV01@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@ABV01@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$codecvt@DDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@DDU_Mbstatet@@@std@@QAE@I@Z
??0?$codecvt@GDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@GDU_Mbstatet@@@std@@QAE@I@Z
??0?$codecvt@_SDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@_SDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@KW4_Codecvt_mode@1@I@Z
??0?$codecvt@_SDU_Mbstatet@@@std@@QAE@I@Z
??0?$codecvt@_UDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@_UDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@KW4_Codecvt_mode@1@I@Z
??0?$codecvt@_UDU_Mbstatet@@@std@@QAE@I@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QAE@I@Z
??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@D@std@@QAE@PBF_NI@Z
??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@G@std@@QAE@I@Z
??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@_W@std@@QAE@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0Init@ios_base@std@@QAE@XZ
??0_Facet_base@std@@QAE@ABV01@@Z
??0_Facet_base@std@@QAE@XZ
??0_Init_locks@std@@QAE@XZ
??0_Locimp@locale@std@@AAE@ABV012@@Z
??0_Locimp@locale@std@@AAE@_N@Z
??0_Locinfo@std@@QAE@HPBD@Z
??0_Locinfo@std@@QAE@PBD@Z
??0_Lockit@std@@QAE@H@Z
??0_Lockit@std@@QAE@XZ
??0_Timevec@std@@QAE@ABV01@@Z
??0_Timevec@std@@QAE@PAX@Z
??0_UShinit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??0codecvt_base@std@@QAE@I@Z
??0ctype_base@std@@QAE@I@Z
??0facet@locale@std@@IAE@I@Z
??0id@locale@std@@QAE@I@Z
??0ios_base@std@@IAE@XZ
??0task_continuation_context@Concurrency@@AAE@XZ
??0time_base@std@@QAE@I@Z
??1?$_Yarn@D@std@@QAE@XZ
??1?$_Yarn@G@std@@QAE@XZ
??1?$_Yarn@_W@std@@QAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$codecvt@DDU_Mbstatet@@@std@@MAE@XZ
??1?$codecvt@GDU_Mbstatet@@@std@@MAE@XZ
??1?$codecvt@_SDU_Mbstatet@@@std@@MAE@XZ
??1?$codecvt@_UDU_Mbstatet@@@std@@MAE@XZ
??1?$codecvt@_WDU_Mbstatet@@@std@@MAE@XZ
??1?$ctype@D@std@@MAE@XZ
??1?$ctype@G@std@@MAE@XZ
??1?$ctype@_W@std@@MAE@XZ
??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1Init@ios_base@std@@QAE@XZ
??1_Facet_base@std@@UAE@XZ
??1_Init_locks@std@@QAE@XZ
??1_Locimp@locale@std@@MAE@XZ
??1_Locinfo@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??1_Timevec@std@@QAE@XZ
??1_UShinit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1codecvt_base@std@@UAE@XZ
??1ctype_base@std@@UAE@XZ
??1facet@locale@std@@MAE@XZ
??1ios_base@std@@UAE@XZ
??1time_base@std@@UAE@XZ
??4?$_Iosb@H@std@@QAEAAV01@$$QAV01@@Z
??4?$_Iosb@H@std@@QAEAAV01@ABV01@@Z
??4?$_Yarn@D@std@@QAEAAV01@ABV01@@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
??4?$_Yarn@G@std@@QAEAAV01@ABV01@@Z
??4?$_Yarn@G@std@@QAEAAV01@PBG@Z
??4?$_Yarn@_W@std@@QAEAAV01@ABV01@@Z
??4?$_Yarn@_W@std@@QAEAAV01@PB_W@Z
??4?$basic_iostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_iostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_istream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_istream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_ostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_ostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEAAV01@ABV01@@Z
??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEAAV01@ABV01@@Z
??4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEAAV01@ABV01@@Z
??4Init@ios_base@std@@QAEAAV012@ABV012@@Z
??4_Crt_new_delete@std@@QAEAAU01@$$QAU01@@Z
??4_Crt_new_delete@std@@QAEAAU01@ABU01@@Z
??4_Facet_base@std@@QAEAAV01@ABV01@@Z
??4_Init_locks@std@@QAEAAV01@ABV01@@Z
??4_Timevec@std@@QAEAAV01@ABV01@@Z
??4_UShinit@std@@QAEAAV01@ABV01@@Z
??4_Winit@std@@QAEAAV01@ABV01@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_K@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_K@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
??7ios_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
??Bios_base@std@@QBE_NXZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$codecvt@DDU_Mbstatet@@@std@@6B@
??_7?$codecvt@GDU_Mbstatet@@@std@@6B@
??_7?$codecvt@_SDU_Mbstatet@@@std@@6B@
??_7?$codecvt@_UDU_Mbstatet@@@std@@6B@
??_7?$codecvt@_WDU_Mbstatet@@@std@@6B@
??_7?$ctype@D@std@@6B@
??_7?$ctype@G@std@@6B@
??_7?$ctype@_W@std@@6B@
??_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7_Facet_base@std@@6B@
??_7_Locimp@locale@std@@6B@
??_7codecvt_base@std@@6B@
??_7ctype_base@std@@6B@
??_7facet@locale@std@@6B@
??_7ios_base@std@@6B@
??_7time_base@std@@6B@
??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@
??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@
??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@
??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@
??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@
??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@
??_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@
??_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@
??_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@
??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@
??_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@
??_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@
??_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_istream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_F?$codecvt@DDU_Mbstatet@@@std@@QAEXXZ
??_F?$codecvt@GDU_Mbstatet@@@std@@QAEXXZ
??_F?$codecvt@_SDU_Mbstatet@@@std@@QAEXXZ
??_F?$codecvt@_UDU_Mbstatet@@@std@@QAEXXZ
??_F?$codecvt@_WDU_Mbstatet@@@std@@QAEXXZ
??_F?$ctype@D@std@@QAEXXZ
??_F?$ctype@G@std@@QAEXXZ
??_F?$ctype@_W@std@@QAEXXZ
??_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F_Locinfo@std@@QAEXXZ
??_F_Timevec@std@@QAEXXZ
??_Fcodecvt_base@std@@QAEXXZ
??_Fctype_base@std@@QAEXXZ
??_Ffacet@locale@std@@QAEXXZ
??_Fid@locale@std@@QAEXXZ
??_Ftime_base@std@@QAEXXZ
?CaptureCallstack@platform@details@Concurrency@@YAIPAPAXII@Z
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?GetNextAsyncId@platform@details@Concurrency@@YAIXZ
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AAEXXZ
?_Addcats@_Locinfo@std@@QAEAAV12@HPBD@Z
?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
?_Addstd@ios_base@std@@SAXPAV12@@Z
?_Assign@_ContextCallback@details@Concurrency@@AAEXPAX@Z
?_Atexit@@YAXP6AXXZ@Z
?_BADOFF@std@@3_JB
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?_C_str@?$_Yarn@G@std@@QBEPBGXZ
?_C_str@?$_Yarn@_W@std@@QBEPB_WXZ
?_CallInContext@_ContextCallback@details@Concurrency@@QBEXV?$function@$$A6AXXZ@std@@_N@Z
?_Callfns@ios_base@std@@AAEXW4event@12@@Z
?_Capture@_ContextCallback@details@Concurrency@@AAEXXZ
?_Clocptr@_Locimp@locale@std@@0PAV123@A
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Donarrow@?$ctype@G@std@@IBEDGD@Z
?_Donarrow@?$ctype@_W@std@@IBED_WD@Z
?_Dowiden@?$ctype@G@std@@IBEGD@Z
?_Dowiden@?$ctype@_W@std@@IBE_WD@Z
?_Empty@?$_Yarn@D@std@@QBE_NXZ
?_Empty@?$_Yarn@G@std@@QBE_NXZ
?_Empty@?$_Yarn@_W@std@@QBE_NXZ
?_Execute_once@std@@YAHAAUonce_flag@1@P6GHPAX1PAPAX@Z1@Z
?_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADDH@Z
?_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADDH@Z
?_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADDH@Z
?_Findarr@ios_base@std@@AAEAAU_Iosarray@12@H@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?_Fiopen@std@@YAPAU_iobuf@@PBGHH@Z
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBDI@Z
?_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AAVios_base@2@GPBDI@Z
?_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBDI@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$codecvt@GDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$codecvt@_SDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$codecvt@_UDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@facet@locale@std@@SAIPAPBV123@PBV23@@Z
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
?_Getctype@_Locinfo@std@@QBE?AU_Ctypevec@@XZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_Getdateorder@_Locinfo@std@@QBEHXZ
?_Getdays@_Locinfo@std@@QBEPBDXZ
?_Getfalse@_Locinfo@std@@QBEPBDXZ
?_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z
?_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z
?_Getffld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z
?_Getffldx@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z
?_Getffldx@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z
?_Getffldx@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z
?_Getfmt@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
?_Getfmt@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
?_Getfmt@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Getifld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1HABVlocale@2@@Z
?_Getifld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1HABVlocale@2@@Z
?_Getifld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1HABVlocale@2@@Z
?_Getint@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@0HHAAHABV?$ctype@D@2@@Z
?_Getint@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@0HHAAHABV?$ctype@G@2@@Z
?_Getint@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@0HHAAHABV?$ctype@_W@2@@Z
?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ
?_Getmonths@_Locinfo@std@@QBEPBDXZ
?_Getname@_Locinfo@std@@QBEPBDXZ
?_Getptr@_Timevec@std@@QBEPAXXZ
?_Gettnames@_Locinfo@std@@QBE?AV_Timevec@2@XZ
?_Gettrue@_Locinfo@std@@QBEPBDXZ
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?_Gnavail@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IBE_JXZ
?_Gnavail@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBE_JXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ
?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ
?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gnpreinc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ
?_Gnpreinc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Id_cnt@id@locale@std@@0HA
?_Ifmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADPBDH@Z
?_Ifmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADPBDH@Z
?_Ifmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADPBDH@Z
?_Incref@facet@locale@std@@UAEXXZ
?_Index@ios_base@std@@0HA

Sections

.text
Size: 394KB - Virtual size: 393KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KLA-VPN-Setup-9.4.3-8353/vcruntime140.dll
.dll windows:6 windows x86 arch:x86

6a84b7445ccacd5d29ac27de2745f356

Code Sign

33:00:00:01:07:63:a5:19:2a:11:27:e5:d9:00:00:00:00:01:07
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/08/2018, 20:20

Not After

23/11/2019, 20:20

Subject

CN=Microsoft Time-Stamp service,OU=Microsoft Ireland Operations Limited+OU=Thales TSS ESN:AB41-4B27-F026,O=Microsoft Corporation,L=Redmond,ST=WA,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:b1:dd:ed:ba:54:e9:65:b8:5f:00:01:00:00:01:b1
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/07/2018, 20:11

Not After

26/07/2019, 20:11

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:02:3b:10:df:65:17:47:51:70:ff:00:00:00:00:02:3b
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/07/2018, 20:07

Not After

08/08/2019, 20:07

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7c:83:07:f2:ab:ac:ee:45:72:8a:94:b8:52:1c:71:d9:cf:2a:02:0f:3d:2a:40:23:c8:ae:be:94:e0:2b:de:b2
Signer

Actual PE Digest

7c:83:07:f2:ab:ac:ee:45:72:8a:94:b8:52:1c:71:d9:cf:2a:02:0f:3d:2a:40:23:c8:ae:be:94:e0:2b:de:b2

Digest Algorithm

sha256

PE Digest Matches

true

69:f0:3a:b3:d3:e2:76:74:1b:68:d7:40:21:2e:c8:f1:01:72:80:8a
Signer

Actual PE Digest

69:f0:3a:b3:d3:e2:76:74:1b:68:d7:40:21:2e:c8:f1:01:72:80:8a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\agent\_work\2\s\binaries\x86ret\bin\i386\\vcruntime140.i386.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

abort
terminate

api-ms-win-crt-heap-l1-1-0

calloc
malloc
free

api-ms-win-crt-string-l1-1-0

strcpy_s
wcsncmp

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf_s

api-ms-win-crt-convert-l1-1-0

atol

kernel32

DeleteCriticalSection
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
GetModuleHandleW
GetModuleFileNameW
LoadLibraryExW
GetProcAddress
FreeLibrary
RtlUnwind
VirtualQuery
EncodePointer
InterlockedPushEntrySList
InterlockedFlushSList
RaiseException
EnterCriticalSection
LeaveCriticalSection
TlsSetValue
GetLastError
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsFree

Exports

Exports

_CreateFrameInfo
_CxxThrowException
_EH_prolog
_FindAndUnlinkFrame
_IsExceptionObjectToBeDestroyed
_NLG_Dispatch2
_NLG_Return
_NLG_Return2
_SetWinRTOutOfMemoryExceptionCallback
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__GetPlatformExceptionInfo
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__TypeMatch
__current_exception
__current_exception_context
__intrinsic_setjmp
__processing_throw
__report_gsfailure
__std_exception_copy
__std_exception_destroy
__std_terminate
__std_type_info_compare
__std_type_info_destroy_list
__std_type_info_hash
__std_type_info_name
__telemetry_main_invoke_trigger
__telemetry_main_return_trigger
__unDName
__unDNameEx
__uncaught_exception
__uncaught_exceptions
__vcrt_GetModuleFileNameW
__vcrt_GetModuleHandleW
__vcrt_InitializeCriticalSectionEx
__vcrt_LoadLibraryExW
_chkesp
_except_handler2
_except_handler3
_except_handler4_common
_get_purecall_handler
_get_unexpected
_global_unwind2
_is_exception_typeof
_local_unwind2
_local_unwind4
_longjmpex
_purecall
_seh_longjmp_unwind
_seh_longjmp_unwind4
_set_purecall_handler
_set_se_translator
_setjmp3
longjmp
memchr
memcmp
memcpy
memmove
memset
set_unexpected
strchr
strrchr
strstr
unexpected
wcschr
wcsrchr
wcsstr

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KLA-VPN-Setup-9.4.3-8353/version.dll
.dll windows:10 windows x64 arch:x64

34340c2c4e9aa6ef6ad12bb695fc695b

Code Sign

33:00:00:02:66:bd:15:80:ef:a7:5c:d6:d3:00:00:00:00:02:66
Certificate

Issuer

CN=Microsoft Windows Production PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 18:30

Not After

03/03/2021, 18:30

Subject

CN=Microsoft Windows,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:07:76:56:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

19/10/2011, 18:41

Not After

19/10/2026, 18:51

Subject

CN=Microsoft Windows Production PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

99:36:00:2d:63:8d:dc:7d:27:9e:21:e3:d8:be:62:5d:4e:6c:68:50:b8:56:3b:19:e3:ff:44:56:61:da:3d:17
Signer

Actual PE Digest

99:36:00:2d:63:8d:dc:7d:27:9e:21:e3:d8:be:62:5d:4e:6c:68:50:b8:56:3b:19:e3:ff:44:56:61:da:3d:17

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

version.pdb

Imports

msvcrt

__C_specific_handler
_initterm
malloc
free
_amsg_exit
_XcptFilter
_vsnwprintf
_vsnprintf
memcmp

api-ms-win-core-errorhandling-l1-1-0

SetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetLastError

api-ms-win-core-version-l1-1-0

VerQueryValueW
VerFindFileW
GetFileVersionInfoExW
GetFileVersionInfoSizeExW

api-ms-win-core-localization-l1-2-0

IsDBCSLeadByte

api-ms-win-core-version-l1-1-1

GetFileVersionInfoW
GetFileVersionInfoSizeW

api-ms-win-core-file-l1-1-0

CreateFileW
DeleteFileA
GetFileSize
DeleteFileW
GetFullPathNameA
SetFileTime
GetFileTime
GetFileAttributesW

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-processthreads-l1-1-0

TlsFree
GetCurrentProcessId
GetCurrentThreadId
TlsSetValue
TerminateProcess
TlsAlloc
TlsGetValue
GetCurrentProcess

api-ms-win-core-libraryloader-l1-2-0

FreeLibrary
GetProcAddress

api-ms-win-core-heap-l2-1-0

LocalFree
LocalAlloc

api-ms-win-core-libraryloader-l1-2-1

LoadLibraryW

api-ms-win-core-string-l1-1-0

WideCharToMultiByte

api-ms-win-core-synch-l1-2-0

Sleep

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-sysinfo-l1-1-0

GetSystemTimeAsFileTime
GetTickCount

api-ms-win-core-rtlsupport-l1-1-0

RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

api-ms-win-core-versionansi-l1-1-0

GetFileVersionInfoExA
VerFindFileA
GetFileVersionInfoSizeExA
VerQueryValueA

api-ms-win-core-versionansi-l1-1-1

GetFileVersionInfoSizeA
GetFileVersionInfoA

api-ms-win-core-version-private-l1-1-0

GetFileVersionInfoByHandle

kernelbase

lstrcmpiA
lstrcmpiW
lstrlenW

ntdll

RtlAllocateHeap
RtlFreeUnicodeString
RtlAnsiStringToUnicodeString
RtlInitAnsiString
RtlUnicodeStringToAnsiString
NlsMbCodePageTag

kernel32

_lwrite
_lread
_lopen
_lclose
_lcreat
_llseek
LZCreateFileW
LZCloseFile
LZInit
LZCopy
LZClose
MoveFileW

Exports

Exports

GetFileVersionInfoA
GetFileVersionInfoByHandle
GetFileVersionInfoExA
GetFileVersionInfoExW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeExA
GetFileVersionInfoSizeExW
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerFindFileA
VerFindFileW
VerInstallFileA
VerInstallFileW
VerLanguageNameA
VerLanguageNameW
VerQueryValueA
VerQueryValueW

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d4fe8eec31ba44b37546499596e74621

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0a:c5:74:71:1d:b4:8c:c4:e2:f0:bc:f4:65:29:87:2eCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

73:b3:12:fa:b2:f8:cc:1d:fe:49:ba:01:fb:ca:7e:8b:6d:a9:fc:3a:48:78:86:17:8d:e4:f1:dc:f6:33:f2:7dSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

version

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

crypt32

rpcrt4

Sections

.text Size: 717KB - Virtual size: 717KB

.rdata Size: 217KB - Virtual size: 216KB

.data Size: 9KB - Virtual size: 35KB

.rsrc Size: 335KB - Virtual size: 335KB

c4217bcf28c427e746fd876322b449a0

Code Sign

33:00:00:03:f1:62:06:e3:e7:ef:da:8a:be:00:00:00:00:03:f1Certificate

Extended Key Usages

61:0c:52:4c:00:00:00:00:00:03Certificate

Key Usages

c2:9c:91:65:1e:e1:a8:d6:29:28:cd:54:80:41:ea:9c:ea:58:31:eb:6c:2c:e0:b9:b8:6e:74:64:1a:bb:38:a3Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

shell32

ole32

oleaut32

crypt32

rpcrt4

secur32

shlwapi

version

wininet

ws2_32

wtsapi32

msvcp140

userenv

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-math-l1-1-0

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0a:c5:74:71:1d:b4:8c:c4:e2:f0:bc:f4:65:29:87:2e
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

73:b3:12:fa:b2:f8:cc:1d:fe:49:ba:01:fb:ca:7e:8b:6d:a9:fc:3a:48:78:86:17:8d:e4:f1:dc:f6:33:f2:7d
Signer

.text
Size: 717KB - Virtual size: 717KB

.rdata
Size: 217KB - Virtual size: 216KB

.data
Size: 9KB - Virtual size: 35KB

.rsrc
Size: 335KB - Virtual size: 335KB

33:00:00:03:f1:62:06:e3:e7:ef:da:8a:be:00:00:00:00:03:f1
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate

c2:9c:91:65:1e:e1:a8:d6:29:28:cd:54:80:41:ea:9c:ea:58:31:eb:6c:2c:e0:b9:b8:6e:74:64:1a:bb:38:a3
Signer

.text
Size: 289KB - Virtual size: 288KB

.rdata
Size: 115KB - Virtual size: 115KB

.data
Size: 13KB - Virtual size: 14KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 22KB - Virtual size: 22KB

33:00:00:03:f1:62:06:e3:e7:ef:da:8a:be:00:00:00:00:03:f1
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate

1d:db:77:07:94:e2:4e:81:c1:63:71:50:db:4d:99:c3:ce:c2:a5:dd:a6:24:92:41:43:01:90:d8:4b:06:a8:c1
Signer

.text
Size: 323KB - Virtual size: 322KB

.rdata
Size: 136KB - Virtual size: 136KB

.data
Size: 26KB - Virtual size: 28KB

.rsrc
Size: 58KB - Virtual size: 58KB

.reloc
Size: 29KB - Virtual size: 28KB

33:00:00:01:05:8e:ca:29:22:1e:6a:34:5b:00:00:00:00:01:05
Certificate

33:00:00:01:b1:dd:ed:ba:54:e9:65:b8:5f:00:01:00:00:01:b1
Certificate

61:33:26:1a:00:00:00:00:00:31
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate

33:00:00:02:3b:10:df:65:17:47:51:70:ff:00:00:00:00:02:3b
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate