agenttesla | SpyLogger[.]V1[.]1[.]rar

Resubmissions

07/06/2024, 18:22

240607-wz5clsch37 10

Sharing

Copy URL Twitter E-mail

General

Target

SpyLogger.V1.1.rar
Size

59.6MB
MD5

4f9471af75fcc67e09a9960c9e857364
SHA1

b795e62c23b0ca9656b398af9fbde402b6f5a323
SHA256

92fbeb1ebe6e1e2efe646431d2b1035103c81f7f6a9fd63e1792aed53eb187ef
SHA512

47decf92f501b15b7fb63c23db90147f572621bdab596d8e0b4ab39eb92ce74f87ebbea5c747c6363257ab8abfb6ec837108824600b7c4c69f6605d47567a483
SSDEEP

1572864:M+Abr5URDKMKieOF/2vkMYBAHTRg/pIMHFy/hh6:TVROMfeOJM4+HG/f86

Score

10^/10

themida agenttesla

Malware Config

Signatures

AgentTesla payload 1 IoCs

resource	yara_rule
static1/unpack001/SpyLogger V1.1/Guna.UI2.dll	family_agenttesla

Agenttesla family
agenttesla

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
static1/unpack001/SpyLogger V1.1/SpyLoger.exe	themida

Unsigned PE 57 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SpyLogger V1.1/MetroSet UI.dll
unpack001/SpyLogger V1.1/SpyLoger.exe
unpack001/SpyLogger V1.1/res/bin/JAWTAccessBridge-64.dll
unpack001/SpyLogger V1.1/res/bin/JavaAccessBridge-64.dll
unpack001/SpyLogger V1.1/res/bin/WindowsAccessBridge-64.dll
unpack001/SpyLogger V1.1/res/bin/attach.dll
unpack001/SpyLogger V1.1/res/bin/awt.dll
unpack001/SpyLogger V1.1/res/bin/dt_shmem.dll
unpack001/SpyLogger V1.1/res/bin/dt_socket.dll
unpack001/SpyLogger V1.1/res/bin/fontmanager.dll
unpack001/SpyLogger V1.1/res/bin/freetype.dll
unpack001/SpyLogger V1.1/res/bin/hprof.dll
unpack001/SpyLogger V1.1/res/bin/instrument.dll
unpack001/SpyLogger V1.1/res/bin/j2pcsc.dll
unpack001/SpyLogger V1.1/res/bin/j2pkcs11.dll
unpack001/SpyLogger V1.1/res/bin/jaas_nt.dll
unpack001/SpyLogger V1.1/res/bin/jabswitch.exe
unpack001/SpyLogger V1.1/res/bin/java-rmi.exe
unpack001/SpyLogger V1.1/res/bin/java.dll
unpack001/SpyLogger V1.1/res/bin/java.exe
unpack001/SpyLogger V1.1/res/bin/java_crw_demo.dll
unpack001/SpyLogger V1.1/res/bin/javaw.exe
unpack001/SpyLogger V1.1/res/bin/jawt.dll
unpack001/SpyLogger V1.1/res/bin/jdwp.dll
unpack001/SpyLogger V1.1/res/bin/jjs.exe
unpack001/SpyLogger V1.1/res/bin/jli.dll
unpack001/SpyLogger V1.1/res/bin/jpeg.dll
unpack001/SpyLogger V1.1/res/bin/jsdt.dll
unpack001/SpyLogger V1.1/res/bin/jsound.dll
unpack001/SpyLogger V1.1/res/bin/jsoundds.dll
unpack001/SpyLogger V1.1/res/bin/keytool.exe
unpack001/SpyLogger V1.1/res/bin/kinit.exe
unpack001/SpyLogger V1.1/res/bin/klist.exe
unpack001/SpyLogger V1.1/res/bin/ktab.exe
unpack001/SpyLogger V1.1/res/bin/lcms.dll
unpack001/SpyLogger V1.1/res/bin/management.dll
unpack001/SpyLogger V1.1/res/bin/mlib_image.dll
unpack001/SpyLogger V1.1/res/bin/net.dll
unpack001/SpyLogger V1.1/res/bin/nio.dll
unpack001/SpyLogger V1.1/res/bin/npt.dll
unpack001/SpyLogger V1.1/res/bin/orbd.exe
unpack001/SpyLogger V1.1/res/bin/pack200.exe
unpack001/SpyLogger V1.1/res/bin/policytool.exe
unpack001/SpyLogger V1.1/res/bin/rmid.exe
unpack001/SpyLogger V1.1/res/bin/rmiregistry.exe
unpack001/SpyLogger V1.1/res/bin/sawindbg.dll
unpack001/SpyLogger V1.1/res/bin/server/jvm.dll
unpack001/SpyLogger V1.1/res/bin/servertool.exe
unpack001/SpyLogger V1.1/res/bin/splashscreen.dll
unpack001/SpyLogger V1.1/res/bin/sunec.dll
unpack001/SpyLogger V1.1/res/bin/sunmscapi.dll
unpack001/SpyLogger V1.1/res/bin/tnameserv.exe
unpack001/SpyLogger V1.1/res/bin/unpack.dll
unpack001/SpyLogger V1.1/res/bin/unpack200.exe
unpack001/SpyLogger V1.1/res/bin/verify.dll
unpack001/SpyLogger V1.1/res/bin/w2k_lsa_auth.dll
unpack001/SpyLogger V1.1/res/bin/zip.dll

Files

SpyLogger.V1.1.rar
.rar
SpyLogger V1.1/Guna.UI2.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

7a:98:1b:7d:3e:b4:86:bb:45:84:c4:3c:c9:a8:3f:db
Certificate

Issuer

CN=Sobatdata Root CA

Not Before

23/10/2019, 05:22

Not After

22/10/2025, 17:00

Subject

CN=Sobatdata Software

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

51:85:2a:c3:53:87:5a:c8:6e:df:5c:75:c9:c6:c7:dc:b9:6d:bd:99
Signer

Actual PE Digest

51:85:2a:c3:53:87:5a:c8:6e:df:5c:75:c9:c6:c7:dc:b9:6d:bd:99

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/MetroSet UI.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

E:\MetroSet-UI-master\MetroSet-UI-master\MetroSet UI\obj\Release\net45\MetroSet UI.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 433KB - Virtual size: 433KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/Newtonsoft.Json.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

06:ce:e1:31:be:6d:55:c8:07:f7:c0:c7:fb:44:e6:20
Certificate

Issuer

CN=DigiCert CS RSA4096 Root G5,O=DigiCert\, Inc.,C=US

Not Before

15/01/2021, 00:00

Not After

14/01/2046, 23:59

Subject

CN=DigiCert CS RSA4096 Root G5,O=DigiCert\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:de:32:e9:50:9b:44:aa:34:b1:da:f1:bc:0e:c8:73
Certificate

Issuer

CN=DigiCert CS RSA4096 Root G5,O=DigiCert\, Inc.,C=US

Not Before

15/07/2021, 00:00

Not After

14/07/2031, 23:59

Subject

CN=.NET Foundation Projects Code Signing CA2,O=.NET Foundation,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:d1:40:7a:5a:bd:ed:43:d5:c1:73:12:1d:38:c5:29
Certificate

Issuer

CN=.NET Foundation Projects Code Signing CA2,O=.NET Foundation,C=US

Not Before

13/08/2021, 00:00

Not After

29/10/2024, 23:59

Subject

SERIALNUMBER=603 389 068,CN=Json.NET (.NET Foundation),O=Json.NET (.NET Foundation),L=Redmond,ST=Washington,C=US,1.3.6.1.4.1.311.60.2.1.2=#130a57617368696e67746f6e,1.3.6.1.4.1.311.60.2.1.3=#13025553,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

38:27:11:d0:35:02:fc:58:64:ae:1e:6c:cb:c5:eb:67:eb:5d:dc:c8:86:9e:e4:59:cc:0d:02:0e:5f:d1:fc:9b
Signer

Actual PE Digest

38:27:11:d0:35:02:fc:58:64:ae:1e:6c:cb:c5:eb:67:eb:5d:dc:c8:86:9e:e4:59:cc:0d:02:0e:5f:d1:fc:9b

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

/_/Src/Newtonsoft.Json/obj/Release/net45/Newtonsoft.Json.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 681KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/Newtonsoft.Json.xml
.xml
SpyLogger V1.1/SpyLoger.exe
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: 23.7MB - Virtual size: 23.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 6KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 5.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/SpyLoger.exe.config
.xml
SpyLogger V1.1/SpyLoger.pdb
SpyLogger V1.1/res/ASSEMBLY_EXCEPTION
SpyLogger V1.1/res/LICENSE
SpyLogger V1.1/res/THIRD_PARTY_README
SpyLogger V1.1/res/bin/JAWTAccessBridge-64.dll
.dll windows:5 windows x64 arch:x64

84a83eef8237ed147efd088b8e576a83

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\JAWTAccessBridge-64.pdb

Imports

jawt

JAWT_GetAWT

msvcr100

__CppXcptFilter
__clean_type_info_names_internal
__C_specific_handler
__dllonexit
_lock
_onexit
_amsg_exit
_encoded_null
free
_initterm_e
_initterm
_malloc_crt
_unlock

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
Sleep
DecodePointer
EncodePointer
GetCurrentProcessId

Exports

Exports

Java_com_sun_java_accessibility_AccessBridge_jawtGetComponentFromNativeWindowHandle
Java_com_sun_java_accessibility_AccessBridge_jawtGetNativeWindowHandleFromComponent

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/JavaAccessBridge-64.dll
.dll windows:5 windows x64 arch:x64

feec3aaac725f71fdcd7d2601852d1fe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\JavaAccessBridge-64.pdb

Imports

kernel32

CloseHandle
UnmapViewOfFile
MapViewOfFile
GetLastError
OpenFileMappingA
Sleep
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
DecodePointer
EncodePointer
GetSystemTimeAsFileTime

user32

TranslateMessage
DispatchMessageA
CreateDialogParamA
PostMessageA
RegisterWindowMessageA
PostThreadMessageA
SendMessageA
PostQuitMessage
GetMessageA

msvcr100

memcpy
??_U@YAPEAX_K@Z
??2@YAPEAX_K@Z
wcslen
wcsncpy
??3@YAXPEAX@Z
wcscmp
_malloc_crt
_initterm
_initterm_e
free
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_beginthreadex
strcmp
strcpy
strncpy
memset

Exports

Exports

Java_com_sun_java_accessibility_AccessBridge_caretUpdate
Java_com_sun_java_accessibility_AccessBridge_focusGained
Java_com_sun_java_accessibility_AccessBridge_focusLost
Java_com_sun_java_accessibility_AccessBridge_javaShutdown
Java_com_sun_java_accessibility_AccessBridge_menuCanceled
Java_com_sun_java_accessibility_AccessBridge_menuDeselected
Java_com_sun_java_accessibility_AccessBridge_menuSelected
Java_com_sun_java_accessibility_AccessBridge_mouseClicked
Java_com_sun_java_accessibility_AccessBridge_mouseEntered
Java_com_sun_java_accessibility_AccessBridge_mouseExited
Java_com_sun_java_accessibility_AccessBridge_mousePressed
Java_com_sun_java_accessibility_AccessBridge_mouseReleased
Java_com_sun_java_accessibility_AccessBridge_popupMenuCanceled
Java_com_sun_java_accessibility_AccessBridge_popupMenuWillBecomeInvisible
Java_com_sun_java_accessibility_AccessBridge_popupMenuWillBecomeVisible
Java_com_sun_java_accessibility_AccessBridge_propertyActiveDescendentChange
Java_com_sun_java_accessibility_AccessBridge_propertyCaretChange
Java_com_sun_java_accessibility_AccessBridge_propertyChildChange
Java_com_sun_java_accessibility_AccessBridge_propertyDescriptionChange
Java_com_sun_java_accessibility_AccessBridge_propertyNameChange
Java_com_sun_java_accessibility_AccessBridge_propertySelectionChange
Java_com_sun_java_accessibility_AccessBridge_propertyStateChange
Java_com_sun_java_accessibility_AccessBridge_propertyTableModelChange
Java_com_sun_java_accessibility_AccessBridge_propertyTextChange
Java_com_sun_java_accessibility_AccessBridge_propertyValueChange
Java_com_sun_java_accessibility_AccessBridge_propertyVisibleDataChange
Java_com_sun_java_accessibility_AccessBridge_runDLL
Java_com_sun_java_accessibility_AccessBridge_sendDebugString

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/WindowsAccessBridge-64.dll
.dll windows:5 windows x64 arch:x64

1768570423df7104174d8d0281b2b40d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\WindowsAccessBridge-64.pdb

Imports

kernel32

LeaveCriticalSection
CloseHandle
UnmapViewOfFile
EnterCriticalSection
MapViewOfFile
GetLastError
CreateFileMappingA
InitializeCriticalSection
FlushFileBuffers
CreateFileW
GetStringTypeW
LCMapStringW
MultiByteToWideChar
WriteConsoleW
SetStdHandle
HeapReAlloc
HeapSize
LoadLibraryW
HeapAlloc
HeapFree
GetCurrentThreadId
FlsSetValue
GetCommandLineA
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
EncodePointer
TerminateProcess
GetCurrentProcess
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
HeapSetInformation
GetVersion
HeapCreate
HeapDestroy
RaiseException
RtlPcToFileHeader
RtlUnwindEx
FlsGetValue
FlsFree
SetLastError
FlsAlloc
Sleep
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetFilePointer
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage

user32

CreateDialogParamA
DestroyWindow
PostMessageA
SendMessageA
ShowWindow
IsWindow
GetParent
GetWindowLongA
RegisterWindowMessageA
SendMessageTimeoutA

Exports

Exports

Windows_run
activateAccessibleHyperlink
addAccessibilityEventNotification
addAccessibleSelectionFromContext
addJavaEventNotification
clearAccessibleSelectionFromContext
doAccessibleActions
getAccessibleActions
getAccessibleChildFromContext
getAccessibleContextAt
getAccessibleContextFromHWND
getAccessibleContextInfo
getAccessibleContextWithFocus
getAccessibleHyperlink
getAccessibleHyperlinkCount
getAccessibleHypertext
getAccessibleHypertextExt
getAccessibleHypertextLinkIndex
getAccessibleIcons
getAccessibleKeyBindings
getAccessibleParentFromContext
getAccessibleRelationSet
getAccessibleSelectionCountFromContext
getAccessibleSelectionFromContext
getAccessibleTableCellInfo
getAccessibleTableColumn
getAccessibleTableColumnDescription
getAccessibleTableColumnHeader
getAccessibleTableColumnSelectionCount
getAccessibleTableColumnSelections
getAccessibleTableIndex
getAccessibleTableInfo
getAccessibleTableRow
getAccessibleTableRowDescription
getAccessibleTableRowHeader
getAccessibleTableRowSelectionCount
getAccessibleTableRowSelections
getAccessibleTextAttributes
getAccessibleTextInfo
getAccessibleTextItems
getAccessibleTextLineBounds
getAccessibleTextRange
getAccessibleTextRect
getAccessibleTextSelectionInfo
getActiveDescendent
getCaretLocation
getCurrentAccessibleValueFromContext
getEventsWaiting
getHWNDFromAccessibleContext
getMaximumAccessibleValueFromContext
getMinimumAccessibleValueFromContext
getObjectDepth
getParentWithRole
getParentWithRoleElseRoot
getTextAttributesInRange
getTopLevelObject
getVersionInfo
getVirtualAccessibleName
getVisibleChildren
getVisibleChildrenCount
isAccessibleChildSelectedFromContext
isAccessibleTableColumnSelected
isAccessibleTableRowSelected
isJavaWindow
isSameObject
releaseJavaObject
removeAccessibilityEventNotification
removeAccessibleSelectionFromContext
removeJavaEventNotification
requestFocus
selectAllAccessibleSelectionFromContext
selectTextRange
setCaretPosition
setCaretUpdateFP
setFocusGainedFP
setFocusLostFP
setJavaShutdownFP
setMenuCanceledFP
setMenuDeselectedFP
setMenuSelectedFP
setMouseClickedFP
setMouseEnteredFP
setMouseExitedFP
setMousePressedFP
setMouseReleasedFP
setPopupMenuCanceledFP
setPopupMenuWillBecomeInvisibleFP
setPopupMenuWillBecomeVisibleFP
setPropertyActiveDescendentChangeFP
setPropertyCaretChangeFP
setPropertyChangeFP
setPropertyChildChangeFP
setPropertyDescriptionChangeFP
setPropertyNameChangeFP
setPropertySelectionChangeFP
setPropertyStateChangeFP
setPropertyTableModelChangeFP
setPropertyTextChangeFP
setPropertyValueChangeFP
setPropertyVisibleDataChangeFP
setTextContents

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/apksigner.jar
.jar
SpyLogger V1.1/res/bin/apksigner/certificate.pem
SpyLogger V1.1/res/bin/apksigner/key.pk8
SpyLogger V1.1/res/bin/apksigner/testkey.pk8
SpyLogger V1.1/res/bin/apksigner/testkey.x509.pem
SpyLogger V1.1/res/bin/attach.dll
.dll windows:5 windows x64 arch:x64

681bc60206cc8238ad68bbec3ca79e3d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\attach.pdb

Imports

java

JNU_ThrowInternalError
JNU_ThrowIOException
JNU_ThrowByName
JNU_ThrowIOExceptionWithLastError
JNU_GetStringPlatformChars
JNU_ReleaseStringPlatformChars
JNU_NewStringPlatform

advapi32

OpenThreadToken
ImpersonateSelf
LookupPrivilegeValueA
AdjustTokenPrivileges
ConvertStringSecurityDescriptorToSecurityDescriptorA

psapi

EnumProcessModules
GetModuleBaseNameA
EnumProcesses

msvcr100

_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
strcpy
sprintf
strncpy
memset
strcmp
malloc
free

kernel32

RtlLookupFunctionEntry
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetSystemTimeAsFileTime
RtlCaptureContext
DisableThreadLibraryCalls
GetTempPathA
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
Sleep
DecodePointer
EncodePointer
VirtualAllocEx
WriteProcessMemory
CreateRemoteThread
WaitForSingleObject
GetExitCodeThread
VirtualFreeEx
CreateNamedPipeA
LocalFree
GetCurrentProcessId
GetCurrentProcess
DuplicateHandle
GetCurrentThread
SetLastError
ReadFile
ConnectNamedPipe
GetLastError
GetModuleHandleA
GetVolumeInformationA
CloseHandle
OpenProcess
IsWow64Process
GetProcAddress

Exports

Exports

Java_sun_tools_attach_WindowsAttachProvider_enumProcesses
Java_sun_tools_attach_WindowsAttachProvider_isLibraryLoadedByProcess
Java_sun_tools_attach_WindowsAttachProvider_tempPath
Java_sun_tools_attach_WindowsAttachProvider_volumeFlags
Java_sun_tools_attach_WindowsVirtualMachine_closePipe
Java_sun_tools_attach_WindowsVirtualMachine_closeProcess
Java_sun_tools_attach_WindowsVirtualMachine_connectPipe
Java_sun_tools_attach_WindowsVirtualMachine_createPipe
Java_sun_tools_attach_WindowsVirtualMachine_enqueue
Java_sun_tools_attach_WindowsVirtualMachine_generateStub
Java_sun_tools_attach_WindowsVirtualMachine_init
Java_sun_tools_attach_WindowsVirtualMachine_openProcess
Java_sun_tools_attach_WindowsVirtualMachine_readPipe

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/awt.dll
.dll windows:5 windows x64 arch:x64

201563478dd831e7cd7c611fd230e031

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\awt.pdb

Imports

kernel32

GetModuleHandleW
GetVersionExW
FreeLibrary
Sleep
GetTickCount
GetProcAddress
GetCurrentThreadId
TlsGetValue
TlsAlloc
TlsSetValue
MultiByteToWideChar
GlobalFree
lstrcpynW
GlobalAlloc
lstrlenW
GetProfileStringW
WaitForSingleObject
GetLastError
SetLastError
GlobalUnlock
GlobalLock
GlobalSize
GetACP
GetLocaleInfoW
LocalFree
FormatMessageW
ExpandEnvironmentStringsW
lstrcpyW
ReleaseMutex
LocalAlloc
CloseHandle
GetVersion
SetCurrentDirectoryW
GetCurrentDirectoryW
ReadFile
SetFilePointer
WideCharToMultiByte
CreateFileW
GetCurrentProcessId
LCMapStringW
SetEvent
CreateEventW
ResetEvent
IsWow64Process
GetCurrentProcess
GetNativeSystemInfo
lstrcmpW
GetWindowsDirectoryW
GetSystemDefaultLangID
GetSystemTimeAsFileTime
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
DecodePointer
EncodePointer
RaiseException
LoadLibraryA
lstrlenA
LeaveCriticalSection
TryEnterCriticalSection
EnterCriticalSection
DeleteCriticalSection
CreateMutexW
InitializeCriticalSection

jvm

JVM_CurrentTimeMillis
jio_snprintf
JVM_RaiseSignal

java

JNU_ThrowIllegalArgumentException
JNU_IsInstanceOfByName
getEncodingFromLangID
JNU_GetFieldByName
JNU_NewObjectByName
JNU_GetStaticFieldByName
JNU_ThrowByName
JNU_ThrowIOException
JNU_NewStringPlatform
JNU_ClassString
JNU_CallMethodByNameV
JNU_ThrowArrayIndexOutOfBoundsException
JNU_ThrowInternalError
JNU_SetFieldByName
JDK_LoadSystemLibrary
JNU_GetEnv
JNU_CallStaticMethodByName
JNU_CallMethodByName
JNU_ThrowOutOfMemoryError
JNU_ThrowNullPointerException
getJavaIDFromLangID

advapi32

RegQueryValueExW
RegOpenKeyExW
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

msvcr100

_wcsicmp
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
__crt_debugger_hook
__CppXcptFilter
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
_onexit
malloc
free
memset
memcpy
calloc
__CxxFrameHandler3
_CxxThrowException
??3@YAXPEAX@Z
wcslen
_snwprintf
_purecall
strncmp
getenv
swscanf
wcsncpy
floorf
powf
ceilf
_lock
floor
sin
cos
ceil
sprintf
strcspn
strlen
pow
realloc
qsort
__iob_func
printf
fopen
sscanf
fflush
vfprintf
fprintf
fabs
strstr
_control87
_strupr_s
_wcsdup
strcmp
labs
memmove
_wtoi
wcscmp
tolower
abs
??0exception@std@@QEAA@AEBQEBD@Z
?what@exception@std@@UEBAPEBDXZ
??1exception@std@@UEAA@XZ
memcmp
??0exception@std@@QEAA@AEBV01@@Z
swprintf_s
bsearch
memcpy_s
sqrt
wcscat
wcscpy_s
strchr
wcschr
wcsstr
iswspace
wcscpy
strcpy
setlocale
wcstoul
wcstok
_wfullpath
_vswprintf_c_l
_i64tow
_beginthreadex
_errno
strtod
_wgetenv
wcsncmp
?_set_new_handler@@YAP6AH_K@ZP6AH0@Z@Z
?_set_new_mode@@YAHH@Z
_localtime64
wcsftime
_ftime64
_vsnwprintf
?terminate@@YAXXZ
__C_specific_handler
_unlock
__dllonexit

oleaut32

VariantClear
SysAllocStringByteLen
SysFreeString
SysStringLen
SysAllocString

d2d1

ord1

Exports

Exports

??0D3DContext@@AEAA@PEAUIDirect3D9@@I@Z
??0D3DContext@@QEAA@AEBV0@@Z
??0D3DPipelineManager@@AEAA@XZ
??0D3DVertexCacher@@AEAA@XZ
??1D3DContext@@UEAA@XZ
??1D3DPipelineManager@@AEAA@XZ
??1D3DVertexCacher@@QEAA@XZ
??4D3DContext@@QEAAAEAV0@AEBV0@@Z
??4D3DPipelineManager@@QEAAAEAV0@AEBV0@@Z
??4D3DVertexCacher@@QEAAAEAV0@AEBV0@@Z
??_7D3DContext@@6B@
?BeginScene@D3DContext@@QEAAJC@Z
?BeginShapeClip@D3DContext@@QEAAJXZ
?CheckAdaptersInfo@D3DPipelineManager@@AEAAJXZ
?CheckAndResetDevice@D3DContext@@QEAAJXZ
?CheckDeviceCaps@D3DPipelineManager@@AEAAJI@Z
?CheckForBadHardware@D3DPipelineManager@@CAJKK_J@Z
?CheckOSVersion@D3DPipelineManager@@CAJXZ
?ConfigureContext@D3DContext@@QEAAJPEAU_D3DPRESENT_PARAMETERS_@@@Z
?CreateDefaultFocusWindow@D3DPipelineManager@@AEAAPEAUHWND__@@XZ
?CreateFragmentProgram@D3DContext@@AEAAPEAUIDirect3DPixelShader9@@PEAPEAKPEAUShaderList@@J@Z
?CreateInstance@D3DContext@@SAJPEAUIDirect3D9@@IPEAPEAV1@@Z
?CreateInstance@D3DPipelineManager@@CAPEAV1@XZ
?CreateInstance@D3DVertexCacher@@SAJPEAVD3DContext@@PEAPEAV1@@Z
?D3DBL_CopyImageToIntXrgbSurface@@YAJPEAUSurfaceDataRasInfo@@HPEAVD3DResource@@JJJJJJ@Z
?D3DBL_CopySurfaceToIntArgbImage@@YAJPEAUIDirect3DSurface9@@PEAUSurfaceDataRasInfo@@JJJJJJ@Z
?D3DBlitLoops_IsoBlit@@YAJPEAUJNIEnv_@@PEAVD3DContext@@_J2EJEEJJJJNNNN@Z
?D3DBlitToSurfaceViaTexture@@YAJPEAVD3DContext@@PEAUSurfaceDataRasInfo@@HPEAU_D3DSDOps@@EJJJJJNNNN@Z
?D3DEnabledOnAdapter@D3DPipelineManager@@AEAAJI@Z
?D3DRenderer_DrawAAParallelogram@@YAJPEAVD3DContext@@MMMMMMMM@Z
?D3DRenderer_DrawLine@@YAJPEAVD3DContext@@JJJJ@Z
?D3DRenderer_DrawParallelogram@@YAJPEAVD3DContext@@MMMMMMMM@Z
?D3DRenderer_DrawPoly@@YAJPEAVD3DContext@@JEJJPEAJ1@Z
?D3DRenderer_DrawRect@@YAJPEAVD3DContext@@JJJJ@Z
?D3DRenderer_DrawScanlines@@YAJPEAVD3DContext@@JPEAJ@Z
?D3DRenderer_FillAAParallelogram@@YAJPEAVD3DContext@@MMMMMM@Z
?D3DRenderer_FillParallelogram@@YAJPEAVD3DContext@@MMMMMM@Z
?D3DRenderer_FillRect@@YAJPEAVD3DContext@@JJJJ@Z
?D3DRenderer_FillSpans@@YAJPEAVD3DContext@@JPEAJ@Z
?DeleteInstance@D3DPipelineManager@@CAXXZ
?DisableAAParallelogramProgram@D3DContext@@QEAAJXZ
?DrawLine@D3DVertexCacher@@QEAAJHHHH@Z
?DrawParallelogramAA@D3DVertexCacher@@QEAAJMMMMMMMMMMMM@Z
?DrawPoly@D3DVertexCacher@@QEAAJJEJJPEAJ0@Z
?DrawRect@D3DVertexCacher@@QEAAJHHHH@Z
?DrawScanlines@D3DVertexCacher@@QEAAJJPEAJ@Z
?DrawTexture@D3DVertexCacher@@QEAAJMMMMMMMM@Z
?DrawTexture@D3DVertexCacher@@QEAAJMMMMMMMMMMMM@Z
?EnableAAParallelogramProgram@D3DContext@@QEAAJXZ
?EnableBasicGradientProgram@D3DContext@@QEAAJJ@Z
?EnableConvolveProgram@D3DContext@@QEAAJJ@Z
?EnableFragmentProgram@D3DContext@@AEAAJPEAPEAKPEAUShaderList@@J@Z
?EnableLCDTextProgram@D3DContext@@QEAAJXZ
?EnableLinearGradientProgram@D3DContext@@QEAAJJ@Z
?EnableLookupProgram@D3DContext@@QEAAJJ@Z
?EnableRadialGradientProgram@D3DContext@@QEAAJJ@Z
?EnableRescaleProgram@D3DContext@@QEAAJJ@Z
?EndScene@D3DContext@@QEAAJXZ
?EndShapeClip@D3DContext@@QEAAJXZ
?EnsureCapacity@D3DVertexCacher@@AEAAJW4_D3DPRIMITIVETYPE@@I@Z
?FillParallelogram@D3DVertexCacher@@QEAAJMMMMMM@Z
?FillParallelogramAA@D3DVertexCacher@@QEAAJMMMMMM@Z
?FillRect@D3DVertexCacher@@QEAAJHHHH@Z
?FillSpans@D3DVertexCacher@@QEAAJJPEAJ@Z
?FlushVertexQueue@D3DContext@@QEAAJXZ
?GDICheckForBadHardware@D3DPipelineManager@@CAJXZ
?Get3DDevice@D3DContext@@QEAAPEAUIDirect3DDevice9@@XZ
?Get3DObject@D3DContext@@QEAAPEAUIDirect3D9@@XZ
?GetAdapterOrdinalByHmon@D3DPipelineManager@@AEAAIPEAUHMONITOR__@@@Z
?GetAdapterOrdinalForScreen@D3DPipelineManager@@QEAAIJ@Z
?GetClipType@D3DContext@@QEAA?AW4ClipType@@XZ
?GetColor@D3DVertexCacher@@QEAAJXZ
?GetContextCaps@D3DContext@@QEAAHXZ
?GetCurrentFocusWindow@D3DPipelineManager@@QEAAPEAUHWND__@@XZ
?GetD3DContext@D3DPipelineManager@@QEAAJIPEAPEAVD3DContext@@@Z
?GetD3DObject@D3DPipelineManager@@QEAAPEAUIDirect3D9@@XZ
?GetDeviceCaps@D3DContext@@QEAAPEAU_D3DCAPS9@@XZ
?GetDeviceType@D3DPipelineManager@@QEAA?AW4_D3DDEVTYPE@@XZ
?GetFreeVertices@D3DVertexCacher@@QEAAIXZ
?GetGrayscaleGlyphCache@D3DContext@@QEAAPEAVD3DGlyphCache@@XZ
?GetInstance@D3DPipelineManager@@SAPEAV1@XZ
?GetLCDGlyphCache@D3DContext@@QEAAPEAVD3DGlyphCache@@XZ
?GetMaskCache@D3DContext@@QEAAPEAVD3DMaskCache@@XZ
?GetMatchingDepthStencilFormat@D3DPipelineManager@@QEAA?AW4_D3DFORMAT@@IW42@0@Z
?GetPaintState@D3DContext@@QEAAJXZ
?GetPresentationParams@D3DContext@@QEAAPEAU_D3DPRESENT_PARAMETERS_@@XZ
?GetResourceManager@D3DContext@@QEAAPEAVD3DResourceManager@@XZ
?HandleAdaptersChange@D3DPipelineManager@@SAJPEAPEAUHMONITOR__@@I@Z
?HandleLostDevices@D3DPipelineManager@@QEAAJXZ
?Init@D3DVertexCacher@@QEAAJPEAVD3DContext@@@Z
?InitAdapters@D3DPipelineManager@@AEAAJXZ
?InitContext@D3DContext@@QEAAJXZ
?InitContextCaps@D3DContext@@AEAAJXZ
?InitD3D@D3DPipelineManager@@AEAAJXZ
?InitDepthStencilBuffer@D3DContext@@AEAAJPEAU_D3DSURFACE_DESC@@@Z
?InitDevice@D3DContext@@AEAAJPEAUIDirect3DDevice9@@@Z
?InitGrayscaleGlyphCache@D3DContext@@QEAAJXZ
?InitLCDGlyphCache@D3DContext@@QEAAJXZ
?IsAlphaRTSurfaceSupported@D3DContext@@QEAAHXZ
?IsAlphaRTTSupported@D3DContext@@QEAAHXZ
?IsDepthStencilBufferOk@D3DContext@@AEAAHPEAU_D3DSURFACE_DESC@@@Z
?IsDynamicTextureSupported@D3DContext@@QEAAHXZ
?IsGradientInstructionExtensionSupported@D3DContext@@QEAAHXZ
?IsHWRasterizer@D3DContext@@QEAAHXZ
?IsIdentityTx@D3DContext@@QEAAHXZ
?IsImmediateIntervalSupported@D3DContext@@QEAAHXZ
?IsMultiTexturingSupported@D3DContext@@QEAAHXZ
?IsOpaqueRTTSupported@D3DContext@@QEAAHXZ
?IsPixelShader20Supported@D3DContext@@QEAAHXZ
?IsPixelShader30Supported@D3DContext@@QEAAHXZ
?IsPow2TexturesOnly@D3DContext@@QEAAHXZ
?IsSquareTexturesOnly@D3DContext@@QEAAHXZ
?IsStretchRectFilteringSupported@D3DContext@@QEAAHW4_D3DTEXTUREFILTERTYPE@@@Z
?IsTextureFilteringSupported@D3DContext@@QEAAHW4_D3DTEXTUREFILTERTYPE@@@Z
?IsTextureFormatSupported@D3DContext@@QEAAHW4_D3DFORMAT@@K@Z
?NotifyAdapterEventListeners@D3DPipelineManager@@SAXIJ@Z
?ReleaseAdapters@D3DPipelineManager@@AEAAJXZ
?ReleaseContextResources@D3DContext@@QEAAXXZ
?ReleaseD3D@D3DPipelineManager@@AEAAJXZ
?ReleaseDefPoolResources@D3DContext@@QEAAXXZ
?ReleaseDefPoolResources@D3DVertexCacher@@QEAAXXZ
?Render@D3DVertexCacher@@QEAAJH@Z
?ResetClip@D3DContext@@QEAAJXZ
?ResetComposite@D3DContext@@QEAAJXZ
?ResetContext@D3DContext@@QEAAJXZ
?ResetTransform@D3DContext@@QEAAJXZ
?RestoreState@D3DContext@@QEAAJXZ
?SaveState@D3DContext@@QEAAJXZ
?SelectDeviceType@D3DPipelineManager@@AEAA?AW4_D3DDEVTYPE@@XZ
?SetAlphaComposite@D3DContext@@QEAAJJMJ@Z
?SetColor@D3DVertexCacher@@QEAAXJ@Z
?SetFSFocusWindow@D3DPipelineManager@@QEAAPEAUHWND__@@IPEAU2@@Z
?SetPaintState@D3DContext@@QEAAXJ@Z
?SetRectClip@D3DContext@@QEAAJHHHH@Z
?SetRenderTarget@D3DContext@@QEAAJPEAUIDirect3DSurface9@@@Z
?SetTexture@D3DContext@@QEAAJPEAUIDirect3DTexture9@@K@Z
?SetTransform@D3DContext@@QEAAJNNNNNN@Z
?Sync@D3DContext@@QEAAJXZ
?UpdateState@D3DContext@@QEAAJC@Z
?UpdateTextureColorState@D3DContext@@QEAAJKK@Z
?UploadTileToTexture@D3DContext@@QEAAJPEAVD3DResource@@PEAXJJJJJJJW4TileFormat@@PEAJ3@Z
?pMgr@D3DPipelineManager@@0PEAV1@EA
AWTIsHeadless
AccelGlyphCache_RemoveAllCellInfos
DSFreeDrawingSurface
DSGetComponent
DSGetDrawingSurface
DSLockAWT
DSUnlockAWT
Disposer_AddRecord
GDIWinSD_InitDC
GDIWindowSurfaceData_GetComp
GDIWindowSurfaceData_GetOps
GDIWindowSurfaceData_GetOpsNoSetup
GDIWindowSurfaceData_GetWindow
GetNativePrim
GrPrim_CompGetAlphaInfo
GrPrim_CompGetXorColor
GrPrim_CompGetXorInfo
GrPrim_Sg2dGetClip
GrPrim_Sg2dGetCompInfo
GrPrim_Sg2dGetEaRGB
GrPrim_Sg2dGetLCDTextContrast
GrPrim_Sg2dGetPixel
J2dTraceImpl
J2dTraceInit
JNI_OnLoad
Java_java_awt_AWTEvent_initIDs
Java_java_awt_AWTEvent_nativeSetSource
Java_java_awt_Button_initIDs
Java_java_awt_CheckboxMenuItem_initIDs
Java_java_awt_Checkbox_initIDs
Java_java_awt_Choice_initIDs
Java_java_awt_Color_initIDs
Java_java_awt_Component_initIDs
Java_java_awt_Container_initIDs
Java_java_awt_Cursor_finalizeImpl
Java_java_awt_Cursor_initIDs
Java_java_awt_Dialog_initIDs
Java_java_awt_Dimension_initIDs
Java_java_awt_Event_initIDs
Java_java_awt_FileDialog_initIDs
Java_java_awt_FontMetrics_initIDs
Java_java_awt_Font_initIDs
Java_java_awt_Frame_initIDs
Java_java_awt_Insets_initIDs
Java_java_awt_KeyboardFocusManager_initIDs
Java_java_awt_Label_initIDs
Java_java_awt_MenuBar_initIDs
Java_java_awt_MenuComponent_initIDs
Java_java_awt_MenuItem_initIDs
Java_java_awt_Menu_initIDs
Java_java_awt_Rectangle_initIDs
Java_java_awt_ScrollPaneAdjustable_initIDs
Java_java_awt_ScrollPane_initIDs
Java_java_awt_Scrollbar_initIDs
Java_java_awt_TextArea_initIDs
Java_java_awt_TextField_initIDs
Java_java_awt_Toolkit_initIDs
Java_java_awt_TrayIcon_initIDs
Java_java_awt_Window_initIDs
Java_java_awt_event_InputEvent_initIDs
Java_java_awt_event_KeyEvent_initIDs
Java_java_awt_event_MouseEvent_initIDs
Java_java_awt_image_BufferedImage_initIDs
Java_java_awt_image_ColorModel_initIDs
Java_java_awt_image_ComponentSampleModel_initIDs
Java_java_awt_image_DataBufferInt_initIDs
Java_java_awt_image_IndexColorModel_initIDs
Java_java_awt_image_Kernel_initIDs
Java_java_awt_image_Raster_initIDs
Java_java_awt_image_SampleModel_initIDs
Java_java_awt_image_SinglePixelPackedSampleModel_initIDs
Java_sun_awt_DebugSettings_setCTracingOn__Z
Java_sun_awt_DebugSettings_setCTracingOn__ZLjava_lang_String_2
Java_sun_awt_DebugSettings_setCTracingOn__ZLjava_lang_String_2I
Java_sun_awt_DefaultMouseInfoPeer_fillPointWithCoords
Java_sun_awt_DefaultMouseInfoPeer_isWindowUnderMouse
Java_sun_awt_FontDescriptor_initIDs
Java_sun_awt_PlatformFont_initIDs
Java_sun_awt_SunToolkit_closeSplashScreen
Java_sun_awt_Win32FontManager_deRegisterFontWithPlatform
Java_sun_awt_Win32FontManager_getEUDCFontFile
Java_sun_awt_Win32FontManager_registerFontWithPlatform
Java_sun_awt_Win32GraphicsConfig_getBounds
Java_sun_awt_Win32GraphicsConfig_initIDs
Java_sun_awt_Win32GraphicsDevice_configDisplayMode
Java_sun_awt_Win32GraphicsDevice_enterFullScreenExclusive
Java_sun_awt_Win32GraphicsDevice_enumDisplayModes
Java_sun_awt_Win32GraphicsDevice_exitFullScreenExclusive
Java_sun_awt_Win32GraphicsDevice_getCurrentDisplayMode
Java_sun_awt_Win32GraphicsDevice_getDefaultPixIDImpl
Java_sun_awt_Win32GraphicsDevice_getMaxConfigsImpl
Java_sun_awt_Win32GraphicsDevice_getNativeScaleX
Java_sun_awt_Win32GraphicsDevice_getNativeScaleY
Java_sun_awt_Win32GraphicsDevice_initDevice
Java_sun_awt_Win32GraphicsDevice_initIDs
Java_sun_awt_Win32GraphicsDevice_initNativeScale
Java_sun_awt_Win32GraphicsDevice_isPixFmtSupported
Java_sun_awt_Win32GraphicsDevice_makeColorModel
Java_sun_awt_Win32GraphicsDevice_setNativeScale
Java_sun_awt_Win32GraphicsEnvironment_getDefaultScreen
Java_sun_awt_Win32GraphicsEnvironment_getNumScreens
Java_sun_awt_Win32GraphicsEnvironment_getXResolution
Java_sun_awt_Win32GraphicsEnvironment_getYResolution
Java_sun_awt_Win32GraphicsEnvironment_initDisplay
Java_sun_awt_Win32GraphicsEnvironment_isVistaOS
Java_sun_awt_Win32GraphicsEnvironment_setProcessDPIAwareness
Java_sun_awt_image_BufImgSurfaceData_freeNativeICMData
Java_sun_awt_image_BufImgSurfaceData_initIDs
Java_sun_awt_image_BufImgSurfaceData_initRaster
Java_sun_awt_image_ByteComponentRaster_initIDs
Java_sun_awt_image_BytePackedRaster_initIDs
Java_sun_awt_image_DataBufferNative_getElem
Java_sun_awt_image_DataBufferNative_setElem
Java_sun_awt_image_GifImageDecoder_initIDs
Java_sun_awt_image_GifImageDecoder_parseImage
Java_sun_awt_image_ImageRepresentation_initIDs
Java_sun_awt_image_ImageRepresentation_setDiffICM
Java_sun_awt_image_ImageRepresentation_setICMpixels
Java_sun_awt_image_ImagingLib_convolveBI
Java_sun_awt_image_ImagingLib_convolveRaster
Java_sun_awt_image_ImagingLib_init
Java_sun_awt_image_ImagingLib_lookupByteBI
Java_sun_awt_image_ImagingLib_lookupByteRaster
Java_sun_awt_image_ImagingLib_transformBI
Java_sun_awt_image_ImagingLib_transformRaster
Java_sun_awt_image_IntegerComponentRaster_initIDs
Java_sun_awt_image_ShortComponentRaster_initIDs
Java_sun_awt_shell_Win32ShellFolder2_bindToObject
Java_sun_awt_shell_Win32ShellFolder2_combinePIDLs
Java_sun_awt_shell_Win32ShellFolder2_compareIDs
Java_sun_awt_shell_Win32ShellFolder2_compareIDsByColumn
Java_sun_awt_shell_Win32ShellFolder2_copyFirstPIDLEntry
Java_sun_awt_shell_Win32ShellFolder2_disposeIcon
Java_sun_awt_shell_Win32ShellFolder2_doGetColumnInfo
Java_sun_awt_shell_Win32ShellFolder2_doGetColumnValue
Java_sun_awt_shell_Win32ShellFolder2_extractIcon
Java_sun_awt_shell_Win32ShellFolder2_getAttributes0
Java_sun_awt_shell_Win32ShellFolder2_getDisplayNameOf
Java_sun_awt_shell_Win32ShellFolder2_getEnumObjects
Java_sun_awt_shell_Win32ShellFolder2_getExecutableType
Java_sun_awt_shell_Win32ShellFolder2_getFileSystemPath0
Java_sun_awt_shell_Win32ShellFolder2_getFolderType
Java_sun_awt_shell_Win32ShellFolder2_getIShellIcon
Java_sun_awt_shell_Win32ShellFolder2_getIcon
Java_sun_awt_shell_Win32ShellFolder2_getIconBits
Java_sun_awt_shell_Win32ShellFolder2_getIconIndex
Java_sun_awt_shell_Win32ShellFolder2_getIconResource
Java_sun_awt_shell_Win32ShellFolder2_getLinkLocation
Java_sun_awt_shell_Win32ShellFolder2_getNextChild
Java_sun_awt_shell_Win32ShellFolder2_getNextPIDLEntry
Java_sun_awt_shell_Win32ShellFolder2_getStandardViewButton0
Java_sun_awt_shell_Win32ShellFolder2_getSystemIcon
Java_sun_awt_shell_Win32ShellFolder2_initDesktop
Java_sun_awt_shell_Win32ShellFolder2_initIDs
Java_sun_awt_shell_Win32ShellFolder2_initSpecial
Java_sun_awt_shell_Win32ShellFolder2_parseDisplayName0
Java_sun_awt_shell_Win32ShellFolder2_releaseEnumObjects
Java_sun_awt_shell_Win32ShellFolder2_releaseIShellFolder
Java_sun_awt_shell_Win32ShellFolder2_releasePIDL
Java_sun_awt_shell_Win32ShellFolderManager2_initializeCom
Java_sun_awt_shell_Win32ShellFolderManager2_uninitializeCom
Java_sun_awt_windows_ThemeReader_closeTheme
Java_sun_awt_windows_ThemeReader_getBoolean
Java_sun_awt_windows_ThemeReader_getColor
Java_sun_awt_windows_ThemeReader_getEnum
Java_sun_awt_windows_ThemeReader_getInt
Java_sun_awt_windows_ThemeReader_getPartSize
Java_sun_awt_windows_ThemeReader_getPoint
Java_sun_awt_windows_ThemeReader_getPosition
Java_sun_awt_windows_ThemeReader_getSysBoolean
Java_sun_awt_windows_ThemeReader_getThemeBackgroundContentMargins
Java_sun_awt_windows_ThemeReader_getThemeMargins
Java_sun_awt_windows_ThemeReader_getThemeTransitionDuration
Java_sun_awt_windows_ThemeReader_isGetThemeTransitionDurationDefined
Java_sun_awt_windows_ThemeReader_isThemePartDefined
Java_sun_awt_windows_ThemeReader_isThemed
Java_sun_awt_windows_ThemeReader_openTheme
Java_sun_awt_windows_ThemeReader_paintBackground
Java_sun_awt_windows_ThemeReader_setWindowTheme
Java_sun_awt_windows_WButtonPeer_create
Java_sun_awt_windows_WButtonPeer_initIDs
Java_sun_awt_windows_WButtonPeer_setLabel
Java_sun_awt_windows_WCanvasPeer_create
Java_sun_awt_windows_WCanvasPeer_setNativeBackgroundErase
Java_sun_awt_windows_WCheckboxMenuItemPeer_setState
Java_sun_awt_windows_WCheckboxPeer_create
Java_sun_awt_windows_WCheckboxPeer_getCheckMarkSize
Java_sun_awt_windows_WCheckboxPeer_setCheckboxGroup
Java_sun_awt_windows_WCheckboxPeer_setLabel
Java_sun_awt_windows_WCheckboxPeer_setState
Java_sun_awt_windows_WChoicePeer_addItems
Java_sun_awt_windows_WChoicePeer_closeList
Java_sun_awt_windows_WChoicePeer_create
Java_sun_awt_windows_WChoicePeer_remove
Java_sun_awt_windows_WChoicePeer_removeAll
Java_sun_awt_windows_WChoicePeer_reshape
Java_sun_awt_windows_WChoicePeer_select
Java_sun_awt_windows_WClipboard_closeClipboard
Java_sun_awt_windows_WClipboard_getClipboardData
Java_sun_awt_windows_WClipboard_getClipboardFormats
Java_sun_awt_windows_WClipboard_init
Java_sun_awt_windows_WClipboard_openClipboard
Java_sun_awt_windows_WClipboard_publishClipboardData
Java_sun_awt_windows_WClipboard_registerClipboardViewer
Java_sun_awt_windows_WColor_getDefaultColor
Java_sun_awt_windows_WComponentPeer__1dispose
Java_sun_awt_windows_WComponentPeer__1setBackground
Java_sun_awt_windows_WComponentPeer__1setFont
Java_sun_awt_windows_WComponentPeer__1setForeground
Java_sun_awt_windows_WComponentPeer_addNativeDropTarget
Java_sun_awt_windows_WComponentPeer_beginValidate
Java_sun_awt_windows_WComponentPeer_createPrintedPixels
Java_sun_awt_windows_WComponentPeer_disable
Java_sun_awt_windows_WComponentPeer_enable
Java_sun_awt_windows_WComponentPeer_endValidate
Java_sun_awt_windows_WComponentPeer_getLocationOnScreen
Java_sun_awt_windows_WComponentPeer_getTargetGC
Java_sun_awt_windows_WComponentPeer_hide
Java_sun_awt_windows_WComponentPeer_isObscured
Java_sun_awt_windows_WComponentPeer_nativeHandleEvent
Java_sun_awt_windows_WComponentPeer_nativeHandlesWheelScrolling
Java_sun_awt_windows_WComponentPeer_pSetParent
Java_sun_awt_windows_WComponentPeer_pShow
Java_sun_awt_windows_WComponentPeer_removeNativeDropTarget
Java_sun_awt_windows_WComponentPeer_reshape
Java_sun_awt_windows_WComponentPeer_reshapeNoCheck
Java_sun_awt_windows_WComponentPeer_setFocus
Java_sun_awt_windows_WComponentPeer_setPlatformScrollingFlip
Java_sun_awt_windows_WComponentPeer_setRectangularShape
Java_sun_awt_windows_WComponentPeer_setZOrder
Java_sun_awt_windows_WComponentPeer_start
Java_sun_awt_windows_WComponentPeer_updateWindow
Java_sun_awt_windows_WCustomCursor_createCursorIndirect
Java_sun_awt_windows_WCustomCursor_getCursorHeight
Java_sun_awt_windows_WCustomCursor_getCursorWidth
Java_sun_awt_windows_WDataTransferer_dragQueryFile
Java_sun_awt_windows_WDataTransferer_getClipboardFormatName
Java_sun_awt_windows_WDataTransferer_imageDataToPlatformImageBytes
Java_sun_awt_windows_WDataTransferer_platformImageBytesToImageData
Java_sun_awt_windows_WDataTransferer_registerClipboardFormat
Java_sun_awt_windows_WDefaultFontCharset_canConvert
Java_sun_awt_windows_WDefaultFontCharset_initIDs
Java_sun_awt_windows_WDesktopPeer_ShellExecute
Java_sun_awt_windows_WDesktopProperties_getWindowsParameters
Java_sun_awt_windows_WDesktopProperties_init
Java_sun_awt_windows_WDesktopProperties_initIDs
Java_sun_awt_windows_WDesktopProperties_playWindowsSound
Java_sun_awt_windows_WDialogPeer_createAwtDialog
Java_sun_awt_windows_WDialogPeer_endModal
Java_sun_awt_windows_WDialogPeer_pSetIMMOption
Java_sun_awt_windows_WDialogPeer_showModal
Java_sun_awt_windows_WDragSourceContextPeer_createDragSource
Java_sun_awt_windows_WDragSourceContextPeer_doDragDrop
Java_sun_awt_windows_WDragSourceContextPeer_setNativeCursor
Java_sun_awt_windows_WDropTargetContextPeerFileStream_freeStgMedium
Java_sun_awt_windows_WDropTargetContextPeerIStream_Available
Java_sun_awt_windows_WDropTargetContextPeerIStream_Close
Java_sun_awt_windows_WDropTargetContextPeerIStream_Read
Java_sun_awt_windows_WDropTargetContextPeerIStream_ReadBytes
Java_sun_awt_windows_WDropTargetContextPeer_dropDone
Java_sun_awt_windows_WDropTargetContextPeer_getData
Java_sun_awt_windows_WEmbeddedFramePeer_create
Java_sun_awt_windows_WEmbeddedFramePeer_getBoundsPrivate
Java_sun_awt_windows_WEmbeddedFrame_initIDs
Java_sun_awt_windows_WEmbeddedFrame_isPrinterDC
Java_sun_awt_windows_WEmbeddedFrame_notifyModalBlockedImpl
Java_sun_awt_windows_WEmbeddedFrame_printBand
Java_sun_awt_windows_WFileDialogPeer__1dispose
Java_sun_awt_windows_WFileDialogPeer__1hide
Java_sun_awt_windows_WFileDialogPeer__1show
Java_sun_awt_windows_WFileDialogPeer_initIDs
Java_sun_awt_windows_WFileDialogPeer_setFilterString
Java_sun_awt_windows_WFileDialogPeer_toBack
Java_sun_awt_windows_WFileDialogPeer_toFront
Java_sun_awt_windows_WFontMetrics_bytesWidth
Java_sun_awt_windows_WFontMetrics_charsWidth
Java_sun_awt_windows_WFontMetrics_init
Java_sun_awt_windows_WFontMetrics_initIDs
Java_sun_awt_windows_WFontMetrics_stringWidth
Java_sun_awt_windows_WFontPeer_initIDs
Java_sun_awt_windows_WFramePeer_clearMaximizedBounds
Java_sun_awt_windows_WFramePeer_createAwtFrame
Java_sun_awt_windows_WFramePeer_getState
Java_sun_awt_windows_WFramePeer_getSysMenuHeight
Java_sun_awt_windows_WFramePeer_initIDs
Java_sun_awt_windows_WFramePeer_pSetIMMOption
Java_sun_awt_windows_WFramePeer_setMaximizedBounds
Java_sun_awt_windows_WFramePeer_setMenuBar0
Java_sun_awt_windows_WFramePeer_setState
Java_sun_awt_windows_WFramePeer_synthesizeWmActivate
Java_sun_awt_windows_WFramePeer_updateIcon
Java_sun_awt_windows_WGlobalCursorManager_findHeavyweightUnderCursor
Java_sun_awt_windows_WGlobalCursorManager_getCursorPos
Java_sun_awt_windows_WGlobalCursorManager_getLocationOnScreen
Java_sun_awt_windows_WGlobalCursorManager_setCursor
Java_sun_awt_windows_WInputMethodDescriptor_getNativeAvailableLocales
Java_sun_awt_windows_WInputMethod_createNativeContext
Java_sun_awt_windows_WInputMethod_destroyNativeContext
Java_sun_awt_windows_WInputMethod_disableNativeIME
Java_sun_awt_windows_WInputMethod_enableNativeIME
Java_sun_awt_windows_WInputMethod_endCompositionNative
Java_sun_awt_windows_WInputMethod_getConversionStatus
Java_sun_awt_windows_WInputMethod_getNativeIMMDescription
Java_sun_awt_windows_WInputMethod_getNativeLocale
Java_sun_awt_windows_WInputMethod_getOpenStatus
Java_sun_awt_windows_WInputMethod_handleNativeIMEEvent
Java_sun_awt_windows_WInputMethod_openCandidateWindow
Java_sun_awt_windows_WInputMethod_setConversionStatus
Java_sun_awt_windows_WInputMethod_setNativeLocale
Java_sun_awt_windows_WInputMethod_setOpenStatus
Java_sun_awt_windows_WInputMethod_setStatusWindowVisible
Java_sun_awt_windows_WKeyboardFocusManagerPeer_getNativeFocusOwner
Java_sun_awt_windows_WKeyboardFocusManagerPeer_getNativeFocusedWindow
Java_sun_awt_windows_WKeyboardFocusManagerPeer_setNativeFocusOwner
Java_sun_awt_windows_WLabelPeer_create
Java_sun_awt_windows_WLabelPeer_lazyPaint
Java_sun_awt_windows_WLabelPeer_setAlignment
Java_sun_awt_windows_WLabelPeer_setText
Java_sun_awt_windows_WListPeer_addItems
Java_sun_awt_windows_WListPeer_create
Java_sun_awt_windows_WListPeer_delItems
Java_sun_awt_windows_WListPeer_deselect
Java_sun_awt_windows_WListPeer_getMaxWidth
Java_sun_awt_windows_WListPeer_isSelected
Java_sun_awt_windows_WListPeer_makeVisible
Java_sun_awt_windows_WListPeer_select
Java_sun_awt_windows_WListPeer_setMultipleSelections
Java_sun_awt_windows_WListPeer_updateMaxItemWidth
Java_sun_awt_windows_WMenuBarPeer_addMenu
Java_sun_awt_windows_WMenuBarPeer_create
Java_sun_awt_windows_WMenuBarPeer_delMenu
Java_sun_awt_windows_WMenuItemPeer__1dispose
Java_sun_awt_windows_WMenuItemPeer__1setFont
Java_sun_awt_windows_WMenuItemPeer__1setLabel
Java_sun_awt_windows_WMenuItemPeer_create
Java_sun_awt_windows_WMenuItemPeer_enable
Java_sun_awt_windows_WMenuItemPeer_initIDs
Java_sun_awt_windows_WMenuPeer_addSeparator
Java_sun_awt_windows_WMenuPeer_createMenu
Java_sun_awt_windows_WMenuPeer_createSubMenu
Java_sun_awt_windows_WMenuPeer_delItem
Java_sun_awt_windows_WObjectPeer_initIDs
Java_sun_awt_windows_WPageDialogPeer__1show
Java_sun_awt_windows_WPageDialog_initIDs
Java_sun_awt_windows_WPanelPeer_initIDs
Java_sun_awt_windows_WPopupMenuPeer__1show
Java_sun_awt_windows_WPopupMenuPeer_createMenu
Java_sun_awt_windows_WPrintDialogPeer__1show
Java_sun_awt_windows_WPrintDialogPeer_initIDs
Java_sun_awt_windows_WPrintDialogPeer_toBack
Java_sun_awt_windows_WPrintDialogPeer_toFront
Java_sun_awt_windows_WPrintDialog_initIDs
Java_sun_awt_windows_WPrinterJob__1startDoc
Java_sun_awt_windows_WPrinterJob_abortDoc
Java_sun_awt_windows_WPrinterJob_beginPath
Java_sun_awt_windows_WPrinterJob_closeFigure
Java_sun_awt_windows_WPrinterJob_deleteDC
Java_sun_awt_windows_WPrinterJob_deviceEndPage

Sections

.text
Size: 940KB - Virtual size: 939KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 340KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/certificate.pem
SpyLogger V1.1/res/bin/dt_shmem.dll
.dll windows:5 windows x64 arch:x64

44359a9d113516a0a885474c53087284

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\dt_shmem.pdb

Imports

msvcr100

_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
__iob_func
fprintf
exit
memcpy
memset
strlen
strcpy
strcat
sprintf
malloc
free

kernel32

CreateMutexA
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
DecodePointer
EncodePointer
Sleep
TlsGetValue
TlsSetValue
TlsAlloc
FormatMessageA
OpenProcess
GetCurrentProcessId
SetEvent
CloseHandle
MapViewOfFile
GetLastError
CreateFileMappingA
OpenFileMappingA
UnmapViewOfFile
OpenMutexA
WaitForMultipleObjects
ReleaseMutex
CreateEventA
OpenEventA

Exports

Exports

Java_com_sun_tools_jdi_SharedMemoryConnection_close0
Java_com_sun_tools_jdi_SharedMemoryConnection_receiveByte0
Java_com_sun_tools_jdi_SharedMemoryConnection_receivePacket0
Java_com_sun_tools_jdi_SharedMemoryConnection_sendByte0
Java_com_sun_tools_jdi_SharedMemoryConnection_sendPacket0
Java_com_sun_tools_jdi_SharedMemoryTransportService_accept0
Java_com_sun_tools_jdi_SharedMemoryTransportService_attach0
Java_com_sun_tools_jdi_SharedMemoryTransportService_initialize
Java_com_sun_tools_jdi_SharedMemoryTransportService_name
Java_com_sun_tools_jdi_SharedMemoryTransportService_startListening0
Java_com_sun_tools_jdi_SharedMemoryTransportService_stopListening0
jdwpTransport_OnLoad

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/dt_socket.dll
.dll windows:5 windows x64 arch:x64

692885e3800789ff520376cb62a55e4b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\dt_socket.pdb

Imports

ws2_32

ioctlsocket
getprotobyname
setsockopt
ntohl
getsockname
ntohs
htonl
inet_addr
bind
getsockopt
WSASendDisconnect
closesocket
socket
htons
gethostbyname
send
recv
accept
select
__WSAFDIsSet
connect
WSAGetLastError
listen
WSAStartup
WSACleanup

msvcr100

_onexit
_lock
__dllonexit
_unlock
strcat
strcpy
strlen
memcpy
atoi
strchr
memset
sprintf
strncmp
fprintf
__iob_func
_malloc_crt
_initterm
_initterm_e
free
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
SystemTimeToFileTime
GetSystemTime
TlsGetValue
TlsSetValue
TlsAlloc
SetHandleInformation

Exports

Exports

jdwpTransport_OnLoad

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/fontmanager.dll
.dll windows:5 windows x64 arch:x64

a1c6ed90647887b7fc41e7593f4580b9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\fontmanager.pdb

Imports

freetype

FT_Done_FreeType
FT_Library_SetLcdFilter
FT_Done_Face
FT_Open_Face
FT_New_Memory_Face
FT_Outline_Get_BBox
FT_Outline_Translate
FT_Get_Char_Index
FT_Load_Glyph
FT_GlyphSlot_Embolden
FT_GlyphSlot_Oblique
FT_Render_Glyph
FT_Set_Transform
FT_Set_Char_Size
FT_Activate_Size
FT_Init_FreeType

java

JNU_ThrowArrayIndexOutOfBoundsException
JNU_NewStringPlatform
JDK_LoadSystemLibrary
JNU_ThrowInternalError

advapi32

RegOpenKeyExA
RegQueryInfoKeyW
RegQueryInfoKeyA
RegEnumValueW
RegEnumValueA
RegCloseKey

user32

ReleaseDC
SystemParametersInfoA
FillRect
GetWindowDC
GetDesktopWindow
GetDC

gdi32

GetObjectA
CreateCompatibleDC
SetMapMode
CreateFontIndirectW
SelectObject
CreateCompatibleBitmap
GetTextMetricsA
DeleteObject
GetGlyphOutlineA
GetStockObject
SetBkColor
SetTextColor
ExtTextOutW
GetDIBits
EnumFontFamiliesExA
EnumFontFamiliesExW
GetDeviceCaps
GetCurrentObject

awt

GrPrim_Sg2dGetCompInfo
GrPrim_Sg2dGetClip
SurfaceData_GetOps
SurfaceData_InitOps
SurfaceData_IntersectBounds
GrPrim_Sg2dGetEaRGB
GrPrim_Sg2dGetPixel
GetNativePrim
GrPrim_Sg2dGetLCDTextContrast
AccelGlyphCache_RemoveAllCellInfos
SurfaceData_GetOpsNoSetup

msvcr100

_wcsicmp
pow
_stricmp
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
?terminate@@YAXXZ
__CppXcptFilter
__C_specific_handler
free
malloc
??3@YAXPEAX@Z
??2@YAPEAX_K@Z
floor
_strdup
memset
_purecall
getenv
calloc
memcpy
realloc
strrchr
strstr
wcsstr
wcsrchr
sqrt
fprintf
__iob_func
strtol
_errno
strncpy
memmove
strncmp
qsort
bsearch
strchr
_vsnprintf
_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit

kernel32

GetSystemTimeAsFileTime
GetWindowsDirectoryA
GetCurrentProcessId
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetVersionExA
GetSystemDirectoryA
GetCurrentThreadId
GetProcAddress
EncodePointer
DecodePointer
Sleep
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
DisableThreadLibraryCalls
QueryPerformanceCounter
GetVersion
GetTickCount

Exports

Exports

JNI_OnUnload
Java_sun_awt_Win32FontManager_getFontPath
Java_sun_awt_Win32FontManager_populateFontFileNameMap0
Java_sun_font_ColorGlyphSurfaceData_initOps
Java_sun_font_ColorGlyphSurfaceData_setCurrentGlyph
Java_sun_font_FileFontStrike__1getGlyphImageFromWindows
Java_sun_font_FileFontStrike__1getGlyphImageFromWindowsUsingDirectWrite
Java_sun_font_FileFontStrike_initNative
Java_sun_font_FileFontStrike_isDirectWriteAvailable
Java_sun_font_Font2D_createHarfbuzzFace
Java_sun_font_Font2D_disposeHarfbuzzFace
Java_sun_font_FreetypeFontScaler_createScalerContextNative
Java_sun_font_FreetypeFontScaler_disposeNativeScaler
Java_sun_font_FreetypeFontScaler_getFontMetricsNative
Java_sun_font_FreetypeFontScaler_getGlyphAdvanceNative
Java_sun_font_FreetypeFontScaler_getGlyphCodeNative
Java_sun_font_FreetypeFontScaler_getGlyphImageNative
Java_sun_font_FreetypeFontScaler_getGlyphMetricsNative
Java_sun_font_FreetypeFontScaler_getGlyphOutlineBoundsNative
Java_sun_font_FreetypeFontScaler_getGlyphOutlineNative
Java_sun_font_FreetypeFontScaler_getGlyphPointNative
Java_sun_font_FreetypeFontScaler_getGlyphVectorOutlineNative
Java_sun_font_FreetypeFontScaler_getLayoutTableCacheNative
Java_sun_font_FreetypeFontScaler_getMissingGlyphCodeNative
Java_sun_font_FreetypeFontScaler_getNumGlyphsNative
Java_sun_font_FreetypeFontScaler_getUnitsPerEMNative
Java_sun_font_FreetypeFontScaler_initIDs
Java_sun_font_FreetypeFontScaler_initNativeScaler
Java_sun_font_NullFontScaler_getGlyphImage
Java_sun_font_NullFontScaler_getNullScalerContext
Java_sun_font_StrikeCache_freeIntMemory
Java_sun_font_StrikeCache_freeIntPointer
Java_sun_font_StrikeCache_freeLongMemory
Java_sun_font_StrikeCache_freeLongPointer
Java_sun_font_StrikeCache_getGlyphCacheDescription
Java_sun_font_SunFontManager_initIDs
Java_sun_font_SunLayoutEngine_initGVIDs
Java_sun_font_SunLayoutEngine_nativeLayout
Java_sun_font_SunLayoutEngine_shape
Java_sun_font_TrueTypeFont_getSupportedCharsetsForFamily
Java_sun_java2d_loops_DrawGlyphListAA_DrawGlyphListAA
Java_sun_java2d_loops_DrawGlyphListLCD_DrawGlyphListLCD
Java_sun_java2d_loops_DrawGlyphList_DrawGlyphList
freeLayoutTableCache
getSunFontIDs
isNullScalerContext
newLayoutTableCache

Sections

.text
Size: 321KB - Virtual size: 321KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 281KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/freetype.dll
.dll windows:6 windows x64 arch:x64

31b34a583303b3d63bc2d766c052741f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

RtlUnwindEx
ReadFile
GetLastError
HeapFree
HeapAlloc
HeapReAlloc
GetCommandLineA
GetCurrentThreadId
IsDebuggerPresent
IsProcessorFeaturePresent
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
CloseHandle
MultiByteToWideChar
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetProcessHeap
ExitProcess
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
WideCharToMultiByte
WriteFile
GetModuleFileNameW
SetLastError
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
GetConsoleCP
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
SetStdHandle
FlushFileBuffers
LoadLibraryExW
OutputDebugStringW
WriteConsoleW
GetStringTypeW
CreateFileW
HeapSize
LCMapStringW
SetEndOfFile

Exports

Exports

FTC_CMapCache_Lookup
FTC_CMapCache_New
FTC_ImageCache_Lookup
FTC_ImageCache_LookupScaler
FTC_ImageCache_New
FTC_Manager_Done
FTC_Manager_LookupFace
FTC_Manager_LookupSize
FTC_Manager_New
FTC_Manager_RemoveFaceID
FTC_Manager_Reset
FTC_Node_Unref
FTC_SBitCache_Lookup
FTC_SBitCache_LookupScaler
FTC_SBitCache_New
FT_Activate_Size
FT_Add_Default_Modules
FT_Add_Module
FT_Angle_Diff
FT_Atan2
FT_Attach_File
FT_Attach_Stream
FT_Bitmap_Convert
FT_Bitmap_Copy
FT_Bitmap_Done
FT_Bitmap_Embolden
FT_Bitmap_New
FT_CeilFix
FT_ClassicKern_Free
FT_ClassicKern_Validate
FT_Cos
FT_DivFix
FT_Done_Face
FT_Done_FreeType
FT_Done_Glyph
FT_Done_Library
FT_Done_Size
FT_Face_CheckTrueTypePatents
FT_Face_GetCharVariantIndex
FT_Face_GetCharVariantIsDefault
FT_Face_GetCharsOfVariant
FT_Face_GetVariantSelectors
FT_Face_GetVariantsOfChar
FT_Face_SetUnpatentedHinting
FT_FloorFix
FT_Get_Advance
FT_Get_Advances
FT_Get_CMap_Format
FT_Get_CMap_Language_ID
FT_Get_Char_Index
FT_Get_Charmap_Index
FT_Get_FSType_Flags
FT_Get_First_Char
FT_Get_Gasp
FT_Get_Glyph
FT_Get_Glyph_Name
FT_Get_Kerning
FT_Get_MM_Var
FT_Get_Module
FT_Get_Multi_Master
FT_Get_Name_Index
FT_Get_Next_Char
FT_Get_PFR_Advance
FT_Get_PFR_Kerning
FT_Get_PFR_Metrics
FT_Get_PS_Font_Info
FT_Get_PS_Font_Private
FT_Get_PS_Font_Value
FT_Get_Postscript_Name
FT_Get_Renderer
FT_Get_Sfnt_Name
FT_Get_Sfnt_Name_Count
FT_Get_Sfnt_Table
FT_Get_SubGlyph_Info
FT_Get_Track_Kerning
FT_Get_TrueType_Engine_Type
FT_Get_WinFNT_Header
FT_Get_X11_Font_Format
FT_GlyphSlot_Embolden
FT_GlyphSlot_Oblique
FT_GlyphSlot_Own_Bitmap
FT_Glyph_Copy
FT_Glyph_Get_CBox
FT_Glyph_Stroke
FT_Glyph_StrokeBorder
FT_Glyph_To_Bitmap
FT_Glyph_Transform
FT_Gzip_Uncompress
FT_Has_PS_Glyph_Names
FT_Init_FreeType
FT_Library_SetLcdFilter
FT_Library_SetLcdFilterWeights
FT_Library_Version
FT_List_Add
FT_List_Finalize
FT_List_Find
FT_List_Insert
FT_List_Iterate
FT_List_Remove
FT_List_Up
FT_Load_Char
FT_Load_Glyph
FT_Load_Sfnt_Table
FT_Matrix_Invert
FT_Matrix_Multiply
FT_MulDiv
FT_MulFix
FT_New_Face
FT_New_Library
FT_New_Memory_Face
FT_New_Size
FT_OpenType_Free
FT_OpenType_Validate
FT_Open_Face
FT_Outline_Check
FT_Outline_Copy
FT_Outline_Decompose
FT_Outline_Done
FT_Outline_Done_Internal
FT_Outline_Embolden
FT_Outline_EmboldenXY
FT_Outline_GetInsideBorder
FT_Outline_GetOutsideBorder
FT_Outline_Get_BBox
FT_Outline_Get_Bitmap
FT_Outline_Get_CBox
FT_Outline_Get_Orientation
FT_Outline_New
FT_Outline_New_Internal
FT_Outline_Render
FT_Outline_Reverse
FT_Outline_Transform
FT_Outline_Translate
FT_Property_Get
FT_Property_Set
FT_Reference_Face
FT_Reference_Library
FT_Remove_Module
FT_Render_Glyph
FT_Request_Size
FT_RoundFix
FT_Select_Charmap
FT_Select_Size
FT_Set_Char_Size
FT_Set_Charmap
FT_Set_Debug_Hook
FT_Set_MM_Blend_Coordinates
FT_Set_MM_Design_Coordinates
FT_Set_Pixel_Sizes
FT_Set_Renderer
FT_Set_Transform
FT_Set_Var_Blend_Coordinates
FT_Set_Var_Design_Coordinates
FT_Sfnt_Table_Info
FT_Sin
FT_Stream_OpenGzip
FT_Stream_OpenLZW
FT_Stroker_BeginSubPath
FT_Stroker_ConicTo
FT_Stroker_CubicTo
FT_Stroker_Done
FT_Stroker_EndSubPath
FT_Stroker_Export
FT_Stroker_ExportBorder
FT_Stroker_GetBorderCounts
FT_Stroker_GetCounts
FT_Stroker_LineTo
FT_Stroker_New
FT_Stroker_ParseOutline
FT_Stroker_Rewind
FT_Stroker_Set
FT_Tan
FT_TrueTypeGX_Free
FT_TrueTypeGX_Validate
FT_Vector_From_Polar
FT_Vector_Length
FT_Vector_Polarize
FT_Vector_Rotate
FT_Vector_Transform
FT_Vector_Unit
TT_New_Context
TT_RunIns

Sections

.text
Size: 434KB - Virtual size: 434KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 161KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/hprof.dll
.dll windows:5 windows x64 arch:x64

b58e6b5d7f0c8de9dad624efe0d84bed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\hprof.pdb

Imports

wsock32

ntohl
ntohs
htonl
WSAStartup
WSACleanup
send
shutdown
recv
gethostbyname
htons
socket
connect
closesocket

winmm

timeGetTime

msvcr100

exit
strrchr
remove
tolower
strchr
fprintf
strtod
strtol
getenv
free
_ctime64
signal
_lseeki64
_vsnprintf
strerror
_access
_snprintf
strtok_s
sprintf
qsort
_write
_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
abort
__iob_func
vfprintf
strncpy
memset
isprint
memcpy
_errno
_strdup
_getpid
_open
_read
_time64
malloc

kernel32

UnhandledExceptionFilter
TerminateProcess
DecodePointer
EncodePointer
GetModuleFileNameA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
FreeLibrary
GetLastError
FormatMessageA
SystemTimeToFileTime
GetSystemTime
Sleep
LoadLibraryA
GetProcAddress
GetCurrentProcess

Exports

Exports

Agent_OnLoad
Agent_OnUnload

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 476B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/instrument.dll
.dll windows:5 windows x64 arch:x64

4bad2ab3b225cd788464fd724f482eed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\instrument.pdb

Imports

kernel32

WideCharToMultiByte
MultiByteToWideChar
GetACP
GetLocaleInfoA
GetUserDefaultLCID
IsDBCSLeadByte
GetLastError
FindClose
FindFirstFileA
HeapFree
HeapAlloc
HeapReAlloc
EnterCriticalSection
LeaveCriticalSection
GetFullPathNameA
GetCurrentThreadId
FlsSetValue
GetCommandLineA
SetFilePointer
HeapSetInformation
GetVersion
HeapCreate
HeapDestroy
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
EncodePointer
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
RtlUnwindEx
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
Sleep
GetCPInfo
GetOEMCP
IsValidCodePage
FlsGetValue
FlsFree
SetLastError
FlsAlloc
LCMapStringW
GetDriveTypeW
GetStringTypeW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetStdHandle
LoadLibraryW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetCurrentDirectoryW
HeapSize
CloseHandle
WriteConsoleW
CreateFileW
ReadFile
CreateFileA
SetEndOfFile
GetProcessHeap

Exports

Exports

Agent_OnAttach
Agent_OnLoad
Agent_OnUnload
Java_sun_instrument_InstrumentationImpl_appendToClassLoaderSearch0
Java_sun_instrument_InstrumentationImpl_getAllLoadedClasses0
Java_sun_instrument_InstrumentationImpl_getInitiatedClasses0
Java_sun_instrument_InstrumentationImpl_getObjectSize0
Java_sun_instrument_InstrumentationImpl_isModifiableClass0
Java_sun_instrument_InstrumentationImpl_isRetransformClassesSupported0
Java_sun_instrument_InstrumentationImpl_redefineClasses0
Java_sun_instrument_InstrumentationImpl_retransformClasses0
Java_sun_instrument_InstrumentationImpl_setHasRetransformableTransformers
Java_sun_instrument_InstrumentationImpl_setNativeMethodPrefixes

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/j2pcsc.dll
.dll windows:5 windows x64 arch:x64

393aaef8896c4197547fbb124ec12024

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\j2pcsc.pdb

Imports

winscard

SCardControl
SCardEndTransaction
SCardBeginTransaction
SCardGetStatusChangeA
SCardDisconnect
SCardStatusA
SCardTransmit
SCardConnectA
SCardListReadersA
SCardEstablishContext

msvcr100

_initterm_e
_amsg_exit
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
_strdup
_unlock
__dllonexit
_lock
_onexit
_initterm
_malloc_crt
calloc
strlen
malloc
free
_encoded_null
__clean_type_info_names_internal

kernel32

IsDebuggerPresent
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
SetUnhandledExceptionFilter

Exports

Exports

JNI_OnLoad
Java_sun_security_smartcardio_PCSC_SCardBeginTransaction
Java_sun_security_smartcardio_PCSC_SCardConnect
Java_sun_security_smartcardio_PCSC_SCardControl
Java_sun_security_smartcardio_PCSC_SCardDisconnect
Java_sun_security_smartcardio_PCSC_SCardEndTransaction
Java_sun_security_smartcardio_PCSC_SCardEstablishContext
Java_sun_security_smartcardio_PCSC_SCardGetStatusChange
Java_sun_security_smartcardio_PCSC_SCardListReaders
Java_sun_security_smartcardio_PCSC_SCardStatus
Java_sun_security_smartcardio_PCSC_SCardTransmit

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/j2pkcs11.dll
.dll windows:5 windows x64 arch:x64

582a8fa0fcebe54edd089612f66abef1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\j2pkcs11.pdb

Imports

msvcr100

_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
strlen
strcpy
strcat
memcpy
memset
free
malloc
_snprintf
strcmp

kernel32

GetModuleHandleA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
FreeLibrary
LoadLibraryA
GetLastError
FormatMessageA
LocalFree
GetProcAddress

Exports

Exports

JNI_OnLoad
Java_sun_security_pkcs11_Secmod_nssGetLibraryHandle
Java_sun_security_pkcs11_Secmod_nssGetModuleList
Java_sun_security_pkcs11_Secmod_nssInitialize
Java_sun_security_pkcs11_Secmod_nssLoadLibrary
Java_sun_security_pkcs11_Secmod_nssVersionCheck
Java_sun_security_pkcs11_wrapper_PKCS11_C_1CloseSession
Java_sun_security_pkcs11_wrapper_PKCS11_C_1CopyObject
Java_sun_security_pkcs11_wrapper_PKCS11_C_1CreateObject
Java_sun_security_pkcs11_wrapper_PKCS11_C_1Decrypt
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DecryptFinal
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DecryptInit
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DecryptUpdate
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DeriveKey
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DestroyObject
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DigestFinal
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DigestInit
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DigestKey
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DigestSingle
Java_sun_security_pkcs11_wrapper_PKCS11_C_1DigestUpdate
Java_sun_security_pkcs11_wrapper_PKCS11_C_1Encrypt
Java_sun_security_pkcs11_wrapper_PKCS11_C_1EncryptFinal
Java_sun_security_pkcs11_wrapper_PKCS11_C_1EncryptInit
Java_sun_security_pkcs11_wrapper_PKCS11_C_1EncryptUpdate
Java_sun_security_pkcs11_wrapper_PKCS11_C_1Finalize
Java_sun_security_pkcs11_wrapper_PKCS11_C_1FindObjects
Java_sun_security_pkcs11_wrapper_PKCS11_C_1FindObjectsFinal
Java_sun_security_pkcs11_wrapper_PKCS11_C_1FindObjectsInit
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GenerateKey
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GenerateKeyPair
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GenerateRandom
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GetAttributeValue
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GetInfo
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GetMechanismInfo
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GetMechanismList
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GetOperationState
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GetSessionInfo
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GetSlotInfo
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GetSlotList
Java_sun_security_pkcs11_wrapper_PKCS11_C_1GetTokenInfo
Java_sun_security_pkcs11_wrapper_PKCS11_C_1Initialize
Java_sun_security_pkcs11_wrapper_PKCS11_C_1Login
Java_sun_security_pkcs11_wrapper_PKCS11_C_1Logout
Java_sun_security_pkcs11_wrapper_PKCS11_C_1OpenSession
Java_sun_security_pkcs11_wrapper_PKCS11_C_1SeedRandom
Java_sun_security_pkcs11_wrapper_PKCS11_C_1SetAttributeValue
Java_sun_security_pkcs11_wrapper_PKCS11_C_1SetOperationState
Java_sun_security_pkcs11_wrapper_PKCS11_C_1Sign
Java_sun_security_pkcs11_wrapper_PKCS11_C_1SignFinal
Java_sun_security_pkcs11_wrapper_PKCS11_C_1SignInit
Java_sun_security_pkcs11_wrapper_PKCS11_C_1SignRecover
Java_sun_security_pkcs11_wrapper_PKCS11_C_1SignRecoverInit
Java_sun_security_pkcs11_wrapper_PKCS11_C_1SignUpdate
Java_sun_security_pkcs11_wrapper_PKCS11_C_1UnwrapKey
Java_sun_security_pkcs11_wrapper_PKCS11_C_1Verify
Java_sun_security_pkcs11_wrapper_PKCS11_C_1VerifyFinal
Java_sun_security_pkcs11_wrapper_PKCS11_C_1VerifyInit
Java_sun_security_pkcs11_wrapper_PKCS11_C_1VerifyRecover
Java_sun_security_pkcs11_wrapper_PKCS11_C_1VerifyRecoverInit
Java_sun_security_pkcs11_wrapper_PKCS11_C_1VerifyUpdate
Java_sun_security_pkcs11_wrapper_PKCS11_C_1WrapKey
Java_sun_security_pkcs11_wrapper_PKCS11_connect
Java_sun_security_pkcs11_wrapper_PKCS11_disconnect
Java_sun_security_pkcs11_wrapper_PKCS11_finalizeLibrary
Java_sun_security_pkcs11_wrapper_PKCS11_initializeLibrary

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jaas_nt.dll
.dll windows:5 windows x64 arch:x64

2066d687e0a1513bffe9dc04dd97e166

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jaas_nt.pdb

Imports

user32

wsprintfA

advapi32

OpenProcessToken
DuplicateToken
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
IsValidSid
OpenThreadToken
LookupAccountNameA
LookupAccountSidA
GetTokenInformation

msvcr100

_onexit
_lock
_unlock
__clean_type_info_names_internal
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
free
_initterm_e
_initterm
_malloc_crt
strcmp
printf
__dllonexit

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
Sleep
DecodePointer
EncodePointer
CloseHandle
GetProcessHeap
HeapAlloc
HeapFree
GetCurrentThread
GetLastError
GetCurrentProcessId
GetCurrentProcess
LoadLibraryExA
lstrlenA
SetLastError
FreeLibrary
LocalFree
WriteFile
GetStdHandle
FormatMessageA

Exports

Exports

Java_com_sun_security_auth_module_NTSystem_getCurrent
Java_com_sun_security_auth_module_NTSystem_getImpersonationToken0

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jabswitch.exe
.exe windows:5 windows x64 arch:x64

4e0eb6fd80f520cb51e94548bc312d9f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jabswitch.pdb

Imports

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

user32

wsprintfW

msvcr100

exit
strcpy_s
vsprintf_s
_amsg_exit
__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
wcscpy_s
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
__crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
memcpy
wcstok_s
wcscat_s
wcsstr
_wcslwr_s
wcslen
??2@YAPEAX_K@Z
_dupenv_s
printf
perror
strcat_s
free
fopen_s
fprintf
fclose
remove
_errno
rename
strstr
feof
fgets
_stricmp
fputs
strtok_s
memset
__initenv

kernel32

VirtualQuery
GetProcessHeap
HeapAlloc
HeapFree
FreeLibrary
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DecodePointer
LoadLibraryW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
RaiseException
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EncodePointer
Sleep
GetCurrentProcessId
ProcessIdToSessionId
GetModuleFileNameW
GetVersionExW

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 226B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/java-rmi.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\java-rmi.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 66B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/java.dll
.dll windows:5 windows x64 arch:x64

b0ff063a1400d02c3018fb92d649b223

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\java.pdb

Imports

jvm

JVM_GetStackAccessControlContext
JVM_GetInheritedAccessControlContext
JVM_GetArrayLength
JVM_GetArrayElement
JVM_GetPrimitiveArrayElement
JVM_GetLastErrorString
jio_vfprintf
jio_vsnprintf
JVM_GetInterfaceVersion
JVM_GetTemporaryDirectory
JVM_LatestUserDefinedLoader
JVM_GetResourceLookupCache
JVM_GetResourceLookupCacheURLs
JVM_KnownToNotExist
JVM_GetStackTraceElement
JVM_GetStackTraceDepth
JVM_FillInStackTrace
JVM_StartThread
JVM_StopThread
JVM_IsThreadAlive
JVM_SuspendThread
JVM_ResumeThread
JVM_SetThreadPriority
JVM_Yield
JVM_Sleep
JVM_CurrentThread
JVM_CountStackFrames
JVM_Interrupt
JVM_IsInterrupted
JVM_HoldsLock
JVM_GetAllThreads
JVM_DumpThreads
JVM_SetNativeThreadName
JVM_InitProperties
JVM_CurrentTimeMillis
JVM_NanoTime
JVM_ArrayCopy
JVM_InternString
JVM_RaiseSignal
JVM_RegisterSignal
JVM_FindSignal
JVM_Halt
JVM_ClassLoaderDepth
JVM_ClassDepth
JVM_CurrentClassLoader
JVM_CurrentLoadedClass
JVM_GetClassContext
JVM_ActiveProcessorCount
JVM_TraceMethodCalls
JVM_TraceInstructions
JVM_GC
JVM_MaxMemory
JVM_TotalMemory
JVM_FreeMemory
JVM_GetClassAccessFlags
JVM_GetCallerClass
JVM_GetThreadInterruptEvent
JVM_GetSystemPackages
JVM_GetSystemPackage
JVM_IHashCode
JVM_MonitorWait
JVM_MonitorNotify
JVM_MonitorNotifyAll
JVM_Clone
JVM_NewInstanceFromConstructor
JVM_InvokeMethod
JVM_MaxObjectInspectionAge
JVM_GetFieldTypeAnnotations
JVM_GetMethodTypeAnnotations
JVM_GetMethodParameters
JVM_ConstantPoolGetUTF8At
JVM_ConstantPoolGetStringAt
JVM_ConstantPoolGetDoubleAt
JVM_ConstantPoolGetFloatAt
JVM_ConstantPoolGetLongAt
JVM_ConstantPoolGetIntAt
JVM_ConstantPoolGetMemberRefInfoAt
JVM_ConstantPoolGetFieldAtIfLoaded
JVM_ConstantPoolGetFieldAt
JVM_ConstantPoolGetMethodAtIfLoaded
JVM_ConstantPoolGetMethodAt
JVM_ConstantPoolGetClassAtIfLoaded
JVM_ConstantPoolGetClassAt
JVM_ConstantPoolGetSize
JVM_CompileClass
JVM_CompileClasses
JVM_CompilerCommand
JVM_EnableCompiler
JVM_DisableCompiler
JVM_LoadLibrary
JVM_UnloadLibrary
JVM_IsSupportedJNIVersion
JVM_FindLibraryEntry
JVM_FindLoadedClass
JVM_FindClassFromBootLoader
JVM_ResolveClass
JVM_DefineClassWithSource
JVM_AssertionStatusDirectives
JVM_FindPrimitiveClass
JVM_FindClassFromCaller
JVM_GetClassName
JVM_GetClassInterfaces
JVM_IsInterface
JVM_GetClassSigners
JVM_SetClassSigners
JVM_IsArrayClass
JVM_IsPrimitiveClass
JVM_GetComponentType
JVM_GetClassModifiers
JVM_GetClassDeclaredFields
JVM_GetClassDeclaredMethods
JVM_GetClassDeclaredConstructors
JVM_GetProtectionDomain
JVM_GetDeclaredClasses
JVM_GetDeclaringClass
JVM_GetClassSignature
JVM_GetClassAnnotations
JVM_GetClassConstantPool
JVM_DesiredAssertionStatus
JVM_GetEnclosingMethodInfo
JVM_GetClassTypeAnnotations
JVM_SupportsCX8
JVM_NewMultiArray
JVM_NewArray
JVM_SetPrimitiveArrayElement
JVM_SetArrayElement
JVM_DoPrivileged

verify

VerifyClass
VerifyClassForMajorVersion
VerifyFixClassname
VerifyClassname

advapi32

RegQueryValueExW
RegOpenKeyExW
RegEnumKeyExA
RegQueryInfoKeyA
RegCloseKey
RegOpenKeyExA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
RegCreateKeyExA
RegDeleteKeyA
RegFlushKey
RegSetValueExA
RegDeleteValueA
RegEnumValueA
GetUserNameW
RegQueryValueExA

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

msvcr100

strrchr
fprintf
isdigit
_wgetenv
wcsncat
sscanf
atoi
strncpy
_wcserror
wcsncpy
_wgetcwd
_wgetdcwd
_wfullpath
towupper
memcpy
_fullpath
isalpha
calloc
mbstowcs
strerror_s
__C_specific_handler
_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
setlocale
toupper
wcschr
strchr
iswctype
free
malloc
strlen
strcpy
sprintf
wcscmp
wcslen
wcscat_s
wcscpy
_wcsdup
__iob_func
_isnan
_vswprintf_c_l
memset
strcmp
memcmp
wcstombs
_strdup
fclose
fgets
fopen
strcat
realloc
wcsncmp
_wcsupr
_wstat64
wcscat
_errno
_wrename

kernel32

FreeLibrary
LocalAlloc
GetModuleFileNameA
GetSystemDirectoryA
LoadLibraryA
GetTempPathW
GetNativeSystemInfo
GetSystemDirectoryW
GetSystemDefaultLCID
GetCurrentDirectoryW
GetSystemInfo
IsProcessorFeaturePresent
GetLocaleInfoA
IsValidCodePage
GetWindowsDirectoryA
GetFileSizeEx
SetFilePointerEx
WriteFile
ReadFile
SetFilePointer
SetEndOfFile
FlushFileBuffers
GetNumberOfConsoleInputEvents
PeekConsoleInputA
PeekNamedPipe
GetDriveTypeW
FindFirstFileA
IsDBCSLeadByte
GetVolumePathNameW
GetDiskFreeSpaceExW
GetLogicalDrives
SetFileTime
CreateDirectoryW
FindNextFileW
RemoveDirectoryW
DeleteFileW
RaiseException
SetFileAttributesW
GetFileAttributesW
GetFullPathNameW
GetFileAttributesExW
FindFirstFileW
FindClose
GetFileInformationByHandle
SetLastError
GetModuleHandleExW
SetErrorMode
GetVersionExA
GetTimeZoneInformation
MultiByteToWideChar
CreateFileW
TerminateProcess
WaitForMultipleObjects
GetExitCodeProcess
GetConsoleWindow
CreateProcessW
CreatePipe
SetHandleInformation
GetHandleInformation
CloseHandle
GetLastError
WideCharToMultiByte
FormatMessageW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetUserDefaultLCID
GetUserDefaultUILanguage
GetModuleHandleA
GetProcAddress
GetConsoleMode
SetConsoleMode
GetConsoleCP
GetStdHandle
GetFileType
EncodePointer
DecodePointer
Sleep
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
DisableThreadLibraryCalls
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetFileTime

Exports

Exports

Canonicalize
GetStringPlatformChars
JDK_GetVersionInfo0
JDK_LoadSystemLibrary
JNI_OnLoad
JNU_CallMethodByName
JNU_CallMethodByNameV
JNU_CallStaticMethodByName
JNU_ClassClass
JNU_ClassObject
JNU_ClassString
JNU_ClassThrowable
JNU_CopyObjectArray
JNU_Equals
JNU_GetEnv
JNU_GetFieldByName
JNU_GetStaticFieldByName
JNU_GetStringPlatformChars
JNU_IsInstanceOfByName
JNU_MonitorWait
JNU_NewObjectByName
JNU_NewStringPlatform
JNU_Notify
JNU_NotifyAll
JNU_PrintClass
JNU_PrintString
JNU_ReleaseStringPlatformChars
JNU_SetFieldByName
JNU_SetStaticFieldByName
JNU_ThrowArrayIndexOutOfBoundsException
JNU_ThrowByName
JNU_ThrowByNameWithLastError
JNU_ThrowByNameWithMessageAndLastError
JNU_ThrowClassNotFoundException
JNU_ThrowIOException
JNU_ThrowIOExceptionWithLastError
JNU_ThrowIllegalAccessError
JNU_ThrowIllegalAccessException
JNU_ThrowIllegalArgumentException
JNU_ThrowInstantiationException
JNU_ThrowInternalError
JNU_ThrowNoSuchFieldError
JNU_ThrowNoSuchFieldException
JNU_ThrowNoSuchMethodError
JNU_ThrowNoSuchMethodException
JNU_ThrowNullPointerException
JNU_ThrowNumberFormatException
JNU_ThrowOutOfMemoryError
JNU_ThrowStringIndexOutOfBoundsException
JNU_ToString
Java_java_io_Console_echo
Java_java_io_Console_encoding
Java_java_io_Console_istty
Java_java_io_FileDescriptor_initIDs
Java_java_io_FileDescriptor_set
Java_java_io_FileDescriptor_sync
Java_java_io_FileInputStream_available0
Java_java_io_FileInputStream_close0
Java_java_io_FileInputStream_initIDs
Java_java_io_FileInputStream_open0
Java_java_io_FileInputStream_read0
Java_java_io_FileInputStream_readBytes
Java_java_io_FileInputStream_skip0
Java_java_io_FileOutputStream_close0
Java_java_io_FileOutputStream_initIDs
Java_java_io_FileOutputStream_open0
Java_java_io_FileOutputStream_write
Java_java_io_FileOutputStream_writeBytes
Java_java_io_ObjectInputStream_bytesToDoubles
Java_java_io_ObjectInputStream_bytesToFloats
Java_java_io_ObjectOutputStream_doublesToBytes
Java_java_io_ObjectOutputStream_floatsToBytes
Java_java_io_ObjectStreamClass_hasStaticInitializer
Java_java_io_ObjectStreamClass_initNative
Java_java_io_RandomAccessFile_close0
Java_java_io_RandomAccessFile_getFilePointer
Java_java_io_RandomAccessFile_initIDs
Java_java_io_RandomAccessFile_length
Java_java_io_RandomAccessFile_open0
Java_java_io_RandomAccessFile_read0
Java_java_io_RandomAccessFile_readBytes
Java_java_io_RandomAccessFile_seek0
Java_java_io_RandomAccessFile_setLength
Java_java_io_RandomAccessFile_write0
Java_java_io_RandomAccessFile_writeBytes
Java_java_io_WinNTFileSystem_canonicalize0
Java_java_io_WinNTFileSystem_canonicalizeWithPrefix0
Java_java_io_WinNTFileSystem_checkAccess
Java_java_io_WinNTFileSystem_createDirectory
Java_java_io_WinNTFileSystem_createFileExclusively
Java_java_io_WinNTFileSystem_delete0
Java_java_io_WinNTFileSystem_getBooleanAttributes
Java_java_io_WinNTFileSystem_getDriveDirectory
Java_java_io_WinNTFileSystem_getLastModifiedTime
Java_java_io_WinNTFileSystem_getLength
Java_java_io_WinNTFileSystem_getSpace0
Java_java_io_WinNTFileSystem_initIDs
Java_java_io_WinNTFileSystem_list
Java_java_io_WinNTFileSystem_listRoots0
Java_java_io_WinNTFileSystem_rename0
Java_java_io_WinNTFileSystem_setLastModifiedTime
Java_java_io_WinNTFileSystem_setPermission
Java_java_io_WinNTFileSystem_setReadOnly
Java_java_lang_ClassLoader_00024NativeLibrary_find
Java_java_lang_ClassLoader_00024NativeLibrary_load
Java_java_lang_ClassLoader_00024NativeLibrary_unload
Java_java_lang_ClassLoader_defineClass0
Java_java_lang_ClassLoader_defineClass1
Java_java_lang_ClassLoader_defineClass2
Java_java_lang_ClassLoader_findBootstrapClass
Java_java_lang_ClassLoader_findBuiltinLib
Java_java_lang_ClassLoader_findLoadedClass0
Java_java_lang_ClassLoader_registerNatives
Java_java_lang_ClassLoader_resolveClass0
Java_java_lang_Class_forName0
Java_java_lang_Class_getPrimitiveClass
Java_java_lang_Class_isAssignableFrom
Java_java_lang_Class_isInstance
Java_java_lang_Class_registerNatives
Java_java_lang_Compiler_registerNatives
Java_java_lang_Double_doubleToRawLongBits
Java_java_lang_Double_longBitsToDouble
Java_java_lang_Float_floatToRawIntBits
Java_java_lang_Float_intBitsToFloat
Java_java_lang_Object_getClass
Java_java_lang_Object_registerNatives
Java_java_lang_Package_getSystemPackage0
Java_java_lang_Package_getSystemPackages0
Java_java_lang_ProcessEnvironment_environmentBlock
Java_java_lang_ProcessImpl_closeHandle
Java_java_lang_ProcessImpl_create
Java_java_lang_ProcessImpl_getExitCodeProcess
Java_java_lang_ProcessImpl_getStillActive
Java_java_lang_ProcessImpl_isProcessAlive
Java_java_lang_ProcessImpl_openForAtomicAppend
Java_java_lang_ProcessImpl_terminateProcess
Java_java_lang_ProcessImpl_waitForInterruptibly
Java_java_lang_ProcessImpl_waitForTimeoutInterruptibly
Java_java_lang_Runtime_availableProcessors
Java_java_lang_Runtime_freeMemory
Java_java_lang_Runtime_gc
Java_java_lang_Runtime_maxMemory
Java_java_lang_Runtime_runFinalization0
Java_java_lang_Runtime_totalMemory
Java_java_lang_Runtime_traceInstructions
Java_java_lang_Runtime_traceMethodCalls
Java_java_lang_SecurityManager_classDepth
Java_java_lang_SecurityManager_classLoaderDepth0
Java_java_lang_SecurityManager_currentClassLoader0
Java_java_lang_SecurityManager_currentLoadedClass0
Java_java_lang_SecurityManager_getClassContext
Java_java_lang_Shutdown_halt0
Java_java_lang_Shutdown_runAllFinalizers
Java_java_lang_StrictMath_IEEEremainder
Java_java_lang_StrictMath_acos
Java_java_lang_StrictMath_asin
Java_java_lang_StrictMath_atan
Java_java_lang_StrictMath_atan2
Java_java_lang_StrictMath_cbrt
Java_java_lang_StrictMath_cos
Java_java_lang_StrictMath_cosh
Java_java_lang_StrictMath_exp
Java_java_lang_StrictMath_expm1
Java_java_lang_StrictMath_hypot
Java_java_lang_StrictMath_log
Java_java_lang_StrictMath_log10
Java_java_lang_StrictMath_log1p
Java_java_lang_StrictMath_pow
Java_java_lang_StrictMath_sin
Java_java_lang_StrictMath_sinh
Java_java_lang_StrictMath_sqrt
Java_java_lang_StrictMath_tan
Java_java_lang_StrictMath_tanh
Java_java_lang_String_intern
Java_java_lang_System_identityHashCode
Java_java_lang_System_initProperties
Java_java_lang_System_mapLibraryName
Java_java_lang_System_registerNatives
Java_java_lang_System_setErr0
Java_java_lang_System_setIn0
Java_java_lang_System_setOut0
Java_java_lang_Thread_registerNatives
Java_java_lang_Throwable_fillInStackTrace
Java_java_lang_Throwable_getStackTraceDepth
Java_java_lang_Throwable_getStackTraceElement
Java_java_lang_reflect_Array_get
Java_java_lang_reflect_Array_getBoolean
Java_java_lang_reflect_Array_getByte
Java_java_lang_reflect_Array_getChar
Java_java_lang_reflect_Array_getDouble
Java_java_lang_reflect_Array_getFloat
Java_java_lang_reflect_Array_getInt
Java_java_lang_reflect_Array_getLength
Java_java_lang_reflect_Array_getLong
Java_java_lang_reflect_Array_getShort
Java_java_lang_reflect_Array_multiNewArray
Java_java_lang_reflect_Array_newArray
Java_java_lang_reflect_Array_set
Java_java_lang_reflect_Array_setBoolean
Java_java_lang_reflect_Array_setByte
Java_java_lang_reflect_Array_setChar
Java_java_lang_reflect_Array_setDouble
Java_java_lang_reflect_Array_setFloat
Java_java_lang_reflect_Array_setInt
Java_java_lang_reflect_Array_setLong
Java_java_lang_reflect_Array_setShort
Java_java_lang_reflect_Executable_getParameters0
Java_java_lang_reflect_Executable_getTypeAnnotationBytes0
Java_java_lang_reflect_Field_getTypeAnnotationBytes0
Java_java_lang_reflect_Proxy_defineClass0
Java_java_nio_Bits_copyFromIntArray
Java_java_nio_Bits_copyFromLongArray
Java_java_nio_Bits_copyFromShortArray
Java_java_nio_Bits_copyToIntArray
Java_java_nio_Bits_copyToLongArray
Java_java_nio_Bits_copyToShortArray
Java_java_security_AccessController_doPrivileged__Ljava_security_PrivilegedAction_2
Java_java_security_AccessController_doPrivileged__Ljava_security_PrivilegedAction_2Ljava_security_AccessControlContext_2
Java_java_security_AccessController_doPrivileged__Ljava_security_PrivilegedExceptionAction_2
Java_java_security_AccessController_doPrivileged__Ljava_security_PrivilegedExceptionAction_2Ljava_security_AccessControlContext_2
Java_java_security_AccessController_getInheritedAccessControlContext
Java_java_security_AccessController_getStackAccessControlContext
Java_java_util_TimeZone_getSystemGMTOffsetID
Java_java_util_TimeZone_getSystemTimeZoneID
Java_java_util_concurrent_atomic_AtomicLong_VMSupportsCS8
Java_java_util_logging_FileHandler_isSetUID
Java_java_util_prefs_WindowsPreferences_WindowsRegCloseKey
Java_java_util_prefs_WindowsPreferences_WindowsRegCreateKeyEx
Java_java_util_prefs_WindowsPreferences_WindowsRegDeleteKey
Java_java_util_prefs_WindowsPreferences_WindowsRegDeleteValue
Java_java_util_prefs_WindowsPreferences_WindowsRegEnumKeyEx
Java_java_util_prefs_WindowsPreferences_WindowsRegEnumValue
Java_java_util_prefs_WindowsPreferences_WindowsRegFlushKey
Java_java_util_prefs_WindowsPreferences_WindowsRegOpenKey
Java_java_util_prefs_WindowsPreferences_WindowsRegQueryInfoKey
Java_java_util_prefs_WindowsPreferences_WindowsRegQueryValueEx
Java_java_util_prefs_WindowsPreferences_WindowsRegSetValueEx
Java_sun_io_Win32ErrorMode_setErrorMode
Java_sun_misc_GC_maxObjectInspectionAge
Java_sun_misc_MessageUtils_toStderr
Java_sun_misc_MessageUtils_toStdout
Java_sun_misc_NativeSignalHandler_handle0
Java_sun_misc_Signal_findSignal
Java_sun_misc_Signal_handle0
Java_sun_misc_Signal_raise0
Java_sun_misc_URLClassPath_getLookupCacheForClassLoader
Java_sun_misc_URLClassPath_getLookupCacheURLs
Java_sun_misc_URLClassPath_knownToNotExist0
Java_sun_misc_VMSupport_getVMTemporaryDirectory
Java_sun_misc_VMSupport_initAgentProperties
Java_sun_misc_VM_getThreadStateValues
Java_sun_misc_VM_initialize
Java_sun_misc_VM_latestUserDefinedLoader
Java_sun_misc_Version_getJdkSpecialVersion
Java_sun_misc_Version_getJdkVersionInfo
Java_sun_misc_Version_getJvmSpecialVersion
Java_sun_misc_Version_getJvmVersionInfo
Java_sun_reflect_ConstantPool_getClassAt0
Java_sun_reflect_ConstantPool_getClassAtIfLoaded0
Java_sun_reflect_ConstantPool_getDoubleAt0
Java_sun_reflect_ConstantPool_getFieldAt0
Java_sun_reflect_ConstantPool_getFieldAtIfLoaded0
Java_sun_reflect_ConstantPool_getFloatAt0
Java_sun_reflect_ConstantPool_getIntAt0
Java_sun_reflect_ConstantPool_getLongAt0
Java_sun_reflect_ConstantPool_getMemberRefInfoAt0
Java_sun_reflect_ConstantPool_getMethodAt0
Java_sun_reflect_ConstantPool_getMethodAtIfLoaded0
Java_sun_reflect_ConstantPool_getSize0
Java_sun_reflect_ConstantPool_getStringAt0
Java_sun_reflect_ConstantPool_getUTF8At0
Java_sun_reflect_NativeConstructorAccessorImpl_newInstance0
Java_sun_reflect_NativeMethodAccessorImpl_invoke0
Java_sun_reflect_Reflection_getCallerClass__
Java_sun_reflect_Reflection_getCallerClass__I
Java_sun_reflect_Reflection_getClassAccessFlags
Java_sun_security_provider_NativeSeedGenerator_nativeGenerateSeed
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getAmPmStrings
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getCalendarDataValue
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getCalendarID
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getCurrencySymbol
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getDateTimePattern
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getDecimalSeparator
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getDefaultLocale
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getDisplayString
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getEras
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getGroupingSeparator
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getInfinity
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getInternationalCurrencySymbol
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getMinusSign
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getMonetaryDecimalSeparator
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getMonths
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getNaN
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getNumberPattern
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getPerMill
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getPercent
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getShortMonths
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getShortWeekdays
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getWeekdays
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_getZeroDigit
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_initialize
Java_sun_util_locale_provider_HostLocaleProviderAdapterImpl_isNativeDigit
NewStringPlatform
VerifyClassCodes
VerifyClassCodesForMajorVersion
getEncodingFromLangID
getErrorString
getJavaIDFromLangID
handleLseek
handleRead
jio_fprintf
jio_snprintf
winFileHandleOpen

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/java.exe
.exe windows:5 windows x64 arch:x64

bb9f83f2ccf071025cfcf6c07dc24b5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\objs\java_objs\java.pdb

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegEnumKeyA
RegQueryValueExA

user32

CharNextExA
MessageBoxA

comctl32

InitCommonControlsEx

kernel32

CreateFileW
GetCommandLineA
GetModuleFileNameA
QueryPerformanceCounter
QueryPerformanceFrequency
LocalFree
FormatMessageA
GetLastError
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetExitCodeThread
FindFirstFileA
FindNextFileA
FindClose
GetModuleHandleW
ExitProcess
DecodePointer
HeapFree
MultiByteToWideChar
GetCurrentProcessId
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapReAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileExA
GetFileAttributesA
ExitThread
GetCurrentThreadId
CreateThread
SetFilePointer
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EncodePointer
LoadLibraryW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
TerminateProcess
GetCurrentProcess
FlsGetValue
FlsSetValue
FlsFree
SetLastError
FlsAlloc
RtlUnwindEx
WriteFile
GetStdHandle
GetModuleFileNameW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoW
HeapSetInformation
GetVersion
HeapCreate
GetTickCount
GetSystemTimeAsFileTime
SetEnvironmentVariableW
SetEnvironmentVariableA
Sleep
SetStdHandle
GetConsoleCP
GetConsoleMode
GetFullPathNameA
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
GetCurrentDirectoryW
FlushFileBuffers
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
CompareStringW
ReadFile
WriteConsoleW
GetDriveTypeW
SetEndOfFile
GetProcessHeap
GetTimeZoneInformation
LCMapStringW
GetStringTypeW

Sections

.text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/java_crw_demo.dll
.dll windows:5 windows x64 arch:x64

e4c393924faaccc98a02983f6f2bccc4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\java_crw_demo.pdb

Imports

msvcr100

__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
_amsg_exit
_unlock
__dllonexit
_lock
_onexit
_encoded_null
_initterm_e
_initterm
_malloc_crt
memset
strcmp
strncmp
_snprintf_s
strlen
free
memcpy
calloc
realloc
malloc
__iob_func
fprintf
__clean_type_info_names_internal
abort

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
GetSystemTimeAsFileTime

Exports

Exports

java_crw_demo
java_crw_demo_classname

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/javaw.exe
.exe windows:5 windows x64 arch:x64

2d6f4e096a2d15d4349a455f88e1f66e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\javaw.pdb

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegEnumKeyA
RegQueryValueExA

user32

CharNextExA
MessageBoxA

comctl32

InitCommonControlsEx

kernel32

CreateFileW
GetCommandLineA
GetModuleFileNameA
QueryPerformanceCounter
QueryPerformanceFrequency
LocalFree
FormatMessageA
GetLastError
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetExitCodeThread
FindFirstFileA
FindNextFileA
FindClose
GetModuleHandleW
ExitProcess
DecodePointer
GetStartupInfoW
HeapFree
MultiByteToWideChar
GetCurrentProcessId
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapReAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileExA
GetFileAttributesA
ExitThread
GetCurrentThreadId
CreateThread
SetFilePointer
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
EncodePointer
LoadLibraryW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
TerminateProcess
GetCurrentProcess
FlsGetValue
FlsSetValue
FlsFree
SetLastError
FlsAlloc
RtlUnwindEx
WriteFile
GetStdHandle
GetModuleFileNameW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapSetInformation
GetVersion
HeapCreate
GetTickCount
GetSystemTimeAsFileTime
SetEnvironmentVariableW
SetEnvironmentVariableA
Sleep
SetStdHandle
GetConsoleCP
GetConsoleMode
GetFullPathNameA
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
GetCurrentDirectoryW
FlushFileBuffers
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
CompareStringW
ReadFile
WriteConsoleW
GetDriveTypeW
SetEndOfFile
GetProcessHeap
GetTimeZoneInformation
LCMapStringW
GetStringTypeW

Sections

.text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jawt.dll
.dll windows:5 windows x64 arch:x64

6a9b2c610f7015156efcd687c5f40b89

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jawt.pdb

Imports

awt

DSGetDrawingSurface
DSFreeDrawingSurface
DSLockAWT
DSUnlockAWT
DSGetComponent

msvcr100

_encoded_null
_amsg_exit
free
__CppXcptFilter
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_initterm_e
_initterm
_malloc_crt
__C_specific_handler

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
Sleep
DecodePointer
EncodePointer
DisableThreadLibraryCalls

Exports

Exports

JAWT_GetAWT

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jdwp.dll
.dll windows:5 windows x64 arch:x64

f7abbecf9035db228855fd9a9118b434

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jdwp.pdb

Imports

msvcr100

strtok_s
_access
strerror
_errno
sprintf
_localtime64
_time64
strftime
strrchr
setvbuf
fopen
fclose
isdigit
free
_unlock
__dllonexit
_lock
_onexit
_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_sleep
fflush
_vsnprintf
strncpy
fprintf
getenv
atol
strtol
abort
strcpy
strcat
exit
abs
strchr
_setjmp
memcpy
_snprintf
longjmp
strlen
strncmp
strcmp
__iob_func
__C_specific_handler
memset
_getpid
_strdup

kernel32

GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
GetLastError
FormatMessageA
CreateProcessA
GetCurrentThreadId
LoadLibraryA
GetProcAddress
GetSystemTimeAsFileTime

Exports

Exports

Agent_OnLoad
Agent_OnUnload

Sections

.text
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jjs.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jjs.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jli.dll
.dll windows:5 windows x64 arch:x64

1a6b67becfdddad1a6f8feabd3928725

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jli.pdb

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegEnumKeyA
RegQueryValueExA

comctl32

InitCommonControlsEx

user32

CharNextExA
MessageBoxA

kernel32

CreateFileW
GetModuleFileNameA
QueryPerformanceCounter
QueryPerformanceFrequency
LocalFree
FormatMessageA
GetLastError
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetCommandLineA
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetExitCodeThread
FindFirstFileA
FindNextFileA
FindClose
HeapFree
MultiByteToWideChar
GetCurrentProcessId
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleW
ExitProcess
DecodePointer
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileExA
GetFileAttributesA
ExitThread
GetCurrentThreadId
CreateThread
HeapAlloc
HeapReAlloc
SetFilePointer
FlsSetValue
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
HeapSetInformation
GetVersion
HeapCreate
HeapDestroy
EncodePointer
WideCharToMultiByte
RtlUnwindEx
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEnvironmentVariableW
SetEnvironmentVariableA
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoW
LoadLibraryW
FlsGetValue
FlsFree
SetLastError
FlsAlloc
WriteFile
GetModuleFileNameW
GetFullPathNameA
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
GetCurrentDirectoryW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetStdHandle
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount
GetSystemTimeAsFileTime
CompareStringW
HeapSize
ReadFile
GetDriveTypeW
SetEndOfFile
GetProcessHeap
GetTimeZoneInformation
LCMapStringW
WriteConsoleW
GetStringTypeW

Exports

Exports

JLI_CmdToArgs
JLI_GetStdArgc
JLI_GetStdArgs
JLI_Launch
JLI_ManifestIterate
JLI_MemAlloc
JLI_ReportErrorMessage
JLI_ReportErrorMessageSys
JLI_ReportExceptionDescription
JLI_ReportMessage
JLI_SetTraceLauncher

Sections

.text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jpeg.dll
.dll windows:5 windows x64 arch:x64

e1f56dfca40a8b110b0a5b927764183f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jpeg.pdb

Imports

java

jio_snprintf
JNU_ThrowNullPointerException
JNU_GetEnv
JNU_ThrowByName

msvcr100

_initterm
_initterm_e
_encoded_null
_amsg_exit
_malloc_crt
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
memmove
getenv
sscanf
__iob_func
fprintf
memset
calloc
malloc
_setjmp
memcpy
free
longjmp
__C_specific_handler

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
QueryPerformanceCounter

Exports

Exports

JNI_OnLoad
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_abortRead
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_disposeReader
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_initJPEGImageReader
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_initReaderIDs
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_readImage
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_readImageHeader
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_resetLibraryState
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_resetReader
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_setOutColorSpace
Java_com_sun_imageio_plugins_jpeg_JPEGImageReader_setSource
Java_com_sun_imageio_plugins_jpeg_JPEGImageWriter_abortWrite
Java_com_sun_imageio_plugins_jpeg_JPEGImageWriter_disposeWriter
Java_com_sun_imageio_plugins_jpeg_JPEGImageWriter_initJPEGImageWriter
Java_com_sun_imageio_plugins_jpeg_JPEGImageWriter_initWriterIDs
Java_com_sun_imageio_plugins_jpeg_JPEGImageWriter_resetWriter
Java_com_sun_imageio_plugins_jpeg_JPEGImageWriter_setDest
Java_com_sun_imageio_plugins_jpeg_JPEGImageWriter_writeImage
Java_com_sun_imageio_plugins_jpeg_JPEGImageWriter_writeTables
Java_sun_awt_image_JPEGImageDecoder_initIDs
Java_sun_awt_image_JPEGImageDecoder_readImage

Sections

.text
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 654B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jsdt.dll
.dll windows:5 windows x64 arch:x64

654291c91153b208d42e521bbb6adde4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jsdt.pdb

Imports

msvcr100

_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
malloc
free
calloc

kernel32

GetModuleHandleA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
FreeLibrary
GetProcAddress
EncodePointer

Exports

Exports

Java_sun_tracing_dtrace_JVM_activate0
Java_sun_tracing_dtrace_JVM_defineClass0
Java_sun_tracing_dtrace_JVM_dispose0
Java_sun_tracing_dtrace_JVM_isEnabled0
Java_sun_tracing_dtrace_JVM_isSupported0

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jsound.dll
.dll windows:5 windows x64 arch:x64

61eddfc589b47b0bb8f2f3659752c99e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jsound.pdb

Imports

winmm

timeGetTime
mixerOpen
mixerSetControlDetails
mixerGetControlDetailsA
mixerClose
mixerGetDevCapsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerGetNumDevs
midiOutPrepareHeader
midiOutLongMsg
timeEndPeriod
midiOutReset
midiOutClose
midiOutOpen
midiOutShortMsg
timeBeginPeriod
midiOutUnprepareHeader
midiOutGetDevCapsA
midiOutGetNumDevs
midiOutGetErrorTextA
midiInStop
midiInStart
midiInReset
midiInClose
midiInUnprepareHeader
midiInPrepareHeader
midiInGetDevCapsA
midiInGetNumDevs
midiInGetErrorTextA
midiInOpen
midiInAddBuffer

msvcr100

__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
_amsg_exit
_encoded_null
memcpy
strcpy
strncpy
sprintf
free
memset
malloc
__C_specific_handler
_unlock
__dllonexit
_lock
_onexit
_malloc_crt
_initterm
_initterm_e

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
DecodePointer
EncodePointer
DeleteCriticalSection
InitializeCriticalSection
CreateThread
Sleep
CreateEventA
WaitForSingleObject
EnterCriticalSection
CloseHandle
LeaveCriticalSection
SetEvent

Exports

Exports

Java_com_sun_media_sound_MidiInDeviceProvider_nGetDescription
Java_com_sun_media_sound_MidiInDeviceProvider_nGetName
Java_com_sun_media_sound_MidiInDeviceProvider_nGetNumDevices
Java_com_sun_media_sound_MidiInDeviceProvider_nGetVendor
Java_com_sun_media_sound_MidiInDeviceProvider_nGetVersion
Java_com_sun_media_sound_MidiInDevice_nClose
Java_com_sun_media_sound_MidiInDevice_nGetMessages
Java_com_sun_media_sound_MidiInDevice_nGetTimeStamp
Java_com_sun_media_sound_MidiInDevice_nOpen
Java_com_sun_media_sound_MidiInDevice_nStart
Java_com_sun_media_sound_MidiInDevice_nStop
Java_com_sun_media_sound_MidiOutDeviceProvider_nGetDescription
Java_com_sun_media_sound_MidiOutDeviceProvider_nGetName
Java_com_sun_media_sound_MidiOutDeviceProvider_nGetNumDevices
Java_com_sun_media_sound_MidiOutDeviceProvider_nGetVendor
Java_com_sun_media_sound_MidiOutDeviceProvider_nGetVersion
Java_com_sun_media_sound_MidiOutDevice_nClose
Java_com_sun_media_sound_MidiOutDevice_nGetTimeStamp
Java_com_sun_media_sound_MidiOutDevice_nOpen
Java_com_sun_media_sound_MidiOutDevice_nSendLongMessage
Java_com_sun_media_sound_MidiOutDevice_nSendShortMessage
Java_com_sun_media_sound_Platform_nGetExtraLibraries
Java_com_sun_media_sound_Platform_nGetLibraryForFeature
Java_com_sun_media_sound_Platform_nIsBigEndian
Java_com_sun_media_sound_Platform_nIsSigned8
Java_com_sun_media_sound_PortMixerProvider_nGetNumDevices
Java_com_sun_media_sound_PortMixerProvider_nNewPortMixerInfo
Java_com_sun_media_sound_PortMixer_nClose
Java_com_sun_media_sound_PortMixer_nControlGetFloatValue
Java_com_sun_media_sound_PortMixer_nControlGetIntValue
Java_com_sun_media_sound_PortMixer_nControlSetFloatValue
Java_com_sun_media_sound_PortMixer_nControlSetIntValue
Java_com_sun_media_sound_PortMixer_nGetControls
Java_com_sun_media_sound_PortMixer_nGetPortCount
Java_com_sun_media_sound_PortMixer_nGetPortName
Java_com_sun_media_sound_PortMixer_nGetPortType
Java_com_sun_media_sound_PortMixer_nOpen

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/jsoundds.dll
.dll windows:5 windows x64 arch:x64

eb8a1b4f567e3f476e1cde7fd25dfbe1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\jsoundds.pdb

Imports

dsound

ord2
ord6
ord1
ord7

winmm

timeGetTime

user32

GetDesktopWindow
GetForegroundWindow

ole32

CoInitialize
CoUninitialize

msvcr100

__crt_debugger_hook
__clean_type_info_names_internal
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
_onexit
_lock
__dllonexit
_unlock
__C_specific_handler
strncpy
memset
memcpy
memcmp
strcpy
malloc
free
__CppXcptFilter

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
InitializeCriticalSection
CreateEventA
CreateThread
WaitForSingleObject
EnterCriticalSection
SetEvent
CloseHandle
LeaveCriticalSection

Exports

Exports

Java_com_sun_media_sound_DirectAudioDeviceProvider_nGetNumDevices
Java_com_sun_media_sound_DirectAudioDeviceProvider_nNewDirectAudioDeviceInfo
Java_com_sun_media_sound_DirectAudioDevice_nAvailable
Java_com_sun_media_sound_DirectAudioDevice_nClose
Java_com_sun_media_sound_DirectAudioDevice_nFlush
Java_com_sun_media_sound_DirectAudioDevice_nGetBufferSize
Java_com_sun_media_sound_DirectAudioDevice_nGetBytePosition
Java_com_sun_media_sound_DirectAudioDevice_nGetFormats
Java_com_sun_media_sound_DirectAudioDevice_nIsStillDraining
Java_com_sun_media_sound_DirectAudioDevice_nOpen
Java_com_sun_media_sound_DirectAudioDevice_nRead
Java_com_sun_media_sound_DirectAudioDevice_nRequiresServicing
Java_com_sun_media_sound_DirectAudioDevice_nService
Java_com_sun_media_sound_DirectAudioDevice_nSetBytePosition
Java_com_sun_media_sound_DirectAudioDevice_nStart
Java_com_sun_media_sound_DirectAudioDevice_nStop
Java_com_sun_media_sound_DirectAudioDevice_nWrite

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/key.pk8
SpyLogger V1.1/res/bin/keytool.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\keytool.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/kinit.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\kinit.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/klist.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\klist.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/ktab.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\ktab.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/lcms.dll
.dll windows:5 windows x64 arch:x64

509b004d850141ddd7bc12ad0be6a9df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\lcms.pdb

Imports

awt

J2dTraceImpl
Disposer_AddRecord

java

JNU_ThrowByName
JNU_ThrowIllegalArgumentException

msvcr100

_vsnprintf
fclose
fwrite
fopen
fread
fseek
ftell
realloc
log10
strncpy
sqrt
ceil
_gmtime64
_time64
remove
sqrtf
memcmp
_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
pow
memmove
floor
memset
memcpy
malloc
free
_snprintf
log

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DisableThreadLibraryCalls

Exports

Exports

JNI_OnLoad
Java_sun_java2d_cmm_lcms_LCMS_colorConvert
Java_sun_java2d_cmm_lcms_LCMS_createNativeTransform
Java_sun_java2d_cmm_lcms_LCMS_getProfileDataNative
Java_sun_java2d_cmm_lcms_LCMS_getProfileID
Java_sun_java2d_cmm_lcms_LCMS_getProfileSizeNative
Java_sun_java2d_cmm_lcms_LCMS_getTagNative
Java_sun_java2d_cmm_lcms_LCMS_initLCMS
Java_sun_java2d_cmm_lcms_LCMS_loadProfileNative
Java_sun_java2d_cmm_lcms_LCMS_setTagDataNative

Sections

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/management.dll
.dll windows:5 windows x64 arch:x64

29f8c884ec18a6ffb516bf022398dc58

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\management.pdb

Imports

jvm

JVM_GetManagement
JVM_ActiveProcessorCount
JVM_GetAllThreads

psapi

GetProcessMemoryInfo

java

JNU_GetStaticFieldByName
JNU_GetStringPlatformChars
JNU_ReleaseStringPlatformChars
JNU_ThrowInternalError
JNU_ThrowIllegalArgumentException
JNU_ThrowIOExceptionWithLastError
JNU_ThrowNullPointerException
JNU_ThrowOutOfMemoryError
JNU_NewObjectByName
JNU_ThrowByName
JNU_ThrowIOException

advapi32

GetAce
EqualSid
GetSecurityDescriptorDacl
GetSecurityDescriptorOwner
GetFileSecurityA
GetAclInformation

msvcr100

_malloc_crt
_initterm
_initterm_e
_encoded_null
_itoa
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
sprintf
clock
calloc
strrchr
_snprintf
strlen
strncpy
memset
strchr
malloc
free
_strdup
_getpid
_amsg_exit

kernel32

DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
QueryPerformanceCounter
UnhandledExceptionFilter
TerminateProcess
Sleep
DecodePointer
EncodePointer
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
FreeLibrary
SetUnhandledExceptionFilter
GetCurrentProcess
GetSystemInfo
GetProcAddress
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
InitializeCriticalSection
LoadLibraryA
GetProcessTimes
GlobalMemoryStatusEx
GetLastError
GetVolumeInformationA

Exports

Exports

JNI_OnLoad
Java_sun_management_ClassLoadingImpl_setVerboseClass
Java_sun_management_DiagnosticCommandImpl_executeDiagnosticCommand
Java_sun_management_DiagnosticCommandImpl_getDiagnosticCommandInfo
Java_sun_management_DiagnosticCommandImpl_getDiagnosticCommands
Java_sun_management_DiagnosticCommandImpl_setNotificationEnabled
Java_sun_management_FileSystemImpl_init0
Java_sun_management_FileSystemImpl_isAccessUserOnly0
Java_sun_management_FileSystemImpl_isSecuritySupported0
Java_sun_management_Flag_getAllFlagNames
Java_sun_management_Flag_getFlags
Java_sun_management_Flag_getInternalFlagCount
Java_sun_management_Flag_initialize
Java_sun_management_Flag_setBooleanValue
Java_sun_management_Flag_setLongValue
Java_sun_management_Flag_setStringValue
Java_sun_management_GarbageCollectorImpl_getCollectionCount
Java_sun_management_GarbageCollectorImpl_getCollectionTime
Java_sun_management_GarbageCollectorImpl_setNotificationEnabled
Java_sun_management_GcInfoBuilder_fillGcAttributeInfo
Java_sun_management_GcInfoBuilder_getLastGcInfo0
Java_sun_management_GcInfoBuilder_getNumGcExtAttributes
Java_sun_management_HotSpotDiagnostic_dumpHeap0
Java_sun_management_HotspotThread_getInternalThreadCount
Java_sun_management_HotspotThread_getInternalThreadTimes0
Java_sun_management_MemoryImpl_getMemoryManagers0
Java_sun_management_MemoryImpl_getMemoryPools0
Java_sun_management_MemoryImpl_getMemoryUsage0
Java_sun_management_MemoryImpl_setVerboseGC
Java_sun_management_MemoryManagerImpl_getMemoryPools0
Java_sun_management_MemoryPoolImpl_getCollectionUsage0
Java_sun_management_MemoryPoolImpl_getMemoryManagers0
Java_sun_management_MemoryPoolImpl_getPeakUsage0
Java_sun_management_MemoryPoolImpl_getUsage0
Java_sun_management_MemoryPoolImpl_resetPeakUsage0
Java_sun_management_MemoryPoolImpl_setCollectionThreshold0
Java_sun_management_MemoryPoolImpl_setPoolCollectionSensor
Java_sun_management_MemoryPoolImpl_setPoolUsageSensor
Java_sun_management_MemoryPoolImpl_setUsageThreshold0
Java_sun_management_OperatingSystemImpl_getCommittedVirtualMemorySize0
Java_sun_management_OperatingSystemImpl_getFreePhysicalMemorySize
Java_sun_management_OperatingSystemImpl_getFreeSwapSpaceSize
Java_sun_management_OperatingSystemImpl_getProcessCpuLoad
Java_sun_management_OperatingSystemImpl_getProcessCpuTime
Java_sun_management_OperatingSystemImpl_getSystemCpuLoad
Java_sun_management_OperatingSystemImpl_getTotalPhysicalMemorySize
Java_sun_management_OperatingSystemImpl_getTotalSwapSpaceSize
Java_sun_management_OperatingSystemImpl_initialize
Java_sun_management_ThreadImpl_dumpThreads0
Java_sun_management_ThreadImpl_findDeadlockedThreads0
Java_sun_management_ThreadImpl_findMonitorDeadlockedThreads0
Java_sun_management_ThreadImpl_getThreadAllocatedMemory1
Java_sun_management_ThreadImpl_getThreadInfo1
Java_sun_management_ThreadImpl_getThreadTotalCpuTime0
Java_sun_management_ThreadImpl_getThreadTotalCpuTime1
Java_sun_management_ThreadImpl_getThreadUserCpuTime0
Java_sun_management_ThreadImpl_getThreadUserCpuTime1
Java_sun_management_ThreadImpl_getThreads
Java_sun_management_ThreadImpl_resetContentionTimes0
Java_sun_management_ThreadImpl_resetPeakThreadCount0
Java_sun_management_ThreadImpl_setThreadAllocatedMemoryEnabled0
Java_sun_management_ThreadImpl_setThreadContentionMonitoringEnabled0
Java_sun_management_ThreadImpl_setThreadCpuTimeEnabled0
Java_sun_management_VMManagementImpl_getAvailableProcessors
Java_sun_management_VMManagementImpl_getClassInitializationTime
Java_sun_management_VMManagementImpl_getClassLoadingTime
Java_sun_management_VMManagementImpl_getClassVerificationTime
Java_sun_management_VMManagementImpl_getDaemonThreadCount
Java_sun_management_VMManagementImpl_getInitializedClassCount
Java_sun_management_VMManagementImpl_getLiveThreadCount
Java_sun_management_VMManagementImpl_getLoadedClassSize
Java_sun_management_VMManagementImpl_getMethodDataSize
Java_sun_management_VMManagementImpl_getPeakThreadCount
Java_sun_management_VMManagementImpl_getProcessId
Java_sun_management_VMManagementImpl_getSafepointCount
Java_sun_management_VMManagementImpl_getSafepointSyncTime
Java_sun_management_VMManagementImpl_getStartupTime
Java_sun_management_VMManagementImpl_getTotalApplicationNonStoppedTime
Java_sun_management_VMManagementImpl_getTotalClassCount
Java_sun_management_VMManagementImpl_getTotalCompileTime
Java_sun_management_VMManagementImpl_getTotalSafepointTime
Java_sun_management_VMManagementImpl_getTotalThreadCount
Java_sun_management_VMManagementImpl_getUnloadedClassCount
Java_sun_management_VMManagementImpl_getUnloadedClassSize
Java_sun_management_VMManagementImpl_getUptime0
Java_sun_management_VMManagementImpl_getVerboseClass
Java_sun_management_VMManagementImpl_getVerboseGC
Java_sun_management_VMManagementImpl_getVersion0
Java_sun_management_VMManagementImpl_getVmArguments0
Java_sun_management_VMManagementImpl_initOptionalSupportFields
Java_sun_management_VMManagementImpl_isThreadAllocatedMemoryEnabled
Java_sun_management_VMManagementImpl_isThreadContentionMonitoringEnabled
Java_sun_management_VMManagementImpl_isThreadCpuTimeEnabled

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 780B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 154B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/mlib_image.dll
.dll windows:5 windows x64 arch:x64

7e36fb3e5fcccea47b7bd3c285648a54

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\mlib_image.pdb

Imports

msvcr100

_unlock
__clean_type_info_names_internal
_lock
_onexit
__crt_debugger_hook
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
free
malloc
memcpy
__dllonexit
memset

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
GetSystemTimeAsFileTime

Exports

Exports

j2d_mlib_ImageAffine
j2d_mlib_ImageConvKernelConvert
j2d_mlib_ImageConvMxN
j2d_mlib_ImageCreate
j2d_mlib_ImageCreateStruct
j2d_mlib_ImageDelete
j2d_mlib_ImageLookUp

Sections

.text
Size: 561KB - Virtual size: 561KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/msvcr100.dll
.dll windows:5 windows x64 arch:x64

1208bcdc77cffee6a6813646321cfc79

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:cf:3e:00:00:00:00:00:0f
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07/12/2009, 22:40

Not After

07/03/2011, 22:40

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2008, 19:02

Not After

25/07/2013, 19:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

15:8f:4f:d5:2b:51:08:be:bb:a8:3f:39:3f:ef:69:d5:9d:e7:5a:55
Signer

Actual PE Digest

15:8f:4f:d5:2b:51:08:be:bb:a8:3f:39:3f:ef:69:d5:9d:e7:5a:55

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

msvcr100.amd64.pdb

Imports

kernel32

EncodePointer
DecodePointer
RaiseException
RtlPcToFileHeader
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetCurrentThreadId
FlsSetValue
FlsGetValue
GetCommandLineW
GetCommandLineA
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitThread
CloseHandle
GetLastError
ResumeThread
CreateThread
FlsFree
SetLastError
GetCurrentThread
FlsAlloc
FindNextFileA
FindFirstFileExA
FindClose
FindNextFileW
FindFirstFileExW
GetLogicalDrives
GetDiskFreeSpaceA
FileTimeToSystemTime
FileTimeToLocalFileTime
SetErrorMode
Sleep
Beep
GetFileAttributesA
SetFileAttributesA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetCurrentDirectoryW
SetCurrentDirectoryW
GetFullPathNameA
GetDriveTypeW
GetCurrentProcessId
CreateDirectoryA
MoveFileA
RemoveDirectoryA
GetDriveTypeA
DeleteFileA
GetFileAttributesW
SetEnvironmentVariableW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
MoveFileW
RemoveDirectoryW
DeleteFileW
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
LoadLibraryA
FreeLibrary
CreateProcessW
ReadFile
DuplicateHandle
GetCurrentProcess
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetLocalTime
WideCharToMultiByte
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetLocalTime
TlsGetValue
TlsSetValue
InterlockedPopEntrySList
InterlockedFlushSList
QueryDepthSList
InterlockedPushEntrySList
CreateTimerQueue
CreateTimerQueueTimer
DeleteTimerQueueTimer
SetEvent
CreateEventW
SwitchToThread
SignalObjectAndWait
TryEnterCriticalSection
GetTickCount
VirtualFree
GetVersionExW
SetThreadPriority
VirtualAlloc
GetLogicalProcessorInformation
GetSystemInfo
GetProcessAffinityMask
VirtualProtect
SetThreadAffinityMask
InitializeSListHead
ReleaseSemaphore
CreateSemaphoreW
WaitForMultipleObjects
TlsAlloc
TlsFree
GetThreadPriority
LoadLibraryW
SleepEx
OutputDebugStringW
FreeLibraryAndExitThread
GetModuleHandleA
GetThreadTimes
DebugBreak
MultiByteToWideChar
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetDateFormatA
GetTimeFormatA
GetDateFormatW
GetTimeFormatW
RtlLookupFunctionEntry
RtlUnwindEx
HeapAlloc
HeapFree
HeapSetInformation
GetVersion
HeapCreate
HeapDestroy
HeapQueryInformation
HeapReAlloc
HeapSize
HeapValidate
HeapCompact
HeapWalk
SetThreadStackGuarantee
VirtualQuery
SetHandleCount
GetFileType
GetStartupInfoW
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
CreateFileW
SetFilePointer
GetConsoleCP
GetConsoleMode
FlushFileBuffers
CreatePipe
SetStdHandle
ReadConsoleInputA
SetConsoleMode
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
WriteConsoleW
ReadConsoleW
SetEndOfFile
GetProcessHeap
LockFile
UnlockFile
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
TerminateProcess
SetConsoleCtrlHandler
GetLocaleInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
LCMapStringW
CompareStringW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale

Exports

Exports

$I10_OUTPUT
??0?$_SpinWait@$00@details@Concurrency@@QEAA@P6AXXZ@Z
??0?$_SpinWait@$0A@@details@Concurrency@@QEAA@P6AXXZ@Z
??0SchedulerPolicy@Concurrency@@QEAA@AEBV01@@Z
??0SchedulerPolicy@Concurrency@@QEAA@XZ
??0SchedulerPolicy@Concurrency@@QEAA@_KZZ
??0_NonReentrantBlockingLock@details@Concurrency@@QEAA@XZ
??0_NonReentrantPPLLock@details@Concurrency@@QEAA@XZ
??0_ReaderWriterLock@details@Concurrency@@QEAA@XZ
??0_ReentrantBlockingLock@details@Concurrency@@QEAA@XZ
??0_ReentrantLock@details@Concurrency@@QEAA@XZ
??0_ReentrantPPLLock@details@Concurrency@@QEAA@XZ
??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QEAA@AEAV123@@Z
??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QEAA@AEAV123@@Z
??0_SpinLock@details@Concurrency@@QEAA@AECJ@Z
??0_TaskCollection@details@Concurrency@@QEAA@XZ
??0_Timer@details@Concurrency@@IEAA@I_N@Z
??0__non_rtti_object@std@@QEAA@AEBV01@@Z
??0__non_rtti_object@std@@QEAA@PEBD@Z
??0bad_cast@std@@AEAA@PEBQEBD@Z
??0bad_cast@std@@QEAA@AEBV01@@Z
??0bad_cast@std@@QEAA@PEBD@Z
??0bad_target@Concurrency@@QEAA@PEBD@Z
??0bad_target@Concurrency@@QEAA@XZ
??0bad_typeid@std@@QEAA@AEBV01@@Z
??0bad_typeid@std@@QEAA@PEBD@Z
??0context_self_unblock@Concurrency@@QEAA@PEBD@Z
??0context_self_unblock@Concurrency@@QEAA@XZ
??0context_unblock_unbalanced@Concurrency@@QEAA@PEBD@Z
??0context_unblock_unbalanced@Concurrency@@QEAA@XZ
??0critical_section@Concurrency@@QEAA@XZ
??0default_scheduler_exists@Concurrency@@QEAA@PEBD@Z
??0default_scheduler_exists@Concurrency@@QEAA@XZ
??0event@Concurrency@@QEAA@XZ
??0exception@std@@QEAA@AEBQEBD@Z
??0exception@std@@QEAA@AEBQEBDH@Z
??0exception@std@@QEAA@AEBV01@@Z
??0exception@std@@QEAA@XZ
??0improper_lock@Concurrency@@QEAA@PEBD@Z
??0improper_lock@Concurrency@@QEAA@XZ
??0improper_scheduler_attach@Concurrency@@QEAA@PEBD@Z
??0improper_scheduler_attach@Concurrency@@QEAA@XZ
??0improper_scheduler_detach@Concurrency@@QEAA@PEBD@Z
??0improper_scheduler_detach@Concurrency@@QEAA@XZ
??0improper_scheduler_reference@Concurrency@@QEAA@PEBD@Z
??0improper_scheduler_reference@Concurrency@@QEAA@XZ
??0invalid_link_target@Concurrency@@QEAA@PEBD@Z
??0invalid_link_target@Concurrency@@QEAA@XZ
??0invalid_multiple_scheduling@Concurrency@@QEAA@PEBD@Z
??0invalid_multiple_scheduling@Concurrency@@QEAA@XZ
??0invalid_operation@Concurrency@@QEAA@PEBD@Z
??0invalid_operation@Concurrency@@QEAA@XZ
??0invalid_oversubscribe_operation@Concurrency@@QEAA@PEBD@Z
??0invalid_oversubscribe_operation@Concurrency@@QEAA@XZ
??0invalid_scheduler_policy_key@Concurrency@@QEAA@PEBD@Z
??0invalid_scheduler_policy_key@Concurrency@@QEAA@XZ
??0invalid_scheduler_policy_thread_specification@Concurrency@@QEAA@PEBD@Z
??0invalid_scheduler_policy_thread_specification@Concurrency@@QEAA@XZ
??0invalid_scheduler_policy_value@Concurrency@@QEAA@PEBD@Z
??0invalid_scheduler_policy_value@Concurrency@@QEAA@XZ
??0message_not_found@Concurrency@@QEAA@PEBD@Z
??0message_not_found@Concurrency@@QEAA@XZ
??0missing_wait@Concurrency@@QEAA@PEBD@Z
??0missing_wait@Concurrency@@QEAA@XZ
??0nested_scheduler_missing_detach@Concurrency@@QEAA@PEBD@Z
??0nested_scheduler_missing_detach@Concurrency@@QEAA@XZ
??0operation_timed_out@Concurrency@@QEAA@PEBD@Z
??0operation_timed_out@Concurrency@@QEAA@XZ
??0reader_writer_lock@Concurrency@@QEAA@XZ
??0scheduler_not_attached@Concurrency@@QEAA@PEBD@Z
??0scheduler_not_attached@Concurrency@@QEAA@XZ
??0scheduler_resource_allocation_error@Concurrency@@QEAA@J@Z
??0scheduler_resource_allocation_error@Concurrency@@QEAA@PEBDJ@Z
??0scoped_lock@critical_section@Concurrency@@QEAA@AEAV12@@Z
??0scoped_lock@reader_writer_lock@Concurrency@@QEAA@AEAV12@@Z
??0scoped_lock_read@reader_writer_lock@Concurrency@@QEAA@AEAV12@@Z
??0task_canceled@details@Concurrency@@QEAA@PEBD@Z
??0task_canceled@details@Concurrency@@QEAA@XZ
??0unsupported_os@Concurrency@@QEAA@PEBD@Z
??0unsupported_os@Concurrency@@QEAA@XZ
??1SchedulerPolicy@Concurrency@@QEAA@XZ
??1_NonReentrantBlockingLock@details@Concurrency@@QEAA@XZ
??1_ReentrantBlockingLock@details@Concurrency@@QEAA@XZ
??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QEAA@XZ
??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QEAA@XZ
??1_SpinLock@details@Concurrency@@QEAA@XZ
??1_TaskCollection@details@Concurrency@@QEAA@XZ
??1_Timer@details@Concurrency@@IEAA@XZ
??1__non_rtti_object@std@@UEAA@XZ
??1bad_cast@std@@UEAA@XZ
??1bad_typeid@std@@UEAA@XZ
??1critical_section@Concurrency@@QEAA@XZ
??1event@Concurrency@@QEAA@XZ
??1exception@std@@UEAA@XZ
??1reader_writer_lock@Concurrency@@QEAA@XZ
??1scoped_lock@critical_section@Concurrency@@QEAA@XZ
??1scoped_lock@reader_writer_lock@Concurrency@@QEAA@XZ
??1scoped_lock_read@reader_writer_lock@Concurrency@@QEAA@XZ
??1type_info@@UEAA@XZ
??2@YAPEAX_K@Z
??2@YAPEAX_KHPEBDH@Z
??3@YAXPEAX@Z
??4?$_SpinWait@$00@details@Concurrency@@QEAAAEAV012@AEBV012@@Z
??4?$_SpinWait@$0A@@details@Concurrency@@QEAAAEAV012@AEBV012@@Z
??4SchedulerPolicy@Concurrency@@QEAAAEAV01@AEBV01@@Z
??4__non_rtti_object@std@@QEAAAEAV01@AEBV01@@Z
??4bad_cast@std@@QEAAAEAV01@AEBV01@@Z
??4bad_typeid@std@@QEAAAEAV01@AEBV01@@Z
??4exception@std@@QEAAAEAV01@AEBV01@@Z
??8type_info@@QEBA_NAEBV0@@Z
??9type_info@@QEBA_NAEBV0@@Z
??_7__non_rtti_object@std@@6B@
??_7bad_cast@std@@6B@
??_7bad_typeid@std@@6B@
??_7exception@@6B@
??_7exception@std@@6B@
??_F?$_SpinWait@$00@details@Concurrency@@QEAAXXZ
??_F?$_SpinWait@$0A@@details@Concurrency@@QEAAXXZ
??_Fbad_cast@std@@QEAAXXZ
??_Fbad_typeid@std@@QEAAXXZ
??_U@YAPEAX_K@Z
??_U@YAPEAX_KHPEBDH@Z
??_V@YAXPEAX@Z
?Alloc@Concurrency@@YAPEAX_K@Z
?Block@Context@Concurrency@@SAXXZ
?Create@CurrentScheduler@Concurrency@@SAXAEBVSchedulerPolicy@2@@Z
?Create@Scheduler@Concurrency@@SAPEAV12@AEBVSchedulerPolicy@2@@Z
?CreateResourceManager@Concurrency@@YAPEAUIResourceManager@1@XZ
?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPEAVScheduleGroup@2@XZ
?CurrentContext@Context@Concurrency@@SAPEAV12@XZ
?Detach@CurrentScheduler@Concurrency@@SAXXZ
?DisableTracing@Concurrency@@YAJXZ
?EnableTracing@Concurrency@@YAJXZ
?Free@Concurrency@@YAXPEAX@Z
?Get@CurrentScheduler@Concurrency@@SAPEAVScheduler@2@XZ
?GetExecutionContextId@Concurrency@@YAIXZ
?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ
?GetOSVersion@Concurrency@@YA?AW4OSVersion@IResourceManager@1@XZ
?GetPolicy@CurrentScheduler@Concurrency@@SA?AVSchedulerPolicy@2@XZ
?GetPolicyValue@SchedulerPolicy@Concurrency@@QEBAIW4PolicyElementKey@2@@Z
?GetProcessorCount@Concurrency@@YAIXZ
?GetProcessorNodeCount@Concurrency@@YAIXZ
?GetSchedulerId@Concurrency@@YAIXZ
?GetSharedTimerQueue@details@Concurrency@@YAPEAXXZ
?Id@Context@Concurrency@@SAIXZ
?Id@CurrentScheduler@Concurrency@@SAIXZ
?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ
?Log2@details@Concurrency@@YAK_K@Z
?Oversubscribe@Context@Concurrency@@SAX_N@Z
?RegisterShutdownEvent@CurrentScheduler@Concurrency@@SAXPEAX@Z
?ResetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXXZ
?ScheduleGroupId@Context@Concurrency@@SAIXZ
?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPEAX@Z0@Z
?SetConcurrencyLimits@SchedulerPolicy@Concurrency@@QEAAXII@Z
?SetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXAEBVSchedulerPolicy@2@@Z
?SetPolicyValue@SchedulerPolicy@Concurrency@@QEAAIW4PolicyElementKey@2@I@Z
?VirtualProcessorId@Context@Concurrency@@SAIXZ
?Yield@Context@Concurrency@@SAXXZ
?_Abort@_StructuredTaskCollection@details@Concurrency@@AEAAXXZ
?_Acquire@_NonReentrantBlockingLock@details@Concurrency@@QEAAXXZ
?_Acquire@_NonReentrantPPLLock@details@Concurrency@@QEAAXPEAX@Z
?_Acquire@_ReentrantBlockingLock@details@Concurrency@@QEAAXXZ
?_Acquire@_ReentrantLock@details@Concurrency@@QEAAXXZ
?_Acquire@_ReentrantPPLLock@details@Concurrency@@QEAAXPEAX@Z
?_AcquireRead@_ReaderWriterLock@details@Concurrency@@QEAAXXZ
?_AcquireWrite@_ReaderWriterLock@details@Concurrency@@QEAAXXZ
?_Cancel@_StructuredTaskCollection@details@Concurrency@@QEAAXXZ
?_Cancel@_TaskCollection@details@Concurrency@@QEAAXXZ
?_CheckTaskCollection@_UnrealizedChore@details@Concurrency@@IEAAXXZ
?_ConcRT_Assert@details@Concurrency@@YAXPEBD0H@Z
?_ConcRT_CoreAssert@details@Concurrency@@YAXPEBD0H@Z
?_ConcRT_DumpMessage@details@Concurrency@@YAXPEB_WZZ
?_ConcRT_Trace@details@Concurrency@@YAXHPEB_WZZ
?_Copy_str@exception@std@@AEAAXPEBD@Z
?_DoYield@?$_SpinWait@$00@details@Concurrency@@IEAAXXZ
?_DoYield@?$_SpinWait@$0A@@details@Concurrency@@IEAAXXZ
?_IsCanceling@_StructuredTaskCollection@details@Concurrency@@QEAA_NXZ
?_IsCanceling@_TaskCollection@details@Concurrency@@QEAA_NXZ
?_Name_base@type_info@@CAPEBDPEBV1@PEAU__type_info_node@@@Z
?_Name_base_internal@type_info@@CAPEBDPEBV1@PEAU__type_info_node@@@Z
?_NumberOfSpins@?$_SpinWait@$00@details@Concurrency@@IEAAKXZ
?_NumberOfSpins@?$_SpinWait@$0A@@details@Concurrency@@IEAAKXZ
?_Release@_NonReentrantBlockingLock@details@Concurrency@@QEAAXXZ
?_Release@_NonReentrantPPLLock@details@Concurrency@@QEAAXXZ
?_Release@_ReentrantBlockingLock@details@Concurrency@@QEAAXXZ
?_Release@_ReentrantLock@details@Concurrency@@QEAAXXZ
?_Release@_ReentrantPPLLock@details@Concurrency@@QEAAXXZ
?_ReleaseRead@_ReaderWriterLock@details@Concurrency@@QEAAXXZ
?_ReleaseWrite@_ReaderWriterLock@details@Concurrency@@QEAAXXZ
?_Reset@?$_SpinWait@$00@details@Concurrency@@IEAAXXZ
?_Reset@?$_SpinWait@$0A@@details@Concurrency@@IEAAXXZ
?_RunAndWait@_StructuredTaskCollection@details@Concurrency@@QEAA?AW4_TaskCollectionStatus@23@PEAV_UnrealizedChore@23@@Z
?_RunAndWait@_TaskCollection@details@Concurrency@@QEAA?AW4_TaskCollectionStatus@23@PEAV_UnrealizedChore@23@@Z
?_Schedule@_StructuredTaskCollection@details@Concurrency@@QEAAXPEAV_UnrealizedChore@23@@Z
?_Schedule@_TaskCollection@details@Concurrency@@QEAAXPEAV_UnrealizedChore@23@@Z
?_SetSpinCount@?$_SpinWait@$00@details@Concurrency@@QEAAXI@Z
?_SetSpinCount@?$_SpinWait@$0A@@details@Concurrency@@QEAAXI@Z
?_ShouldSpinAgain@?$_SpinWait@$00@details@Concurrency@@IEAA_NXZ
?_ShouldSpinAgain@?$_SpinWait@$0A@@details@Concurrency@@IEAA_NXZ
?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QEAA_NXZ
?_SpinOnce@?$_SpinWait@$0A@@details@Concurrency@@QEAA_NXZ
?_SpinYield@Context@Concurrency@@SAXXZ
?_Start@_Timer@details@Concurrency@@IEAAXXZ
?_Stop@_Timer@details@Concurrency@@IEAAXXZ
?_Tidy@exception@std@@AEAAXXZ
?_Trace_ppl_function@Concurrency@@YAXAEBU_GUID@@EW4ConcRT_EventType@1@@Z
?_TryAcquire@_NonReentrantBlockingLock@details@Concurrency@@QEAA_NXZ
?_TryAcquire@_ReentrantBlockingLock@details@Concurrency@@QEAA_NXZ
?_TryAcquire@_ReentrantLock@details@Concurrency@@QEAA_NXZ
?_TryAcquireWrite@_ReaderWriterLock@details@Concurrency@@QEAA_NXZ
?_Type_info_dtor@type_info@@CAXPEAV1@@Z
?_Type_info_dtor_internal@type_info@@CAXPEAV1@@Z
?_UnderlyingYield@details@Concurrency@@YAXXZ
?_ValidateExecute@@YAHP6A_JXZ@Z
?_ValidateRead@@YAHPEBXI@Z
?_ValidateWrite@@YAHPEAXI@Z
?_Value@_SpinCount@details@Concurrency@@SAIXZ
?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?__ExceptionPtrCompare@@YA_NPEBX0@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?__ExceptionPtrCopyException@@YAXPEAXPEBX1@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?__ExceptionPtrRethrow@@YAXPEBX@Z
?_inconsistency@@YAXXZ
?_invalid_parameter@@YAXPEBG00I_K@Z
?_is_exception_typeof@@YAHAEBVtype_info@@PEAU_EXCEPTION_POINTERS@@@Z
?_name_internal_method@type_info@@QEBAPEBDPEAU__type_info_node@@@Z
?_open@@YAHPEBDHH@Z
?_query_new_handler@@YAP6AH_K@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AH_K@ZH@Z
?_set_new_handler@@YAP6AH_K@ZP6AH0@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPEAU_EXCEPTION_POINTERS@@@ZH@Z
?_set_se_translator@@YAP6AXIPEAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?_sopen@@YAHPEBDHHH@Z
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
?_wopen@@YAHPEB_WHH@Z
?_wsopen@@YAHPEB_WHHH@Z
?before@type_info@@QEBAHAEBV1@@Z
?get_error_code@scheduler_resource_allocation_error@Concurrency@@QEBAJXZ
?lock@critical_section@Concurrency@@QEAAXXZ
?lock@reader_writer_lock@Concurrency@@QEAAXXZ
?lock_read@reader_writer_lock@Concurrency@@QEAAXXZ
?name@type_info@@QEBAPEBDPEAU__type_info_node@@@Z
?native_handle@critical_section@Concurrency@@QEAAAEAV12@XZ
?raw_name@type_info@@QEBAPEBDXZ
?reset@event@Concurrency@@QEAAXXZ
?set@event@Concurrency@@QEAAXXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZH@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZH@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?terminate@@YAXXZ
?try_lock@critical_section@Concurrency@@QEAA_NXZ
?try_lock@reader_writer_lock@Concurrency@@QEAA_NXZ
?try_lock_read@reader_writer_lock@Concurrency@@QEAA_NXZ
?unexpected@@YAXXZ
?unlock@critical_section@Concurrency@@QEAAXXZ
?unlock@reader_writer_lock@Concurrency@@QEAAXXZ
?wait@Concurrency@@YAXI@Z
?wait@event@Concurrency@@QEAA_KI@Z
?wait_for_multiple@event@Concurrency@@SA_KPEAPEAV12@_K_NI@Z
?what@exception@std@@UEBAPEBDXZ
_CRT_RTC_INIT
_CRT_RTC_INITW
_CreateFrameInfo
_CxxThrowException
_FindAndUnlinkFrame
_GetImageBase
_GetThrowImageBase
_Getdays
_Getmonths
_Gettnames
_HUGE
_IsExceptionObjectToBeDestroyed
_SetImageBase
_SetThrowImageBase
_Strftime
_XcptFilter
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__C_specific_handler
__CppXcptFilter
__CxxCallUnwindDelDtor
__CxxCallUnwindDtor
__CxxCallUnwindStdDelDtor
__CxxCallUnwindVecDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__NLG_Dispatch2
__NLG_Return2
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__STRINGTOLD_L
__TypeMatch
___lc_codepage_func
___lc_collate_cp_func
___lc_handle_func
___mb_cur_max_func
___mb_cur_max_l_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__clean_type_info_names_internal
__create_locale
__crtCompareStringA
__crtCompareStringW
__crtLCMapStringA
__crtLCMapStringW
__crt_debugger_hook
__daylight
__dllonexit
__doserrno
__dstbias
__fls_getvalue
__fls_setvalue
__fpecode
__free_locale
__get_current_locale
__get_flsindex
__get_tlsindex
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__iswcsym
__iswcsymf
__lconv
__lconv_init
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__report_gsfailure
__set_app_type
__set_flsgetvalue
__setlc_active
__setusermatherr
__strncnt
__swprintf_l
__sys_errlist
__sys_nerr
__threadhandle
__threadid
__timezone
__toascii
__tzname
__unDName
__unDNameEx
__unDNameHelper
__uncaught_exception
__unguarded_readlc_active
__vswprintf_l
__wargv
__wcserror
__wcserror_s
__wcsncnt
__wgetmainargs
__winitenv
_abs64
_access
_access_s
_acmdln
_aligned_free
_aligned_malloc
_aligned_msize
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_offset_recalloc
_aligned_realloc
_aligned_recalloc
_amsg_exit
_assert
_atodbl
_atodbl_l
_atof_l
_atoflt
_atoflt_l
_atoi64
_atoi64_l
_atoi_l
_atol_l
_atoldbl
_atoldbl_l
_beep
_beginthread
_beginthreadex
_byteswap_uint64
_byteswap_ulong
_byteswap_ushort
_c_exit
_cabs
_callnewh
_calloc_crt
_cexit
_cgets
_cgets_s
_cgetws
_cgetws_s
_chdir
_chdrive
_chgsign
_chgsignf
_chmod
_chsize
_chsize_s
_clearfp
_close
_commit
_commode
_configthreadlocale
_control87
_controlfp
_controlfp_s
_copysign
_copysignf
_cprintf
_cprintf_l
_cprintf_p
_cprintf_p_l
_cprintf_s
_cprintf_s_l
_cputs
_cputws
_creat
_create_locale
_cscanf
_cscanf_l
_cscanf_s
_cscanf_s_l
_ctime32
_ctime32_s
_ctime64
_ctime64_s
_cwait
_cwprintf
_cwprintf_l
_cwprintf_p
_cwprintf_p_l
_cwprintf_s
_cwprintf_s_l
_cwscanf
_cwscanf_l
_cwscanf_s
_cwscanf_s_l
_daylight
_difftime32
_difftime64
_dosmaperr
_dstbias
_dup
_dup2
_dupenv_s
_ecvt
_ecvt_s
_encoded_null
_endthread

Sections

.text
Size: 574KB - Virtual size: 573KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_CONST
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE

data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/net.dll
.dll windows:5 windows x64 arch:x64

c5e19d101d811ae03f145975c5eb7e16

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\net.pdb

Imports

ws2_32

htons
WSAGetLastError
recvfrom
WSAIoctl
closesocket
setsockopt
socket
WSASetLastError
connect
ntohs
getsockname
sendto
ioctlsocket
__WSAFDIsSet
WSASendDisconnect
WSAStartup
WSACleanup
getprotobyname
recv
getnameinfo
getaddrinfo
freeaddrinfo
bind
WSACreateEvent
WSAEventSelect
select
getsockopt
WSACloseEvent
htonl
gethostbyaddr
ntohl
gethostbyname
gethostname
send
accept
listen
shutdown

jvm

jio_snprintf
JVM_InitializeSocketLibrary
JVM_CurrentTimeMillis

java

JNU_NewStringPlatform
JNU_ThrowByNameWithMessageAndLastError
getErrorString
JNU_ThrowNullPointerException
JNU_ThrowOutOfMemoryError
JNU_ThrowByName
JNU_ThrowByNameWithLastError
JNU_ReleaseStringPlatformChars
JNU_GetStringPlatformChars

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

msvcr100

__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
strcat
wcscpy
_snprintf_s
__dllonexit
_lock
_onexit
_unlock
fprintf
__iob_func
sscanf
strchr
strstr
sprintf
strcmp
strncmp
strtok
strlen
memset
free
malloc
strcpy
isspace
memcpy
_errno
realloc
wcslen
strncpy
calloc
strncpy_s

kernel32

GetTickCount
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
DecodePointer
EncodePointer
RaiseException
LoadLibraryA
GetCurrentThreadId
FreeLibrary
GetProcAddress
LocalAlloc
InitializeCriticalSection
EnterCriticalSection
GetVersionExA
LeaveCriticalSection
GetOverlappedResult
MultiByteToWideChar
FormatMessageA
LocalFree
VerSetConditionMask
VerifyVersionInfoW
Sleep
SetHandleInformation
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLastError

Exports

Exports

JNI_OnLoad
Java_java_net_DatagramPacket_init
Java_java_net_DualStackPlainDatagramSocketImpl_dataAvailable
Java_java_net_DualStackPlainDatagramSocketImpl_initIDs
Java_java_net_DualStackPlainDatagramSocketImpl_socketBind
Java_java_net_DualStackPlainDatagramSocketImpl_socketClose
Java_java_net_DualStackPlainDatagramSocketImpl_socketConnect
Java_java_net_DualStackPlainDatagramSocketImpl_socketCreate
Java_java_net_DualStackPlainDatagramSocketImpl_socketDisconnect
Java_java_net_DualStackPlainDatagramSocketImpl_socketGetIntOption
Java_java_net_DualStackPlainDatagramSocketImpl_socketLocalAddress
Java_java_net_DualStackPlainDatagramSocketImpl_socketLocalPort
Java_java_net_DualStackPlainDatagramSocketImpl_socketReceiveOrPeekData
Java_java_net_DualStackPlainDatagramSocketImpl_socketSend
Java_java_net_DualStackPlainDatagramSocketImpl_socketSetIntOption
Java_java_net_DualStackPlainSocketImpl_accept0
Java_java_net_DualStackPlainSocketImpl_available0
Java_java_net_DualStackPlainSocketImpl_bind0
Java_java_net_DualStackPlainSocketImpl_close0
Java_java_net_DualStackPlainSocketImpl_configureBlocking
Java_java_net_DualStackPlainSocketImpl_connect0
Java_java_net_DualStackPlainSocketImpl_getIntOption
Java_java_net_DualStackPlainSocketImpl_initIDs
Java_java_net_DualStackPlainSocketImpl_listen0
Java_java_net_DualStackPlainSocketImpl_localAddress
Java_java_net_DualStackPlainSocketImpl_localPort0
Java_java_net_DualStackPlainSocketImpl_sendOOB
Java_java_net_DualStackPlainSocketImpl_setIntOption
Java_java_net_DualStackPlainSocketImpl_shutdown0
Java_java_net_DualStackPlainSocketImpl_socket0
Java_java_net_DualStackPlainSocketImpl_waitForConnect
Java_java_net_DualStackPlainSocketImpl_waitForNewConnection
Java_java_net_Inet4AddressImpl_getHostByAddr
Java_java_net_Inet4AddressImpl_getLocalHostName
Java_java_net_Inet4AddressImpl_isReachable0
Java_java_net_Inet4AddressImpl_lookupAllHostAddr
Java_java_net_Inet4Address_init
Java_java_net_Inet6AddressImpl_getHostByAddr
Java_java_net_Inet6AddressImpl_getLocalHostName
Java_java_net_Inet6AddressImpl_isReachable0
Java_java_net_Inet6AddressImpl_lookupAllHostAddr
Java_java_net_Inet6Address_init
Java_java_net_InetAddressImplFactory_isIPv6Supported
Java_java_net_InetAddress_init
Java_java_net_NetworkInterface_getAll
Java_java_net_NetworkInterface_getAll_XP
Java_java_net_NetworkInterface_getByIndex0
Java_java_net_NetworkInterface_getByIndex0_XP
Java_java_net_NetworkInterface_getByInetAddress0
Java_java_net_NetworkInterface_getByInetAddress0_XP
Java_java_net_NetworkInterface_getByName0
Java_java_net_NetworkInterface_getByName0_XP
Java_java_net_NetworkInterface_getMTU0
Java_java_net_NetworkInterface_getMTU0_XP
Java_java_net_NetworkInterface_getMacAddr0
Java_java_net_NetworkInterface_getMacAddr0_XP
Java_java_net_NetworkInterface_init
Java_java_net_NetworkInterface_isLoopback0
Java_java_net_NetworkInterface_isLoopback0_XP
Java_java_net_NetworkInterface_isP2P0
Java_java_net_NetworkInterface_isP2P0_XP
Java_java_net_NetworkInterface_isUp0
Java_java_net_NetworkInterface_isUp0_XP
Java_java_net_NetworkInterface_supportsMulticast0
Java_java_net_NetworkInterface_supportsMulticast0_XP
Java_java_net_SocketInputStream_init
Java_java_net_SocketInputStream_socketRead0
Java_java_net_SocketOutputStream_init
Java_java_net_SocketOutputStream_socketWrite0
Java_java_net_TwoStacksPlainDatagramSocketImpl_bind0
Java_java_net_TwoStacksPlainDatagramSocketImpl_connect0
Java_java_net_TwoStacksPlainDatagramSocketImpl_dataAvailable
Java_java_net_TwoStacksPlainDatagramSocketImpl_datagramSocketClose
Java_java_net_TwoStacksPlainDatagramSocketImpl_datagramSocketCreate
Java_java_net_TwoStacksPlainDatagramSocketImpl_disconnect0
Java_java_net_TwoStacksPlainDatagramSocketImpl_getTTL
Java_java_net_TwoStacksPlainDatagramSocketImpl_getTimeToLive
Java_java_net_TwoStacksPlainDatagramSocketImpl_init
Java_java_net_TwoStacksPlainDatagramSocketImpl_join
Java_java_net_TwoStacksPlainDatagramSocketImpl_leave
Java_java_net_TwoStacksPlainDatagramSocketImpl_peek
Java_java_net_TwoStacksPlainDatagramSocketImpl_peekData
Java_java_net_TwoStacksPlainDatagramSocketImpl_receive0
Java_java_net_TwoStacksPlainDatagramSocketImpl_send
Java_java_net_TwoStacksPlainDatagramSocketImpl_setTTL
Java_java_net_TwoStacksPlainDatagramSocketImpl_setTimeToLive
Java_java_net_TwoStacksPlainDatagramSocketImpl_socketGetOption
Java_java_net_TwoStacksPlainDatagramSocketImpl_socketLocalAddress
Java_java_net_TwoStacksPlainDatagramSocketImpl_socketNativeSetOption
Java_java_net_TwoStacksPlainSocketImpl_initProto
Java_java_net_TwoStacksPlainSocketImpl_socketAccept
Java_java_net_TwoStacksPlainSocketImpl_socketAvailable
Java_java_net_TwoStacksPlainSocketImpl_socketBind
Java_java_net_TwoStacksPlainSocketImpl_socketClose0
Java_java_net_TwoStacksPlainSocketImpl_socketConnect
Java_java_net_TwoStacksPlainSocketImpl_socketCreate
Java_java_net_TwoStacksPlainSocketImpl_socketGetOption
Java_java_net_TwoStacksPlainSocketImpl_socketListen
Java_java_net_TwoStacksPlainSocketImpl_socketNativeSetOption
Java_java_net_TwoStacksPlainSocketImpl_socketSendUrgentData
Java_java_net_TwoStacksPlainSocketImpl_socketShutdown
Java_sun_net_ExtendedOptionsImpl_flowSupported
Java_sun_net_ExtendedOptionsImpl_getFlowOption
Java_sun_net_ExtendedOptionsImpl_init
Java_sun_net_ExtendedOptionsImpl_setFlowOption
Java_sun_net_PortConfig_getLower0
Java_sun_net_PortConfig_getUpper0
Java_sun_net_dns_ResolverConfigurationImpl_init0
Java_sun_net_dns_ResolverConfigurationImpl_loadDNSconfig0
Java_sun_net_dns_ResolverConfigurationImpl_notifyAddrChange0
Java_sun_net_spi_DefaultProxySelector_getSystemProxy
Java_sun_net_spi_DefaultProxySelector_init
Java_sun_net_www_protocol_http_ntlm_NTLMAuthSequence_getCredentialsHandle
Java_sun_net_www_protocol_http_ntlm_NTLMAuthSequence_getNextToken
Java_sun_net_www_protocol_http_ntlm_NTLMAuthSequence_initFirst
NET_Bind
NET_BindV6
NET_EnableFastTcpLoopback
NET_GetPortFromSockaddr
NET_GetSockOpt
NET_InetAddressToSockaddr
NET_MapSocketOption
NET_MapSocketOptionV6
NET_SetSockOpt
NET_SockaddrEqualsInetAddress
NET_SockaddrToInetAddress
NET_SocketClose
NET_ThrowNew
NET_Timeout
NET_Timeout2
NET_WinBind
initInetAddressIDs
ipv6_available

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/nio.dll
.dll windows:5 windows x64 arch:x64

b036394e86781c7f9e783c7bf2c718b4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\nio.pdb

Imports

ws2_32

WSAGetLastError
recvfrom
WSAIoctl
connect
sendto
WSARecv
WSASend
ioctlsocket
WSAEventSelect
setsockopt
socket
listen
getsockopt
getsockname
getpeername
htonl
ntohl
shutdown
__WSAFDIsSet
recv
closesocket
WSASendDisconnect
send
accept
select

java

JNU_ThrowByName
JNU_ThrowIOExceptionWithLastError
Java_sun_security_provider_NativeSeedGenerator_nativeGenerateSeed
JNU_NewObjectByName
JNU_ThrowInternalError
JNU_ThrowOutOfMemoryError

net

NET_GetPortFromSockaddr
NET_SockaddrEqualsInetAddress
NET_SockaddrToInetAddress
initInetAddressIDs
ipv6_available
NET_EnableFastTcpLoopback
NET_ThrowNew
NET_WinBind
NET_GetSockOpt
NET_SetSockOpt
NET_InetAddressToSockaddr

advapi32

LookupAccountNameW
LookupPrivilegeValueW
MapGenericMask
AccessCheck
AdjustTokenPrivileges
GetTokenInformation
SetThreadToken
DuplicateTokenEx
OpenThreadToken
OpenProcessToken
ConvertStringSidToSidW
ConvertSidToStringSidW
GetLengthSid
LookupAccountSidW
AddAccessDeniedAceEx
AddAccessAllowedAceEx
GetAce
GetAclInformation
SetSecurityDescriptorDacl
GetSecurityDescriptorDacl
SetSecurityDescriptorOwner
GetSecurityDescriptorOwner
GetFileSecurityW
SetFileSecurityW
InitializeAcl
InitializeSecurityDescriptor
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

msvcr100

_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
_errno
wcslen
_get_osfhandle
malloc
free
memset
_onexit

mswsock

TransmitFile

kernel32

GetFileAttributesExW
SetFileAttributesW
GetFileAttributesW
GetLogicalDrives
MoveFileExW
CopyFileExW
FindClose
SetFileTime
FindFirstFileW
RemoveDirectoryW
CreateDirectoryW
DeleteFileW
DeviceIoControl
LocalFree
CreateEventW
GetVolumeInformationW
GetDriveTypeW
GetDiskFreeSpaceExW
GetVolumePathNameW
GetCurrentThread
LocalAlloc
CreateHardLinkW
GetFullPathNameW
CancelIo
GetOverlappedResult
ReadDirectoryChangesW
BackupRead
BackupSeek
EncodePointer
DecodePointer
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
DisableThreadLibraryCalls
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
FindNextFileW
Sleep
SetHandleInformation
FlushViewOfFile
FormatMessageW
PostQueuedCompletionStatus
GetQueuedCompletionStatus
CreateIoCompletionPort
GetVersionExA
GetFileInformationByHandle
GetCurrentProcess
DuplicateHandle
UnlockFileEx
LockFileEx
GetFileSize
SetEndOfFile
FlushFileBuffers
WriteFile
ReadFile
SetFilePointer
UnmapViewOfFile
CreateFileW
GetModuleHandleExW
GetSystemInfo
CloseHandle
GetLastError
MapViewOfFile
CreateFileMappingA
GetProcAddress

Exports

Exports

Java_java_nio_MappedByteBuffer_force0
Java_java_nio_MappedByteBuffer_isLoaded0
Java_java_nio_MappedByteBuffer_load0
Java_sun_nio_ch_DatagramChannelImpl_disconnect0
Java_sun_nio_ch_DatagramChannelImpl_initIDs
Java_sun_nio_ch_DatagramChannelImpl_receive0
Java_sun_nio_ch_DatagramChannelImpl_send0
Java_sun_nio_ch_DatagramDispatcher_read0
Java_sun_nio_ch_DatagramDispatcher_readv0
Java_sun_nio_ch_DatagramDispatcher_write0
Java_sun_nio_ch_DatagramDispatcher_writev0
Java_sun_nio_ch_FileChannelImpl_close0
Java_sun_nio_ch_FileChannelImpl_initIDs
Java_sun_nio_ch_FileChannelImpl_map0
Java_sun_nio_ch_FileChannelImpl_position0
Java_sun_nio_ch_FileChannelImpl_transferTo0
Java_sun_nio_ch_FileChannelImpl_unmap0
Java_sun_nio_ch_FileDispatcherImpl_close0
Java_sun_nio_ch_FileDispatcherImpl_closeByHandle
Java_sun_nio_ch_FileDispatcherImpl_duplicateHandle
Java_sun_nio_ch_FileDispatcherImpl_force0
Java_sun_nio_ch_FileDispatcherImpl_lock0
Java_sun_nio_ch_FileDispatcherImpl_pread0
Java_sun_nio_ch_FileDispatcherImpl_pwrite0
Java_sun_nio_ch_FileDispatcherImpl_read0
Java_sun_nio_ch_FileDispatcherImpl_readv0
Java_sun_nio_ch_FileDispatcherImpl_release0
Java_sun_nio_ch_FileDispatcherImpl_size0
Java_sun_nio_ch_FileDispatcherImpl_truncate0
Java_sun_nio_ch_FileDispatcherImpl_write0
Java_sun_nio_ch_FileDispatcherImpl_writev0
Java_sun_nio_ch_FileKey_init
Java_sun_nio_ch_FileKey_initIDs
Java_sun_nio_ch_IOUtil_configureBlocking
Java_sun_nio_ch_IOUtil_drain
Java_sun_nio_ch_IOUtil_fdVal
Java_sun_nio_ch_IOUtil_initIDs
Java_sun_nio_ch_IOUtil_iovMax
Java_sun_nio_ch_IOUtil_randomBytes
Java_sun_nio_ch_IOUtil_setfdVal
Java_sun_nio_ch_Iocp_close0
Java_sun_nio_ch_Iocp_createIoCompletionPort
Java_sun_nio_ch_Iocp_getErrorMessage
Java_sun_nio_ch_Iocp_getQueuedCompletionStatus
Java_sun_nio_ch_Iocp_initIDs
Java_sun_nio_ch_Iocp_osMajorVersion
Java_sun_nio_ch_Iocp_postQueuedCompletionStatus
Java_sun_nio_ch_Net_bind0
Java_sun_nio_ch_Net_blockOrUnblock4
Java_sun_nio_ch_Net_blockOrUnblock6
Java_sun_nio_ch_Net_canIPv6SocketJoinIPv4Group0
Java_sun_nio_ch_Net_canJoin6WithIPv4Group0
Java_sun_nio_ch_Net_connect0
Java_sun_nio_ch_Net_getIntOption0
Java_sun_nio_ch_Net_getInterface4
Java_sun_nio_ch_Net_getInterface6
Java_sun_nio_ch_Net_initIDs
Java_sun_nio_ch_Net_isExclusiveBindAvailable
Java_sun_nio_ch_Net_isIPv6Available0
Java_sun_nio_ch_Net_joinOrDrop4
Java_sun_nio_ch_Net_joinOrDrop6
Java_sun_nio_ch_Net_listen
Java_sun_nio_ch_Net_localInetAddress
Java_sun_nio_ch_Net_localPort
Java_sun_nio_ch_Net_poll
Java_sun_nio_ch_Net_pollconnValue
Java_sun_nio_ch_Net_pollerrValue
Java_sun_nio_ch_Net_pollhupValue
Java_sun_nio_ch_Net_pollinValue
Java_sun_nio_ch_Net_pollnvalValue
Java_sun_nio_ch_Net_polloutValue
Java_sun_nio_ch_Net_remoteInetAddress
Java_sun_nio_ch_Net_remotePort
Java_sun_nio_ch_Net_setIntOption0
Java_sun_nio_ch_Net_setInterface4
Java_sun_nio_ch_Net_setInterface6
Java_sun_nio_ch_Net_shutdown
Java_sun_nio_ch_Net_socket0
Java_sun_nio_ch_ServerSocketChannelImpl_accept0
Java_sun_nio_ch_ServerSocketChannelImpl_initIDs
Java_sun_nio_ch_ServerSocketChannelImpl_listen
Java_sun_nio_ch_SocketChannelImpl_checkConnect
Java_sun_nio_ch_SocketChannelImpl_initIDs
Java_sun_nio_ch_SocketChannelImpl_sendOutOfBandData
Java_sun_nio_ch_SocketDispatcher_close0
Java_sun_nio_ch_SocketDispatcher_preClose0
Java_sun_nio_ch_SocketDispatcher_read0
Java_sun_nio_ch_SocketDispatcher_readv0
Java_sun_nio_ch_SocketDispatcher_write0
Java_sun_nio_ch_SocketDispatcher_writev0
Java_sun_nio_ch_WindowsAsynchronousFileChannelImpl_close0
Java_sun_nio_ch_WindowsAsynchronousFileChannelImpl_lockFile
Java_sun_nio_ch_WindowsAsynchronousFileChannelImpl_readFile
Java_sun_nio_ch_WindowsAsynchronousFileChannelImpl_writeFile
Java_sun_nio_ch_WindowsAsynchronousServerSocketChannelImpl_accept0
Java_sun_nio_ch_WindowsAsynchronousServerSocketChannelImpl_closesocket0
Java_sun_nio_ch_WindowsAsynchronousServerSocketChannelImpl_initIDs
Java_sun_nio_ch_WindowsAsynchronousServerSocketChannelImpl_updateAcceptContext
Java_sun_nio_ch_WindowsAsynchronousSocketChannelImpl_closesocket0
Java_sun_nio_ch_WindowsAsynchronousSocketChannelImpl_connect0
Java_sun_nio_ch_WindowsAsynchronousSocketChannelImpl_initIDs
Java_sun_nio_ch_WindowsAsynchronousSocketChannelImpl_read0
Java_sun_nio_ch_WindowsAsynchronousSocketChannelImpl_shutdown0
Java_sun_nio_ch_WindowsAsynchronousSocketChannelImpl_updateConnectContext
Java_sun_nio_ch_WindowsAsynchronousSocketChannelImpl_write0
Java_sun_nio_ch_WindowsSelectorImpl_00024SubSelector_poll0
Java_sun_nio_ch_WindowsSelectorImpl_discardUrgentData
Java_sun_nio_ch_WindowsSelectorImpl_resetWakeupSocket0
Java_sun_nio_ch_WindowsSelectorImpl_setWakeupSocket0
Java_sun_nio_fs_RegistryFileTypeDetector_queryStringValue
Java_sun_nio_fs_WindowsNativeDispatcher_AccessCheck
Java_sun_nio_fs_WindowsNativeDispatcher_AddAccessAllowedAceEx
Java_sun_nio_fs_WindowsNativeDispatcher_AddAccessDeniedAceEx
Java_sun_nio_fs_WindowsNativeDispatcher_AdjustTokenPrivileges
Java_sun_nio_fs_WindowsNativeDispatcher_BackupRead0
Java_sun_nio_fs_WindowsNativeDispatcher_BackupSeek
Java_sun_nio_fs_WindowsNativeDispatcher_CancelIo
Java_sun_nio_fs_WindowsNativeDispatcher_CloseHandle
Java_sun_nio_fs_WindowsNativeDispatcher_ConvertSidToStringSid
Java_sun_nio_fs_WindowsNativeDispatcher_ConvertStringSidToSid0
Java_sun_nio_fs_WindowsNativeDispatcher_CopyFileEx0
Java_sun_nio_fs_WindowsNativeDispatcher_CreateDirectory0
Java_sun_nio_fs_WindowsNativeDispatcher_CreateEvent
Java_sun_nio_fs_WindowsNativeDispatcher_CreateFile0
Java_sun_nio_fs_WindowsNativeDispatcher_CreateHardLink0
Java_sun_nio_fs_WindowsNativeDispatcher_CreateIoCompletionPort
Java_sun_nio_fs_WindowsNativeDispatcher_CreateSymbolicLink0
Java_sun_nio_fs_WindowsNativeDispatcher_DeleteFile0
Java_sun_nio_fs_WindowsNativeDispatcher_DeviceIoControlGetReparsePoint
Java_sun_nio_fs_WindowsNativeDispatcher_DeviceIoControlSetSparse
Java_sun_nio_fs_WindowsNativeDispatcher_DuplicateTokenEx
Java_sun_nio_fs_WindowsNativeDispatcher_FindClose
Java_sun_nio_fs_WindowsNativeDispatcher_FindFirstFile0
Java_sun_nio_fs_WindowsNativeDispatcher_FindFirstFile1
Java_sun_nio_fs_WindowsNativeDispatcher_FindFirstStream0
Java_sun_nio_fs_WindowsNativeDispatcher_FindNextFile
Java_sun_nio_fs_WindowsNativeDispatcher_FindNextStream
Java_sun_nio_fs_WindowsNativeDispatcher_FormatMessage
Java_sun_nio_fs_WindowsNativeDispatcher_GetAce
Java_sun_nio_fs_WindowsNativeDispatcher_GetAclInformation0
Java_sun_nio_fs_WindowsNativeDispatcher_GetCurrentProcess
Java_sun_nio_fs_WindowsNativeDispatcher_GetCurrentThread
Java_sun_nio_fs_WindowsNativeDispatcher_GetDiskFreeSpaceEx0
Java_sun_nio_fs_WindowsNativeDispatcher_GetDriveType0
Java_sun_nio_fs_WindowsNativeDispatcher_GetFileAttributes0
Java_sun_nio_fs_WindowsNativeDispatcher_GetFileAttributesEx0
Java_sun_nio_fs_WindowsNativeDispatcher_GetFileInformationByHandle
Java_sun_nio_fs_WindowsNativeDispatcher_GetFileSecurity0
Java_sun_nio_fs_WindowsNativeDispatcher_GetFinalPathNameByHandle
Java_sun_nio_fs_WindowsNativeDispatcher_GetFullPathName0
Java_sun_nio_fs_WindowsNativeDispatcher_GetLengthSid
Java_sun_nio_fs_WindowsNativeDispatcher_GetLogicalDrives
Java_sun_nio_fs_WindowsNativeDispatcher_GetOverlappedResult
Java_sun_nio_fs_WindowsNativeDispatcher_GetQueuedCompletionStatus0
Java_sun_nio_fs_WindowsNativeDispatcher_GetSecurityDescriptorDacl
Java_sun_nio_fs_WindowsNativeDispatcher_GetSecurityDescriptorOwner
Java_sun_nio_fs_WindowsNativeDispatcher_GetTokenInformation
Java_sun_nio_fs_WindowsNativeDispatcher_GetVolumeInformation0
Java_sun_nio_fs_WindowsNativeDispatcher_GetVolumePathName0
Java_sun_nio_fs_WindowsNativeDispatcher_InitializeAcl
Java_sun_nio_fs_WindowsNativeDispatcher_InitializeSecurityDescriptor
Java_sun_nio_fs_WindowsNativeDispatcher_LocalFree
Java_sun_nio_fs_WindowsNativeDispatcher_LookupAccountName0
Java_sun_nio_fs_WindowsNativeDispatcher_LookupAccountSid0
Java_sun_nio_fs_WindowsNativeDispatcher_LookupPrivilegeValue0
Java_sun_nio_fs_WindowsNativeDispatcher_MoveFileEx0
Java_sun_nio_fs_WindowsNativeDispatcher_OpenProcessToken
Java_sun_nio_fs_WindowsNativeDispatcher_OpenThreadToken
Java_sun_nio_fs_WindowsNativeDispatcher_PostQueuedCompletionStatus
Java_sun_nio_fs_WindowsNativeDispatcher_ReadDirectoryChangesW
Java_sun_nio_fs_WindowsNativeDispatcher_RemoveDirectory0
Java_sun_nio_fs_WindowsNativeDispatcher_SetEndOfFile
Java_sun_nio_fs_WindowsNativeDispatcher_SetFileAttributes0
Java_sun_nio_fs_WindowsNativeDispatcher_SetFileSecurity0
Java_sun_nio_fs_WindowsNativeDispatcher_SetFileTime
Java_sun_nio_fs_WindowsNativeDispatcher_SetSecurityDescriptorDacl
Java_sun_nio_fs_WindowsNativeDispatcher_SetSecurityDescriptorOwner
Java_sun_nio_fs_WindowsNativeDispatcher_SetThreadToken
Java_sun_nio_fs_WindowsNativeDispatcher_initIDs

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/npt.dll
.dll windows:5 windows x64 arch:x64

f284c090fedb72b48df4b5500920cc14

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\npt.pdb

Imports

msvcr100

_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
malloc
atoi
abort
free
calloc
__iob_func
fprintf
exit
strcmp
_strdup

kernel32

GetACP
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
WideCharToMultiByte
MultiByteToWideChar
GetUserDefaultLCID
GetLocaleInfoA

Exports

Exports

nptInitialize
nptTerminate

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/orbd.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\orbd.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/pack200.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\pack200.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/policytool.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\policytool.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/rmid.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\rmid.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/rmiregistry.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\rmiregistry.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/sawindbg.dll
.dll windows:5 windows x64 arch:x64

d455f4b5cfa2fe040d2b4d800844d01f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

dbgeng

DebugCreate

msvcr100

_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
strchr
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_vsnprintf
_errno
strerror
strncpy
_snprintf
strstr
memset
??2@YAPEAX_K@Z
__CxxFrameHandler3
strlen
malloc
__iob_func
fprintf
strcpy
realloc
strcat
memcmp
free
??3@YAXPEAX@Z

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
GetLastError
FormatMessageA
LoadLibraryA
GetProcAddress
GetCurrentProcessId

Exports

Exports

Java_sun_jvm_hotspot_asm_Disassembler_decode
Java_sun_jvm_hotspot_asm_Disassembler_load_1library
Java_sun_jvm_hotspot_debugger_windbg_WindbgDebuggerLocal_attach0__I
Java_sun_jvm_hotspot_debugger_windbg_WindbgDebuggerLocal_attach0__Ljava_lang_String_2Ljava_lang_String_2
Java_sun_jvm_hotspot_debugger_windbg_WindbgDebuggerLocal_consoleExecuteCommand0
Java_sun_jvm_hotspot_debugger_windbg_WindbgDebuggerLocal_detach0
Java_sun_jvm_hotspot_debugger_windbg_WindbgDebuggerLocal_getThreadIdFromSysId0
Java_sun_jvm_hotspot_debugger_windbg_WindbgDebuggerLocal_initIDs
Java_sun_jvm_hotspot_debugger_windbg_WindbgDebuggerLocal_lookupByAddress0
Java_sun_jvm_hotspot_debugger_windbg_WindbgDebuggerLocal_lookupByName0
Java_sun_jvm_hotspot_debugger_windbg_WindbgDebuggerLocal_readBytesFromProcess0

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/server/Xusage.txt
SpyLogger V1.1/res/bin/server/jvm.dll
.dll windows:5 windows x64 arch:x64

256beed0ed5b467f20bee3afefc84fc4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

SetEnvironmentVariableA
DebugBreak
VirtualQuery
GetSystemTimeAsFileTime
QueryPerformanceCounter
GlobalMemoryStatusEx
GetProcessAffinityMask
QueryPerformanceFrequency
GetThreadTimes
GetCurrentThread
GetLocalTime
GetProcessTimes
FindFirstFileA
FindClose
FindNextFileA
GetTempPathA
FormatMessageA
SetConsoleCtrlHandler
VirtualFree
VirtualProtect
ResumeThread
Sleep
SetThreadPriority
GetThreadPriority
ResetEvent
GetThreadContext
GetCurrentThreadId
GetVersionExA
GetSystemInfo
IsDebuggerPresent
TlsAlloc
TlsSetValue
DuplicateHandle
IsDBCSLeadByte
SetEndOfFile
SetFilePointer
PeekNamedPipe
PeekConsoleInputA
GetEnvironmentVariableA
GetStdHandle
MapViewOfFileEx
CreateFileMappingA
ReadFile
VirtualAlloc
UnmapViewOfFile
SetEvent
GetExitCodeProcess
CreateProcessA
CreateToolhelp32Snapshot
Module32First
Module32Next
GetNativeSystemInfo
GetSystemDirectoryA
GetWindowsDirectoryA
OpenProcess
SwitchToThread
GetTimeZoneInformation
HeapUnlock
HeapValidate
HeapWalk
HeapLock
GetProcessHeap
LocalFree
GetCurrentProcessId
WaitForMultipleObjects
GetVolumeInformationA
CreateDirectoryA
OpenFileMappingA
MapViewOfFile
SetUnhandledExceptionFilter
RtlCaptureContext
RtlAddFunctionTable
DecodePointer
GetTickCount
RtlLookupFunctionEntry
RtlVirtualUnwind
LoadLibraryA
GetModuleHandleA
GetModuleFileNameA
GetFileAttributesA
GetCurrentProcess
FlushFileBuffers
CloseHandle
CreateMutexA
CreateSemaphoreA
ReleaseSemaphore
WriteFile
CreateFileA
GetLastError
WaitForSingleObject
ReleaseMutex
CreateEventA
FreeLibrary
GetProcAddress
GetNumberOfConsoleInputEvents
TlsGetValue
UnhandledExceptionFilter
TerminateProcess
EncodePointer

user32

GetProcessWindowStation
MessageBoxA
GetUserObjectInformationA

advapi32

AllocateAndInitializeSid
FreeSid
InitializeSecurityDescriptor
InitializeAcl
GetAce
EqualSid
AddAce
GetAclInformation
AddAccessAllowedAce
SetSecurityDescriptorDacl
GetTokenInformation
GetLengthSid
CopySid
GetSecurityDescriptorDacl
GetUserNameA
LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges
SetFileSecurityA

wsock32

getsockname
setsockopt
shutdown
gethostname
select
WSAStartup
recv
recvfrom
sendto
accept
connect
listen
socket
inet_ntoa
closesocket
send
bind
getsockopt

winmm

timeEndPeriod
timeBeginPeriod
timeGetTime

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

psapi

GetModuleInformation
GetModuleFileNameExA
EnumProcessModules

msvcr100

_chmod
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
?terminate@@YAXXZ
__crt_debugger_hook
__CppXcptFilter
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
_timezone
_onexit
_lock
__dllonexit
_unlock
_vsnprintf
strtoul
_wassert
frexp
fmodf
ceil
_finite
_beginthreadex
_fstat64
_snprintf
_get_osfhandle
_purecall
memset
memcpy
memmove
__C_specific_handler
?_open@@YAHPEBDHH@Z
qsort
strncpy
strncmp
_read
_close
_strdup
fclose
fgets
fopen
strrchr
sprintf
strchr
memcmp
_unlink
sscanf
strstr
getc
isspace
strpbrk
__iob_func
_lseek
strerror
_errno
remove
_write
exit
strtok
fflush
printf
memchr
_isnan
vfprintf
realloc
isalnum
exp
isdigit
_stricmp
atoi
strncat
fscanf
atol
strtod
strtol
free
malloc
_ctime64
_time64
strcspn
fmod
sqrt
floor
_strnicmp
fputc
fwrite
rewind
rename
??3@YAXPEAX@Z
_localtime64
_stat64i32
_exit
_getdrive
_getcwd
_access
getenv
signal
raise
_getpid
_setmode
_fileno
fgetc
fprintf
_fdopen
_lseeki64
isalpha

Exports

Exports

??_7?$AscendTreeCensusClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$AscendTreeCensusClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$AscendTreeCensusClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$BeginSweepClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$BeginSweepClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$BeginSweepClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$BinaryTreeDictionary@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$BinaryTreeDictionary@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$BinaryTreeDictionary@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$DCmdArgument@PEAD@@6B@
??_7?$DCmdArgument@PEAVStringArrayArgument@@@@6B@
??_7?$DCmdArgument@VMemorySizeArgument@@@@6B@
??_7?$DCmdArgument@VNanoTimeArgument@@@@6B@
??_7?$DCmdArgument@_J@@6B@
??_7?$DCmdArgument@_N@@6B@
??_7?$DCmdFactoryImpl@VClassHistogramDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VClassStatsDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VCommandLineDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VHeapDumpDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VHelpDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VJMXStartLocalDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VJMXStartRemoteDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VJMXStopRemoteDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VNMTDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VPrintSystemPropertiesDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VPrintVMFlagsDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VRotateGCLogDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VRunFinalizationDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VSystemGCDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VThreadDumpDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VVMUptimeDCmd@@@@6B@
??_7?$DCmdFactoryImpl@VVersionDCmd@@@@6B@
??_7?$DescendTreeCensusClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$DescendTreeCensusClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$DescendTreeCensusClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$DescendTreeSearchClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$DescendTreeSearchClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$DescendTreeSearchClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$EndTreeSearchClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$EndTreeSearchClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$EndTreeSearchClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$EventLogBase@VGCMessage@@@@6B@
??_7?$EventLogBase@VStringLogMessage@@@@6B@
??_7?$FreeBlockDictionary@VFreeChunk@@@@6B@
??_7?$FreeBlockDictionary@VMetablock@@@@6B@
??_7?$FreeBlockDictionary@VMetachunk@@@@6B@
??_7?$G1BiasedMappedArray@I@@6B@
??_7?$G1BiasedMappedArray@PEAVHeapRegion@@@@6B@
??_7?$G1BiasedMappedArray@UInCSetState@@@@6B@
??_7?$G1BiasedMappedArray@_N@@6B@
??_7?$G1CLDClosure@$00@G1ParTask@@6B@
??_7?$G1CLDClosure@$01@G1ParTask@@6B@
??_7?$G1CLDClosure@$0A@@G1ParTask@@6B@
??_7?$G1ParCopyClosure@$00$0A@@@6B@
??_7?$G1ParCopyClosure@$01$00@@6B@
??_7?$G1ParCopyClosure@$01$01@@6B@
??_7?$G1ParCopyClosure@$01$0A@@@6B@
??_7?$G1ParCopyClosure@$0A@$00@@6B@
??_7?$G1ParCopyClosure@$0A@$01@@6B@
??_7?$G1ParCopyClosure@$0A@$0A@@@6B@
??_7?$GenericTaskQueueSet@V?$GenericTaskQueue@PEAVoopDesc@@$04$0CAAAA@@@$04@@6B@
??_7?$GenericTaskQueueSet@V?$OverflowTaskQueue@VObjArrayTask@@$04$0CAAA@@@$04@@6B@
??_7?$GenericTaskQueueSet@V?$OverflowTaskQueue@VStarTask@@$00$0CAAAA@@@$00@@6B@
??_7?$GenericTaskQueueSet@V?$OverflowTaskQueue@VStarTask@@$04$0CAAAA@@@$04@@6B@
??_7?$GenericTaskQueueSet@V?$OverflowTaskQueue@_K$06$0CAAAA@@@$00@@6B@
??_7?$GenericTaskQueueSet@V?$Padded@V?$GenericTaskQueue@PEAVoopDesc@@$04$0CAAAA@@@$0EA@@@$04@@6B@
??_7?$LinkedList@VCommittedMemoryRegion@@@@6B@
??_7?$LinkedList@VMallocSite@@@@6B@
??_7?$LinkedList@VReservedMemoryRegion@@@@6B@
??_7?$LinkedList@VVirtualMemoryAllocationSite@@@@6B@
??_7?$LinkedListImpl@VCommittedMemoryRegion@@$01$09$00@@6B@
??_7?$LinkedListImpl@VMallocSite@@$01$09$00@@6B@
??_7?$LinkedListImpl@VReservedMemoryRegion@@$01$09$00@@6B@
??_7?$LinkedListImpl@VVirtualMemoryAllocationSite@@$01$09$00@@6B@
??_7?$PSRootsClosure@$00@@6B@
??_7?$PSRootsClosure@$0A@@@6B@
??_7?$PrintFreeListsClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$PrintFreeListsClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$PrintFreeListsClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$PrintTreeCensusClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$PrintTreeCensusClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$PrintTreeCensusClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$SortedLinkedList@VCommittedMemoryRegion@@$1?compare_committed_region@@YAHAEBV1@0@Z$01$09$00@@6B@
??_7?$SortedLinkedList@VMallocSite@@$1?compare_malloc_site@@YAHAEBV1@0@Z$01$09$00@@6B@
??_7?$SortedLinkedList@VMallocSite@@$1?compare_malloc_size@@YAHAEBV1@0@Z$01$09$00@@6B@
??_7?$SortedLinkedList@VReservedMemoryRegion@@$1?compare_reserved_region_base@@YAHAEBV1@0@Z$01$09$00@@6B@
??_7?$SortedLinkedList@VReservedMemoryRegion@@$1?compare_virtual_memory_base@@YAHAEBV1@0@Z$01$09$00@@6B@
??_7?$SortedLinkedList@VVirtualMemoryAllocationSite@@$1?compare_allocation_site@@YAHAEBV1@0@Z$01$09$00@@6B@
??_7?$SortedLinkedList@VVirtualMemoryAllocationSite@@$1?compare_virtual_memory_site@@YAHAEBV1@0@Z$01$09$00@@6B@
??_7?$SortedLinkedList@VVirtualMemoryAllocationSite@@$1?compare_virtual_memory_size@@YAHAEBV1@0@Z$01$09$00@@6B@
??_7?$Stack@PEAVKlass@@$04@@6B@
??_7?$Stack@PEAV_jclass@@$06@@6B@
??_7?$Stack@PEAVmarkOopDesc@@$04@@6B@
??_7?$Stack@PEAVoopDesc@@$04@@6B@
??_7?$Stack@VObjArrayTask@@$04@@6B@
??_7?$Stack@VStarTask@@$00@@6B@
??_7?$Stack@VStarTask@@$04@@6B@
??_7?$Stack@_K$06@@6B@
??_7?$TaskQueueSetSuperImpl@$00@@6B@
??_7?$TaskQueueSetSuperImpl@$04@@6B@
??_7?$TreeCensusClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$TreeCensusClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$TreeCensusClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$TreeSearchClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$TreeSearchClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$TreeSearchClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$TypedMethodOptionMatcher@PEBD@@6B@
??_7?$TypedMethodOptionMatcher@_J@@6B@
??_7?$TypedMethodOptionMatcher@_K@@6B@
??_7?$TypedMethodOptionMatcher@_N@@6B@
??_7?$clearTreeCensusClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$clearTreeCensusClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$clearTreeCensusClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$setTreeHintsClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$setTreeHintsClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$setTreeHintsClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7?$setTreeSurplusClosure@VFreeChunk@@V?$AdaptiveFreeList@VFreeChunk@@@@@@6B@
??_7?$setTreeSurplusClosure@VMetablock@@V?$FreeList@VMetablock@@@@@@6B@
??_7?$setTreeSurplusClosure@VMetachunk@@V?$FreeList@VMetachunk@@@@@@6B@
??_7ASConcurrentMarkSweepGeneration@@6B@
??_7ASConcurrentMarkSweepPolicy@@6B@
??_7ASPSOldGen@@6B@
??_7ASPSYoungGen@@6B@
??_7ASParNewGeneration@@6B@
??_7AbsDNode@@6B@
??_7AbsFNode@@6B@
??_7AbsNode@@6B@
??_7AbsSeq@@6B@
??_7AbstractAssembler@@6B@
??_7AbstractCompiler@@6B@
??_7AbstractDecoder@@6B@
??_7AbstractGangTask@@6B@
??_7AbstractGangTaskWOopQueues@@6B@
??_7AbstractLockNode@@6B@
??_7AbstractRefProcTaskExecutor@@6B@
??_7AbstractWorkGang@@6B@
??_7AccessArray@@6B@
??_7AccessField@@6B@
??_7AccessIndexed@@6B@
??_7AccessMonitor@@6B@
??_7AdapterBlob@@6B@
??_7AdaptiveSizePolicy@@6B@
??_7AddDNode@@6B@
??_7AddFNode@@6B@
??_7AddINode@@6B@
??_7AddLNode@@6B@
??_7AddNode@@6B@
??_7AddPNode@@6B@
??_7AddVBNode@@6B@
??_7AddVDNode@@6B@
??_7AddVFNode@@6B@
??_7AddVINode@@6B@
??_7AddVLNode@@6B@
??_7AddVSNode@@6B@
??_7AddressConstant@@6B@
??_7AddressType@@6B@
??_7AdjustCpoolCacheAndVtable@VM_RedefineClasses@@6B@
??_7AdjustKlassClosure@PSParallelCompact@@6B@
??_7AdjustPointerClosure@MarkSweep@@6B@
??_7AdjustPointerClosure@PSParallelCompact@@6B@
??_7AdjustPointersClosure@@6B@
??_7AdvancedThresholdPolicy@@6B@
??_7AggregateCountDataHRClosure@@6B@
??_7AllClassesFinder@KlassInfoTable@@6B@
??_7AllocRecordClosure@Metaspace@@6B@
??_7AllocateArrayNode@@6B@
??_7AllocateNode@@6B@
??_7AlwaysAliveClosure@@6B@
??_7AlwaysClearPolicy@@6B@
??_7AlwaysFalseClosure@@6B@
??_7AlwaysTrueClosure@@6B@
??_7AndINode@@6B@
??_7AndLNode@@6B@
??_7AndVNode@@6B@
??_7ArgInfoData@@6B@
??_7ArgumentCount@@6B@
??_7ArgumentOffsetComputer@@6B@
??_7ArgumentSizeComputer@@6B@
??_7ArithmeticOp@@6B@
??_7ArrayConstant@@6B@
??_7ArrayCopyStub@@6B@
??_7ArrayData@@6B@
??_7ArrayKlass@@6B@
??_7ArrayLength@@6B@
??_7ArrayStoreExceptionStub@@6B@
??_7ArrayType@@6B@
??_7AryEqNode@@6B@
??_7Assembler@@6B@
??_7AttachOperation@@6B@
??_7BarrierGCTask@@6B@
??_7BarrierSet@@6B@
??_7Base@@6B@
??_7BinaryNode@@6B@
??_7BitData@@6B@
??_7BitMapClosure@@6B@
??_7BlkClosure@@6B@
??_7BlkClosureCareful@@6B@
??_7BlkPrintingClosure@@6B@
??_7Block@@6B@
??_7BlockBegin@@6B@
??_7BlockClosure@@6B@
??_7BlockEnd@@6B@
??_7BlockMerger@@6B@
??_7BlockOffsetArray@@6B@
??_7BlockOffsetArrayContigSpace@@6B@
??_7BlockOffsetArrayNonContigSpace@@6B@
??_7BlockOffsetTable@@6B@
??_7BoolNode@@6B@
??_7BoolObjectClosure@@6B@
??_7BoxLockNode@@6B@
??_7BranchData@@6B@
??_7BufferBlob@@6B@
??_7BufferingOopClosure@@6B@
??_7C1_MacroAssembler@@6B@
??_7C2Compiler@@6B@
??_7CE_Eliminator@@6B@
??_7CFGElement@@6B@
??_7CFGLoop@@6B@
??_7CLDClosure@@6B@
??_7CLDToKlassAndOopClosure@@6B@
??_7CLDToOopClosure@@6B@
??_7CMBitMapClosure@@6B@
??_7CMBitMapMappingChangedListener@@6B@
??_7CMCheckpointRootsFinalClosure@@6B@
??_7CMCleanUp@@6B@
??_7CMConcurrentMarkingTask@@6B@
??_7CMCountDataClosureBase@@6B@
??_7CMRemarkTask@@6B@
??_7CMRootRegionScanTask@@6B@
??_7CMSATBBufferClosure@@6B@
??_7CMSAdaptiveSizePolicy@@6B@
??_7CMSConcMarkingTask@@6B@
??_7CMSConcMarkingTerminator@@6B@
??_7CMSConcMarkingTerminatorTerminator@@6B@
??_7CMSDrainMarkingStackClosure@@6B@
??_7CMSGCAdaptivePolicyCounters@@6B@
??_7CMSGCStats@@6B@
??_7CMSInnerParMarkAndPushClosure@@6B@
??_7CMSIsAliveClosure@@6B@
??_7CMSKeepAliveClosure@@6B@
??_7CMSMemoryManager@@6B@
??_7CMSParDrainMarkingStackClosure@@6B@
??_7CMSParInitialMarkTask@@6B@
??_7CMSParKeepAliveClosure@@6B@
??_7CMSParMarkTask@@6B@
??_7CMSParRemarkTask@@6B@
??_7CMSPrecleanRefsYieldClosure@@6B@
??_7CMSRefEnqueueTaskProxy@@6B@
??_7CMSRefProcTaskExecutor@@6B@
??_7CMSRefProcTaskProxy@@6B@
??_7CMSTracer@@6B@
??_7CMTask@@6B@
??_7CMoveDNode@@6B@
??_7CMoveFNode@@6B@
??_7CMoveINode@@6B@
??_7CMoveLNode@@6B@
??_7CMoveNNode@@6B@
??_7CMoveNode@@6B@
??_7CMovePNode@@6B@
??_7CProjNode@@6B@
??_7CSpaceCounters@@6B@
??_7CalcLiveObjectsClosure@@6B@
??_7CallDynamicJavaDirectNode@@6B@
??_7CallDynamicJavaNode@@6B@
??_7CallGenerator@@6B@
??_7CallJavaNode@@6B@
??_7CallLeafDirectNode@@6B@
??_7CallLeafNoFPDirectNode@@6B@
??_7CallLeafNoFPNode@@6B@
??_7CallLeafNode@@6B@
??_7CallNode@@6B@
??_7CallRelocation@@6B@
??_7CallRuntimeDirectNode@@6B@
??_7CallRuntimeNode@@6B@
??_7CallSiteDepChange@@6B@
??_7CallStaticJavaDirectNode@@6B@
??_7CallStaticJavaNode@@6B@
??_7CallTypeData@@6B@
??_7Canonicalizer@@6B@
??_7CardGeneration@@6B@
??_7CardTableEntryClosure@@6B@
??_7CardTableExtension@@6B@
??_7CardTableModRefBS@@6B@
??_7CardTableModRefBSForCTRS@@6B@
??_7CardTableRS@@6B@
??_7CastIINode@@6B@
??_7CastP2XNode@@6B@
??_7CastPPNode@@6B@
??_7CastX2PNode@@6B@
??_7CatchNode@@6B@
??_7CatchProjNode@@6B@
??_7ChangeItem@@6B@
??_7ChangeJumpWiden@@6B@
??_7ChangeSwitchPad@@6B@
??_7ChangeWiden@@6B@
??_7CheckBitmapClearHRClosure@@6B@
??_7CheckCast@@6B@
??_7CheckCastPPNode@@6B@
??_7CheckClass@VM_RedefineClasses@@6B@
??_7CheckForPreciseMarks@@6B@
??_7CheckForUnmarkedObjects@@6B@
??_7CheckForUnmarkedOops@@6B@
??_7ChunkPoolCleaner@@6B@
??_7ClassConstant@@6B@
??_7ClassHistogramDCmd@@6B@
??_7ClassPathDirEntry@@6B@
??_7ClassPathEntry@@6B@
??_7ClassPathZipEntry@@6B@
??_7ClassStatsDCmd@@6B@
??_7ClassType@@6B@
??_7ClearArrayNode@@6B@
??_7ClearBitmapHRClosure@@6B@
??_7ClearKlassModUnionClosure@@6B@
??_7ClearLoggedCardTableEntryClosure@@6B@
??_7ClearNoncleanCardWrapper@@6B@
??_7CmpD3Node@@6B@
??_7CmpDNode@@6B@
??_7CmpF3Node@@6B@
??_7CmpFNode@@6B@
??_7CmpINode@@6B@
??_7CmpL3Node@@6B@
??_7CmpLNode@@6B@
??_7CmpLTMaskNode@@6B@
??_7CmpNNode@@6B@
??_7CmpNode@@6B@
??_7CmpPNode@@6B@
??_7CmpULNode@@6B@
??_7CmpUNode@@6B@
??_7CodeBlob@@6B@
??_7CodeBlobClosure@@6B@
??_7CodeBlobToOopClosure@@6B@
??_7CodeCacheMemoryManager@@6B@
??_7CodeHeapPool@@6B@
??_7CodeStub@@6B@
??_7CollectedHeap@@6B@
??_7CollectedMemoryPool@@6B@
??_7CollectorPolicy@@6B@
??_7CommandLineDCmd@@6B@
??_7CommitRefcountArray@G1RegionsSmallerThanCommitSizeMapper@@6B@
??_7CompactibleFreeListSpace@@6B@
??_7CompactibleFreeListSpacePool@@6B@
??_7CompactibleSpace@@6B@
??_7CompareAndSwapINode@@6B@
??_7CompareAndSwapLNode@@6B@
??_7CompareAndSwapNNode@@6B@
??_7CompareAndSwapPNode@@6B@
??_7CompareOp@@6B@
??_7CompilationLog@@6B@
??_7CompilationPolicy@@6B@
??_7CompileLog@@6B@
??_7CompiledArgumentOopFinder@@6B@
??_7CompiledRFrame@@6B@
??_7Compiler@@6B@
??_7CompilerThread@@6B@
??_7CompressedKlassSpacePool@@6B@
??_7ComputeCallStack@@6B@
??_7ComputeEntryStack@@6B@
??_7ConDNode@@6B@
??_7ConFNode@@6B@
??_7ConINode@@6B@
??_7ConLNode@@6B@
??_7ConNKlassNode@@6B@
??_7ConNNode@@6B@
??_7ConNode@@6B@
??_7ConPNode@@6B@
??_7ConcEdenSpace@@6B@
??_7ConcurrentG1RefineThread@@6B@
??_7ConcurrentGCThread@@6B@
??_7ConcurrentGCTimer@@6B@
??_7ConcurrentMarkSweepGeneration@@6B@
??_7ConcurrentMarkSweepPolicy@@6B@
??_7ConcurrentMarkSweepThread@@6B@
??_7ConcurrentMarkThread@@6B@
??_7Constant@@6B@
??_7ConstantDoubleValue@@6B@
??_7ConstantIntValue@@6B@
??_7ConstantLongValue@@6B@
??_7ConstantOopReadValue@@6B@
??_7ConstantOopWriteValue@@6B@
??_7ConstantPool@@6B@
??_7ConstraintCastNode@@6B@
??_7ContiguousSpace@@6B@
??_7ContiguousSpaceDCTOC@@6B@
??_7ContiguousSpacePool@@6B@
??_7ContiguousSpaceUsedHelper@@6B@
??_7Conv2BNode@@6B@
??_7ConvD2FNode@@6B@
??_7ConvD2INode@@6B@
??_7ConvD2LNode@@6B@
??_7ConvF2DNode@@6B@
??_7ConvF2INode@@6B@
??_7ConvF2LNode@@6B@
??_7ConvI2DNode@@6B@
??_7ConvI2FNode@@6B@
??_7ConvI2LNode@@6B@
??_7ConvL2DNode@@6B@
??_7ConvL2FNode@@6B@
??_7ConvL2INode@@6B@
??_7ConversionStub@@6B@
??_7Convert@@6B@
??_7CopyFailedInfo@@6B@
??_7CopyMemoryManager@@6B@
??_7CosDNode@@6B@
??_7CountBitsNode@@6B@
??_7CountHandleClosure@@6B@
??_7CountInterfacesClosure@@6B@
??_7CountLeadingZerosINode@@6B@
??_7CountLeadingZerosLNode@@6B@
??_7CountNonCleanMemRegionClosure@@6B@
??_7CountTrailingZerosINode@@6B@
??_7CountTrailingZerosLNode@@6B@
??_7CountedLoopEndNode@@6B@
??_7CountedLoopNode@@6B@
??_7CounterData@@6B@
??_7CounterOverflowStub@@6B@
??_7CreateExNode@@6B@
??_7CreateExceptionNode@@6B@
??_7CriticalEdgeFinder@@6B@
??_7DCmd@@6B@
??_7DCmdFactory@@6B@
??_7DCmdWithParser@@6B@
??_7DataRelocation@@6B@
??_7DecodeNKlassNode@@6B@
??_7DecodeNNode@@6B@
??_7DecodeNarrowPtrNode@@6B@
??_7DefNewGeneration@@6B@
??_7DefNewTracer@@6B@
??_7DeoptimizationBlob@@6B@
??_7DeoptimizeStub@@6B@
??_7DeoptimizedRFrame@@6B@
??_7DepChange@@6B@
??_7DetectScavengeRoot@@6B@
??_7DirectCallGenerator@@6B@
??_7DirtyCardQueue@@6B@
??_7DirtyCardQueueSet@@6B@
??_7DirtyCardToOopClosure@@6B@
??_7DivByZeroStub@@6B@
??_7DivDNode@@6B@
??_7DivFNode@@6B@
??_7DivINode@@6B@
??_7DivLNode@@6B@
??_7DivModINode@@6B@
??_7DivModLNode@@6B@
??_7DivModNode@@6B@
??_7DivVDNode@@6B@
??_7DivVFNode@@6B@
??_7DoNothingClosure@@6B@
??_7DoubleConstant@@6B@
??_7DoubleType@@6B@
??_7DrainStacksCompactionTask@@6B@
??_7DumpAllocClosure@@6B@
??_7EdenMutableSpacePool@@6B@
??_7EdenSpace@@6B@
??_7EnableBiasedLockingTask@@6B@
??_7EncodeISOArrayNode@@6B@
??_7EncodeNarrowPtrNode@@6B@
??_7EncodePKlassNode@@6B@
??_7EncodePNode@@6B@
??_7EnqueueTask@AbstractRefProcTaskExecutor@@6B@
??_7EntryFrameOopFinder@@6B@
??_7EvacuateFollowersClosure@DefNewGeneration@@6B@
??_7EvacuateFollowersClosureGeneral@@6B@
??_7EvacuationFailedInfo@@6B@
??_7EventLog@@6B@
??_7ExceptionBlob@@6B@
??_7ExceptionObject@@6B@
??_7ExpDNode@@6B@
??_7ExtendedOopClosure@@6B@
??_7ExtractBNode@@6B@
??_7ExtractCNode@@6B@
??_7ExtractDNode@@6B@
??_7ExtractFNode@@6B@
??_7ExtractINode@@6B@
??_7ExtractLNode@@6B@
??_7ExtractNode@@6B@
??_7ExtractSNode@@6B@
??_7ExtractUBNode@@6B@
??_7FastEvacuateFollowersClosure@DefNewGeneration@@6B@
??_7FastKeepAliveClosure@DefNewGeneration@@6B@
??_7FastLockNode@@6B@
??_7FastScanClosure@@6B@
??_7FastUnlockNode@@6B@
??_7FieldClosure@@6B@
??_7FieldReassigner@@6B@
??_7FieldStream@@6B@
??_7FileMapHeader@FileMapInfo@@6B@
??_7FileMapHeaderBase@FileMapInfo@@6B@
??_7FillClosure@@6B@
??_7FilterIntoCSClosure@@6B@
??_7FilterOutOfRegionClosure@@6B@
??_7FilteredFieldStream@@6B@
??_7FilteringClosure@@6B@
??_7Filtering_DCTOC@@6B@
??_7FinalCountDataUpdateClosure@@6B@
??_7FindInstanceClosure@@6B@
??_7Fingerprinter@@6B@
??_7FlatProfilerTask@@6B@
??_7FlexibleGangTask@@6B@
??_7FlexibleWorkGang@@6B@
??_7FloatConstant@@6B@

Sections

.text
Size: 5.7MB - Virtual size: 5.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 283KB - Virtual size: 451KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 276KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/servertool.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\servertool.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/splashscreen.dll
.dll windows:5 windows x64 arch:x64

42c312ba8e252d9ecd8248364ade9b06

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\splashscreen.pdb

Imports

kernel32

CreateThread
GetModuleHandleA
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetTickCount
MultiByteToWideChar
ExitProcess
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
RaiseException
LoadLibraryA
GetLastError
FreeLibrary
GetProcAddress
LocalAlloc
GetSystemTimeAsFileTime

gdi32

RealizePalette
GetDeviceCaps
CreateCompatibleDC
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
CreateRectRgn
CombineRgn
ExtCreateRegion
StretchDIBits
SelectPalette
CreatePalette

msvcr100

longjmp
_setjmp
realloc
pow
fopen
ungetc
fgetc
_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
getenv
sscanf
__iob_func
fprintf
_errno
strlen
memcmp
calloc
strncmp
malloc
free
fclose
fread
memset
memcpy
floor

Exports

Exports

JNI_OnLoad
Java_java_awt_SplashScreen__1close
Java_java_awt_SplashScreen__1getBounds
Java_java_awt_SplashScreen__1getImageFileName
Java_java_awt_SplashScreen__1getImageJarName
Java_java_awt_SplashScreen__1getInstance
Java_java_awt_SplashScreen__1getScaleFactor
Java_java_awt_SplashScreen__1isVisible
Java_java_awt_SplashScreen__1setImageData
Java_java_awt_SplashScreen__1update
SplashClose
SplashGetScaledImageName
SplashInit
SplashLoadFile
SplashLoadMemory
SplashSetFileJarName
SplashSetScaleFactor

Sections

.text
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/sunec.dll
.dll windows:5 windows x64 arch:x64

31555a82366aca0bbe036130635fd9f4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\sunec.pdb

Imports

msvcr100

_initterm_e
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
_initterm
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_malloc_crt
memcmp
labs
toupper
isdigit
isupper
islower
strcat
strlen
malloc
calloc
memset
memcpy
??2@YAPEAX_K@Z
??3@YAXPEAX@Z
free
_strdup

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
GetSystemTimeAsFileTime

Exports

Exports

Java_sun_security_ec_ECDHKeyAgreement_deriveKey
Java_sun_security_ec_ECDSASignature_signDigest
Java_sun_security_ec_ECDSASignature_verifySignedDigest
Java_sun_security_ec_ECKeyPairGenerator_generateECKeyPair

Sections

.text
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/sunmscapi.dll
.dll windows:5 windows x64 arch:x64

1efb5df8604f5f401f97325e25590ec5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\sunmscapi.pdb

Imports

crypt32

CryptImportPublicKeyInfo
CertFindCertificateInStore
CertDeleteCertificateFromStore
CertCreateCertificateContext
CertSetCertificateContextProperty
CertAddCertificateContextToStore
CertFreeCertificateContext
CertOpenSystemStoreA
CertEnumCertificatesInStore
CryptAcquireCertificatePrivateKey
CertGetPublicKeyLength
CertGetNameStringA
CertFreeCertificateChain
CertCloseStore
CertGetCertificateChain

advapi32

CryptGenRandom
CryptImportKey
CryptExportKey
CryptEncrypt
CryptDecrypt
CryptGenKey
CryptVerifySignatureA
CryptCreateHash
CryptGetProvParam
CryptSetHashParam
CryptSignHashA
CryptDestroyHash
CryptDestroyKey
CryptGetUserKey
CryptSetKeyParam
CryptGetKeyParam
CryptReleaseContext
CryptAcquireContextA

msvcr100

__dllonexit
_lock
_onexit
_unlock
__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
_amsg_exit
_encoded_null
free
_initterm_e
_initterm
_malloc_crt
memset
memcpy
mbstowcs
sprintf
??3@YAXPEAX@Z
__C_specific_handler
strcmp
strcpy
??2@YAPEAX_K@Z

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
GetLastError
FormatMessageA

Exports

Exports

Java_sun_security_mscapi_KeyStore_destroyKeyContainer
Java_sun_security_mscapi_KeyStore_generatePrivateKeyBlob
Java_sun_security_mscapi_KeyStore_getKeyLength
Java_sun_security_mscapi_KeyStore_loadKeysOrCertificateChains
Java_sun_security_mscapi_KeyStore_removeCertificate
Java_sun_security_mscapi_KeyStore_storeCertificate
Java_sun_security_mscapi_KeyStore_storePrivateKey
Java_sun_security_mscapi_Key_cleanUp
Java_sun_security_mscapi_Key_getContainerName
Java_sun_security_mscapi_Key_getKeyType
Java_sun_security_mscapi_PRNG_generateSeed
Java_sun_security_mscapi_RSACipher_encryptDecrypt
Java_sun_security_mscapi_RSACipher_findCertificateUsingAlias
Java_sun_security_mscapi_RSACipher_getKeyFromCert
Java_sun_security_mscapi_RSAKeyPairGenerator_generateRSAKeyPair
Java_sun_security_mscapi_RSAPublicKey_getExponent
Java_sun_security_mscapi_RSAPublicKey_getModulus
Java_sun_security_mscapi_RSAPublicKey_getPublicKeyBlob
Java_sun_security_mscapi_RSASignature_generatePublicKeyBlob
Java_sun_security_mscapi_RSASignature_importPublicKey
Java_sun_security_mscapi_RSASignature_signHash
Java_sun_security_mscapi_RSASignature_verifySignedHash

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/tnameserv.exe
.exe windows:5 windows x64 arch:x64

2c43cda2243b5af72e180e8d1f09446d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\tnameserv.pdb

Imports

jli

JLI_CmdToArgs
JLI_GetStdArgc
JLI_MemAlloc
JLI_GetStdArgs
JLI_Launch

msvcr100

__getmainargs
__C_specific_handler
_XcptFilter
_exit
_cexit
exit
__initenv
_amsg_exit
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
printf
__argc
__argv
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
EncodePointer
Sleep
GetCommandLineA
DecodePointer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/unpack.dll
.dll windows:5 windows x64 arch:x64

6bddbb559f8b2250b31471a62dbf3aee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\unpack.pdb

Imports

jvm

JNI_GetCreatedJavaVMs

java

JNU_ThrowIOException

msvcr100

__iob_func
fprintf
qsort
fopen
strcmp
_snprintf
sprintf
atoi
abort
malloc
_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
strchr
strncat
strcat
strlen
_time64
??2@YAPEAX_K@Z
??3@YAXPEAX@Z
memcmp
memcpy
free
realloc
memset

kernel32

GetCurrentThreadId
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
GetTickCount

Exports

Exports

Java_com_sun_java_util_jar_pack_NativeUnpack_finish
Java_com_sun_java_util_jar_pack_NativeUnpack_getNextFile
Java_com_sun_java_util_jar_pack_NativeUnpack_getOption
Java_com_sun_java_util_jar_pack_NativeUnpack_getUnusedInput
Java_com_sun_java_util_jar_pack_NativeUnpack_initIDs
Java_com_sun_java_util_jar_pack_NativeUnpack_setOption
Java_com_sun_java_util_jar_pack_NativeUnpack_start

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/unpack200.exe
.exe windows:5 windows x64 arch:x64

e1a3b9c755b6e615b4050d0bd623bb5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\objs\unpackexe\unpack200.pdb

Imports

msvcr100

strcmp
strchr
remove
fclose
exit
fopen
_time64
strcat
strncat
fflush
qsort
_snprintf
atoi
strcpy
abort
_gmtime64
fwrite
_amsg_exit
strncmp
__C_specific_handler
_XcptFilter
_exit
_cexit
__initenv
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
__crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
getenv
strtok
fprintf
strrchr
__iob_func
fread
_errno
sprintf
strlen
memcmp
realloc
memchr
free
malloc
memset
__getmainargs
memcpy
_strdup
_fileno
_mkdir

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DecodePointer
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EncodePointer
Sleep
GetSystemTimeAsFileTime

Sections

.text
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/verify.dll
.dll windows:5 windows x64 arch:x64

5fc95510f1d4877f09defdccf9bf289a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\verify.pdb

Imports

jvm

jio_fprintf
JVM_GetClassCPEntriesCount
JVM_GetClassCPTypes
JVM_GetClassFieldsCount
JVM_GetClassMethodsCount
JVM_IsVMGeneratedMethodIx
JVM_GetMethodIxExceptionsCount
JVM_GetMethodIxExceptionIndexes
JVM_GetMethodIxMaxStack
JVM_GetMethodIxExceptionTableLength
JVM_GetMethodIxExceptionTableEntry
JVM_GetMethodIxLocalsCount
JVM_GetCPMethodNameUTF
JVM_GetCPFieldSignatureUTF
JVM_GetCPMethodSignatureUTF
JVM_GetCPFieldModifiers
JVM_GetCPMethodModifiers
JVM_IsSameClassPackage
JVM_IsInterface
JVM_GetCPMethodClassNameUTF
JVM_GetCPFieldClassNameUTF
JVM_GetCPClassNameUTF
JVM_GetMethodIxArgsSize
JVM_GetMethodIxModifiers
JVM_IsConstructorIx
JVM_GetMethodIxByteCodeLength
JVM_GetMethodIxByteCode
JVM_GetFieldIxModifiers
JVM_FindClassFromClass
jio_vsnprintf
JVM_GetClassNameUTF
JVM_GetMethodIxNameUTF
JVM_GetMethodIxSignatureUTF
jio_snprintf
JVM_ReleaseUTF

msvcr100

_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__crt_debugger_hook
__CppXcptFilter
__C_specific_handler
_amsg_exit
_encoded_null
_initterm_e
_initterm
_malloc_crt
__iob_func
_setjmp
strchr
memcpy
free
longjmp
malloc
calloc
strcpy
strlen
strcmp
memset

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer

Exports

Exports

VerifyClass
VerifyClassForMajorVersion
VerifyClassname
VerifyFixClassname

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/w2k_lsa_auth.dll
.dll windows:5 windows x64 arch:x64

9d4fb833b3cc691293ab97be58950f4d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\w2k_lsa_auth.pdb

Imports

advapi32

LsaNtStatusToWinError

secur32

LsaCallAuthenticationPackage
LsaFreeReturnBuffer
LsaConnectUntrusted
LsaLookupAuthenticationPackage

kernel32

GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
GetLastError
FormatMessageW
LocalFree
LocalAlloc
FileTimeToSystemTime
CompareFileTime
GetSystemTimeAsFileTime
GetWindowsDirectoryW
GetSystemWindowsDirectoryW
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
DecodePointer
EncodePointer
GetCurrentProcessId

wsock32

htonl

msvcr100

_initterm_e
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_initterm
_malloc_crt
strlen
wcsncpy
wcslen
memcpy
printf
_vswprintf_c_l
free

Exports

Exports

JNI_OnLoad
JNI_OnUnload
Java_sun_security_krb5_Config_getWindowsDirectory
Java_sun_security_krb5_Credentials_acquireDefaultNativeCreds

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/zip.dll
.dll windows:5 windows x64 arch:x64

19bf3619cdd301b72f22fe034bcdca20

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\src\AOSP-openjdk-cygwin\jdk8u\build\windows-x86_64-normal-server-release\jdk\bin\zip.pdb

Imports

jvm

JVM_GetLastErrorString
JVM_RawMonitorDestroy
jio_fprintf
JVM_NativePath
JVM_RawMonitorEnter
JVM_RawMonitorExit
JVM_RawMonitorCreate

java

getErrorString
handleLseek
handleRead
JNU_ClassString
JNU_ThrowIOExceptionWithLastError
JNU_GetStringPlatformChars
winFileHandleOpen
JNU_ReleaseStringPlatformChars
JNU_NewStringPlatform
JNU_NewObjectByName
JNU_ThrowByName
JNU_ThrowInternalError
JNU_ThrowIllegalArgumentException
JNU_ThrowOutOfMemoryError

msvcr100

free
calloc
_errno
malloc
strlen
memcpy
memset
realloc
strcmp
strcpy
_strdup
_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit
__C_specific_handler
__CppXcptFilter
__crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
sprintf
__iob_func

kernel32

CloseHandle
CreateFileA
EncodePointer
DecodePointer
Sleep
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess

Exports

Exports

Java_java_util_jar_JarFile_getMetaInfEntryNames
Java_java_util_zip_Adler32_update
Java_java_util_zip_Adler32_updateByteBuffer
Java_java_util_zip_Adler32_updateBytes
Java_java_util_zip_CRC32_update
Java_java_util_zip_CRC32_updateByteBuffer
Java_java_util_zip_CRC32_updateBytes
Java_java_util_zip_Deflater_deflateBytes
Java_java_util_zip_Deflater_end
Java_java_util_zip_Deflater_getAdler
Java_java_util_zip_Deflater_init
Java_java_util_zip_Deflater_initIDs
Java_java_util_zip_Deflater_reset
Java_java_util_zip_Deflater_setDictionary
Java_java_util_zip_Inflater_end
Java_java_util_zip_Inflater_getAdler
Java_java_util_zip_Inflater_inflateBytes
Java_java_util_zip_Inflater_init
Java_java_util_zip_Inflater_initIDs
Java_java_util_zip_Inflater_reset
Java_java_util_zip_Inflater_setDictionary
Java_java_util_zip_ZipFile_close
Java_java_util_zip_ZipFile_freeEntry
Java_java_util_zip_ZipFile_getCommentBytes
Java_java_util_zip_ZipFile_getEntry
Java_java_util_zip_ZipFile_getEntryBytes
Java_java_util_zip_ZipFile_getEntryCSize
Java_java_util_zip_ZipFile_getEntryCrc
Java_java_util_zip_ZipFile_getEntryFlag
Java_java_util_zip_ZipFile_getEntryMethod
Java_java_util_zip_ZipFile_getEntrySize
Java_java_util_zip_ZipFile_getEntryTime
Java_java_util_zip_ZipFile_getNextEntry
Java_java_util_zip_ZipFile_getTotal
Java_java_util_zip_ZipFile_getZipMessage
Java_java_util_zip_ZipFile_initIDs
Java_java_util_zip_ZipFile_open
Java_java_util_zip_ZipFile_read
Java_java_util_zip_ZipFile_startsWithLOC
ZIP_CRC32
ZIP_Close
ZIP_FindEntry
ZIP_GetNextEntry
ZIP_Open
ZIP_ReadEntry

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/bin/zipalign.exe
.exe windows:6 windows x86 arch:x86

40dd968292929322479512a55bbfd207

Code Sign

06:ae:a7:6b:ac:46:a9:e8:cf:e6:d2:9e:45:aa:f0:33
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

08/11/2019, 00:00

Not After

16/11/2022, 12:00

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ce:bc:0f:49:a1:71:5b:78:80:d4:da:ce:0c:a4:d3:4c:40:07:4d:ef:76:9b:eb:53:cd:07:bc:63:a8:6d:be:d5
Signer

Actual PE Digest

ce:bc:0f:49:a1:71:5b:78:80:d4:da:ce:0c:a4:d3:4c:40:07:4d:ef:76:9b:eb:53:cd:07:bc:63:a8:6d:be:d5

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AcquireSRWLockExclusive
AddVectoredExceptionHandler
CloseHandle
CreateEventA
CreateFileMappingW
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
FindFirstVolumeW
FindNextVolumeW
FindVolumeClose
FlsAlloc
FlsGetValue
FlsSetValue
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDiskFreeSpaceExW
GetFileAttributesA
GetFileInformationByHandle
GetFileSizeEx
GetFileType
GetHandleInformation
GetLastError
GetModuleFileNameA
GetProcessAffinityMask
GetStartupInfoA
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadContext
GetThreadId
GetThreadPriority
GetTickCount
GetVolumeInformationW
InitOnceExecuteOnce
InitializeCriticalSection
IsDBCSLeadByteEx
IsDebuggerPresent
LeaveCriticalSection
MapViewOfFile
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadFile
ReleaseSRWLockExclusive
ReleaseSemaphore
RemoveVectoredExceptionHandler
ResetEvent
ResumeThread
SetEndOfFile
SetEvent
SetFilePointer
SetLastError
SetProcessAffinityMask
SetThreadContext
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
SuspendThread
SwitchToThread
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
TryEnterCriticalSection
UnhandledExceptionFilter
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte

api-ms-win-crt-convert-l1-1-0

_strtod_l
_strtoi64_l
_strtoui64_l
_ultoa
mbstowcs
strtol
strtoul
wcrtomb_s
wcstol
wcstombs
wcstoul

api-ms-win-crt-environment-l1-1-0

__p__environ
__p__wenviron
getenv

api-ms-win-crt-filesystem-l1-1-0

_findclose
_findfirst32
_findnext32
_fstat32i64
_fullpath
_lock_file
_stat32
_stat32i64
_unlock_file
_wmkdir
_wunlink
_unlink
_rmdir
_access

api-ms-win-crt-heap-l1-1-0

_aligned_free
_aligned_malloc
calloc
free
malloc
realloc

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__p__fmode
__stdio_common_vfprintf
__stdio_common_vfwprintf
__stdio_common_vsprintf
__stdio_common_vsscanf
_get_osfhandle
_lseeki64
_telli64
_wfopen
_wmktemp_s
_wopen
fclose
feof
ferror
fflush
fgetwc
fopen
fputc
fputs
fputwc
fread
fseek
ftell
fwrite
getc
rewind
ungetc
_write
_read
_fileno
_close

api-ms-win-crt-locale-l1-1-0

___lc_codepage_func
___mb_cur_max_func
__pctype_func
_configthreadlocale
_create_locale
_free_locale
localeconv
setlocale
__initialize_lconv_for_unsigned_char

api-ms-win-crt-string-l1-1-0

_isctype_l
_iswalpha_l
_iswcntrl_l
_iswdigit_l
_iswlower_l
_iswprint_l
_iswpunct_l
_iswspace_l
_iswupper_l
_iswxdigit_l
_strcoll_l
_strnicmp
_strxfrm_l
_tolower_l
_toupper_l
_towlower_l
_towupper_l
_wcscoll_l
_wcsxfrm_l
islower
isspace
isupper
iswctype
isxdigit
memset
strcmp
strcpy
strcpy_s
strlen
strncmp
tolower
wcslen
_strdup

api-ms-win-crt-private-l1-1-0

_setjmp3
longjmp
memchr
memcmp
memcpy
memmove
strchr
strrchr

api-ms-win-crt-time-l1-1-0

__daylight
__timezone
__tzname
_localtime32
_localtime32_s
_mktime32
_strftime_l
_time32
_tzset
strftime

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-runtime-l1-1-0

_set_app_type
__p___argc
__p___argv
__p___wargv
__p__acmdln
__sys_nerr
_beginthreadex
_cexit
_configure_narrow_argv
_configure_wide_argv
_crt_atexit
_endthreadex
_errno
_initialize_narrow_environment
_initialize_wide_environment
_initterm
_set_invalid_parameter_handler
abort
exit
signal
strerror
strerror_s
_getpid

api-ms-win-crt-multibyte-l1-1-0

_mbtowc_l

Sections

.text
Size: 675KB - Virtual size: 674KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 81B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gcc_exc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SpyLogger V1.1/res/lib/accessibility.properties
SpyLogger V1.1/res/lib/amd64/jvm.cfg
SpyLogger V1.1/res/lib/calendars.properties
SpyLogger V1.1/res/lib/charsets.jar
.jar
SpyLogger V1.1/res/lib/classlist
SpyLogger V1.1/res/lib/cmm/CIEXYZ.pf
SpyLogger V1.1/res/lib/cmm/GRAY.pf
SpyLogger V1.1/res/lib/cmm/LINEAR_RGB.pf
SpyLogger V1.1/res/lib/cmm/PYCC.pf
SpyLogger V1.1/res/lib/cmm/sRGB.pf
SpyLogger V1.1/res/lib/content-types.properties
SpyLogger V1.1/res/lib/currency.data
SpyLogger V1.1/res/lib/ext/access-bridge-64.jar
.jar
SpyLogger V1.1/res/lib/ext/cldrdata.jar
.jar
SpyLogger V1.1/res/lib/ext/dnsns.jar
.jar
SpyLogger V1.1/res/lib/ext/jaccess.jar
.jar
SpyLogger V1.1/res/lib/ext/localedata.jar
.jar
SpyLogger V1.1/res/lib/ext/meta-index
SpyLogger V1.1/res/lib/ext/nashorn.jar
.jar
SpyLogger V1.1/res/lib/ext/sunec.jar
.jar
SpyLogger V1.1/res/lib/ext/sunjce_provider.jar
.jar
SpyLogger V1.1/res/lib/ext/sunmscapi.jar
.jar
SpyLogger V1.1/res/lib/ext/sunpkcs11.jar
.jar
SpyLogger V1.1/res/lib/ext/zipfs.jar
.jar
SpyLogger V1.1/res/lib/flavormap.properties
SpyLogger V1.1/res/lib/fontconfig.bfc
SpyLogger V1.1/res/lib/fontconfig.properties.src
SpyLogger V1.1/res/lib/fonts/DroidSans-Bold.ttf
SpyLogger V1.1/res/lib/fonts/DroidSans.ttf
SpyLogger V1.1/res/lib/fonts/DroidSansFallbackFull.ttf
SpyLogger V1.1/res/lib/fonts/DroidSansMono.ttf
SpyLogger V1.1/res/lib/fonts/DroidSansMonoDotted.ttf
SpyLogger V1.1/res/lib/fonts/DroidSansMonoSlashed.ttf
SpyLogger V1.1/res/lib/fonts/DroidSerif-Bold.ttf
SpyLogger V1.1/res/lib/fonts/DroidSerif-BoldItalic.ttf
SpyLogger V1.1/res/lib/fonts/DroidSerif-Italic.ttf
SpyLogger V1.1/res/lib/fonts/DroidSerif-Regular.ttf
SpyLogger V1.1/res/lib/fonts/LICENSE.txt
SpyLogger V1.1/res/lib/fonts/font.conf
.xml
SpyLogger V1.1/res/lib/hijrah-config-umalqura.properties
SpyLogger V1.1/res/lib/images/cursors/cursors.properties
SpyLogger V1.1/res/lib/images/cursors/invalid32x32.gif
.gif
SpyLogger V1.1/res/lib/images/cursors/win32_CopyDrop32x32.gif
.gif
SpyLogger V1.1/res/lib/images/cursors/win32_CopyNoDrop32x32.gif
.gif
SpyLogger V1.1/res/lib/images/cursors/win32_LinkDrop32x32.gif
.gif
SpyLogger V1.1/res/lib/images/cursors/win32_LinkNoDrop32x32.gif
.gif
SpyLogger V1.1/res/lib/images/cursors/win32_MoveDrop32x32.gif
.gif
SpyLogger V1.1/res/lib/images/cursors/win32_MoveNoDrop32x32.gif
.gif
SpyLogger V1.1/res/lib/jce.jar
.jar
SpyLogger V1.1/res/lib/jsse.jar
.jar
SpyLogger V1.1/res/lib/jvm.hprof.txt
SpyLogger V1.1/res/lib/logging.properties
SpyLogger V1.1/res/lib/management-agent.jar
.jar
SpyLogger V1.1/res/lib/management/jmxremote.access
SpyLogger V1.1/res/lib/management/jmxremote.password.template
SpyLogger V1.1/res/lib/management/management.properties
SpyLogger V1.1/res/lib/management/snmp.acl.template
SpyLogger V1.1/res/lib/meta-index
SpyLogger V1.1/res/lib/net.properties
SpyLogger V1.1/res/lib/psfont.properties.ja
SpyLogger V1.1/res/lib/psfontj2d.properties
SpyLogger V1.1/res/lib/resources.jar
.jar
SpyLogger V1.1/res/lib/rt.jar
.jar
SpyLogger V1.1/res/lib/security/blacklisted.certs
SpyLogger V1.1/res/lib/security/cacerts
SpyLogger V1.1/res/lib/security/java.policy
SpyLogger V1.1/res/lib/security/java.security
SpyLogger V1.1/res/lib/security/policy/limited/US_export_policy.jar
.jar
SpyLogger V1.1/res/lib/security/policy/limited/local_policy.jar
.jar
SpyLogger V1.1/res/lib/security/policy/unlimited/US_export_policy.jar
.jar
SpyLogger V1.1/res/lib/security/policy/unlimited/local_policy.jar
.jar
SpyLogger V1.1/res/lib/sound.properties
SpyLogger V1.1/res/lib/tzdb.dat
SpyLogger V1.1/res/lib/tzmappings

Resubmissions

Sharing

General

Malware Config

Signatures

Files

dae02f32a21e03ce65412f6e56942daa

Code Sign

7a:98:1b:7d:3e:b4:86:bb:45:84:c4:3c:c9:a8:3f:dbCertificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

51:85:2a:c3:53:87:5a:c8:6e:df:5c:75:c9:c6:c7:dc:b9:6d:bd:99Signer

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 2.0MB - Virtual size: 2.0MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 433KB - Virtual size: 433KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Code Sign

06:ce:e1:31:be:6d:55:c8:07:f7:c0:c7:fb:44:e6:20Certificate

Key Usages

0a:de:32:e9:50:9b:44:aa:34:b1:da:f1:bc:0e:c8:73Certificate

Extended Key Usages

Key Usages

0c:d1:40:7a:5a:bd:ed:43:d5:c1:73:12:1d:38:c5:29Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

38:27:11:d0:35:02:fc:58:64:ae:1e:6c:cb:c5:eb:67:eb:5d:dc:c8:86:9e:e4:59:cc:0d:02:0e:5f:d1:fc:9bSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 681KB - Virtual size: 680KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

Headers

DLL Characteristics

File Characteristics

Sections

Size: 23.7MB - Virtual size: 23.7MB

Size: 6KB - Virtual size: 27KB

Size: 512B - Virtual size: 12B

.idata Size: 512B - Virtual size: 8KB

.rsrc Size: 28KB - Virtual size: 28KB

.themida Size: - Virtual size: 5.7MB

.boot Size: 3.3MB - Virtual size: 3.3MB

84a83eef8237ed147efd088b8e576a83

Headers

7a:98:1b:7d:3e:b4:86:bb:45:84:c4:3c:c9:a8:3f:db
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

51:85:2a:c3:53:87:5a:c8:6e:df:5c:75:c9:c6:c7:dc:b9:6d:bd:99
Signer

.text
Size: 2.0MB - Virtual size: 2.0MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 433KB - Virtual size: 433KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 512B - Virtual size: 12B

06:ce:e1:31:be:6d:55:c8:07:f7:c0:c7:fb:44:e6:20
Certificate

0a:de:32:e9:50:9b:44:aa:34:b1:da:f1:bc:0e:c8:73
Certificate

0c:d1:40:7a:5a:bd:ed:43:d5:c1:73:12:1d:38:c5:29
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

38:27:11:d0:35:02:fc:58:64:ae:1e:6c:cb:c5:eb:67:eb:5d:dc:c8:86:9e:e4:59:cc:0d:02:0e:5f:d1:fc:9b
Signer

.text
Size: 681KB - Virtual size: 680KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.idata
Size: 512B - Virtual size: 8KB

.rsrc
Size: 28KB - Virtual size: 28KB

.themida
Size: - Virtual size: 5.7MB

.boot
Size: 3.3MB - Virtual size: 3.3MB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 88B

.pdata
Size: 512B - Virtual size: 192B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 62KB - Virtual size: 61KB

.rdata
Size: 64KB - Virtual size: 64KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 36B

.text
Size: 57KB - Virtual size: 56KB

.rdata
Size: 30KB - Virtual size: 30KB

.data
Size: 5KB - Virtual size: 13KB

.pdata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 512B - Virtual size: 384B