34a6d2657d9f3655e6513af83798be90_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

34a6d2657d9f3655e6513af83798be90_NeikiAnalytics.exe
Size

1.5MB
MD5

34a6d2657d9f3655e6513af83798be90
SHA1

3590347ba83e478862a8e1f0084e4e10dae85273
SHA256

b730726cb5296c3c1126cdbbf3052f69bd2709b286a9ca10e4a48aefd04c633e
SHA512

138c350deabc42668e4e8a5dc267a0a19b3311ed8a3bf30aea78c81abd6ec1e2d6ab9b23ce15b15326acc61834b291d494c14ffee003526ed81403cddeef2958
SSDEEP

49152:bgn9nPtuhSSBv4kC8GysK5FlMS/zk3NDu440duCc:MnVl6SSBvTC8GyV5rZw3NTxduCc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34a6d2657d9f3655e6513af83798be90_NeikiAnalytics.exe

NSIS installer 2 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2

Files

34a6d2657d9f3655e6513af83798be90_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HFUILib.dll
.dll windows:5 windows x86 arch:x86

22baa4f9ef021a9d6c863e7702254ec5

Code Sign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

Issuer

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Not Before

08/08/2009, 01:00

Not After

08/08/2024, 01:00

Subject

CN=WoSign Time Stamping Signer,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

15/07/2015, 00:00

Not After

14/07/2016, 23:59

Subject

CN=北京应龙互动科技有限公司,OU=开发部,O=北京应龙互动科技有限公司,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

33:0e:e2:4f:2a:33:9e:87:c8:8d:d7:5d:35:30:b1:06:36:e5:e1:1e
Signer

Actual PE Digest

33:0e:e2:4f:2a:33:9e:87:c8:8d:d7:5d:35:30:b1:06:36:e5:e1:1e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\yinglongsvn\gamebox\Game\client\bin\release\HFUILib.pdb

Imports

kernel32

LocalFree
LocalAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
IsProcessorFeaturePresent
LoadLibraryA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
InterlockedCompareExchange
InterlockedExchange
DecodePointer
EncodePointer
WriteFile
SetFileTime
GetCurrentDirectoryW
CreateDirectoryW
DosDateTimeToFileTime
SystemTimeToFileTime
GetCurrentProcess
DuplicateHandle
GetFileType
SetFilePointer
MultiByteToWideChar
lstrlenW
CreateFileW
GetFileSize
ReadFile
CloseHandle
WideCharToMultiByte
GetTickCount
GetModuleFileNameW
lstrcpynW
MulDiv
DisableThreadLibraryCalls
FreeResource
CreateThread
GetCurrentThread
Sleep
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
FindResourceW
SizeofResource
LoadResource
LockResource
GetModuleHandleW
GetProcAddress
WaitForSingleObject
GetLastError
LoadLibraryW
FreeLibrary
IsDebuggerPresent
RaiseException

user32

GetClientRect
wsprintfW
OffsetRect
DestroyWindow
ReleaseDC
GetDC
ReleaseCapture
SetCapture
FillRect
InvalidateRect
InvalidateRgn
InflateRect
UnionRect
SetWindowLongW
IsWindow
ShowWindow
PostQuitMessage
DispatchMessageW
TranslateMessage
SetFocus
GetMessageW
EnableWindow
GetWindow
SetWindowPos
SystemParametersInfoW
LoadImageW
GetSystemMetrics
CallWindowProcW
GetWindowLongW
GetPropW
SetPropW
PostMessageW
AdjustWindowRectEx
GetMenu
SetCursor
LoadCursorW
GetWindowRect
RegisterClassExW
GetClassInfoExW
LoadStringW
CreateWindowExW
wvsprintfW
DrawTextW
ScreenToClient
CharNextW
SetRect
GetIconInfo
DestroyIcon
GetCursorPos
IsWindowEnabled
GetUpdateRect
GetDlgItem
GetFocus
KillTimer
SetTimer
RegisterWindowMessageW
GetKeyState
GetKeyNameTextW
SetWindowTextW
GetWindowTextLengthW
GetWindowTextW
IntersectRect
MapWindowPoints
PtInRect
DefWindowProcW
EndPaint
BeginPaint
CreateAcceleratorTableW
RedrawWindow
MoveWindow
GetParent
IsRectEmpty
RegisterClassW
SendMessageW
DrawIconEx

gdi32

SelectClipRgn
ExtSelectClipRgn
CreateRectRgnIndirect
GetClipBox
ExtTextOutW
SetBkColor
Rectangle
GetStockObject
SelectObject
CreatePen
LineTo
MoveToEx
BitBlt
CreateCompatibleDC
SetTextColor
CreateSolidBrush
SetStretchBltMode
GetTextExtentPoint32W
TextOutW
GetObjectW
GdiFlush
CreateDIBSection
CreateCompatibleBitmap
RoundRect
CreateFontIndirectW
GetTextMetricsW
SetWindowOrgEx
RestoreDC
SaveDC
GetObjectType
DeleteObject
GetPixel
SetPixel
DeleteDC
SetBkMode
GetDeviceCaps

ole32

CLSIDFromString
OleLockRunning
CoCreateInstance
CreateStreamOnHGlobal
CLSIDFromProgID

msvcp100

?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z

winmm

timeGetTime

comctl32

ImageList_LoadImageW
ImageList_GetIcon
ord17
_TrackMouseEvent

msvcr100

?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
strncpy
strcpy
strcmp
calloc
_gmtime64
swprintf_s
wcsncmp
strlen
toupper
wcsncpy_s
_wtol
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
_except_handler4_common
wcstol
iswalnum
wcscat_s
labs
isdigit
_wcslwr
_wcsupr
_wcsicmp
wcscpy
wcscat
wcslen
memmove
realloc
free
malloc
_cprintf
wcsstr
wcsrchr
wcschr
abs
sin
cos
wcscmp
_wtoi
wcsncpy
??2@YAPAXI@Z
memset
memcmp
_crt_debugger_hook
__clean_type_info_names_internal
??0exception@std@@QAE@ABQBD@Z
__CxxFrameHandler3
memcpy
_purecall
??_V@YAXPAX@Z
??3@YAXPAX@Z

gdiplus

GdiplusStartup
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipDrawImageRectI
GdiplusShutdown
GdipCloneImage
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipCreateFromHDC

urlmon

URLDownloadToCacheFileW

shlwapi

SHCreateStreamOnFileEx

Exports

Exports

??0CActiveXUI@@QAE@ABV0@@Z
??0CActiveXUI@@QAE@XZ
??0CAnimJobUI@@QAE@ABV0@@Z
??0CAnimJobUI@@QAE@W4UITYPE_ANIM@@KKKKUtagRECT@@HHHHM@Z
??0CBossEditUI@@QAE@ABV0@@Z
??0CBossEditUI@@QAE@XZ
??0CButtonUI@@QAE@ABV0@@Z
??0CButtonUI@@QAE@XZ
??0CCanvasUI@@QAE@ABV0@@Z
??0CCanvasUI@@QAE@XZ
??0CContainerUI@@QAE@ABV0@@Z
??0CContainerUI@@QAE@XZ
??0CControlCanvasUI@@QAE@ABV0@@Z
??0CControlCanvasUI@@QAE@XZ
??0CControlUI@@QAE@ABV0@@Z
??0CControlUI@@QAE@XZ
??0CDialogBuilder@@QAE@XZ
??0CDialogCanvasUI@@QAE@ABV0@@Z
??0CDialogCanvasUI@@QAE@XZ
??0CDialogLayoutUI@@QAE@ABV0@@Z
??0CDialogLayoutUI@@QAE@XZ
??0CDropDownUI@@QAE@ABV0@@Z
??0CDropDownUI@@QAE@XZ
??0CFadedLineUI@@QAE@ABV0@@Z
??0CFadedLineUI@@QAE@XZ
??0CFileDownloadHelper@@QAE@PAVCControlUI@@PB_W@Z
??0CGreyTextHeaderUI@@QAE@ABV0@@Z
??0CGreyTextHeaderUI@@QAE@XZ
??0CHorizontalLayoutUI@@QAE@ABV0@@Z
??0CHorizontalLayoutUI@@QAE@XZ
??0CImagePanelUI@@QAE@ABV0@@Z
??0CImagePanelUI@@QAE@XZ
??0CLabelPanelUI@@QAE@ABV0@@Z
??0CLabelPanelUI@@QAE@XZ
??0CListElementUI@@QAE@ABV0@@Z
??0CListElementUI@@QAE@XZ
??0CListExpandElementUI@@QAE@ABV0@@Z
??0CListExpandElementUI@@QAE@XZ
??0CListFooterUI@@QAE@ABV0@@Z
??0CListFooterUI@@QAE@XZ
??0CListHeaderItemUI@@QAE@ABV0@@Z
??0CListHeaderItemUI@@QAE@XZ
??0CListHeaderShadowUI@@QAE@ABV0@@Z
??0CListHeaderShadowUI@@QAE@XZ
??0CListHeaderUI@@QAE@ABV0@@Z
??0CListHeaderUI@@QAE@XZ
??0CListLabelElementUI@@QAE@ABV0@@Z
??0CListLabelElementUI@@QAE@XZ
??0CListTextElementUI@@QAE@ABV0@@Z
??0CListTextElementUI@@QAE@XZ
??0CListUI@@QAE@ABV0@@Z
??0CListUI@@QAE@XZ
??0CMarkup@@QAE@PB_W@Z
??0CMarkupNode@@AAE@PAVCMarkup@@H@Z
??0CMarkupNode@@AAE@XZ
??0CMemImagePanelUI@@QAE@ABV0@@Z
??0CMemImagePanelUI@@QAE@XZ
??0CMultiLineEditUI@@QAE@ABV0@@Z
??0CMultiLineEditUI@@QAE@XZ
??0CNavigatorButtonUI@@QAE@ABV0@@Z
??0CNavigatorButtonUI@@QAE@XZ
??0CNavigatorPanelUI@@QAE@ABV0@@Z
??0CNavigatorPanelUI@@QAE@XZ
??0COptionUI@@QAE@ABV0@@Z
??0COptionUI@@QAE@XZ
??0CPaddingPanelUI@@QAE@ABV0@@Z
??0CPaddingPanelUI@@QAE@HH@Z
??0CPaddingPanelUI@@QAE@XZ
??0CPaintManagerUI@@QAE@ABV0@@Z
??0CPaintManagerUI@@QAE@XZ
??0CPngImagePanelUI@@QAE@ABV0@@Z
??0CPngImagePanelUI@@QAE@PAUHWND__@@@Z
??0CRadioUI@@QAE@ABV0@@Z
??0CRadioUI@@QAE@XZ
??0CScrollBarUI@@QAE@ABV0@@Z
??0CScrollBarUI@@QAE@XZ
??0CSearchTitlePanelUI@@QAE@ABV0@@Z
??0CSearchTitlePanelUI@@QAE@XZ
??0CSeparatorLineUI@@QAE@ABV0@@Z
??0CSeparatorLineUI@@QAE@XZ
??0CSingleLineEditUI@@QAE@ABV0@@Z
??0CSingleLineEditUI@@QAE@XZ
??0CSingleLinePickUI@@QAE@ABV0@@Z
??0CSingleLinePickUI@@QAE@XZ
??0CStatusbarUI@@QAE@ABV0@@Z
??0CStatusbarUI@@QAE@XZ
??0CStdPtrArray@@QAE@ABV0@@Z
??0CStdPtrArray@@QAE@H@Z
??0CStdString@@QAE@ABV0@@Z
??0CStdString@@QAE@PB_WH@Z
??0CStdString@@QAE@XZ
??0CStdString@@QAE@_W@Z
??0CStdValArray@@QAE@ABV0@@Z
??0CStdValArray@@QAE@HH@Z
??0CTabFolderCanvasUI@@QAE@ABV0@@Z
??0CTabFolderCanvasUI@@QAE@XZ
??0CTabFolderUI@@QAE@ABV0@@Z
??0CTabFolderUI@@QAE@XZ
??0CTabPageUI@@QAE@ABV0@@Z
??0CTabPageUI@@QAE@XZ
??0CTaskPanelUI@@QAE@ABV0@@Z
??0CTaskPanelUI@@QAE@XZ
??0CTextPanelUI@@QAE@ABV0@@Z
??0CTextPanelUI@@QAE@XZ
??0CTileLayoutUI@@QAE@ABV0@@Z
??0CTileLayoutUI@@QAE@XZ
??0CTitleShadowUI@@QAE@ABV0@@Z
??0CTitleShadowUI@@QAE@XZ
??0CToolButtonUI@@QAE@ABV0@@Z
??0CToolButtonUI@@QAE@XZ
??0CToolGripperUI@@QAE@ABV0@@Z
??0CToolGripperUI@@QAE@XZ
??0CToolSeparatorUI@@QAE@ABV0@@Z
??0CToolSeparatorUI@@QAE@XZ
??0CToolbarTitlePanelUI@@QAE@ABV0@@Z
??0CToolbarTitlePanelUI@@QAE@XZ
??0CToolbarUI@@QAE@ABV0@@Z
??0CToolbarUI@@QAE@XZ
??0CUPoint@@QAE@ABUtagPOINT@@@Z
??0CUPoint@@QAE@HH@Z
??0CUPoint@@QAE@J@Z
??0CUPoint@@QAE@XZ
??0CURect@@QAE@ABUtagRECT@@@Z
??0CURect@@QAE@HHHH@Z
??0CURect@@QAE@XZ
??0CUSize@@QAE@ABUtagSIZE@@@Z
??0CUSize@@QAE@HH@Z
??0CUSize@@QAE@UtagRECT@@@Z
??0CUSize@@QAE@XZ
??0CVerticalLayoutUI@@QAE@ABV0@@Z
??0CVerticalLayoutUI@@QAE@XZ
??0CWaitCursor@@QAE@XZ
??0CWarningPanelUI@@QAE@ABV0@@Z
??0CWarningPanelUI@@QAE@XZ
??0CWhiteCanvasUI@@QAE@ABV0@@Z
??0CWhiteCanvasUI@@QAE@XZ
??0CWindowCanvasUI@@QAE@ABV0@@Z
??0CWindowCanvasUI@@QAE@XZ
??0CWindowWnd@@QAE@ABV0@@Z
??0CWindowWnd@@QAE@XZ
??1CActiveXUI@@UAE@XZ
??1CBossEditUI@@UAE@XZ
??1CButtonUI@@UAE@XZ
??1CCanvasUI@@UAE@XZ
??1CContainerUI@@UAE@XZ
??1CControlCanvasUI@@UAE@XZ
??1CControlUI@@UAE@XZ
??1CDialogBuilder@@QAE@XZ
??1CDialogCanvasUI@@UAE@XZ
??1CDialogLayoutUI@@UAE@XZ
??1CDropDownUI@@UAE@XZ
??1CFadedLineUI@@UAE@XZ
??1CFileDownloadHelper@@QAE@XZ
??1CGreyTextHeaderUI@@UAE@XZ
??1CHorizontalLayoutUI@@UAE@XZ
??1CImagePanelUI@@UAE@XZ
??1CLabelPanelUI@@UAE@XZ
??1CListElementUI@@UAE@XZ
??1CListExpandElementUI@@UAE@XZ
??1CListFooterUI@@UAE@XZ
??1CListHeaderItemUI@@UAE@XZ
??1CListHeaderShadowUI@@UAE@XZ
??1CListHeaderUI@@UAE@XZ
??1CListLabelElementUI@@UAE@XZ
??1CListTextElementUI@@UAE@XZ
??1CListUI@@UAE@XZ
??1CMarkup@@QAE@XZ
??1CMemImagePanelUI@@UAE@XZ
??1CMultiLineEditUI@@UAE@XZ
??1CNavigatorButtonUI@@UAE@XZ
??1CNavigatorPanelUI@@UAE@XZ
??1COptionUI@@UAE@XZ
??1CPaddingPanelUI@@UAE@XZ
??1CPaintManagerUI@@QAE@XZ
??1CPngImagePanelUI@@UAE@XZ
??1CRadioUI@@UAE@XZ
??1CRenderClip@@QAE@XZ
??1CScrollBarUI@@UAE@XZ
??1CSearchTitlePanelUI@@UAE@XZ
??1CSeparatorLineUI@@UAE@XZ
??1CSingleLineEditUI@@UAE@XZ
??1CSingleLinePickUI@@UAE@XZ
??1CStatusbarUI@@UAE@XZ
??1CStdPtrArray@@UAE@XZ
??1CStdString@@UAE@XZ
??1CStdValArray@@UAE@XZ
??1CTabFolderCanvasUI@@UAE@XZ
??1CTabFolderUI@@UAE@XZ
??1CTabPageUI@@UAE@XZ
??1CTaskPanelUI@@UAE@XZ
??1CTextPanelUI@@UAE@XZ
??1CTileLayoutUI@@UAE@XZ
??1CTitleShadowUI@@UAE@XZ
??1CToolButtonUI@@UAE@XZ
??1CToolGripperUI@@UAE@XZ
??1CToolSeparatorUI@@UAE@XZ
??1CToolbarTitlePanelUI@@UAE@XZ
??1CToolbarUI@@UAE@XZ
??1CVerticalLayoutUI@@UAE@XZ
??1CWaitCursor@@QAE@XZ
??1CWarningPanelUI@@UAE@XZ
??1CWhiteCanvasUI@@UAE@XZ
??1CWindowCanvasUI@@UAE@XZ
??1CWindowWnd@@UAE@XZ
??4CActiveXUI@@QAEAAV0@ABV0@@Z
??4CAnimJobUI@@QAEAAV0@ABV0@@Z
??4CBlueRenderEngineUI@@QAEAAV0@ABV0@@Z
??4CBossEditUI@@QAEAAV0@ABV0@@Z
??4CButtonUI@@QAEAAV0@ABV0@@Z
??4CCanvasUI@@QAEAAV0@ABV0@@Z
??4CContainerUI@@QAEAAV0@ABV0@@Z
??4CControlCanvasUI@@QAEAAV0@ABV0@@Z
??4CControlUI@@QAEAAV0@ABV0@@Z
??4CDialogBuilder@@QAEAAV0@ABV0@@Z
??4CDialogCanvasUI@@QAEAAV0@ABV0@@Z
??4CDialogLayoutUI@@QAEAAV0@ABV0@@Z
??4CDropDownUI@@QAEAAV0@ABV0@@Z
??4CFadedLineUI@@QAEAAV0@ABV0@@Z
??4CFileDownloadHelper@@QAEAAV0@ABV0@@Z
??4CGreyTextHeaderUI@@QAEAAV0@ABV0@@Z
??4CHorizontalLayoutUI@@QAEAAV0@ABV0@@Z
??4CImagePanelUI@@QAEAAV0@ABV0@@Z
??4CLabelPanelUI@@QAEAAV0@ABV0@@Z
??4CListElementUI@@QAEAAV0@ABV0@@Z
??4CListExpandElementUI@@QAEAAV0@ABV0@@Z
??4CListFooterUI@@QAEAAV0@ABV0@@Z
??4CListHeaderItemUI@@QAEAAV0@ABV0@@Z
??4CListHeaderShadowUI@@QAEAAV0@ABV0@@Z
??4CListHeaderUI@@QAEAAV0@ABV0@@Z
??4CListLabelElementUI@@QAEAAV0@ABV0@@Z
??4CListTextElementUI@@QAEAAV0@ABV0@@Z
??4CListUI@@QAEAAV0@ABV0@@Z
??4CMarkup@@QAEAAV0@ABV0@@Z
??4CMarkupNode@@QAEAAV0@ABV0@@Z
??4CMemImagePanelUI@@QAEAAV0@ABV0@@Z
??4CMultiLineEditUI@@QAEAAV0@ABV0@@Z
??4CNavigatorButtonUI@@QAEAAV0@ABV0@@Z
??4CNavigatorPanelUI@@QAEAAV0@ABV0@@Z
??4COptionUI@@QAEAAV0@ABV0@@Z
??4CPaddingPanelUI@@QAEAAV0@ABV0@@Z
??4CPaintManagerUI@@QAEAAV0@ABV0@@Z
??4CPngImagePanelUI@@QAEAAV0@ABV0@@Z
??4CRadioUI@@QAEAAV0@ABV0@@Z
??4CRenderClip@@QAEAAV0@ABV0@@Z
??4CScrollBarUI@@QAEAAV0@ABV0@@Z
??4CSearchTitlePanelUI@@QAEAAV0@ABV0@@Z
??4CSeparatorLineUI@@QAEAAV0@ABV0@@Z
??4CSingleLineEditUI@@QAEAAV0@ABV0@@Z
??4CSingleLinePickUI@@QAEAAV0@ABV0@@Z
??4CStatusbarUI@@QAEAAV0@ABV0@@Z
??4CStdPtrArray@@QAEAAV0@ABV0@@Z
??4CStdString@@QAEABV0@ABV0@@Z
??4CStdString@@QAEABV0@PB_W@Z
??4CStdString@@QAEABV0@_W@Z
??4CStdValArray@@QAEAAV0@ABV0@@Z
??4CTabFolderCanvasUI@@QAEAAV0@ABV0@@Z
??4CTabFolderUI@@QAEAAV0@ABV0@@Z
??4CTabPageUI@@QAEAAV0@ABV0@@Z
??4CTaskPanelUI@@QAEAAV0@ABV0@@Z
??4CTextPanelUI@@QAEAAV0@ABV0@@Z
??4CTileLayoutUI@@QAEAAV0@ABV0@@Z
??4CTitleShadowUI@@QAEAAV0@ABV0@@Z
??4CToolButtonUI@@QAEAAV0@ABV0@@Z
??4CToolGripperUI@@QAEAAV0@ABV0@@Z
??4CToolSeparatorUI@@QAEAAV0@ABV0@@Z
??4CToolbarTitlePanelUI@@QAEAAV0@ABV0@@Z
??4CToolbarUI@@QAEAAV0@ABV0@@Z
??4CUPoint@@QAEAAV0@ABV0@@Z
??4CURect@@QAEAAV0@ABV0@@Z
??4CUSize@@QAEAAV0@ABV0@@Z
??4CVerticalLayoutUI@@QAEAAV0@ABV0@@Z
??4CWaitCursor@@QAEAAV0@ABV0@@Z
??4CWarningPanelUI@@QAEAAV0@ABV0@@Z
??4CWhiteCanvasUI@@QAEAAV0@ABV0@@Z
??4CWindowCanvasUI@@QAEAAV0@ABV0@@Z
??4CWindowWnd@@QAEAAV0@ABV0@@Z
??8CStdString@@QBE_NPB_W@Z
??9CStdString@@QBE_NPB_W@Z
??ACStdPtrArray@@QBEPAXH@Z
??ACStdString@@QBE_WH@Z
??ACStdValArray@@QBEPAXH@Z
??BCStdString@@QBEPB_WXZ
??BCWindowWnd@@QBEPAUHWND__@@XZ
??HCStdString@@QAE?AV0@ABV0@@Z
??HCStdString@@QAE?AV0@PB_W@Z
??MCStdString@@QBE_NPB_W@Z
??NCStdString@@QBE_NPB_W@Z
??OCStdString@@QBE_NPB_W@Z
??PCStdString@@QBE_NPB_W@Z
??YCStdString@@QAEABV0@ABV0@@Z
??YCStdString@@QAEABV0@PB_W@Z
??YCStdString@@QAEABV0@_W@Z
??_7CActiveXUI@@6BCControlUI@@@
??_7CActiveXUI@@6BIMessageFilterUI@@@
??_7CBossEditUI@@6B@
??_7CButtonUI@@6B@
??_7CCanvasUI@@6BCControlUI@@@
??_7CCanvasUI@@6BIContainerUI@@@
??_7CContainerUI@@6BCControlUI@@@
??_7CContainerUI@@6BIContainerUI@@@
??_7CControlCanvasUI@@6BCControlUI@@@
??_7CControlCanvasUI@@6BIContainerUI@@@
??_7CControlUI@@6B@
??_7CDialogCanvasUI@@6BCControlUI@@@
??_7CDialogCanvasUI@@6BIContainerUI@@@
??_7CDialogLayoutUI@@6BCControlUI@@@
??_7CDialogLayoutUI@@6BIContainerUI@@@
??_7CDropDownUI@@6B@
??_7CDropDownUI@@6BCControlUI@@@
??_7CDropDownUI@@6BIContainerUI@@@
??_7CFadedLineUI@@6B@
??_7CGreyTextHeaderUI@@6B@
??_7CHorizontalLayoutUI@@6BCControlUI@@@
??_7CHorizontalLayoutUI@@6BIContainerUI@@@
??_7CImagePanelUI@@6B@
??_7CLabelPanelUI@@6B@
??_7CListElementUI@@6BCControlUI@@@
??_7CListElementUI@@6BIListItemUI@@@
??_7CListExpandElementUI@@6B@
??_7CListExpandElementUI@@6BCControlUI@@@
??_7CListExpandElementUI@@6BIListItemUI@@@
??_7CListFooterUI@@6BCControlUI@@@
??_7CListFooterUI@@6BIContainerUI@@@
??_7CListHeaderItemUI@@6B@
??_7CListHeaderShadowUI@@6B@
??_7CListHeaderUI@@6BCControlUI@@@
??_7CListHeaderUI@@6BIContainerUI@@@
??_7CListLabelElementUI@@6BCControlUI@@@
??_7CListLabelElementUI@@6BIListItemUI@@@
??_7CListTextElementUI@@6BCControlUI@@@
??_7CListTextElementUI@@6BIListItemUI@@@
??_7CListUI@@6B@
??_7CListUI@@6BCControlUI@@@
??_7CListUI@@6BIContainerUI@@@
??_7CMemImagePanelUI@@6B@
??_7CMultiLineEditUI@@6B@
??_7CNavigatorButtonUI@@6BCControlUI@@@
??_7CNavigatorButtonUI@@6BIListItemUI@@@
??_7CNavigatorPanelUI@@6B@
??_7CNavigatorPanelUI@@6BCControlUI@@@
??_7CNavigatorPanelUI@@6BIContainerUI@@@
??_7COptionUI@@6B@
??_7CPaddingPanelUI@@6B@
??_7CPngImagePanelUI@@6B@
??_7CRadioUI@@6B@
??_7CScrollBarUI@@6B@
??_7CSearchTitlePanelUI@@6BCControlUI@@@
??_7CSearchTitlePanelUI@@6BIContainerUI@@@
??_7CSeparatorLineUI@@6B@
??_7CSingleLineEditUI@@6B@
??_7CSingleLinePickUI@@6B@
??_7CStatusbarUI@@6BCControlUI@@@
??_7CStatusbarUI@@6BIContainerUI@@@
??_7CStdPtrArray@@6B@
??_7CStdString@@6B@
??_7CStdValArray@@6B@
??_7CTabFolderCanvasUI@@6BCControlUI@@@
??_7CTabFolderCanvasUI@@6BIContainerUI@@@
??_7CTabFolderUI@@6B@
??_7CTabFolderUI@@6BCControlUI@@@
??_7CTabFolderUI@@6BIContainerUI@@@
??_7CTabPageUI@@6BCControlUI@@@
??_7CTabPageUI@@6BIContainerUI@@@
??_7CTaskPanelUI@@6BCControlUI@@@
??_7CTaskPanelUI@@6BIContainerUI@@@
??_7CTextPanelUI@@6B@
??_7CTileLayoutUI@@6BCControlUI@@@
??_7CTileLayoutUI@@6BIContainerUI@@@
??_7CTitleShadowUI@@6B@
??_7CToolButtonUI@@6B@
??_7CToolGripperUI@@6B@
??_7CToolSeparatorUI@@6B@
??_7CToolbarTitlePanelUI@@6B@
??_7CToolbarUI@@6BCControlUI@@@
??_7CToolbarUI@@6BIContainerUI@@@
??_7CVerticalLayoutUI@@6BCControlUI@@@
??_7CVerticalLayoutUI@@6BIContainerUI@@@
??_7CWarningPanelUI@@6B@
??_7CWhiteCanvasUI@@6BCControlUI@@@
??_7CWhiteCanvasUI@@6BIContainerUI@@@
??_7CWindowCanvasUI@@6BCControlUI@@@
??_7CWindowCanvasUI@@6BIContainerUI@@@
??_7CWindowWnd@@6B@
??_FCMarkup@@QAEXXZ
??_FCPngImagePanelUI@@QAEXXZ
??_FCStdPtrArray@@QAEXXZ
?Activate@CButtonUI@@UAE_NXZ
?Activate@CControlUI@@UAE_NXZ
?Activate@CDropDownUI@@UAE_NXZ
?Activate@CListElementUI@@UAE_NXZ
?Activate@COptionUI@@UAE_NXZ
?Activate@CRadioUI@@UAE_NXZ
?Activate@CTabPageUI@@UAE_NXZ
?Activate@CTextPanelUI@@UAE_NXZ
?Add2DelayCleanup@CPaintManagerUI@@QAEXPAVCControlUI@@@Z
?Add@CContainerUI@@UAE_NPAVCControlUI@@H@Z
?Add@CDropDownUI@@UAE_NPAVCControlUI@@H@Z
?Add@CListExpandElementUI@@UAE_NPAVCControlUI@@H@Z
?Add@CListUI@@UAE_NPAVCControlUI@@H@Z
?Add@CNavigatorPanelUI@@UAE_NPAVCControlUI@@H@Z
?Add@CStdPtrArray@@QAE_NPAX@Z
?Add@CStdValArray@@QAE_NPBX@Z
?Add@CTabFolderUI@@UAE_NPAVCControlUI@@H@Z
?AddAnimJob@CPaintManagerUI@@QAE_NABVCAnimJobUI@@@Z
?AddControlWnd@CPaintManagerUI@@QAEXPAUHWND__@@@Z
?AddMessageFilter@CPaintManagerUI@@QAE_NPAVIMessageFilterUI@@@Z
?AddNotifier@CPaintManagerUI@@QAE_NPAVINotifyUI@@@Z
?AddPostPaintBlit@CPaintManagerUI@@QAE_NABUtagTPostPaintUI@@@Z
?Append@CStdString@@QAEXPB_W@Z
?AppendControls@CDialogBuilder@@QAEPAVCControlUI@@PB_WPAV2@@Z
?ApplyAttributeList@CControlUI@@QAEPAV1@PB_W@Z
?Assign@CStdString@@QAEXPB_WH@Z
?AttachDialog@CPaintManagerUI@@QAE_NPAVCControlUI@@@Z
?CenterWindow@CWindowWnd@@QAEXXZ
?ChangeChildDisplayAppend@CTileLayoutUI@@QAEH_N@Z
?ChangeControlSize@CDialogLayoutUI@@QAEXPB_WUtagSIZE@@@Z
?Close@CWindowWnd@@QAEXXZ
?Compare@CStdString@@QBEHPB_W@Z
?CompareNoCase@CStdString@@QBEHPB_W@Z
?Create@CDialogBuilder@@QAEPAVCControlUI@@PB_WPAUHWND__@@PAVIDialogBuilderCallback@@@Z
?Create@CWindowWnd@@QAEPAUHWND__@@PAU2@PB_WKKHHHHPAUHMENU__@@@Z
?Create@CWindowWnd@@QAEPAUHWND__@@PAU2@PB_WKKUtagRECT@@PAUHMENU__@@@Z
?CreateControl@CActiveXUI@@QAE_NPB_W@Z
?CreateControl@CActiveXUI@@QAE_NU_GUID@@@Z
?CreateFromResource@CDialogBuilder@@QAEPAVCControlUI@@IPAVIDialogBuilderCallback@@@Z
?Deflate@CURect@@QAEXHH@Z
?DelayedControlCreation@CActiveXUI@@IAE_NXZ
?DoAnimateWindow@CBlueRenderEngineUI@@SAXPAUHWND__@@IK@Z
?DoFillRect@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@K@Z
?DoFillRect@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@W4UITYPE_COLOR@@@Z
?DoPaint@CActiveXUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CBossEditUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CButtonUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CCanvasUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CContainerUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CDropDownUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CFadedLineUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CGreyTextHeaderUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CImagePanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CLabelPanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CListExpandElementUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CListFooterUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CListHeaderItemUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CListHeaderShadowUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CListHeaderUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CListLabelElementUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CListTextElementUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CMemImagePanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CMultiLineEditUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CNavigatorButtonUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CNavigatorPanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@COptionUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CPaddingPanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CPngImagePanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CRadioUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CScrollBarUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CSearchTitlePanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CSeparatorLineUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CSingleLineEditUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CSingleLinePickUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CStatusbarUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CTabFolderUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CTaskPanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CTextPanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CTileLayoutUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CTitleShadowUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CToolButtonUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CToolGripperUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CToolSeparatorUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CToolbarTitlePanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CToolbarUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CWarningPanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaintAlphaBitmap@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@PAUHBITMAP__@@UtagRECT@@E@Z
?DoPaintArcCaption@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@PB_WI@Z
?DoPaintBitmap@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@PAUHBITMAP__@@UtagRECT@@@Z
?DoPaintButton@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@PB_W2II@Z
?DoPaintControlPng@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@PAVBitmap@Gdiplus@@PAUHWND__@@@Z
?DoPaintEditBox@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@PB_WII_N@Z
?DoPaintFrame@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@W4UITYPE_COLOR@@33I@Z
?DoPaintGradient@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@KK_NH@Z
?DoPaintLine@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@W4UITYPE_COLOR@@@Z
?DoPaintOptionBox@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@PB_WII@Z
?DoPaintPanel@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@@Z
?DoPaintPng@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@PAVBitmap@Gdiplus@@AAUtagRECT@@_N@Z
?DoPaintPngBack@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@PAVBitmap@Gdiplus@@AAUtagRECT@@H@Z
?DoPaintPngSection@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@PAVBitmap@Gdiplus@@AAUtagRECT@@3H@Z
?DoPaintPrettyText@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@AAUtagRECT@@PB_WW4UITYPE_COLOR@@4PAU4@AAHI@Z
?DoPaintQuickText@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@AAUtagRECT@@PB_WW4UITYPE_COLOR@@W4UITYPE_FONT@@I@Z
?DoPaintRadioBox@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@PB_WII@Z
?DoPaintRectangle@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@W4UITYPE_COLOR@@3@Z
?DoPaintTabFolder@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@AAUtagRECT@@PB_WI@Z
?DoPaintToolbarButton@CBlueRenderEngineUI@@SAXPAUHDC__@@PAVCPaintManagerUI@@UtagRECT@@PB_WUtagSIZE@@I@Z
?DownloadFileFromCloud@CFileDownloadHelper@@QAEXXZ
?DownloadProc@CFileDownloadHelper@@SGKPAX@Z
?DrawImage@CScrollBarUI@@QAE_NPAUHDC__@@PB_W1@Z
?DrawItem@CListExpandElementUI@@UAEXPAUHDC__@@ABUtagRECT@@I@Z
?DrawItem@CListLabelElementUI@@UAEXPAUHDC__@@ABUtagRECT@@I@Z
?DrawItem@CListTextElementUI@@UAEXPAUHDC__@@ABUtagRECT@@I@Z
?DrawItem@CNavigatorButtonUI@@UAEXPAUHDC__@@ABUtagRECT@@I@Z
?DrawRect@CBlueRenderEngineUI@@SAXPAUHDC__@@ABUtagRECT@@HK@Z

Sections

.text
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HuofengGameWorld.exe
.exe windows:5 windows x86 arch:x86

066565bc487eaf5c71c7eb1f7985fd23

Code Sign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

Issuer

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Not Before

08/08/2009, 01:00

Not After

08/08/2024, 01:00

Subject

CN=WoSign Time Stamping Signer,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

15/07/2015, 00:00

Not After

14/07/2016, 23:59

Subject

CN=北京应龙互动科技有限公司,OU=开发部,O=北京应龙互动科技有限公司,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

df:25:1c:b8:00:b3:f2:62:28:b2:8f:0c:bb:60:e7:23:1a:54:8d:bd
Signer

Actual PE Digest

df:25:1c:b8:00:b3:f2:62:28:b2:8f:0c:bb:60:e7:23:1a:54:8d:bd

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\yinglongsvn\gamebox\Game\client\bin\release\HuofengGameWorld.pdb

Imports

ws2_32

WSAStartup

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

urlmon

URLOpenBlockingStreamW
URLDownloadToFileW

kernel32

SetEndOfFile
VirtualAllocEx
VirtualFreeEx
GetStdHandle
GetConsoleMode
SetConsoleMode
ReadConsoleW
GetLocaleInfoW
GetVersion
GetUserDefaultLangID
GetTempFileNameW
MoveFileExW
MoveFileW
Process32FirstW
Process32NextW
GetLogicalDriveStringsW
GetDiskFreeSpaceExW
GetDriveTypeW
GetModuleHandleW
InterlockedExchange
FindResourceExW
FindResourceW
LoadResource
GetCurrentProcess
SizeofResource
LeaveCriticalSection
FlushInstructionCache
RaiseException
SetLastError
EnterCriticalSection
LockResource
GetCurrentThreadId
ExitProcess
QueryPerformanceCounter
GetTickCount
GetModuleFileNameA
GetWindowsDirectoryW
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
lstrlenW
VirtualQuery
lstrcmpiA
GetProcAddress
Module32FirstW
GetSystemInfo
GetModuleHandleA
VirtualProtect
CreateToolhelp32Snapshot
Module32NextW
CloseHandle
GetFileType
GetCurrentProcessId
WriteProcessMemory
GetLastError
IsBadWritePtr
FreeLibrary
LoadLibraryA
CreateDirectoryW
SetEvent
GetDiskFreeSpaceA
GetFileAttributesA
SetFileAttributesA
GetFullPathNameA
SystemTimeToFileTime
CreateDirectoryA
GetSystemTime
IsDBCSLeadByte
GetCPInfo
MoveFileA
HeapDestroy
HeapSize
InterlockedPushEntrySList
IsProcessorFeaturePresent
VirtualFree
InterlockedPopEntrySList
EncodePointer
DecodePointer
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
OpenProcess
SuspendThread
VirtualAlloc
WriteFile
Sleep
ReadFile
CreateFileW
CreateEventW
WaitForMultipleObjects
CreateThread
WaitForSingleObject
OutputDebugStringW
FormatMessageW
LocalAlloc
LocalFree
LoadLibraryW
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
DeleteCriticalSection
GetDateFormatW
FileTimeToDosDateTime
GetFileSize
GlobalMemoryStatus
FindFirstFileW
SetFilePointer
CreateProcessW
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GetTimeFormatW
FileTimeToSystemTime
lstrcmpW
GetTempPathW
FindClose
RemoveDirectoryW
lstrcatW
IsDebuggerPresent
FindNextFileW
GetFileTime
FileTimeToLocalFileTime
DeleteFileW
lstrcpyW
InterlockedDecrement
CopyFileW
InterlockedCompareExchange
SetThreadContext
GetThreadContext
InitializeCriticalSection
SetFileAttributesW
HeapReAlloc
lstrcpyA
DeviceIoControl
CopyFileA
lstrcatA
GetSystemDirectoryA
GetProcessHeap
HeapFree
HeapAlloc
CreateFileA
LocalFileTimeToFileTime
GetFileAttributesW
SetFileTime
DosDateTimeToFileTime
GetFullPathNameW
AllocConsole
CreateMutexW
GetCurrentThread
ResumeThread
GetLocalTime
GetPrivateProfileStringW
lstrcpynW
WriteFileEx
SetNamedPipeHandleState
ReadFileEx
DisconnectNamedPipe
GetOverlappedResult
WaitForMultipleObjectsEx
WaitNamedPipeW
CreateNamedPipeW
WaitForSingleObjectEx
ConnectNamedPipe
TlsAlloc
GlobalFree
GlobalUnlock
CreateProcessA
GlobalAlloc
TlsSetValue
GlobalLock
TlsGetValue
GetVersionExW

user32

ClientToScreen
RegisterHotKey
UnregisterHotKey
GetClassInfoExW
RegisterClassExW
MessageBoxA
ShowWindow
CreateWindowExW
MoveWindow
CharLowerBuffW
GetActiveWindow
GetIconInfo
LoadStringW
CharToOemA
OemToCharA
OemToCharBuffW
CharLowerW
CharUpperW
SendMessageW
GetParent
IsWindowVisible
FindWindowW
DefWindowProcW
CallWindowProcW
IsWindow
SetWindowPos
ReleaseDC
GetWindowLongW
GetWindowRect
SetTimer
FindWindowExW
PostMessageW
UnregisterClassA
DestroyWindow
SetWindowLongW
LoadCursorW
RemovePropW
SetPropW
InvalidateRect
UpdateWindow
SetRectEmpty
GetPropW
IsRectEmpty
wsprintfA
IsCharAlphaNumericW
LoadImageW
GetWindowTextLengthW
GetClassNameA
FindWindowExA
GetDlgItem
EnumChildWindows
PeekMessageW
DispatchMessageW
GetWindowTextW
SetWindowRgn
IsIconic
IsZoomed
IsWindowEnabled
PtInRect
InflateRect
GetForegroundWindow
LoadIconW
BringWindowToTop
MonitorFromWindow
MessageBoxW
SetWindowTextW
GetMonitorInfoW
GetWindowThreadProcessId
SetCursor
GetWindow
EnableWindow
GetSystemMetrics
wsprintfW
wvsprintfW
EqualRect
BeginPaint
UnhookWindowsHookEx
SetWindowsHookExW
GetCursorPos
GetClassNameW
SystemParametersInfoW
IntersectRect
GetAsyncKeyState
SetFocus
UnhookWinEvent
SetParent
CallNextHookEx
AttachThreadInput
GetFocus
SetForegroundWindow
GetKeyState
DrawTextW
FillRect
PostQuitMessage
GetClientRect
KillTimer
EndPaint
UpdateLayeredWindow
GetDC
ScreenToClient
GetWindowDC

gdi32

SetTextColor
CreateFontIndirectW
GetDIBits
SetBkMode
GetStockObject
BitBlt
CreateDIBSection
GetDeviceCaps
DeleteDC
DeleteObject
SelectObject
CreateCompatibleDC
GetObjectW
CreateCompatibleBitmap

advapi32

RegCreateKeyW
SetFileSecurityW
SetFileSecurityA
OpenProcessToken
RegOpenKeyW
LookupPrivilegeValueW
AdjustTokenPrivileges
RegEnumKeyExW
RegQueryValueExW
RegEnumValueW
GetUserNameW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegSetValueExW

shell32

SHGetSpecialFolderPathW
ShellExecuteW
SHFileOperationW
SHGetFolderLocation
SHGetPathFromIDListW
ord155
ShellExecuteExW
SHGetFolderPathW
Shell_NotifyIconW

ole32

OleCreate
OleDraw
OleSetContainedObject
CoCreateInstance
OleInitialize
CLSIDFromProgID
CoInitializeEx
CoUnmarshalInterface
CoMarshalInterface
CoInitialize
CoUninitialize
CoGetMarshalSizeMax
CreateStreamOnHGlobal
CoTaskMemAlloc

oleaut32

SysStringLen
VarBstrCmp
GetErrorInfo
SysFreeString
SysAllocString
SysAllocStringByteLen
VariantInit
SysStringByteLen
VariantClear
SysAllocStringLen

sqlite3

sqlite3_exec
sqlite3_get_table
sqlite3_threadsafe
sqlite3_close
sqlite3_open
sqlite3_free_table

hfuilib

?SetAppendImage@CPngImagePanelUI@@QAE_NPB_W@Z
?SetAppendImageHot@CPngImagePanelUI@@QAE_NPB_W@Z
?PtInAppend@CPngImagePanelUI@@QAE_NUtagPOINT@@@Z
?GetControlFlags@CPngImagePanelUI@@UBEIXZ
?EstimateSize@CPngImagePanelUI@@UAE?AUtagSIZE@@U2@@Z
?DoPaint@CPngImagePanelUI@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?SetAttribute@CPngImagePanelUI@@UAEXPB_W0@Z
?SetManager@CPngImagePanelUI@@UAEXPAVCPaintManagerUI@@PAVCControlUI@@@Z
?ResizeControl@CPngImagePanelUI@@QAEXUtagSIZE@@@Z
?SetPos@CPngImagePanelUI@@UAEXUtagRECT@@@Z
?GetName@CControlUI@@UBE?AVCStdString@@XZ
?SetName@CControlUI@@UAEXPB_W@Z
?GetBuddyName@CControlUI@@UBE?AVCStdString@@XZ
?SetBuddyName@CControlUI@@UAEXPB_W@Z
?GetInterface@CControlUI@@UAEPAXPB_W@Z
?SetColor@CControlUI@@UAEXPB_W@Z
?SetFont@CControlUI@@UAEXPB_W@Z
?Activate@CControlUI@@UAE_NXZ
?GetParent@CControlUI@@UBEPAV1@XZ
?GetText@CControlUI@@UBE?AVCStdString@@XZ
?SetText@CControlUI@@UAEXPB_W@Z
?GetToolTip@CControlUI@@UBE?AVCStdString@@XZ
?SetToolTip@CControlUI@@UAEXPB_W@Z
?GetURL@CControlUI@@UBE?AVCStdString@@XZ
?SetURL@CControlUI@@UAEXPB_W@Z
?GetShortcut@CControlUI@@UBE_WXZ
?SetShortcut@CControlUI@@UAEX_W@Z
?SetTag@CControlUI@@UAEXI@Z
?SetFocus@CControlUI@@UAEXXZ
?IsCanFocus@CControlUI@@UBE_NXZ
?SetCanFocus@CControlUI@@UAEX_N@Z
?SetPosFixed@CControlUI@@UAEXW4_POS_FIXED@@@Z
?GetPosFixed@CControlUI@@UBEHXZ
?SetDisplayAppend@CControlUI@@UAEX_N@Z
?SetSelected@CControlUI@@UAEX_N@Z
?GetSelected@CControlUI@@UBE_NXZ
?SetSelectedTime@CControlUI@@UAEXXZ
?GetSelectedTime@CControlUI@@UBEIXZ
?SetFixedWidth@CControlUI@@QAEX_N@Z
?IsVisible@CControlUI@@UBE_NXZ
?SetAppendPos@CPngImagePanelUI@@QAEXPB_W@Z
?IsFocused@CControlUI@@UBE_NXZ
?SetVisible@CControlUI@@UAEX_N@Z
?SetEnabled@CControlUI@@UAEX_N@Z
?FindControl@CControlUI@@UAEPAV1@P6GPAV1@PAV1@PAX@Z1I@Z
?GetManager@CControlUI@@UBEPAVCPaintManagerUI@@XZ
?GetPos@CControlUI@@UBE?AUtagRECT@@XZ
?SetPos2@CControlUI@@UAEXUtagRECT@@@Z
?SetOrginalXPos@CControlUI@@UAEXH@Z
?GetOrginalXPos@CControlUI@@UBEHXZ
?SetOrginalYPos@CControlUI@@UAEXH@Z
?GetOrginalYPos@CControlUI@@UBEHXZ
?Invalidate@CControlUI@@QAEXXZ
?Init@CControlUI@@UAEXXZ
?Notify@CControlUI@@UAEXAAUtagTNotifyUI@@@Z
??9CStdString@@QBE_NPB_W@Z
??0CPaintManagerUI@@QAE@XZ
??1CPaintManagerUI@@QAE@XZ
?Init@CPaintManagerUI@@QAEXPAUHWND__@@PAX@Z
?AttachDialog@CPaintManagerUI@@QAE_NPAVCControlUI@@@Z
?IsEmpty@CPaintManagerUI@@QAE_NXZ
?SetFocus@CPaintManagerUI@@QAEXPAVCControlUI@@@Z
?SetTimer@CPaintManagerUI@@QAE_NPAVCControlUI@@II@Z
?KillTimer@CPaintManagerUI@@QAE_NPAVCControlUI@@I@Z
?AddNotifier@CPaintManagerUI@@QAE_NPAVINotifyUI@@@Z
?SetStretchMode@CDialogLayoutUI@@QAEXPAVCControlUI@@IH@Z
?GetNewPanelPos@CDialogLayoutUI@@QAE?AUtagRECT@@IHAAH@Z
?RecalAllChidrensPos@CDialogLayoutUI@@QAEXIH_N@Z
?Close@CWindowWnd@@QAEXXZ
?IsChecked@CRadioUI@@QBE_NXZ
?SetCheck@CRadioUI@@QAEX_N@Z
?GetPngBitmap@CBlueRenderEngineUI@@SAPAVBitmap@Gdiplus@@PAUHINSTANCE__@@PB_W@Z
?GetResourceInstance@CPaintManagerUI@@SAPAUHINSTANCE__@@XZ
?HandleMessage@CWindowWnd@@MAEJIIJ@Z
?MessageHandler@CPaintManagerUI@@QAE_NIIJAAJ@Z
?SetKeyInfo@CBossEditUI@@QAEXJJJJ@Z
?GetKeyInfo@CBossEditUI@@QAEXPAJ000@Z
?IsChecked@COptionUI@@QBE_NXZ
?SetCheck@COptionUI@@QAEX_N@Z
?GetData@CStdString@@QAEPB_WXZ
??BCStdString@@QBEPB_WXZ
?FindControl0@CPaintManagerUI@@QBEPAVCControlUI@@UtagPOINT@@@Z
?FindControl1@CPaintManagerUI@@QAEPAVCControlUI@@PB_W@Z
?GetSuperClassName@CWindowWnd@@MBEPB_WXZ
?PostMessageW@CWindowWnd@@IAEJIIJ@Z
??1CStdString@@UAE@XZ
??8CStdString@@QBE_NPB_W@Z
?SetImageIcon@CPngImagePanelUI@@QAE_NPB_W@Z
?SetImageStretch@CPngImagePanelUI@@QAE_NPB_W@Z
?SetImageSel@CPngImagePanelUI@@QAE_NPB_W@Z
?SetImageHot@CPngImagePanelUI@@QAE_NPB_W@Z
?SetImage@CPngImagePanelUI@@QAE_NPB_W_NHH@Z
?Event@CPngImagePanelUI@@UAEXAAUtagTEventUI@@@Z
?GetClass@CPngImagePanelUI@@UBEPB_WXZ
??1CPngImagePanelUI@@UAE@XZ
??0CPngImagePanelUI@@QAE@PAUHWND__@@@Z
?DownloadProc@CFileDownloadHelper@@SGKPAX@Z
?GetFileDataFromZip@CBlueRenderEngineUI@@SAPAXPB_WAAH@Z
?GetAt@CStdPtrArray@@QBEPAXH@Z
?GetSize@CStdPtrArray@@QBEHXZ
?Remove@CStdPtrArray@@QAE_NH@Z
?Add@CStdPtrArray@@QAE_NPAX@Z
??1CStdPtrArray@@UAE@XZ
??0CStdPtrArray@@QAE@H@Z
?Create@CDialogBuilder@@QAEPAVCControlUI@@PB_WPAUHWND__@@PAVIDialogBuilderCallback@@@Z
?SendMessageW@CWindowWnd@@IAEJIIJ@Z
?SetIcon@CWindowWnd@@QAEXI@Z
?CenterWindow@CWindowWnd@@QAEXXZ
?ShowModal@CWindowWnd@@QAE_NXZ
?ShowWindow@CWindowWnd@@QAEX_N0@Z
?Create@CWindowWnd@@QAEPAUHWND__@@PAU2@PB_WKKUtagRECT@@PAUHMENU__@@@Z
??BCWindowWnd@@QBEPAUHWND__@@XZ
?GetHWND@CWindowWnd@@QBEPAUHWND__@@XZ
??1CWindowWnd@@UAE@XZ
??0CWindowWnd@@QAE@XZ
??1CDialogBuilder@@QAE@XZ
??0CDialogBuilder@@QAE@XZ
?MessageLoop@CPaintManagerUI@@SAXXZ
?SetSkinZipFile@CPaintManagerUI@@SA_NPB_W@Z
?SetResourceInstance@CPaintManagerUI@@SAXPAUHINSTANCE__@@@Z
??1CMarkup@@QAE@XZ
?GetAllChildItemsInfo@CMarkup@@QAEXVCMarkupNode@@PB_W1PA_WHHH_N@Z
?GetXmlItemCounts@CMarkup@@QAEHVCMarkupNode@@PB_W_N@Z
?GetKeyChildValue@CMarkup@@QAE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@VCMarkupNode@@PB_W1_N@Z
?GetAllItemsInfo@CMarkup@@QAEXVCMarkupNode@@PB_WPA_WHHH_N@Z
?GetKeyValue@CMarkup@@QAE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@VCMarkupNode@@PB_W@Z
?GetRoot@CMarkup@@QAE?AVCMarkupNode@@XZ
??0CMarkup@@QAE@PB_W@Z
?IsEnabled@CControlUI@@UBE_NXZ
?GetTag@CControlUI@@UBEIXZ

shlwapi

PathFileExistsW
PathFindFileNameW
PathRemoveFileSpecW
StrCmpIW
SHGetValueW
SHSetValueW
wnsprintfW
SHDeleteKeyW
PathIsDirectoryW

msvcp100

?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z

comctl32

_TrackMouseEvent

gdiplus

GdipDeleteFont
GdipCreateHICONFromBitmap
GdipFillRectangle
GdipCreateBitmapFromFile
GdipCloneImage
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteStringFormat
GdipGetImageWidth
GdipCreateStringFormat
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateFontFamilyFromName
GdipDrawString
GdipGetGenericFontFamilySansSerif
GdipCreateFont
GdipAlloc
GdipCreateSolidFill
GdipDeleteFontFamily
GdipDrawImageRectRect
GdipDeleteBrush
GdipFree
GdipCloneBrush
GdipGetImageHeight
GdipDeleteGraphics
GdipSetStringFormatAlign
GdipSetSmoothingMode

msvcr100

_wsplitpath
_strdup
strrchr
_splitpath
realloc
__RTDynamicCast
strchr
fopen
ftell
fseek
calloc
memcpy
_CxxThrowException
memset
??0exception@std@@QAE@XZ
isdigit
tolower
__CxxFrameHandler3
strtol
_wsplitpath_s
_strnicmp
_setjmp3
_vsnwprintf_s
_wsetlocale
fwprintf
_wfopen
_time64
fprintf
_vsnprintf_s
rand
isspace
isalpha
isalnum
strncmp
sprintf
_makepath
strncpy
remove
toupper
strpbrk
exit
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_amsg_exit
__wgetmainargs
_cexit
_exit
_XcptFilter
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
_except_handler4_common
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_controlfp_s
strcmp
_stricmp
fclose
strcat_s
fwrite
_cwprintf
strcpy_s
fread
vsprintf_s
fopen_s
atoi
_cprintf
_access
_wmakepath
memchr
putchar
_vswprintf_c_l
vsprintf
strstr
_wcsnicmp
_atoi64
sprintf_s
ldiv
wcsncmp
_wcslwr_s
wcsstr
_wtoi64
_snwprintf_s
_wtoi
_purecall
_waccess
wcsrchr
_vsnwprintf
wcsncpy_s
_wcsicmp
wcscat_s
longjmp
malloc
free
wcscpy_s
??2@YAPAXI@Z
memcpy_s
_recalloc
vswprintf_s
wcsnlen
wmemcpy_s
_wtof
memmove
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBD@Z
??3@YAXPAX@Z
??_V@YAXPAX@Z
swprintf_s
memmove_s
_vscwprintf
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ

winmm

timeGetTime

imagehlp

ImageDirectoryEntryToData

dbghelp

MiniDumpWriteDump

wininet

HttpEndRequestW
InternetReadFileExW
HttpQueryInfoW
HttpSendRequestA
HttpSendRequestExW
InternetSetCookieExW
DeleteUrlCacheEntryW
InternetCloseHandle
HttpOpenRequestW
InternetConnectW
InternetReadFile
InternetOpenW
HttpAddRequestHeadersW
InternetSetStatusCallbackW
InternetOpenUrlW
InternetCombineUrlW

Sections

.text
Size: 652KB - Virtual size: 651KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IEAux.dll
.dll regsvr32 windows:5 windows x86 arch:x86

3e61d938361950c60055a210dc053c15

Code Sign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

Issuer

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Not Before

08/08/2009, 01:00

Not After

08/08/2024, 01:00

Subject

CN=WoSign Time Stamping Signer,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

15/07/2015, 00:00

Not After

14/07/2016, 23:59

Subject

CN=北京应龙互动科技有限公司,OU=开发部,O=北京应龙互动科技有限公司,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:ae:0f:3b:e2:e5:a1:31:35:a4:7e:92:99:18:29:9c:63:63:1d:98
Signer

Actual PE Digest

11:ae:0f:3b:e2:e5:a1:31:35:a4:7e:92:99:18:29:9c:63:63:1d:98

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\yinglongsvn\gamebox\Game\client\bin\release\IEAux.pdb

Imports

kernel32

GetProcAddress
GetModuleHandleW
lstrcmpiW
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
FreeLibrary
DeleteCriticalSection
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
SetThreadLocale
GetThreadLocale
GetCurrentProcessId
GetCurrentThreadId
InitializeCriticalSectionAndSpinCount
GetLastError
RaiseException
lstrlenW
GetExitCodeProcess
TerminateProcess
SetProcessWorkingSetSize
GlobalMemoryStatusEx
GetCurrentProcess
OpenProcess
MultiByteToWideChar
CloseHandle
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InterlockedCompareExchange
Sleep
InterlockedExchange
DecodePointer
EncodePointer
GetSystemTimeAsFileTime

user32

CharNextW

advapi32

RegQueryInfoKeyW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegEnumKeyExW

ole32

CoTaskMemRealloc
CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
CoTaskMemFree

oleaut32

VarUI4FromStr
SysStringLen
SysAllocString
SysFreeString
LoadRegTypeLi
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi

psapi

QueryWorkingSet
GetProcessMemoryInfo
GetModuleBaseNameW
EnumProcesses

msvcr100

?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__CppXcptFilter
_amsg_exit
_initterm_e
_initterm
_encoded_null
??3@YAXPAX@Z
qsort
_local_unwind4
wcsstr
memset
malloc
free
memcpy_s
_CxxThrowException
wcsncpy_s
??_V@YAXPAX@Z
__CxxFrameHandler3
_purecall
_recalloc
calloc
swprintf_s
_resetstkoflw
??_U@YAPAXI@Z
??2@YAPAXI@Z
wcscpy_s
wcscat_s
_wcsnicmp
_malloc_crt
_except_handler4_common
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
__clean_type_info_names_internal

wininet

InternetSetCookieExW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllInstall
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hfgwupdate.exe
.exe windows:5 windows x86 arch:x86

2d7b8ba5120dab484ea4e50206249bf0

Code Sign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

Issuer

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Not Before

08/08/2009, 01:00

Not After

08/08/2024, 01:00

Subject

CN=WoSign Time Stamping Signer,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

15/07/2015, 00:00

Not After

14/07/2016, 23:59

Subject

CN=北京应龙互动科技有限公司,OU=开发部,O=北京应龙互动科技有限公司,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

74:a9:77:6a:dd:c4:3f:95:d4:93:2f:82:f0:1c:61:5e:61:e3:f7:cf
Signer

Actual PE Digest

74:a9:77:6a:dd:c4:3f:95:d4:93:2f:82:f0:1c:61:5e:61:e3:f7:cf

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\yinglongsvn\gamebox\Game\client\bin\release\hfgwupdate.pdb

Imports

urlmon

URLDownloadToCacheFileW
URLOpenBlockingStreamW
URLDownloadToFileW

wininet

HttpEndRequestW
HttpSendRequestExW
HttpAddRequestHeadersW
InternetReadFile
InternetConnectW
InternetCloseHandle
InternetReadFileExW
HttpSendRequestA
HttpOpenRequestW
HttpQueryInfoW
InternetSetStatusCallbackW
InternetOpenW

psapi

GetModuleBaseNameW
EnumProcessModules
EnumProcesses

dbghelp

MiniDumpWriteDump

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

gdiplus

GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipSaveImageToFile
GdipCreateHICONFromBitmap
GdipAlloc
GdipFree
GdipCreateHBITMAPFromBitmap
GdiplusShutdown
GdiplusStartup
GdipGetImageEncoders
GdipDrawImageRectI
GdipCloneImage
GdipGetImageGraphicsContext
GdipGetImageEncodersSize
GdipDisposeImage

ws2_32

WSAStartup

kernel32

GetStdHandle
ExitProcess
GetStartupInfoW
HeapSetInformation
GetCommandLineW
MoveFileA
EncodePointer
DecodePointer
RtlUnwind
HeapSize
HeapDestroy
InterlockedPopEntrySList
GetProcAddress
GetModuleHandleW
FreeLibrary
LoadLibraryW
GetVersion
GetLocaleInfoW
WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameW
CloseHandle
CreateThread
DeviceIoControl
CreateFileW
GetFileAttributesW
WritePrivateProfileStringW
WritePrivateProfileSectionW
WriteFile
CreateDirectoryW
GetDiskFreeSpaceExW
GetDriveTypeW
GetLogicalDriveStringsW
GetTempFileNameW
GetTempPathW
FindClose
FindNextFileW
FindFirstFileW
ReadFile
GetFileSize
MoveFileW
GetLastError
MoveFileExW
SetEvent
PulseEvent
ResetEvent
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
LeaveCriticalSection
WaitForSingleObject
CreateSemaphoreW
ReleaseSemaphore
CreateMutexW
ReleaseMutex
CreateEventW
WaitForMultipleObjects
DeleteCriticalSection
FormatMessageW
GetUserDefaultLangID
GetLocalTime
GetCurrentProcess
InterlockedIncrement
InterlockedDecrement
PostQueuedCompletionStatus
GetCurrentThreadId
SetThreadPriority
GetThreadPriority
ReadDirectoryChangesW
GetQueuedCompletionStatus
GetCurrentThread
CreateIoCompletionPort
SetLastError
HeapCreate
IsBadReadPtr
VirtualFreeEx
WriteProcessMemory
VirtualAllocEx
OpenProcess
lstrlenW
LoadLibraryExW
Sleep
lstrcmpW
RemoveDirectoryW
DeleteFileW
lstrcatW
lstrcpyW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
SetFilePointer
lstrlenA
DebugBreak
OutputDebugStringW
TerminateProcess
CopyFileW
SetPriorityClass
GetCurrentDirectoryW
GetTickCount
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
GetCurrentProcessId
RaiseException
FileTimeToDosDateTime
FileTimeToLocalFileTime
GetFileTime
VirtualQuery
GetSystemInfo
GlobalMemoryStatus
GetSystemTimeAsFileTime
VirtualProtect
SetUnhandledExceptionFilter
FileTimeToSystemTime
CreateProcessW
GetDateFormatW
GetTimeFormatW
IsDebuggerPresent
GetVersionExW
HeapFree
CopyFileA
lstrcatA
GetSystemDirectoryA
HeapAlloc
GetProcessHeap
CreateFileA
TlsAlloc
LocalFree
FlushInstructionCache
lstrcpynW
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
LocalAlloc
LoadLibraryA
HeapReAlloc
lstrcmpiW
AllocConsole
GetFullPathNameW
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
TlsGetValue
TlsSetValue
TlsFree
UnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
WriteConsoleW
LCMapStringW
FatalAppExitA
SetHandleCount
GetFileType
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetConsoleCP
GetConsoleMode
SetConsoleCtrlHandler
InterlockedExchange
InterlockedCompareExchange
InterlockedPushEntrySList
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetStdHandle
FlushFileBuffers
SetEndOfFile
IsBadWritePtr
lstrcpyA

user32

MapWindowPoints
GetMonitorInfoW
MonitorFromWindow
EndDialog
DialogBoxParamW
IsDialogMessageW
LoadImageW
CreateDialogParamW
SetWindowTextW
SetWindowsHookExW
SetWinEventHook
GetWindow
EnableWindow
UnhookWindowsHookEx
UnhookWinEvent
RegisterClassExW
DrawTextW
EndPaint
BeginPaint
FillRect
SetForegroundWindow
GetFocus
SetFocus
AttachThreadInput
SetCursor
GetActiveWindow
GetCursorPos
SendInput
SetCursorPos
LoadCursorW
GetClassInfoExW
CallNextHookEx
GetClientRect
CharLowerBuffW
wsprintfA
IsCharAlphaNumericW
wvsprintfW
CallWindowProcW
GetDlgItem
SystemParametersInfoW
SetTimer
PostQuitMessage
GetWindowRect
SetWindowRgn
GetWindowLongW
SetWindowLongW
SetWindowPos
KillTimer
MessageBoxW
CharNextW
GetDC
GetIconInfo
LoadStringW
FindWindowW
GetParent
IsWindowVisible
ShowWindow
SendMessageW
FindWindowExW
GetWindowThreadProcessId
IsWindow
GetMessageW
CreateWindowExW
RegisterClassW
DefWindowProcW
MessageBeep
PostThreadMessageW
UnregisterClassA
DestroyWindow
DispatchMessageW
PeekMessageW
TranslateMessage
MsgWaitForMultipleObjects
MsgWaitForMultipleObjectsEx
GetSystemMetrics
wsprintfW
PostMessageW

gdi32

DeleteObject
DeleteDC
CreateRoundRectRgn
GetDIBits
GetObjectW
CreateFontIndirectW
SetBkMode
SetTextColor
SelectObject
SetBkColor
ExtTextOutW
GetStockObject

advapi32

RegEnumKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
RegEnumValueW
GetUserNameW
RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegQueryValueExW
RegCreateKeyW
RegSetValueExW
RegOpenKeyW
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueW
RegOpenKeyExW

shell32

ShellExecuteW
SHGetPathFromIDListW
ord155
SHFileOperationW
SHGetFolderLocation
ShellExecuteExW
SHGetFolderPathW

ole32

CoCreateInstance
CoUninitialize
CoInitialize
CoTaskMemAlloc
CreateStreamOnHGlobal
OleInitialize
CoTaskMemRealloc
CoTaskMemFree

oleaut32

VarUI4FromStr
SafeArrayCreateVector
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
VarBstrCmp
SysAllocStringLen
VariantCopy
SysFreeString
SysAllocString
SysAllocStringByteLen
SysStringByteLen
VariantInit
SysStringLen
VariantClear

shlwapi

wnsprintfW
SHGetValueW
SHSetValueW

comctl32

InitCommonControlsEx

Sections

.text
Size: 486KB - Virtual size: 486KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcp100.dll
.dll windows:5 windows x86 arch:x86

7a0d9f66efd1839f136ca6896fa52dfa

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:cf:3e:00:00:00:00:00:0f
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07/12/2009, 22:40

Not After

07/03/2011, 22:40

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:05:a2:30:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2008, 19:01

Not After

25/07/2013, 19:11

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:85D3-305C-5BCF,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

a7:21:d1:9b:3f:b9:03:98:98:4f:d3:16:37:f9:36:ae:51:91:65:b9
Signer

Actual PE Digest

a7:21:d1:9b:3f:b9:03:98:98:4f:d3:16:37:f9:36:ae:51:91:65:b9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcp100.i386.pdb

Imports

msvcr100

rand_s
memset
memmove
fgetc
ungetc
_lock_file
_unlock_file
fflush
setvbuf
memcpy_s
fwrite
fgetpos
_fseeki64
fsetpos
fclose
_fsopen
_wfsopen
fseek
ldexp
wcslen
memchr
memmove_s
sprintf_s
_Strftime
strcspn
setlocale
_realloc_crt
strcmp
_malloc_crt
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
_purecall
strerror
fgetwc
fputwc
ungetwc
__uncaught_exception
towlower
towupper
_create_locale
_ui64toa_s
_free_locale
__pctype_func
_errno
___mb_cur_max_l_func
___lc_codepage_func
___lc_handle_func
__crtCompareStringA
memcmp
___lc_collate_cp_func
__crtLCMapStringA
__iob_func
?Alloc@Concurrency@@YAPAXI@Z
?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z
?Yield@Context@Concurrency@@SAXXZ
??1critical_section@Concurrency@@QAE@XZ
??0invalid_link_target@Concurrency@@QAE@PBD@Z
??0message_not_found@Concurrency@@QAE@XZ
??0bad_target@Concurrency@@QAE@XZ
??0invalid_operation@Concurrency@@QAE@PBD@Z
?set@event@Concurrency@@QAEXXZ
?wait@event@Concurrency@@QAEII@Z
??1event@Concurrency@@QAE@XZ
??0event@Concurrency@@QAE@XZ
?Free@Concurrency@@YAXPAX@Z
??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
?_UnderlyingYield@details@Concurrency@@YAXXZ
?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ
?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ
?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ
??1_SpinLock@details@Concurrency@@QAE@XZ
??0_SpinLock@details@Concurrency@@QAE@ACJ@Z
?Log2@details@Concurrency@@YAKI@Z
isupper
_calloc_crt
islower
__crtLCMapStringW
isspace
tolower
strtod
__crtCompareStringW
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_encoded_null
_initterm
_initterm_e
_amsg_exit
__CppXcptFilter
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_crt_debugger_hook
__clean_type_info_names_internal
fputs
fputc
abort
log
??0bad_cast@std@@QAE@ABV01@@Z
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
_Getmonths
_Getdays
malloc
__CxxFrameHandler3
??2@YAPAXI@Z
___mb_cur_max_func
memcpy
strlen
??_V@YAXPAX@Z
_Gettnames
localeconv
free
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBDH@Z
??3@YAXPAX@Z
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??1exception@std@@UAE@XZ
??0operation_timed_out@Concurrency@@QAE@XZ
??0exception@std@@QAE@XZ

kernel32

GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
Sleep
GetStringTypeW
InterlockedDecrement
InterlockedIncrement
GetLocaleInfoW
GetCurrentThreadId
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
InterlockedCompareExchange
DecodePointer
EncodePointer
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetSystemTimeAsFileTime

Exports

Exports

??0?$_Yarn@D@std@@QAE@ABV01@@Z
??0?$_Yarn@D@std@@QAE@PBD@Z
??0?$_Yarn@D@std@@QAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@$$QAV01@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@$$QAV01@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@$$QAV01@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@$$QAV01@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@$$QAV01@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@$$QAV01@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@$$QAV01@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@$$QAV01@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@$$QAV01@@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@ABV01@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@ABV01@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@ABV01@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@DDH@std@@QAE@I@Z
??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@GDH@std@@QAE@I@Z
??0?$codecvt@_WDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@_WDH@std@@QAE@I@Z
??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@D@std@@QAE@PBF_NI@Z
??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@G@std@@QAE@I@Z
??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@_W@std@@QAE@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0Init@ios_base@std@@QAE@XZ
??0_Concurrent_queue_base_v4@details@Concurrency@@IAE@I@Z
??0_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@ABV_Concurrent_queue_base_v4@12@@Z
??0_Container_base12@std@@QAE@ABU01@@Z
??0_Container_base12@std@@QAE@XZ
??0_Init_locks@std@@QAE@XZ
??0_Locimp@locale@std@@AAE@ABV012@@Z
??0_Locimp@locale@std@@AAE@_N@Z
??0_Locinfo@std@@QAE@HPBD@Z
??0_Locinfo@std@@QAE@PBD@Z
??0_Lockit@std@@QAE@H@Z
??0_Lockit@std@@QAE@XZ
??0_Mutex@std@@QAE@W4_Uninitialized@1@@Z
??0_Mutex@std@@QAE@XZ
??0_Runtime_object@details@Concurrency@@QAE@H@Z
??0_Runtime_object@details@Concurrency@@QAE@XZ
??0_Timevec@std@@QAE@ABV01@@Z
??0_Timevec@std@@QAE@PAX@Z
??0_UShinit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??0agent@Concurrency@@QAE@AAVScheduleGroup@1@@Z
??0agent@Concurrency@@QAE@AAVScheduler@1@@Z
??0agent@Concurrency@@QAE@XZ
??0codecvt_base@std@@QAE@I@Z
??0ctype_base@std@@QAE@I@Z
??0facet@locale@std@@IAE@I@Z
??0id@locale@std@@QAE@I@Z
??0ios_base@std@@IAE@XZ
??0ios_base@std@@QAE@ABV01@@Z
??0time_base@std@@QAE@I@Z
??1?$_Yarn@D@std@@QAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$codecvt@DDH@std@@MAE@XZ
??1?$codecvt@GDH@std@@MAE@XZ
??1?$codecvt@_WDH@std@@MAE@XZ
??1?$ctype@D@std@@MAE@XZ
??1?$ctype@G@std@@MAE@XZ
??1?$ctype@_W@std@@MAE@XZ
??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1Init@ios_base@std@@QAE@XZ
??1_Concurrent_queue_base_v4@details@Concurrency@@MAE@XZ
??1_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@XZ
??1_Concurrent_vector_base_v4@details@Concurrency@@IAE@XZ
??1_Container_base12@std@@QAE@XZ
??1_Init_locks@std@@QAE@XZ
??1_Locimp@locale@std@@MAE@XZ
??1_Locinfo@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??1_Mutex@std@@QAE@XZ
??1_Timevec@std@@QAE@XZ
??1_UShinit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1agent@Concurrency@@UAE@XZ
??1codecvt_base@std@@UAE@XZ
??1ctype_base@std@@UAE@XZ
??1facet@locale@std@@UAE@XZ
??1ios_base@std@@UAE@XZ
??1time_base@std@@UAE@XZ
??4?$_Iosb@H@std@@QAEAAV01@ABV01@@Z
??4?$_Yarn@D@std@@QAEAAV01@ABV01@@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
??4?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEAAV01@$$QAV01@@Z
??4?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEAAV01@$$QAV01@@Z
??4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@$$QAV01@@Z
??4?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@$$QAV01@@Z
??4?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@$$QAV01@@Z
??4?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@$$QAV01@@Z
??4?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@$$QAV01@@Z
??4?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@$$QAV01@@Z
??4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@$$QAV01@@Z
??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEAAV01@ABV01@@Z
??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEAAV01@ABV01@@Z
??4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEAAV01@ABV01@@Z
??4?$numeric_limits@C@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@D@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@E@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@F@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@G@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@H@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@I@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@J@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@K@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@M@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@N@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@O@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@_J@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@_K@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@_N@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@_W@std@@QAEAAV01@ABV01@@Z
??4Init@ios_base@std@@QAEAAV012@ABV012@@Z
??4_Container_base0@std@@QAEAAU01@ABU01@@Z
??4_Container_base12@std@@QAEAAU01@ABU01@@Z
??4_Init_locks@std@@QAEAAV01@ABV01@@Z
??4_Num_base@std@@QAEAAU01@ABU01@@Z
??4_Num_float_base@std@@QAEAAU01@ABU01@@Z
??4_Num_int_base@std@@QAEAAU01@ABU01@@Z
??4_Timevec@std@@QAEAAV01@ABV01@@Z
??4_UShinit@std@@QAEAAV01@ABV01@@Z
??4_Winit@std@@QAEAAV01@ABV01@@Z
??4ios_base@std@@QAEAAV01@ABV01@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_K@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_K@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
??7ios_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
??Bios_base@std@@QBEPAXXZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$codecvt@DDH@std@@6B@
??_7?$codecvt@GDH@std@@6B@
??_7?$codecvt@_WDH@std@@6B@
??_7?$ctype@D@std@@6B@
??_7?$ctype@G@std@@6B@
??_7?$ctype@_W@std@@6B@
??_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7_Locimp@locale@std@@6B@
??_7codecvt_base@std@@6B@
??_7ctype_base@std@@6B@
??_7ios_base@std@@6B@
??_7time_base@std@@6B@
??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@
??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@
??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@
??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@
??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@
??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@
??_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@
??_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@
??_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@
??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@
??_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@
??_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@
??_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_istream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_F?$codecvt@DDH@std@@QAEXXZ
??_F?$codecvt@GDH@std@@QAEXXZ
??_F?$codecvt@_WDH@std@@QAEXXZ
??_F?$ctype@D@std@@QAEXXZ
??_F?$ctype@G@std@@QAEXXZ
??_F?$ctype@_W@std@@QAEXXZ
??_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F_Locimp@locale@std@@QAEXXZ
??_F_Locinfo@std@@QAEXXZ
??_F_Timevec@std@@QAEXXZ
??_Fcodecvt_base@std@@QAEXXZ
??_Fctype_base@std@@QAEXXZ
??_Ffacet@locale@std@@QAEXXZ
??_Fid@locale@std@@QAEXXZ
??_Ftime_base@std@@QAEXXZ
?NFS_Allocate@details@Concurrency@@YAPAXIIPAX@Z
?NFS_Free@details@Concurrency@@YAXPAX@Z
?NFS_GetLineSize@details@Concurrency@@YAIXZ
?_Addcats@_Locinfo@std@@QAEAAV12@HPBD@Z
?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
?_Addstd@ios_base@std@@SAXPAV12@@Z
?_Advance@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXXZ
?_Assign@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXABV123@@Z
?_Atexit@@YAXP6AXXZ@Z
?_BADOFF@std@@3_JB
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?_Callfns@ios_base@std@@AAEXW4event@12@@Z
?_Clocptr@_Locimp@locale@std@@0PAV123@A
?_Decref@facet@locale@std@@QAEPAV123@XZ
?_Donarrow@?$ctype@G@std@@IBEDGD@Z
?_Donarrow@?$ctype@_W@std@@IBED_WD@Z
?_Dowiden@?$ctype@G@std@@IBEGD@Z
?_Dowiden@?$ctype@_W@std@@IBE_WD@Z
?_Empty@?$_Yarn@D@std@@QBE_NXZ
?_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADDH@Z
?_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADDH@Z
?_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADDH@Z
?_Findarr@ios_base@std@@AAEAAU_Iosarray@12@H@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?_Fiopen@std@@YAPAU_iobuf@@PBGHH@Z
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBDIIII@Z
?_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AAVios_base@2@GPBDIIII@Z
?_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBDIIII@Z
?_GetCombinableSize@details@Concurrency@@YAIXZ
?_GetCurrentThreadId@details@Concurrency@@YAKXZ
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$codecvt@GDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@facet@locale@std@@SAIPAPBV123@PBV23@@Z
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
?_Getctype@_Locinfo@std@@QBE?AU_Ctypevec@@XZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_Getdateorder@_Locinfo@std@@QBEHXZ
?_Getdays@_Locinfo@std@@QBEPBDXZ
?_Getfalse@_Locinfo@std@@QBEPBDXZ
?_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z
?_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z
?_Getffld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z
?_Getffldx@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z
?_Getffldx@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z
?_Getffldx@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z
?_Getfmt@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
?_Getfmt@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
?_Getfmt@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Getifld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1HABVlocale@2@@Z
?_Getifld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1HABVlocale@2@@Z
?_Getifld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1HABVlocale@2@@Z
?_Getint@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@0HHAAH@Z
?_Getint@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@0HHAAH@Z
?_Getint@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@0HHAAH@Z
?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ
?_Getmonths@_Locinfo@std@@QBEPBDXZ
?_Getname@_Locinfo@std@@QBEPBDXZ
?_Getpfirst@_Container_base12@std@@QBEPAPAU_Iterator_base12@2@XZ
?_Getptr@_Timevec@std@@QBEPAXXZ
?_Gettnames@_Locinfo@std@@QBE?AV_Timevec@2@XZ
?_Gettrue@_Locinfo@std@@QBEPBDXZ
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?_Gnavail@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IBE_JXZ
?_Gnavail@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBE_JXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ
?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ
?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gnpreinc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ
?_Gnpreinc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Hexdig@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHDDDD@Z
?_Hexdig@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHGGGG@Z
?_Hexdig@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAH_W000@Z
?_Id_cnt@id@locale@std@@0HA
?_Ifmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADPBDH@Z
?_Ifmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADPBDH@Z
?_Ifmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADPBDH@Z
?_Incref@facet@locale@std@@QAEXXZ

Sections

.text
Size: 371KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcr100.dll
.dll windows:5 windows x86 arch:x86

5271d5ce8b44dd47bc92563e27585466

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:cf:3e:00:00:00:00:00:0f
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07/12/2009, 22:40

Not After

07/03/2011, 22:40

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2008, 19:02

Not After

25/07/2013, 19:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

05:c5:93:9c:0d:cd:fc:08:2e:51:ee:8e:e1:e0:0f:4b:d3:83:4c:d6
Signer

Actual PE Digest

05:c5:93:9c:0d:cd:fc:08:2e:51:ee:8e:e1:e0:0f:4b:d3:83:4c:d6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr100.i386.pdb

Imports

kernel32

EncodePointer
DecodePointer
RaiseException
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetCurrentThreadId
TlsGetValue
GetCommandLineW
GetCommandLineA
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitThread
CloseHandle
GetLastError
ResumeThread
CreateThread
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
FindNextFileA
FindFirstFileExA
FindClose
FindNextFileW
FindFirstFileExW
GetLogicalDrives
GetDiskFreeSpaceA
FileTimeToSystemTime
FileTimeToLocalFileTime
SetErrorMode
Sleep
Beep
GetFileAttributesA
SetFileAttributesA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetCurrentDirectoryW
SetCurrentDirectoryW
GetFullPathNameA
GetDriveTypeW
GetCurrentProcessId
CreateDirectoryA
MoveFileA
RemoveDirectoryA
GetDriveTypeA
DeleteFileA
GetFileAttributesW
SetEnvironmentVariableW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
MoveFileW
RemoveDirectoryW
DeleteFileW
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
LoadLibraryA
FreeLibrary
CreateProcessW
ReadFile
DuplicateHandle
GetCurrentProcess
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetLocalTime
WideCharToMultiByte
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetLocalTime
InterlockedPopEntrySList
InterlockedFlushSList
QueryDepthSList
InterlockedPushEntrySList
CreateTimerQueue
CreateTimerQueueTimer
DeleteTimerQueueTimer
SetEvent
CreateEventW
SwitchToThread
SignalObjectAndWait
TryEnterCriticalSection
GetTickCount
VirtualFree
GetVersionExW
SetThreadPriority
VirtualAlloc
GetSystemInfo
GetProcessAffinityMask
VirtualProtect
SetThreadAffinityMask
InitializeSListHead
ReleaseSemaphore
CreateSemaphoreW
WaitForMultipleObjects
GetThreadPriority
LoadLibraryW
SleepEx
OutputDebugStringW
FreeLibraryAndExitThread
GetModuleHandleA
GetThreadTimes
DebugBreak
MultiByteToWideChar
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeFormatA
GetDateFormatA
GetTimeFormatW
GetDateFormatW
RtlUnwind
HeapAlloc
HeapFree
HeapCreate
HeapDestroy
HeapQueryInformation
HeapReAlloc
HeapSize
HeapValidate
HeapCompact
HeapWalk
VirtualQuery
SetHandleCount
GetFileType
GetStartupInfoW
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
CreateFileW
SetFilePointer
GetConsoleCP
GetConsoleMode
FlushFileBuffers
CreatePipe
SetStdHandle
ReadConsoleInputA
SetConsoleMode
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
WriteConsoleW
ReadConsoleW
SetEndOfFile
GetProcessHeap
InterlockedExchange
LockFile
UnlockFile
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
SetConsoleCtrlHandler
GetLocaleInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
LCMapStringW
CompareStringW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsProcessorFeaturePresent

Exports

Exports

$I10_OUTPUT
??0?$_SpinWait@$00@details@Concurrency@@QAE@P6AXXZ@Z
??0?$_SpinWait@$0A@@details@Concurrency@@QAE@P6AXXZ@Z
??0SchedulerPolicy@Concurrency@@QAA@IZZ
??0SchedulerPolicy@Concurrency@@QAE@ABV01@@Z
??0SchedulerPolicy@Concurrency@@QAE@XZ
??0_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ
??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_ReaderWriterLock@details@Concurrency@@QAE@XZ
??0_ReentrantBlockingLock@details@Concurrency@@QAE@XZ
??0_ReentrantLock@details@Concurrency@@QAE@XZ
??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_SpinLock@details@Concurrency@@QAE@ACJ@Z
??0_TaskCollection@details@Concurrency@@QAE@XZ
??0_Timer@details@Concurrency@@IAE@I_N@Z
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0__non_rtti_object@std@@QAE@PBD@Z
??0bad_cast@std@@AAE@PBQBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_target@Concurrency@@QAE@PBD@Z
??0bad_target@Concurrency@@QAE@XZ
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0context_self_unblock@Concurrency@@QAE@PBD@Z
??0context_self_unblock@Concurrency@@QAE@XZ
??0context_unblock_unbalanced@Concurrency@@QAE@PBD@Z
??0context_unblock_unbalanced@Concurrency@@QAE@XZ
??0critical_section@Concurrency@@QAE@XZ
??0default_scheduler_exists@Concurrency@@QAE@PBD@Z
??0default_scheduler_exists@Concurrency@@QAE@XZ
??0event@Concurrency@@QAE@XZ
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??0improper_lock@Concurrency@@QAE@PBD@Z
??0improper_lock@Concurrency@@QAE@XZ
??0improper_scheduler_attach@Concurrency@@QAE@PBD@Z
??0improper_scheduler_attach@Concurrency@@QAE@XZ
??0improper_scheduler_detach@Concurrency@@QAE@PBD@Z
??0improper_scheduler_detach@Concurrency@@QAE@XZ
??0improper_scheduler_reference@Concurrency@@QAE@PBD@Z
??0improper_scheduler_reference@Concurrency@@QAE@XZ
??0invalid_link_target@Concurrency@@QAE@PBD@Z
??0invalid_link_target@Concurrency@@QAE@XZ
??0invalid_multiple_scheduling@Concurrency@@QAE@PBD@Z
??0invalid_multiple_scheduling@Concurrency@@QAE@XZ
??0invalid_operation@Concurrency@@QAE@PBD@Z
??0invalid_operation@Concurrency@@QAE@XZ
??0invalid_oversubscribe_operation@Concurrency@@QAE@PBD@Z
??0invalid_oversubscribe_operation@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_key@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_key@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_value@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_value@Concurrency@@QAE@XZ
??0message_not_found@Concurrency@@QAE@PBD@Z
??0message_not_found@Concurrency@@QAE@XZ
??0missing_wait@Concurrency@@QAE@PBD@Z
??0missing_wait@Concurrency@@QAE@XZ
??0nested_scheduler_missing_detach@Concurrency@@QAE@PBD@Z
??0nested_scheduler_missing_detach@Concurrency@@QAE@XZ
??0operation_timed_out@Concurrency@@QAE@PBD@Z
??0operation_timed_out@Concurrency@@QAE@XZ
??0reader_writer_lock@Concurrency@@QAE@XZ
??0scheduler_not_attached@Concurrency@@QAE@PBD@Z
??0scheduler_not_attached@Concurrency@@QAE@XZ
??0scheduler_resource_allocation_error@Concurrency@@QAE@J@Z
??0scheduler_resource_allocation_error@Concurrency@@QAE@PBDJ@Z
??0scoped_lock@critical_section@Concurrency@@QAE@AAV12@@Z
??0scoped_lock@reader_writer_lock@Concurrency@@QAE@AAV12@@Z
??0scoped_lock_read@reader_writer_lock@Concurrency@@QAE@AAV12@@Z
??0task_canceled@details@Concurrency@@QAE@PBD@Z
??0task_canceled@details@Concurrency@@QAE@XZ
??0unsupported_os@Concurrency@@QAE@PBD@Z
??0unsupported_os@Concurrency@@QAE@XZ
??1SchedulerPolicy@Concurrency@@QAE@XZ
??1_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ
??1_ReentrantBlockingLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_SpinLock@details@Concurrency@@QAE@XZ
??1_TaskCollection@details@Concurrency@@QAE@XZ
??1_Timer@details@Concurrency@@IAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1critical_section@Concurrency@@QAE@XZ
??1event@Concurrency@@QAE@XZ
??1exception@std@@UAE@XZ
??1reader_writer_lock@Concurrency@@QAE@XZ
??1scoped_lock@critical_section@Concurrency@@QAE@XZ
??1scoped_lock@reader_writer_lock@Concurrency@@QAE@XZ
??1scoped_lock_read@reader_writer_lock@Concurrency@@QAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??2@YAPAXIHPBDH@Z
??3@YAXPAX@Z
??4?$_SpinWait@$00@details@Concurrency@@QAEAAV012@ABV012@@Z
??4?$_SpinWait@$0A@@details@Concurrency@@QAEAAV012@ABV012@@Z
??4SchedulerPolicy@Concurrency@@QAEAAV01@ABV01@@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4exception@std@@QAEAAV01@ABV01@@Z
??8type_info@@QBE_NABV0@@Z
??9type_info@@QBE_NABV0@@Z
??_7__non_rtti_object@std@@6B@
??_7bad_cast@std@@6B@
??_7bad_typeid@std@@6B@
??_7exception@@6B@
??_7exception@std@@6B@
??_F?$_SpinWait@$00@details@Concurrency@@QAEXXZ
??_F?$_SpinWait@$0A@@details@Concurrency@@QAEXXZ
??_Fbad_cast@std@@QAEXXZ
??_Fbad_typeid@std@@QAEXXZ
??_U@YAPAXI@Z
??_U@YAPAXIHPBDH@Z
??_V@YAXPAX@Z
?Alloc@Concurrency@@YAPAXI@Z
?Block@Context@Concurrency@@SAXXZ
?Create@CurrentScheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z
?Create@Scheduler@Concurrency@@SAPAV12@ABVSchedulerPolicy@2@@Z
?CreateResourceManager@Concurrency@@YAPAUIResourceManager@1@XZ
?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@XZ
?CurrentContext@Context@Concurrency@@SAPAV12@XZ
?Detach@CurrentScheduler@Concurrency@@SAXXZ
?DisableTracing@Concurrency@@YAJXZ
?EnableTracing@Concurrency@@YAJXZ
?Free@Concurrency@@YAXPAX@Z
?Get@CurrentScheduler@Concurrency@@SAPAVScheduler@2@XZ
?GetExecutionContextId@Concurrency@@YAIXZ
?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ
?GetOSVersion@Concurrency@@YA?AW4OSVersion@IResourceManager@1@XZ
?GetPolicy@CurrentScheduler@Concurrency@@SA?AVSchedulerPolicy@2@XZ
?GetPolicyValue@SchedulerPolicy@Concurrency@@QBEIW4PolicyElementKey@2@@Z
?GetProcessorCount@Concurrency@@YAIXZ
?GetProcessorNodeCount@Concurrency@@YAIXZ
?GetSchedulerId@Concurrency@@YAIXZ
?GetSharedTimerQueue@details@Concurrency@@YAPAXXZ
?Id@Context@Concurrency@@SAIXZ
?Id@CurrentScheduler@Concurrency@@SAIXZ
?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ
?Log2@details@Concurrency@@YAKI@Z
?Oversubscribe@Context@Concurrency@@SAX_N@Z
?RegisterShutdownEvent@CurrentScheduler@Concurrency@@SAXPAX@Z
?ResetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXXZ
?ScheduleGroupId@Context@Concurrency@@SAIXZ
?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z
?SetConcurrencyLimits@SchedulerPolicy@Concurrency@@QAEXII@Z
?SetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z
?SetPolicyValue@SchedulerPolicy@Concurrency@@QAEIW4PolicyElementKey@2@I@Z
?VirtualProcessorId@Context@Concurrency@@SAIXZ
?Yield@Context@Concurrency@@SAXXZ
?_Abort@_StructuredTaskCollection@details@Concurrency@@AAEXXZ
?_Acquire@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Acquire@_NonReentrantPPLLock@details@Concurrency@@QAEXPAX@Z
?_Acquire@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Acquire@_ReentrantLock@details@Concurrency@@QAEXXZ
?_Acquire@_ReentrantPPLLock@details@Concurrency@@QAEXPAX@Z
?_AcquireRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_AcquireWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_Cancel@_StructuredTaskCollection@details@Concurrency@@QAEXXZ
?_Cancel@_TaskCollection@details@Concurrency@@QAEXXZ
?_CheckTaskCollection@_UnrealizedChore@details@Concurrency@@IAEXXZ
?_ConcRT_Assert@details@Concurrency@@YAXPBD0H@Z
?_ConcRT_CoreAssert@details@Concurrency@@YAXPBD0H@Z
?_ConcRT_DumpMessage@details@Concurrency@@YAXPB_WZZ
?_ConcRT_Trace@details@Concurrency@@YAXHPB_WZZ
?_Copy_str@exception@std@@AAEXPBD@Z
?_DoYield@?$_SpinWait@$00@details@Concurrency@@IAEXXZ
?_DoYield@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ
?_IsCanceling@_StructuredTaskCollection@details@Concurrency@@QAE_NXZ
?_IsCanceling@_TaskCollection@details@Concurrency@@QAE_NXZ
?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_NumberOfSpins@?$_SpinWait@$00@details@Concurrency@@IAEKXZ
?_NumberOfSpins@?$_SpinWait@$0A@@details@Concurrency@@IAEKXZ
?_Release@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Release@_NonReentrantPPLLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantPPLLock@details@Concurrency@@QAEXXZ
?_ReleaseRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_ReleaseWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_Reset@?$_SpinWait@$00@details@Concurrency@@IAEXXZ
?_Reset@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ
?_RunAndWait@_StructuredTaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z
?_RunAndWait@_TaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z
?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z
?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z
?_SetSpinCount@?$_SpinWait@$00@details@Concurrency@@QAEXI@Z
?_SetSpinCount@?$_SpinWait@$0A@@details@Concurrency@@QAEXI@Z
?_ShouldSpinAgain@?$_SpinWait@$00@details@Concurrency@@IAE_NXZ
?_ShouldSpinAgain@?$_SpinWait@$0A@@details@Concurrency@@IAE_NXZ
?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ
?_SpinOnce@?$_SpinWait@$0A@@details@Concurrency@@QAE_NXZ
?_SpinYield@Context@Concurrency@@SAXXZ
?_Start@_Timer@details@Concurrency@@IAEXXZ
?_Stop@_Timer@details@Concurrency@@IAEXXZ
?_Tidy@exception@std@@AAEXXZ
?_Trace_ppl_function@Concurrency@@YAXABU_GUID@@EW4ConcRT_EventType@1@@Z
?_TryAcquire@_NonReentrantBlockingLock@details@Concurrency@@QAE_NXZ
?_TryAcquire@_ReentrantBlockingLock@details@Concurrency@@QAE_NXZ
?_TryAcquire@_ReentrantLock@details@Concurrency@@QAE_NXZ
?_TryAcquireWrite@_ReaderWriterLock@details@Concurrency@@QAE_NXZ
?_Type_info_dtor@type_info@@CAXPAV1@@Z
?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z
?_UnderlyingYield@details@Concurrency@@YAXXZ
?_ValidateExecute@@YAHP6GHXZ@Z
?_ValidateRead@@YAHPBXI@Z
?_ValidateWrite@@YAHPAXI@Z
?_Value@_SpinCount@details@Concurrency@@SAIXZ
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrCompare@@YA_NPBX0@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrCopyException@@YAXPAXPBX1@Z
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?_inconsistency@@YAXXZ
?_invalid_parameter@@YAXPBG00II@Z
?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
?_open@@YAHPBDHH@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZH@Z
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?_sopen@@YAHPBDHHH@Z
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?_wopen@@YAHPB_WHH@Z
?_wsopen@@YAHPB_WHHH@Z
?before@type_info@@QBEHABV1@@Z
?get_error_code@scheduler_resource_allocation_error@Concurrency@@QBEJXZ
?lock@critical_section@Concurrency@@QAEXXZ
?lock@reader_writer_lock@Concurrency@@QAEXXZ
?lock_read@reader_writer_lock@Concurrency@@QAEXXZ
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
?native_handle@critical_section@Concurrency@@QAEAAV12@XZ
?raw_name@type_info@@QBEPBDXZ
?reset@event@Concurrency@@QAEXXZ
?set@event@Concurrency@@QAEXXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZH@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZH@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?swprintf@@YAHPAGIPBGZZ
?swprintf@@YAHPA_WIPB_WZZ
?terminate@@YAXXZ
?try_lock@critical_section@Concurrency@@QAE_NXZ
?try_lock@reader_writer_lock@Concurrency@@QAE_NXZ
?try_lock_read@reader_writer_lock@Concurrency@@QAE_NXZ
?unexpected@@YAXXZ
?unlock@critical_section@Concurrency@@QAEXXZ
?unlock@reader_writer_lock@Concurrency@@QAEXXZ
?vswprintf@@YAHPA_WIPB_WPAD@Z
?wait@Concurrency@@YAXI@Z
?wait@event@Concurrency@@QAEII@Z
?wait_for_multiple@event@Concurrency@@SAIPAPAV12@I_NI@Z
?what@exception@std@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CRT_RTC_INITW
_CreateFrameInfo
_CxxThrowException
_EH_prolog
_FindAndUnlinkFrame
_Getdays
_Getmonths
_Gettnames
_HUGE
_IsExceptionObjectToBeDestroyed
_NLG_Dispatch2
_NLG_Return
_NLG_Return2
_Strftime
_XcptFilter
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__CppXcptFilter
__CxxCallUnwindDelDtor
__CxxCallUnwindDtor
__CxxCallUnwindStdDelDtor
__CxxCallUnwindVecDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__STRINGTOLD_L
__TypeMatch
___fls_getvalue@4
___fls_setvalue@8
___lc_codepage_func
___lc_collate_cp_func
___lc_handle_func
___mb_cur_max_func
___mb_cur_max_l_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__clean_type_info_names_internal
__control87_2
__create_locale
__crtCompareStringA
__crtCompareStringW
__crtLCMapStringA
__crtLCMapStringW
__daylight
__dllonexit
__doserrno
__dstbias
__fpecode
__free_locale
__get_current_locale
__get_flsindex
__get_tlsindex
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__iswcsym
__iswcsymf
__lconv
__lconv_init
__libm_sse2_acos
__libm_sse2_acosf
__libm_sse2_asin
__libm_sse2_asinf
__libm_sse2_atan
__libm_sse2_atan2
__libm_sse2_atanf
__libm_sse2_cos
__libm_sse2_cosf
__libm_sse2_exp
__libm_sse2_expf
__libm_sse2_log
__libm_sse2_log10
__libm_sse2_log10f
__libm_sse2_logf
__libm_sse2_pow
__libm_sse2_powf
__libm_sse2_sin
__libm_sse2_sinf
__libm_sse2_tan
__libm_sse2_tanf
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__report_gsfailure
__set_app_type
__set_flsgetvalue
__setlc_active
__setusermatherr
__strncnt
__swprintf_l
__sys_errlist
__sys_nerr
__threadhandle
__threadid
__timezone
__toascii
__tzname
__unDName
__unDNameEx
__unDNameHelper
__uncaught_exception
__unguarded_readlc_active
__vswprintf_l
__wargv
__wcserror
__wcserror_s
__wcsncnt
__wgetmainargs
__winitenv
_abnormal_termination
_abs64
_access
_access_s
_acmdln
_aligned_free
_aligned_malloc
_aligned_msize
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_offset_recalloc
_aligned_realloc
_aligned_recalloc
_amsg_exit
_assert
_atodbl
_atodbl_l
_atof_l
_atoflt
_atoflt_l
_atoi64
_atoi64_l
_atoi_l
_atol_l
_atoldbl
_atoldbl_l
_beep
_beginthread
_beginthreadex
_byteswap_uint64
_byteswap_ulong
_byteswap_ushort
_c_exit
_cabs
_callnewh
_calloc_crt
_cexit
_cgets
_cgets_s
_cgetws
_cgetws_s
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_chsize_s
_clearfp
_close
_commit
_commode
_configthreadlocale
_control87
_controlfp
_controlfp_s
_copysign
_cprintf
_cprintf_l
_cprintf_p

Sections

.text
Size: 709KB - Virtual size: 708KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
skin.zip
sqlite3.dll
.dll windows:5 windows x86 arch:x86

3127ab3cce0f193d5e514e1ca80b0075

Code Sign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

Issuer

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Not Before

08/08/2009, 01:00

Not After

08/08/2024, 01:00

Subject

CN=WoSign Time Stamping Signer,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

15/07/2015, 00:00

Not After

14/07/2016, 23:59

Subject

CN=北京应龙互动科技有限公司,OU=开发部,O=北京应龙互动科技有限公司,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

b1:d8:32:46:01:d5:03:39:42:d9:95:da:54:c2:93:8f:ad:d5:a6:cf
Signer

Actual PE Digest

b1:d8:32:46:01:d5:03:39:42:d9:95:da:54:c2:93:8f:ad:d5:a6:cf

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\yinglongsvn\gamebox\Game\client\bin\release\sqlite3.pdb

Imports

kernel32

GetFullPathNameW
GetFullPathNameA
HeapReAlloc
CreateFileA
GetFileSize
CreateMutexW
HeapCompact
SetFilePointer
MapViewOfFile
UnmapViewOfFile
SetEndOfFile
FreeLibrary
HeapAlloc
SystemTimeToFileTime
QueryPerformanceCounter
HeapFree
WaitForSingleObject
InterlockedCompareExchange
UnlockFile
LockFile
OutputDebugStringW
GetTickCount
UnlockFileEx
GetProcessHeap
GetSystemTimeAsFileTime
FormatMessageA
WriteFile
InitializeCriticalSection
WideCharToMultiByte
LoadLibraryW
Sleep
FormatMessageW
GetVersionExW
HeapDestroy
LeaveCriticalSection
GetFileAttributesA
HeapCreate
HeapValidate
GetFileAttributesW
ReadFile
CreateFileW
MultiByteToWideChar
FlushFileBuffers
GetTempPathW
GetLastError
GetProcAddress
HeapSize
LockFileEx
EnterCriticalSection
GetDiskFreeSpaceW
LoadLibraryA
CreateFileMappingA
CreateFileMappingW
GetDiskFreeSpaceA
GetSystemInfo
GetFileAttributesExW
DeleteCriticalSection
OutputDebugStringA
GetVersionExA
CloseHandle
DeleteFileW
GetCurrentProcessId
GetTempPathA
LocalFree
GetSystemTime
AreFileApisANSI
DeleteFileA
GetCurrentThreadId
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedExchange
DecodePointer
EncodePointer
IsProcessorFeaturePresent

msvcr100

_amsg_exit
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_initterm
_encoded_null
_malloc_crt
realloc
_msize
_localtime64_s
malloc
free
strncmp
memmove
memcpy
memset
_initterm_e

Exports

Exports

sqlite3_aggregate_context
sqlite3_aggregate_count
sqlite3_auto_extension
sqlite3_backup_finish
sqlite3_backup_init
sqlite3_backup_pagecount
sqlite3_backup_remaining
sqlite3_backup_step
sqlite3_bind_blob
sqlite3_bind_double
sqlite3_bind_int
sqlite3_bind_int64
sqlite3_bind_null
sqlite3_bind_parameter_count
sqlite3_bind_parameter_index
sqlite3_bind_parameter_name
sqlite3_bind_text
sqlite3_bind_text16
sqlite3_bind_value
sqlite3_bind_zeroblob
sqlite3_blob_bytes
sqlite3_blob_close
sqlite3_blob_open
sqlite3_blob_read
sqlite3_blob_reopen
sqlite3_blob_write
sqlite3_busy_handler
sqlite3_busy_timeout
sqlite3_cancel_auto_extension
sqlite3_changes
sqlite3_clear_bindings
sqlite3_close
sqlite3_close_v2
sqlite3_collation_needed
sqlite3_collation_needed16
sqlite3_column_blob
sqlite3_column_bytes
sqlite3_column_bytes16
sqlite3_column_count
sqlite3_column_decltype
sqlite3_column_decltype16
sqlite3_column_double
sqlite3_column_int
sqlite3_column_int64
sqlite3_column_name
sqlite3_column_name16
sqlite3_column_text
sqlite3_column_text16
sqlite3_column_type
sqlite3_column_value
sqlite3_commit_hook
sqlite3_compileoption_get
sqlite3_compileoption_used
sqlite3_complete
sqlite3_complete16
sqlite3_config
sqlite3_context_db_handle
sqlite3_create_collation
sqlite3_create_collation16
sqlite3_create_collation_v2
sqlite3_create_function
sqlite3_create_function16
sqlite3_create_function_v2
sqlite3_create_module
sqlite3_create_module_v2
sqlite3_data_count
sqlite3_db_config
sqlite3_db_filename
sqlite3_db_handle
sqlite3_db_mutex
sqlite3_db_readonly
sqlite3_db_release_memory
sqlite3_db_status
sqlite3_declare_vtab
sqlite3_enable_load_extension
sqlite3_enable_shared_cache
sqlite3_errcode
sqlite3_errmsg
sqlite3_errmsg16
sqlite3_errstr
sqlite3_exec
sqlite3_expired
sqlite3_extended_errcode
sqlite3_extended_result_codes
sqlite3_file_control
sqlite3_finalize
sqlite3_free
sqlite3_free_table
sqlite3_get_autocommit
sqlite3_get_auxdata
sqlite3_get_table
sqlite3_global_recover
sqlite3_initialize
sqlite3_interrupt
sqlite3_last_insert_rowid
sqlite3_libversion
sqlite3_libversion_number
sqlite3_limit
sqlite3_load_extension
sqlite3_log
sqlite3_malloc
sqlite3_memory_alarm
sqlite3_memory_highwater
sqlite3_memory_used
sqlite3_mprintf
sqlite3_mutex_alloc
sqlite3_mutex_enter
sqlite3_mutex_free
sqlite3_mutex_leave
sqlite3_mutex_try
sqlite3_next_stmt
sqlite3_open
sqlite3_open16
sqlite3_open_v2
sqlite3_os_end
sqlite3_os_init
sqlite3_overload_function
sqlite3_prepare
sqlite3_prepare16
sqlite3_prepare16_v2
sqlite3_prepare_v2
sqlite3_profile
sqlite3_progress_handler
sqlite3_randomness
sqlite3_realloc
sqlite3_release_memory
sqlite3_reset
sqlite3_reset_auto_extension
sqlite3_result_blob
sqlite3_result_double
sqlite3_result_error
sqlite3_result_error16
sqlite3_result_error_code
sqlite3_result_error_nomem
sqlite3_result_error_toobig
sqlite3_result_int
sqlite3_result_int64
sqlite3_result_null
sqlite3_result_text
sqlite3_result_text16
sqlite3_result_text16be
sqlite3_result_text16le
sqlite3_result_value
sqlite3_result_zeroblob
sqlite3_rollback_hook
sqlite3_set_authorizer
sqlite3_set_auxdata
sqlite3_shutdown
sqlite3_sleep
sqlite3_snprintf
sqlite3_soft_heap_limit
sqlite3_soft_heap_limit64
sqlite3_sourceid
sqlite3_sql
sqlite3_status
sqlite3_step
sqlite3_stmt_busy
sqlite3_stmt_readonly
sqlite3_stmt_status
sqlite3_strglob
sqlite3_stricmp
sqlite3_strnicmp
sqlite3_test_control
sqlite3_thread_cleanup
sqlite3_threadsafe
sqlite3_total_changes
sqlite3_trace
sqlite3_transfer_bindings
sqlite3_update_hook
sqlite3_uri_boolean
sqlite3_uri_int64
sqlite3_uri_parameter
sqlite3_user_data
sqlite3_value_blob
sqlite3_value_bytes
sqlite3_value_bytes16
sqlite3_value_double
sqlite3_value_int
sqlite3_value_int64
sqlite3_value_numeric_type
sqlite3_value_text
sqlite3_value_text16
sqlite3_value_text16be
sqlite3_value_text16le
sqlite3_value_type
sqlite3_vfs_find
sqlite3_vfs_register
sqlite3_vfs_unregister
sqlite3_vmprintf
sqlite3_vsnprintf
sqlite3_vtab_config
sqlite3_vtab_on_conflict
sqlite3_wal_autocheckpoint
sqlite3_wal_checkpoint
sqlite3_wal_checkpoint_v2
sqlite3_wal_hook
sqlite3_win32_mbcs_to_utf8
sqlite3_win32_set_directory
sqlite3_win32_sleep
sqlite3_win32_utf8_to_mbcs
sqlite3_win32_write_debug

Sections

.text
Size: 459KB - Virtual size: 459KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 32KB

.rsrc Size: 33KB - Virtual size: 32KB

22baa4f9ef021a9d6c863e7702254ec5

Code Sign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4cCertificate

Extended Key Usages

Key Usages

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

33:0e:e2:4f:2a:33:9e:87:c8:8d:d7:5d:35:30:b1:06:36:e5:e1:1eSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

ole32

msvcp100

winmm

comctl32

msvcr100

gdiplus

urlmon

shlwapi

Exports

Exports

Sections

.text Size: 166KB - Virtual size: 166KB

.rdata Size: 116KB - Virtual size: 116KB

.data Size: 3KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 17KB - Virtual size: 16KB

066565bc487eaf5c71c7eb1f7985fd23

Code Sign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4cCertificate

Extended Key Usages

Key Usages

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

df:25:1c:b8:00:b3:f2:62:28:b2:8f:0c:bb:60:e7:23:1a:54:8d:bdSigner

Headers

DLL Characteristics

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 32KB

.rsrc
Size: 33KB - Virtual size: 32KB

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

33:0e:e2:4f:2a:33:9e:87:c8:8d:d7:5d:35:30:b1:06:36:e5:e1:1e
Signer

.text
Size: 166KB - Virtual size: 166KB

.rdata
Size: 116KB - Virtual size: 116KB

.data
Size: 3KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 17KB - Virtual size: 16KB

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

df:25:1c:b8:00:b3:f2:62:28:b2:8f:0c:bb:60:e7:23:1a:54:8d:bd
Signer

.text
Size: 652KB - Virtual size: 651KB

.rdata
Size: 150KB - Virtual size: 149KB

.data
Size: 19KB - Virtual size: 146KB

.rsrc
Size: 73KB - Virtual size: 72KB

.reloc
Size: 53KB - Virtual size: 53KB

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

25:1f:5d:98:81:82:17:2e:3c:41:9e:01:4f:b0:40:4c
Certificate

01:11:05:05:df:48:bd:b2:38:5f:f2:e6:63:61:83:a9
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

11:ae:0f:3b:e2:e5:a1:31:35:a4:7e:92:99:18:29:9c:63:63:1d:98
Signer

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 3KB

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate