b15bbdbc7449168324e43d00f0b7aeb0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b15bbdbc7449168324e43d00f0b7aeb0_JaffaCakes118
Size

5.6MB
MD5

b15bbdbc7449168324e43d00f0b7aeb0
SHA1

2b0f5ca101aafecdb492b2c1e82531a6681a0f97
SHA256

1785697c22c7b644f403622d202ea82de7ce2171a7b9eabe050a1726d4103b7c
SHA512

35e0bfc72268b10c28270b8818fd707e13f08b8b9d879336afe4d02127aaf440eb132067aa49fc5962cf3c2e3130dc0493f715546c2c318f9e46ef3a759bc555
SSDEEP

98304:HKIwIi4k5AQH08+GRXcxObdF2rOtcvw+3iHNu2VYc9L2oU+FFO+3B08Go/DKeq:HKIw0kTPxRXcxOH2atcvnCNu2/QoUyfK

Score

3^/10

Malware Config

Signatures

Unsigned PE 18 IoCs

Checks for missing Authenticode signature.

resource
b15bbdbc7449168324e43d00f0b7aeb0_JaffaCakes118
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/$PLUGINSDIR/LangDLL.dll
unpack001/$PLUGINSDIR/NsExec.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/CAILONG/C4dll.dll
unpack001/CAILONG/DLL/cl.dll
unpack001/CAILONG/DLL/nk.dll
unpack001/CAILONG/SkyCHT.dll
unpack001/CAILONG/SkyEng.dll
unpack001/CAILONG/Uninstall.exe
unpack001/CAILONG/ZipArchive.dll
unpack001/CAILONG/iSky2008.exe
unpack001/CAILONG/jiucuo.exe
unpack002/$PLUGINSDIR/processwork.dll
unpack001/CAILONG/skyUpdate2.exe
unpack003/$PLUGINSDIR/NSISdl.dll
unpack001/CAILONG/vic32.dll

NSIS installer 6 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/CAILONG/Uninstall.exe	nsis_installer_1
static1/unpack001/CAILONG/jiucuo.exe	nsis_installer_1
static1/unpack001/CAILONG/skyUpdate2.exe	nsis_installer_1
static1/unpack001/CAILONG/skyUpdate2.exe	nsis_installer_2

Files

b15bbdbc7449168324e43d00f0b7aeb0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
GetPrivateProfileIntA
GlobalLock
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalAlloc

user32

MapWindowPoints
GetDlgCtrlID
CloseClipboard
GetClipboardData
OpenClipboard
PtInRect
SetWindowRgn
LoadIconA
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
GetClientRect

gdi32

SetTextColor
CreateCompatibleDC
GetObjectA
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject

shell32

SHBrowseForFolderA
SHGetDesktopFolder
SHGetPathFromIDListA
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/LangDLL.dll
.dll windows:4 windows x86 arch:x86

9b6b6a7858e17fb0b17e1c1428330343

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
GetACP
lstrlenA
lstrcmpA
lstrcpynA
GetModuleHandleA
MulDiv
lstrcpyA
GlobalAlloc

user32

SetWindowTextA
SetDlgItemTextA
SendDlgItemMessageA
EndDialog
DialogBoxParamA
LoadIconA
SendMessageA
ShowWindow
GetDC

gdi32

CreateFontIndirectA
GetDeviceCaps
DeleteObject

Exports

Exports

LangDialog

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 697B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/NsExec.dll
.dll windows:4 windows x86 arch:x86

d83f71e61ee459ee63ca3e829966a9dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetExitCodeProcess
WaitForSingleObject
Sleep
TerminateProcess
lstrcpyA
lstrcpynA
GlobalReAlloc
GlobalUnlock
GlobalSize
ReadFile
PeekNamedPipe
GetTickCount
CreateProcessA
GetStartupInfoA
CreatePipe
GetVersionExA
GetModuleHandleA
DeleteFileA
lstrcmpiA
lstrlenA
lstrcatA
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
CreateFileA
CopyFileA
GetTempFileNameA
GlobalFree
GlobalAlloc
GetModuleFileNameA
ExitProcess
GetCommandLineA
GetProcAddress
GlobalLock
GetCurrentProcess

user32

SendMessageA
OemToCharBuffA
CharNextA
wsprintfA
CharPrevA
FindWindowExA

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

Exports

Exports

Exec
ExecToLog
ExecToStack

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 410B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-wizard.bmp
CAILONG/BLOCK/BLOCK.DEF
CAILONG/BLOCK/BLOCKS.DBF
CAILONG/BLOCK/BLOCKS.cdx
CAILONG/BLOCK/BLOCKS.fpt
CAILONG/BLOCK/CustomIndex.ini
CAILONG/BLOCK/EAGLEDBF.cdx
CAILONG/BLOCK/eagledbf.dbf
CAILONG/C4dll.dll
.dll windows:4 windows x86 arch:x86

0fbfc1794b70c4c57ad56ec18f642486

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
GlobalUnlock
_lclose
OpenFile
_lread
_lwrite
GlobalSize
lstrlenA
lstrcpyA
GetProfileStringA
MulDiv
lstrlenW
lstrcpyW
lstrcmpA
CreateSemaphoreA
FileTimeToSystemTime
RaiseException
SetStdHandle
LoadLibraryA
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetCPInfo
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
GlobalAlloc
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
RtlUnwind
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitProcess
SetLastError
TlsFree
TlsAlloc
GetCurrentThreadId
GetModuleHandleA
GetProcAddress
GetVersion
GetCommandLineA
MoveFileA
DeleteFileA
DeleteCriticalSection
GlobalLock
WriteFile
GetFileAttributesA
UnlockFile
LockFile
FlushFileBuffers
FindClose
FindNextFileA
FindFirstFileA
ResetEvent
ReadFile
SetFilePointer
SetEndOfFile
GetFileSize
GetLastError
CreateFileA
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
GetDiskFreeSpaceA
GlobalMemoryStatus
GetLocalTime
InterlockedIncrement
SetEvent
WaitForSingleObject
FatalAppExitA
InitializeCriticalSection
CreateEventA
Sleep
CloseHandle
GetEnvironmentStrings
GetDriveTypeA
GetFullPathNameA
GetSystemTimeAsFileTime
ResumeThread
CreateThread
TlsSetValue
TlsGetValue
ExitThread
HeapAlloc
HeapFree
InterlockedDecrement
GetTimeZoneInformation
GetSystemTime
GetCurrentDirectoryA
FileTimeToLocalFileTime

user32

GetWindowLongA
wsprintfA
SetCapture
DrawTextA
CreateDialogIndirectParamA
GetSystemMetrics
CreateMenu
AppendMenuA
SetClassLongA
GetDC
ReleaseDC
PostMessageA
SetScrollRange
SetWindowPos
SetScrollPos
ShowCursor
GetMenu
DrawMenuBar
InvalidateRect
GetScrollRange
ScrollWindow
BeginPaint
GetClientRect
GetScrollPos
ValidateRect
EndPaint
BringWindowToTop
GetParent
SetWindowLongA
SetWindowTextA
GetSystemMenu
EnableMenuItem
GetDlgItem
ReleaseCapture
PeekMessageA
IsDialogMessageA
SetCursor
DestroyWindow
CharUpperA
OemToCharA
MessageBoxA
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
GetClassInfoA
UnregisterClassA
LoadIconA
LoadCursorA
RegisterClassA
DefWindowProcA
EnableWindow
SetFocus
SendMessageA
PostQuitMessage

gdi32

GetStockObject
CreateFontIndirectA
CreateDCA
CreateICA
SetBkMode
StretchDIBits
CreateBrushIndirect
CreatePen
MoveToEx
LineTo
Rectangle
RoundRect
SetTextColor
SaveDC
RestoreDC
SetAbortProc
StartDocA
StartPage
EndPage
EndDoc
SetMapMode
LPtoDP
GetDeviceCaps
CreateCompatibleDC
CreateBitmap
SelectObject
DeleteDC
DeleteObject
PatBlt
GetObjectA
BitBlt

comdlg32

PrintDlgA

Exports

Exports

??0Find4file@@QAE@PBD00@Z
??1Find4file@@QAE@XZ
??4Find4file@@QAEAAV0@ABV0@@Z
??4l4linkSt@@QAEAAU0@ABU0@@Z
??_FFind4file@@QAEXXZ
?close@Find4file@@AAEXXZ
?e4strZero@@YAXXZ
?e4wideToStr@@YAXXZ
?expr4currency@@YGHPBUe4exprSt@@@Z
?getNext@Find4file@@QAEPBDPADI@Z
?t4exprContextSet@@YGXPAUTAG4St@@PAUDATA4St@@@Z
?t4field@@YGPAUFIELD4St@@PAUTAG4St@@@Z
?t4infoN@@YGHPAUTAG4St@@@Z
?t4tagFile@@YGPAUTAG4FILESt@@PAUTAG4St@@@Z
?tfile4exprNullLow@@YGHPAUTAG4FILESt@@@Z
?u4keycmp@@YAHPBX0IIIPAUCOLLATE4@@@Z
D4appendDirect
D4writeDirect
I4createOpen
RepWndProc
_MouseEatProc@16
_OutputPageProc@16
_PreViewProc@16
_bmp4DIBNumColors@4
_bmp4ReadDIBFile@4
_c4atoCurrency@12
_c4atoLongLong@8
_c4atoul@8
_c4calcType@4
_c4currencyToA@20
_c4getClipperKeyLen@4
_c4getCodePage@4
_c4getCollatingSequence@4
_c4getCompatibility@4
_c4getCreateTemp@4
_c4getDoRemove@4
_c4getErrCreate@4
_c4getErrExpr@4
_c4getErrFieldName@4
_c4getErrGo@4
_c4getErrOff@4
_c4getErrSkip@4
_c4getFileFlush@4
_c4getLog@4
_c4getLogOpen@4
_c4getMemZeroAllocator@4
_c4getOledbSchemaCreate@4
_c4monDy@16
_c4setAttemptUpgrade@8
_c4setCodePage@8
_c4setCollatingSequence@8
_c4setCompatibility@8
_c4setCreateTemp@8
_c4setDoRemove@8
_c4setErrCreate@8
_c4setErrExpr@8
_c4setErrFieldName@8
_c4setErrGo@8
_c4setErrOff@8
_c4setErrSkip@8
_c4setFileFlush@8
_c4setHWnd@8
_c4setLog@8
_c4setLogOpen@8
_c4setMemSizeBuffer@8
_c4setMinCountOff@8
_c4setOledbSchemaCreate@8
_c4setTransFileName@8
_c4ytoj@4
_code4autoIncrementStart@12
_code4collateName@4
_code4collateNameSet@8
_code4collateNameUnicode@4
_code4collateNameUnicodeSet@8
_code4getErrorCode2@4
_code4getErrorCode@4
_code4initAllocLow@4
_code4memoExtension@4
_code4tranCommitPhaseOne@8
_code4tranCommitPhaseTwo@8
_code4tranCommitSingle@4
_code4tranInit2@12
_code4tranInit@4
_code4tranLockTransactions@8
_code4tranStartSingle@4
_code4tranUnlockTransactions@8
_code4transFileEnable@12
_code4transInitUndo@4
_code4unlockAutoSetDo@8
_code4version@4
_collate4convertCharToKey@24
_collation4getExport@4
_currency4add@12
_currency4compare@8
_currency4divideShort@12
_currency4multiplyShort@12
_currency4subtract@12
_d4appendOledb@4
_d4appendStartLow@8
_d4blankLow@8
_d4createLow@16
_d4fieldNull@4
_d4fieldsAdd@12
_d4fieldsRemove@12
_d4goDirectRead@16
_d4goLow2@16
_d4indexesRemove@4
_d4lock@8
_d4lockAll@4
_d4lockAppend@4
_d4lockAppendRecord@8
_d4lockFileInternal@12
_d4lockTestAppend@4
_d4lowAccessMode@4
_d4memoResetExport@4
_d4numTags@4
_d4recCountDo2@8
_d4recCountGreater@8
_d4recCountLess@8
_d4recCountLessEq@8
_d4recNoSet@8
_d4recordSet@8
_d4replace@12
_d4unappend@4
_d4unlockAppend@8
_d4unlockLow@12
_d4unlockRecord@8
_d4update@4
_d4versionCheck@4
_date4timeCompare@8
_date4yymmddToJulianLong@12
_dfile4lockIndex@8
_dfile4lockTestAppend@12
_dfile4lockTestFile@16
_dfile4recCount@8
_dfile4remove@4
_dfile4unlockIndex@8
_e4functions@0
_e4lookup@16
_error4out@24
_error4set2@8
_expr4calcResultPos@8
_expr4context@8
_expr4execute@12
_expr4getReturnType@8
_expr4keyLen@4
_expr4keyLenFromType@12
_f4assignLongLong@12
_f4assignWideString@8
_f4flagAnd@8
_f4flagFlipReturns@4
_f4flagIsAllSet@12
_f4flagIsAnySet@12
_f4flagOr@8
_f4flagReset@8
_f4flagSetAll@4
_f4flagSetRange@12
_f4memoReadPart@16
_f4memoWriteFinish@4
_f4memoWritePart@20
_f4nullable@4
_file4advanceRead@24
_file4exists@4
_file4lenSet@8
_file4seqReadInitDo@28
_file4seqWriteDelay@4
_group4create_pgheader_pgfooter@4
_group4create_title_summary@4
_group4footerLast@4
_group4headerLast@4
_i4addEntryToGroupFile@8
_i4closeLow@4
_i4getIndexFileDo@4
_i4tagRemove@4
_i4versionCheck@12
_index4isProduction@4
_l4addAfter@12
_l4seek@8
_mem4allocErrDefault@12
_mem4init@0
_mem4reset@0
_obj4create@20
_obj4free@4
_relate4retrieve_relate@16
_report4calc_first_change_group@4
_report4deleteCalc@8
_report4get_printerDC@0
_report4retrieve_area@8
_report4retrieve_calc2@8
_report4retrieve_calc@8
_report4retrieve_group@8
_report4retrieve_object@8
_report4retrieve_page_header_footer@8
_report4retrieve_report@8
_report4retrieve_style@12
_report4save_area@8
_report4save_calc@8
_report4save_group@8
_report4save_object@8
_report4save_report@8
_report4save_style@8
_report4stylePrev@8
_retrieve4string@12
_semaphore4init@4
_semaphore4initShared@8
_semaphore4initUndo@4
_sort4getInitFree@8
_sort4getMemInit@4
_sort4initAlloc@4
_sort4initFree@20
_sort4initSet@16
_sort4spoolsInit@8
_style4default_set@8
_t4create@16
_t4dblToFoxExport@12
_t4descending@4
_t4fileName@4
_t4getCollateName@4
_t4index@4
_t4keyLenExported@4
_t4reindex@4
_t4uniqueModify@8
_t4uniqueSetLow@12
_tfile4bottom@4
_tfile4descending@8
_tfile4dskipExport@8
_tfile4dtokExport@16
_tfile4empty@4
_tfile4eof@4
_tfile4go@16
_tfile4key@4
_tfile4lock@8
_tfile4recNo@4
_tfile4seek@12
_tfile4skip@8
_tfile4stokExport@16
_tfile4top@4
_tfile4unlock@8
_tfile4versionCheck@12
_tfile4versionCheckFree@4
_time4long@8
_total4value_reset@4
_tran4fileAppend@16
_tran4fileBottom@8
_tran4fileClose@4
_tran4fileSkip@12
_tran4fileTop@8
_tran4freeLocks@8
_tran4getData@8
_tran4lowAppend@12
_tran4lowCommitPhaseOne@12
_tran4lowCommitPhaseTwo@12
_tran4lowRollback@12
_tran4lowStart@12
_tran4putData@12
_tran4read@4
_tran4set@32
_u4getMaxIndexSize@0
_u4nameCreateMultiDirectories@20
_u4nameCurrentExtended@16
_u4nameExtWide@16
_u4nameFindFileName@8
_u4nameMakeFindDrive@16
_u4namePath@12
_u4namePathSpecial@12
_u4nameRemoveGivenExtension@8
_u4nameWideRemoveGivenExtension@8
_u4namecmp@12
_u4namencmp@16
_u4trim@4
_x4reverseLong@4
_x4reverseLongLong@4
area4add_object
area4create
area4free
area4numObjects
area4objFirst
area4objLast
area4objNext
area4objPrev
area4pageBreak
area4sort_obj_tree
bmp4FindDIBBits
bmp4GetDIB
bmp4PaletteSize
bmp4WriteDIB
c4atod
c4atod2
c4atoi
c4atol
c4clip
c4dllInst
c4dtoa45
c4encode
c4getAccessMode
c4getAppVerify
c4getAutoOpen
c4getErrDefaultUnique
c4getErrOpen
c4getErrRelate
c4getErrTagName
c4getErrorCode
c4getLockAttempts
c4getLockEnforce
c4getOptimize
c4getOptimizeWrite
c4getReadLockDo
c4getReadOnlyDo
c4getSafety
c4getSingleOpen
c4lower
c4ltoa45
c4parm_check
c4setAccessMode
c4setAutoOpen
c4setErrDefaultUnique
c4setErrOpen
c4setErrRelate
c4setErrTagName
c4setErrorCode
c4setLockAttempts
c4setLockEnforce
c4setOptimize
c4setOptimizeWrite
c4setReadLockDo
c4setReadOnlyDo
c4setSafety
c4setSingleOpen
c4trimN
c4upper
code4accessMode
code4actionCode
code4allocLow
code4autoOpen
code4calcCreate
code4calcReset
code4close
code4codePage
code4collate
code4collateUnicode
code4collatingSequence
code4compatibility
code4connect
code4connectAcceptNew
code4connectCut
code4connectCutAll
code4connectionId
code4connectionStatus
code4createTemp
code4data
code4dateFormat
code4dateFormatSet
code4directory
code4errCreate
code4errDefaultUnique
code4errExpr
code4errFieldName
code4errGo
code4errOff
code4errOpen
code4errRelate
code4errSkip
code4errTagName
code4errorCallback
code4errorCode
code4errorCode2
code4exit
code4fileFlush
code4fileName
code4fileNameSet
code4flush
code4hInst
code4hWnd
code4indexBlockSize
code4indexBlockSizeSet
code4indexExtension
code4indexFormat
code4info
code4infoRetrieve
code4initLow
code4initP
code4initUndo
code4initVB
code4largeOn
code4lineNo
code4lineNoSet
code4lock
code4lockAttempts
code4lockAttemptsSingle
code4lockClear
code4lockDelay
code4lockEnforce
code4lockFileName
code4lockItem
code4lockNetworkId
code4lockUserId
code4log
code4logCreate
code4logFileName
code4logOpen
code4logOpenOff
code4memExpandBlock
code4memExpandData
code4memExpandIndex
code4memExpandLock
code4memExpandTag
code4memSizeBlock
code4memSizeBuffer
code4memSizeMemo
code4memSizeMemoExpr
code4memSizeSortBuffer
code4memSizeSortPool
code4memStartBlock
code4memStartData
code4memStartIndex
code4memStartLock
code4memStartMax
code4memStartTag
code4optAll
code4optStart
code4optSuspend
code4optimize
code4optimizeWrite
code4readLock
code4readOnly
code4safety
code4serverCloseFiles
code4serverConfigName
code4serverCurrentDirectory
code4serverName
code4serverOS
code4serverShutdown
code4singleOpen
code4status
code4swapLogFile
code4timeout
code4timeoutSet
code4tranCommit
code4tranRollback
code4tranStart
code4tranStatusCB
code4unlock
code4unlockAutoCB
code4unlockAutoSetCB
code4verifySet
ctrl4addCode
ctrl4codeListInit
ctrl4freeCodeList
ctrl4freeCtrlNode
ctrl4getCtrlCode
ctrl4getServerName
ctrl4initVBX
ctrl4initVBXUndo
ctrl4setServerName
d4alias
d4aliasSet
d4append
d4appendBlank
d4appendStart
d4blank
d4bof
d4bottom
d4changed
d4check
d4close
d4codePage
d4compatibilityExport
d4create
d4createTemp
d4delete
d4deleted
d4eof
d4field
d4fieldInfo
d4fieldJ
d4fieldNumber
d4fileName
d4flush
d4freeBlocks
d4fullPath
d4goBof
d4goEof
d4goLow
d4index
d4lockAdd
d4lockAddAll
d4lockAddAppend
d4lockAddFile
d4lockAllInternal
d4lockAllVB
d4lockAppendInternal
d4lockAppendVB
d4lockFile
d4lockFileVB
d4lockInternal
d4lockTest
d4lockVB
d4lock_group
d4log
d4logStatusCB

Sections

.text
Size: 348KB - Virtual size: 346KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CAILONG/DLL/cl.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ZS

Sections

CODE
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CAILONG/DLL/nk.dll
.dll windows:4 windows x86 arch:x86

a9ab66553d12f2f86f02aff1d8f717ac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WriteFile
GetSystemTime
GetLocalTime
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
WideCharToMultiByte
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapFree
GetTimeZoneInformation
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RtlUnwind
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

_CMA@4
_DATATYPE@4
_HLN@4
_INCOMP@4
_ISLASTPERIOD@4
_LHYDD@4
_NKCTIME@4
_NKGBL1@4
_NKGBL@4
_NKTWR1@4
_NKTWR@4
_SAREX@4
_STKTYPE@4
_TEST1@4
_TEST@4
_VALWHENEX1@4
_VALWHENEX@4
_WXSJ@4

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CAILONG/ICONFIG.Ini
CAILONG/IPTable.dbf
CAILONG/SYS/BASE.FIN
CAILONG/SYS/CONDITION.FUT
CAILONG/SYS/CONDITION.STK
CAILONG/SYS/USER.wfn2
CAILONG/SYS/tod.txt
CAILONG/SkyCHT.dll
.dll windows:5 windows x86 arch:x86

29d7970b3093c3b24723a5ca11d04abb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\develop\SkyCHT\Debug\SkyCHT.pdb

Imports

kernel32

WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
lstrcpyA
RtlUnwind
GetCurrentThreadId
GetCommandLineA
IsDebuggerPresent
RaiseException
DebugBreak
lstrlenA
GetProcAddress
LoadLibraryA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
HeapValidate
IsBadReadPtr
GetModuleFileNameW
TlsGetValue
GetModuleHandleW
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
GetCurrentThread
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
HeapFree
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapAlloc
GetProcessHeap
VirtualQuery
FreeLibrary
InitializeCriticalSectionAndSpinCount
WriteFile
HeapSize
HeapReAlloc
VirtualAlloc
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
SetConsoleCtrlHandler
LoadLibraryW
InterlockedExchange
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetLocaleInfoA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
GetTimeZoneInformation
SetFilePointer
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
CreateFileA
CloseHandle
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

GB2Language
GetLanguangeName
Language2GB

Sections

.textbss
Size: - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 352KB - Virtual size: 352KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 920KB - Virtual size: 920KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CAILONG/SkyEng.dll
.dll windows:5 windows x86 arch:x86

f858bec83f4c54c7a57b75ff83bc9e97

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\develop\SkyEng\Debug\SkyEng.pdb

Imports

kernel32

WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
lstrcpyA
RtlUnwind
GetCurrentThreadId
GetCommandLineA
IsDebuggerPresent
RaiseException
DebugBreak
lstrlenA
GetProcAddress
LoadLibraryA
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
HeapValidate
IsBadReadPtr
GetModuleFileNameW
TlsGetValue
GetModuleHandleW
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
GetCurrentThread
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
HeapFree
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapAlloc
GetProcessHeap
VirtualQuery
FreeLibrary
InitializeCriticalSectionAndSpinCount
WriteFile
HeapSize
HeapReAlloc
VirtualAlloc
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
SetConsoleCtrlHandler
LoadLibraryW
InterlockedExchange
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetLocaleInfoA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
GetTimeZoneInformation
SetFilePointer
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
CreateFileA
CloseHandle
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

GB2Language
GetLanguangeName
Language2GB

Sections

.textbss
Size: - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 352KB - Virtual size: 352KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CAILONG/URL.txt
CAILONG/USERS/BMP/ts.bmp
CAILONG/USERS/BMP/ts2.bmp
CAILONG/USERS/C.ini
CAILONG/USERS/C2.ini
CAILONG/USERS/C3.ini
CAILONG/USERS/OPTION.DAT
CAILONG/USERS/WAV/2-1mr.wav
CAILONG/USERS/WAV/3-1mr.wav
CAILONG/USERS/WAV/alert.WAV
CAILONG/USERS/WAV/jiacang.wav
CAILONG/USERS/WAV/jiancang.wav
CAILONG/USERS/WAV/kd.wav
CAILONG/USERS/WAV/keyimc.wav
CAILONG/USERS/WAV/keyimr.wav
CAILONG/USERS/WAV/kk.wav
CAILONG/USERS/WAV/lcduo.wav
CAILONG/USERS/WAV/lckong.wav
CAILONG/USERS/WAV/maichu.wav
CAILONG/USERS/WAV/mairu.wav
CAILONG/USERS/WAV/pd.wav
CAILONG/USERS/WAV/pk.wav
CAILONG/USERS/WAV/quancangmr.wav
CAILONG/USERS/WAV/xiangshangtz.wav
CAILONG/USERS/WAV/xiangxiatz.wav
CAILONG/Uninstall.exe
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CAILONG/ZipArchive.dll
.dll windows:5 windows x86 arch:x86

5312d15a3a5bc828586e00aff9b4ca88

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CloseHandle
GetLastError
FormatMessageA
LocalFree
GetDiskFreeSpaceExA
GetTempPathA
GetTempFileNameA
GetCurrentDirectoryA
SetFileAttributesA
GetFileAttributesA
FindFirstFileA
FindClose
CreateFileA
SetFileTime
GetDriveTypeA
SetVolumeLabelA
MultiByteToWideChar
WideCharToMultiByte
DeleteFileA
MoveFileA
CreateDirectoryA
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
HeapAlloc
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
SetFilePointer
WriteFile
GetConsoleCP
GetConsoleMode
ReadFile
SetEnvironmentVariableA
SetCurrentDirectoryA
SetEndOfFile
GetProcessHeap
GetFileType
FlushFileBuffers
SetStdHandle
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
GetCommandLineA
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
VirtualAlloc
RaiseException
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
CompareStringA
CompareStringW
LCMapStringA
LCMapStringW
GetStdHandle
GetModuleFileNameA
Sleep
HeapSize
ExitProcess
SetHandleCount
GetStartupInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
RtlUnwind
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
LoadLibraryA
GetLocaleInfoW
InitializeCriticalSection
GetModuleHandleA

Exports

Exports

??0?$CZipMap@HPAUCOptions@CZipCompressor@@@@QAE@ABV0@@Z
??0?$CZipMap@HPAUCOptions@CZipCompressor@@@@QAE@XZ
??0?$CZipMap@W4CallbackType@CZipActionCallback@@PAU2@@@QAE@ABV0@@Z
??0?$CZipMap@W4CallbackType@CZipActionCallback@@PAU2@@@QAE@XZ
??0?$_Container_base_aux_alloc_real@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@std@@@std@@IAE@ABV01@@Z
??0?$_Container_base_aux_alloc_real@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@std@@@std@@IAE@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@1@@Z
??0?$_Container_base_aux_alloc_real@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@std@@@std@@IAE@ABV01@@Z
??0?$_Container_base_aux_alloc_real@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@std@@@std@@IAE@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@1@@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@QAE@ABV01@@Z
??0?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@QAE@ABV01@@Z
??0?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@QAE@U?$less@H@1@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@1@@Z
??0?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@QAE@ABV01@@Z
??0?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@QAE@U?$less@W4CallbackType@CZipActionCallback@@@1@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@1@@Z
??0?$_Tree@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@ABU?$less@H@1@ABV?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@1@@Z
??0?$_Tree@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@ABV01@@Z
??0?$_Tree@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@PBU?$pair@$$CBHPAUCOptions@CZipCompressor@@@1@0ABU?$less@H@1@ABV?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@1@@Z
??0?$_Tree@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@ABU?$less@W4CallbackType@CZipActionCallback@@@1@ABV?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@1@@Z
??0?$_Tree@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@ABV01@@Z
??0?$_Tree@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@PBU?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@1@0ABU?$less@W4CallbackType@CZipActionCallback@@@1@ABV?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@1@@Z
??0?$_Tree_nod@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@IAE@ABU?$less@H@1@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@1@@Z
??0?$_Tree_nod@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@ABV01@@Z
??0?$_Tree_nod@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@IAE@ABU?$less@W4CallbackType@CZipActionCallback@@@1@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@1@@Z
??0?$_Tree_nod@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@ABV01@@Z
??0?$_Tree_ptr@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@IAE@ABU?$less@H@1@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@1@@Z
??0?$_Tree_ptr@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@ABV01@@Z
??0?$_Tree_ptr@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@IAE@ABU?$less@W4CallbackType@CZipActionCallback@@@1@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@1@@Z
??0?$_Tree_ptr@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@ABV01@@Z
??0?$_Tree_val@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@IAE@ABU?$less@H@1@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@1@@Z
??0?$_Tree_val@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@ABV01@@Z
??0?$_Tree_val@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@IAE@ABU?$less@W4CallbackType@CZipActionCallback@@@1@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@1@@Z
??0?$_Tree_val@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@II@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@IDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDIABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@V?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@1@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$map@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@@std@@QAE@ABU?$less@H@1@@Z
??0?$map@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@@std@@QAE@ABU?$less@H@1@ABV?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@1@@Z
??0?$map@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@@std@@QAE@ABV01@@Z
??0?$map@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@@std@@QAE@XZ
??0?$map@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@@std@@QAE@ABU?$less@W4CallbackType@CZipActionCallback@@@1@@Z
??0?$map@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@@std@@QAE@ABU?$less@W4CallbackType@CZipActionCallback@@@1@ABV?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@1@@Z
??0?$map@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@@std@@QAE@ABV01@@Z
??0?$map@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@@std@@QAE@XZ
??0CBaseLibCompressor@ZipArchiveLib@@QAE@ABV01@@Z
??0CBaseLibCompressor@ZipArchiveLib@@QAE@PAVCZipStorage@@@Z
??0CBitFlag@ZipArchiveLib@@QAE@H@Z
??0CBitFlag@ZipArchiveLib@@QAE@XZ
??0CDeflateCompressor@ZipArchiveLib@@QAE@ABV01@@Z
??0CDeflateCompressor@ZipArchiveLib@@QAE@PAVCZipStorage@@@Z
??0CDirEnumerator@ZipArchiveLib@@IAE@PBD_N@Z
??0CDirEnumerator@ZipArchiveLib@@QAE@ABV01@@Z
??0CFileFilter@ZipArchiveLib@@QAE@ABV01@@Z
??0CFileFilter@ZipArchiveLib@@QAE@_N@Z
??0CFileInfo@ZipArchiveLib@@QAE@XZ
??0CGroupFileFilter@ZipArchiveLib@@QAE@ABV01@@Z
??0CGroupFileFilter@ZipArchiveLib@@QAE@W4GroupType@01@_N1@Z
??0CInfo@CZipCentralDir@@QAE@ABU01@@Z
??0CInfo@CZipCentralDir@@QAE@XZ
??0CNameFileFilter@ZipArchiveLib@@QAE@ABV01@@Z
??0CNameFileFilter@ZipArchiveLib@@QAE@PBD_NH1@Z
??0COptions@CBaseLibCompressor@ZipArchiveLib@@QAE@ABU012@@Z
??0COptions@CBaseLibCompressor@ZipArchiveLib@@QAE@XZ
??0COptions@CDeflateCompressor@ZipArchiveLib@@QAE@ABU012@@Z
??0COptions@CDeflateCompressor@ZipArchiveLib@@QAE@XZ
??0COptions@CZipCompressor@@QAE@ABU01@@Z
??0COptions@CZipCompressor@@QAE@XZ
??0COptionsMap@CZipCompressor@@QAE@ABV01@@Z
??0COptionsMap@CZipCompressor@@QAE@XZ
??0CWildcard@ZipArchiveLib@@QAE@ABV01@@Z
??0CWildcard@ZipArchiveLib@@QAE@PBD_N@Z
??0CWildcard@ZipArchiveLib@@QAE@XZ
??0CZipAbstractFile@@QAE@ABV0@@Z
??0CZipAbstractFile@@QAE@XZ
??0CZipActionCallback@@QAE@ABU0@@Z
??0CZipActionCallback@@QAE@XZ
??0CZipAddNewFileInfo@@QAE@ABU0@@Z
??0CZipAddNewFileInfo@@QAE@PAVCZipAbstractFile@@PBD@Z
??0CZipAddNewFileInfo@@QAE@PBD0@Z
??0CZipAddNewFileInfo@@QAE@PBD_N@Z
??0CZipArchive@@QAE@ABV0@@Z
??0CZipArchive@@QAE@XZ
??0CZipAutoBuffer@@QAE@ABV0@@Z
??0CZipAutoBuffer@@QAE@K_N@Z
??0CZipAutoBuffer@@QAE@XZ
??0CZipBinSplitNamesHandler@@QAE@ABV0@@Z
??0CZipBinSplitNamesHandler@@QAE@XZ
??0CZipCallback@@QAE@ABU0@@Z
??0CZipCallback@@QAE@XZ
??0CZipCallbackProvider@ZipArchiveLib@@QAE@ABV01@@Z
??0CZipCallbackProvider@ZipArchiveLib@@QAE@XZ
??0CZipCentralDir@@QAE@ABV0@@Z
??0CZipCentralDir@@QAE@XZ
??0CZipCompressor@@IAE@PAVCZipStorage@@@Z
??0CZipCompressor@@QAE@ABV0@@Z
??0CZipCrc32Cryptograph@@QAE@ABV0@@Z
??0CZipCrc32Cryptograph@@QAE@XZ
??0CZipCryptograph@@QAE@ABV0@@Z
??0CZipCryptograph@@QAE@XZ
??0CZipException@@QAE@AAV0@@Z
??0CZipException@@QAE@HPBD@Z
??0CZipExtraData@@QAE@ABV0@@Z
??0CZipExtraData@@QAE@G@Z
??0CZipExtraData@@QAE@XZ
??0CZipExtraField@@QAE@ABV0@@Z
??0CZipExtraField@@QAE@XZ
??0CZipFile@@QAE@ABV0@@Z
??0CZipFile@@QAE@PBDI@Z
??0CZipFile@@QAE@XZ
??0CZipFileHeader@@IAE@PAVCZipCentralDir@@@Z
??0CZipFileHeader@@QAE@ABV0@@Z
??0CZipFileHeader@@QAE@XZ
??0CZipFindFast@CZipCentralDir@@QAE@PAVCZipFileHeader@@G@Z
??0CZipFindFast@CZipCentralDir@@QAE@XZ
??0CZipMemFile@@QAE@AAV0@@Z
??0CZipMemFile@@QAE@J@Z
??0CZipMemFile@@QAE@PAEIJ@Z
??0CZipPathComponent@@QAE@ABV0@@Z
??0CZipPathComponent@@QAE@PBD@Z
??0CZipPathComponent@@QAE@XZ
??0CZipRegularSplitNamesHandler@@QAE@ABV0@@Z
??0CZipRegularSplitNamesHandler@@QAE@XZ
??0CZipSegmCallback@@QAE@ABU0@@Z
??0CZipSegmCallback@@QAE@XZ
??0CZipSplitNamesHandler@@QAE@ABV0@@Z
??0CZipSplitNamesHandler@@QAE@XZ
??0CZipStorage@@QAE@ABV0@@Z
??0CZipStorage@@QAE@XZ
??0CZipString@@QAE@ABV0@@Z
??0CZipString@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0CZipString@@QAE@DH@Z
??0CZipString@@QAE@PBD@Z
??0CZipString@@QAE@XZ
??1?$CZipMap@HPAUCOptions@CZipCompressor@@@@QAE@XZ
??1?$CZipMap@W4CallbackType@CZipActionCallback@@PAU2@@@QAE@XZ
??1?$_Container_base_aux_alloc_real@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@std@@@std@@IAE@XZ
??1?$_Container_base_aux_alloc_real@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@std@@@std@@IAE@XZ
??1?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@QAE@XZ
??1?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@QAE@XZ
??1?$_Tree@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@XZ
??1?$_Tree@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@XZ
??1?$_Tree_nod@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@XZ
??1?$_Tree_nod@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@XZ
??1?$_Tree_ptr@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@XZ
??1?$_Tree_ptr@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@XZ
??1?$_Tree_val@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAE@XZ
??1?$_Tree_val@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1?$map@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@@std@@QAE@XZ
??1?$map@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@@std@@QAE@XZ
??1CBaseLibCompressor@ZipArchiveLib@@UAE@XZ
??1CDeflateCompressor@ZipArchiveLib@@UAE@XZ
??1CDirEnumerator@ZipArchiveLib@@UAE@XZ
??1CFileFilter@ZipArchiveLib@@UAE@XZ
??1CGroupFileFilter@ZipArchiveLib@@UAE@XZ
??1CInfo@CZipCentralDir@@QAE@XZ
??1CNameFileFilter@ZipArchiveLib@@UAE@XZ
??1COptions@CBaseLibCompressor@ZipArchiveLib@@UAE@XZ
??1COptions@CDeflateCompressor@ZipArchiveLib@@UAE@XZ
??1COptions@CZipCompressor@@UAE@XZ
??1COptionsMap@CZipCompressor@@QAE@XZ
??1CWildcard@ZipArchiveLib@@UAE@XZ
??1CZipAbstractFile@@UAE@XZ
??1CZipActionCallback@@UAE@XZ
??1CZipAddNewFileInfo@@QAE@XZ
??1CZipArchive@@UAE@XZ
??1CZipAutoBuffer@@UAE@XZ
??1CZipBinSplitNamesHandler@@UAE@XZ
??1CZipCallback@@UAE@XZ
??1CZipCallbackProvider@ZipArchiveLib@@QAE@XZ
??1CZipCentralDir@@UAE@XZ
??1CZipCompressor@@UAE@XZ
??1CZipCrc32Cryptograph@@UAE@XZ
??1CZipCryptograph@@UAE@XZ
??1CZipException@@UAE@XZ
??1CZipExtraData@@QAE@XZ
??1CZipExtraField@@QAE@XZ
??1CZipFile@@UAE@XZ
??1CZipFileHeader@@UAE@XZ
??1CZipMemFile@@UAE@XZ
??1CZipPathComponent@@UAE@XZ
??1CZipRegularSplitNamesHandler@@UAE@XZ
??1CZipSegmCallback@@UAE@XZ
??1CZipSplitNamesHandler@@UAE@XZ
??1CZipStorage@@UAE@XZ
??1CZipString@@QAE@XZ
??4?$CZipMap@HPAUCOptions@CZipCompressor@@@@QAEAAV0@ABV0@@Z
??4?$CZipMap@W4CallbackType@CZipActionCallback@@PAU2@@@QAEAAV0@ABV0@@Z
??4?$_Container_base_aux_alloc_real@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@std@@@std@@IAEAAV01@ABV01@@Z
??4?$_Container_base_aux_alloc_real@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@std@@@std@@IAEAAV01@ABV01@@Z
??4?$_String_val@DV?$allocator@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@QAEAAV01@ABV01@@Z
??4?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@QAEAAV01@ABV01@@Z
??4?$_Tree@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$_Tree@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$_Tree_nod@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$_Tree_nod@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$_Tree_ptr@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$_Tree_ptr@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$_Tree_val@V?$_Tmap_traits@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@$0A@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$_Tree_val@V?$_Tmap_traits@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@$0A@@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??4?$map@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@@std@@QAEAAV01@ABV01@@Z
??4?$map@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@@std@@QAEAAV01@ABV01@@Z
??4CBaseLibCompressor@ZipArchiveLib@@QAEAAV01@ABV01@@Z
??4CBitFlag@ZipArchiveLib@@QAEAAU01@ABU01@@Z
??4CBytesWriter@ZipArchiveLib@@QAEAAV01@ABV01@@Z
??4CDeflateCompressor@ZipArchiveLib@@QAEAAV01@ABV01@@Z
??4CDirEnumerator@ZipArchiveLib@@QAEAAV01@ABV01@@Z
??4CFileFilter@ZipArchiveLib@@QAEAAV01@ABV01@@Z
??4CFileInfo@ZipArchiveLib@@QAEAAU01@ABU01@@Z
??4CGroupFileFilter@ZipArchiveLib@@QAEAAV01@ABV01@@Z
??4CInfo@CZipCentralDir@@QAEAAU01@ABU01@@Z
??4CMultiActionsInfo@CZipActionCallback@@QAEAAU01@ABU01@@Z
??4CNameFileFilter@ZipArchiveLib@@QAEAAV01@ABV01@@Z
??4COptions@CBaseLibCompressor@ZipArchiveLib@@QAEAAU012@ABU012@@Z
??4COptions@CDeflateCompressor@ZipArchiveLib@@QAEAAU012@ABU012@@Z
??4COptions@CZipCompressor@@QAEAAU01@ABU01@@Z
??4COptionsMap@CZipCompressor@@QAEAAV01@ABV01@@Z
??4CWildcard@ZipArchiveLib@@QAEAAV01@ABV01@@Z
??4CZipAbstractFile@@QAEAAV0@ABV0@@Z
??4CZipActionCallback@@QAEAAU0@ABU0@@Z
??4CZipAddNewFileInfo@@QAEAAU0@ABU0@@Z
??4CZipArchive@@QAEAAV0@ABV0@@Z
??4CZipAutoBuffer@@QAEAAV0@ABV0@@Z
??4CZipBinSplitNamesHandler@@QAEAAV0@ABV0@@Z
??4CZipCallback@@QAEAAU0@ABU0@@Z
??4CZipCallbackProvider@ZipArchiveLib@@QAEAAV01@ABV01@@Z
??4CZipCentralDir@@QAEAAV0@ABV0@@Z
??4CZipCompressor@@QAEAAV0@ABV0@@Z
??4CZipCrc32Cryptograph@@QAEAAV0@ABV0@@Z
??4CZipCryptograph@@QAEAAV0@ABV0@@Z
??4CZipException@@QAEAAV0@ABV0@@Z
??4CZipExtraData@@QAEAAV0@ABV0@@Z
??4CZipExtraField@@QAEAAV0@ABV0@@Z
??4CZipFile@@QAEAAV0@ABV0@@Z
??4CZipFileHeader@@QAEAAV0@ABV0@@Z
??4CZipFindFast@CZipCentralDir@@QAEAAU01@ABU01@@Z
??4CZipMemFile@@QAEAAV0@ABV0@@Z
??4CZipPathComponent@@QAEAAV0@ABV0@@Z
??4CZipRegularSplitNamesHandler@@QAEAAV0@ABV0@@Z
??4CZipSegmCallback@@QAEAAU0@ABU0@@Z
??4CZipSplitNamesHandler@@QAEAAV0@ABV0@@Z
??4CZipStorage@@QAEAAV0@ABV0@@Z
??4CZipString@@QAEAAV0@ABV0@@Z
??8CBitFlag@ZipArchiveLib@@QAE_NABU01@@Z
??8CBitFlag@ZipArchiveLib@@QAE_NH@Z
??8CZipExtraData@@QAE_NABV0@@Z
??8CZipString@@QAE_NPBD@Z
??9CZipExtraData@@QAE_NABV0@@Z
??9CZipString@@QAE_NPBD@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
??A?$map@HPAUCOptions@CZipCompressor@@U?$less@H@std@@V?$allocator@U?$pair@$$CBHPAUCOptions@CZipCompressor@@@std@@@4@@std@@QAEAAPAUCOptions@CZipCompressor@@ABH@Z
??A?$map@W4CallbackType@CZipActionCallback@@PAU2@U?$less@W4CallbackType@CZipActionCallback@@@std@@V?$allocator@U?$pair@$$CBW4CallbackType@CZipActionCallback@@PAU2@@std@@@4@@std@@QAEAAPAUCZipActionCallback@@ABW4CallbackType@2@@Z
??ACGroupFileFilter@ZipArchiveLib@@QAEPAVCFileFilter@1@I@Z
??ACGroupFileFilter@ZipArchiveLib@@QBEPBVCFileFilter@1@I@Z
??ACZipArchive@@QAEPAVCZipFileHeader@@G@Z
??ACZipArchive@@QBEPBVCZipFileHeader@@G@Z
??ACZipCentralDir@@QAEPAVCZipFileHeader@@G@Z
??ACZipCentralDir@@QBEPBVCZipFileHeader@@G@Z
??ACZipString@@QBEDH@Z
??BCBitFlag@ZipArchiveLib@@QBEHXZ
??BCWildcard@ZipArchiveLib@@QAEPBDXZ
??BCZipAutoBuffer@@QAEPADXZ
??BCZipAutoBuffer@@QBEPBDXZ
??BCZipFile@@QAEPAXXZ
??BCZipString@@QBEPBDXZ
??MCZipExtraData@@QAE_NABV0@@Z
??NCZipExtraData@@QAE_NABV0@@Z
??OCZipExtraData@@QAE_NABV0@@Z
??PCZipExtraData@@QAE_NABV0@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??_7CBaseLibCompressor@ZipArchiveLib@@6B@
??_7CDeflateCompressor@ZipArchiveLib@@6B@
??_7CDirEnumerator@ZipArchiveLib@@6B@
??_7CFileFilter@ZipArchiveLib@@6B@
??_7CGroupFileFilter@ZipArchiveLib@@6B@
??_7CNameFileFilter@ZipArchiveLib@@6B@
??_7COptions@CBaseLibCompressor@ZipArchiveLib@@6B@
??_7COptions@CDeflateCompressor@ZipArchiveLib@@6B@
??_7COptions@CZipCompressor@@6B@
??_7CWildcard@ZipArchiveLib@@6B@
??_7CZipAbstractFile@@6B@
??_7CZipActionCallback@@6B@
??_7CZipArchive@@6B@
??_7CZipAutoBuffer@@6B@
??_7CZipBinSplitNamesHandler@@6B@
??_7CZipCallback@@6B@
??_7CZipCentralDir@@6B@
??_7CZipCompressor@@6B@
??_7CZipCrc32Cryptograph@@6B@
??_7CZipCryptograph@@6B@
??_7CZipException@@6B@
??_7CZipFile@@6B@
??_7CZipFileHeader@@6B@
??_7CZipMemFile@@6B@
??_7CZipPathComponent@@6B@
??_7CZipRegularSplitNamesHandler@@6B@
??_7CZipSegmCallback@@6B@
??_7CZipSplitNamesHandler@@6B@
??_7CZipStorage@@6B@
??_F?$_String_val@DV?$allocator@D@std@@@std@@QAEXXZ
??_FCFileFilter@ZipArchiveLib@@QAEXXZ
??_FCGroupFileFilter@ZipArchiveLib@@QAEXXZ
??_FCNameFileFilter@ZipArchiveLib@@QAEXXZ
??_FCZipException@@QAEXXZ
??_FCZipMemFile@@QAEXXZ
?Accept@CFileFilter@ZipArchiveLib@@MAE_NPBD0ABUCFileInfo@2@@Z
?Accept@CGroupFileFilter@ZipArchiveLib@@MAE_NPBD0ABUCFileInfo@2@@Z
?Accept@CNameFileFilter@ZipArchiveLib@@MAE_NPBD0ABUCFileInfo@2@@Z
?Add@CGroupFileFilter@ZipArchiveLib@@QAEXPAVCFileFilter@2@@Z
?Add@CZipExtraField@@QAEHPAVCZipExtraData@@@Z
?AddNewFile@CZipArchive@@QAE_NAAUCZipAddNewFileInfo@@@Z
?AddNewFile@CZipArchive@@QAE_NAAVCZipAbstractFile@@PBDHHK@Z
?AddNewFile@CZipArchive@@QAE_NPBD0HHK@Z
?AddNewFile@CZipArchive@@QAE_NPBDH_NHK@Z
?AddNewFile@CZipCentralDir@@QAEPAVCZipFileHeader@@ABV2@GH_N@Z
?AddNewFiles@CZipArchive@@QAE_NPBD0_NH1HK@Z
?AddNewFiles@CZipArchive@@QAE_NPBDAAVCFileFilter@ZipArchiveLib@@_NH2HK@Z
?AdjustLocalComprSize@CZipFileHeader@@IAEXAAK@Z
?AdjustLocalComprSize@CZipFileHeader@@IAEXXZ
?Allocate@CZipAutoBuffer@@QAEPADK_N@Z
?AnsiOem@ZipPlatform@@YAXAAVCZipAutoBuffer@@_N@Z
?AppendSeparator@CZipPathComponent@@SAXAAVCZipString@@@Z
?AppliesToType@CNameFileFilter@ZipArchiveLib@@QAE_NH@Z
?AssureFree@CZipStorage@@QAEKK@Z
?Attach@CZipMemFile@@QAEXPAEIJ@Z
?BuildFindFastArray@CZipCentralDir@@IAEX_N@Z
?CacheSizes@CZipStorage@@AAEXXZ
?CacheStepSize@CZipActionCallback@@IAEXXZ
?CalculateBytesBeforeZip@CInfo@CZipCentralDir@@AAEKXZ
?CallCallback@CZipActionCallback@@MAE_NK@Z
?CallCallback@CZipStorage@@IAEXKHVCZipString@@@Z
?CallbackEnd@CZipActionCallback@@UAEXXZ
?CanHandle@CZipCrc32Cryptograph@@UAE_NH@Z
?CanHandle@CZipCryptograph@@UAE_NH@Z
?CanModify@CZipArchive@@QAE_N_N0@Z
?CanProcess@CDeflateCompressor@ZipArchiveLib@@UAE_NG@Z
?Change@CBitFlag@ZipArchiveLib@@QAEXH_N@Z
?ChangeDirectory@ZipPlatform@@YA_NPBD@Z
?ChangeSpannedRead@CZipStorage@@IAE?AVCZipString@@XZ
?ChangeSplitRead@CZipStorage@@IAE?AVCZipString@@XZ
?ChangeVolume@CZipStorage@@QAEXG@Z
?ChangeVolume@CZipStorage@@QAEXXZ
?ChangeVolumeDec@CZipStorage@@QAEXXZ
?ChangeWithCheck@CBitFlag@ZipArchiveLib@@QAE_NH_N@Z
?CheckDataDescriptor@CZipFileHeader@@IBE_NPAVCZipStorage@@@Z
?CheckForError@CBaseLibCompressor@ZipArchiveLib@@IAEXH@Z
?CheckIfOK_1@CInfo@CZipCentralDir@@AAE_NXZ
?CheckIfOK_2@CInfo@CZipCentralDir@@AAE_NXZ
?CheckLengths@CZipFileHeader@@IBE_N_N@Z
?Clear@CBitFlag@ZipArchiveLib@@QAEXH@Z
?Clear@CGroupFileFilter@ZipArchiveLib@@QAEXXZ
?Clear@CZipExtraField@@IAEXXZ
?ClearCachedSizes@CZipStorage@@AAEXXZ
?ClearCompressor@CZipArchive@@IAEXXZ
?ClearCryptograph@CZipArchive@@IAEXXZ
?ClearFileName@CZipFileHeader@@AAEXXZ
?ClearFindFastArray@CZipCentralDir@@IAEXXZ
?ClearSplitNames@CZipStorage@@AAEXXZ
?ClearWithCheck@CBitFlag@ZipArchiveLib@@QAE_NH@Z
?Clone@COptions@CDeflateCompressor@ZipArchiveLib@@UBEPAU1CZipCompressor@@XZ
?Close@CZipArchive@@QAE?AVCZipString@@H_N@Z
?Close@CZipCentralDir@@QAEXXZ
?Close@CZipFile@@UAEXXZ
?Close@CZipMemFile@@UAEXXZ
?Close@CZipStorage@@QAE?AVCZipString@@_N0@Z
?CloseFile@CZipArchive@@QAEHAAVCZipFile@@@Z
?CloseFile@CZipArchive@@QAEHPBD_N@Z
?CloseFile@CZipCentralDir@@QAEX_N@Z
?CloseNewFile@CZipArchive@@QAE_N_N@Z
?CloseNewFile@CZipCentralDir@@QAEXXZ
?Collate@CZipString@@QBEHPBD@Z
?CollateNoCase@CZipString@@QBEHPBD@Z
?Combine@CZipPathComponent@@SAXAAVCZipString@@PBD@Z
?CommitChanges@CZipArchive@@QAE_NXZ
?Compare@CZipString@@QBEHPBD@Z
?CompareElement@CZipCentralDir@@IBEHPBDG@Z
?CompareFindFastCollate@CZipCentralDir@@KAHPBX0@Z
?CompareFindFastCollateNoCase@CZipCentralDir@@KAHPBX0@Z
?CompareHeaders@CZipCentralDir@@KAHPBX0@Z
?CompareNoCase@CZipString@@QBEHPBD@Z
?Compress@CDeflateCompressor@ZipArchiveLib@@UAEXPBXK@Z
?CompressionEfficient@CZipFileHeader@@QAE_NXZ
?ConvertBufferToString@ZipCompatibility@@YAXAAVCZipString@@ABVCZipAutoBuffer@@I@Z
?ConvertComment@CZipFileHeader@@ABEXAAVCZipAutoBuffer@@@Z
?ConvertComment@CZipFileHeader@@ABEXAAVCZipString@@@Z
?ConvertFileName@CZipFileHeader@@ABEXAAVCZipAutoBuffer@@@Z
?ConvertFileName@CZipFileHeader@@ABEXAAVCZipString@@@Z
?ConvertInternalError@CDeflateCompressor@ZipArchiveLib@@MBEHH@Z
?ConvertInternalError@CZipCompressor@@MBEHH@Z
?ConvertStringToBuffer@ZipCompatibility@@YAXPBDAAVCZipAutoBuffer@@I@Z
?ConvertToSystem@ZipCompatibility@@YAKKHH@Z
?Copy@CZipMemFile@@QAEXAAV1@@Z
?CreateCompressor@CZipArchive@@MAEXG@Z
?CreateCompressor@CZipCompressor@@SAPAV1@GPAVCZipStorage@@@Z
?CreateCryptograph@CZipArchive@@MAEXH@Z
?CreateCryptograph@CZipCryptograph@@SAPAV1@H@Z
?CreateNew@CZipExtraField@@QAEPAVCZipExtraData@@G@Z
?CreateNew@CZipExtraField@@QAEPAVCZipExtraData@@GAAH@Z
?CreateNewDirectory@ZipPlatform@@YA_NPBD@Z
?CreateSharedData@CZipCentralDir@@IAEXXZ
?CryptCRC32@CZipCrc32Cryptograph@@AAEKKD@Z
?CryptDecode@CZipCrc32Cryptograph@@AAEXAAD@Z
?CryptDecryptByte@CZipCrc32Cryptograph@@AAEDXZ
?CryptEncode@CZipCrc32Cryptograph@@AAEXAAD@Z
?CryptInitKeys@CZipCrc32Cryptograph@@AAEXAAVCZipAutoBuffer@@@Z
?CryptUpdateKeys@CZipCrc32Cryptograph@@AAEXD@Z
?CurrentFile@CZipArchive@@IAEPAVCZipFileHeader@@XZ
?Decode@CZipCrc32Cryptograph@@UAEXPADK@Z
?Decompress@CDeflateCompressor@ZipArchiveLib@@UAEKPAXK@Z
?Defaults@CZipAddNewFileInfo@@QAEXXZ
?Delete@CZipString@@QAEHHH@Z
?DestroySharedData@CZipCentralDir@@IAEXXZ
?Detach@CZipMemFile@@QAEPAEXZ
?Empty@CZipString@@QAEXXZ
?EmptyPtrList@CBaseLibCompressor@ZipArchiveLib@@IAEXXZ
?EmptyWriteBuffer@CZipStorage@@IAEXXZ
?EnableFindFast@CZipArchive@@QAEX_N@Z
?EnableFindFast@CZipCentralDir@@QAEX_N0@Z
?Encode@CZipCrc32Cryptograph@@UAEXPADK@Z
?EncryptAllFiles@CZipArchive@@QAE_NXZ
?EncryptFileA@CZipArchive@@QAE_NG@Z
?EncryptFiles@CZipArchive@@QAE_NAAV?$CZipArray@G@@@Z
?EncryptFilesInternal@CZipArchive@@IAE_NPAV?$CZipArray@G@@@Z
?EnsureSplitNames@CZipStorage@@AAEXXZ
?EnterDirectory@CDirEnumerator@ZipArchiveLib@@MAEXXZ
?Evaluate@CFileFilter@ZipArchiveLib@@QAE_NPBD0ABUCFileInfo@2@@Z
?ExitDirectory@CDirEnumerator@ZipArchiveLib@@MAEXXZ
?ExtractFile@CZipArchive@@QAE_NGAAVCZipAbstractFile@@_NK@Z
?ExtractFile@CZipArchive@@QAE_NGPBD_N0K@Z
?FileExists@ZipPlatform@@YAHPBD@Z
?Finalize@CZipArchive@@QAE_N_N@Z
?FinalizeSegm@CZipStorage@@QAEXXZ
?Find@CZipString@@QBEHDH@Z
?Find@CZipString@@QBEHPBDH@Z
?FindFile@CZipArchive@@QAEGPBDH_N@Z
?FindFile@CZipCentralDir@@QAEGPBD_N11@Z
?FindFileNameIndex@CZipCentralDir@@QBEGPBD@Z
?FindMatches@CZipArchive@@QAEXPBDAAV?$CZipArray@G@@_N@Z
?FinishCompression@CDeflateCompressor@ZipArchiveLib@@UAEX_N@Z
?FinishCompression@CZipCompressor@@UAEX_N@Z
?FinishDecode@CZipCryptograph@@UAEXAAVCZipFileHeader@@AAVCZipStorage@@@Z
?FinishDecompression@CDeflateCompressor@ZipArchiveLib@@UAEX_N@Z
?FinishDecompression@CZipCompressor@@UAEX_N@Z
?FinishEncode@CZipCryptograph@@UAEXAAVCZipFileHeader@@AAVCZipStorage@@@Z
?Flush@CZipFile@@UAEXXZ
?Flush@CZipMemFile@@UAEXXZ
?Flush@CZipStorage@@QAEXXZ
?FlushBuffers@CZipArchive@@QAEXXZ
?FlushBuffers@CZipStorage@@QAEXXZ
?FlushFile@CZipStorage@@QAEXXZ
?FlushFile@ZipPlatform@@YA_NH@Z
?FlushWriteBuffer@CZipCompressor@@IAEXXZ
?ForceDirectory@ZipPlatform@@YA_NPBD@Z
?Format@CZipString@@QAAXPBDZZ
?Free@CZipMemFile@@IAEXXZ
?Get@COptionsMap@CZipCompressor@@QBEPAUCOptions@2@H@Z
?Get@CZipCallbackProvider@ZipArchiveLib@@QAEPAUCZipActionCallback@@W4CallbackType@3@@Z
?GetAdvanced@CZipArchive@@QAEXPAH00@Z
?GetAppliesToTypes@CNameFileFilter@ZipArchiveLib@@QAEHXZ
?GetArchive@CZipCentralDir@@QAEPAVCZipArchive@@XZ
?GetArchivePath@CZipArchive@@QBE?AVCZipString@@XZ
?GetAt@CGroupFileFilter@ZipArchiveLib@@QAEPAVCFileFilter@2@I@Z
?GetAt@CGroupFileFilter@ZipArchiveLib@@QBEPBVCFileFilter@2@I@Z
?GetAt@CZipExtraField@@QBEPAVCZipExtraData@@H@Z
?GetAt@CZipString@@QBEDH@Z
?GetAutoFinalize@CZipArchive@@QBE_NXZ
?GetBuffer@CZipAutoBuffer@@QBEPBDXZ
?GetBuffer@CZipString@@QAEPADH@Z
?GetBytesBeforeZip@CZipArchive@@QBEKXZ
?GetCRCTable@CZipCrc32Cryptograph@@SAPBKXZ
?GetCZipStrCompFunc@@YAP8CZipString@@BEHPBD@Z_N1@Z
?GetCachedSize@CZipStorage@@AAE_KG@Z
?GetCallback@CZipArchive@@QAEPAUCZipActionCallback@@W4CallbackType@2@@Z
?GetCaseSensitivity@CZipArchive@@QBE_NXZ
?GetCentralDirInfo@CZipArchive@@QBEXAAUCInfo@CZipCentralDir@@@Z
?GetCentralDirSize@CZipArchive@@QBEK_N@Z
?GetComment@CZipCentralDir@@QBEXAAVCZipString@@@Z
?GetComment@CZipFileHeader@@QAEABVCZipString@@_N@Z
?GetCommitMode@CZipArchive@@QBEHXZ
?GetCompressionLevel@CZipFileHeader@@QBEHXZ
?GetCompressionMethod@CZipArchive@@QBEGXZ
?GetCompressionRatio@CZipFileHeader@@QAEMXZ
?GetCount@CZipArchive@@QAEG_N@Z
?GetCount@CZipArchive@@QBEGXZ

Sections

.text
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CAILONG/f10.ini
CAILONG/help_big5.txt
CAILONG/help_chs.txt
CAILONG/iSky2008.exe
.exe windows:5 windows x86 arch:x86

af39edc19f2265fe2c0660073417a7c1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvfw32

MCIWndCreateA

version

VerQueryValueA

user32

GetDC

gdi32

Arc

comdlg32

GetFileTitleA

winspool.drv

GetJobA

advapi32

RegCloseKey

shell32

DragFinish

comctl32

ord17

shlwapi

PathIsUNCA

oledlg

ord8

ole32

OleRun

oleaut32

VariantCopy

c4dll

f4ptr

ws2_32

send

wsock32

gethostbyaddr

imagehlp

ImageDirectoryEntryToData

winmm

PlaySoundA

gdiplus

GdipFree

imm32

ImmGetContext

Sections

.MPRESS1
Size: 2.3MB - Virtual size: 7.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
CAILONG/ie.ico
CAILONG/jiu.ico
CAILONG/jiucuo.exe
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/processwork.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CloseProcess
ExistsProcess
KillProcess
QuitProcess

Sections

CODE
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 147B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 47B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CAILONG/sky2000.ico
CAILONG/sky2000.jpg
.jpg
CAILONG/sky2000_big5.xml
.xml
CAILONG/sky2000_chs.xml
.xml
CAILONG/skyUpdate2.exe
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/NSISdl.dll
.dll windows:4 windows x86 arch:x86

1d4861d221b6c3ba15866b549befc79a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteFileA
CloseHandle
lstrlenA
WriteFile
Sleep
CreateFileA
GetTickCount
lstrcpyA
lstrcmpiA
CreateThread
WaitForSingleObject
lstrcatA
MulDiv
GlobalFree
lstrcpynA
GlobalAlloc

user32

SetWindowLongA
RegisterWindowMessageA
wsprintfA
CallWindowProcA
DestroyWindow
EnableWindow
GetWindowLongA
CreateWindowExA
GetWindowRect
GetClientRect
ShowWindow
IsWindowVisible
GetFocus
GetDlgItem
FindWindowExA
SetDlgItemTextA
SetWindowTextA
SendMessageA
CharPrevA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

ws2_32

WSACleanup
WSAStartup
gethostbyname
inet_addr
ioctlsocket
htons
socket
closesocket
shutdown
recv
send
__WSAFDIsSet
select
WSAGetLastError
connect
getsockname

Exports

Exports

download
download_quiet

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CAILONG/unsetup.ico
CAILONG/vic32.dll
.dll windows:4 windows x86 arch:x86

bccc9c2414227ee28e93b13aaa9d5180

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

GetModuleFileNameA
IsBadReadPtr
GetVersion
RaiseException
GetTempPathW
GetTempFileNameW
GetTempPathA
GetTempFileNameA
WriteFile
DeleteFileW
DeleteFileA
SetFilePointer
ReadFile
CreateFileW
CreateFileA
CloseHandle
GlobalUnlock
GlobalFree
IsBadHugeReadPtr
GlobalHandle
GlobalSize
GlobalAlloc
GlobalLock
DeleteCriticalSection
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
MultiByteToWideChar
LCMapStringA
LCMapStringW
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
HeapFree
HeapAlloc
RtlUnwind
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
ExitProcess
GetProcAddress
WideCharToMultiByte
TlsGetValue
GetStringTypeW
GetLastError
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
GetStartupInfoA
GetFileType
SetHandleCount
GetStdHandle
GetEnvironmentStringsW
GetStringTypeA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings

user32

wsprintfA
DispatchMessageA
TranslateMessage
PeekMessageA
CopyRect
GetWindowTextA
GetWindowTextW
IsWindowUnicode
ReleaseDC
GetDC
GetWindowRect
GetClientRect
ClientToScreen
GetDesktopWindow

gdi32

Escape
CreatePen
GetSystemPaletteEntries
CreateDCA
BitBlt
CreateCompatibleDC
CreateBitmap
DeleteObject
DeleteDC
SetAbortProc
SetStretchBltMode
StretchDIBits
GetDeviceCaps
EndPage
EndDoc
AbortDoc
StartDocW
StartDocA
StartPage
CreateDIBitmap
SetBkMode
GetStockObject
SelectObject
SetMapMode
SetWindowExtEx
SetViewportExtEx
SetViewportOrgEx
GetTextExtentPointA
TextOutA
Rectangle
SetBitmapBits
CreateHalftonePalette
SetDIBColorTable
SetDIBitsToDevice
CreateDIBSection
GetDIBColorTable
GetPaletteEntries
CreatePalette
CreateCompatibleBitmap
SelectPalette
RealizePalette
GetDIBits
GetObjectA

Exports

Exports

Align1bppBits_
CreateDefaultPalette_
Store1bppBits_
VicAbortProc
Victorversion
Victorversionex
addimage
allocDIB
allocimage
andimage
blur
blurthresh
bmpinfo
bmpinfoW
bmpinfofrombuffer
brightenmidrange
calcavglevel
calchisto
calchistorgb
changebright
checkrange16_
checkrange1_
checkrange_
clienttoimage
colordither
colorscatter
colortogray
convert1bitto8bit
convert1bitto8bitsmooth
convert8bitto1bit
convertgray16to8
convertgray8to16
convertpaltorgb
convertrgbtopal
convertrgbtopalex
copyimage
copyimagebits
copyimagepalette
copyimgdes
cover
coverclear
ddbtoimage
defaultpalette
dibsecttoimage
dibtobitmap
dibtoimage
dilate
divide
drawhisto
erode
exchangelevel
expandcontrast
flipimage
freeimage
gammabrighten
getgifcomment
getgifcommentW
getpixelcolor
getpngcomment
getpngcommentW
gifframecount
gifframecountW
gifframecountfrombuffer
gifinfo
gifinfoW
gifinfoallframes
gifinfoallframesW
gifinfoallframesfrombuffer
gifinfoframe
gifinfoframeW
gifinfoframefrombuffer
gifinfofrombuffer
histobrighten
histoequalize
hsv2rgb
imageareatorect
imagetodib
isgrayscaleimage
jpeggeterror
jpeginfo
jpeginfoW
jpeginfoex
jpeginfoexW
jpeginfofrombuffer
jpeginfofrombufferex
jpegsetthumbnailsize
jpegsetxyresolution
kodalith
limitlevel
loadbif
loadbifW
loadbmp
loadbmpW
loadbmpfrombuffer
loadbmppalette
loadbmppaletteW
loadbmppalettefrombuffer
loadgif
loadgifW
loadgifframe
loadgifframeW
loadgifframefrombuffer
loadgifframepalette
loadgifframepaletteW
loadgifframepalettefrombuffer
loadgiffrombuffer
loadgifglobalpalette
loadgifglobalpaletteW
loadgifglobalpalettefrombuffer
loadgifpalette
loadgifpaletteW
loadgifpalettefrombuffer
loadjpg
loadjpgW
loadjpgfrombuffer
loadjpgthumbnail
loadjpgthumbnailW
loadjpgthumbnailfrombuffer
loadpcx
loadpcxW
loadpcxpalette
loadpcxpaletteW
loadpng
loadpngW
loadpngfrombuffer
loadpngpalette
loadpngpaletteW
loadpngpalettefrombuffer
loadtga
loadtgaW
loadtgapalette
loadtgapaletteW
loadtif
loadtifW
loadtiffrombuffer
loadtifpage
loadtifpageW
loadtifpagebyindex
loadtifpagebyindexW
loadtifpalette
loadtifpaletteW
loadtifpalettefrombuffer
loadtifpalettepage
loadtifpalettepageW
loadtifpalettepagebyindex
loadtifpalettepagebyindexW
matchcolorimage
matchcolorimageex
matrixconv
matrixconvex
medianfilter
mirrorimage
multiply
negative
orimage
outline
pcxinfo
pcxinfoW
pixelcount
pixellize
pnggeterror
pnggetxyresolution
pnggetxyresolutionW
pnginfo
pnginfoW
pnginfofrombuffer
pngsetxyresolution
printimage
printimageenddoc
printimagenoeject
printimagestartdoc
printimagestartdocW
rainbowpalette
recttoimagearea
reduceimagecolors
removenoise
resize
resizeex
rgb2hsv
rotate
rotate90
savebif
savebifW
savebmp
savebmpW
savebmptobuffer
saveeps
saveepsW
savegif
savegifW
savegifex
savegifexW
savegifframe
savegifframeW
savegifframetobuffer
savegiftobufferex
savejpg
savejpgW
savejpgex
savejpgexW
savejpgtobuffer
savejpgtobufferex
savepcx
savepcxW
savepng
savepngW
savepngtobuffer
savetga
savetgaW
savetif
savetifW
savetifpage
savetifpageW
savetiftobuffer
setgifcomment
setimagearea
setpixelcolor
setupimgdes
sharpen
sharpengentle
standardpalette
subimage
tgainfo
tgainfoW
threshold
tiffgeterror
tiffgetpageinfo
tiffgetpageinfoW
tiffgetxyresolution
tiffgetxyresolutionW
tiffgetxyresolutionpagebyindex
tiffgetxyresolutionpagebyindexW
tiffinfo
tiffinfoW
tiffinfofrombuffer
tiffinfopage
tiffinfopageW
tiffinfopagebyindex
tiffinfopagebyindexW
tiffsetxyresolution
unlockLZW
updatebitmapcolortable
usetable
victowinpal
viewimage
viewimageex
windowtoimage
wintovicpal
wtaverage
xorimage
zeroimage
zeroimgdes

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CAILONG/xieyi.htm
.html

Sharing

General

Malware Config

Signatures

Files

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 8KB - Virtual size: 8KB

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1KB - Virtual size: 1KB

9b6b6a7858e17fb0b17e1c1428330343

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 697B

.data Size: 512B - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 352B

.reloc Size: 512B - Virtual size: 320B

d83f71e61ee459ee63ca3e829966a9dc

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 410B

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 8KB - Virtual size: 8KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 697B

.data
Size: 512B - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 352B

.reloc
Size: 512B - Virtual size: 320B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 410B

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 1024B - Virtual size: 520B

.text
Size: 348KB - Virtual size: 346KB

.rdata
Size: 36KB - Virtual size: 32KB

.data
Size: 64KB - Virtual size: 66KB

.reloc
Size: 16KB - Virtual size: 12KB

CODE
Size: 68KB - Virtual size: 68KB

DATA
Size: 1KB - Virtual size: 1KB

BSS
Size: - Virtual size: 2KB

.idata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 60B

.reloc
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 5KB - Virtual size: 5KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 3KB

.textbss
Size: - Virtual size: 166KB

.text
Size: 352KB - Virtual size: 352KB

.rdata
Size: 68KB - Virtual size: 68KB

.data
Size: 5KB - Virtual size: 14KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 920KB - Virtual size: 920KB

.reloc
Size: 18KB - Virtual size: 17KB