9d006ad9cd5d0036d13dded199f3c8e5b25e20c6a6d6853239d3e79e1626c661

Sharing

Copy URL Twitter E-mail

General

Target

9d006ad9cd5d0036d13dded199f3c8e5b25e20c6a6d6853239d3e79e1626c661
Size

2.6MB
MD5

8d9dda9133566d1399500790752fdb8a
SHA1

ec80f0733c162a0c83b75360da1f90ce05cb54f4
SHA256

9d006ad9cd5d0036d13dded199f3c8e5b25e20c6a6d6853239d3e79e1626c661
SHA512

9f2fd966e05b3bf10eec4267841acb434511b8ed1eabe640e5f2dfb72376175bca4d4b6b359d64abdf79e17547e1f52e2188bb21e03b614524fd9aab74e2c77e
SSDEEP

49152:PrbzXjpTAB0VZjV1MN15nE96q03/Z0yFS0Jv5Tdk5poCHwh5OO37KhEHlB5:rztAiM1lE2Z0yFPV1dWlwhp3Wcx

Score

1^/10

Malware Config

Signatures

Files

9d006ad9cd5d0036d13dded199f3c8e5b25e20c6a6d6853239d3e79e1626c661
.zip
hrtclj_v5.0.11_xfdown.com/?????.url
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/??.bat
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/????.exe
.exe windows:5 windows x86 arch:x86

70a9f0be78976675495c0131f8cf3013

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09/08/2019, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

26/04/2018, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

80:ad:2f:f5:96:4a:46:f6:04:6e:34:f7:3c:d2:6e:b9:98:e0:5b:c1:97:75:2a:d5:85:6b:ea:2c:18:b4:ee:1b
Signer

Actual PE Digest

80:ad:2f:f5:96:4a:46:f6:04:6e:34:f7:3c:d2:6e:b9:98:e0:5b:c1:97:75:2a:d5:85:6b:ea:2c:18:b4:ee:1b

Digest Algorithm

sha256

PE Digest Matches

true

a0:58:84:1b:39:8f:2e:87:88:df:26:c7:64:4a:5c:13:67:21:2f:51
Signer

Actual PE Digest

a0:58:84:1b:39:8f:2e:87:88:df:26:c7:64:4a:5c:13:67:21:2f:51

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\build\hr_sysdiag-app-50\bin\PopBlock.pdb

Imports

kernel32

ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
OutputDebugStringW
EncodePointer
InterlockedPopEntrySList
InterlockedPushEntrySList
FlushInstructionCache
VirtualAlloc
VirtualFree
LoadLibraryExA
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
RtlUnwind
ExitProcess
GetModuleHandleExW
GetStdHandle
WriteFile
GetACP
GetStringTypeW
GetFileType
GetConsoleMode
SetFilePointerEx
GetConsoleCP
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
FlushFileBuffers
WriteConsoleW
InterlockedDecrement
GetCurrentProcessId
RemoveDirectoryW
CreateEventW
CreateThread
WaitForMultipleObjects
DecodePointer
MoveFileExW
LoadLibraryExW
lstrcmpiW
FreeLibrary
SetEvent
WaitForSingleObject
TerminateThread
CreateMutexW
SetCurrentDirectoryW
CreateProcessW
GetUserDefaultUILanguage
LoadLibraryW
GlobalDeleteAtom
GlobalAddAtomW
GetVersionExW
GetModuleFileNameW
GetComputerNameW
GetModuleHandleW
SetLastError
GetCurrentThreadId
InitializeCriticalSectionAndSpinCount
RaiseException
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
GetProcessHeap
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
HeapDestroy
TzSpecificLocalTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetLocalTime
FileTimeToSystemTime
SystemTimeToFileTime
GetSystemTime
FindClose
FindNextFileW
DeleteFileW
GetLastError
CreateDirectoryW
GetFileAttributesW
CreateFileW
GetVersion
GetProcAddress
GetModuleHandleA
GetTickCount
WideCharToMultiByte
DeleteCriticalSection
LocalFree
GetWindowsDirectoryW
CloseHandle
Sleep
MultiByteToWideChar
InitializeCriticalSection
LeaveCriticalSection
GetCurrentProcess
EnterCriticalSection
InterlockedExchange
InterlockedIncrement

user32

GetParent
DestroyWindow
PostQuitMessage
EnumThreadWindows
EnumChildWindows
IsWindowVisible
IsWindowEnabled
TranslateMessage
DispatchMessageW
SetFocus
EnumWindows
FindWindowW
GetDesktopWindow
IsRectEmpty
ReleaseDC
GetWindowDC
GetCapture
MonitorFromPoint
PeekMessageW
GetMessageW
GetWindowRect
GetWindowThreadProcessId
PtInRect
IntersectRect
CopyRect
OffsetRect
DefWindowProcW
SendMessageW
PostMessageW
CallWindowProcW
IsChild
SetWindowLongW
GetWindowLongW
ShowWindow
KillTimer
ScreenToClient
FlashWindow
IsWindow
SetTimer
CreateWindowExW
UnregisterClassW
RegisterClassExW
GetClassInfoExW
LoadCursorW
EnableWindow
SetWindowPos
IsZoomed
GetMonitorInfoW
MonitorFromWindow
GetClientRect
IsIconic
SetWindowRgn
MoveWindow
ClientToScreen
InvalidateRect
GetAsyncKeyState
GetCursorPos
RegisterWindowMessageW
SetCursor
CharNextW
UnregisterHotKey
RegisterHotKey
GetSystemMetrics
LoadImageW
DestroyIcon
WindowFromPoint
GetClassNameW
MapWindowPoints
GetWindow
SetForegroundWindow

gdi32

GetObjectW
CreateDIBSection
CreateRoundRectRgn
SetViewportOrgEx
GetObjectType
StretchBlt
BitBlt
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
DeleteObject
DeleteDC

advapi32

RegEnumKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
GetUserNameW
RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExA
RegSetValueExW
RegOpenKeyExA
RegQueryValueExW
RegCloseKey
OpenProcessToken

shell32

SHGetSpecialFolderPathW
ShellExecuteW
Shell_NotifyIconW

ole32

CoTaskMemRealloc
CoTaskMemFree
CoUninitialize
CoInitializeEx
CoCreateInstance
CoTaskMemAlloc

oleaut32

SysFreeString
SysAllocString
VariantClear
VariantInit
VarUI4FromStr

libxsse

ord30
ord10
ord2

shlwapi

PathFileExistsW

comctl32

InitCommonControlsEx

gdiplus

GdipCreateFromHDC
GdipDeleteGraphics
GdipSetSmoothingMode
GdipFillEllipseI
GdipCreateSolidFill
GdipDeleteBrush
GdipFree
GdipAlloc
GdipCreateBitmapFromHBITMAP
GdipCloneImage
GdipDisposeImage
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipSaveImageToFile

duilib

?SelectTable@CTranslateManager@DuiLib@@QAE_NPB_W@Z
?KillTimer@CPaintManagerUI@DuiLib@@QAE_NPAVCControlUI@2@I@Z
?SetTimer@CPaintManagerUI@DuiLib@@QAE_NPAVCControlUI@2@II@Z
??0CMenuUI@DuiLib@@QAE@PB_WPAVCMenuItemUI@1@@Z
??1CMenuUI@DuiLib@@UAE@XZ
?GetName@CMenuUI@DuiLib@@QBE?AVCDuiString@2@XZ
??8CDuiString@DuiLib@@QBE_NPB_W@Z
?GetItemIndex@CMenuUI@DuiLib@@QBEHPAVCMenuItemUI@2@@Z
?ShowSubMenuOrDestroy@CMenuItemUI@DuiLib@@QAEXXZ
?ShowModal@CMenuUI@DuiLib@@UAEIXZ
?GetWindowClassName@CMenuUI@DuiLib@@MBEPB_WXZ
?GetSuperClassName@CWindowWnd@DuiLib@@MBEPB_WXZ
?GetClassStyle@CWindowWnd@DuiLib@@MBEIXZ
?HandleMessage@CMenuUI@DuiLib@@MAEJIIJ@Z
?OnFinalMessage@CMenuUI@DuiLib@@MAEXPAUHWND__@@@Z
?GetSkinFileName@CMenuUI@DuiLib@@UAEPB_WXZ
?OnCreate@CMenuUI@DuiLib@@MAEJIIJ@Z
?OnDestroy@CMenuUI@DuiLib@@MAEJIIJ@Z
?OnKeyDown@CMenuUI@DuiLib@@MAEJIIJ@Z
?OnKillFocus@CMenuUI@DuiLib@@MAEJIIJ@Z
?Notify@CMenuUI@DuiLib@@MAEXAAUtagTNotifyUI@2@@Z
?CreateControl@CMenuUI@DuiLib@@MAEPAVCControlUI@2@PB_W@Z
?SetSkinFile@CMenuUI@DuiLib@@QAEXPB_W@Z
?AddNotifier@CMenuUI@DuiLib@@QAE_NPAVIMenuNotify@2@@Z
?CreateMenu@CMenuUI@DuiLib@@QAEPAUHWND__@@PAU3@HHW4eShowMenuPosition@12@@Z
?ShowWindow@CWindowWnd@DuiLib@@QAEX_N0@Z
?GetString@CControlUI@DuiLib@@QBEPB_WXZ
?GetCurSel@CTabLayoutUI@DuiLib@@QBEHXZ
?SelectItem@CTabLayoutUI@DuiLib@@QAE_NH_N@Z
?SetToolTipString@CControlUI@DuiLib@@QAEXPB_W_N@Z
?SetFilePath@CFileIconUI@DuiLib@@QAEXPB_W@Z
?GetContainerItemXML@CListUI@DuiLib@@QAEPB_WXZ
?CompareNoCase@CDuiString@DuiLib@@QBEHPB_W@Z
?FindSubControlByName@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PAV32@PB_W@Z
?StringFormat@CControlUI@DuiLib@@QAAXPB_WZZ
?GetMainMonitorDPI@CDPI@DuiLib@@SAHXZ
??0COptionUI@DuiLib@@QAE@XZ
??1COptionUI@DuiLib@@UAE@XZ
?GetInterface@COptionUI@DuiLib@@UAEPAXPB_W@Z
?GetControlFlags@CButtonUI@DuiLib@@UBEIXZ
?Activate@COptionUI@DuiLib@@UAE_NXZ
?SetManager@COptionUI@DuiLib@@UAEXPAVCPaintManagerUI@2@PAVCControlUI@2@_N@Z
?GetText@CLabelUI@DuiLib@@UBE?AVCDuiString@2@XZ
?SetText@CLabelUI@DuiLib@@UAEXPB_W@Z
?SetEnabled@COptionUI@DuiLib@@UAEX_N@Z
?DoEvent@CButtonUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?SetAttribute@COptionUI@DuiLib@@UAEXPB_W0@Z
?EstimateSize@COptionUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?DoPaint@CControlUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
??0CDuiDrawInfo@DuiLib@@QAE@XZ
??1CDuiDrawInfo@DuiLib@@QAE@XZ
?Scale@CDPI@DuiLib@@QAEHH@Z
?FetchImageString@CRenderEngine@DuiLib@@SA_NPAVCPaintManagerUI@2@PB_WPAVCDuiDrawInfo@2@@Z
?DrawImage@CRenderEngine@DuiLib@@SA_NPAUHDC__@@PAVCPaintManagerUI@2@ABUtagRECT@@2PAVCDuiDrawInfo@2@@Z
?PaintText@COptionUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintBorder@COptionUI@DuiLib@@UAEXPAUHDC__@@@Z
?GetAccSerState@COptionUI@DuiLib@@UBEJXZ
?Selected@COptionUI@DuiLib@@UAEX_N0@Z
?IsAnimationRunning@CUIAnimation@DuiLib@@UAEHH@Z
?SetCurrentFrame@CUIAnimation@DuiLib@@UAEHHH@Z
?OnAnimationStart@CUIAnimation@DuiLib@@UAEXHH@Z
?DrawImage@CRenderEngine@DuiLib@@SAXPAUHDC__@@PAUHBITMAP__@@ABUtagRECT@@222_NE333@Z
?OnAnimationElapse@CUIAnimation@DuiLib@@UAEXH@Z
?StopAnimation@CUIAnimation@DuiLib@@UAEXH@Z
?StartAnimation@CUIAnimation@DuiLib@@UAEHHHHHH@Z
?GenerateBitmap@CRenderEngine@DuiLib@@SAPAUHBITMAP__@@PAVCPaintManagerUI@2@PAVCControlUI@2@UtagRECT@@@Z
?ScaleBack@CDPI@DuiLib@@QAEHH@Z
?GetCurrentFrame@CUIAnimation@DuiLib@@UAEHH@Z
??1CUIAnimation@DuiLib@@UAE@XZ
??0CUIAnimation@DuiLib@@QAE@PAVCControlUI@1@@Z
?SetFocus@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@@Z
?SetTextColor@CLabelUI@DuiLib@@QAEXK@Z
?IsSelected@COptionUI@DuiLib@@QBE_NXZ
?GetData@CDuiString@DuiLib@@QBEPB_WXZ
??4CDuiString@DuiLib@@QAEABV01@ABV01@@Z
?TranslateString@CPaintManagerUI@DuiLib@@SA_NPB_WAAVCDuiString@2@@Z
??0CDuiString@DuiLib@@QAE@XZ
?FormatTanslateString@CPaintManagerUI@DuiLib@@SA?AVCDuiString@2@PB_W@Z
?HandleCursorMessage@CControlUI@DuiLib@@UBE_NABUtagPOINT@@@Z
?GetTranslateManager@CPaintManagerUI@DuiLib@@SAAAVCTranslateManager@2@XZ
?FindAccSerChildByPt@CControlUI@DuiLib@@UAEPAV12@ABUtagPOINT@@@Z
?GetAccSerState@CControlUI@DuiLib@@UBEJXZ
?GetAccSerName@CControlUI@DuiLib@@UBE?AVCDuiString@2@_N@Z
?SetAccSerInfo@CControlUI@DuiLib@@UAEXPAUtagTAccessibleServerInfo@2@@Z
?FindFirstAccSerCtrl@CControlUI@DuiLib@@UAEPAV12@XZ
?DoPostPaint@CControlUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?PaintBorder@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintText@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintStatusImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintBkImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintBkColor@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?EstimateSize@CControlUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?SetAttributeList@CControlUI@DuiLib@@UAEXPB_W@Z
?SetAttribute@CControlUI@DuiLib@@UAEXPB_W0@Z
?Event@CControlUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?DoInit@CControlUI@DuiLib@@UAEXXZ
?Init@CControlUI@DuiLib@@UAEXXZ
?FindControl@CControlUI@DuiLib@@UAEPAV12@P6GPAV12@PAV12@PAX@Z1I@Z
?SetFloat@CControlUI@DuiLib@@UAEX_N@Z
?IsFloat@CControlUI@DuiLib@@UBE_NXZ
?SetFocus@CControlUI@DuiLib@@UAEXXZ
?IsFocused@CControlUI@DuiLib@@UBE_NXZ
?SetKeyboardEnabled@CControlUI@DuiLib@@UAEX_N@Z
?SetMouseEnabled@CControlUI@DuiLib@@UAEX_N@Z
?SetEnabled@CControlUI@DuiLib@@UAEX_N@Z
?SetInternVisible@CControlUI@DuiLib@@UAEX_N@Z
?IsVisible@CControlUI@DuiLib@@UBE_NXZ
?SetTag@CControlUI@DuiLib@@UAEXI@Z
??1CVerticalLayoutUI@DuiLib@@UAE@XZ
?RemoveAll@CContainerUI@DuiLib@@UAEXXZ
?RemoveAt@CContainerUI@DuiLib@@UAE_NH@Z
?Remove@CContainerUI@DuiLib@@UAE_NPAVCControlUI@2@@Z
?AddAt@CContainerUI@DuiLib@@UAE_NPAVCControlUI@2@H@Z
?Add@CContainerUI@DuiLib@@UAE_NPAVCControlUI@2@@Z
?GetCount@CContainerUI@DuiLib@@UBEHXZ
?SetItemIndex@CContainerUI@DuiLib@@UAE_NPAVCControlUI@2@H@Z
?GetItemIndex@CContainerUI@DuiLib@@UBEHPAVCControlUI@2@@Z
?GetItemAt@CContainerUI@DuiLib@@UBEPAVCControlUI@2@H@Z
?ProcessScrollBar@CContainerUI@DuiLib@@MAEXUtagRECT@@HH@Z
?SetFloatPos@CContainerUI@DuiLib@@MAEXH@Z
?GetHorizontalScrollBar@CContainerUI@DuiLib@@UBEPAVCScrollBarUI@2@XZ
?GetVerticalScrollBar@CContainerUI@DuiLib@@UBEPAVCScrollBarUI@2@XZ
?EnableScrollBar@CContainerUI@DuiLib@@UAEX_N0@Z
?GetTag@CControlUI@DuiLib@@UBEIXZ
?SetContextMenuUsed@CControlUI@DuiLib@@UAEX_N@Z
?IsContextMenuUsed@CControlUI@DuiLib@@UBE_NXZ
?SetShortcut@CControlUI@DuiLib@@UAEX_W@Z
?GetShortcut@CControlUI@DuiLib@@UBE_WXZ
?GetToolTipWidth@CControlUI@DuiLib@@UAEHXZ
?SetToolTip@CControlUI@DuiLib@@UAEXPB_W@Z
?GetToolTip@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?ResetPos@CControlUI@DuiLib@@UAEXXZ
?SetFloatPercent@CControlUI@DuiLib@@UAEXUtagTPercentInfo@2@@Z
?GetFloatPercent@CControlUI@DuiLib@@UBE?AUtagTPercentInfo@2@XZ
?SetMaxHeight@CControlUI@DuiLib@@UAEXH@Z
?GetMaxHeight@CControlUI@DuiLib@@UBEHXZ
?GetMainMonitorDPI@CDPI@DuiLib@@SAHPAUHWND__@@@Z
?GetDPIOfMonitorNearestToPoint@CDPI@DuiLib@@SAHUtagPOINT@@@Z
?GetDPIAwareness@CDPI@DuiLib@@SA?AW4PROCESS_DPI_AWARENESS@@XZ
?FormatTanslateString@CPaintManagerUI@DuiLib@@SA?AVCDuiString@2@PB_W0ZZ
?IsEmpty@CDuiString@DuiLib@@QBE_NXZ
??0CDuiRect@DuiLib@@QAE@XZ
?GetItemCount@CVListUI@DuiLib@@QBEHXZ
?GetFirstItemIndex@CVListUI@DuiLib@@QAEHXZ
??0CDuiRect@DuiLib@@QAE@ABUtagRECT@@@Z
?GetHeight@CDuiRect@DuiLib@@QBEHXZ
?Offset@CDuiRect@DuiLib@@QAEXHH@Z
?GetWidth@CDuiRect@DuiLib@@QBEHXZ
?SetItemCount@CVListUI@DuiLib@@QAEXH@Z
?SetBkImage@CControlUI@DuiLib@@QAEXPB_W@Z
?GetFixedColumns@CTileLayoutUI@DuiLib@@QBEHXZ
?GetItemSize@CTileLayoutUI@DuiLib@@QBE?AUtagSIZE@@XZ
?GetChildVPadding@CTileLayoutUI@DuiLib@@QBEHXZ
?SetInstance@CPaintManagerUI@DuiLib@@SAXPAUHINSTANCE__@@@Z
?SetResourcePath@CPaintManagerUI@DuiLib@@SAXPB_W@Z
?GetInstancePath@CPaintManagerUI@DuiLib@@SA?AVCDuiString@2@XZ
?SetResourceZip@CPaintManagerUI@DuiLib@@SAXPB_W_N@Z
?LoadTable@CTranslateManager@DuiLib@@QAEHVSTRINGorID@2@PB_W1@Z
?SetDefaultTable@CTranslateManager@DuiLib@@QAE_NPB_W@Z
?SetDPIAwareness@CDPI@DuiLib@@SAHW4PROCESS_DPI_AWARENESS@@@Z
?InsertItem@CTranslateManager@DuiLib@@QAEHPB_W00@Z
?GetItem@CTranslateManager@DuiLib@@QAE?AVCDuiString@2@PB_W0@Z
?GetInstance@CPaintManagerUI@DuiLib@@SAPAUHINSTANCE__@@XZ
??0CVerticalLayoutUI@DuiLib@@QAE@XZ
?GetInterface@CVerticalLayoutUI@DuiLib@@UAEPAXPB_W@Z
?NeedParentUpdate@CControlUI@DuiLib@@QAEXXZ
?GetControlFlags@CVerticalLayoutUI@DuiLib@@UBEIXZ
?SetManager@CContainerUI@DuiLib@@UAEXPAVCPaintManagerUI@2@PAVCControlUI@2@_N@Z
?SetPos@CVerticalLayoutUI@DuiLib@@UAEXUtagRECT@@_N@Z
?SetVisible@CContainerUI@DuiLib@@UAEX_N@Z
?SetInternVisible@CContainerUI@DuiLib@@UAEX_N@Z
?SetMouseEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?EndRight@CContainerUI@DuiLib@@UAEXXZ
?HomeLeft@CContainerUI@DuiLib@@UAEXXZ
?PageRight@CContainerUI@DuiLib@@UAEXXZ
?PageLeft@CContainerUI@DuiLib@@UAEXXZ
?LineRight@CContainerUI@DuiLib@@UAEXXZ
?LineLeft@CContainerUI@DuiLib@@UAEXXZ
?EndDown@CContainerUI@DuiLib@@UAEXXZ
?HomeUp@CContainerUI@DuiLib@@UAEXXZ
?PageDown@CContainerUI@DuiLib@@UAEXXZ
?PageUp@CContainerUI@DuiLib@@UAEXXZ
?LineDown@CContainerUI@DuiLib@@UAEXXZ
?LineUp@CContainerUI@DuiLib@@UAEXXZ
?SetScrollStepSize@CContainerUI@DuiLib@@UAEXH@Z
?GetScrollStepSize@CContainerUI@DuiLib@@UBEHXZ
?SetScrollPos@CContainerUI@DuiLib@@UAEXUtagSIZE@@@Z
?GetScrollRange@CContainerUI@DuiLib@@UBE?AUtagSIZE@@XZ
?GetScrollPos@CContainerUI@DuiLib@@UBE?AUtagSIZE@@XZ
?FindSelectable@CContainerUI@DuiLib@@UBEHH_N@Z
?SetMouseChildEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?IsMouseChildEnabled@CContainerUI@DuiLib@@UBE_NXZ
?SetDelayedDestroy@CContainerUI@DuiLib@@UAEX_N@Z
?IsDelayedDestroy@CContainerUI@DuiLib@@UBE_NXZ
?SetAutoDestroy@CContainerUI@DuiLib@@UAEX_N@Z
?GetControlData@CControlUI@DuiLib@@UAE_NPAPAX@Z
?SetToolTipWidth@CControlUI@DuiLib@@UAEXH@Z
?IsAutoDestroy@CContainerUI@DuiLib@@UBE_NXZ
?SetChildVAlign@CContainerUI@DuiLib@@UAEXI@Z
?GetChildVAlign@CContainerUI@DuiLib@@UBEIXZ
?SetChildAlign@CContainerUI@DuiLib@@UAEXI@Z
?GetChildAlign@CContainerUI@DuiLib@@UBEIXZ
?SetChildPadding@CContainerUI@DuiLib@@UAEXH@Z
?GetChildPadding@CContainerUI@DuiLib@@UBEHXZ
?SetInset@CContainerUI@DuiLib@@UAEXUtagRECT@@@Z
?GetInset@CContainerUI@DuiLib@@UBE?AUtagRECT@@XZ
?FindAccSerChildByPt@CContainerUI@DuiLib@@UAEPAVCControlUI@2@ABUtagPOINT@@@Z
?GetAccSerName@CContainerUI@DuiLib@@UBE?AVCDuiString@2@_N@Z
?FindFirstAccSerCtrl@CContainerUI@DuiLib@@UAEPAVCControlUI@2@XZ
?DoPostPaint@CVerticalLayoutUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CContainerUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?SetAttribute@CVerticalLayoutUI@DuiLib@@UAEXPB_W0@Z
?DoEvent@CVerticalLayoutUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
??0CControlUI@DuiLib@@QAE@XZ
??1CControlUI@DuiLib@@UAE@XZ
?FreeImage@CRenderEngine@DuiLib@@SAXPBUtagTImageInfo@2@@Z
?LoadImageW@CRenderEngine@DuiLib@@SAPAUtagTImageInfo@2@VSTRINGorID@2@PB_WK@Z
?IsMouseEnabled@CControlUI@DuiLib@@UBE_NXZ
?DoEvent@CControlUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?Invalidate@CControlUI@DuiLib@@QAEXXZ
?IsKeyboardEnabled@CControlUI@DuiLib@@UBE_NXZ
?IsEnabled@CControlUI@DuiLib@@UBE_NXZ
?Activate@CControlUI@DuiLib@@UAE_NXZ
?SendNotify@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@PB_WIJ_N@Z
?Scale@CDPI@DuiLib@@QAEXPAUtagSIZE@@@Z
?GetDPIObj@CPaintManagerUI@DuiLib@@QAEPAVCDPI@2@XZ
?Scale@CDPI@DuiLib@@QAEXPAUtagRECT@@@Z
??0CRenderClip@DuiLib@@QAE@XZ
??1CRenderClip@DuiLib@@QAE@XZ
?GenerateRoundClip@CRenderClip@DuiLib@@SAXPAUHDC__@@UtagRECT@@1HHAAV12@@Z
?ScaleBack@CDPI@DuiLib@@QAEXPAUtagRECT@@@Z
?DrawColor@CRenderEngine@DuiLib@@SAXPAUHDC__@@ABUtagRECT@@K@Z
?GetAdjustColor@CControlUI@DuiLib@@QAEKK@Z
??BCDuiString@DuiLib@@QBEPB_WXZ
??0CPaintManagerUI@DuiLib@@QAE@XZ
??1CPaintManagerUI@DuiLib@@QAE@XZ
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PB_W@Z
?SetString@CControlUI@DuiLib@@QAEXPB_W_N@Z
?SetText@CControlUI@DuiLib@@UAEXPB_W@Z
?SetUserData@CControlUI@DuiLib@@UAEXPB_W@Z
?SetVisible@CControlUI@DuiLib@@UAEX_N@Z
?GetName@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
??1CDuiString@DuiLib@@QAE@XZ
?GetUserData@CControlUI@DuiLib@@UAEABVCDuiString@2@XZ
?PreMessageHandler@CPaintManagerUI@DuiLib@@QAE_NIIJAAJ@Z
?TranslateAcceleratorW@CPaintManagerUI@DuiLib@@QAE_NPAUtagMSG@@@Z
?MessageHandler@CPaintManagerUI@DuiLib@@QAE_NIIJAAJ@Z
?GetAccCtrlFromPoint@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@ABUtagPOINT@@@Z
?SetAccSerMouseCtrl@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@@Z
?IsEnableAccSerHitTest@CPaintManagerUI@DuiLib@@QBE_NXZ
?GetRoot@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@XZ
?ReapObjects@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@@Z
?AddNotifier@CPaintManagerUI@DuiLib@@QAE_NPAVINotifyUI@2@@Z
?AttachDialog@CPaintManagerUI@DuiLib@@QAE_NPAVCControlUI@2@@Z
?Create@CDialogBuilder@DuiLib@@QAEPAVCControlUI@2@VSTRINGorID@2@PB_WPAVIDialogBuilderCallback@2@PAVCPaintManagerUI@2@PAV32@@Z
?Init@CPaintManagerUI@DuiLib@@QAEXPAUHWND__@@@Z
??1CDialogBuilder@DuiLib@@QAE@XZ
??0CDialogBuilder@DuiLib@@QAE@XZ
?GetInitSize@CPaintManagerUI@DuiLib@@QAE?AUtagSIZE@@XZ
?GetMaxInfo@CPaintManagerUI@DuiLib@@QAE?AUtagSIZE@@XZ
?GetMinInfo@CPaintManagerUI@DuiLib@@QAE?AUtagSIZE@@XZ
?GetSizeBox@CPaintManagerUI@DuiLib@@QAE?AUtagRECT@@XZ
?GetCaptionRect@CPaintManagerUI@DuiLib@@QAE?AUtagRECT@@XZ
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@UtagPOINT@@@Z
?GetRoundCorner@CPaintManagerUI@DuiLib@@QAE?AUtagSIZE@@XZ
?SetName@CControlUI@DuiLib@@UAEXPB_W@Z
?GetInterface@CControlUI@DuiLib@@UAEPAXPB_W@Z
?GetControlFlags@CControlUI@DuiLib@@UBEIXZ
?GetManager@CControlUI@DuiLib@@UBEPAVCPaintManagerUI@2@XZ
?SetManager@CControlUI@DuiLib@@UAEXPAVCPaintManagerUI@2@PAV12@_N@Z
?GetParent@CControlUI@DuiLib@@UBEPAV12@XZ
?GetText@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?GetPos@CControlUI@DuiLib@@UBEABUtagRECT@@XZ
?GetRelativePos@CControlUI@DuiLib@@UBE?AUtagRECT@@XZ
?SetPos@CControlUI@DuiLib@@UAEXUtagRECT@@_N@Z
?GetWidth@CControlUI@DuiLib@@UBEHXZ
?GetHeight@CControlUI@DuiLib@@UBEHXZ
?GetX@CControlUI@DuiLib@@UBEHXZ
?GetY@CControlUI@DuiLib@@UBEHXZ
?GetPadding@CControlUI@DuiLib@@UBE?AUtagRECT@@XZ
?SetPadding@CControlUI@DuiLib@@UAEXUtagRECT@@@Z
?GetFixedXY@CControlUI@DuiLib@@UBE?AUtagSIZE@@XZ
?SetFixedXY@CControlUI@DuiLib@@UAEXUtagSIZE@@@Z
?GetFixedWidth@CControlUI@DuiLib@@UBEHXZ
?SetFixedWidth@CControlUI@DuiLib@@UAEXH@Z
?GetFixedHeight@CControlUI@DuiLib@@UBEHXZ
?SetFixedHeight@CControlUI@DuiLib@@UAEXH@Z
?GetMinWidth@CControlUI@DuiLib@@UBEHXZ
?SetMinWidth@CControlUI@DuiLib@@UAEXH@Z
?GetMaxWidth@CControlUI@DuiLib@@UBEHXZ
?SetMaxWidth@CControlUI@DuiLib@@UAEXH@Z
?GetMinHeight@CControlUI@DuiLib@@UBEHXZ
?SetMinHeight@CControlUI@DuiLib@@UAEXH@Z
?FindControl@CContainerUI@DuiLib@@UAEPAVCControlUI@2@P6GPAV32@PAV32@PAX@Z1I@Z

jansson

json_string
json_unpack
json_pack
json_dumps
json_object_get
json_load_callback
json_loadb
json_array
json_object
json_delete
json_integer_value
json_array_size
json_object_iter
json_object_iter_key
json_array_get
json_object_iter_next
json_string_value
json_object_iter_value
json_array_append_new
json_object_set_new
json_object_key_to_iter
json_integer
json_object_del

sqlite

sqlite3_column_int64
sqlite3_column_text
sqlite3_prepare_v2
sqlite3_finalize
sqlite3_step
sqlite3_column_int
sqlite3_open
sqlite3_busy_timeout
sqlite3_close_v2
sqlite3_exec
sqlite3_bind_blob
sqlite3_bind_text
sqlite3_bind_null
sqlite3_bind_int64
sqlite3_errmsg
sqlite3_bind_int
sqlite3_mutex_enter
sqlite3_db_mutex
sqlite3_mutex_leave

popblkeng

CreatePopupWindow
CreateCustomItem
LoadPopupWindow
CreateBlockTask
LoadBlockDB
CreateScanTask

Sections

.text
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 238KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/CrashHandler.dll
.dll windows:5 windows x86 arch:x86

07d59c5eb2ad9a9bc5361d1f443a3420

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09/08/2019, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

26/04/2018, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

39:cf:a3:71:fe:f1:d0:66:2e:8d:07:9d:c6:8e:0c:db:7a:21:1e:1d:44:55:47:30:78:fa:3e:b0:5f:15:ef:07
Signer

Actual PE Digest

39:cf:a3:71:fe:f1:d0:66:2e:8d:07:9d:c6:8e:0c:db:7a:21:1e:1d:44:55:47:30:78:fa:3e:b0:5f:15:ef:07

Digest Algorithm

sha256

PE Digest Matches

true

09:fe:5a:f7:65:4f:61:4e:24:6c:f2:ce:00:f6:f5:8a:a7:8e:5a:b3
Signer

Actual PE Digest

09:fe:5a:f7:65:4f:61:4e:24:6c:f2:ce:00:f6:f5:8a:a7:8e:5a:b3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\build\hr_sysdiag-app-50\bin\CrashHandler.pdb

Imports

kernel32

VirtualProtect
WriteProcessMemory
GetCurrentProcess
GetCurrentThreadId
GetCurrentProcessId
CreateProcessW
WaitForSingleObject
CloseHandle
ExitProcess
GetProcAddress
LoadLibraryW
GetModuleFileNameW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
InterlockedFlushSList
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
GetModuleHandleExW
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
HeapFree
HeapAlloc
GetACP
GetStdHandle
GetFileType
LCMapStringW
FindClose
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetStringTypeW
SetStdHandle
HeapSize
HeapReAlloc
WriteFile
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FlushFileBuffers
DecodePointer
WriteConsoleW
RaiseException
CreateFileW

Exports

Exports

SetCrashHandle

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/DuiLib.dll
.dll windows:5 windows x86 arch:x86

0e9b02dc4c0c7b2cdf0ed5f9b54a280f

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09/08/2019, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

26/04/2018, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0e:02:b5:be:ad:73:e2:f6:7a:b8:41:db:a3:84:9e:3c:fb:ea:04:e6:26:51:c1:61:14:6c:a1:aa:56:ec:85:3e
Signer

Actual PE Digest

0e:02:b5:be:ad:73:e2:f6:7a:b8:41:db:a3:84:9e:3c:fb:ea:04:e6:26:51:c1:61:14:6c:a1:aa:56:ec:85:3e

Digest Algorithm

sha256

PE Digest Matches

true

e0:4e:77:23:b6:93:41:a0:49:06:fb:5c:c1:32:bc:07:f7:c5:d4:fa
Signer

Actual PE Digest

e0:4e:77:23:b6:93:41:a0:49:06:fb:5c:c1:32:bc:07:f7:c5:d4:fa

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\build\hrduilib\bin\DuiLib.pdb

Imports

kernel32

DuplicateHandle
SystemTimeToFileTime
DosDateTimeToFileTime
CreateDirectoryW
WideCharToMultiByte
WaitForSingleObjectEx
OutputDebugStringA
WriteConsoleW
FlushFileBuffers
SetFilePointerEx
GetConsoleMode
GetConsoleCP
HeapSize
SetStdHandle
DecodePointer
SetConsoleCtrlHandler
SetEnvironmentVariableW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileW
FindNextFileA
FindFirstFileExW
FindFirstFileExA
FindClose
EnumSystemLocalesW
GetUserDefaultLCID
SetFileTime
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetStdHandle
HeapReAlloc
GetCurrentThread
GetStringTypeW
GetModuleFileNameA
GetModuleHandleExW
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
InterlockedFlushSList
InterlockedPushEntrySList
RaiseException
RtlUnwind
EncodePointer
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetFilePointer
WriteFile
GetFileType
GetCurrentProcess
ExitProcess
GetACP
GetVersionExW
LoadLibraryA
GetCurrentProcessId
OpenProcess
DisableThreadLibraryCalls
lstrlenW
CreateFileW
GetCurrentDirectoryW
SetCurrentDirectoryW
FindResourceW
GetModuleHandleW
GetModuleFileNameW
CloseHandle
ReadFile
GetFileSize
SizeofResource
LoadResource
LockResource
FreeResource
GetLastError
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
InterlockedIncrement
GetProcAddress
OutputDebugStringW
GetProcessHeap
HeapFree
HeapAlloc
MultiByteToWideChar
GetTickCount
GetModuleHandleA
GetLocalTime
LoadLibraryW
MulDiv
IsValidLocale
CreateThread

user32

NotifyWinEvent
AdjustWindowRectEx
GetPropW
SetPropW
GetMenu
CreateWindowExW
GetClassInfoExW
RegisterClassExW
RegisterClassW
CallWindowProcW
wsprintfW
GetSysColor
IsWindowVisible
IsIconic
DefWindowProcW
DestroyWindow
ShowWindow
MoveWindow
SetCapture
EnumChildWindows
CharPrevW
SetRect
IsZoomed
EnumDisplaySettingsW
ReleaseCapture
SetTimer
CreateAcceleratorTableW
GetDC
ReleaseDC
BeginPaint
EndPaint
InvalidateRect
InvalidateRgn
GetClientRect
ClientToScreen
ScreenToClient
FillRect
IntersectRect
PtInRect
GetGUIThreadInfo
CharNextW
SetCursor
LoadCursorW
SendMessageW
SetWindowPos
SetFocus
GetFocus
KillTimer
InflateRect
GetUpdateRect
SetCaretPos
ShowCaret
HideCaret
CreateCaret
GetKeyState
SetWindowRgn
MessageBoxW
wvsprintfW
MonitorFromPoint
GetWindow
PostQuitMessage
PostMessageW
DispatchMessageW
TranslateMessage
GetMessageW
GetIconInfo
DrawIconEx
LoadImageW
DestroyIcon
PrivateExtractIconsW
GetSystemMetrics
SetWindowLongW
GetWindowLongW
EqualRect
IsRectEmpty
UnionRect
GetCaretPos
GetCaretBlinkTime
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
DrawTextW
EnableWindow
IsWindow
OffsetRect
GetMonitorInfoW
MonitorFromWindow
GetParent
MapWindowPoints
GetCursorPos
GetWindowRect

gdi32

CreateFontIndirectW
GetObjectA
GetObjectW
SetTextColor
SetBkMode
SelectObject
DeleteObject
GetDeviceCaps
GetObjectType
Rectangle
RestoreDC
RoundRect
SaveDC
GetTextMetricsW
ExtCreatePen
CombineRgn
GetStockObject
CreateRectRgnIndirect
CreateRoundRectRgn
GetCharABCWidthsW
GetClipBox
GetTextExtentPoint32W
LineTo
SelectClipRgn
ExtSelectClipRgn
SetBkColor
StretchBlt
SetStretchBltMode
CreateDIBSection
MoveToEx
TextOutW
ExtTextOutW
GdiFlush
BitBlt
CreateCompatibleDC
CreatePen
CreateCompatibleBitmap
CreateSolidBrush
DeleteDC

shell32

SHGetFileInfoW

ole32

CLSIDFromProgID
CLSIDFromString
CoCreateInstance
OleLockRunning

oleaut32

VariantClear
VariantInit
SysFreeString
SysAllocString

gdiplus

GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdiplusShutdown
GdiplusStartup
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDrawString
GdipDeleteFont
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipSetTextRenderingHint
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateLineBrushI
GdipDeleteBrush
GdipCloneBrush
GdipFree
GdipAlloc

shlwapi

PathIsUNCW
PathIsDirectoryW

comctl32

ord17
ImageList_DrawIndirect
ImageList_GetImageCount
_TrackMouseEvent

oleacc

CreateStdAccessibleObject
LresultFromObject

Exports

Exports

??0CAccessibleServer@DuiLib@@QAE@ABV01@@Z
??0CAccessibleServer@DuiLib@@QAE@PAVCPaintManagerUI@1@@Z
??0CActiveXUI@DuiLib@@QAE@ABV01@@Z
??0CActiveXUI@DuiLib@@QAE@XZ
??0CAnimationData@DuiLib@@QAE@HHHH@Z
??0CButtonUI@DuiLib@@QAE@$$QAV01@@Z
??0CButtonUI@DuiLib@@QAE@ABV01@@Z
??0CButtonUI@DuiLib@@QAE@XZ
??0CCheckBoxUI@DuiLib@@QAE@$$QAV01@@Z
??0CCheckBoxUI@DuiLib@@QAE@ABV01@@Z
??0CCheckBoxUI@DuiLib@@QAE@XZ
??0CChildLayoutUI@DuiLib@@QAE@$$QAV01@@Z
??0CChildLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CChildLayoutUI@DuiLib@@QAE@XZ
??0CComboExUI@DuiLib@@QAE@ABV01@@Z
??0CComboExUI@DuiLib@@QAE@XZ
??0CComboUI@DuiLib@@QAE@ABV01@@Z
??0CComboUI@DuiLib@@QAE@XZ
??0CContainerUI@DuiLib@@QAE@ABV01@@Z
??0CContainerUI@DuiLib@@QAE@XZ
??0CControlUI@DuiLib@@QAE@ABV01@@Z
??0CControlUI@DuiLib@@QAE@XZ
??0CDPI@DuiLib@@QAE@PAUHWND__@@@Z
??0CDPI@DuiLib@@QAE@XZ
??0CDateTimeUI@DuiLib@@QAE@$$QAV01@@Z
??0CDateTimeUI@DuiLib@@QAE@ABV01@@Z
??0CDateTimeUI@DuiLib@@QAE@XZ
??0CDelegateBase@DuiLib@@QAE@ABV01@@Z
??0CDelegateBase@DuiLib@@QAE@PAX0@Z
??0CDialogBuilder@DuiLib@@QAE@XZ
??0CDuiDrawInfo@DuiLib@@QAE@ABV01@@Z
??0CDuiDrawInfo@DuiLib@@QAE@XZ
??0CDuiPtrArray@DuiLib@@QAE@ABV01@@Z
??0CDuiPtrArray@DuiLib@@QAE@H@Z
??0CDuiRect@DuiLib@@QAE@ABUtagRECT@@@Z
??0CDuiRect@DuiLib@@QAE@HHHH@Z
??0CDuiRect@DuiLib@@QAE@XZ
??0CDuiSize@DuiLib@@QAE@ABUtagSIZE@@@Z
??0CDuiSize@DuiLib@@QAE@HH@Z
??0CDuiSize@DuiLib@@QAE@UtagRECT@@@Z
??0CDuiSize@DuiLib@@QAE@XZ
??0CDuiString@DuiLib@@QAE@ABV01@@Z
??0CDuiString@DuiLib@@QAE@PB_WH@Z
??0CDuiString@DuiLib@@QAE@XZ
??0CDuiString@DuiLib@@QAE@_W@Z
??0CDuiStringPtrMap@DuiLib@@QAE@H@Z
??0CDuiValArray@DuiLib@@QAE@HH@Z
??0CEditUI@DuiLib@@QAE@ABV01@@Z
??0CEditUI@DuiLib@@QAE@XZ
??0CEventSource@DuiLib@@QAE@ABV01@@Z
??0CEventSource@DuiLib@@QAE@XZ
??0CFileIconUI@DuiLib@@QAE@ABV01@@Z
??0CFileIconUI@DuiLib@@QAE@XZ
??0CHorizontalLayoutUI@DuiLib@@QAE@$$QAV01@@Z
??0CHorizontalLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CHorizontalLayoutUI@DuiLib@@QAE@XZ
??0CLabelUI@DuiLib@@QAE@ABV01@@Z
??0CLabelUI@DuiLib@@QAE@XZ
??0CListBodyUI@DuiLib@@QAE@$$QAV01@@Z
??0CListBodyUI@DuiLib@@QAE@ABV01@@Z
??0CListBodyUI@DuiLib@@QAE@PAVCListUI@1@@Z
??0CListContainerElementUI@DuiLib@@QAE@$$QAV01@@Z
??0CListContainerElementUI@DuiLib@@QAE@ABV01@@Z
??0CListContainerElementUI@DuiLib@@QAE@XZ
??0CListElementUI@DuiLib@@QAE@$$QAV01@@Z
??0CListElementUI@DuiLib@@QAE@ABV01@@Z
??0CListElementUI@DuiLib@@QAE@XZ
??0CListHeaderItemUI@DuiLib@@QAE@$$QAV01@@Z
??0CListHeaderItemUI@DuiLib@@QAE@ABV01@@Z
??0CListHeaderItemUI@DuiLib@@QAE@XZ
??0CListHeaderUI@DuiLib@@QAE@$$QAV01@@Z
??0CListHeaderUI@DuiLib@@QAE@ABV01@@Z
??0CListHeaderUI@DuiLib@@QAE@XZ
??0CListLabelElementUI@DuiLib@@QAE@$$QAV01@@Z
??0CListLabelElementUI@DuiLib@@QAE@ABV01@@Z
??0CListLabelElementUI@DuiLib@@QAE@XZ
??0CListNotifyKey@DuiLib@@IAE@XZ
??0CListNotifyKey@DuiLib@@QAE@$$QAV01@@Z
??0CListNotifyKey@DuiLib@@QAE@ABV01@@Z
??0CListTextElementUI@DuiLib@@QAE@ABV01@@Z
??0CListTextElementUI@DuiLib@@QAE@XZ
??0CListUI@DuiLib@@QAE@ABV01@@Z
??0CListUI@DuiLib@@QAE@XZ
??0CMarkup@DuiLib@@QAE@PB_W@Z
??0CMarkupNode@DuiLib@@AAE@PAVCMarkup@1@H@Z
??0CMarkupNode@DuiLib@@QAE@XZ
??0CMenuBodyUI@DuiLib@@QAE@ABV01@@Z
??0CMenuBodyUI@DuiLib@@QAE@XZ
??0CMenuItemUI@DuiLib@@QAE@ABV01@@Z
??0CMenuItemUI@DuiLib@@QAE@PAVCMenuUI@1@@Z
??0CMenuUI@DuiLib@@QAE@ABV01@@Z
??0CMenuUI@DuiLib@@QAE@PB_WPAVCMenuItemUI@1@@Z
??0CNotifyPump@DuiLib@@QAE@$$QAV01@@Z
??0CNotifyPump@DuiLib@@QAE@ABV01@@Z
??0CNotifyPump@DuiLib@@QAE@XZ
??0COptionUI@DuiLib@@QAE@ABV01@@Z
??0COptionUI@DuiLib@@QAE@XZ
??0CPaintManagerUI@DuiLib@@QAE@ABV01@@Z
??0CPaintManagerUI@DuiLib@@QAE@XZ
??0CPoint@DuiLib@@QAE@ABUtagPOINT@@@Z
??0CPoint@DuiLib@@QAE@HH@Z
??0CPoint@DuiLib@@QAE@J@Z
??0CPoint@DuiLib@@QAE@XZ
??0CProgressUI@DuiLib@@QAE@$$QAV01@@Z
??0CProgressUI@DuiLib@@QAE@ABV01@@Z
??0CProgressUI@DuiLib@@QAE@XZ
??0CRenderClip@DuiLib@@QAE@XZ
??0CRichEditUI@DuiLib@@QAE@ABV01@@Z
??0CRichEditUI@DuiLib@@QAE@XZ
??0CScrollBarUI@DuiLib@@QAE@$$QAV01@@Z
??0CScrollBarUI@DuiLib@@QAE@ABV01@@Z
??0CScrollBarUI@DuiLib@@QAE@XZ
??0CSliderUI@DuiLib@@QAE@$$QAV01@@Z
??0CSliderUI@DuiLib@@QAE@ABV01@@Z
??0CSliderUI@DuiLib@@QAE@XZ
??0CTabControlMgr@DuiLib@@QAE@ABV01@@Z
??0CTabControlMgr@DuiLib@@QAE@PAVCPaintManagerUI@1@@Z
??0CTabLayoutUI@DuiLib@@QAE@$$QAV01@@Z
??0CTabLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CTabLayoutUI@DuiLib@@QAE@XZ
??0CTextUI@DuiLib@@QAE@ABV01@@Z
??0CTextUI@DuiLib@@QAE@XZ
??0CTileLayoutUI@DuiLib@@QAE@$$QAV01@@Z
??0CTileLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CTileLayoutUI@DuiLib@@QAE@XZ
??0CTranslateManager@DuiLib@@QAE@ABV01@@Z
??0CTranslateManager@DuiLib@@QAE@XZ
??0CTreeNodeExUI@DuiLib@@QAE@ABV01@@Z
??0CTreeNodeExUI@DuiLib@@QAE@XZ
??0CTreeNodeUI@DuiLib@@QAE@ABV01@@Z
??0CTreeNodeUI@DuiLib@@QAE@PAV01@@Z
??0CTreeViewExUI@DuiLib@@QAE@ABV01@@Z
??0CTreeViewExUI@DuiLib@@QAE@XZ
??0CTreeViewUI@DuiLib@@QAE@ABV01@@Z
??0CTreeViewUI@DuiLib@@QAE@XZ
??0CUIAnimation@DuiLib@@QAE@$$QAV01@@Z
??0CUIAnimation@DuiLib@@QAE@ABV01@@Z
??0CUIAnimation@DuiLib@@QAE@PAVCControlUI@1@@Z
??0CVListBodyUI@DuiLib@@QAE@$$QAV01@@Z
??0CVListBodyUI@DuiLib@@QAE@ABV01@@Z
??0CVListBodyUI@DuiLib@@QAE@PAVCVListUI@1@@Z
??0CVListUI@DuiLib@@QAE@$$QAV01@@Z
??0CVListUI@DuiLib@@QAE@ABV01@@Z
??0CVListUI@DuiLib@@QAE@XZ
??0CVerticalLayoutUI@DuiLib@@QAE@$$QAV01@@Z
??0CVerticalLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CVerticalLayoutUI@DuiLib@@QAE@XZ
??0CWaitCursor@DuiLib@@QAE@XZ
??0CWebBrowserUI@DuiLib@@QAE@ABV01@@Z
??0CWebBrowserUI@DuiLib@@QAE@XZ
??0CWindowWnd@DuiLib@@QAE@$$QAV01@@Z
??0CWindowWnd@DuiLib@@QAE@ABV01@@Z
??0CWindowWnd@DuiLib@@QAE@XZ
??0ITreeInfo@DuiLib@@QAE@ABV01@@Z
??0ITreeInfo@DuiLib@@QAE@XZ
??0IUIAnimation@DuiLib@@QAE@ABV01@@Z
??0IUIAnimation@DuiLib@@QAE@XZ
??0IVListCallbackUI@DuiLib@@QAE@$$QAV01@@Z
??0IVListCallbackUI@DuiLib@@QAE@ABV01@@Z
??0IVListCallbackUI@DuiLib@@QAE@XZ
??0WindowImplBase@DuiLib@@QAE@ABV01@@Z
??0WindowImplBase@DuiLib@@QAE@XZ
??1CAccessibleServer@DuiLib@@UAE@XZ
??1CActiveXUI@DuiLib@@UAE@XZ
??1CButtonUI@DuiLib@@UAE@XZ
??1CCheckBoxUI@DuiLib@@UAE@XZ
??1CChildLayoutUI@DuiLib@@UAE@XZ
??1CComboExUI@DuiLib@@UAE@XZ
??1CComboUI@DuiLib@@UAE@XZ
??1CContainerUI@DuiLib@@UAE@XZ
??1CControlUI@DuiLib@@UAE@XZ
??1CDateTimeUI@DuiLib@@UAE@XZ
??1CDelegateBase@DuiLib@@UAE@XZ
??1CDialogBuilder@DuiLib@@QAE@XZ
??1CDuiDrawInfo@DuiLib@@QAE@XZ
??1CDuiPtrArray@DuiLib@@QAE@XZ
??1CDuiString@DuiLib@@QAE@XZ
??1CDuiStringPtrMap@DuiLib@@QAE@XZ
??1CDuiValArray@DuiLib@@QAE@XZ
??1CEditUI@DuiLib@@UAE@XZ
??1CEventSource@DuiLib@@QAE@XZ
??1CFileIconUI@DuiLib@@UAE@XZ
??1CHorizontalLayoutUI@DuiLib@@UAE@XZ
??1CLabelUI@DuiLib@@UAE@XZ
??1CListBodyUI@DuiLib@@UAE@XZ
??1CListContainerElementUI@DuiLib@@UAE@XZ
??1CListElementUI@DuiLib@@UAE@XZ
??1CListHeaderItemUI@DuiLib@@UAE@XZ
??1CListHeaderUI@DuiLib@@UAE@XZ
??1CListLabelElementUI@DuiLib@@UAE@XZ
??1CListNotifyKey@DuiLib@@QAE@XZ
??1CListTextElementUI@DuiLib@@UAE@XZ
??1CListUI@DuiLib@@UAE@XZ
??1CMarkup@DuiLib@@QAE@XZ
??1CMenuBodyUI@DuiLib@@UAE@XZ
??1CMenuItemUI@DuiLib@@UAE@XZ
??1CMenuUI@DuiLib@@UAE@XZ
??1CNotifyPump@DuiLib@@QAE@XZ
??1COptionUI@DuiLib@@UAE@XZ
??1CPaintManagerUI@DuiLib@@QAE@XZ
??1CProgressUI@DuiLib@@UAE@XZ
??1CRenderClip@DuiLib@@QAE@XZ
??1CRichEditUI@DuiLib@@UAE@XZ
??1CScrollBarUI@DuiLib@@UAE@XZ
??1CSliderUI@DuiLib@@UAE@XZ
??1CTabControlMgr@DuiLib@@QAE@XZ
??1CTabLayoutUI@DuiLib@@UAE@XZ
??1CTextUI@DuiLib@@UAE@XZ
??1CTileLayoutUI@DuiLib@@UAE@XZ
??1CTranslateManager@DuiLib@@QAE@XZ
??1CTreeNodeExUI@DuiLib@@UAE@XZ
??1CTreeNodeUI@DuiLib@@UAE@XZ
??1CTreeViewExUI@DuiLib@@UAE@XZ
??1CTreeViewUI@DuiLib@@UAE@XZ
??1CUIAnimation@DuiLib@@UAE@XZ
??1CVListBodyUI@DuiLib@@UAE@XZ
??1CVListUI@DuiLib@@UAE@XZ
??1CVerticalLayoutUI@DuiLib@@UAE@XZ
??1CWaitCursor@DuiLib@@QAE@XZ
??1CWebBrowserUI@DuiLib@@UAE@XZ
??1ITreeInfo@DuiLib@@QAE@XZ
??1IUIAnimation@DuiLib@@UAE@XZ
??1WindowImplBase@DuiLib@@UAE@XZ
??4CAccessibleServer@DuiLib@@QAEAAV01@ABV01@@Z
??4CActiveXUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CAnimationData@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CAnimationData@DuiLib@@QAEAAV01@ABV01@@Z
??4CButtonUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CButtonUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CCheckBoxUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CCheckBoxUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CChildLayoutUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CChildLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CComboExUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CComboUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CContainerUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CControlUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CDPI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CDPI@DuiLib@@QAEAAV01@ABV01@@Z
??4CDateTimeUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CDateTimeUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CDelegateBase@DuiLib@@QAEAAV01@ABV01@@Z
??4CDialogBuilder@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CDialogBuilder@DuiLib@@QAEAAV01@ABV01@@Z
??4CDuiDrawInfo@DuiLib@@QAEABV01@ABV01@@Z
??4CDuiPtrArray@DuiLib@@QAEAAV01@ABV01@@Z
??4CDuiRect@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CDuiRect@DuiLib@@QAEAAV01@ABV01@@Z
??4CDuiSize@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CDuiSize@DuiLib@@QAEAAV01@ABV01@@Z
??4CDuiString@DuiLib@@QAEABV01@ABV01@@Z
??4CDuiString@DuiLib@@QAEABV01@PBD@Z
??4CDuiString@DuiLib@@QAEABV01@PB_W@Z
??4CDuiString@DuiLib@@QAEABV01@_W@Z
??4CDuiStringPtrMap@DuiLib@@QAEAAV01@ABV01@@Z
??4CDuiValArray@DuiLib@@QAEAAV01@ABV01@@Z
??4CEditUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CEventSource@DuiLib@@QAEAAV01@ABV01@@Z
??4CFileIconUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CHorizontalLayoutUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CHorizontalLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CLabelUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListBodyUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CListBodyUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListContainerElementUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CListContainerElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListElementUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CListElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListHeaderItemUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CListHeaderItemUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListHeaderUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CListHeaderUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListLabelElementUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CListLabelElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListNotifyKey@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CListNotifyKey@DuiLib@@QAEAAV01@ABV01@@Z
??4CListTextElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CMarkup@DuiLib@@QAEAAV01@ABV01@@Z
??4CMarkupNode@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CMarkupNode@DuiLib@@QAEAAV01@ABV01@@Z
??4CMenuBodyUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CMenuItemUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CMenuUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CNotifyPump@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CNotifyPump@DuiLib@@QAEAAV01@ABV01@@Z
??4COptionUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CPaintManagerUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CPoint@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CPoint@DuiLib@@QAEAAV01@ABV01@@Z
??4CProgressUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CProgressUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CRenderClip@DuiLib@@QAEAAV01@ABV01@@Z
??4CRenderEngine@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CRenderEngine@DuiLib@@QAEAAV01@ABV01@@Z
??4CRichEditUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CScrollBarUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CScrollBarUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CSliderUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CSliderUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTabControlMgr@DuiLib@@QAEAAV01@ABV01@@Z
??4CTabLayoutUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CTabLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTextUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTileLayoutUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CTileLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTranslateManager@DuiLib@@QAEAAV01@ABV01@@Z
??4CTreeNodeExUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTreeNodeUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTreeViewExUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTreeViewUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CUIAnimation@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CUIAnimation@DuiLib@@QAEAAV01@ABV01@@Z
??4CVListBodyUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CVListBodyUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CVListUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CVListUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CVerticalLayoutUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CVerticalLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CWaitCursor@DuiLib@@QAEAAV01@ABV01@@Z
??4CWebBrowserUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CWindowWnd@DuiLib@@QAEAAV01@$$QAV01@@Z
??4CWindowWnd@DuiLib@@QAEAAV01@ABV01@@Z
??4ITreeInfo@DuiLib@@QAEAAV01@ABV01@@Z
??4IUIAnimation@DuiLib@@QAEAAV01@ABV01@@Z
??4IVListCallbackUI@DuiLib@@QAEAAV01@$$QAV01@@Z
??4IVListCallbackUI@DuiLib@@QAEAAV01@ABV01@@Z
??4WindowImplBase@DuiLib@@QAEAAV01@ABV01@@Z
??8CDuiString@DuiLib@@QBE_NPB_W@Z
??9CDuiString@DuiLib@@QBE_NPB_W@Z
??ACDuiPtrArray@DuiLib@@QBEPAXH@Z
??ACDuiString@DuiLib@@QBE_WH@Z
??ACDuiStringPtrMap@DuiLib@@QBEPB_WH@Z
??ACDuiValArray@DuiLib@@QBEPAXH@Z
??BCDuiString@DuiLib@@QBEPB_WXZ
??BCEventSource@DuiLib@@QAE_NXZ
??BCWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
??HCDuiString@DuiLib@@QBE?AV01@ABV01@@Z
??HCDuiString@DuiLib@@QBE?AV01@PB_W@Z
??MCDuiString@DuiLib@@QBE_NPB_W@Z
??NCDuiString@DuiLib@@QBE_NPB_W@Z
??OCDuiString@DuiLib@@QBE_NPB_W@Z
??PCDuiString@DuiLib@@QBE_NPB_W@Z
??RCDelegateBase@DuiLib@@QAE_NPAX@Z
??RCEventSource@DuiLib@@QAE_NPAX@Z
??YCDuiString@DuiLib@@QAEABV01@ABV01@@Z
??YCDuiString@DuiLib@@QAEABV01@PBD@Z
??YCDuiString@DuiLib@@QAEABV01@PB_W@Z
??YCDuiString@DuiLib@@QAEABV01@_W@Z
??YCEventSource@DuiLib@@QAEXABVCDelegateBase@1@@Z
??YCEventSource@DuiLib@@QAEXP6A_NPAX@Z@Z
??ZCEventSource@DuiLib@@QAEXABVCDelegateBase@1@@Z
??ZCEventSource@DuiLib@@QAEXP6A_NPAX@Z@Z
??_7CAccessibleServer@DuiLib@@6BIAccessible@@@
??_7CAccessibleServer@DuiLib@@6BIEnumVARIANT@@@
??_7CActiveXUI@DuiLib@@6BCControlUI@1@@
??_7CActiveXUI@DuiLib@@6BIMessageFilterUI@1@@
??_7CButtonUI@DuiLib@@6B@
??_7CCheckBoxUI@DuiLib@@6B@
??_7CChildLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CChildLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CComboExUI@DuiLib@@6B@
??_7CComboExUI@DuiLib@@6BCControlUI@1@@
??_7CComboExUI@DuiLib@@6BIContainerUI@1@@
??_7CComboUI@DuiLib@@6B@
??_7CComboUI@DuiLib@@6BCControlUI@1@@
??_7CComboUI@DuiLib@@6BIContainerUI@1@@
??_7CContainerUI@DuiLib@@6BCControlUI@1@@
??_7CContainerUI@DuiLib@@6BIContainerUI@1@@
??_7CControlUI@DuiLib@@6B@
??_7CDateTimeUI@DuiLib@@6B@
??_7CDelegateBase@DuiLib@@6B@
??_7CEditUI@DuiLib@@6BCLabelUI@1@@
??_7CEditUI@DuiLib@@6BIMessageFilterUI@1@@
??_7CFileIconUI@DuiLib@@6B@
??_7CHorizontalLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CHorizontalLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CLabelUI@DuiLib@@6B@
??_7CListBodyUI@DuiLib@@6BCControlUI@1@@
??_7CListBodyUI@DuiLib@@6BIContainerUI@1@@
??_7CListContainerElementUI@DuiLib@@6B@
??_7CListContainerElementUI@DuiLib@@6BCControlUI@1@@
??_7CListContainerElementUI@DuiLib@@6BIContainerUI@1@@
??_7CListElementUI@DuiLib@@6BCControlUI@1@@
??_7CListElementUI@DuiLib@@6BIListItemUI@1@@
??_7CListHeaderItemUI@DuiLib@@6B@
??_7CListHeaderUI@DuiLib@@6BCControlUI@1@@
??_7CListHeaderUI@DuiLib@@6BIContainerUI@1@@
??_7CListLabelElementUI@DuiLib@@6BCControlUI@1@@
??_7CListLabelElementUI@DuiLib@@6BIListItemUI@1@@
??_7CListTextElementUI@DuiLib@@6BCControlUI@1@@
??_7CListTextElementUI@DuiLib@@6BIListItemUI@1@@
??_7CListUI@DuiLib@@6B@
??_7CListUI@DuiLib@@6BCControlUI@1@@
??_7CListUI@DuiLib@@6BIContainerUI@1@@
??_7CMenuBodyUI@DuiLib@@6B@
??_7CMenuBodyUI@DuiLib@@6BCControlUI@1@@
??_7CMenuBodyUI@DuiLib@@6BIContainerUI@1@@
??_7CMenuItemUI@DuiLib@@6B@
??_7CMenuItemUI@DuiLib@@6BCControlUI@1@@
??_7CMenuItemUI@DuiLib@@6BIContainerUI@1@@
??_7CMenuUI@DuiLib@@6BCWindowWnd@1@@
??_7CMenuUI@DuiLib@@6BIDialogBuilderCallback@1@@
??_7CMenuUI@DuiLib@@6BINotifyUI@1@@
??_7CNotifyPump@DuiLib@@6B@
??_7COptionUI@DuiLib@@6B@
??_7CProgressUI@DuiLib@@6B@
??_7CRichEditUI@DuiLib@@6B@
??_7CRichEditUI@DuiLib@@6BCControlUI@1@@
??_7CRichEditUI@DuiLib@@6BIContainerUI@1@@
??_7CScrollBarUI@DuiLib@@6B@
??_7CSliderUI@DuiLib@@6B@
??_7CTabLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CTabLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CTextUI@DuiLib@@6B@
??_7CTileLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CTileLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CTreeNodeExUI@DuiLib@@6B@
??_7CTreeNodeExUI@DuiLib@@6BCControlUI@1@@
??_7CTreeNodeExUI@DuiLib@@6BIContainerUI@1@@
??_7CTreeNodeUI@DuiLib@@6B@
??_7CTreeNodeUI@DuiLib@@6BCControlUI@1@@
??_7CTreeNodeUI@DuiLib@@6BIContainerUI@1@@
??_7CTreeViewExUI@DuiLib@@6BCControlUI@1@@
??_7CTreeViewExUI@DuiLib@@6BCVListUI@1@@
??_7CTreeViewExUI@DuiLib@@6BIContainerUI@1@@
??_7CTreeViewExUI@DuiLib@@6BITreeInfo@1@@
??_7CTreeViewExUI@DuiLib@@6BIVListCallbackUI@1@@
??_7CTreeViewUI@DuiLib@@6BCControlUI@1@@
??_7CTreeViewUI@DuiLib@@6BCListUI@1@@
??_7CTreeViewUI@DuiLib@@6BIContainerUI@1@@
??_7CTreeViewUI@DuiLib@@6BINotifyUI@1@@
??_7CUIAnimation@DuiLib@@6B@
??_7CVListBodyUI@DuiLib@@6BCControlUI@1@@
??_7CVListBodyUI@DuiLib@@6BIContainerUI@1@@
??_7CVListUI@DuiLib@@6B@
??_7CVListUI@DuiLib@@6BCControlUI@1@@
??_7CVListUI@DuiLib@@6BIContainerUI@1@@
??_7CVerticalLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CVerticalLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CWebBrowserUI@DuiLib@@6BCControlUI@1@@
??_7CWebBrowserUI@DuiLib@@6BIDispatch@@@
??_7CWebBrowserUI@DuiLib@@6BIDocHostUIHandler@@@
??_7CWebBrowserUI@DuiLib@@6BIMessageFilterUI@1@@
??_7CWebBrowserUI@DuiLib@@6BIOleCommandTarget@@@
??_7CWebBrowserUI@DuiLib@@6BIServiceProvider@@@
??_7CWebBrowserUI@DuiLib@@6BITranslateAccelerator@1@@
??_7CWindowWnd@DuiLib@@6B@
??_7ITreeInfo@DuiLib@@6B@
??_7IUIAnimation@DuiLib@@6B@
??_7IVListCallbackUI@DuiLib@@6B@
??_7WindowImplBase@DuiLib@@6BCNotifyPump@1@@
??_7WindowImplBase@DuiLib@@6BCWindowWnd@1@@
??_7WindowImplBase@DuiLib@@6BIDialogBuilderCallback@1@@
??_7WindowImplBase@DuiLib@@6BIMessageFilterUI@1@@
??_7WindowImplBase@DuiLib@@6BINotifyUI@1@@
??_FCDuiPtrArray@DuiLib@@QAEXXZ
??_FCDuiStringPtrMap@DuiLib@@QAEXXZ
??_FCMarkup@DuiLib@@QAEXXZ
??_FCMenuUI@DuiLib@@QAEXXZ
??_FCTreeNodeUI@DuiLib@@QAEXXZ
?AccSerStringFormat@CControlUI@DuiLib@@QAAXPB_WZZ
?Activate@CButtonUI@DuiLib@@UAE_NXZ
?Activate@CCheckBoxUI@DuiLib@@UAE_NXZ
?Activate@CComboExUI@DuiLib@@UAE_NXZ
?Activate@CComboUI@DuiLib@@UAE_NXZ
?Activate@CControlUI@DuiLib@@UAE_NXZ
?Activate@CListContainerElementUI@DuiLib@@UAE_NXZ
?Activate@CListElementUI@DuiLib@@UAE_NXZ
?Activate@COptionUI@DuiLib@@UAE_NXZ
?Add@CComboUI@DuiLib@@UAE_NPAVCControlUI@2@@Z
?Add@CContainerUI@DuiLib@@UAE_NPAVCControlUI@2@@Z
?Add@CDuiPtrArray@DuiLib@@QAE_NPAX@Z
?Add@CDuiValArray@DuiLib@@QAE_NPBX@Z
?Add@CListBodyUI@DuiLib@@UAE_NPAVCControlUI@2@@Z
?Add@CListUI@DuiLib@@UAE_NPAVCControlUI@2@@Z
?Add@CTabLayoutUI@DuiLib@@UAE_NPAVCControlUI@2@@Z
?Add@CTreeNodeUI@DuiLib@@UAE_NPAVCControlUI@2@@Z
?Add@CTreeViewUI@DuiLib@@UAE_NPAVCTreeNodeUI@2@@Z
?Add@CVListUI@DuiLib@@UAE_NPAVCControlUI@2@@Z
?AddAccSerCtrl@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@@Z
?AddAt@CComboUI@DuiLib@@UAE_NPAVCControlUI@2@H@Z
?AddAt@CContainerUI@DuiLib@@UAE_NPAVCControlUI@2@H@Z
?AddAt@CListBodyUI@DuiLib@@UAE_NPAVCControlUI@2@H@Z
?AddAt@CListUI@DuiLib@@UAE_NPAVCControlUI@2@H@Z
?AddAt@CTabLayoutUI@DuiLib@@UAE_NPAVCControlUI@2@H@Z
?AddAt@CTreeNodeUI@DuiLib@@UAE_NPAVCControlUI@2@H@Z
?AddAt@CTreeViewUI@DuiLib@@UAEJPAVCTreeNodeUI@2@H@Z
?AddAt@CTreeViewUI@DuiLib@@UAE_NPAVCTreeNodeUI@2@0@Z
?AddAt@CVListUI@DuiLib@@UAE_NPAVCControlUI@2@H@Z
?AddChildNode@CTreeNodeUI@DuiLib@@QAE_NPAV12@@Z
?AddControlStyle@CPaintManagerUI@DuiLib@@QAEXPB_W0_N@Z
?AddDefaultAttributeList@CPaintManagerUI@DuiLib@@QAEXPB_W0_N@Z
?AddDelayedCleanup@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@@Z
?AddFont@CPaintManagerUI@DuiLib@@QAEPAUHFONT__@@HPB_WH_N111@Z
?AddImage@CPaintManagerUI@DuiLib@@QAEPBUtagTImageInfo@2@PB_W0K@Z
?AddImage@CPaintManagerUI@DuiLib@@QAEPBUtagTImageInfo@2@PB_WPAUHBITMAP__@@HH_N@Z
?AddImageStyle@CPaintManagerUI@DuiLib@@QAEXPB_W0_N@Z
?AddItem@CMenuUI@DuiLib@@QAE_NPAVCMenuItemUI@2@@Z
?AddItemAt@CMenuUI@DuiLib@@QAE_NPAVCMenuItemUI@2@H@Z

Sections

.text
Size: 665KB - Virtual size: 665KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 297KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/PopBlkEng.dll
.dll windows:5 windows x86 arch:x86

4528944febd26392dd3dd53f6eb92c24

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09/08/2019, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

26/04/2018, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

b5:33:51:21:c7:e2:56:1d:e3:25:b4:ee:b0:32:10:d3:57:db:a9:88:12:25:41:c6:d0:0c:4c:1e:95:8c:92:ac
Signer

Actual PE Digest

b5:33:51:21:c7:e2:56:1d:e3:25:b4:ee:b0:32:10:d3:57:db:a9:88:12:25:41:c6:d0:0c:4c:1e:95:8c:92:ac

Digest Algorithm

sha256

PE Digest Matches

true

7e:15:89:e3:a9:e0:e9:2a:a9:9a:e1:af:75:09:34:c5:a3:2b:85:aa
Signer

Actual PE Digest

7e:15:89:e3:a9:e0:e9:2a:a9:9a:e1:af:75:09:34:c5:a3:2b:85:aa

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\build\hr_sysdiag-app-50\bin\PopBlkEng.pdb

Imports

kernel32

WaitForSingleObject
CreateThread
TerminateThread
DeleteFileW
GetNativeSystemInfo
RaiseException
DecodePointer
MulDiv
LoadLibraryW
ExpandEnvironmentStringsW
GetFileAttributesW
GetModuleHandleW
GetProcessTimes
GetLogicalDriveStringsW
QueryDosDeviceW
WriteFile
WriteConsoleW
FlushFileBuffers
SetStdHandle
FreeEnvironmentStringsW
TerminateProcess
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
FindClose
GetConsoleCP
SetFilePointerEx
GetConsoleMode
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetFileType
GetStdHandle
GetACP
GetModuleFileNameA
GetModuleHandleExW
ExitProcess
RtlUnwind
InterlockedFlushSList
LoadLibraryExW
GetCurrentProcessId
InitializeCriticalSectionAndSpinCount
GetLastError
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
GetProcessHeap
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
HeapDestroy
GetEnvironmentStringsW
CreateFileW
GetVersion
GetProcAddress
GetModuleHandleA
GetTickCount
WideCharToMultiByte
DeleteCriticalSection
CloseHandle
Sleep
MultiByteToWideChar
OpenProcess
InitializeCriticalSection
LeaveCriticalSection
GetCurrentProcess
InterlockedDecrement
GetLongPathNameW
EnterCriticalSection
InterlockedExchange
InterlockedIncrement
GetCommandLineW
FreeLibrary
GetLocaleInfoW
LCMapStringW
CompareStringW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
GetCPInfo
EncodePointer
GetStringTypeW
OutputDebugStringW
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent

user32

IsRectEmpty
GetDC
GetDesktopWindow
GetWindow
GetParent
IsWindowVisible
GetWindowRect
GetWindowThreadProcessId
PrintWindow
IsWindow
PostMessageW
EnumWindows
GetMonitorInfoW
EnumDisplaySettingsW
SetRect
EnumDisplayMonitors
MonitorFromWindow
IntersectRect
OffsetRect
FindWindowW
GetSystemMetrics
GetDCEx
GetWindowTextW
GetClassNameW
ReleaseDC
MoveWindow
GetWindowLongW
ShowWindow

gdi32

BitBlt
CreateDIBSection
CreateCompatibleBitmap
DeleteObject
SelectObject
CreateCompatibleDC
GetPixel
DeleteDC

advapi32

RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExA
RegOpenKeyExA
RegQueryValueExW
RegCloseKey

shell32

SHGetSpecialFolderPathW

libxsse

ord30
ord10
ord2

shlwapi

PathFileExistsW

jansson

json_object_iter_next
json_array_get
json_object_iter_key
json_object_iter
json_array_size
json_integer_value
json_string_value
json_object
json_array
json_loadb
json_load_callback
json_object_get
json_object_key_to_iter
json_object_iter_value
json_array_append_new
json_delete
json_loads
json_array_clear
json_unpack
json_string
json_integer
json_dumps_free
json_dumps
json_deep_copy
json_object_set_new
json_pack

sqlite

sqlite3_exec
sqlite3_busy_timeout
sqlite3_open
sqlite3_errmsg
sqlite3_close_v2
sqlite3_bind_blob
sqlite3_bind_null
sqlite3_bind_int64
sqlite3_bind_text
sqlite3_column_text
sqlite3_column_bytes
sqlite3_column_int64
sqlite3_bind_int
sqlite3_prepare_v2
sqlite3_finalize
sqlite3_column_int
sqlite3_step
sqlite3_mutex_leave
sqlite3_db_mutex
sqlite3_mutex_enter

psapi

GetProcessImageFileNameW

msi

ord70

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Exports

Exports

CreateBlockTask
CreateCustomItem
CreatePopupWindow
CreateScanTask
LoadBlockDB
LoadPopupWindow

Sections

.text
Size: 250KB - Virtual size: 250KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/data/db/popblk.db
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/jansson.dll
.dll windows:5 windows x86 arch:x86

6352b05f36a3dbcf39d907d987aec925

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

02:6a:8e:89:54:e2:9b:67:72:df:79:f7:37:3c:0f:6d
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

27/04/2018, 00:00

Not After

31/12/2019, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

26/04/2018, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

92:4b:b8:be:61:0a:8b:3c:d0:b0:8e:cd:e3:df:b8:82:8f:58:fa:81:d8:b1:3f:2d:73:0a:93:af:f7:f0:64:ba
Signer

Actual PE Digest

92:4b:b8:be:61:0a:8b:3c:d0:b0:8e:cd:e3:df:b8:82:8f:58:fa:81:d8:b1:3f:2d:73:0a:93:af:f7:f0:64:ba

Digest Algorithm

sha256

PE Digest Matches

true

29:04:b0:42:5f:0b:b7:79:f4:c8:04:d5:a2:06:1d:a1:cf:c6:d8:63
Signer

Actual PE Digest

29:04:b0:42:5f:0b:b7:79:f4:c8:04:d5:a2:06:1d:a1:cf:c6:d8:63

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\devel\works\hr_sysdiag-dist\core\bin\jansson.pdb

Imports

kernel32

InterlockedDecrement
InterlockedIncrement
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
InterlockedPushEntrySList
InterlockedFlushSList
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameA
GetModuleFileNameW
MultiByteToWideChar
WideCharToMultiByte
HeapFree
HeapAlloc
CloseHandle
WriteFile
GetConsoleCP
GetConsoleMode
GetCurrentThread
GetACP
GetStdHandle
GetFileType
GetStringTypeW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FindClose
FindFirstFileExA
FindFirstFileExW
FindNextFileA
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetProcessHeap
SetConsoleCtrlHandler
CreateFileW
SetStdHandle
FlushFileBuffers
SetFilePointerEx
WriteConsoleW
ReadFile
ReadConsoleW
HeapSize
HeapReAlloc
SetEndOfFile
OutputDebugStringA
OutputDebugStringW
WaitForSingleObjectEx
CreateThread
EncodePointer
DecodePointer
RaiseException

Exports

Exports

json_array
json_array_append_new
json_array_clear
json_array_extend
json_array_get
json_array_insert_new
json_array_remove
json_array_set_new
json_array_size
json_copy
json_deep_copy
json_delete
json_dump_callback
json_dump_file
json_dumpf
json_dumps
json_dumps_free
json_equal
json_false
json_integer
json_integer_set
json_integer_value
json_load_callback
json_load_file
json_loadb
json_loadf
json_loads
json_null
json_number_value
json_object
json_object_clear
json_object_del
json_object_get
json_object_iter
json_object_iter_at
json_object_iter_key
json_object_iter_next
json_object_iter_set_new
json_object_iter_value
json_object_key_to_iter
json_object_set_new
json_object_set_new_nocheck
json_object_size
json_object_update
json_object_update_existing
json_object_update_missing
json_pack
json_pack_ex
json_real
json_real_set
json_real_value
json_set_alloc_funcs
json_string
json_string_nocheck
json_string_set
json_string_set_nocheck
json_string_value
json_true
json_unpack
json_unpack_ex
json_vpack_ex
json_vunpack_ex

Sections

.text
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 356B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/libcodecs.dll
.dll windows:5 windows x86 arch:x86

da158407f6a4d61a083c0b075a47d586

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09/08/2019, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

26/04/2018, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

b5:d6:17:7a:75:7f:08:fc:bf:69:95:a4:b6:83:42:d5:a1:e3:0d:15:37:85:d3:d4:03:b1:b9:41:22:86:ff:17
Signer

Actual PE Digest

b5:d6:17:7a:75:7f:08:fc:bf:69:95:a4:b6:83:42:d5:a1:e3:0d:15:37:85:d3:d4:03:b1:b9:41:22:86:ff:17

Digest Algorithm

sha256

PE Digest Matches

true

8d:aa:db:39:b7:31:01:a9:94:d2:bf:f5:61:07:0f:f7:2b:9a:05:ad
Signer

Actual PE Digest

8d:aa:db:39:b7:31:01:a9:94:d2:bf:f5:61:07:0f:f7:2b:9a:05:ad

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\devel\works\hr_sysdiag-dist\xsse\bin\libcodecs.pdb

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
WaitForMultipleObjects
DeleteCriticalSection
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FormatMessageW
LocalFree
GetFullPathNameW
GetTempFileNameW
SearchPathW
CreateDirectoryW
SetFileTime
GetSystemDirectoryW
CreateFileW
lstrlenW
GetTempPathW
GetLastError
GetCurrentDirectoryW
MoveFileW
RemoveDirectoryW
GetShortPathNameW
CloseHandle
GetWindowsDirectoryW
DeleteFileW
SetFileAttributesW
FindFirstFileW
FindFirstChangeNotificationW
GetLogicalDriveStringsW
FindCloseChangeNotification
FindClose
FindNextFileW
GetFileSize
SetFilePointer
SetEndOfFile
WriteFile
ReadFile
GetFileInformationByHandle
CompareFileTime
FileTimeToSystemTime
GlobalMemoryStatus
GetModuleHandleW
GetProcAddress
GetSystemInfo
FileTimeToDosDateTime
DosDateTimeToFileTime
GetSystemTimeAsFileTime
WideCharToMultiByte
MultiByteToWideChar
VirtualFree
VirtualAlloc
WaitForSingleObject
SetEvent
InitializeCriticalSection
ReleaseSemaphore
ResetEvent
CreateSemaphoreW
CreateEventW
DisableThreadLibraryCalls
GetModuleHandleA
CompareStringW
CompareStringA
GetTimeZoneInformation
LCMapStringW
SetEnvironmentVariableA
LCMapStringA
InterlockedExchange
FreeLibrary
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetLocaleInfoW
LoadLibraryA
SetConsoleCtrlHandler
HeapFree
HeapReAlloc
HeapAlloc
InterlockedIncrement
InterlockedDecrement
ExitThread
CreateThread
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThread
HeapCreate
HeapDestroy
FatalAppExitA
Sleep
HeapSize
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW

user32

CharUpperA
CharLowerA
CharUpperW
CharPrevExA
CharNextA
CharLowerW

oleaut32

SysAllocStringByteLen
VariantCopy
VariantClear
SysAllocString
SysFreeString

Sections

.text
Size: 925KB - Virtual size: 925KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/libxsse.dll
.dll windows:5 windows x86 arch:x86

28d97452ee99e11c4bbb7c7af8577e09

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

09/08/2019, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

26/04/2018, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

fa:b9:4c:a2:20:ea:4e:92:b9:c5:af:d9:6c:47:fb:02:d9:6f:a8:6e:52:eb:12:89:00:97:ee:a9:5d:46:e5:dc
Signer

Actual PE Digest

fa:b9:4c:a2:20:ea:4e:92:b9:c5:af:d9:6c:47:fb:02:d9:6f:a8:6e:52:eb:12:89:00:97:ee:a9:5d:46:e5:dc

Digest Algorithm

sha256

PE Digest Matches

true

b7:21:f2:da:fa:eb:9a:a1:c8:c3:03:44:e0:3c:60:b5:2d:4a:35:f2
Signer

Actual PE Digest

b7:21:f2:da:fa:eb:9a:a1:c8:c3:03:44:e0:3c:60:b5:2d:4a:35:f2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\devel\works\hr_sysdiag-dist\xsse\bin\libxsse.pdb

Imports

oleaut32

VariantClear
SysAllocString
SysAllocStringByteLen
VariantCopy

kernel32

SystemTimeToFileTime
GetSystemTime
InterlockedExchange
GetCurrentThreadId
CreateThread
ReadFile
GetModuleFileNameA
GetFileSizeEx
GetLongPathNameW
GetCurrentProcess
WriteFile
InterlockedDecrement
ExpandEnvironmentStringsA
SetEndOfFile
CreateFileW
GetFileAttributesW
UnmapViewOfFile
DuplicateHandle
GetModuleHandleA
OpenProcess
GetVersion
MultiByteToWideChar
Sleep
LoadLibraryA
GetSystemInfo
GetCurrentDirectoryW
SearchPathA
FindClose
GetProcAddress
SetFilePointerEx
LocalFree
WideCharToMultiByte
InterlockedIncrement
IsBadReadPtr
CreateFileMappingW
MapViewOfFile
GetTickCount
InterlockedCompareExchange
FreeLibrary
WriteProcessMemory
ReadProcessMemory
DisableThreadLibraryCalls
HeapSize
WriteConsoleW
GetTimeZoneInformation
SetConsoleCtrlHandler
GetProcessHeap
SetEnvironmentVariableW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
FindNextFileW
FindFirstFileW
VirtualProtect
CreateSemaphoreW
ResetEvent
CloseHandle
SetEvent
GetLastError
CreateEventW
WaitForSingleObject
InitializeCriticalSection
ReleaseSemaphore
DeleteCriticalSection
DecodePointer
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
VirtualFree
FileTimeToSystemTime
CompareFileTime
GetTempPathW
OutputDebugStringA
OutputDebugStringW
WaitForSingleObjectEx
GetWindowsDirectoryW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeSListHead
EncodePointer
RaiseException
InterlockedPushEntrySList
InterlockedFlushSList
SetLastError
RtlUnwind
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
ExitThread
ResumeThread
FreeLibraryAndExitThread
GetModuleHandleExW
QueryPerformanceFrequency
GetDriveTypeW
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
GetFileAttributesExW
SetFileAttributesW
DeleteFileW
ExitProcess
GetModuleFileNameW
HeapFree
HeapAlloc
GetCurrentThread
GetACP
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetStringTypeW
HeapReAlloc
SetCurrentDirectoryW
GetFullPathNameW
GetFullPathNameA
SetStdHandle
GetStdHandle
GetConsoleMode
ReadConsoleW
FlushFileBuffers
GetConsoleCP
GetCPInfo
FindFirstFileExA
FindFirstFileExW
FindNextFileA
IsValidCodePage

user32

CloseWindowStation
EnumDesktopsA
CloseDesktop
IsWindowVisible
OpenDesktopA
EnumDesktopWindows
GetParent
GetWindowRect
EnumWindowStationsA
GetWindowThreadProcessId
OpenWindowStationA

advapi32

RegSetValueExW
BuildExplicitAccessWithNameA
SetSecurityDescriptorDacl
SetEntriesInAclA
GetSecurityDescriptorDacl
RegGetKeySecurity
RegCloseKey
RegDeleteKeyA
RegQueryValueExA
RegCreateKeyExA
RegSetKeySecurity
RegSetValueExA
OpenProcessToken
RegLoadKeyA
InitializeSecurityDescriptor
RegOpenKeyExA
ConvertSidToStringSidW
RegEnumValueA
RegDeleteValueA
RegOpenKeyW
RegSaveKeyA
RegQueryValueExW
RegEnumKeyExA
GetTokenInformation

Exports

Exports

libxsse_exrec_alloc
libxsse_record_alloc
libxsse_register_codec
libxsse_register_exunit

Sections

.text
Size: 684KB - Virtual size: 683KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/popblock.ui
.zip
cmpt/combo.xml
.xml
cmpt/title.xml
.xml
cmpt/title1.xml
.xml
dlg_blockinfo.xml
.xml
dlg_config.xml
.xml
dlg_flash.xml
.xml
dlg_lace.xml
.xml
dlg_main.xml
.xml
dlg_messages.xml
.xml
dlg_record.xml
.xml
dlg_shot.xml
.xml
dlg_wndinfo.xml
.xml
img/100/ani_opt_big.png
.png
img/100/ani_opt_big_off.png
.png
img/100/ani_opt_big_on.png
.png
img/100/ani_opt_small.png
.png
img/100/ani_opt_small_off.png
.png
img/100/ani_opt_small_on.png
.png
img/100/arrow.png
.png
img/100/bk_border.png
.png
img/100/bk_border_opaque_small.png
.png
img/100/bk_edit_white.png
.png
img/100/bk_tooltips.png
.png
img/100/btn_locate.png
.png
img/100/btn_zoom_in.png
.png
img/100/btn_zoom_out.png
.png
img/100/checkbox.png
.png
img/100/close_gray.png
.png
img/100/close_white.png
.png
img/100/combo.png
.png
img/100/icon_custom.png
.png
img/100/icon_message.png
.png
img/100/icon_nofound.png
.png
img/100/icon_norecord.png
.png
img/100/icon_popblock.png
.png
img/100/icon_stop.png
.png
img/100/icon_success.png
.png
img/100/icon_tray_menu.png
.png
img/100/logo.png
.png
img/100/max_gray.png
.png
img/100/menu_gray.png
.png
img/100/menu_tray_exit.png
.png
img/100/menu_tray_show.png
.png
img/100/menu_tray_snap.png
.png
img/100/min_gray.png
.png
img/100/msgboxtip.png
.png
img/100/programbar.png
.png
img/100/radio.png
.png
img/100/restore_gray.png
.png
img/100/search.png
.png
img/100/search_close.png
.png
img/100/syscfg_config.png
.png
img/100/syscfg_exit.png
.png
img/100/syscfg_feedback.png
.png
img/100/syscfg_shortcut.png
.png
img/100/window_flash.png
.png
img/125/ani_opt_big.png
.png
img/125/ani_opt_big_off.png
.png
img/125/ani_opt_big_on.png
.png
img/125/ani_opt_small.png
.png
img/125/ani_opt_small_off.png
.png
img/125/ani_opt_small_on.png
.png
img/125/arrow.png
.png
img/125/bk_border.png
.png
img/125/bk_border_opaque_small.png
.png
img/125/bk_edit_white.png
.png
img/125/bk_tooltips.png
.png
img/125/btn_locate.png
.png
img/125/btn_zoom_in.png
.png
img/125/btn_zoom_out.png
.png
img/125/checkbox.png
.png
img/125/close_gray.png
.png
img/125/close_white.png
.png
img/125/combo.png
.png
img/125/icon_custom.png
.png
img/125/icon_message.png
.png
img/125/icon_nofound.png
.png
img/125/icon_norecord.png
.png
img/125/icon_popblock.png
.png
img/125/icon_stop.png
.png
img/125/icon_success.png
.png
img/125/icon_tray_menu.png
.png
img/125/logo.png
.png
img/125/max_gray.png
.png
img/125/menu_gray.png
.png
img/125/menu_tray_exit.png
.png
img/125/menu_tray_show.png
.png
img/125/menu_tray_snap.png
.png
img/125/min_gray.png
.png
img/125/msgboxtip.png
.png
img/125/programbar.png
.png
img/125/radio.png
.png
img/125/restore_gray.png
.png
img/125/search.png
.png
img/125/search_close.png
.png
img/125/syscfg_config.png
.png
img/125/syscfg_exit.png
.png
img/125/syscfg_feedback.png
.png
img/125/syscfg_shortcut.png
.png
img/125/window_flash.png
.png
img/150/ani_opt_big.png
.png
img/150/ani_opt_big_off.png
.png
img/150/ani_opt_big_on.png
.png
img/150/ani_opt_small.png
.png
img/150/ani_opt_small_off.png
.png
img/150/ani_opt_small_on.png
.png
img/150/arrow.png
.png
img/150/bk_border.png
.png
img/150/bk_border_opaque_small.png
.png
img/150/bk_edit_white.png
.png
img/150/bk_tooltips.png
.png
img/150/btn_locate.png
.png
img/150/btn_zoom_in.png
.png
img/150/btn_zoom_out.png
.png
img/150/checkbox.png
.png
img/150/close_gray.png
.png
img/150/close_white.png
.png
img/150/combo.png
.png
img/150/icon_custom.png
.png
img/150/icon_message.png
.png
img/150/icon_nofound.png
.png
img/150/icon_norecord.png
.png
img/150/icon_popblock.png
.png
img/150/icon_stop.png
.png
img/150/icon_success.png
.png
img/150/icon_tray_menu.png
.png
img/150/logo.png
.png
img/150/max_gray.png
.png
img/150/menu_gray.png
.png
img/150/menu_tray_exit.png
.png
img/150/menu_tray_show.png
.png
img/150/menu_tray_snap.png
.png
img/150/min_gray.png
.png
img/150/msgboxtip.png
.png
img/150/programbar.png
.png
img/150/radio.png
.png
img/150/restore_gray.png
.png
img/150/search.png
.png
img/150/search_close.png
.png
img/150/syscfg_config.png
.png
img/150/syscfg_exit.png
.png
img/150/syscfg_feedback.png
.png
img/150/syscfg_shortcut.png
.png
img/150/window_flash.png
.png
img/175/ani_opt_big.png
.png
img/175/ani_opt_big_off.png
.png
img/175/ani_opt_big_on.png
.png
img/175/ani_opt_small.png
.png
img/175/ani_opt_small_off.png
.png
img/175/ani_opt_small_on.png
.png
img/175/arrow.png
.png
img/175/bk_border.png
.png
img/175/bk_border_opaque_small.png
.png
img/175/bk_edit_white.png
.png
img/175/bk_tooltips.png
.png
img/175/btn_locate.png
.png
img/175/btn_zoom_in.png
.png
img/175/btn_zoom_out.png
.png
img/175/checkbox.png
.png
img/175/close_gray.png
.png
img/175/close_white.png
.png
img/175/combo.png
.png
img/175/icon_custom.png
.png
img/175/icon_message.png
.png
img/175/icon_nofound.png
.png
img/175/icon_norecord.png
.png
img/175/icon_popblock.png
.png
img/175/icon_stop.png
.png
img/175/icon_success.png
.png
img/175/icon_tray_menu.png
.png
img/175/logo.png
.png
img/175/max_gray.png
.png
img/175/menu_gray.png
.png
img/175/menu_tray_exit.png
.png
img/175/menu_tray_show.png
.png
img/175/menu_tray_snap.png
.png
img/175/min_gray.png
.png
img/175/msgboxtip.png
.png
img/175/programbar.png
.png
img/175/radio.png
.png
img/175/restore_gray.png
.png
img/175/search.png
.png
img/175/search_close.png
.png
img/175/syscfg_config.png
.png
img/175/syscfg_exit.png
.png
img/175/syscfg_feedback.png
.png
img/175/syscfg_shortcut.png
.png
img/175/window_flash.png
.png
img/bk_progress.png
.png
img/bk_window.png
.png
img/btn_cancel.png
.png
img/btn_orange_ok.png
.png
img/edit.png
.png
img/fg_window.png
.png
item_blocklist.xml
.xml
item_expand.xml
.xml
item_list_day.xml
.xml
item_list_msg.xml
.xml
item_list_window.xml
.xml
menu_syscfg.xml
.xml
menu_tray.xml
.xml
msg_quit.xml
.xml
res/defaults.xml
.xml
res/fonts.xml
.xml
res/images.xml
.xml
res/styles.xml
.xml
strings/en.xml
.xml
strings/zh-cn.xml
.xml
strings/zh-tw.xml
.xml
tooltips.xml
.xml
hrtclj_v5.0.11_xfdown.com/?????? 5.0.1.1/sqlite.dll
.dll windows:5 windows x86 arch:x86

91b6c44601d8ecd5f3650b1d31866961

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

02:6a:8e:89:54:e2:9b:67:72:df:79:f7:37:3c:0f:6d
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

27/04/2018, 00:00

Not After

31/12/2019, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

26/04/2018, 00:00

Not After

29/04/2021, 12:00

Subject

CN=Beijing Huorong Network Technology Co.\, Ltd.,O=Beijing Huorong Network Technology Co.\, Ltd.,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

d5:1c:77:7b:5a:fc:a8:87:82:25:da:67:2c:d8:3e:15:6d:5f:c6:b7:fb:c1:6d:35:96:89:fb:b5:e6:6f:0b:c4
Signer

Actual PE Digest

d5:1c:77:7b:5a:fc:a8:87:82:25:da:67:2c:d8:3e:15:6d:5f:c6:b7:fb:c1:6d:35:96:89:fb:b5:e6:6f:0b:c4

Digest Algorithm

sha256

PE Digest Matches

true

ca:5a:36:e7:c5:38:d1:ed:4f:d9:50:5a:2e:f6:28:8e:d6:cc:a5:c5
Signer

Actual PE Digest

ca:5a:36:e7:c5:38:d1:ed:4f:d9:50:5a:2e:f6:28:8e:d6:cc:a5:c5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\devel\works\hr_sysdiag-dist\core\bin\sqlite.pdb

Imports

kernel32

GetConsoleScreenBufferInfo
SetConsoleTextAttribute
GetCurrentProcess
GetStdHandle
LoadLibraryA
GetProcAddress
FreeLibrary
AreFileApisANSI
ReadFile
TryEnterCriticalSection
HeapCreate
HeapFree
EnterCriticalSection
GetFullPathNameW
WriteFile
InterlockedCompareExchange
GetDiskFreeSpaceW
OutputDebugStringA
LockFile
LeaveCriticalSection
InitializeCriticalSection
SetFilePointer
GetFullPathNameA
SetEndOfFile
UnlockFileEx
GetTempPathW
CreateMutexW
WaitForSingleObject
CreateFileW
GetFileAttributesW
GetCurrentThreadId
GetVersionExW
UnmapViewOfFile
HeapValidate
HeapSize
MultiByteToWideChar
Sleep
GetTempPathA
FormatMessageW
GetDiskFreeSpaceA
GetLastError
GetFileAttributesA
GetFileAttributesExW
OutputDebugStringW
FlushViewOfFile
CreateFileA
WaitForSingleObjectEx
GetVersionExA
DeleteFileA
DeleteFileW
HeapReAlloc
CloseHandle
GetSystemInfo
LoadLibraryW
HeapAlloc
HeapCompact
HeapDestroy
UnlockFile
CreateFileMappingA
LocalFree
LockFileEx
GetFileSize
DeleteCriticalSection
GetCurrentProcessId
GetProcessHeap
SystemTimeToFileTime
WideCharToMultiByte
GetSystemTimeAsFileTime
GetSystemTime
FormatMessageA
CreateFileMappingW
MapViewOfFile
QueryPerformanceCounter
GetTickCount
FlushFileBuffers
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
InterlockedPushEntrySList
InterlockedFlushSList
RtlUnwind
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
ExitProcess
GetModuleHandleExW
DuplicateHandle
CreateProcessA
CreateProcessW
CreateThread
ExitThread
ResumeThread
FreeLibraryAndExitThread
GetModuleFileNameA
GetModuleFileNameW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
SetFilePointerEx
GetConsoleMode
ReadConsoleW
GetFileType
GetCurrentThread
GetACP
GetConsoleCP
GetExitCodeProcess
CreatePipe
SetStdHandle
GetStringTypeW
GetTimeZoneInformation
FindClose
FindFirstFileExA
FindFirstFileExW
FindNextFileA
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
SetConsoleCtrlHandler
WriteConsoleW
EncodePointer
DecodePointer
RaiseException

Exports

Exports

sqlite3_aggregate_context
sqlite3_aggregate_count
sqlite3_auto_extension
sqlite3_backup_finish
sqlite3_backup_init
sqlite3_backup_pagecount
sqlite3_backup_remaining
sqlite3_backup_step
sqlite3_bind_blob
sqlite3_bind_blob64
sqlite3_bind_double
sqlite3_bind_int
sqlite3_bind_int64
sqlite3_bind_null
sqlite3_bind_parameter_count
sqlite3_bind_parameter_index
sqlite3_bind_parameter_name
sqlite3_bind_text
sqlite3_bind_text16
sqlite3_bind_text64
sqlite3_bind_value
sqlite3_bind_zeroblob
sqlite3_bind_zeroblob64
sqlite3_blob_bytes
sqlite3_blob_close
sqlite3_blob_open
sqlite3_blob_read
sqlite3_blob_reopen
sqlite3_blob_write
sqlite3_busy_handler
sqlite3_busy_timeout
sqlite3_cancel_auto_extension
sqlite3_changes
sqlite3_clear_bindings
sqlite3_close
sqlite3_close_v2
sqlite3_collation_needed
sqlite3_collation_needed16
sqlite3_column_blob
sqlite3_column_bytes
sqlite3_column_bytes16
sqlite3_column_count
sqlite3_column_database_name
sqlite3_column_database_name16
sqlite3_column_decltype
sqlite3_column_decltype16
sqlite3_column_double
sqlite3_column_int
sqlite3_column_int64
sqlite3_column_name
sqlite3_column_name16
sqlite3_column_origin_name
sqlite3_column_origin_name16
sqlite3_column_table_name
sqlite3_column_table_name16
sqlite3_column_text
sqlite3_column_text16
sqlite3_column_type
sqlite3_column_value
sqlite3_commit_hook
sqlite3_compileoption_get
sqlite3_compileoption_used
sqlite3_complete
sqlite3_complete16
sqlite3_config
sqlite3_context_db_handle
sqlite3_create_collation
sqlite3_create_collation16
sqlite3_create_collation_v2
sqlite3_create_function
sqlite3_create_function16
sqlite3_create_function_v2
sqlite3_create_module
sqlite3_create_module_v2
sqlite3_data_count
sqlite3_db_cacheflush
sqlite3_db_config
sqlite3_db_filename
sqlite3_db_handle
sqlite3_db_mutex
sqlite3_db_readonly
sqlite3_db_release_memory
sqlite3_db_status
sqlite3_declare_vtab
sqlite3_enable_load_extension
sqlite3_enable_shared_cache
sqlite3_errcode
sqlite3_errmsg
sqlite3_errmsg16
sqlite3_errstr
sqlite3_exec
sqlite3_expired
sqlite3_extended_errcode
sqlite3_extended_result_codes
sqlite3_file_control
sqlite3_finalize
sqlite3_free
sqlite3_free_table
sqlite3_get_autocommit
sqlite3_get_auxdata
sqlite3_get_table
sqlite3_global_recover
sqlite3_initialize
sqlite3_interrupt
sqlite3_last_insert_rowid
sqlite3_libversion
sqlite3_libversion_number
sqlite3_limit
sqlite3_load_extension
sqlite3_log
sqlite3_malloc
sqlite3_malloc64
sqlite3_memory_alarm
sqlite3_memory_highwater
sqlite3_memory_used
sqlite3_mprintf
sqlite3_msize
sqlite3_mutex_alloc
sqlite3_mutex_enter
sqlite3_mutex_free
sqlite3_mutex_leave
sqlite3_mutex_try
sqlite3_next_stmt
sqlite3_open
sqlite3_open16
sqlite3_open_v2
sqlite3_os_end
sqlite3_os_init
sqlite3_overload_function
sqlite3_prepare
sqlite3_prepare16
sqlite3_prepare16_v2
sqlite3_prepare_v2
sqlite3_profile
sqlite3_progress_handler
sqlite3_randomness
sqlite3_realloc
sqlite3_realloc64
sqlite3_release_memory
sqlite3_reset
sqlite3_reset_auto_extension
sqlite3_result_blob
sqlite3_result_blob64
sqlite3_result_double
sqlite3_result_error
sqlite3_result_error16
sqlite3_result_error_code
sqlite3_result_error_nomem
sqlite3_result_error_toobig
sqlite3_result_int
sqlite3_result_int64
sqlite3_result_null
sqlite3_result_subtype
sqlite3_result_text
sqlite3_result_text16
sqlite3_result_text16be
sqlite3_result_text16le
sqlite3_result_text64
sqlite3_result_value
sqlite3_result_zeroblob
sqlite3_result_zeroblob64
sqlite3_rollback_hook
sqlite3_set_authorizer
sqlite3_set_auxdata
sqlite3_shutdown
sqlite3_sleep
sqlite3_snprintf
sqlite3_soft_heap_limit
sqlite3_soft_heap_limit64
sqlite3_sourceid
sqlite3_sql
sqlite3_status
sqlite3_status64
sqlite3_step
sqlite3_stmt_busy
sqlite3_stmt_readonly
sqlite3_stmt_status
sqlite3_strglob
sqlite3_stricmp
sqlite3_strlike
sqlite3_strnicmp
sqlite3_system_errno
sqlite3_table_column_metadata
sqlite3_test_control
sqlite3_thread_cleanup
sqlite3_threadsafe
sqlite3_total_changes
sqlite3_trace
sqlite3_transfer_bindings
sqlite3_update_hook
sqlite3_uri_boolean
sqlite3_uri_int64
sqlite3_uri_parameter
sqlite3_user_data
sqlite3_value_blob
sqlite3_value_bytes
sqlite3_value_bytes16
sqlite3_value_double
sqlite3_value_dup
sqlite3_value_free
sqlite3_value_int
sqlite3_value_int64
sqlite3_value_numeric_type
sqlite3_value_subtype
sqlite3_value_text
sqlite3_value_text16
sqlite3_value_text16be
sqlite3_value_text16le
sqlite3_value_type
sqlite3_vfs_find
sqlite3_vfs_register
sqlite3_vfs_unregister
sqlite3_vmprintf
sqlite3_vsnprintf
sqlite3_vtab_config
sqlite3_vtab_on_conflict
sqlite3_wal_autocheckpoint
sqlite3_wal_checkpoint
sqlite3_wal_checkpoint_v2
sqlite3_wal_hook
sqlite3_win32_is_nt
sqlite3_win32_mbcs_to_utf8
sqlite3_win32_set_directory
sqlite3_win32_sleep
sqlite3_win32_utf8_to_mbcs
sqlite3_win32_write_debug

Sections

.text
Size: 787KB - Virtual size: 787KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 368B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hrtclj_v5.0.11_xfdown.com/???????.txt

Sharing

General

Malware Config

Signatures

Files

70a9f0be78976675495c0131f8cf3013

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8Certificate

Extended Key Usages

Key Usages

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bdCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4Certificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

80:ad:2f:f5:96:4a:46:f6:04:6e:34:f7:3c:d2:6e:b9:98:e0:5b:c1:97:75:2a:d5:85:6b:ea:2c:18:b4:ee:1bSigner

a0:58:84:1b:39:8f:2e:87:88:df:26:c7:64:4a:5c:13:67:21:2f:51Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

libxsse

shlwapi

comctl32

gdiplus

duilib

jansson

sqlite

popblkeng

Sections

.text Size: 268KB - Virtual size: 268KB

.rdata Size: 91KB - Virtual size: 90KB

.data Size: 10KB - Virtual size: 32KB

.tls Size: 512B - Virtual size: 9B

.gfids Size: 512B - Virtual size: 400B

.rsrc Size: 238KB - Virtual size: 237KB

.reloc Size: 21KB - Virtual size: 24KB

07d59c5eb2ad9a9bc5361d1f443a3420

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8Certificate

Extended Key Usages

Key Usages

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bdCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4Certificate

Extended Key Usages

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

80:ad:2f:f5:96:4a:46:f6:04:6e:34:f7:3c:d2:6e:b9:98:e0:5b:c1:97:75:2a:d5:85:6b:ea:2c:18:b4:ee:1b
Signer

a0:58:84:1b:39:8f:2e:87:88:df:26:c7:64:4a:5c:13:67:21:2f:51
Signer

.text
Size: 268KB - Virtual size: 268KB

.rdata
Size: 91KB - Virtual size: 90KB

.data
Size: 10KB - Virtual size: 32KB

.tls
Size: 512B - Virtual size: 9B

.gfids
Size: 512B - Virtual size: 400B

.rsrc
Size: 238KB - Virtual size: 237KB

.reloc
Size: 21KB - Virtual size: 24KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

39:cf:a3:71:fe:f1:d0:66:2e:8d:07:9d:c6:8e:0c:db:7a:21:1e:1d:44:55:47:30:78:fa:3e:b0:5f:15:ef:07
Signer

09:fe:5a:f7:65:4f:61:4e:24:6c:f2:ce:00:f6:f5:8a:a7:8e:5a:b3
Signer

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 25KB - Virtual size: 25KB

.data
Size: 2KB - Virtual size: 5KB

.gfids
Size: 512B - Virtual size: 160B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 7KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

06:3d:7b:5b:a8:67:96:9c:c6:44:8d:fd:6a:f5:f6:f8
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

0e:d7:8b:d5:05:31:a4:a2:99:21:f8:f7:04:e2:86:c4
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

0e:02:b5:be:ad:73:e2:f6:7a:b8:41:db:a3:84:9e:3c:fb:ea:04:e6:26:51:c1:61:14:6c:a1:aa:56:ec:85:3e
Signer

e0:4e:77:23:b6:93:41:a0:49:06:fb:5c:c1:32:bc:07:f7:c5:d4:fa
Signer