Behavioral task
behavioral1
Sample
0a5066cb7b0b911494549f45c88d4d81_JaffaCakes118.exe
Resource
win7-20240611-en
windows7-x64
Behavioral task
behavioral2
Sample
0a5066cb7b0b911494549f45c88d4d81_JaffaCakes118.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
General
-
Target
0a5066cb7b0b911494549f45c88d4d81_JaffaCakes118
-
Size
924KB
-
MD5
0a5066cb7b0b911494549f45c88d4d81
-
SHA1
58e8b319d536c2f3dc776efe3740c5e69b20b8e0
-
SHA256
5ebe1e056cf6ac109e87ea8fef488be1958d21681da14e0e816245ba79799ffe
-
SHA512
ca62b33691aac1e3cb07aa8bd8069d4c0647f1a45633d2ca55b99d961284a1d1f704944a9d5759ad3774de8830c09f80ecca4a528847e739f19e7345b5cc4429
-
SSDEEP
24576:IL4TB6i+sL8AMtPxWwX/+FDQX4J1V/k7R3HLG1:9cmV/+X
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0a5066cb7b0b911494549f45c88d4d81_JaffaCakes118
Files
-
0a5066cb7b0b911494549f45c88d4d81_JaffaCakes118.exe windows:4 windows x86 arch:x86
421ff46eab3d8c34a1190ac6ac2f3efc
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
xpfc
??0XPST_String@@QAE@ABVXPST_Char@@@Z
?BuildName@XPSM_Sql@@SAAAVXPST_String@@AAV2@ABV2@1JJ@Z
?FindChar@XPST_String@@ABEPADH@Z
?InitString@XPST_Char@@AAEXXZ
??0XPVA_Int@@QAE@J@Z
??1XPVA_Int@@UAE@XZ
?Right@XPST_String@@QBE?AV1@H@Z
??1XP_JavaVirtualMachine@@QAE@XZ
?DeleteGlobalRef@XP_JavaVirtualMachine@@QAEXPAV_jobject@@@Z
?Clone@XPMM_Message@@UBEPAVXPEL_Element@@XZ
?Message@XPMM_Message@@QAEAAVXPST_String@@XZ
?AddArg@XPMM_Message@@QAEJABVXPST_String@@@Z
?ErrorText@XP_JavaVirtualMachine@@QAE?AVXPST_String@@XZ
?CallVoidMethod@XP_JavaVirtualMachine@@QAEXAAPAV_jobject@@PAU_jmethodID@@VXPST_String@@@Z
?GetMethodID@XP_JavaVirtualMachine@@QAEPAU_jmethodID@@PAV_jclass@@VXPST_String@@1@Z
?FindJavaClass@XP_JavaVirtualMachine@@QAEPAV_jclass@@VXPST_String@@@Z
?CallVoidMethod@XP_JavaVirtualMachine@@QAEXAAPAV_jobject@@PAU_jmethodID@@VXPST_String@@MMMMMM@Z
??1XPMM_Message@@UAE@XZ
?Compare@XPST_String@@UBEJABVXPVA_BaseType@@@Z
??_7XPVA_Int@@6B@
??0XPVA_BaseType@@IAE@W4xpva_type_t@@@Z
??0XPLI_List@@QAE@W4XPLI_CopyAction@@@Z
?Purge@XPMM_Message@@SAXH@Z
?AllocAppend@XPLI_List@@AAEPAVXPLI_ListEntry@@PAVXPEL_Element@@W4XPLI_CopyAction@@@Z
?RemoveWhite@XPST_String@@QAEXXZ
??1XPSM_Sql@@UAE@XZ
?Format@XPSM_Sql@@QAEXJJ@Z
?ParseSql@XPSM_Sql@@QAEJABVXPST_String@@@Z
?AddForcedIndexItem@XPSM_Sql@@QAEXABVXPST_String@@00@Z
??0XPSM_Sql@@QAE@PAUxppr_tree@@@Z
??1XPSM_TableRef@@UAE@XZ
??1XPSM_Entity@@UAE@XZ
??_7XPSM_TableRef@@6B@
??0XPAR_Array@@QAE@J@Z
??0XPSM_Entity@@QAE@ABV0@J@Z
?AddChild@XPSM_Entity@@QAEPAV1@PAV1@@Z
?NewEntity@XPSM_Sql@@QAEPAVXPSM_Entity@@W4EntityType@2@@Z
??AXPAR_Array@@QBEAAVXPEL_Element@@J@Z
?Delete@XPAR_Array@@QAEXAAVXPEL_Element@@P6AXPAV2@@Z@Z
?DumpMessages@XPMM_Message@@SAXAAVXPST_String@@JJHH@Z
?SplitConnectStr@XPUT_Workbench@@SAXABVXPST_String@@AAV2@11@Z
?BuildConnectStr@XPUT_Workbench@@SAXABVXPST_String@@00AAV2@@Z
?Validate@XPSM_Sql@@QAEXXZ
?Replace@XPST_String@@QAEXDD@Z
?Mid@XPST_String@@QBE?AV1@H@Z
??1XPDT_Date@@UAE@XZ
??_7XPDT_Date@@6B@
?CurrentTime@XPDT_Date@@SA?AVXPST_String@@XZ
??0XPDT_Date@@QAE@VCOleDateTime@@@Z
?Set@XPST_String@@UAEXKPBD@Z
??BXPVA_Number@@QBEJXZ
?EnableFormatting@XPST_String@@QAEXJ@Z
?RightMargin@XPST_String@@QAEKJ@Z
?LeftMargin@XPST_String@@QAEKJ@Z
?Format@XPST_String@@QAEAAV1@ABV1@ABVXPST_Arg@@11@Z
?Copy@XPST_String@@QAEXABVCString@@@Z
?Mid@XPST_String@@QBE?AV1@HH@Z
?Lookup@XPLI_List@@ABEPAVXPLI_ListEntry@@J@Z
??YXPLI_List@@QAEAAV0@ABV0@@Z
?Concatenate@XPST_String@@QAEXPBDI@Z
?GetChar@XPST_String@@ABE?AVXPST_Char@@H@Z
??_7XPPR_AstCallback@@6B@
??AXPST_String@@QBE?AVXPST_Char@@H@Z
?AtoF@XPUT_Workbench@@SAXABVXPST_String@@PAN@Z
??0XPST_String@@QAE@PBG@Z
?Insert@XPAR_Array@@QAEPAVXPEL_Element@@AAV2@JJ@Z
?Purge@XPAR_Array@@QAEXP6AXPAVXPEL_Element@@@Z@Z
??1XPAR_Array@@QAE@XZ
??_7XPLI_List@@6B@
?Purge@XPLI_List@@QAEXP6AXPAVXPEL_Element@@@Z@Z
??_7XPEL_Element@@6B@
??1XPLI_List@@UAE@XZ
??1XPEL_Element@@UAE@XZ
?Left@XPST_String@@QBE?AV1@H@Z
?Getenv@XPUT_Workbench@@SAXABVXPST_String@@AAV2@0J@Z
??0XPST_Arg@@QAE@ABVXPST_String@@PBD@Z
??0XPST_String@@QAE@DH@Z
?Statement@XPSM_Sql@@QAEXABVXPST_String@@@Z
?Parse@XPSM_Sql@@QAEXQBDJ@Z
?Format@XPSM_Entity@@QAEXAAVXPST_String@@JJ@Z
?InsertCR@XPST_String@@QAEXXZ
??_7XPVA_Float@@6B@
?Set@XPST_String@@UAEXNPBD@Z
??1XPVA_Float@@UAE@XZ
?First@XPLI_List@@QAEPAVXPEL_Element@@XZ
?Set@XPST_String@@UAEXJPBD@Z
?Format@XPST_String@@QAEAAV1@ABV1@ABVXPST_Arg@@1@Z
??0XPST_String@@QAE@ABVCString@@@Z
??0XPST_String@@QAE@ABV0@@Z
?AtoL@XPUT_Workbench@@SAXABVXPST_String@@PAJ@Z
?LanguageSymbol@XPNLSContext@@SAPBDXZ
?GetOracleHome@XPUT_Workbench@@SAXAAVXPST_String@@H@Z
?Concatenate@XPST_String@@QAEXABV1@@Z
?Replace@XPAR_Array@@QAEPAVXPEL_Element@@AAV2@JJ@Z
?InitializeJNI@XPUT_Workbench@@SAPAVXP_JavaVirtualMachine@@XZ
?Concatenate@XPST_String@@QAEXPBD@Z
?Copy@XPST_String@@QAEXPBD@Z
?LoadMessage@XPST_String@@QAEHJ@Z
??_7XPST_Arg@@6B@
??0XPST_String@@QAE@PBD@Z
?Set@XPST_String@@UAEXABV1@PBD@Z
?Format@XPST_String@@QAEAAV1@ABV1@ABVXPST_Arg@@@Z
?Copy@XPST_String@@QAEXABV1@@Z
??1XPST_Arg@@UAE@XZ
??_7XPST_String@@6B@
??1XPVA_BaseType@@UAE@XZ
??0XPST_String@@QAE@XZ
??1XPST_String@@UAE@XZ
?GetGlobalRef@XP_JavaVirtualMachine@@QAEPAV_jobject@@PAV_jclass@@PAU_jmethodID@@@Z
?CallVoidMethod@XP_JavaVirtualMachine@@QAEXAAPAV_jobject@@PAU_jmethodID@@@Z
xplb
?Rationale@XPVD_Recommendation@@QAEAAVXPST_String@@XZ
javai
JNI_CreateJavaVM
JNI_GetCreatedJavaVMs
JNI_GetDefaultJavaVMInitArgs
vmqdll
??1VMQNavigateTreeCtrl@@UAE@XZ
?GetRecomDetails@VMQIdxRecomObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?s_IdleStatus@VMQIdxRecomObject@@0VIdleStatus@1@A
??0VMQNavigateTreeCtrl@@QAE@XZ
?GetPMStatistics@VMQSQLObject@@QAEXAAVXPAR_Array@@0@Z
?s_pObject@VMQMultiColumnCtrl@@2PAXA
?s_iInt@VMQMultiColumnCtrl@@2HA
?SortItemsByColumn@VMQMultiColumnCtrl@@QAEXHPAUsparam@@@Z
?GetSortStr@VMQSQLSource@@QAEXAAVXPST_String@@@Z
?GetNumShowData@VMQSQLSource@@QBEHXZ
?PreviouslyAlignedSQLEquals@VMQSQLObject@@QAEHABVXPST_String@@@Z
?SetTooltipText@VMQMultiColumnCtrl@@QAEXABVXPST_String@@@Z
?IsValidSyntax@VMQSQLValidate@@QBEHXZ
?SetSQLStatistics@VMQSQLObject@@QAEXABVXPAR_Array@@0@Z
?GetSQLPrefix@VMQTopSQL@@QAEXHAAVXPST_String@@@Z
?GetFullSQLText@VMQTopSQL@@QAEPAVVMQOpaqueOperation@@HPAVVMQFrameworkClient@@K@Z
?GetFullSQLText@VMQTopSQL@@QAEPAVVMQOpaqueOperation@@ABVXPST_String@@0PAVVMQFrameworkClient@@K@Z
?s_statusConstructingSQLBusy@VMQSQLObject@@0VBusyConstructingSQLStatus@1@A
?SetMD5Signature@VMQSQLObject@@QAEXABVXPST_String@@@Z
??_7VMQAstCallback@@6B@
?ParseSql@VMQSQLValidate@@QAEXABVXPST_String@@J@Z
??1VMQAstCallback@@QAE@XZ
?ValidateSyntax@VMQSQLTextState@@QAEHH@Z
?GetDerivedSQLObject@VMQSQLObject@@QAEPAV1@XZ
?s_statusBusyExplainChoose@VMQPlanObject@@0VBusyExplainChooseStatus@1@A
?s_statusBusyExplainCostFirst@VMQPlanObject@@0VBusyExplainCostFirstStatus@1@A
?s_statusBusyExplainCostAll@VMQPlanObject@@0VBusyExplainCostAllStatus@1@A
?s_statusBusyExplainRule@VMQPlanObject@@0VBusyExplainRuleStatus@1@A
?QualifyAs@VMQSQLValidate@@QAEXABVXPST_String@@PBVCMapStringToPtr@@PBVXPLI_List@@@Z
?RebuildTableList@VMQSQLValidate@@QAEXXZ
?SetIdleStatus@VMQSQLObject@@QAEXXZ
?s_statusApplyingRulesBusy@VMQSQLObject@@0VBusyApplyingRulesStatus@1@A
?GetApplicableRuleCount@VMQSQLObject@@QAEHXZ
?GetDefaultExplainPlan@VMQSQLObject@@QAEPAVVMQPlanObject@@XZ
?VerifyOutlinelessSQLByMD5Signature@VMQDbDetails@@QAEPAVVMQOpaqueOperation@@ABVXPST_String@@PAVVMQFrameworkClient@@K@Z
?VerifyOutlinelessSQLByHashValue@VMQDbDetails@@QAEPAVVMQOpaqueOperation@@ABVXPST_String@@PAVVMQFrameworkClient@@K@Z
?s_statusValidatingBusy@VMQSQLObject@@0VBusyValidatingStatus@1@A
?s_bAutoExplainDisabled@VMQObjectContainer@@2HA
?InvalidateSQL@VMQSQLObject@@QAEXXZ
?GetDocument@VMQSQLObject@@QAEPAVVMQDoc@@XZ
?classVMQMultiColumnCtrl@VMQMultiColumnCtrl@@2UCRuntimeClass@@B
?SetSessionParameterValues@VMQSessionDetails@@QAEXABVXPLI_List@@@Z
?ApplySettingChanges@VMQSessionDetails@@QAEXXZ
?GetParamValue@VMQSessionDetails@@QAEHHAAVXPST_String@@@Z
?ValidateSessionParameters@VMQSessionDetails@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KAAVXPLI_List@@@Z
?IsAnyParamChanged@VMQSessionDetails@@QAEHXZ
?GetSessionParameters@VMQSessionDetails@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?GetNLSCalendar@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSLanguage@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSTerritory@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSSort@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSDateLanguage@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSDateFormat@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSCurrency@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSISOCurrency@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSNumericChars@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetIndexCostAdj@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetOptPermutations@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSComp@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSTSFormat@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSTSTZFormat@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSTZFormat@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?GetNLSUnion@VMQSessionDetails@@QAE?AVXPST_String@@XZ
?DisableRule@VMQSQLRuleSet@@QAEXHH@Z
?AddDbDetails@VMQQueryProgressMonitor@@QAEXPBVVMQDbDetails@@@Z
?RemoveDbDetails@VMQQueryProgressMonitor@@QAEXPBVVMQDbDetails@@@Z
?s_bShowSQLTuningWizardIntroPage@VMQObjectContainer@@2HA
?s_bAutoDetectSQLInefficiency@VMQObjectContainer@@2HA
?s_bPromptToLaunchSQLTuningWizard@VMQObjectContainer@@2HA
?s_bBufferAllRows@VMQObjectContainer@@2HA
?s_nExecutionCount@VMQObjectContainer@@2HA
?s_nMaxCxnCount@VMQObjectContainer@@2JA
?AreAllPlansLoaded@VMQSQLObject@@QAEHXZ
?CreateSql@VMQFakeIndexObject@@QAEXAAVXPST_String@@H@Z
?CleanRepository@VMQRepositoryObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?AcquireRepositoryConnection@VMQRepositoryObject@@QAEPAVVMQDatabaseConnection@@XZ
?MakeRevertible@VMQSQLObject@@QAEXXZ
?VerifyIndexRecom@VMQSQLObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?GetScriptFileHeader@VMQSQLObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?IsValidSemantics@VMQSQLValidate@@QBEHXZ
?CollectSQLData@VMQHistoricalSQL@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?HasBusyPlan@VMQQueryProgressMonitor@@QAEHXZ
?GetQueryProgress@VMQQueryProgressMonitor@@QAEXXZ
?GetPreference@VMQSQLSource@@QAEXAAVVMQTopSQLOptionDlg@@@Z
?SetPreference@VMQSQLSource@@QAEXAAVVMQTopSQLOptionDlg@@@Z
??0VMQSQLHistoryOptionDlg@@QAE@PAVCWnd@@@Z
?GetPreference@VMQSQLSource@@QAEXAAVVMQSQLHistoryOptionDlg@@@Z
?SetPreference@VMQSQLSource@@QAEXAAVVMQSQLHistoryOptionDlg@@@Z
??1VMQSQLHistoryOptionDlg@@UAE@XZ
?RefreshSQL@VMQSQLObject@@QAEXPAVVMQFrameworkClient@@K@Z
?SaveRepository@VMQRepositoryObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?CancelAllOperations@VMQOperationFramework@@QAEXXZ
?OnFrameworkStatusMsgReply@VMQOperationFramework@@QAEXIJ@Z
?OnLocalReply@VMQOperationFramework@@QAEXIJ@Z
?DumpState@VMQOperationFramework@@QAEXABVXPST_String@@@Z
?OnFrameworkReply@VMQOperationFramework@@QAEXIJ@Z
?IsRevertible@VMQSQLObject@@QAEHXZ
?Revert@VMQSQLObject@@QAEXXZ
?AllPlansRepresentSQL@VMQSQLObject@@QAEHXZ
?PreSQLApplyChanges@VMQSQLObject@@QAEXXZ
?s_nUnconnectedDirtySQLCount@VMQObjectContainer@@2HA
?s_statusBusyInserting@VMQDbDetails@@0VBusyInsertingStatus@1@A
?s_statusBusyRemoving@VMQDbDetails@@0VBusyRemovingStatus@1@A
?NewSQL@VMQDbDetails@@QAEPAVVMQSQLObject@@ABVXPST_String@@H@Z
?SaveHtmlRep@VMQSQLSource@@QAEXPAU_iobuf@@@Z
?SaveHtmlRep@VMQSQLObject@@QAEXPAU_iobuf@@H@Z
?SaveHtmlRep@VMQPlanObject@@QAEXPAU_iobuf@@@Z
??1VMQSQLObject@@UAE@XZ
?OperationDone@VMQSQLObject@@QAEXPAVVMQOpaqueOperation@@@Z
?GenerateScriptFile@VMQSQLObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?SetIdxRecommendation@VMQSQLObject@@QAEXHH@Z
?ReleaseRepositoryConnection@VMQRepositoryObject@@QAEXPAVVMQDatabaseConnection@@@Z
??0VMQSQLObject@@QAE@ABV0@@Z
?SetPlanStatus@VMQSQLObject@@QAEXPAVVMQPlanObject@@@Z
?PostSQLApplyChanges@VMQSQLObject@@QAEXXZ
?AddExplainPlan@VMQSQLObject@@QAEPAVVMQPlanObject@@PAV2@@Z
?s_listDirtySQL@VMQObjectContainer@@2VCPtrList@@A
?LoadRepository@VMQRepositoryObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?AddDbDetails@VMQRepositoryObject@@QAEXPAVVMQDbDetails@@@Z
?s_mgrStatus@VMQNavigateTreeCtrl@@1VVMQNavigatorStatusManager@@A
?UpdateNode@VMQNavigatorStatusManager@@QAEXPAVVMQNavigatorObject@@@Z
?GenerateIndexRecommendation@VMQSQLObject@@QAEXPAVVMQFrameworkClient@@K@Z
?GetRuntimeClass@VMQSQLObject@@UBEPAUCRuntimeClass@@XZ
?OnFinalRelease@VMQSQLObject@@UAEXXZ
?GetMessageMap@VMQSQLObject@@MBEPBUAFX_MSGMAP@@XZ
?GetDispatchMap@VMQSQLObject@@MBEPBUAFX_DISPMAP@@XZ
?GetInterfaceMap@VMQSQLObject@@MBEPBUAFX_INTERFACEMAP@@XZ
?IsBusy@VMQSQLObject@@UAEHXZ
?IsConnected@VMQNavigatorObject@@UAEHXZ
?IsExpanded@VMQNavigatorObject@@UAEHXZ
?Cancel@VMQSQLObject@@UAEXXZ
?GetRepositoryObject@VMQNavigatorObject@@UAEPAVVMQRepositoryObject@@XZ
?GetDBDetails@VMQNavigatorObject@@UAEPAVVMQDbDetails@@XZ
?GetTopSQL@VMQNavigatorObject@@UAEPAVVMQTopSQL@@XZ
?GetHistoricalSQL@VMQNavigatorObject@@UAEPAVVMQHistoricalSQL@@XZ
?GetSessionDetails@VMQNavigatorObject@@UAEPAVVMQSessionDetails@@XZ
?GetSQLObject@VMQSQLObject@@UAEPAV1@XZ
?GetPlanObject@VMQNavigatorObject@@UAEPAVVMQPlanObject@@XZ
?GetIdxRecomObject@VMQSQLObject@@UAEPAVVMQIdxRecomObject@@XZ
?GetParent@VMQSQLObject@@UBEPAVVMQNavigatorObject@@XZ
?LoadObject@VMQSQLObject@@UAEPAVVMQNavigatorObject@@H@Z
?SaveObject@VMQSQLObject@@UAEXXZ
?RemoveObject@VMQSQLObject@@UAEXXZ
?FirstChild@VMQSQLObject@@UAEPAVVMQNavigatorObject@@XZ
?NextChild@VMQSQLObject@@UAEPAVVMQNavigatorObject@@XZ
?GetObjectStatus@VMQSQLObject@@UAEHXZ
?ProceedToNextRequest@VMQSQLObject@@UAEHPAVVMQOperation@@AAI1AAJAAPAVVMQRequester@@@Z
?CompareOperations@VMQSQLObject@@EAEHIIJPAVVMQOperation@@@Z
?OnOperationComplete@VMQSQLObject@@EAEXPAVVMQOperation@@AAVCPtrList@@@Z
?OnOperationException@VMQSQLObject@@EAEXPAVVMQOperation@@AAVVMQException@@@Z
?OnOperationCanceled@VMQSQLObject@@EAEXPAVVMQOperation@@@Z
?OnGetStatusMsgOperationComplete@VMQSQLObject@@EAEXPAVVMQOperation@@PAVVMQWinMsgOutputData@@@Z
?GetDatabaseConnectionContainer@VMQSQLObject@@UAEPAVVMQDatabaseConnectionContainer@@XZ
?CanSatisfyRequest@VMQSQLObject@@EAEHPAVVMQRequest@@AAVCPtrList@@@Z
?CompareRequests@VMQSQLObject@@EAEHIIJPAVVMQRequest@@@Z
?OnRequestComplete@VMQSQLObject@@EAEXPAVVMQRequest@@IJPAVVMQWinMsgOutputData@@AAVCPtrList@@@Z
?GetStatusMessage@VMQHistoricalSQL@@QAEAAVXPST_String@@XZ
?GetStatusMessage@VMQSQLObject@@QAEAAVXPST_String@@XZ
??_7VMQQueryProgressMonitor@@6B@
??_7VMQFetchDlg@@6B@
??1VMQQueryProgressMonitor@@UAE@XZ
??1VMQFetchDlg@@UAE@XZ
?LoadSQLObjectsData@VMQRepositoryObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?SetSQLLabel@VMQNavigateTreeCtrl@@QAEXQAVVMQSQLObject@@@Z
?s_statusNotConnected@VMQDbDetails@@0VNotConnectedStatus@1@A
?s_statusUnavailable@VMQDbDetails@@0VUnavailableStatus@1@A
??1VMQPrepareInput@@UAE@XZ
?AddPrepareCmd@VMQSessionDetails@@QAEXVXPST_String@@@Z
?StartOperation@VMQOperationCoordinator@@QAEPAVVMQOpaqueOperation@@IIJPAVVMQFrameworkClient@@K@Z
?GetRuntimeClass@VMQPrepareInput@@UBEPAUCRuntimeClass@@XZ
?Cancel@VMQOperation@@QAEXPAVVMQFrameworkClient@@K@Z
?GetOemSdk@VMQRepositoryObject@@QAEPAVVMQOemSdk@@XZ
?DoOMSConnect@VMQOemSdk@@QAEHABVXPST_String@@00@Z
?DoValidateRepository@VMQOemSdk@@QAEHXZ
?DoGetRepLogonInfo@VMQOemSdk@@QAEPAVVMQRepositoryCredentials@@XZ
?SetOemSdk@VMQRepositoryObject@@QAEXPAVVMQOemSdk@@@Z
?s_statusConnected@VMQDbDetails@@0VConnectedStatus@1@A
?s_statusIdle@VMQRepositoryObject@@0VIdleStatus@1@A
?SetProperty@VMQObjectContainer@@SAXHH@Z
?Succeed@VMQOperation@@QAEXXZ
??1VMQOperation@@UAE@XZ
?s_statusBusyConnecting@VMQDbDetails@@0VBusyConnectingStatus@1@A
?s_statusBusyConnecting@VMQRepositoryObject@@0VBusyConnectingStatus@1@A
?SetStatus@VMQNavigatorObject@@QAEXPAVVMQNavigatorStatus@@@Z
??0VMQCredentials@@QAE@ABVXPST_String@@000@Z
??_7VMQSharedObject@@6B@
?RegisterClient@VMQOperation@@QAEXPAVVMQFrameworkClient@@K@Z
?Bootstrap@VMQDatabaseConnectionContainer@@IAEPAVVMQOpaqueOperation@@PAVVMQCredentials@@PAVVMQFrameworkClient@@K@Z
?GetHOperation@VMQOperation@@QAEPAVVMQOpaqueOperation@@XZ
??_7VMQCredentials@@6B@
??1VMQCredentials@@UAE@XZ
??1VMQSharedObject@@UAE@XZ
?GetRuntimeClass@VMQOperation@@UBEPAUCRuntimeClass@@XZ
?GetProperty@VMQObjectContainer@@SAHHH@Z
??_7VMQOperationCoordinator@@6B@
??1VMQOperationCoordinator@@MAE@XZ
?CanSatisfyOperation@VMQOperationCoordinator@@MAEHPAVVMQOperation@@AAVCPtrList@@@Z
?CompareOperations@VMQOperationCoordinator@@MAEHIIJPAVVMQOperation@@@Z
?OnOperationComplete@VMQOperationCoordinator@@MAEXPAVVMQOperation@@AAVCPtrList@@@Z
?GetProperty@VMQObjectContainer@@SA?AVXPST_String@@HPBD@Z
??0VMQException@@QAE@IABVXPST_String@@@Z
??0VMQException@@QAE@ABV0@@Z
?ValidateSemantics@VMQSQLTextState@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KH@Z
??0VMQException@@QAE@I@Z
?OnCaught@VMQException@@UBEXPAVCWnd@@@Z
??_7VMQException@@6B@
??1VMQException@@UAE@XZ
?GetTableOrView@VMQSQLValidate@@QAEPAVVMQAnyObject@@ABVXPST_String@@00@Z
??_7VMQPlanComparator@@6B@
?GetComparableMetrics@VMQPlanComparator@@QAEHAAJ0@Z
??1VMQPlanComparator@@UAE@XZ
?GetSessionOwner@VMQSQLObject@@QBE?AVXPST_String@@XZ
??1VMQFakeIndexObject@@UAE@XZ
?Cancel@VMQOperation@@QAEXXZ
?GetSchemaList@VMQDbDetails@@QBE?AVXPLI_List@@XZ
?InformCache@VMQDbDetails@@QAEPAVVMQAnyObject@@ABVXPST_String@@00I@Z
?GetSchema@VMQDbDetails@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?OnSynchronize@VMQNavigatorStatusManager@@QAEXXZ
??_7VMQFakeIndexObject@@6B@
?Clone@VMQFakeIndexObject@@MBEPAVXPEL_Element@@XZ
?s_bDirty@VMQObjectContainer@@2HA
?s_bShowFakeIndexWizardIntroPage@VMQObjectContainer@@2HA
??_7VMQBusyAnimationLayout@@6B@
??_7VMQFrameworkClient@@6B@
??0VMQBusyAnimationLayout@@QAE@XZ
??1VMQBusyAnimationLayout@@UAE@XZ
??1VMQFrameworkClient@@MAE@XZ
?OnGetStatusMsgOperationComplete@VMQFrameworkClient@@UAEXPAVVMQOpaqueOperation@@KPAVVMQWinMsgOutputData@@@Z
?GetStepDesc@VMQPlanTreeItem@@QAE?AVXPST_String@@PAVVMQQueryResults@@@Z
??1VMQBitmapTooltipButton@@UAE@XZ
??0VMQBitmapTooltipButton@@QAE@XZ
?GenerateExeId@VMQPlanTreeItem@@QAEHH@Z
?DeleteOneRow@VMQMultiColumnCtrl@@QAEXXZ
??1VMQMultiColumnCtrl@@UAE@XZ
??0VMQMultiColumnCtrl@@QAE@HH@Z
?DeleteSQL@VMQDbDetails@@QAEXPAVVMQSQLObject@@@Z
?IsStale@VMQPlanObject@@QAEHXZ
?GetExplainPlan@VMQSQLObject@@QAEPAVVMQPlanObject@@H@Z
?IsImporting@VMQSQLObject@@QAEHXZ
?Align@VMQSQLTextState@@QAEXXZ
?SetObjectStatus@VMQSQLObject@@QAEXHH@Z
?GetSQLLabel@VMQSQLObject@@QAE?AVXPST_String@@H@Z
?ResetQualify@VMQSQLValidate@@QAEXXZ
??1VMQTargetCredentialsExt@@UAE@XZ
?s_sModeNormal@VMQCredentials@@0VXPST_String@@A
??0VMQTargetCredentials@@QAE@ABVXPST_String@@000@Z
??_7VMQTargetCredentialsExt@@6B@
?GetDefaultSession@VMQDbDetails@@QAEPAVVMQSessionDetails@@XZ
??1VMQTargetCredentials@@UAE@XZ
?GetLoginString@VMQTargetCredentials@@UAE?AVXPST_String@@XZ
??1VMQRepositoryCredentials@@UAE@XZ
?s_bOMSMode@VMQObjectContainer@@2HA
??0VMQRepositoryCredentials@@QAE@ABVXPST_String@@000@Z
?s_sAdministratorName@VMQObjectContainer@@2VXPST_String@@A
?s_sOMSDomain@VMQObjectContainer@@2VXPST_String@@A
?GetLoginString@VMQCredentials@@UAE?AVXPST_String@@XZ
?ShowFetchResults@VMQSQLObject@@QAEXXZ
?classVMQSQLSource@VMQSQLSource@@2UCRuntimeClass@@B
?UsesFakeIndex@VMQPlanObject@@QAEHXZ
?ExecuteSQL@VMQPlanObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?ExplainSQL@VMQSQLObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KH@Z
?CloneSQL@VMQDbDetails@@QAEPAVVMQSQLObject@@PAV2@ABVXPST_String@@@Z
?SetSQL@VMQSQLObject@@QAEXABVXPST_String@@@Z
?GetCurrentDisplay@VMQSQLSource@@QAEHXZ
?GetItem@VMQQueryResults@@QAEPBVXPVA_BaseType@@JJ@Z
?s_bDisplayWelcome@VMQObjectContainer@@2HA
?ReleaseSingleton@VMQObjectContainer@@SAXXZ
?ReleaseDbIdToDbDet@VMQDbDetails@@SAXXZ
?InitRepository@VMQObjectContainer@@QAEPAVVMQRepositoryObject@@XZ
?classVMQRepositoryObject@VMQRepositoryObject@@2UCRuntimeClass@@B
?classVMQDbDetails@VMQDbDetails@@2UCRuntimeClass@@B
?classVMQSessionDetails@VMQSessionDetails@@2UCRuntimeClass@@B
?classVMQSQLObject@VMQSQLObject@@2UCRuntimeClass@@B
?classVMQIdxRecomObject@VMQIdxRecomObject@@2UCRuntimeClass@@B
?classVMQPlanObject@VMQPlanObject@@2UCRuntimeClass@@B
?classVMQTopSQL@VMQTopSQL@@2UCRuntimeClass@@B
?classVMQHistoricalSQL@VMQHistoricalSQL@@2UCRuntimeClass@@B
?classVMQClassifiedSQL@VMQClassifiedSQL@@2UCRuntimeClass@@B
?MoveTo@VMQBusyAnimationLayout@@QAEXABVCRect@@@Z
?RemoveObjectFromCache@VMQSessionDetails@@QAEXPAVVMQAnyObject@@@Z
?Cancel@VMQOperation@@QAEXPAVVMQFrameworkClient@@@Z
??0VMQSQLValidate@@QAE@PAVVMQSessionDetails@@PAUxppr_tree@@@Z
?ValidateSyntax@VMQSQLValidate@@QAEHH@Z
??1VMQSQLValidate@@UAE@XZ
?DeleteColumn@VMQMultiColumnCtrl@@QAEHH@Z
?InsertColumn@VMQMultiColumnCtrl@@QAEHHPBUtagLVCOLUMNA@@@Z
?GetIndex@VMQClusterObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
??1VMQIndexObject@@EAE@XZ
?GetIndexedObject@VMQIndexObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?GetCluster@VMQTableObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?GetIndexes@VMQTableObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?GetTables@VMQClusterObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?GetGeneralInfo@VMQColumnObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?GetDDStatistics@VMQColumnObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?GetDocument@VMQSessionDetails@@QAEPAVVMQDoc@@XZ
??0VMQIndexObject@@AAE@PAVVMQDbDetails@@ABVXPST_String@@111_N@Z
?InitFakeIndex@VMQIndexObject@@QAEXPAVVMQFakeIndexObject@@@Z
?classVMQClusterObject@VMQClusterObject@@2UCRuntimeClass@@B
?classVMQTableObject@VMQTableObject@@2UCRuntimeClass@@B
?classVMQColumnObject@VMQColumnObject@@2UCRuntimeClass@@B
?classVMQIndexObject@VMQIndexObject@@2UCRuntimeClass@@B
?GetRuntimeClass@VMQIndexObject@@UBEPAUCRuntimeClass@@XZ
?GetColumns@VMQIndexObject@@UAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?GetGeneralInfo@VMQIndexObject@@UAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?GetDDStatistics@VMQIndexObject@@UAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?GetSource@VMQIndexObject@@UAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@@Z
?Analyze@VMQIndexObject@@UAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KPAVVMQSessionDetails@@HH@Z
?GetDatabaseConnectionContainer@VMQAnyObject@@UAEPAVVMQDatabaseConnectionContainer@@XZ
?StartRequest@VMQRequester@@UAEPAVVMQRequest@@IIJ@Z
?CanSatisfyRequest@VMQIndexObject@@EAEHPAVVMQRequest@@AAVCPtrList@@@Z
?CompareRequests@VMQIndexObject@@EAEHIIJPAVVMQRequest@@@Z
?OnRequestComplete@VMQIndexObject@@EAEXPAVVMQRequest@@IJPAVVMQWinMsgOutputData@@AAVCPtrList@@@Z
?OnRequestException@VMQRequester@@EAEXPAVVMQRequest@@@Z
?OnRequestCanceled@VMQRequester@@EAEXPAVVMQRequest@@@Z
?LogRequest@VMQRequester@@UAEXPAVVMQRequest@@@Z
?ProceedToNextRequest@VMQIndexObject@@UAEHPAVVMQOperation@@AAI1AAJAAPAVVMQRequester@@@Z
?LogOperation@VMQOperationCoordinator@@UAEXPAVVMQOperation@@@Z
?CanSatisfyOperation@VMQIndexObject@@EAEHPAVVMQOperation@@AAVCPtrList@@@Z
?CompareOperations@VMQIndexObject@@EAEHIIJPAVVMQOperation@@@Z
?OnOperationComplete@VMQIndexObject@@EAEXPAVVMQOperation@@AAVCPtrList@@@Z
?OnOperationException@VMQOperationCoordinator@@MAEXPAVVMQOperation@@AAVVMQException@@@Z
?OnOperationCanceled@VMQOperationCoordinator@@MAEXPAVVMQOperation@@@Z
?OnGetStatusMsgOperationComplete@VMQOperationCoordinator@@MAEXPAVVMQOperation@@PAVVMQWinMsgOutputData@@@Z
?Create@VMQBusyAnimationLayout@@QAEHPAVCWnd@@IABVXPST_String@@KIIK@Z
?SetBusy@VMQBusyAnimationLayout@@QAEXH@Z
?GetObjectA@VMQSessionDetails@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@KABVXPST_String@@11H1@Z
?TheObjectContainer@VMQObjectContainer@@SAPAV1@PAVVMQClientCallback@@@Z
?s_nOperationMode@VMQObjectContainer@@2HA
?s_statusLoadingPlanBusy@VMQSQLObject@@0VBusyLoadingPlanStatus@1@A
?CreateSQLObjectInsts@VMQDbDetails@@QAEXXZ
?g_nSameThreadMsg@VMQOperationFramework@@2IA
?GetRuntimeClass@VMQSaveServiceCredsInput@@UBEPAUCRuntimeClass@@XZ
?classVMQNavigateTreeCtrl@VMQNavigateTreeCtrl@@2UCRuntimeClass@@B
??1VMQWinMsgInput@@UAE@XZ
?s_statusBusyUpdatingCreds@VMQRepositoryObject@@0VBusyUpdatingCredsStatus@1@A
??_7VMQWinMsgInput@@6BVMQSharedObject@@@
??_7VMQWinMsgInput@@6BCObject@@@
?SetAuthentication@VMQTargetCredentials@@QAEXABVXPST_String@@00@Z
?RemoveDbDetails@VMQRepositoryObject@@QAEXPAVVMQDbDetails@@@Z
?IsFullWorkloadEmpty@VMQHistoricalSQL@@QAEHXZ
??1VMQSaveServiceCredsInput@@UAE@XZ
?LoadPlanObjectsData@VMQRepositoryObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
?GetRuntimeClass@VMQInsertServiceInput@@UBEPAUCRuntimeClass@@XZ
?OnRequestComplete@VMQDbDetails@@EAEXPAVVMQRequest@@IJPAVVMQWinMsgOutputData@@AAVCPtrList@@@Z
?CompareRequests@VMQDbDetails@@EAEHIIJPAVVMQRequest@@@Z
?CanSatisfyRequest@VMQDbDetails@@EAEHPAVVMQRequest@@AAVCPtrList@@@Z
?GetDatabaseConnectionContainer@VMQDbDetails@@UAEPAVVMQDatabaseConnectionContainer@@XZ
?OnOperationComplete@VMQDbDetails@@EAEXPAVVMQOperation@@AAVCPtrList@@@Z
?CompareOperations@VMQDbDetails@@EAEHIIJPAVVMQOperation@@@Z
?CanSatisfyOperation@VMQDbDetails@@EAEHPAVVMQOperation@@AAVCPtrList@@@Z
?ProceedToNextRequest@VMQDbDetails@@UAEHPAVVMQOperation@@AAI1AAJAAPAVVMQRequester@@@Z
?GetObjectStatus@VMQDbDetails@@UAEHXZ
?NextChild@VMQDbDetails@@UAEPAVVMQNavigatorObject@@XZ
?FirstChild@VMQDbDetails@@UAEPAVVMQNavigatorObject@@XZ
?RemoveObject@VMQDbDetails@@UAEXXZ
?SaveObject@VMQDbDetails@@UAEXXZ
?LoadObject@VMQDbDetails@@UAEPAVVMQNavigatorObject@@H@Z
?GetParent@VMQDbDetails@@UBEPAVVMQNavigatorObject@@XZ
?GetIdxRecomObject@VMQNavigatorObject@@UAEPAVVMQIdxRecomObject@@XZ
?GetSQLObject@VMQNavigatorObject@@UAEPAVVMQSQLObject@@XZ
?GetSessionDetails@VMQDbDetails@@UAEPAVVMQSessionDetails@@XZ
?GetHistoricalSQL@VMQDbDetails@@UAEPAVVMQHistoricalSQL@@XZ
?GetTopSQL@VMQDbDetails@@UAEPAVVMQTopSQL@@XZ
?GetDBDetails@VMQDbDetails@@UAEPAV1@XZ
?Cancel@VMQDbDetails@@UAEXXZ
?IsConnected@VMQDbDetails@@UAEHXZ
?IsBusy@VMQDbDetails@@UAEHXZ
?GetRuntimeClass@VMQDbDetails@@UBEPAUCRuntimeClass@@XZ
??0VMQWinMsgInput@@QAE@XZ
??0VMQDbDetails@@QAE@ABVXPST_String@@000@Z
??1VMQInsertServiceInput@@UAE@XZ
??1VMQDbDetails@@UAE@XZ
?GetRuntimeClass@VMQEditServiceInput@@UBEPAUCRuntimeClass@@XZ
?SetCredentials@VMQSessionDetails@@QAEXPAVVMQTargetCredentials@@@Z
?s_statusBusyEditing@VMQDbDetails@@0VBusyEditingStatus@1@A
??1VMQEditServiceInput@@UAE@XZ
?RemoveAllObjectFromCache@VMQDbDetails@@QAEXXZ
?CloseAllConnections@VMQDatabaseConnectionContainer@@QAEXXZ
?GetRuntimeClass@VMQRemoveServiceInput@@UBEPAUCRuntimeClass@@XZ
??1VMQRemoveServiceInput@@UAE@XZ
?GetTreeItemType@VMQNavigateTreeCtrl@@QAE?AW4TreeItemType@1@PAU_TREEITEM@@@Z
?s_BusyStatus@VMQIdxRecomObject@@0VBusyStatus@1@A
?LoadIdxRecomObject@VMQRepositoryObject@@QAEPAVVMQOpaqueOperation@@PAVVMQFrameworkClient@@K@Z
??0VMQDbDetails@@QAE@ABVXPST_String@@@Z
?s_nSortStatistics@VMQSQLSource@@2QBHB
?g_nFrameworkStatusMsg@VMQOperationFramework@@2IA
?RemovePrepareCmd@VMQSessionDetails@@QAEXXZ
?g_nFrameworkMsg@VMQOperationFramework@@2IA
?LookupIndexEntry@VMQPlanObjectContext@@QAEXAAVXPST_String@@0@Z
mfc42
ord6055
ord3574
ord4396
ord1848
ord4950
ord2438
ord4826
ord4861
ord3187
ord3702
ord3701
ord4957
ord2486
ord4254
ord4015
ord6241
ord289
ord1894
ord613
ord3692
ord5791
ord540
ord860
ord350
ord3127
ord5651
ord3616
ord5186
ord665
ord354
ord268
ord1567
ord4275
ord4349
ord470
ord2567
ord755
ord5873
ord5076
ord5260
ord3089
ord4723
ord3481
ord4614
ord4766
ord4440
ord4836
ord2259
ord1576
ord1669
ord5477
ord4732
ord2250
ord2429
ord6226
ord6224
ord2418
ord2398
ord2883
ord5851
ord1731
ord978
ord2511
ord2543
ord2544
ord3912
ord3257
ord3225
ord6271
ord6268
ord2568
ord6148
ord6230
ord6232
ord1928
ord4264
ord2294
ord5053
ord3370
ord2582
ord3693
ord4125
ord2149
ord4114
ord5593
ord3297
ord1937
ord3914
ord3290
ord2108
ord2233
ord765
ord3398
ord3698
ord3475
ord6656
ord3699
ord2298
ord2358
ord6194
ord4653
ord749
ord457
ord4626
ord3281
ord4038
ord5075
ord4537
ord4993
ord4522
ord4980
ord4646
ord4912
ord5108
ord5018
ord4857
ord4688
ord4717
ord4937
ord4932
ord4927
ord4990
ord3407
ord4958
ord1895
ord430
ord1706
ord2504
ord729
ord6282
ord2884
ord1756
ord3771
ord532
ord3318
ord5448
ord798
ord3763
ord4131
ord4130
ord3329
ord6134
ord4160
ord1916
ord5037
ord5766
ord6605
ord4262
ord697
ord517
ord395
ord784
ord1725
ord4960
ord4963
ord4889
ord1920
ord3293
ord4774
ord3910
ord4243
ord2097
ord693
ord3640
ord5768
ord6172
ord998
ord3977
ord6130
ord6129
ord5272
ord2737
ord2362
ord4204
ord4413
ord5004
ord3810
ord4457
ord2117
ord6000
ord3949
ord6027
ord2408
ord366
ord384
ord529
ord2096
ord674
ord686
ord796
ord5282
ord4151
ord5472
ord4242
ord5220
ord296
ord617
ord537
ord4448
ord4685
ord926
ord1842
ord1233
ord5252
ord6064
ord2120
ord4163
ord5871
ord2626
ord2627
ord2494
ord4460
ord2104
ord442
ord554
ord450
ord739
ord807
ord747
ord4427
ord4436
ord1665
ord2649
ord5285
ord5237
ord4077
ord4154
ord2878
ord2879
ord3403
ord5476
ord975
ord5012
ord3350
ord4303
ord4467
ord5103
ord5100
ord3059
ord2390
ord2723
ord4470
ord5656
ord5006
ord1695
ord2441
ord3254
ord4946
ord4251
ord1886
ord4676
ord4671
ord4450
ord472
ord5788
ord4297
ord4133
ord283
ord5787
ord5875
ord5789
ord1929
ord4284
ord2882
ord2860
ord6442
ord5621
ord6007
ord2776
ord939
ord3996
ord3438
ord5849
ord4976
ord818
ord3742
ord6334
ord4224
ord5288
ord4715
ord4259
ord497
ord1008
ord771
ord4431
ord2054
ord4439
ord1690
ord1908
ord6394
ord5450
ord6383
ord5440
ord6880
ord3567
ord3021
ord3095
ord2646
ord3874
ord3476
ord2881
ord5951
ord3317
ord4258
ord2301
ord768
ord489
ord4835
ord5287
ord4854
ord4377
ord4358
ord4948
ord4742
ord4905
ord5160
ord5162
ord5161
ord1907
ord3708
ord3729
ord3394
ord4406
ord2587
ord4123
ord602
ord781
ord804
ord4508
ord2754
ord4536
ord4148
ord6217
ord2762
ord5607
ord1083
ord323
ord1640
ord5785
ord640
ord3571
ord6270
ord5852
ord1644
ord4402
ord800
ord2379
ord3654
ord2584
ord4220
ord6354
ord2652
ord3216
ord6907
ord6905
ord3301
ord535
ord3286
ord5495
ord736
ord439
ord3579
ord3274
ord5685
ord4544
ord4530
ord2528
ord2868
ord3237
ord2086
ord353
ord6385
ord6010
ord6283
ord2763
ord5860
ord5600
ord1084
ord6142
ord6329
ord355
ord5683
ord2515
ord3499
ord1223
ord773
ord772
ord456
ord500
ord501
ord2623
ord1206
ord748
ord5826
ord4430
ord4623
ord3261
ord6175
ord6081
ord3198
ord3454
ord4387
ord2402
ord4860
ord4956
ord4423
ord5654
ord3172
ord5577
ord1747
ord5244
ord2542
ord2510
ord6336
ord3066
ord3060
ord4697
ord3250
ord3787
ord3449
ord1003
ord5627
ord6344
ord3514
ord5025
ord3417
ord2991
ord4155
ord5752
ord4657
ord4628
ord5501
ord5090
ord4416
ord5000
ord4605
ord3106
ord5021
ord4491
ord4494
ord5002
ord4916
ord4640
ord4517
ord4615
ord4612
ord4610
ord1946
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord5199
ord2396
ord3346
ord5300
ord5302
ord4079
ord4698
ord5307
ord5289
ord5714
ord3262
ord4424
ord6364
ord3326
ord6365
ord6350
ord5499
ord2982
ord3147
ord3259
ord4465
ord3136
ord3278
ord2985
ord3081
ord2976
ord3353
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord6452
ord3681
ord3619
ord815
ord459
ord561
ord825
ord743
ord3626
ord3663
ord2414
ord2123
msvcrt
_setmbcp
__CxxFrameHandler
atoi
_mbscmp
_splitpath
_purecall
_strdup
free
getenv
memcpy
_CxxThrowException
_ftol
_mbslen
_mbsnccnt
_mbsicmp
strtoul
_mbsnextc
fclose
sscanf
_mbsncmp
_mbsinc
fopen
fprintf
??1type_info@@UAE@XZ
__dllonexit
_onexit
_exit
_except_handler3
?terminate@@YAXXZ
_acmdln
_XcptFilter
exit
__setusermatherr
__getmainargs
_initterm
__p__fmode
_adjust_fdiv
__p__commode
_controlfp
__set_app_type
kernel32
GetStartupInfoA
GetVersionExA
GetModuleHandleA
GetLastError
FindResourceA
LoadResource
LockResource
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
GetModuleFileNameA
LoadLibraryA
OpenFile
FreeLibrary
user32
LoadCursorA
EnableWindow
SendMessageA
GetClientRect
SetWindowContextHelpId
GetWindowContextHelpId
InflateRect
GetKeyState
GetFocus
ReleaseDC
GetDC
SetRect
GetWindowRect
GetSysColor
InvalidateRect
IsWindow
IsWindowVisible
UpdateWindow
RegisterClipboardFormatA
BringWindowToTop
GetMessageA
DispatchMessageA
TranslateMessage
LoadIconA
AppendMenuA
CreatePopupMenu
GetParent
ClientToScreen
EnableMenuItem
CopyRect
PtInRect
OffsetRect
MapDialogRect
FillRect
MessageBeep
LoadBitmapA
SetTimer
SetForegroundWindow
InsertMenuA
DeleteMenu
GetMenuStringA
KillTimer
InvertRect
DrawFocusRect
GetDialogBaseUnits
SetRectEmpty
GetActiveWindow
ValidateRect
SetActiveWindow
IsChild
SendNotifyMessageA
SetWindowLongA
GetWindowLongA
RedrawWindow
PostMessageA
gdi32
SetStretchBltMode
ExtCreatePen
CreatePen
GetBkColor
CreateFontIndirectA
GetTextMetricsA
GetStockObject
GetBkMode
ExtTextOutA
CreateDIBitmap
CreatePalette
SelectPalette
SetDIBitsToDevice
StretchDIBits
GetTextExtentPoint32A
CreateSolidBrush
CreateCompatibleDC
CreateFontA
RealizePalette
SelectObject
BitBlt
DeleteObject
DeleteDC
GetObjectA
advapi32
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
shell32
ShellExecuteA
ShellExecuteExA
comctl32
ImageList_BeginDrag
ImageList_EndDrag
ImageList_Add
ImageList_GetImageInfo
ord8
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
ImageList_SetBkColor
ImageList_Draw
ImageList_AddMasked
oleaut32
SafeArrayAccessData
SafeArrayUnaccessData
Sections
.text Size: 556KB - Virtual size: 554KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 124KB - Virtual size: 123KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 72KB - Virtual size: 71KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
UPX0 Size: 144KB - Virtual size: 380KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE