0ebfc28a885f460886981c42080a4971_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0ebfc28a885f460886981c42080a4971_JaffaCakes118
Size

6.2MB
MD5

0ebfc28a885f460886981c42080a4971
SHA1

ae1b5ca052e12384523244c0283f5924a2a9d1b4
SHA256

f79d8599c91012e638effcf93389daa93137133d1ab5199fd34f0fc71237750d
SHA512

85c10460bba60a3d5c6d3fa001982fcfdb0e7580e62b501835e5c2995050f2c41c91d501be91a4ed7b33f08085fe07e68e0c6cf0b4cc64d1aa54b233f9ac8c21
SSDEEP

98304:Cor/HZewTJAoFkFDuMh5hn4Paaon6bPKh0oS4y03zNbIRQ3CrUPWr42aDkeW87dC:Co7YW+bv6bPQ0D03zBV3CrUPVZDk2yn

Score

3^/10

Malware Config

Signatures

Unsigned PE 15 IoCs

Checks for missing Authenticode signature.

resource
0ebfc28a885f460886981c42080a4971_JaffaCakes118
unpack001/$PLUGINSDIR/CheckInstall.exe
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack002/$PLUGINSDIR/ConduitInetc.dll
unpack002/$PLUGINSDIR/System.dll
unpack002/$PLUGINSDIR/nsExec.dll
unpack001/SDL.dll
unpack001/avcodec-52.dll
unpack001/avcore-0.dll
unpack001/avdevice-52.dll
unpack001/avfilter-1.dll
unpack001/avformat-52.dll
unpack001/avutil-50.dll
unpack001/swscale-0.dll
unpack001/uninst.exe

NSIS installer 6 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/$PLUGINSDIR/conduitinstaller.exe	nsis_installer_1
static1/unpack001/$PLUGINSDIR/conduitinstaller.exe	nsis_installer_2
static1/unpack001/uninst.exe	nsis_installer_1
static1/unpack001/uninst.exe	nsis_installer_2

Files

0ebfc28a885f460886981c42080a4971_JaffaCakes118
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/CheckInstall.exe
.exe windows:5 windows x86 arch:x86

1e06b1e51c07b4f145d681ea3c56d9b6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString
SysReAllocStringLen
SysAllocStringLen
GetErrorInfo
GetActiveObject
SysFreeString
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayCreate
VariantChangeType
VariantCopy
VariantClear
VariantInit

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegUnLoadKeyW
RegSetValueExW
RegSaveKeyW
RegRestoreKeyW
RegReplaceKeyW
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegLoadKeyW
RegFlushKey
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegConnectRegistryW
RegCloseKey

user32

LoadStringW
MessageBoxA
CharNextW
CreateWindowExW
WindowFromPoint
WaitMessage
UpdateWindow
UnregisterClassW
UnhookWindowsHookEx
TranslateMessage
TranslateMDISysAccel
TrackPopupMenu
SystemParametersInfoW
ShowWindow
ShowScrollBar
ShowOwnedPopups
SetWindowsHookExW
SetWindowTextW
SetWindowPos
SetWindowPlacement
SetWindowLongW
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRect
SetPropW
SetParent
SetMenuItemInfoW
SetMenu
SetForegroundWindow
SetFocus
SetCursorPos
SetCursor
SetClipboardData
SetClassLongW
SetCapture
SetActiveWindow
SendMessageA
SendMessageW
ScrollWindow
ScreenToClient
RemovePropW
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterClipboardFormatW
RegisterClassW
RedrawWindow
PtInRect
PostQuitMessage
PostMessageW
PeekMessageA
PeekMessageW
OpenClipboard
OffsetRect
MsgWaitForMultipleObjectsEx
MsgWaitForMultipleObjects
MessageBoxW
MessageBeep
MapWindowPoints
MapVirtualKeyW
LoadStringW
LoadKeyboardLayoutW
LoadIconW
LoadCursorFromFileW
LoadCursorW
LoadBitmapW
KillTimer
IsZoomed
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
IsDialogMessageA
IsDialogMessageW
IsChild
InvalidateRect
IntersectRect
InsertMenuItemW
InsertMenuW
InflateRect
GetWindowThreadProcessId
GetWindowTextW
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
GetTopWindow
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropW
GetParent
GetWindow
GetMessageTime
GetMessagePos
GetMessageExtraInfo
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenu
GetLastActivePopup
GetKeyboardState
GetKeyboardLayoutNameW
GetKeyboardLayoutList
GetKeyboardLayout
GetKeyState
GetKeyNameTextW
GetIconInfo
GetForegroundWindow
GetFocus
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetCursor
GetClipboardData
GetClientRect
GetClassLongW
GetClassInfoW
GetCapture
GetActiveWindow
FrameRect
FindWindowExW
FindWindowW
FillRect
EnumWindows
EnumThreadWindows
EnumChildWindows
EndPaint
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextExW
DrawTextW
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageA
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DeleteMenu
DefWindowProcW
DefMDIChildProcW
DefFrameProcW
CreatePopupMenu
CreateMenu
CreateIcon
CreateAcceleratorTableW
CopyIcon
CloseClipboard
ClientToScreen
CheckMenuItem
CharUpperBuffW
CharNextW
CharLowerBuffW
CharLowerW
CallWindowProcW
CallNextHookEx
BeginPaint
AdjustWindowRectEx
ActivateKeyboardLayout

kernel32

lstrcmpiA
LoadLibraryA
LocalFree
LocalAlloc
GetACP
Sleep
VirtualFree
VirtualAlloc
GetSystemInfo
GetTickCount
QueryPerformanceCounter
GetVersion
GetCurrentThreadId
VirtualQuery
WideCharToMultiByte
MultiByteToWideChar
lstrlenW
lstrcpynW
LoadLibraryExW
IsValidLocale
GetSystemDefaultUILanguage
GetStartupInfoA
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
GetUserDefaultUILanguage
GetLocaleInfoW
GetLastError
GetCommandLineW
FreeLibrary
FindFirstFileW
FindClose
ExitProcess
ExitThread
CreateThread
CompareStringW
WriteFile
UnhandledExceptionFilter
SetFilePointer
SetEndOfFile
RtlUnwind
ReadFile
RaiseException
GetStdHandle
GetFileSize
GetFileType
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
CreateFileW
CloseHandle
TlsSetValue
TlsGetValue
LocalAlloc
GetModuleHandleW
lstrcpyW
WritePrivateProfileStringW
WriteFile
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjectsEx
VirtualQueryEx
VirtualQuery
VirtualFree
VirtualAlloc
TryEnterCriticalSection
SwitchToThread
SuspendThread
SizeofResource
SignalObjectAndWait
SetThreadPriority
SetThreadLocale
SetLastError
SetFilePointer
SetEvent
SetErrorMode
SetEndOfFile
ResumeThread
ResetEvent
ReadFile
RaiseException
PeekNamedPipe
IsDebuggerPresent
MultiByteToWideChar
MulDiv
LockResource
LoadResource
LoadLibraryExW
LoadLibraryW
LeaveCriticalSection
InitializeCriticalSection
GlobalUnlock
GlobalSize
GlobalLock
GlobalFree
GlobalFindAtomW
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetVersionExW
GetVersion
GetUserDefaultLCID
GetTickCount
GetThreadPriority
GetThreadLocale
GetTempPathW
GetStdHandle
GetProcAddress
GetPrivateProfileStringW
GetModuleHandleW
GetModuleFileNameW
GetLocaleInfoW
GetLocalTime
GetLastError
GetFullPathNameW
GetFileAttributesW
GetExitCodeThread
GetDiskFreeSpaceW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetComputerNameW
GetCPInfo
FreeResource
InterlockedExchangeAdd
InterlockedExchange
InterlockedCompareExchange
FreeLibrary
FormatMessageW
FindResourceW
FindFirstFileW
FindClose
EnumCalendarInfoW
EnterCriticalSection
DeleteFileW
DeleteCriticalSection
CreateThread
CreateProcessW
CreatePipe
CreateFileW
CreateEventW
CreateDirectoryW
CopyFileW
CompareStringW
CloseHandle
Sleep

msimg32

AlphaBlend

gdi32

UnrealizeObject
StretchDIBits
StretchBlt
StartPage
StartDocW
SetWindowOrgEx
SetWinMetaFileBits
SetViewportOrgEx
SetTextColor
SetStretchBltMode
SetROP2
SetPixel
SetMapMode
SetEnhMetaFileBits
SetDIBits
SetDIBColorTable
SetBrushOrgEx
SetBkMode
SetBkColor
SetAbortProc
SelectPalette
SelectObject
SaveDC
RoundRect
RestoreDC
ResizePalette
Rectangle
RectVisible
RealizePalette
Polyline
Polygon
PolyBezierTo
PolyBezier
PlayEnhMetaFile
Pie
PatBlt
MoveToEx
MaskBlt
LineTo
LPtoDP
IntersectClipRect
GetWindowOrgEx
GetWinMetaFileBits
GetTextMetricsW
GetTextExtentPointW
GetTextExtentPoint32W
GetSystemPaletteEntries
GetStockObject
GetRgnBox
GetPixel
GetPaletteEntries
GetObjectW
GetNearestPaletteIndex
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileDescriptionW
GetEnhMetaFileBits
GetDeviceCaps
GetDIBits
GetDIBColorTable
GetDCOrgEx
GetCurrentPositionEx
GetCurrentObject
GetClipBox
GetBrushOrgEx
GetBitmapBits
GdiFlush
FrameRgn
ExtTextOutW
ExtFloodFill
ExcludeClipRect
EnumFontsW
EnumFontFamiliesExW
EndPage
EndDoc
Ellipse
DeleteObject
DeleteEnhMetaFile
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePenIndirect
CreatePalette
CreateICW
CreateHalftonePalette
CreateFontIndirectW
CreateEnhMetaFileW
CreateDIBitmap
CreateDIBSection
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap
CopyEnhMetaFileW
CloseEnhMetaFile
Chord
BitBlt
Arc
AbortDoc

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

ole32

CreateStreamOnHGlobal
OleRegEnumVerbs
IsAccelerator
OleDraw
OleSetMenuDescriptor
OleUninitialize
OleInitialize
CoTaskMemFree
CoTaskMemAlloc
ProgIDFromCLSID
StringFromCLSID
CoCreateInstance
CoGetClassObject
CoUninitialize
CoInitialize
IsEqualGUID
IsEqualGUID

comctl32

InitializeFlatSB
FlatSB_SetScrollProp
FlatSB_SetScrollPos
FlatSB_SetScrollInfo
FlatSB_GetScrollPos
FlatSB_GetScrollInfo
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_SetIconSize
ImageList_GetIconSize
ImageList_Write
ImageList_Read
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
ImageList_EndDrag
ImageList_BeginDrag
ImageList_Copy
ImageList_LoadImageW
ImageList_GetIcon
ImageList_Remove
ImageList_DrawEx
ImageList_Replace
ImageList_Draw
ImageList_SetOverlayImage
ImageList_GetBkColor
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
InitCommonControls

wininet

InternetReadFile
InternetOpenW
InternetConnectW
InternetCloseHandle
HttpSendRequestW
HttpQueryInfoW
HttpOpenRequestW

shell32

ShellExecuteW

winspool.drv

OpenPrinterW
EnumPrintersW
DocumentPropertiesW
ClosePrinter
GetDefaultPrinterW

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 26KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 1024B - Virtual size: 806B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 60B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

dec6b15c0428dbfe68002d314aeabddf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
GetPrivateProfileIntA
GlobalLock
lstrcmpiA
GetModuleHandleA
GetPrivateProfileStringA
lstrcatA
WritePrivateProfileStringA
lstrcpynA
lstrlenA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalAlloc

user32

MapWindowPoints
GetDlgCtrlID
CloseClipboard
GetClipboardData
OpenClipboard
PtInRect
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
ShowWindow
SetWindowLongA
GetClientRect
SetWindowRgn
LoadIconA
LoadImageA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
wsprintfA
CharNextA
MessageBoxA
GetWindowTextA
SetWindowTextA
SendMessageA
DestroyIcon

gdi32

SetTextColor
CreateCompatibleDC
GetObjectA
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject

shell32

SHBrowseForFolderA
SHGetDesktopFolder
SHGetPathFromIDListA
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/conduitinstaller.exe
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

37:36:da:15:af:64:76:32:cc:e6:1c:d4:1b:65:77:dd
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Not Before

17/02/2010, 00:00

Not After

29/03/2013, 23:59

Subject

CN=Conduit Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Conduit Ltd.,ST=Israel,C=IL

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

21/05/2009, 00:00

Not After

20/05/2019, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 880KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ConduitInetc.dll
.dll windows:5 windows x86 arch:x86

cfd2141fbc2bac88eb72570b8ba81bab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wininet

InternetCloseHandle
InternetWriteFile
InternetGetConnectedState
InternetOpenA
InternetCrackUrlA
InternetConnectA
HttpEndRequestA
HttpOpenRequestA
HttpAddRequestHeadersA
InternetErrorDlg
InternetReadFile
InternetQueryOptionA
InternetSetOptionA
InternetSetFilePointer
InternetGetLastResponseInfoA
FtpOpenFileA
FtpCreateDirectoryA
HttpQueryInfoA
HttpSendRequestExA
HttpSendRequestA

comctl32

ord17

urlmon

ObtainUserAgentString

kernel32

CompareStringW
CompareStringA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetLocaleInfoW
GetTimeZoneInformation
SetEnvironmentVariableA
InterlockedExchange
VirtualAlloc
HeapReAlloc
HeapSize
LCMapStringW
LCMapStringA
LoadLibraryW
SetConsoleCtrlHandler
OutputDebugStringW
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
WriteConsoleW
OutputDebugStringA
lstrlenA
WriteFile
ReadFile
lstrcmpA
lstrcpynA
GetLastError
GlobalFree
DeleteFileA
CloseHandle
SleepEx
SetFilePointer
GetTickCount
lstrcatA
GetFileSize
CreateFileA
lstrcmpiA
GetProcAddress
LoadLibraryA
GlobalAlloc
lstrcpyA
MulDiv
GetModuleHandleA
TerminateThread
WaitForSingleObject
CreateThread
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
FatalAppExitA
LeaveCriticalSection
EnterCriticalSection
GetDateFormatA
GetTimeFormatA
FreeLibrary
VirtualQuery
GetProcessHeap
HeapAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
DeleteCriticalSection
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ExitProcess
FlushFileBuffers
GetCommandLineA
IsDebuggerPresent
RaiseException
DebugBreak
WideCharToMultiByte
MultiByteToWideChar
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InterlockedIncrement
InterlockedDecrement
GetModuleFileNameW
RtlUnwind
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
TlsGetValue
GetModuleHandleW
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThread
HeapValidate
IsBadReadPtr
Sleep

user32

FindWindowExA
CreateDialogParamA
EnableWindow
IsWindowVisible
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
RedrawWindow
UpdateWindow
KillTimer
DestroyWindow
LoadIconA
SetTimer
GetWindowRect
GetClientRect
SystemParametersInfoA
SetWindowPos
SetDlgItemTextA
SendMessageA
GetWindowTextA
PostMessageA
GetDlgItem
SendDlgItemMessageA
SetWindowTextA
GetWindowLongA
SetWindowLongA
ShowWindow
GetParent
MessageBoxA
IsWindow
wsprintfA

Exports

Exports

IsConnected
get
head
post
put

Sections

.text
Size: 367KB - Virtual size: 367KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/nsExec.dll
.dll windows:4 windows x86 arch:x86

d83f71e61ee459ee63ca3e829966a9dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetExitCodeProcess
WaitForSingleObject
Sleep
TerminateProcess
lstrcpyA
lstrcpynA
GlobalReAlloc
GlobalUnlock
GlobalSize
ReadFile
PeekNamedPipe
GetTickCount
CreateProcessA
GetStartupInfoA
CreatePipe
GetVersionExA
GetModuleHandleA
DeleteFileA
lstrcmpiA
lstrlenA
lstrcatA
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
CreateFileA
CopyFileA
GetTempFileNameA
GlobalFree
GlobalAlloc
GetModuleFileNameA
ExitProcess
GetCommandLineA
GetProcAddress
GlobalLock
GetCurrentProcess

user32

SendMessageA
OemToCharBuffA
CharNextA
wsprintfA
CharPrevA
FindWindowExA

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

Exports

Exports

Exec
ExecToLog
ExecToStack

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 410B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/snap.bmp
$PLUGINSDIR/toolbarb.ini
MP3RocketDownload.exe
.exe windows:5 windows x86 arch:x86

fc22a1b3f2a371ad712108a4dc3eeb1a

Code Sign

42:ce:8a:30:d3:56:02:f8:41:18:6c:6e:20:53:19:04
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

25/04/2007, 00:00

Not After

09/07/2019, 18:40

Subject

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning
ExtKeyUsageClientAuth

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

43:73:c5:9c:4f:32:a9:e5:b5:d3:de:f1:26:9a:12:0d
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

30/04/2007, 00:00

Not After

29/04/2012, 23:59

Subject

CN=WoSign Time Stamping Signer,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

bb:9e:58:72:c9:07:f4:bb:51:ed:8d:58:98:fc:db:f4
Certificate

Issuer

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Not Before

01/02/2008, 00:00

Not After

31/01/2013, 23:59

Subject

CN=eCode Sky Network Technology Co.\, Ltd.,O=eCode Sky Network Technology Co.\, Ltd.,POSTALCODE=100000,STREET=159\, Kehai Blvd.\,Fuzhang Park\, Tongzhou District\, Beijing,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Key Usages

KeyUsageDigitalSignature

5a:82:98:8c:7b:c5:0e:37:6c:cb:48:a7:56:88:58:e7:b5:f8:d7:de
Signer

Actual PE Digest

5a:82:98:8c:7b:c5:0e:37:6c:cb:48:a7:56:88:58:e7:b5:f8:d7:de

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString
SysReAllocStringLen
SysAllocStringLen
GetErrorInfo
GetActiveObject
VariantClear
VariantInit
SafeArrayPutElement
SafeArrayCreateVector
SafeArrayCreate
SysFreeString
SysAllocString
SafeArrayPtrOfIndex
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayCreate
VariantChangeType
VariantCopyInd
VariantCopy
VariantClear
VariantInit

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RevertToSelf
RegUnLoadKeyW
RegSetValueExW
RegSaveKeyW
RegRestoreKeyW
RegReplaceKeyW
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegLoadKeyW
RegFlushKey
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegConnectRegistryW
RegCloseKey
OpenThreadToken
MapGenericMask
ImpersonateSelf
GetFileSecurityW
AccessCheck

user32

LoadStringW
MessageBoxA
CharNextW
CreateWindowExW
WindowFromPoint
WaitMessage
UpdateLayeredWindow
UpdateWindow
UnregisterClassW
UnhookWindowsHookEx
TranslateMessage
TranslateMDISysAccel
TrackPopupMenuEx
TrackPopupMenu
TabbedTextOutW
SystemParametersInfoW
ShowWindow
ShowScrollBar
ShowOwnedPopups
ShowCaret
SetWindowRgn
SetWindowsHookExW
SetWindowTextW
SetWindowPos
SetWindowPlacement
SetWindowLongW
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRect
SetPropW
SetParent
SetMenuItemInfoW
SetMenu
SetKeyboardState
SetForegroundWindow
SetFocus
SetDlgItemTextW
SetCursorPos
SetCursor
SetClipboardData
SetClassLongW
SetCapture
SetActiveWindow
SendMessageA
SendMessageW
SendDlgItemMessageW
ScrollWindow
ScreenToClient
RemovePropW
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterClipboardFormatW
RegisterClassW
RedrawWindow
PtInRect
PostQuitMessage
PostMessageW
PeekMessageA
PeekMessageW
OpenClipboard
OffsetRect
NotifyWinEvent
MsgWaitForMultipleObjectsEx
MsgWaitForMultipleObjects
MoveWindow
MessageBoxW
MessageBeep
MapWindowPoints
MapVirtualKeyW
LoadStringW
LoadMenuW
LoadKeyboardLayoutW
LoadImageW
LoadIconW
LoadCursorFromFileW
LoadCursorW
LoadBitmapW
KillTimer
IsZoomed
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
IsDialogMessageA
IsDialogMessageW
IsClipboardFormatAvailable
IsChild
IsCharAlphaNumericW
IsCharAlphaW
InvalidateRect
IntersectRect
InsertMenuItemW
InsertMenuW
InflateRect
HideCaret
GetWindowThreadProcessId
GetWindowTextLengthW
GetWindowTextW
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetWindowLongW
GetWindowDC
GetTopWindow
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropW
GetParent
GetWindow
GetMessageTime
GetMessagePos
GetMessageExtraInfo
GetMessageW
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenu
GetLastActivePopup
GetKeyboardState
GetKeyboardLayoutNameW
GetKeyboardLayoutList
GetKeyboardLayout
GetKeyState
GetKeyNameTextW
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetCursor
GetClipboardData
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FindWindowExW
FindWindowW
FillRect
EnumWindows
EnumThreadWindows
EnumClipboardFormats
EnumChildWindows
EndPaint
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextExW
DrawTextW
DrawStateW
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DrawEdge
DrawAnimatedRects
DispatchMessageA
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DeleteMenu
DefWindowProcW
DefMDIChildProcW
DefFrameProcW
CreatePopupMenu
CreateMenu
CreateIcon
CreateAcceleratorTableW
CountClipboardFormats
CopyImage
CopyIcon
CloseClipboard
ClientToScreen
ChildWindowFromPoint
CheckMenuItem
CharUpperBuffW
CharUpperW
CharNextW
CharLowerBuffW
CharLowerW
CallWindowProcW
CallNextHookEx
BringWindowToTop
BeginPaint
AttachThreadInput
AdjustWindowRectEx
ActivateKeyboardLayout

kernel32

lstrcmpiA
LoadLibraryA
LocalFree
LocalAlloc
GetACP
Sleep
VirtualFree
VirtualAlloc
GetSystemInfo
GetTickCount
QueryPerformanceCounter
GetVersion
GetCurrentThreadId
VirtualQuery
WideCharToMultiByte
SetCurrentDirectoryW
MultiByteToWideChar
lstrlenW
lstrcpynW
LoadLibraryExW
IsValidLocale
GetSystemDefaultUILanguage
GetStartupInfoA
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
GetUserDefaultUILanguage
GetLocaleInfoW
GetLastError
GetCurrentDirectoryW
GetCommandLineW
FreeLibrary
FindFirstFileW
FindClose
ExitProcess
ExitThread
CreateThread
CompareStringW
WriteFile
UnhandledExceptionFilter
SetFilePointer
SetEndOfFile
RtlUnwind
ReadFile
RaiseException
GetStdHandle
GetFileSize
GetFileType
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
CreateFileW
CloseHandle
TlsSetValue
TlsGetValue
LocalAlloc
GetModuleHandleW
lstrlenA
lstrlenW
lstrcpyW
lstrcmpW
WritePrivateProfileStringW
WriteFile
WinExec
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjectsEx
VirtualQueryEx
VirtualQuery
VirtualFree
VirtualAlloc
UnmapViewOfFile
TryEnterCriticalSection
SwitchToThread
SuspendThread
Sleep
SizeofResource
SignalObjectAndWait
SetThreadPriority
SetThreadLocale
SetLastError
SetFilePointer
SetFileAttributesW
SetEvent
SetErrorMode
SetEnvironmentVariableW
SetEndOfFile
SetCurrentDirectoryW
ResumeThread
ResetEvent
RemoveDirectoryW
ReleaseMutex
ReadFile
RaiseException
QueryPerformanceFrequency
QueryPerformanceCounter
IsDebuggerPresent
OpenMutexW
OpenFileMappingW
OpenEventW
MultiByteToWideChar
MulDiv
MoveFileW
MapViewOfFile
LockResource
LocalFree
LocalAlloc
LoadResource
LoadLibraryExW
LoadLibraryW
LeaveCriticalSection
InitializeCriticalSection
GlobalUnlock
GlobalSize
GlobalHandle
GlobalLock
GlobalFree
GlobalFindAtomW
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetVolumeInformationW
GetVersionExW
GetVersion
GetUserDefaultLCID
GetTimeZoneInformation
GetTickCount
GetThreadPriority
GetThreadLocale
GetTempPathW
GetSystemDirectoryW
GetSystemDefaultLangID
GetStdHandle
GetProfileIntW
GetProcAddress
GetPrivateProfileStringW
GetModuleHandleW
GetModuleFileNameW
GetLocaleInfoW
GetLocalTime
GetLastError
GetFullPathNameW
GetFileTime
GetFileSize
GetFileAttributesW
GetExitCodeThread
GetEnvironmentVariableW
GetDiskFreeSpaceW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetComputerNameW
GetCPInfo
FreeResource
InterlockedExchangeAdd
InterlockedExchange
InterlockedCompareExchange
FreeLibrary
FormatMessageW
FindResourceW
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
EnumCalendarInfoW
EnterCriticalSection
DeleteFileW
DeleteCriticalSection
CreateThread
CreateProcessW
CreateMutexW
CreateFileMappingW
CreateFileW
CreateEventW
CreateDirectoryW
CopyFileW
CompareStringA
CompareStringW
CloseHandle
Sleep
GetLongPathNameW

msimg32

AlphaBlend

gdi32

UnrealizeObject
StretchDIBits
StretchBlt
StartPage
StartDocW
SetWindowOrgEx
SetWinMetaFileBits
SetViewportOrgEx
SetTextColor
SetStretchBltMode
SetROP2
SetPixel
SetMapMode
SetEnhMetaFileBits
SetDIBitsToDevice
SetDIBits
SetDIBColorTable
SetBrushOrgEx
SetBkMode
SetBkColor
SetAbortProc
SelectPalette
SelectObject
SaveDC
RoundRect
RestoreDC
ResizePalette
Rectangle
RectVisible
RealizePalette
Polyline
Polygon
PolyBezierTo
PolyBezier
PlayEnhMetaFile
Pie
PathToRegion
PatBlt
MoveToEx
MaskBlt
LineTo
LPtoDP
IntersectClipRect
GetWindowOrgEx
GetWinMetaFileBits
GetTextMetricsW
GetTextExtentPointW
GetTextExtentPoint32W
GetTextColor
GetSystemPaletteEntries
GetStockObject
GetRgnBox
GetPixel
GetPaletteEntries
GetObjectW
GetNearestPaletteIndex
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileDescriptionW
GetEnhMetaFileBits
GetDeviceCaps
GetDIBits
GetDIBColorTable
GetDCOrgEx
GetCurrentPositionEx
GetCurrentObject
GetClipBox
GetBrushOrgEx
GetBitmapBits
GdiFlush
FrameRgn
FillRgn
ExtTextOutW
ExtFloodFill
ExtCreateRegion
ExcludeClipRect
EnumFontsW
EnumFontFamiliesExW
EndPath
EndPage
EndDoc
Ellipse
DeleteObject
DeleteEnhMetaFile
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePolygonRgn
CreatePenIndirect
CreatePalette
CreateICW
CreateHalftonePalette
CreateFontIndirectW
CreateEnhMetaFileW
CreateDIBitmap
CreateDIBSection
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap
CopyEnhMetaFileW
CombineRgn
CloseFigure
CloseEnhMetaFile
Chord
BitBlt
BeginPath
Arc
AbortDoc

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

ole32

CreateStreamOnHGlobal
OleRegEnumVerbs
IsAccelerator
OleDraw
OleSetMenuDescriptor
RevokeDragDrop
RegisterDragDrop
OleUninitialize
OleInitialize
CoTaskMemFree
CoTaskMemAlloc
ProgIDFromCLSID
StringFromCLSID
CoCreateInstance
CoGetClassObject
CoUninitialize
CoInitialize
IsEqualGUID
IsEqualGUID
CLSIDFromString

comctl32

InitializeFlatSB
FlatSB_SetScrollProp
FlatSB_SetScrollPos
FlatSB_SetScrollInfo
FlatSB_GetScrollPos
FlatSB_GetScrollInfo
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_SetIconSize
ImageList_GetIconSize
ImageList_Write
ImageList_Read
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
ImageList_EndDrag
ImageList_BeginDrag
ImageList_Copy
ImageList_LoadImageW
ImageList_GetIcon
ImageList_Remove
ImageList_DrawEx
ImageList_Replace
ImageList_Draw
ImageList_SetOverlayImage
ImageList_GetBkColor
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
InitCommonControls

urlmon

CoInternetCreateZoneManager
CoInternetCreateSecurityManager
URLDownloadToFileW

wininet

InternetGetConnectedState
FindNextUrlCacheEntryExW
FindFirstUrlCacheEntryExW
InternetSetOptionW
InternetReadFile
InternetQueryOptionW
InternetOpenW
InternetConnectW
InternetCloseHandle
HttpSendRequestW
HttpQueryInfoW
HttpOpenRequestW
FindNextUrlCacheEntryW
FindFirstUrlCacheEntryW
FindCloseUrlCache
DeleteUrlCacheEntryW

shell32

SHGetFileInfoW
ShellExecuteExW
ShellExecuteW
Shell_NotifyIconW
SHGetSpecialFolderPathW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
SHGetDesktopFolder
SHBrowseForFolderW

comdlg32

GetSaveFileNameW
GetOpenFileNameW

winspool.drv

OpenPrinterW
EnumPrintersW
DocumentPropertiesW
ClosePrinter
GetDefaultPrinterW

wsock32

WSACleanup
WSAStartup
WSAGetLastError
gethostname
gethostbyname
inet_ntoa

crypt32

CertOpenSystemStoreW
CertAddCertificateContextToStore
CertFreeCertificateContext
CertCreateCertificateContext
CertCloseStore

shdocvw

DoOrganizeFavDlg

oleacc

LresultFromObject

winmm

sndPlaySoundW

msvcrt

free
malloc
strchr
isxdigit
isupper
isspace
ispunct
isprint
islower
isgraph
isdigit
iscntrl
isalpha
isalnum
toupper
tolower
strlen
memcmp
strncmp
memset
memmove
memcpy

Sections

.text
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 27KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 1024B - Virtual size: 934B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 72B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 524KB - Virtual size: 524KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SDL.dll
.dll windows:4 windows x86 arch:x86

3cac573b810d2b09cc2fdfb3b0f3e2c9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

gdi32

BitBlt
ChoosePixelFormat
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreatePalette
DeleteDC
DeleteObject
DescribePixelFormat
GetDIBits
GetDeviceCaps
GetDeviceGammaRamp
GetSystemPaletteEntries
GetSystemPaletteUse
RealizePalette
SelectObject
SelectPalette
SetDIBColorTable
SetDeviceGammaRamp
SetPaletteEntries
SetPixelFormat
SetSystemPaletteUse
SwapBuffers
UnrealizeObject

kernel32

AddAtomA
CloseHandle
CreateEventA
CreateFileA
CreateMutexA
CreateSemaphoreA
FindAtomA
FormatMessageA
FreeLibrary
GetACP
GetAtomNameA
GetCurrentThread
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentVariableA
GetLastError
GetLocaleInfoA
GetModuleHandleA
GetProcAddress
GetVersionExA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
ReadFile
ReleaseMutex
ReleaseSemaphore
SetEnvironmentVariableA
SetErrorMode
SetFilePointer
SetThreadPriority
Sleep
TerminateThread
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

_strdup
__dllonexit
__mb_cur_max
_assert
_beginthreadex
_endthreadex
_errno
_iob
_isctype
_pctype
_stricmp
_vsnprintf
abort
atof
atoi
fclose
fflush
fprintf
fread
free
fseek
ftell
fwrite
log
malloc
memcpy
memset
pow
qsort
raise
realloc
signal
sscanf
strchr
strlen
strstr

user32

AdjustWindowRect
AdjustWindowRectEx
BeginPaint
CallWindowProcA
ChangeDisplaySettingsA
ClientToScreen
ClipCursor
CreateCursor
CreateIconFromResourceEx
CreateWindowExA
DefWindowProcA
DestroyCursor
DestroyIcon
DestroyWindow
DispatchMessageA
EndPaint
EnumDisplaySettingsA
GetClassInfoA
GetClientRect
GetCursor
GetCursorPos
GetDC
GetDesktopWindow
GetForegroundWindow
GetKeyState
GetKeyboardLayout
GetKeyboardLayoutNameA
GetKeyboardState
GetMenu
GetMessageA
GetParent
GetSystemMetrics
GetWindowLongA
GetWindowRect
InvalidateRect
IsZoomed
KillTimer
LoadImageA
LoadKeyboardLayoutA
MapVirtualKeyA
MapVirtualKeyExA
MapWindowPoints
MsgWaitForMultipleObjects
PeekMessageA
PostMessageA
PostQuitMessage
PtInRect
RegisterClassA
ReleaseCapture
ReleaseDC
ScreenToClient
SetCapture
SetClassLongA
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetTimer
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
ToAsciiEx
ToUnicode
TranslateMessage
UnregisterClassA
WindowFromPoint

winmm

joyGetDevCapsA
joyGetNumDevs
joyGetPosEx
mciGetErrorStringA
mciSendCommandA
timeBeginPeriod
timeEndPeriod
timeGetTime
timeKillEvent
timeSetEvent
waveOutClose
waveOutGetErrorTextA
waveOutOpen
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite

Exports

Exports

SDL_AddTimer
SDL_AllocRW
SDL_AudioDriverName
SDL_AudioInit
SDL_AudioQuit
SDL_BuildAudioCVT
SDL_CDClose
SDL_CDEject
SDL_CDName
SDL_CDNumDrives
SDL_CDOpen
SDL_CDPause
SDL_CDPlay
SDL_CDPlayTracks
SDL_CDResume
SDL_CDStatus
SDL_CDStop
SDL_ClearError
SDL_CloseAudio
SDL_CondBroadcast
SDL_CondSignal
SDL_CondWait
SDL_CondWaitTimeout
SDL_ConvertAudio
SDL_ConvertSurface
SDL_CreateCond
SDL_CreateCursor
SDL_CreateMutex
SDL_CreateRGBSurface
SDL_CreateRGBSurfaceFrom
SDL_CreateSemaphore
SDL_CreateThread
SDL_CreateYUVOverlay
SDL_Delay
SDL_DestroyCond
SDL_DestroyMutex
SDL_DestroySemaphore
SDL_DisplayFormat
SDL_DisplayFormatAlpha
SDL_DisplayYUVOverlay
SDL_EnableKeyRepeat
SDL_EnableUNICODE
SDL_Error
SDL_EventState
SDL_FillRect
SDL_Flip
SDL_FreeCursor
SDL_FreeRW
SDL_FreeSurface
SDL_FreeWAV
SDL_FreeYUVOverlay
SDL_GL_GetAttribute
SDL_GL_GetProcAddress
SDL_GL_LoadLibrary
SDL_GL_Lock
SDL_GL_SetAttribute
SDL_GL_SwapBuffers
SDL_GL_Unlock
SDL_GL_UpdateRects
SDL_GetAppState
SDL_GetAudioStatus
SDL_GetClipRect
SDL_GetCursor
SDL_GetError
SDL_GetEventFilter
SDL_GetGammaRamp
SDL_GetKeyName
SDL_GetKeyRepeat
SDL_GetKeyState
SDL_GetModState
SDL_GetMouseState
SDL_GetRGB
SDL_GetRGBA
SDL_GetRelativeMouseState
SDL_GetThreadID
SDL_GetTicks
SDL_GetVideoInfo
SDL_GetVideoSurface
SDL_GetWMInfo
SDL_Has3DNow
SDL_Has3DNowExt
SDL_HasAltiVec
SDL_HasMMX
SDL_HasMMXExt
SDL_HasRDTSC
SDL_HasSSE
SDL_HasSSE2
SDL_Init
SDL_InitSubSystem
SDL_JoystickClose
SDL_JoystickEventState
SDL_JoystickGetAxis
SDL_JoystickGetBall
SDL_JoystickGetButton
SDL_JoystickGetHat
SDL_JoystickIndex
SDL_JoystickName
SDL_JoystickNumAxes
SDL_JoystickNumBalls
SDL_JoystickNumButtons
SDL_JoystickNumHats
SDL_JoystickOpen
SDL_JoystickOpened
SDL_JoystickUpdate
SDL_KillThread
SDL_Linked_Version
SDL_ListModes
SDL_LoadBMP_RW
SDL_LoadFunction
SDL_LoadObject
SDL_LoadWAV_RW
SDL_LockAudio
SDL_LockSurface
SDL_LockYUVOverlay
SDL_LowerBlit
SDL_MapRGB
SDL_MapRGBA
SDL_MixAudio
SDL_NumJoysticks
SDL_OpenAudio
SDL_PauseAudio
SDL_PeepEvents
SDL_PollEvent
SDL_PumpEvents
SDL_PushEvent
SDL_Quit
SDL_QuitSubSystem
SDL_RWFromConstMem
SDL_RWFromFP
SDL_RWFromFile
SDL_RWFromMem
SDL_ReadBE16
SDL_ReadBE32
SDL_ReadBE64
SDL_ReadLE16
SDL_ReadLE32
SDL_ReadLE64
SDL_RegisterApp
SDL_RemoveTimer
SDL_SaveBMP_RW
SDL_SemPost
SDL_SemTryWait
SDL_SemValue
SDL_SemWait
SDL_SemWaitTimeout
SDL_SetAlpha
SDL_SetClipRect
SDL_SetColorKey
SDL_SetColors
SDL_SetCursor
SDL_SetError
SDL_SetEventFilter
SDL_SetGamma
SDL_SetGammaRamp
SDL_SetModState
SDL_SetModuleHandle
SDL_SetPalette
SDL_SetTimer
SDL_SetVideoMode
SDL_ShowCursor
SDL_SoftStretch
SDL_ThreadID
SDL_UnloadObject
SDL_UnlockAudio
SDL_UnlockSurface
SDL_UnlockYUVOverlay
SDL_UnregisterApp
SDL_UpdateRect
SDL_UpdateRects
SDL_UpperBlit
SDL_VideoDriverName
SDL_VideoInit
SDL_VideoModeOK
SDL_VideoQuit
SDL_WM_GetCaption
SDL_WM_GrabInput
SDL_WM_IconifyWindow
SDL_WM_SetCaption
SDL_WM_SetIcon
SDL_WM_ToggleFullScreen
SDL_WaitEvent
SDL_WaitThread
SDL_WarpMouse
SDL_WasInit
SDL_WriteBE16
SDL_WriteBE32
SDL_WriteBE64
SDL_WriteLE16
SDL_WriteLE32
SDL_WriteLE64
SDL_getenv
SDL_iconv
SDL_iconv_close
SDL_iconv_open
SDL_iconv_string
SDL_memcmp
SDL_mutexP
SDL_mutexV
SDL_putenv
SDL_strlcat
SDL_strlcpy
SDL_strtod

Sections

.text
Size: 253KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 35KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avcodec-52.dll
.dll windows:4 windows x86 arch:x86

9ae56bb193dc9637de9da3f336c0a59d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

avcore-0

av_get_bits_per_sample_fmt
av_get_channel_layout
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_sample_fmt
av_get_sample_fmt_name
av_get_sample_fmt_string
av_image_alloc
av_image_check_size
av_image_copy
av_image_copy_plane
av_image_fill_linesizes
av_image_fill_pointers
av_image_get_linesize
av_parse_color
av_parse_video_rate
av_parse_video_size
ff_set_systematic_pal2

avutil-50

av_base64_decode
av_base64_encode
av_crc
av_crc_get_table
av_crc_init
av_d2q
av_default_item_name
av_div_q
av_evaluate_lls
av_expr_eval
av_expr_free
av_expr_parse
av_fifo_alloc
av_fifo_drain
av_fifo_free
av_fifo_generic_write
av_fifo_realloc2
av_fifo_size
av_find_opt
av_free
av_freep
av_gcd
av_get_bits_per_pixel
av_get_cpu_flags
av_get_double
av_get_int
av_get_pix_fmt
av_get_pix_fmt_string
av_get_q
av_get_string
av_init_lls
av_lfg_init
av_log
av_log_get_level
av_lzo1x_decode
av_malloc
av_mallocz
av_md5_final
av_md5_init
av_md5_size
av_md5_update
av_memcpy_backptr
av_next_option
av_opt_set_defaults
av_opt_set_defaults2
av_opt_show2
av_pix_fmt_descriptors
av_realloc
av_reduce
av_rescale_q
av_rescale_rnd
av_reverse
av_set_double
av_set_int
av_set_q
av_set_string3
av_solve_lls
av_strdup
av_strlcat
av_strlcpy
av_update_lls
av_vlog
ff_log2_tab
ff_sqrt_tab

kernel32

CloseHandle
CreateEventA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentThread
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetSystemInfo
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSemaphore
SetEvent
SetThreadPriority
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

_close
_fstat
_ftime
_open
_strdup
_tempnam
_unlink
_write
__dllonexit
__lc_codepage
__mb_cur_max
_assert
_beginthreadex
_errno
_filelengthi64
_iob
_setjmp
_stricmp
_strnicmp
_winmajor
abort
acos
asin
atan
atoi
calloc
ceil
cos
exit
exp
fclose
fflush
fgetc
fgetpos
floor
fopen
fprintf
fputc
fread
free
frexp
fseek
fsetpos
ftell
fwrite
getenv
isprint
ldexp
localeconv
log
log10
longjmp
malloc
memcpy
memmove
memset
pow
qsort
rand
realloc
rename
sin
sprintf
sqrt
srand
sscanf
strcat
strchr
strcmp
strcpy
strcspn
strlen
strncmp
strncpy
strpbrk
strspn
strstr
strtok
strtol
tan
tolower
toupper
vfprintf
vsprintf
wcslen

Exports

Exports

AACQuantize
AACQuantizeEnd
AACQuantizeInit
ABR_iteration_loop
AMRDecode
AMREncode
AMREncodeExit
AMREncodeInit
AMREncodeReset
ATHformula
A_Refl
AddVbrFrame
AmrWbInterpol
AmrWbUp_samp
AnalyzeSamples
AudioSpecificConfig2
AudioSpecificConfigFromBitfile
Autocorr
Az_lsp
Bgn_scd
Bgn_scd_reset
BitAllocation
BitSearch
BitrateIndex
Bits2prm
BitstreamReadHeaders
BitstreamWriteEndOfSequence
BitstreamWriteGroupOfVopHeader
BitstreamWriteUserData
BitstreamWriteVolHeader
BitstreamWriteVopHeader
CBR_iteration_loop
CN_dithering
CRC_writeheader
CalcAvgEnrg
CalcBits
Cb_gain_average
Cb_gain_average_reset
Chebps_Wrapper
CheckCandidate16no4v
CheckVbrTag
CloseBitStream
CodeCoeffInter_CalcBits
CodeCoeffIntra_CalcBits
Convolve
CopyPredInfo
DCT4_32
DST4_32
D_IF_decode
D_IF_exit
D_IF_init
D_plsf_3
D_plsf_5
D_plsf_reset
Dec_gain
Dec_lag3
Dec_lag6
Decoder_Interface_Decode
Decoder_Interface_exit
Decoder_Interface_init
Decoder_amr
Decoder_amr_init
Decoder_amr_reset
Disf_ns
Div_32
Dot_product12
Dpisf_2s_36b
Dpisf_2s_46b
Enc_lag3
Enc_lag6
Encoder_Interface_Encode
Encoder_Interface_exit
Encoder_Interface_init
Ex_ctrl
ExitMP3
FilterBank
FilterBankEnd
FilterBankInit
FindNearestBitrate
FullRefine_Fast
GASpecificConfig
GMEanalysis
GSMDecodeFrameExit
GSMEncodeFrame
GSMEncodeFrameExit
GSMFrameDecode
GSMInitDecode
GSMInitEncode
G_code
G_pitch
GetAlbumGain
GetChannelInfo
GetMaxPredSfb
GetSRIndex
GetTitleGain
GetVbrTag
Get_isp_pol
Get_isp_pol_16kHz
GlobalMotionEst
GlobalMotionEstRefine
Gsm_Coder
Gsm_Decoder
Gsm_LPC_Analysis
Gsm_Long_Term_Predictor
Gsm_Long_Term_Synthesis_Filtering
Gsm_Preprocess
Gsm_RPE_Decoding
Gsm_RPE_Encoding
Gsm_Short_Term_Analysis_Filter
Gsm_Short_Term_Synthesis_Filter
HP_gain
HuffmanEnd
HuffmanInit
IFilterBank
If2DecBytesPerFrame
If2EncBytesPerFrame
InitGainAnalysis
InitMP3
InitVbrTag
Init_D_plsf_3
Init_Lagconc
Int_lpc_1and3
Int_lpc_1and3_2
Int_lpc_1to3
Int_lpc_1to3_2
Int_lsf
Interpol_3or6
Inv_sqrt
Isf_isp
Isp_Az
L3psycho_anal_ns
L3psycho_anal_vbr
L_Comp
L_Extract
L_abs
L_negate
L_shr_r
Lag_max_wrapper
Lag_window
Levinson
Levinson_exit
Levinson_init
Levinson_reset
Lg2_normalized
Log2
Log2_norm
Log2_norm_table
Lsf_lsp
Lsf_wt
Lsp_Az
Lsp_lsf
LtpEncode
LtpEnd
LtpInit
LtpReconstruct
LtpUpdate
MBCoding
MBCodingBVOP
MBFieldTest
MBFieldTest_c
MBFrameToField
MBMotionCompensation
MBMotionCompensationBVOP
MBPrediction
MBTransQuantInter
MBTransQuantInterBVOP
MBTransQuantIntra
MEanalysis
MPV_common_defaults
MPV_common_end
MPV_common_init
MPV_common_init_mmx
MPV_decode_defaults
MPV_decode_mb
MPV_encode_end
MPV_encode_init
MPV_encode_picture
MPV_frame_end
MPV_frame_start
MR475_gain_quant
MR475_update_unq_pred
MR795_gain_quant
MSEncode
MSReconstruct
MaxBitrate
MaxBitresSize
MaxPredSfb
MinBitrate
ModeDecision_BVOP_RD
MotionEstimateSMP
MotionEstimation
MotionEstimationBVOP
NeAACDecAudioSpecificConfig
NeAACDecClose
NeAACDecDecode
NeAACDecDecode2
NeAACDecGetCapabilities
NeAACDecGetCurrentConfiguration
NeAACDecGetErrorMessage
NeAACDecInit
NeAACDecInit2
NeAACDecOpen
NeAACDecPostSeekReset
NeAACDecSetConfiguration
NoiselessBitCount
OC_BLOCK_RUN_CODE_NBITS
OC_DCT_TOKEN_EXTRA_BITS
OC_FZIG_ZAG
OC_IZIG_ZAG
OC_MB_MAP
OC_MB_MAP_IDXS
OC_MB_MAP_NIDXS
OC_MODE_BITS
OC_MV_BITS
OC_SB_RUN_CODE_NBITS
OC_SB_RUN_VAL_MIN
OC_SET_CHROMA_MVS_TABLE
OpenBitStream
OutputBits
Pit_shrp
Pitch_fr
Pitch_fr_exit
Pitch_fr_init
Pitch_fr_reset
Pitch_ol
Pitch_ol_wgh
Post_Filter
Post_Filter_reset
Post_Process
Post_Process_reset
Pow2
Pre_Process
Pre_Process_exit
Pre_Process_init
Pre_Process_reset
PredCalcPrediction
PredInit
Pred_lt4
Pred_lt_3or6
Prm2bits
PutBit
PutVbrTag
Q_plsf_3
Q_plsf_5
Q_plsf_exit
Q_plsf_init
Q_plsf_reset
Qua_gain
Reorder_isf
Reorder_lsf
ResetSampleFrequency
Residu
ResvAdjust
ResvFrameBegin
ResvFrameEnd
ResvMaxBits
SMPMotionEstimationBVOP
Serial_parm
Serial_parm_1bit
SmpFrqIndex
SortBookNumbers
SortForGrouping
Speech_Decode_Frame_reset
Speech_Encode_Frame_First
Speech_Encode_Frame_reset
Syn_filt
Syn_filt_32
TH_DEF_QUANT_INFO
TH_VP31_HUFF_CODES
TH_VP31_QUANT_INFO
TMNMVtab0
TMNMVtab1
TMNMVtab2
Test_Vq_subvec3
Test_Vq_subvec4
Test_build_code
Test_search_2i40
TnsDecodeFilterOnly
TnsEncode
TnsEncodeFilterOnly
TnsInit
UpdateMusicCRC
VBR_encode_frame
VBR_new_iteration_loop
VBR_old_iteration_loop
VP8_FILTER_SHIFT
VP8_FILTER_WEIGHT
VP8_UVSSE
Weight_Ai
WmfDecBytesPerFrame
WmfEncBytesPerFrame
WriteBitstream
WriteScalefactors
_book_maptype1_quantvals
_book_unquantize
_dist_code
_float32_pack
_float32_unpack
_floor_P
_get_output_format
_ilog
_length_code
_make_words
_mapping_P
_nm__av_md5_size
_nm__av_pix_fmt_descriptors
_nm__av_reverse
_nm__ff_log2_tab
_nm__ff_sqrt_tab
_residue_P
_tr_align
_tr_flush_block
_tr_init
_tr_stored_block
_tr_tally
_ve_envelope_clear
_ve_envelope_init
_ve_envelope_mark
_ve_envelope_search
_ve_envelope_shift
_vi_gpsy_free
_vi_psy_free
_vorbis_apply_window
_vorbis_block_alloc
_vorbis_block_ripcord
_vorbis_window_get
_vp_ampmax_decay
_vp_couple_quantize_normalize
_vp_global_free
_vp_global_look
_vp_noisemask
_vp_offset_and_mix
_vp_psy_clear
_vp_psy_init
_vp_tonemask
a64multi5_encoder
a64multi_encoder
aac_adtstoasc_bsf
aac_decoder
aac_encoder
aac_latm_decoder
aac_latm_parser
aac_parser
aasc_decoder
abgr_to_yv12
abgr_to_yv12_c
abgri_to_yv12
abgri_to_yv12_c
ac3_common_init
ac3_decoder
ac3_encoder
ac3_fixed_encoder
ac3_parametric_bit_allocation
ac3_parser
add_16
add_acdc
add_dummy_byte
add_noise
add_pulses
adj43asm
adler32
adler32_combine
adpcm_4xm_decoder
adpcm_adx_decoder
adpcm_adx_encoder
adpcm_ct_decoder
adpcm_ea_decoder
adpcm_ea_maxis_xa_decoder
adpcm_ea_r1_decoder
adpcm_ea_r2_decoder
adpcm_ea_r3_decoder
adpcm_ea_xas_decoder
adpcm_g722_decoder
adpcm_g722_encoder
adpcm_g726_decoder
adpcm_g726_encoder
adpcm_ima_amv_decoder
adpcm_ima_dk3_decoder
adpcm_ima_dk4_decoder
adpcm_ima_ea_eacs_decoder
adpcm_ima_ea_sead_decoder
adpcm_ima_iss_decoder
adpcm_ima_qt_decoder
adpcm_ima_qt_encoder
adpcm_ima_smjpeg_decoder
adpcm_ima_wav_decoder
adpcm_ima_wav_encoder
adpcm_ima_ws_decoder
adpcm_ms_decoder
adpcm_ms_encoder
adpcm_sbpro_2_decoder
adpcm_sbpro_3_decoder
adpcm_sbpro_4_decoder
adpcm_swf_decoder
adpcm_swf_encoder
adpcm_thp_decoder
adpcm_xa_decoder
adpcm_yamaha_decoder
adpcm_yamaha_encoder
adts_frame
agc
agc2
agc2_amr_wb
agc_reset
alac_decoder
alac_encoder
align_put_bits
alloc_0
alloc_1
alloc_2
alloc_3
alloc_4
als_decoder
amrnb_decoder
amrwb_decoder
amrwb_log_2
amv_decoder
anm_decoder
ansi_decoder
ape_decoder
apply_preset
argb_to_yv12
argb_to_yv12_c
argbi_to_yv12
argbi_to_yv12_c
ass_decoder
ass_encoder
asv1_decoder
asv1_encoder
asv2_decoder
asv2_encoder
athAdjust
atrac1_decoder
atrac3_decoder
atrac_generate_tables
atrac_iqmf
audio_resample
audio_resample_close
audio_resample_init
audiodata_precedesframes
aura2_decoder
aura_decoder
av_audio_convert
av_audio_convert_alloc
av_audio_convert_free
av_audio_resample_init
av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_bitstream_filter_next
av_codec_next
av_dct_calc
av_dct_end
av_dct_init
av_destruct_packet
av_destruct_packet_nofree
av_dup_packet
av_fast_malloc
av_fast_realloc
av_fft_calc
av_fft_end
av_fft_init
av_fft_permute
av_find_opt@LIBAVCODEC_52
av_free_packet
av_get_bits_per_sample
av_get_bits_per_sample_format
av_get_codec_tag_string
av_get_double@LIBAVCODEC_52
av_get_int@LIBAVCODEC_52
av_get_pict_type_char
av_get_profile_name
av_get_q@LIBAVCODEC_52
av_get_string@LIBAVCODEC_52
av_grow_packet
av_hwaccel_next
av_imdct_calc
av_imdct_half
av_init_packet
av_lockmgr_register
av_log_ask_for_sample
av_log_missing_feature
av_mdct_calc
av_mdct_end
av_mdct_init
av_new_packet
av_next_option@LIBAVCODEC_52
av_opt_set_defaults2@LIBAVCODEC_52
av_opt_set_defaults@LIBAVCODEC_52
av_opt_show
av_opt_show2@LIBAVCODEC_52
av_parse_video_frame_rate
av_parse_video_frame_size
av_parser_change
av_parser_close
av_parser_init
av_parser_next
av_parser_parse
av_parser_parse2
av_picture_copy

Sections

.text
Size: 6.2MB - Virtual size: 6.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avcore-0.dll
.dll windows:4 windows x86 arch:x86

1a072753032f052133707d0fc7c4b8e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

avutil-50

av_d2q
av_default_item_name
av_expr_parse_and_eval
av_free
av_get_random_seed
av_log
av_malloc
av_pix_fmt_descriptors
av_strlcat
av_strlcpy

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__dllonexit
__lc_codepage
__mb_cur_max
_errno
_iob
_stricmp
_winmajor
abort
bsearch
calloc
fflush
fputc
free
fwrite
getenv
localeconv
malloc
memcpy
strchr
strcmp
strlen
strspn
strtol
strtoul
vfprintf
wcslen

Exports

Exports

av_check_image_size
av_fill_image_linesizes
av_fill_image_max_pixsteps
av_fill_image_pointers
av_get_bits_per_sample_fmt
av_get_channel_layout
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_image_linesize
av_get_sample_fmt
av_get_sample_fmt_name
av_get_sample_fmt_string
av_image_alloc
av_image_check_size
av_image_copy
av_image_copy_plane
av_image_fill_linesizes
av_image_fill_max_pixsteps
av_image_fill_pointers
av_image_get_linesize
av_parse_color
av_parse_video_rate
av_parse_video_size
avcore_configuration
avcore_license
avcore_version
ff_set_systematic_pal2

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 911B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avdevice-52.dll
.dll windows:4 windows x86 arch:x86

bf782339c6b9e313c488aa58c537a702

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

avcodec-52

av_destruct_packet
av_new_packet

avformat-52

av_new_stream
av_register_input_format
av_set_pts_info

avutil-50

av_free
av_log
av_malloc
av_mallocz

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

kernel32

CloseHandle
CreateEventA
CreateMutexA
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
ReleaseMutex
ResetEvent
SetEvent
TlsGetValue
VirtualProtect
VirtualQuery
WaitForSingleObject

msvcrt

__dllonexit
_errno
_iob
_winmajor
abort
atoi
calloc
fflush
free
fwrite
malloc
memcpy
vfprintf

user32

DestroyWindow
GetWindowLongA
SendMessageA
SetWindowLongA

Exports

Exports

avdevice_configuration
avdevice_license
avdevice_register_all
avdevice_version

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 252B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 175B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 532B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avfilter-1.dll
.dll windows:4 windows x86 arch:x86

e2b4c0965479ee49c4d9710f6755d9ef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

avcodec-52

av_free_packet
av_picture_data_copy
avcodec_alloc_frame
avcodec_close
avcodec_decode_video2
avcodec_find_decoder
avcodec_open

avcore-0

av_get_bits_per_sample_fmt
av_get_channel_layout
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_image_alloc
av_image_check_size
av_image_copy
av_image_copy_plane
av_image_fill_max_pixsteps
av_image_get_linesize
av_parse_color
av_parse_video_rate
av_parse_video_size

avformat-52

av_close_input_file
av_find_input_format
av_find_stream_info
av_open_input_file
av_read_frame
av_register_all
av_seek_frame

avutil-50

av_d2q
av_expr_eval
av_expr_free
av_expr_parse
av_expr_parse_and_eval
av_free
av_freep
av_gcd
av_get_bits_per_pixel
av_get_cpu_flags
av_get_pix_fmt
av_get_token
av_log
av_malloc
av_mallocz
av_pix_fmt_descriptors
av_read_image_line
av_realloc
av_reduce
av_rescale
av_rescale_q
av_strdup
av_strlcpy
av_write_image_line

swscale-0

sws_freeContext
sws_getContext
sws_isSupportedInput
sws_isSupportedOutput
sws_scale

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__dllonexit
__lc_codepage
__mb_cur_max
_assert
_errno
_iob
_winmajor
abort
calloc
cos
fflush
fputc
free
fwrite
getenv
localeconv
log
malloc
memcpy
memmove
memset
pow
sin
sscanf
strchr
strcmp
strlen
strspn
strstr
strtol
strtoul
vfprintf
wcslen

Exports

Exports

av_filter_next
av_vsrc_buffer_add_frame
avfilter_add_format
avfilter_af_anull
avfilter_all_formats
avfilter_asink_anullsink
avfilter_asrc_anullsrc
avfilter_config_links
avfilter_configuration
avfilter_default_config_output_link
avfilter_default_draw_slice
avfilter_default_end_frame
avfilter_default_filter_samples
avfilter_default_get_audio_buffer
avfilter_default_get_video_buffer
avfilter_default_query_formats
avfilter_default_start_frame
avfilter_draw_slice
avfilter_end_frame
avfilter_filter_samples
avfilter_formats_changeref
avfilter_formats_ref
avfilter_formats_unref
avfilter_free
avfilter_get_audio_buffer
avfilter_get_by_name
avfilter_get_video_buffer
avfilter_get_video_buffer_ref_from_arrays
avfilter_graph_add_filter
avfilter_graph_alloc
avfilter_graph_config
avfilter_graph_create_filter
avfilter_graph_free
avfilter_graph_get_filter
avfilter_graph_parse
avfilter_init_filter
avfilter_insert_filter
avfilter_insert_pad
avfilter_license
avfilter_link
avfilter_make_format_list
avfilter_merge_formats
avfilter_null_draw_slice
avfilter_null_end_frame
avfilter_null_filter_samples
avfilter_null_get_audio_buffer
avfilter_null_get_video_buffer
avfilter_null_start_frame
avfilter_open
avfilter_poll_frame
avfilter_ref_buffer
avfilter_register
avfilter_register_all
avfilter_request_frame
avfilter_set_common_formats
avfilter_start_frame
avfilter_uninit
avfilter_unref_buffer
avfilter_version
avfilter_vf_blackframe
avfilter_vf_copy
avfilter_vf_crop
avfilter_vf_cropdetect
avfilter_vf_drawbox
avfilter_vf_fade
avfilter_vf_fifo
avfilter_vf_format
avfilter_vf_fps
avfilter_vf_gradfun
avfilter_vf_hflip
avfilter_vf_hqdn3d
avfilter_vf_negate
avfilter_vf_noformat
avfilter_vf_null
avfilter_vf_overlay
avfilter_vf_pad
avfilter_vf_pixdesctest
avfilter_vf_rotate
avfilter_vf_scale
avfilter_vf_setdar
avfilter_vf_setpts
avfilter_vf_setsar
avfilter_vf_settb
avfilter_vf_slicify
avfilter_vf_split
avfilter_vf_transpose
avfilter_vf_unsharp
avfilter_vf_vflip
avfilter_vf_yadif
avfilter_vsink_nullsink
avfilter_vsrc_buffer
avfilter_vsrc_color
avfilter_vsrc_movie
avfilter_vsrc_nullsrc

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avformat-52.dll
.dll windows:4 windows x86 arch:x86

9f78cbea12c30c5cb43d77cd8daad504

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

avcodec-52

av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_destruct_packet
av_destruct_packet_nofree
av_dup_packet
av_fast_malloc
av_fast_realloc
av_free_packet
av_get_bits_per_sample
av_get_codec_tag_string
av_grow_packet
av_init_packet
av_log_ask_for_sample
av_log_missing_feature
av_new_packet
av_parser_close
av_parser_init
av_parser_parse2
av_shrink_packet
av_xiphlacing
avcodec_alloc_context
avcodec_close
avcodec_copy_context
avcodec_decode_audio3
avcodec_decode_video2
avcodec_find_decoder
avcodec_find_encoder
avcodec_get_chroma_sub_sample
avcodec_get_frame_defaults
avcodec_open
avcodec_pix_fmt_to_codec_tag
avcodec_register_all
avcodec_set_dimensions
avcodec_string
avpicture_get_size
ff_aac_parse_header
ff_ac3_parse_header
ff_copy_pce_data
ff_dirac_parse_sequence_header
ff_dv_codec_profile
ff_dv_frame_profile
ff_find_start_code
ff_flac_is_extradata_valid
ff_flac_parse_block_header
ff_flac_parse_streaminfo
ff_frame_rate_tab
ff_mpa_bitrate_tab
ff_mpa_decode_header
ff_mpa_freq_tab
ff_mpeg4audio_get_config
ff_mpeg4audio_sample_rates
ff_mpegaudio_decode_header
ff_split_xiph_headers
ff_toupper4
inflate
inflateEnd
inflateInit_
uncompress

avcore-0

av_get_bits_per_sample_fmt
av_parse_video_rate
av_parse_video_size

avutil-50

av_adler32_update
av_aes_crypt
av_aes_init
av_aes_size
av_base64_decode
av_base64_encode
av_compare_mod
av_compare_ts
av_crc
av_crc_get_table
av_d2q
av_dbl2ext
av_dbl2int
av_default_item_name
av_des_crypt
av_des_init
av_div_q
av_ext2dbl
av_fifo_alloc
av_fifo_drain
av_fifo_free
av_fifo_generic_read
av_fifo_generic_write
av_fifo_realloc2
av_fifo_size
av_free
av_freep
av_gcd
av_get_random_seed
av_int2dbl
av_int2flt
av_lfg_init
av_log
av_lzo1x_decode
av_malloc
av_mallocz
av_md5_final
av_md5_init
av_md5_size
av_md5_sum
av_md5_update
av_mul_q
av_opt_set_defaults
av_rc4_crypt
av_rc4_init
av_realloc
av_reduce
av_rescale
av_rescale_q
av_rescale_rnd
av_sha_final
av_sha_init
av_sha_size
av_sha_update
av_strdup
av_stristart
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strstart
av_tree_destroy
av_tree_enumerate
av_tree_find
av_tree_insert
av_tree_node_size
ff_log2_tab

avifil32

AVIFileExit
AVIFileGetStream
AVIFileInfoA
AVIFileInit
AVIFileOpenA
AVIFileRelease
AVIStreamInfoA
AVIStreamRead
AVIStreamReadFormat
AVIStreamRelease

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

_close
_fdopen
_open
_read
_setmode
_write
__dllonexit
__lc_codepage
__mb_cur_max
_assert
_atoi64
_errno
_fstati64
_iob
_isctype
_lseeki64
_pctype
_stricmp
_strnicmp
_winmajor
abort
atoi
bsearch
calloc
exit
fclose
fflush
fgetc
floor
fopen
fprintf
fputc
fread
free
fwrite
getenv
gmtime
isspace
localeconv
localtime
malloc
memchr
memcpy
memmove
memset
mktime
qsort
sscanf
strcat
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncat
strncmp
strncpy
strrchr
strspn
strstr
strtol
time
toupper
ungetc
vfprintf
wcslen

ws2_32

WSACleanup
WSAGetLastError
WSAStartup
__WSAFDIsSet
bind
closesocket
connect
gethostbyaddr
gethostbyname
gethostname
getpeername
getservbyport
getsockname
getsockopt
htonl
htons
ioctlsocket
ntohl
ntohs
recv
recvfrom
select
send
sendto
setsockopt
socket

Exports

Exports

BZ2_blockSort
BZ2_bsInitWrite
BZ2_bzBuffToBuffCompress
BZ2_bzBuffToBuffDecompress
BZ2_bzCompress
BZ2_bzCompressEnd
BZ2_bzCompressInit
BZ2_bzDecompress
BZ2_bzDecompressEnd
BZ2_bzDecompressInit
BZ2_bzRead
BZ2_bzReadClose
BZ2_bzReadGetUnused
BZ2_bzReadOpen
BZ2_bzWrite
BZ2_bzWriteClose
BZ2_bzWriteClose64
BZ2_bzWriteOpen
BZ2_bz__AssertH__fail
BZ2_bzclose
BZ2_bzdopen
BZ2_bzerror
BZ2_bzflush
BZ2_bzlibVersion
BZ2_bzopen
BZ2_bzread
BZ2_bzwrite
BZ2_compressBlock
BZ2_crc32Table
BZ2_decompress
BZ2_hbAssignCodes
BZ2_hbCreateDecodeTables
BZ2_hbMakeCodeLengths
BZ2_indexIntoF
BZ2_rNums
RTPFirstDynamicPayloadHandler
_get_output_format
_nm__av_aes_size
_nm__av_md5_size
_nm__av_sha_size
_nm__av_tree_node_size
_nm__ff_frame_rate_tab
_nm__ff_log2_tab
_nm__ff_mpa_bitrate_tab
_nm__ff_mpa_freq_tab
_nm__ff_mpeg4audio_sample_rates
a64_muxer
aac_demuxer
ac3_demuxer
ac3_muxer
adts_muxer
aea_demuxer
aiff_demuxer
aiff_muxer
amr_demuxer
amr_muxer
anm_demuxer
apc_demuxer
ape_demuxer
applehttp_demuxer
asf_demuxer
asf_muxer
asf_stream_muxer
ass_demuxer
ass_muxer
au_demuxer
au_muxer
av_add_index_entry
av_alloc_format_context
av_alloc_put_byte
av_append_packet
av_close_input_file
av_close_input_stream
av_codec_get_id
av_codec_get_tag
av_convert_lang_to
av_destruct_packet@LIBAVFORMAT_52
av_destruct_packet_nofree@LIBAVFORMAT_52
av_dup_packet@LIBAVFORMAT_52
av_filename_number_test
av_find_best_stream
av_find_default_stream_index
av_find_input_format
av_find_stream_info
av_free_packet@LIBAVFORMAT_52
av_gen_search
av_get_frame_filename
av_get_packet
av_gettime
av_guess_codec
av_guess_format
av_guess_image2_codec
av_hex_dump
av_hex_dump_log
av_iformat_next
av_index_search_timestamp
av_init_packet@LIBAVFORMAT_52
av_interleave_packet_per_dts
av_interleaved_write_frame
av_match_ext
av_metadata_conv
av_metadata_copy
av_metadata_free
av_metadata_get
av_metadata_set
av_metadata_set2
av_new_packet@LIBAVFORMAT_52
av_new_program
av_new_stream
av_oformat_next
av_open_input_file
av_open_input_stream
av_pkt_dump
av_pkt_dump_log
av_probe_input_format
av_probe_input_format2
av_protocol_next
av_read_frame
av_read_packet
av_read_pause
av_read_play
av_register_all
av_register_input_format
av_register_output_format
av_register_protocol
av_register_protocol2
av_register_rdt_dynamic_payload_handlers
av_register_rtp_dynamic_payload_handlers
av_seek_frame
av_seek_frame_binary
av_set_parameters
av_set_pts_info
av_update_cur_dts
av_url_read_fpause
av_url_read_fseek
av_url_read_pause
av_url_read_seek
av_url_split
av_write_frame
av_write_header
av_write_trailer
avf_sdp_create
avformat_alloc_context
avformat_configuration
avformat_license
avformat_seek_file
avformat_version
avi_demuxer
avi_muxer
avisynth_demuxer
avm2_muxer
avs_demuxer
bethsoftvid_demuxer
bfi_demuxer
bink_demuxer
brktimegm
c93_demuxer
caf_demuxer
cavsvideo_demuxer
cavsvideo_muxer
cdg_demuxer
codec_movaudio_tags
codec_movvideo_tags
concat_protocol
crc_muxer
daud_demuxer
daud_muxer
dirac_demuxer
dirac_muxer
dnxhd_demuxer
dnxhd_muxer
dsicin_demuxer
dts_demuxer
dts_muxer
dump_format
dv_assemble_frame
dv_delete_mux
dv_demuxer
dv_get_packet
dv_init_demux
dv_init_mux
dv_muxer
dv_offset_reset
dv_produce_packet
dxa_demuxer
ea_cdata_demuxer
ea_demuxer
eac3_demuxer
eac3_muxer
ff_adts_decode_extradata
ff_adts_write_frame_header
ff_amf_get_field_value
ff_amf_tag_size
ff_amf_write_bool
ff_amf_write_field_name
ff_amf_write_null
ff_amf_write_number
ff_amf_write_object_end
ff_amf_write_object_start
ff_amf_write_string
ff_amr_nb_dynamic_handler
ff_amr_wb_dynamic_handler
ff_ape_parse_tag
ff_asf_audio_conceal_none
ff_asf_audio_conceal_spread
ff_asf_audio_stream
ff_asf_codec_comment1_header
ff_asf_codec_comment_header
ff_asf_command_stream
ff_asf_comment_header
ff_asf_content_encryption
ff_asf_data_header
ff_asf_digital_signature
ff_asf_ext_content_encryption
ff_asf_ext_stream_audio_stream
ff_asf_ext_stream_embed_stream_header
ff_asf_ext_stream_header
ff_asf_extended_content_header
ff_asf_file_header
ff_asf_head1_guid
ff_asf_head2_guid
ff_asf_header
ff_asf_jfif_media
ff_asf_language_guid
ff_asf_marker_header
ff_asf_metadata_conv
ff_asf_metadata_header
ff_asf_my_guid
ff_asf_simple_index_header
ff_asf_stream_header
ff_asf_video_conceal_none
ff_asf_video_stream
ff_asfcrypt_dec
ff_audio_interleave_close
ff_audio_interleave_init
ff_audio_rechunk_interleave
ff_avc_find_startcode
ff_avc_parse_nal_units
ff_avc_parse_nal_units_buf
ff_avi_metadata_conv
ff_avi_tags
ff_codec_bmp_tags
ff_codec_caf_tags
ff_codec_get_id
ff_codec_get_tag
ff_codec_movsubtitle_tags
ff_codec_rso_tags
ff_codec_wav_tags
ff_crc04C11DB7_update
ff_data_to_hex
ff_dirac_codec
ff_dynarray_add
ff_end_tag
ff_find_stream_index
ff_flac_codec
ff_flac_write_header
ff_free_parser_state
ff_freeaddrinfo
ff_gai_strerror
ff_gen_syncpoint_search
ff_get_bmp_header
ff_get_guid
ff_get_line
ff_get_v
ff_get_v_length
ff_get_wav_header
ff_getaddrinfo
ff_getnameinfo
ff_guidcmp
ff_h263_1998_dynamic_handler
ff_h263_2000_dynamic_handler
ff_h264_dynamic_handler
ff_hex_to_data
ff_http_auth_create_response
ff_http_auth_handle_header
ff_http_init_auth_state
ff_http_set_chunked_transfer_encoding
ff_http_set_headers
ff_id3v1_genre_str
ff_id3v1_read
ff_id3v2_match
ff_id3v2_metadata_conv
ff_id3v2_parse
ff_id3v2_read
ff_id3v2_tag_len
ff_id3v2_tags
ff_inet_aton
ff_interleave_add_packet
ff_interleave_compare_dts
ff_isom_write_avcc
ff_lsb2full
ff_metadata_conv
ff_metadata_conv_ctx
ff_metadata_demux_compat
ff_metadata_mux_compat
ff_mkv_codec_tags
ff_mkv_metadata_conv
ff_mkv_mime_tags
ff_mms_asf_header_parser
ff_mms_read_data
ff_mms_read_header
ff_mov_add_hinted_packet
ff_mov_close_hinting
ff_mov_get_lpcm_codec_id
ff_mov_init_hinting
ff_mov_iso639_to_lang
ff_mov_lang_to_iso639
ff_mov_read_esds
ff_mov_read_stsd_entries
ff_mov_write_packet
ff_mp4_obj_type
ff_mp4_read_dec_config_descr
ff_mp4_read_descr
ff_mp4_read_descr_len
ff_mp4a_latm_dynamic_handler
ff_mp4v_es_dynamic_handler
ff_mpeg4_generic_dynamic_handler
ff_mpegts_parse_close
ff_mpegts_parse_open
ff_mpegts_parse_packet
ff_ms_rtp_asf_pfa_handler
ff_ms_rtp_asf_pfv_handler
ff_mxf_codec_uls
ff_mxf_data_definition_uls
ff_mxf_decode_pixel_layout
ff_mxf_pixel_layouts
ff_new_chapter
ff_ntp_time
ff_nut_add_sp
ff_nut_dispositions
ff_nut_free_sp
ff_nut_metadata_conv
ff_nut_reset_ts
ff_nut_sp_pos_cmp
ff_nut_sp_pts_cmp
ff_nut_subtitle_tags
ff_nut_video_tags
ff_ogm_audio_codec
ff_ogm_old_codec
ff_ogm_text_codec
ff_ogm_video_codec
ff_old_dirac_codec
ff_old_flac_codec
ff_parse_fmtp
ff_parse_key_value
ff_parse_mpeg2_descriptor
ff_parse_specific_params
ff_probe_input_buffer
ff_program_add_stream_index
ff_put_bmp_header
ff_put_str16_nolen
ff_put_v
ff_put_wav_header
ff_qcelp_dynamic_handler
ff_qdm2_dynamic_handler
ff_qt_rtp_aud_handler
ff_qt_rtp_vid_handler
ff_quicktime_rtp_aud_handler
ff_quicktime_rtp_vid_handler
ff_raw_audio_read_header
ff_raw_read_header
ff_raw_read_partial_packet
ff_raw_video_read_header
ff_raw_write_packet
ff_rdt_calc_response_and_checksum
ff_rdt_parse_close
ff_rdt_parse_header
ff_rdt_parse_open
ff_rdt_parse_packet
ff_rdt_subscribe_rule
ff_read_frame_flush
ff_real_parse_sdp_a_line
ff_realmedia_mp3_dynamic_handler
ff_reduce_index
ff_register_dynamic_payload_handler
ff_restore_parser_state
ff_rewind_with_probe_data
ff_rm_alloc_rmstream
ff_rm_codec_tags
ff_rm_free_rmstream
ff_rm_metadata
ff_rm_parse_packet
ff_rm_read_mdpr_codecdata
ff_rm_reorder_sipr_data
ff_rm_retrieve_cache
ff_rtmp_packet_create
ff_rtmp_packet_destroy
ff_rtmp_packet_dump
ff_rtmp_packet_read
ff_rtmp_packet_write
ff_rtp_chain_mux_open
ff_rtp_codec_id
ff_rtp_enc_name
ff_rtp_get_codec_info
ff_rtp_get_payload_type
ff_rtp_handler_find_by_id
ff_rtp_handler_find_by_name
ff_rtp_queued_packet_time
ff_rtp_reset_packet_queue
ff_rtp_send_aac
ff_rtp_send_amr
ff_rtp_send_data
ff_rtp_send_h263
ff_rtp_send_h264
ff_rtp_send_mpegvideo
ff_rtp_send_vp8
ff_rtp_send_xiph
ff_rtsp_close_connections
ff_rtsp_close_streams
ff_rtsp_connect
ff_rtsp_fetch_packet
ff_rtsp_next_attr_and_value
ff_rtsp_parse_line
ff_rtsp_read_reply
ff_rtsp_send_cmd
ff_rtsp_send_cmd_async
ff_rtsp_send_cmd_with_content
ff_rtsp_send_cmd_with_content_async
ff_rtsp_setup_input_streams
ff_rtsp_setup_output_streams
ff_rtsp_skip_packet
ff_rtsp_tcp_read_packet
ff_sauce_read
ff_sdp_parse
ff_sdp_write_media
ff_sipr_subpk_size
ff_skeleton_codec
ff_socket_nonblock
ff_spdif_bswap_buf16
ff_speex_codec
ff_start_tag
ff_store_parser_state
ff_svq3_dynamic_handler
ff_theora_codec
ff_theora_dynamic_handler
ff_url_join
ff_url_split
ff_voc_codec_tags
ff_voc_magic
ff_vorbis_codec
ff_vorbis_comment
ff_vorbis_dynamic_handler
ff_vorbiscomment_length
ff_vorbiscomment_metadata_conv
ff_vorbiscomment_write
ff_vp8_dynamic_handler
ff_wav_codec_get_id
ff_wms_parse_sdp_a_line
ff_write_chained
ffm_demuxer
ffm_muxer
ffmetadata_demuxer
ffmetadata_muxer
file_protocol
filmstrip_demuxer
filmstrip_muxer
find_info_tag
first_iformat
first_oformat
first_protocol
flac_demuxer
flac_muxer
flic_demuxer
flv_demuxer
flv_muxer
fourxm_demuxer
framecrc_muxer
framemd5_muxer
g722_demuxer
g722_muxer
get_be16
get_be24
get_be32
get_be64
get_buffer
get_byte
get_checksum
get_le16
get_le24
get_le32
get_le64
get_partial_buffer
get_strz
gif_demuxer
gif_muxer
gopher_protocol
gsm_demuxer
guess_format
guess_stream_format
gxf_demuxer
gxf_muxer
h261_demuxer
h261_muxer
h263_demuxer
h263_muxer
h264_demuxer
h264_muxer
http_protocol
idcin_demuxer
iff_demuxer

Sections

.text
Size: 758KB - Virtual size: 758KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avutil-50.dll
.dll windows:4 windows x86 arch:x86

da108212982b2fdb610d0cbc51ba8955

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileMappingA
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetConsoleScreenBufferInfo
GetLastError
GetModuleHandleA
GetProcAddress
GetStdHandle
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MapViewOfFile
MultiByteToWideChar
SetConsoleTextAttribute
Sleep
TlsGetValue
UnmapViewOfFile
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

_close
_fstat
_isatty
_open
_read
__dllonexit
__lc_codepage
__mb_cur_max
_assert
_errno
_get_osfhandle
_iob
_winmajor
abort
acos
asin
atan
calloc
clock
cos
cosh
exp
fflush
floor
fputc
fputs
free
frexp
fwrite
getenv
isspace
ldexp
localeconv
log
malloc
memcpy
memset
pow
realloc
sin
sinh
strchr
strcmp
strcpy
strlen
strspn
tan
tanh
toupper
vfprintf
wcslen

Exports

Exports

av_add_q
av_adler32_update
av_aes_crypt
av_aes_init
av_aes_size
av_base64_decode
av_base64_encode
av_bmg_get
av_compare_mod
av_compare_ts
av_crc
av_crc_get_table
av_crc_init
av_d2q
av_d2str
av_dbl2ext
av_dbl2int
av_default_item_name
av_des_crypt
av_des_init
av_div_q
av_eval_expr
av_evaluate_lls
av_expr_eval
av_expr_free
av_expr_parse
av_expr_parse_and_eval
av_ext2dbl
av_fifo_alloc
av_fifo_drain
av_fifo_free
av_fifo_generic_read
av_fifo_generic_write
av_fifo_realloc2
av_fifo_reset
av_fifo_size
av_fifo_space
av_file_map
av_file_unmap
av_find_nearest_q_idx
av_find_opt
av_flt2int
av_free
av_free_expr
av_freep
av_gcd
av_get_bits_per_pixel
av_get_cpu_flags
av_get_double
av_get_int
av_get_pix_fmt
av_get_pix_fmt_string
av_get_q
av_get_random_seed
av_get_string
av_get_token
av_init_lls
av_int2dbl
av_int2flt
av_lfg_init
av_log
av_log_default_callback
av_log_get_level
av_log_level
av_log_set_callback
av_log_set_flags
av_log_set_level
av_lzo1x_decode
av_malloc
av_mallocz
av_md5_final
av_md5_init
av_md5_size
av_md5_sum
av_md5_update
av_memcpy_backptr
av_mul_q
av_nearer_q
av_next_option
av_opt_set_defaults
av_opt_set_defaults2
av_opt_show2
av_parse_and_eval_expr
av_parse_expr
av_pix_fmt_descriptors
av_rc4_crypt
av_rc4_init
av_read_image_line
av_realloc
av_reduce
av_rescale
av_rescale_q
av_rescale_rnd
av_reverse
av_set_double
av_set_int
av_set_options_string
av_set_q
av_set_string3
av_sha1_final
av_sha1_init
av_sha1_size
av_sha1_update
av_sha_final
av_sha_init
av_sha_size
av_sha_update
av_solve_lls
av_strdup
av_strerror
av_stristart
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strstart
av_strtod
av_sub_q
av_tree_destroy
av_tree_enumerate
av_tree_find
av_tree_insert
av_tree_node_size
av_update_lls
av_vlog
av_write_image_line
avutil_configuration
avutil_license
avutil_version
ff_get_cpu_flags_x86
ff_inverse
ff_log2_tab
ff_random_get_seed
ff_sqrt_tab

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
const.dat
lang/English.lan
res/banner.html
.html
res/buynow.gif
.gif
res/categories_en.html
.js
res/icon48/01.png
.png
res/icon48/011.png
.png
res/icon48/02.png
.png
res/icon48/03.png
.png
res/icon48/04.png
.png
res/icon48/05.png
.png
res/icon48/06.png
.png
res/images/All.jpg
.jpg
res/images/Blues.jpg
.jpg
res/images/Classical.jpg
.jpg
res/images/Country & Folk.jpg
.jpg
res/images/Electronic.jpg
.jpg
res/images/Indie & Alertnative.jpg
.jpg
res/images/Jazz.jpg
.jpg
res/images/More & Other.jpg
.jpg
res/images/Pop.jpg
.jpg
res/images/R&B & Soul.jpg
.jpg
res/images/Rap & Hip-Hop.jpg
.jpg
res/images/Religious.jpg
.jpg
res/images/Rock.jpg
.jpg
res/images/World Music.jpg
.jpg
res/images/_download.gif
.gif
res/images/_downloading.gif
.gif
res/images/_play.gif
.gif
res/images/_playing.gif
.gif
res/images/_popunit.gif
.gif
res/images/_star.gif
.gif
res/images/_tabheadbg.gif
.gif
res/images/about.png
.png
res/images/bg.jpg
.jpg
res/images/buynow.gif
.gif
res/images/c_cospel.jpg
.jpg
res/images/entersn.gif
.gif
res/images/trialbg.png
.png
res/keywordlist_en.html
.js
res/loading.swf
res/player.dat
res/regpage.html
.html .js polyglot
res/result_en.html
.js
res/trialnotify.mht
.eml
attachment-2
.gif
email-html-1.txt
res/welcome.html
.html
res/welcome.swf
skins/default.skn
swscale-0.dll
.dll windows:4 windows x86 arch:x86

45704a1cb74cdac4fd049d848fd3ca6b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

avutil-50

av_free
av_freep
av_get_bits_per_pixel
av_log
av_malloc
av_mallocz
av_opt_set_defaults
av_pix_fmt_descriptors

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
TlsGetValue
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery

msvcrt

__dllonexit
_errno
_iob
_winmajor
abort
calloc
ceil
cos
exp
fflush
free
fwrite
malloc
memcpy
memset
pow
sin
vfprintf

Exports

Exports

ff_M24A
ff_M24B
ff_M24C
ff_bgr2UCoeff
ff_bgr2UVOffset
ff_bgr2VCoeff
ff_bgr2YCoeff
ff_bgr2YOffset
ff_dither4
ff_dither8
ff_getSwsFunc
ff_get_unscaled_swscale
ff_hardcodedcpuflags
ff_w1111
ff_yuv2rgb_c_init_tables
ff_yuv2rgb_coeffs
ff_yuv2rgb_get_func_ptr
ff_yuv2rgb_init_mmx
sws_addVec
sws_allocVec
sws_alloc_context
sws_cloneVec
sws_context_class
sws_convVec
sws_convertPalette8ToPacked24
sws_convertPalette8ToPacked32
sws_format_name
sws_freeContext
sws_freeFilter
sws_freeVec
sws_getCachedContext
sws_getCoefficients
sws_getColorspaceDetails
sws_getConstVec
sws_getContext
sws_getDefaultFilter
sws_getGaussianVec
sws_getIdentityVec
sws_init_context
sws_isSupportedInput
sws_isSupportedOutput
sws_normalizeVec
sws_printVec
sws_printVec2
sws_rgb2rgb_init
sws_scale
sws_scaleVec
sws_scale_ordered
sws_setColorspaceDetails
sws_shiftVec
sws_subVec
swscale_configuration
swscale_license
swscale_version

Sections

.text
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 380B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninst.exe
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp

Sharing

General

Malware Config

Signatures

Files

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 44KB

.rsrc Size: 20KB - Virtual size: 19KB

1e06b1e51c07b4f145d681ea3c56d9b6

Headers

File Characteristics

Imports

oleaut32

advapi32

user32

kernel32

msimg32

gdi32

version

ole32

comctl32

wininet

shell32

winspool.drv

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.itext Size: 4KB - Virtual size: 4KB

.data Size: 30KB - Virtual size: 30KB

.bss Size: - Virtual size: 26KB

.idata Size: 14KB - Virtual size: 14KB

.didata Size: 1024B - Virtual size: 806B

.tls Size: - Virtual size: 60B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 96KB - Virtual size: 95KB

.rsrc Size: 192KB - Virtual size: 192KB

dec6b15c0428dbfe68002d314aeabddf

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 1024B - Virtual size: 65KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1KB - Virtual size: 1KB

7fa974366048f9c551ef45714595665e

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

37:36:da:15:af:64:76:32:cc:e6:1c:d4:1b:65:77:ddCertificate

Extended Key Usages

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 44KB

.rsrc
Size: 20KB - Virtual size: 19KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.itext
Size: 4KB - Virtual size: 4KB

.data
Size: 30KB - Virtual size: 30KB

.bss
Size: - Virtual size: 26KB

.idata
Size: 14KB - Virtual size: 14KB

.didata
Size: 1024B - Virtual size: 806B

.tls
Size: - Virtual size: 60B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 96KB - Virtual size: 95KB

.rsrc
Size: 192KB - Virtual size: 192KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 1024B - Virtual size: 65KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1KB - Virtual size: 1KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

37:36:da:15:af:64:76:32:cc:e6:1c:d4:1b:65:77:dd
Certificate

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 291KB

.ndata
Size: - Virtual size: 880KB

.rsrc
Size: 3KB - Virtual size: 2KB

.text
Size: 367KB - Virtual size: 367KB

.rdata
Size: 69KB - Virtual size: 68KB

.data
Size: 7KB - Virtual size: 16KB

.idata
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 17KB - Virtual size: 17KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 1024B - Virtual size: 520B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 410B