23bb04a3a2ead64ea94a7d99655aa44a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

23bb04a3a2ead64ea94a7d99655aa44a_JaffaCakes118
Size

2.5MB
MD5

23bb04a3a2ead64ea94a7d99655aa44a
SHA1

f23aa45f21b7092e92c061f6366b99d427dffd6e
SHA256

b41e5d29b1e52f7274a987543ecc7f6f962395a17865deee3ff78af40c74e642
SHA512

e0fa4bd98b412f5ad545a041b0288a61641d593f5e7a267fb6d0296ed09df88f8a3ef63f26d8ebb615965e4dac41e27d9454876eee153f0f3d2cab70b6f1867c
SSDEEP

49152:Av3qRDxOFDmky4uoj8g/bGJDz6DPgmIZCY6c6+yF0XU3tbtwl7mtiP+:jU5mnC8IKJDAgXZ+JV9bql7Sg+

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 2 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack002/$SYSDIR/i420vfw.dll	acprotect
static1/unpack002/$SYSDIR/yv12vfw.dll	acprotect

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack002/$SYSDIR/i420vfw.dll	upx
static1/unpack002/$SYSDIR/yv12vfw.dll	upx

Unsigned PE 32 IoCs

Checks for missing Authenticode signature.

resource
unpack001/MiniVCap_5.1.8_trial/MiniVCap_5.1.8_trial.exe
unpack002/$PLUGINSDIR/InstallOptions.dll
unpack002/$PLUGINSDIR/System.dll
unpack002/$PLUGINSDIR/UserInfo.dll
unpack002/$SYSDIR/MSVCR70.DLL
unpack002/$SYSDIR/i420vfw.dll
unpack003/out.upx
unpack002/$SYSDIR/iyuv_32.dll
unpack002/$SYSDIR/lame.ax
unpack002/$SYSDIR/msvcrt.dll
unpack002/$SYSDIR/tsbyuv.dll
unpack002/$SYSDIR/yv12vfw.dll
unpack004/out.upx
unpack002/CahPlus.exe
unpack002/Core.dll
unpack002/InstallXvid.exe
unpack002/MiniVCap.exe
unpack002/autoRun.exe
unpack002/autoRunCfg.exe
unpack002/cv100.dll
unpack002/cxcore100.dll
unpack002/hideManager.exe
unpack002/libguide40.dll
unpack002/msvcrt.dll
unpack002/uninst.exe
unpack005/$PLUGINSDIR/System.dll
unpack005/$PLUGINSDIR/UserInfo.dll
unpack002/xvidcore.dll
unpack002/xvidvfw.dll
unpack001/MiniVCap_5.1.8_trial/_uninst.exe
unpack006/$PLUGINSDIR/System.dll
unpack006/$PLUGINSDIR/UserInfo.dll

NSIS installer 6 IoCs

installer

resource	yara_rule
static1/unpack001/MiniVCap_5.1.8_trial/MiniVCap_5.1.8_trial.exe	nsis_installer_1
static1/unpack001/MiniVCap_5.1.8_trial/MiniVCap_5.1.8_trial.exe	nsis_installer_2
static1/unpack002/uninst.exe	nsis_installer_1
static1/unpack002/uninst.exe	nsis_installer_2
static1/unpack001/MiniVCap_5.1.8_trial/_uninst.exe	nsis_installer_1
static1/unpack001/MiniVCap_5.1.8_trial/_uninst.exe	nsis_installer_2

Files

23bb04a3a2ead64ea94a7d99655aa44a_JaffaCakes118
.zip
MiniVCap_5.1.8_trial/MiniVCap_5.1.8_trial.exe
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
GetPrivateProfileIntA
GlobalLock
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalAlloc

user32

MapWindowPoints
GetDlgCtrlID
CloseClipboard
GetClipboardData
OpenClipboard
PtInRect
SetWindowRgn
LoadIconA
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
GetClientRect

gdi32

SetTextColor
CreateCompatibleDC
GetObjectA
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject

shell32

SHBrowseForFolderA
SHGetDesktopFolder
SHGetPathFromIDListA
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UserInfo.dll
.dll windows:4 windows x86 arch:x86

afa8e526425f3585465337467d0b5909

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
GetCurrentThread
lstrcpynA
GetCurrentProcess
GetModuleHandleA
GetProcAddress
GetLastError
GlobalFree
CloseHandle
GlobalAlloc

advapi32

OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
GetUserNameA
OpenThreadToken

Exports

Exports

GetAccountType
GetName
GetOriginalAccountType

Sections

.text
Size: 1024B - Virtual size: 741B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 673B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-wizard.bmp
$SYSDIR/MSVCR70.DLL
.dll windows:4 windows x86 arch:x86

1042bb30696d4426da7447f341f51a6e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr70.pdb

Imports

kernel32

GetModuleFileNameA
GetModuleFileNameW
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetCurrentThreadId
TlsSetValue
GetCommandLineA
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitThread
CloseHandle
TlsGetValue
GetLastError
ResumeThread
CreateThread
TlsFree
SetLastError
GetCurrentThread
TlsAlloc
FindNextFileA
FindFirstFileA
FindClose
FindNextFileW
FindFirstFileW
HeapAlloc
HeapFree
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetHandleCount
GetFileType
GetStartupInfoA
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
MultiByteToWideChar
GetCommandLineW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
InitializeCriticalSection
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetConsoleCtrlHandler
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetEnvironmentVariableA
SetEnvironmentVariableW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
RtlUnwind
GetLocaleInfoW
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
HeapSize
VirtualProtect
GetSystemInfo
VirtualQuery
FlushFileBuffers
SetFilePointer
SetStdHandle
CompareStringA
CompareStringW
Sleep
Beep
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
GetFileAttributesA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesA
GetFullPathNameA
GetDriveTypeA
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
DeleteFileW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
MoveFileA
RaiseException
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadCodePtr
GetExitCodeProcess
WaitForSingleObject
FreeLibrary
CreateProcessA
CreateProcessW
HeapValidate
HeapCompact
HeapWalk
ReadConsoleA
SetConsoleMode
GetConsoleMode
IsDBCSLeadByteEx
GetConsoleCP
ReadConsoleW
SetEndOfFile
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
DuplicateHandle
GetFileInformationByHandle
PeekNamedPipe
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
LockFile
UnlockFile
CreateFileA
CreatePipe
ReadFile
CreateFileW
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetLocalTime
SetLocalTime

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@@QAE@ABV0@@Z
??0__non_rtti_object@@QAE@PBD@Z
??0bad_cast@@AAE@PBQBD@Z
??0bad_cast@@QAE@ABQBD@Z
??0bad_cast@@QAE@ABV0@@Z
??0bad_cast@@QAE@PBD@Z
??0bad_typeid@@QAE@ABV0@@Z
??0bad_typeid@@QAE@PBD@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
??1__non_rtti_object@@UAE@XZ
??1bad_cast@@UAE@XZ
??1bad_typeid@@UAE@XZ
??1exception@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??4__non_rtti_object@@QAEAAV0@ABV0@@Z
??4bad_cast@@QAEAAV0@ABV0@@Z
??4bad_typeid@@QAEAAV0@ABV0@@Z
??4exception@@QAEAAV0@ABV0@@Z
??8type_info@@QBEHABV0@@Z
??9type_info@@QBEHABV0@@Z
??_7__non_rtti_object@@6B@
??_7bad_cast@@6B@
??_7bad_typeid@@6B@
??_7exception@@6B@
??_E__non_rtti_object@@UAEPAXI@Z
??_Ebad_cast@@UAEPAXI@Z
??_Ebad_typeid@@UAEPAXI@Z
??_Eexception@@UAEPAXI@Z
??_Fbad_cast@@QAEXXZ
??_Fbad_typeid@@QAEXXZ
??_G__non_rtti_object@@UAEPAXI@Z
??_Gbad_cast@@UAEPAXI@Z
??_Gbad_typeid@@UAEPAXI@Z
??_Gexception@@UAEPAXI@Z
??_U@YAPAXI@Z
??_V@YAXPAX@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDXZ
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?terminate@@YAXXZ
?unexpected@@YAXXZ
?what@exception@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CxxThrowException
_EH_prolog
_Getdays
_Getmonths
_Gettnames
_HUGE
_Strftime
_XcptFilter
__CxxCallUnwindDtor
__CxxCallUnwindVecDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
___lc_codepage_func
___lc_collate_cp_func
___lc_handle_func
___mb_cur_max_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__buffer_overrun
__crtCompareStringA
__crtCompareStringW
__crtGetLocaleInfoW
__crtGetStringTypeW
__crtLCMapStringA
__crtLCMapStringW
__dllonexit
__doserrno
__fpecode
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__lc_clike
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv_init
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fileinfo
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__osver
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__winmajor
__p__winminor
__p__winver
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__security_error_handler
__set_app_type
__set_buffer_overrun_handler
__setlc_active
__setusermatherr
__threadhandle
__threadid
__toascii
__unDName
__unDNameEx
__uncaught_exception
__unguarded_readlc_active
__wargv
__wcserror
__wgetmainargs
__winitenv
_abnormal_termination
_access
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_aligned_free
_aligned_malloc
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_realloc
_amsg_exit
_assert
_atodbl
_atoi64
_atoldbl
_beep
_beginthread
_beginthreadex
_c_exit
_cabs
_callnewh
_cexit
_cgets
_cgetws
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_clearfp
_close
_commit
_commode
_control87
_controlfp
_copysign
_cprintf
_cputs
_cputws
_creat
_cscanf
_ctime64
_ctype
_cwait
_cwprintf
_cwscanf
_daylight
_dstbias
_dup
_dup2
_ecvt
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fcloseall
_fcvt
_fdopen
_fgetchar
_fgetwchar
_filbuf
_fileinfo
_filelength
_filelengthi64
_fileno
_findclose
_findfirst
_findfirst64
_findfirsti64
_findnext
_findnext64
_findnexti64
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fputchar
_fputwchar
_fsopen
_fstat
_fstat64
_fstati64
_ftime
_ftime64
_ftol
_fullpath
_futime
_futime64
_gcvt
_get_osfhandle
_get_sbh_threshold
_getch
_getche
_getcwd
_getdcwd
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp
_getpid
_getsystime
_getw
_getwch
_getwche
_getws
_global_unwind2
_gmtime64
_heapadd
_heapchk
_heapmin
_heapset
_heapused
_heapwalk
_hypot
_i64toa
_i64tow
_initterm
_inp
_inpd
_inpw
_iob
_isatty
_isctype
_ismbbalnum
_ismbbalpha
_ismbbgraph
_ismbbkalnum
_ismbbkana
_ismbbkprint
_ismbbkpunct
_ismbblead
_ismbbprint
_ismbbpunct
_ismbbtrail
_ismbcalnum
_ismbcalpha
_ismbcdigit
_ismbcgraph
_ismbchira
_ismbckata
_ismbcl0
_ismbcl1
_ismbcl2
_ismbclegal
_ismbclower
_ismbcprint
_ismbcpunct
_ismbcspace
_ismbcsymbol
_ismbcupper
_ismbslead
_ismbstrail
_isnan
_itoa
_itow
_j0
_j1
_jn
_kbhit
_lfind
_loaddll
_local_unwind2
_localtime64
_lock
_locking
_logb
_longjmpex
_lrotl
_lrotr
_lsearch
_lseek
_lseeki64
_ltoa
_ltow
_makepath
_mbbtombc
_mbbtype
_mbcasemap
_mbccpy
_mbcjistojms
_mbcjmstojis
_mbclen
_mbctohira
_mbctokata
_mbctolower
_mbctombb
_mbctoupper
_mbctype
_mbsbtype
_mbscat
_mbschr
_mbscmp
_mbscoll
_mbscpy
_mbscspn
_mbsdec
_mbsdup
_mbsicmp
_mbsicoll
_mbsinc
_mbslen
_mbslwr
_mbsnbcat
_mbsnbcmp
_mbsnbcnt
_mbsnbcoll
_mbsnbcpy
_mbsnbicmp
_mbsnbicoll
_mbsnbset
_mbsncat
_mbsnccnt
_mbsncmp
_mbsncoll
_mbsncpy
_mbsnextc
_mbsnicmp
_mbsnicoll
_mbsninc
_mbsnset
_mbspbrk
_mbsrchr
_mbsrev
_mbsset
_mbsspn
_mbsspnp
_mbsstr
_mbstok
_mbstrlen
_mbsupr
_memccpy
_memicmp
_mkdir
_mktemp
_mktime64
_msize
_nextafter
_onexit
_open
_open_osfhandle
_osplatform
_osver
_outp
_outpd
_outpw
_pclose
_pctype
_pgmptr
_pipe
_popen
_purecall
_putch
_putenv
_putw
_putwch
_putws
_pwctype
_read
_resetstkoflw
_rmdir
_rmtmp
_rotl
_rotr
_safe_fdiv
_safe_fdivr
_safe_fprem
_safe_fprem1
_scalb
_scprintf
_scwprintf
_searchenv
_seh_longjmp_unwind
_set_SSE2_enable
_set_error_mode
_set_sbh_threshold
_set_security_error_handler
_seterrormode
_setjmp
_setjmp3
_setmaxstdio
_setmbcp
_setmode
_setsystime
_sleep
_snprintf
_snscanf
_snwprintf
_snwscanf
_sopen
_spawnl
_spawnle
_spawnlp
_spawnlpe
_spawnv

Sections

.text
Size: 224KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/i420vfw.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllMain
DriverProc

Sections

UPX0
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

MMXCODE1
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

H26xColo
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MMXDATA1
Size: 4KB - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MMXCCDAT
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/iyuv_32.dll
.dll windows:6 windows x86 arch:x86

2407fb7d2ec09b94bc566189a1a7c039

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

iyuv_32.pdb

Imports

msvcrt

_except_handler4_common
_adjust_fdiv
_amsg_exit
_initterm
free
malloc
_XcptFilter
memcpy

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GlobalLock
GlobalAlloc
LocalAlloc
GlobalFree
GlobalUnlock
LocalFree
GetSystemInfo
InterlockedExchange
Sleep
InterlockedCompareExchange
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId

gdi32

GetSystemPaletteEntries
GetObjectW
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC

user32

EndDialog
EndPaint
GetWindowRect
LoadBitmapW
GetWindowLongW
BeginPaint
ReleaseDC
GetDC
DialogBoxParamW
LoadStringW

winmm

DefDriverProc

Exports

Exports

AboutDialogProc
DllMain
DriverDialogProc
DriverProc

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 714B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/lame.ax
.dll regsvr32 windows:4 windows x86 arch:x86

ab4ebe3a60efdebe1a2684e0c778c352

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

fprintf
exit
_purecall
_ftol
memmove
calloc
free
sprintf
__CxxFrameHandler
??3@YAXPAX@Z
ceil
_snprintf
vfprintf
fflush
_adj_fpatan
malloc
floor
_adj_fdivr_m64
fscanf
abort
_adj_fdiv_m32
fclose
_CIpow
_adj_fdiv_r
_adj_fdiv_m32i
_adj_fdivr_m32
??2@YAPAXI@Z
qsort
_iob

kernel32

EnterCriticalSection
MulDiv
lstrcpyA
lstrlenA
GetVersionExW
DisableThreadLibraryCalls
InterlockedIncrement
InterlockedDecrement
FreeLibrary
lstrcmpW
lstrcpynW
lstrlenW
MultiByteToWideChar
GetLastError
GetModuleFileNameA
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection

advapi32

RegCreateKeyA
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegDeleteKeyA
RegCloseKey

user32

SendDlgItemMessageA
wsprintfA
IsDlgButtonChecked
SendMessageA
CheckDlgButton
CheckRadioButton
GetDlgItem
SetDlgItemTextA
GetDesktopWindow
GetWindowRect
LoadStringW
wsprintfW
DestroyWindow
ShowWindow
InvalidateRect
MoveWindow
CreateDialogParamW
SetWindowLongW
GetWindowLongW
EnableWindow

comctl32

ord17

ole32

CoFreeUnusedLibraries
StringFromGUID2
CoTaskMemAlloc
CoInitialize
CoTaskMemFree
CoCreateInstance
CoUninitialize

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/msvcrt.dll
.dll windows:5 windows x86 arch:x86

1838f96daab97a33395f5dee7b6f4a3c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcrt.pdb

Imports

kernel32

MultiByteToWideChar
GetLastError
WideCharToMultiByte
Sleep
Beep
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
FindFirstFileW
FindNextFileW
GetCurrentThreadId
TlsSetValue
TlsGetValue
GetCommandLineA
GetVersionExA
GetFileAttributesA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesA
GetFullPathNameA
GetDriveTypeA
GetCurrentProcessId
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
SetEnvironmentVariableW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
DeleteFileW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
MoveFileA
RaiseException
RtlUnwind
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
IsBadCodePtr
CloseHandle
GetExitCodeProcess
WaitForSingleObject
GetProcAddress
LoadLibraryA
FreeLibrary
CreateProcessA
CreateProcessW
HeapReAlloc
GetModuleHandleA
HeapFree
GetModuleFileNameA
HeapAlloc
GetProcessHeap
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapValidate
HeapCompact
HeapWalk
HeapSize
VirtualProtect
GetSystemInfo
VirtualQuery
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
ReadConsoleA
SetConsoleMode
GetConsoleMode
IsDBCSLeadByteEx
GetConsoleCP
ReadConsoleW
SetEndOfFile
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
DuplicateHandle
GetCurrentProcess
GetFileInformationByHandle
PeekNamedPipe
SetStdHandle
EnterCriticalSection
LeaveCriticalSection
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
LockFile
UnlockFile
SetFilePointer
CreateFileA
CreatePipe
ReadFile
CreateFileW
WriteFile
GetACP
GetOEMCP
GetCPInfo
UnhandledExceptionFilter
CompareStringA
CompareStringW
GetLocaleInfoA
GetLocaleInfoW
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetConsoleCtrlHandler
GetCommandLineW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
InitializeCriticalSection
SetLastError
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
InterlockedExchange
ExitProcess
TlsFree
GetCurrentThread
TlsAlloc
ExitThread
ResumeThread
CreateThread
GetModuleFileNameW
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
GetSystemTimeAsFileTime
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetLocalTime
SetLocalTime
GetTickCount
QueryPerformanceCounter
TerminateProcess

ntdll

RtlGetNtVersionNumbers

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@@QAE@ABV0@@Z
??0__non_rtti_object@@QAE@PBD@Z
??0bad_cast@@AAE@PBQBD@Z
??0bad_cast@@QAE@ABQBD@Z
??0bad_cast@@QAE@ABV0@@Z
??0bad_cast@@QAE@PBD@Z
??0bad_typeid@@QAE@ABV0@@Z
??0bad_typeid@@QAE@PBD@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
??1__non_rtti_object@@UAE@XZ
??1bad_cast@@UAE@XZ
??1bad_typeid@@UAE@XZ
??1exception@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??4__non_rtti_object@@QAEAAV0@ABV0@@Z
??4bad_cast@@QAEAAV0@ABV0@@Z
??4bad_typeid@@QAEAAV0@ABV0@@Z
??4exception@@QAEAAV0@ABV0@@Z
??8type_info@@QBEHABV0@@Z
??9type_info@@QBEHABV0@@Z
??_7__non_rtti_object@@6B@
??_7bad_cast@@6B@
??_7bad_typeid@@6B@
??_7exception@@6B@
??_E__non_rtti_object@@UAEPAXI@Z
??_Ebad_cast@@UAEPAXI@Z
??_Ebad_typeid@@UAEPAXI@Z
??_Eexception@@UAEPAXI@Z
??_Fbad_cast@@QAEXXZ
??_Fbad_typeid@@QAEXXZ
??_G__non_rtti_object@@UAEPAXI@Z
??_Gbad_cast@@UAEPAXI@Z
??_Gbad_typeid@@UAEPAXI@Z
??_Gexception@@UAEPAXI@Z
??_U@YAPAXI@Z
??_V@YAXPAX@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDXZ
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?terminate@@YAXXZ
?unexpected@@YAXXZ
?what@exception@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CxxThrowException
_EH_prolog
_Getdays
_Getmonths
_Gettnames
_HUGE
_Strftime
_XcptFilter
__CxxCallUnwindDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
___lc_codepage_func
___lc_handle_func
___mb_cur_max_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__crtCompareStringA
__crtCompareStringW
__crtGetLocaleInfoW
__crtGetStringTypeW
__crtLCMapStringA
__crtLCMapStringW
__dllonexit
__doserrno
__fpecode
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv_init
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fileinfo
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__osver
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__winmajor
__p__winminor
__p__winver
__p__wpgmptr
__pctype_func
__pioinfo
__pxcptinfoptrs
__set_app_type
__setlc_active
__setusermatherr
__threadhandle
__threadid
__toascii
__unDName
__unDNameEx
__uncaught_exception
__unguarded_readlc_active
__wargv
__wcserror
__wgetmainargs
__winitenv
_abnormal_termination
_access
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_aligned_free
_aligned_malloc
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_realloc
_amsg_exit
_assert
_atodbl
_atoi64
_atoldbl
_beep
_beginthread
_beginthreadex
_c_exit
_cabs
_callnewh
_cexit
_cgets
_cgetws
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_clearfp
_close
_commit
_commode
_control87
_controlfp
_copysign
_cprintf
_cputs
_cputws
_creat
_cscanf
_ctime64
_ctype
_cwait
_cwprintf
_cwscanf
_daylight
_dstbias
_dup
_dup2
_ecvt
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fcloseall
_fcvt
_fdopen
_fgetchar
_fgetwchar
_filbuf
_fileinfo
_filelength
_filelengthi64
_fileno
_findclose
_findfirst
_findfirst64
_findfirsti64
_findnext
_findnext64
_findnexti64
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fputchar
_fputwchar
_fsopen
_fstat
_fstat64
_fstati64
_ftime
_ftime64
_ftol
_fullpath
_futime
_futime64
_gcvt
_get_heap_handle
_get_osfhandle
_get_sbh_threshold
_getch
_getche
_getcwd
_getdcwd
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp
_getpid
_getsystime
_getw
_getwch
_getwche
_getws
_global_unwind2
_gmtime64
_heapadd
_heapchk
_heapmin
_heapset
_heapused
_heapwalk
_hypot
_i64toa
_i64tow
_initterm
_inp
_inpd
_inpw
_iob
_isatty
_isctype
_ismbbalnum
_ismbbalpha
_ismbbgraph
_ismbbkalnum
_ismbbkana
_ismbbkprint
_ismbbkpunct
_ismbblead
_ismbbprint
_ismbbpunct
_ismbbtrail
_ismbcalnum
_ismbcalpha
_ismbcdigit
_ismbcgraph
_ismbchira
_ismbckata
_ismbcl0
_ismbcl1
_ismbcl2
_ismbclegal
_ismbclower
_ismbcprint
_ismbcpunct
_ismbcspace
_ismbcsymbol
_ismbcupper
_ismbslead
_ismbstrail
_isnan
_itoa
_itow
_j0
_j1
_jn
_kbhit
_lfind
_loaddll
_local_unwind2
_localtime64
_lock
_locking
_logb
_longjmpex
_lrotl
_lrotr
_lsearch
_lseek
_lseeki64
_ltoa
_ltow
_makepath
_mbbtombc
_mbbtype
_mbcasemap
_mbccpy
_mbcjistojms
_mbcjmstojis
_mbclen
_mbctohira
_mbctokata
_mbctolower
_mbctombb
_mbctoupper
_mbctype
_mbsbtype
_mbscat
_mbschr
_mbscmp
_mbscoll
_mbscpy
_mbscspn
_mbsdec
_mbsdup
_mbsicmp
_mbsicoll
_mbsinc
_mbslen
_mbslwr
_mbsnbcat
_mbsnbcmp
_mbsnbcnt
_mbsnbcoll
_mbsnbcpy
_mbsnbicmp
_mbsnbicoll
_mbsnbset
_mbsncat
_mbsnccnt
_mbsncmp
_mbsncoll
_mbsncpy
_mbsnextc
_mbsnicmp
_mbsnicoll
_mbsninc
_mbsnset
_mbspbrk
_mbsrchr
_mbsrev
_mbsset
_mbsspn
_mbsspnp
_mbsstr
_mbstok
_mbstrlen
_mbsupr
_memccpy
_memicmp
_mkdir
_mktemp
_mktime64
_msize
_nextafter
_onexit
_open
_open_osfhandle
_osplatform
_osver
_outp
_outpd
_outpw
_pclose
_pctype
_pgmptr
_pipe
_popen
_purecall
_putch
_putenv
_putw
_putwch
_putws
_pwctype
_read
_resetstkoflw
_rmdir
_rmtmp
_rotl
_rotr
_safe_fdiv
_safe_fdivr
_safe_fprem
_safe_fprem1
_scalb
_scprintf
_scwprintf
_searchenv
_seh_longjmp_unwind
_set_SSE2_enable
_set_error_mode
_set_sbh_threshold
_seterrormode
_setjmp
_setjmp3
_setmaxstdio
_setmbcp
_setmode
_setsystime
_sleep
_snprintf
_snscanf
_snwprintf
_snwscanf
_sopen
_spawnl
_spawnle
_spawnlp
_spawnlpe
_spawnv
_spawnve
_spawnvp
_spawnvpe
_splitpath
_stat
_stat64
_stati64
_statusfp

Sections

.text
Size: 303KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/tsbyuv.dll
.dll windows:6 windows x86 arch:x86

6ddc3b5e42faeed5016e96011ad8adf1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

tsbyuv.pdb

Imports

msvcrt

_except_handler4_common
_adjust_fdiv
_amsg_exit
_initterm
free
malloc
_XcptFilter
memcpy

kernel32

GlobalHandle
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
InterlockedExchange
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
LocalAlloc
LocalFree
GlobalLock
GlobalAlloc
GlobalFree
GetTickCount

user32

MessageBoxW

winmm

GetDriverModuleHandle
DefDriverProc

Exports

Exports

DriverProc

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/yv12vfw.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllMain
DriverProc

Sections

UPX0
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

MMXCODE1
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

H26xColo
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MMXDATA1
Size: 4KB - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MMXCCDAT
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
0.wav
1.wav
2.wav
3.wav
4.wav
CahPlus.exe
.exe windows:5 windows x86 arch:x86

0bc0cd84f7f923f14e67cd5d6e89baef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
CreateMutexW
GetVersionExW
GetModuleHandleW
LoadLibraryW
GetProcAddress
FreeLibrary
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
InitializeCriticalSectionAndSpinCount
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
LCMapStringA
MultiByteToWideChar
LCMapStringW

user32

LoadStringW
DialogBoxParamW
IsDlgButtonChecked
GetDlgItemInt
MessageBoxW
EndDialog
GetDlgItem
EnableWindow
LoadIconW
SendMessageW
CheckDlgButton
SetDlgItemInt

advapi32

RegSetValueExW
RegFlushKey
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
GetUserNameW

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Core.dll
.dll regsvr32 windows:5 windows x86 arch:x86

fb279bf6a084793558a10dcc77f5d730

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

cxcore100

cvInitImageHeader
cvReleaseMemStorage
cvFlip
cvLoad
cvCreateMemStorage
cvCreateImage
cvClearMemStorage
cvGetSeqElem
cvCircle
cvReleaseImage
cvSetData

cv100

cvCvtColor
cvResize
cvEqualizeHist
cvHaarDetectObjects

shlwapi

PathCombineA
PathRemoveFileSpecW
PathCombineW
PathRemoveFileSpecA

kernel32

LCMapStringW
LCMapStringA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
VirtualFree
GetLocalTime
FindClose
FindNextFileW
FindFirstFileW
GetTickCount
GetModuleFileNameW
lstrcpyW
InterlockedDecrement
WideCharToMultiByte
GlobalUnlock
GlobalLock
GlobalAlloc
GetModuleFileNameA
GetVersionExW
DisableThreadLibraryCalls
lstrlenW
MultiByteToWideChar
lstrlenA
GetLastError
lstrcmpW
InterlockedIncrement
FreeLibrary
lstrcpynW
CloseHandle
GetCPInfo
GetCurrentProcess
GetCurrentThreadId
InterlockedExchange
GetProcAddress
GetModuleHandleW
GetCommandLineA
HeapAlloc
HeapFree
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
Sleep
LocalFree
GetOEMCP
IsValidCodePage
WriteFile
GetStdHandle
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetACP
SetLastError
HeapCreate
HeapDestroy
HeapReAlloc
ReadFile
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
ExitProcess
HeapSize
GetConsoleCP
GetConsoleMode
GetModuleHandleA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
GetProcessHeap
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
FlushFileBuffers
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW
LoadLibraryA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID

user32

wsprintfW
GetDC
ReleaseDC
DrawTextW
PostMessageW
IsRectEmpty

gdi32

GetDeviceCaps
CreateCompatibleBitmap
BitBlt
GetObjectW
GetDIBits
CreateDIBSection
CreateCompatibleDC
SetBkColor
SetTextColor
GetTextExtentPoint32W
SelectObject
DeleteObject
DeleteDC
CreateFontIndirectW

advapi32

RegCreateKeyW
RegSetValueW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW

ole32

CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CoUninitialize
StringFromGUID2
CreateStreamOnHGlobal
CoFreeUnusedLibraries

oleaut32

SysFreeString
SysStringLen
SysAllocString
VariantClear

gdiplus

GdipCloneImage
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipSetPropertyItem
GdipGetAllPropertyItems
GdipGetPropertySize
GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipSetImagePalette
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipSaveImageToFile
GdipDisposeImage
GdipAlloc
GdipFree
GdiplusShutdown
GdiplusStartup

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
InstallXvid.exe
.exe windows:5 windows x86 arch:x86

21c6140fbed998710e6897d2283d9b32

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFileExistsW
PathCombineW
PathRemoveFileSpecW

kernel32

FreeLibrary
GetProcAddress
LoadLibraryW
GetModuleHandleW
GetVersionExW
WinExec
WideCharToMultiByte
GetSystemDirectoryW
CreateMutexW
FlushFileBuffers
CloseHandle
CreateFileA
HeapSize
GetModuleFileNameW
InterlockedDecrement
GetCommandLineA
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetFilePointer
GetConsoleCP
GetConsoleMode
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
MultiByteToWideChar
LoadLibraryA
InitializeCriticalSectionAndSpinCount
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA

user32

MessageBoxW
SendMessageW
DialogBoxParamW
LoadStringW
LoadIconW
EndDialog

advapi32

GetUserNameW

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
MiniVCap.ICO
MiniVCap.exe
.exe windows:5 windows x86 arch:x86

294804209908e9b8f4e8873619d18cc2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

ws2_32

socket
shutdown
WSAGetLastError
send
recv
gethostname
WSACleanup
WSAStartup
gethostbyname
closesocket
htons
connect
setsockopt

winmm

sndPlaySoundW

wininet

InternetOpenW
InternetReadFile
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetCloseHandle
InternetConnectW

quartz

AMGetErrorTextW

shlwapi

PathCanonicalizeW
PathFileExistsW
PathCombineW
PathRemoveFileSpecW
PathIsDirectoryW
PathCombineA
PathGetDriveNumberW
PathRelativePathToW
PathRemoveFileSpecA

kernel32

SetStdHandle
InitializeCriticalSectionAndSpinCount
LoadLibraryA
HeapReAlloc
VirtualAlloc
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
QueryPerformanceCounter
VirtualFree
HeapCreate
DeleteCriticalSection
GetFileType
SetHandleCount
GetModuleFileNameW
GlobalFree
GlobalAlloc
GetLocalTime
SystemTimeToFileTime
GetSystemTime
GetFileAttributesExW
lstrcatW
lstrcpyW
DeleteFileW
CloseHandle
CreateFileW
LocalFree
FormatMessageW
GetLastError
CreateDirectoryW
GetVersionExW
CreateThread
GetModuleFileNameA
WideCharToMultiByte
MultiByteToWideChar
GetCurrentProcessId
CreateMutexW
GetTickCount
GetExitCodeThread
FindClose
FindNextFileW
FindFirstFileW
CompareFileTime
SetFileAttributesW
MoveFileW
FlushFileBuffers
DeviceIoControl
GlobalMemoryStatus
GetSystemInfo
GetDiskFreeSpaceExW
GetComputerNameW
GetSystemDirectoryW
GetTimeZoneInformation
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
ReadFile
GetConsoleMode
GetConsoleCP
WriteFile
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleA
ExitProcess
HeapSize
HeapAlloc
HeapFree
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetProcAddress
GetModuleHandleW
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoA
GetCommandLineA
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
RaiseException
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEndOfFile
GetProcessHeap
Sleep

user32

GetDesktopWindow
PostMessageW
KillTimer
SetTimer
AdjustWindowRectEx
GetWindowTextW
SetWindowTextW
LoadCursorW
PostQuitMessage
BeginPaint
DispatchMessageW
DestroyWindow
EnableWindow
IsDlgButtonChecked
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
SendDlgItemMessageW
CheckDlgButton
SetDlgItemTextW
GetDlgItem
EndDialog
MessageBoxW
DialogBoxParamW
GetWindowRect
SetWindowPos
GetMenu
GetSubMenu
ModifyMenuW
EnableMenuItem
CreateDialogParamW
SendMessageW
LoadStringW
LoadStringA
RegisterClassExW
CreateWindowExW
ShowWindow
UpdateWindow
DefWindowProcW
SetWindowLongW
GetClientRect
GetWindowLongW
TranslateMessage
TranslateAcceleratorW
GetMessageW
LoadAcceleratorsW
EndPaint
LoadIconW

advapi32

RegDeleteValueW
RegSetValueExW
RegFlushKey
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyExW
GetUserNameW

shell32

Shell_NotifyIconW
ShellExecuteW
CommandLineToArgvW
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW

ole32

CoTaskMemFree
OleInitialize
CoGetClassObject
OleSetContainedObject
CoCreateInstance
CoTaskMemAlloc

oleaut32

VariantInit
SysAllocString
VariantClear
OleCreatePropertyFrame

Sections

.text
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
autoRun.exe
.exe windows:5 windows x86 arch:x86

6bfec4c740cb50db7abc630353c1344f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsDirectoryW
PathCombineW
PathRemoveFileSpecW

kernel32

GetPrivateProfileStringW
CreateProcessW
Sleep
GetPrivateProfileIntW
GetLocalTime
GetModuleFileNameW
DeleteFileW
GetFileAttributesExW
WritePrivateProfileStringW
GetVersionExW
CreateDirectoryW
SetFileAttributesW
lstrcpyW
GetComputerNameW
GetSystemDirectoryW
CreateMutexW
GetStdHandle
HeapSize
ReadFile
GetProcessHeap
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
GetModuleHandleA
HeapFree
CloseHandle
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
ExitProcess
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetFilePointer
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
MultiByteToWideChar
HeapAlloc
VirtualAlloc
HeapReAlloc
SetStdHandle
FlushFileBuffers
CreateFileW
InitializeCriticalSectionAndSpinCount
CreateFileA
LoadLibraryA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetEndOfFile

advapi32

GetUserNameW

shell32

ShellExecuteW

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
autoRunCfg.exe
.exe windows:5 windows x86 arch:x86

bbc2d4125e531b9a54c4c02b394009b8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

shlwapi

PathCombineW
PathIsDirectoryW
PathRemoveFileSpecW

kernel32

GetFileAttributesExW
FreeLibrary
GetProcAddress
LoadLibraryW
GetModuleHandleW
GetVersionExW
GetModuleFileNameW
WritePrivateProfileStringW
SetFileAttributesW
CreateMutexW
CreateDirectoryW
lstrcpyW
GetComputerNameW
DeleteFileW
ReadFile
GetProcessHeap
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetPrivateProfileIntW
HeapSize
GetSystemDirectoryW
LCMapStringW
LCMapStringA
LoadLibraryA
CreateFileA
InitializeCriticalSectionAndSpinCount
CreateFileW
FlushFileBuffers
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetLastError
HeapFree
CloseHandle
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetFilePointer
GetConsoleCP
GetConsoleMode
MultiByteToWideChar
HeapAlloc
VirtualAlloc
HeapReAlloc
SetStdHandle

user32

LoadStringW
DialogBoxParamW
GetDlgItemInt
IsDlgButtonChecked
MessageBoxW
EnableWindow
EndDialog
SetDlgItemInt
SetDlgItemTextW
CheckDlgButton
SendMessageW
LoadIconW
GetDlgItem

advapi32

GetUserNameW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegFlushKey

shell32

ShellExecuteW

ole32

CoCreateInstance
OleInitialize

oleaut32

VariantInit
VariantClear

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
cv100.dll
.dll windows:4 windows x86 arch:x86

22e52205ddda9ee647b91d530a1f82e6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

cxcore100

cvStartWriteSeq
cvFlushSeqWriter
cvInitMatHeader
cvInvert
cvSubRS
cvMinMaxLoc
cvGetCols
cvConvertScale
cvCloneMat
cvScalarToRawData
cvCreateSparseMat
cvInitMatNDHeader
cvCreateData
cvInitSparseMatIterator
cvGetDims
cvPtrND
cvGetImage
cvSum
cvGetRawData
cvCopy
cvRelease
cvReleaseData
cvAdd
cvDiv
cvMul
cvInitNArrayIterator
cvNextNArraySlice
cvGetElemType
cvGetSize
cvPtr1D
cvLUT
cvGetFileNodeByName
cvRead
cvStartReadRawData
cvReadRawDataSlice
cvStartWriteStruct
cvWriteInt
cvWrite
cvWriteRawData
cvEndWriteStruct
??0CvType@@QAE@PBDP6AHPBX@ZP6AXPAPAX@ZP6APAXPAUCvFileStorage@@PAUCvFileNode@@@ZP6AX501UCvAttrList@@@ZP6APAX1@Z@Z
cvGEMM
cvSet
cvSolve
cvCartToPolar
cvLog
cvSub
cvCountNonZero
cvInitLineIterator
cvCreateMemStorage
cvMemStorageAlloc
cvAvgSdv
cvAvg
cvGetOptimalDFTSize
cvGetSubRect
cvSplit
cvDFT
cvMulSpectrums
cvReleaseMemStorage
cvReshape
cvCmpS
cvAndS
cvGetSeqElem
cvSetSeqReaderPos
cvSeqPush
cvSeqPop
cvSeqPopMulti
cvGetSeqReaderPos
cvCvtSeqToArray
cvCheckTermCriteria
cvMakeSeqHeaderForArray
cvClearSeq
cvSeqElemIdx
cvDrawContours
cvRectangle
cvGetNumThreads
cvGetThreadNum
cvFastArctan
cvSeqPushMulti
cvEigenVV
cvSetData
cvSliceLength
cvMulTransposed
cvSVD
cvCreateGraph
cvClearSet
cvRandArr
cvSetIdentity
cvTranspose
cvGetRows
cvNorm
cvCrossProduct
cvDotProduct
cvScaleAdd
cvLine
cvCircle
cvSVBkSb
cvDet
cvCheckArr
cvSolveCubic
cvSeqPartition
cvLoad
cvWriteComment
cvWriteReal
??0CvModule@@QAE@PAUCvModuleInfo@@@Z
cvCreateImage
?load@CvImage@@QAE_NPBD0H@Z
?read@CvImage@@QAE_NPAUCvFileStorage@@PBD1@Z
?read@CvImage@@QAE_NPAUCvFileStorage@@PBDH@Z
cvCloneImage
cvSetImageROI
cvResetImageROI
cvSetImageCOI
cvCreateMatHeader
?load@CvMatrix@@QAE_NPBD0H@Z
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBD1@Z
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBDH@Z
cvCreateSet
cvCreateChildMemStorage
cvInsertNodeIntoTree
cvEndWriteSeq
cvCreateSeqBlock
cvStartAppendToSeq
cvRestoreMemStoragePos
cvClearMemStorage
cvSetAdd
cvCreateSeq
cvSaveMemStoragePos
cvChangeSeqBlock
cvStartReadSeq
cvCbrt
cvPow
cvErrorFromIppStatus
cvAlloc
??1CvType@@QAE@XZ
??1CvModule@@QAE@XZ
cvSetZero
cvCreateMat
cvGetErrStatus
cvGetMat
cvError
cvFree_
cvReleaseMat
cvMerge
cvReleaseImage

libguide40

ord707
ord114
ord126
ord150
ord138
ord148
ord145
ord135
ord136
ord118
ord116
ord141

msvcrt

fopen
fclose
log
pow
sprintf
log10
atan2
acos
cos
??2@YAPAXI@Z
fread
??3@YAXPAX@Z
ftell
strncmp
sscanf
__dllonexit
_onexit
free
_initterm
malloc
_adjust_fdiv
exp
memcpy
memset
fseek

kernel32

DisableThreadLibraryCalls

Exports

Exports

??0CvBaseImageFilter@@QAE@ABV0@@Z
??0CvBaseImageFilter@@QAE@HHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
??0CvBaseImageFilter@@QAE@XZ
??0CvBoxFilter@@QAE@ABV0@@Z
??0CvBoxFilter@@QAE@HHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
??0CvBoxFilter@@QAE@XZ
??0CvImage@@QAE@ABV0@@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvImage@@QAE@PAU_IplImage@@@Z
??0CvImage@@QAE@PBD0H@Z
??0CvImage@@QAE@UCvSize@@HH@Z
??0CvImage@@QAE@XZ
??0CvLaplaceFilter@@QAE@ABV0@@Z
??0CvLaplaceFilter@@QAE@HHH_NHHUCvScalar@@@Z
??0CvLaplaceFilter@@QAE@XZ
??0CvLinearFilter@@QAE@ABV0@@Z
??0CvLinearFilter@@QAE@HHHPBUCvMat@@UCvPoint@@HUCvScalar@@@Z
??0CvLinearFilter@@QAE@XZ
??0CvMatrix@@QAE@ABV0@@Z
??0CvMatrix@@QAE@HHH@Z
??0CvMatrix@@QAE@HHHPAUCvMat@@PAXH@Z
??0CvMatrix@@QAE@HHHPAXH@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvMatrix@@QAE@PAUCvMat@@@Z
??0CvMatrix@@QAE@PBD0H@Z
??0CvMatrix@@QAE@XZ
??0CvMorphology@@QAE@ABV0@@Z
??0CvMorphology@@QAE@HHHHPAUCvMat@@UCvSize@@UCvPoint@@HUCvScalar@@@Z
??0CvMorphology@@QAE@XZ
??0CvSepFilter@@QAE@ABV0@@Z
??0CvSepFilter@@QAE@HHHPBUCvMat@@0UCvPoint@@HUCvScalar@@@Z
??0CvSepFilter@@QAE@XZ
??1CvBaseImageFilter@@UAE@XZ
??1CvBoxFilter@@UAE@XZ
??1CvImage@@QAE@XZ
??1CvLaplaceFilter@@UAE@XZ
??1CvLinearFilter@@UAE@XZ
??1CvMatrix@@QAE@XZ
??1CvMorphology@@UAE@XZ
??1CvSepFilter@@UAE@XZ
??4CvBaseImageFilter@@QAEAAV0@ABV0@@Z
??4CvBoxFilter@@QAEAAV0@ABV0@@Z
??4CvImage@@QAEAAV0@ABV0@@Z
??4CvLaplaceFilter@@QAEAAV0@ABV0@@Z
??4CvLinearFilter@@QAEAAV0@ABV0@@Z
??4CvMatrix@@QAEAAV0@ABV0@@Z
??4CvModule@@QAEAAU0@ABU0@@Z
??4CvMorphology@@QAEAAV0@ABV0@@Z
??4CvSepFilter@@QAEAAV0@ABV0@@Z
??4CvType@@QAEAAU0@ABU0@@Z
??BCvImage@@QAEPAU_IplImage@@XZ
??BCvImage@@QBEPBU_IplImage@@XZ
??BCvMatrix@@QAEPAUCvMat@@XZ
??BCvMatrix@@QBEPBUCvMat@@XZ
??_7CvBaseImageFilter@@6B@
??_7CvBoxFilter@@6B@
??_7CvLaplaceFilter@@6B@
??_7CvLinearFilter@@6B@
??_7CvMorphology@@6B@
??_7CvSepFilter@@6B@
?addref@CvMatrix@@QBEXXZ
?attach@CvImage@@QAEXPAU_IplImage@@_N@Z
?channels@CvImage@@QBEHXZ
?channels@CvMatrix@@QBEHXZ
?clear@CvBaseImageFilter@@UAEXXZ
?clear@CvImage@@QAEXXZ
?clear@CvLinearFilter@@UAEXXZ
?clear@CvMatrix@@QAEXXZ
?clear@CvMorphology@@UAEXXZ
?clear@CvSepFilter@@UAEXXZ
?clone@CvImage@@QAE?AV1@XZ
?clone@CvMatrix@@QAE?AV1@XZ
?coi@CvImage@@QBEHXZ
?cols@CvMatrix@@QBEHXZ
?create@CvImage@@QAEXUCvSize@@HH@Z
?create@CvMatrix@@QAEXHHH@Z
?data@CvImage@@QAEPAEXZ
?data@CvImage@@QBEPBEXZ
?data@CvMatrix@@QAEPAEXZ
?data@CvMatrix@@QBEPBEXZ
?depth@CvImage@@QBEHXZ
?depth@CvMatrix@@QBEHXZ
?detach@CvImage@@QAEXXZ
?fill_cyclic_buffer@CvBaseImageFilter@@MAEHPBEHHHH@Z
?fill_cyclic_buffer@CvMorphology@@MAEHPBEHHHH@Z
?get_anchor@CvBaseImageFilter@@QBE?AUCvPoint@@XZ
?get_dst_type@CvBaseImageFilter@@QBEHXZ
?get_element@CvMorphology@@QBEPBUCvMat@@XZ
?get_element_shape@CvMorphology@@QBEHXZ
?get_element_sparse_buf@CvMorphology@@QAEPAEXZ
?get_element_sparse_count@CvMorphology@@QBEHXZ
?get_kernel@CvLinearFilter@@QBEPBUCvMat@@XZ
?get_kernel_size@CvBaseImageFilter@@QBE?AUCvSize@@XZ
?get_kernel_sparse_buf@CvLinearFilter@@QAEPAEXZ
?get_kernel_sparse_count@CvLinearFilter@@QBEHXZ
?get_operation@CvMorphology@@QBEHXZ
?get_scale@CvBoxFilter@@QBENXZ
?get_src_type@CvBaseImageFilter@@QBEHXZ
?get_sum_buf@CvBoxFilter@@QAEPAEXZ
?get_sum_count_ptr@CvBoxFilter@@QAEPAHXZ
?get_width@CvBaseImageFilter@@QBEHXZ
?get_work_params@CvBaseImageFilter@@MAEXXZ
?get_work_params@CvLaplaceFilter@@MAEXXZ
?get_work_type@CvBaseImageFilter@@QBEHXZ
?get_x_filter_func@CvBaseImageFilter@@QBEP6AXPBEPAEPAX@ZXZ
?get_x_kernel@CvSepFilter@@QBEPBUCvMat@@XZ
?get_x_kernel_flags@CvSepFilter@@QBEHXZ
?get_y_filter_func@CvBaseImageFilter@@QBEP6AXPAPAEPAEHHPAX@ZXZ
?get_y_kernel@CvSepFilter@@QBEPBUCvMat@@XZ
?get_y_kernel_flags@CvSepFilter@@QBEHXZ
?height@CvImage@@QBEHXZ
?init@CvBaseImageFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvBoxFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvLaplaceFilter@@UAEXHHHPBUCvMat@@0UCvPoint@@HUCvScalar@@@Z
?init@CvLaplaceFilter@@UAEXHHH_NHHUCvScalar@@@Z
?init@CvLaplaceFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvLinearFilter@@UAEXHHHPBUCvMat@@UCvPoint@@HUCvScalar@@@Z
?init@CvLinearFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvMorphology@@UAEXHHHHPAUCvMat@@UCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvMorphology@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvSepFilter@@UAEXHHHPBUCvMat@@0UCvPoint@@HUCvScalar@@@Z
?init@CvSepFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init_binary_element@CvMorphology@@SAXPAUCvMat@@HUCvPoint@@@Z
?init_deriv@CvSepFilter@@UAEXHHHHHHH@Z
?init_gaussian@CvSepFilter@@UAEXHHHHN@Z
?init_gaussian_kernel@CvSepFilter@@SAXPAUCvMat@@N@Z
?init_scharr_kernel@CvSepFilter@@SAXPAUCvMat@@0HHH@Z
?init_sobel_kernel@CvSepFilter@@SAXPAUCvMat@@0HHH@Z
?is_basic_laplacian@CvLaplaceFilter@@QBE_NXZ
?is_normalized@CvBoxFilter@@QBE_NXZ
?is_normalized@CvLaplaceFilter@@QBE_NXZ
?is_valid@CvImage@@QAE_NXZ
?is_valid@CvMatrix@@QAE_NXZ
?make_y_border@CvBaseImageFilter@@MAEXHHH@Z
?origin@CvImage@@QBEHXZ
?pix_size@CvImage@@QBEHXZ
?pix_size@CvMatrix@@QBEHXZ
?process@CvBaseImageFilter@@UAEHPBUCvMat@@PAU2@UCvRect@@UCvPoint@@H@Z
?release@CvImage@@QAEXXZ
?release@CvMatrix@@QAEXXZ
?reset_roi@CvImage@@QAEXXZ
?roi@CvImage@@QBE?AUCvRect@@XZ
?roi_row@CvImage@@QAEPAEH@Z
?roi_row@CvImage@@QBEPBEH@Z
?roi_size@CvImage@@QBE?AUCvSize@@XZ
?row@CvMatrix@@QAEPAEH@Z
?row@CvMatrix@@QBEPBEH@Z
?rows@CvMatrix@@QBEHXZ
?set@CvMatrix@@QAEXPAUCvMat@@_N@Z
?set_coi@CvImage@@QAEXH@Z
?set_data@CvMatrix@@QAEXPAXH@Z
?set_roi@CvImage@@QAEXUCvRect@@@Z
?size@CvImage@@QBE?AUCvSize@@XZ
?size@CvMatrix@@QBE?AUCvSize@@XZ
?start_process@CvBaseImageFilter@@MAEXUCvSlice@@H@Z
?start_process@CvBoxFilter@@MAEXUCvSlice@@H@Z
?start_process@CvMorphology@@MAEXUCvSlice@@H@Z
?step@CvImage@@QBEHXZ
?step@CvMatrix@@QBEHXZ
?type@CvMatrix@@QBEHXZ
?width@CvImage@@QBEHXZ
cv2DRotationMatrix
cvAcc
cvAdaptiveThreshold
cvApproxChains
cvApproxPoly
cvArcLength
cvBoundingRect
cvBoxPoints
cvCalcArrBackProject
cvCalcArrBackProjectPatch
cvCalcArrHist
cvCalcBayesianProb
cvCalcEMD2
cvCalcGlobalOrientation
cvCalcImageHomography
cvCalcMotionGradient
cvCalcOpticalFlowBM
cvCalcOpticalFlowHS
cvCalcOpticalFlowLK
cvCalcOpticalFlowPyrLK
cvCalcPGH
cvCalcProbDensity
cvCalcSubdivVoronoi2D
cvCalibrateCamera2
cvCamShift
cvCanny
cvCheckContourConvexity
cvClearHist
cvClearSubdivVoronoi2D
cvCompareHist
cvComputeCorrespondEpilines
cvConDensInitSampleSet
cvConDensUpdateByTime
cvContourArea
cvContourFromContourTree
cvConvertPointsHomogenious
cvConvexHull2
cvConvexityDefects
cvCopyHist
cvCopyMakeBorder
cvCornerEigenValsAndVecs
cvCornerHarris
cvCornerMinEigenVal
cvCreateConDensation
cvCreateContourTree
cvCreateHist
cvCreateKalman
cvCreatePOSITObject
cvCreateStructuringElementEx
cvCreateSubdiv2D
cvCvtColor
cvDilate
cvDistTransform
cvDrawChessboardCorners
cvEndFindContours
cvEqualizeHist
cvErode
cvFilter2D
cvFindChessboardCorners
cvFindContours
cvFindCornerSubPix
cvFindDominantPoints
cvFindExtrinsicCameraParams2
cvFindFundamentalMat
cvFindHomography
cvFindNearestPoint2D
cvFindNextContour
cvFitEllipse2
cvFitLine
cvFloodFill
cvGetAffineTransform
cvGetCentralMoment
cvGetHuMoments
cvGetMinMaxHistValue
cvGetNormalizedCentralMoment
cvGetPerspectiveTransform
cvGetQuadrangleSubPix
cvGetRectSubPix
cvGetSpatialMoment
cvGoodFeaturesToTrack
cvHaarDetectObjects
cvHoughCircles
cvHoughLines2
cvInitSubdivDelaunay2D
cvInitUndistortMap
cvInpaint
cvIntegral
cvKalmanCorrect
cvKalmanPredict
cvLaplace
cvLoadHaarClassifierCascade
cvLogPolar
cvMakeHistHeaderForArray
cvMatchContourTrees
cvMatchShapes
cvMatchTemplate
cvMaxRect
cvMeanShift
cvMinAreaRect2
cvMinEnclosingCircle
cvMoments
cvMorphologyEx
cvMultiplyAcc
cvNormalizeHist
cvPOSIT
cvPointPolygonTest
cvPointSeqFromMat
cvPreCornerDetect
cvProjectPoints2
cvPyrDown
cvPyrMeanShiftFiltering
cvPyrSegmentation
cvPyrUp
cvReadChainPoint
cvReleaseConDensation
cvReleaseHaarClassifierCascade
cvReleaseHist
cvReleaseKalman
cvReleasePOSITObject
cvReleaseStructuringElement
cvRemap
cvResize
cvRodrigues2
cvRunHaarClassifierCascade
cvRunningAvg
cvSampleLine
cvSegmentMotion
cvSetHistBinRanges
cvSetImagesForHaarClassifierCascade
cvSmooth
cvSnakeImage
cvSobel
cvSquareAcc
cvStartFindContours
cvStartReadChainPoints
cvSubdiv2DLocate
cvSubdivDelaunay2DInsert
cvSubstituteContour
cvThreshHist
cvThreshold
cvUndistort2
cvUpdateMotionHistory
cvWarpAffine
cvWarpPerspective
cvWatershed

Sections

.text
Size: 708KB - Virtual size: 707KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cxcore100.dll
.dll windows:4 windows x86 arch:x86

439676c1d939e74212350577e38a17c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
LoadLibraryA
QueryPerformanceCounter
TlsFree
GetSystemInfo
QueryPerformanceFrequency
TlsSetValue
TlsGetValue
GetProcAddress
TlsAlloc

user32

MessageBoxA
wsprintfA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

libguide40

ord705
ord707

msvcrt

memcpy
_adjust_fdiv
_initterm
_onexit
__dllonexit
??3@YAXPAX@Z
free
malloc
strncpy
sprintf
memmove
sin
exit
fprintf
_iob
??2@YAPAXI@Z
strrchr
cos
fputs
isdigit
isalnum
strchr
isalpha
strstr
fclose
strtol
strncmp
fgets
fopen
fseek
ftell
isspace
strtod
toupper
log
acos
pow
memset

Exports

Exports

??0CvImage@@QAE@ABV0@@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvImage@@QAE@PAU_IplImage@@@Z
??0CvImage@@QAE@PBD0H@Z
??0CvImage@@QAE@UCvSize@@HH@Z
??0CvImage@@QAE@XZ
??0CvMatrix@@QAE@ABV0@@Z
??0CvMatrix@@QAE@HHH@Z
??0CvMatrix@@QAE@HHHPAUCvMat@@PAXH@Z
??0CvMatrix@@QAE@HHHPAUCvMemStorage@@_N@Z
??0CvMatrix@@QAE@HHHPAXH@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvMatrix@@QAE@PAUCvMat@@@Z
??0CvMatrix@@QAE@PBD0H@Z
??0CvMatrix@@QAE@XZ
??0CvModule@@QAE@PAUCvModuleInfo@@@Z
??0CvType@@QAE@PBDP6AHPBX@ZP6AXPAPAX@ZP6APAXPAUCvFileStorage@@PAUCvFileNode@@@ZP6AX501UCvAttrList@@@ZP6APAX1@Z@Z
??1CvImage@@QAE@XZ
??1CvMatrix@@QAE@XZ
??1CvModule@@QAE@XZ
??1CvType@@QAE@XZ
??4CvImage@@QAEAAV0@ABV0@@Z
??4CvMatrix@@QAEAAV0@ABV0@@Z
??4CvModule@@QAEAAU0@ABU0@@Z
??4CvType@@QAEAAU0@ABU0@@Z
??BCvImage@@QAEPAU_IplImage@@XZ
??BCvImage@@QBEPBU_IplImage@@XZ
??BCvMatrix@@QAEPAUCvMat@@XZ
??BCvMatrix@@QBEPBUCvMat@@XZ
?addref@CvMatrix@@QBEXXZ
?attach@CvImage@@QAEXPAU_IplImage@@_N@Z
?channels@CvImage@@QBEHXZ
?channels@CvMatrix@@QBEHXZ
?clear@CvImage@@QAEXXZ
?clear@CvMatrix@@QAEXXZ
?clone@CvImage@@QAE?AV1@XZ
?clone@CvMatrix@@QAE?AV1@XZ
?coi@CvImage@@QBEHXZ
?cols@CvMatrix@@QBEHXZ
?create@CvImage@@QAEXUCvSize@@HH@Z
?create@CvMatrix@@QAEXHHH@Z
?data@CvImage@@QAEPAEXZ
?data@CvImage@@QBEPBEXZ
?data@CvMatrix@@QAEPAEXZ
?data@CvMatrix@@QBEPBEXZ
?depth@CvImage@@QBEHXZ
?depth@CvMatrix@@QBEHXZ
?detach@CvImage@@QAEXXZ
?first@CvModule@@2PAUCvModuleInfo@@A
?first@CvType@@2PAUCvTypeInfo@@A
?height@CvImage@@QBEHXZ
?is_valid@CvImage@@QAE_NXZ
?is_valid@CvMatrix@@QAE_NXZ
?last@CvModule@@2PAUCvModuleInfo@@A
?last@CvType@@2PAUCvTypeInfo@@A
?load@CvImage@@QAE_NPBD0H@Z
?load@CvMatrix@@QAE_NPBD0H@Z
?origin@CvImage@@QBEHXZ
?pix_size@CvImage@@QBEHXZ
?pix_size@CvMatrix@@QBEHXZ
?read@CvImage@@QAE_NPAUCvFileStorage@@PBD1@Z
?read@CvImage@@QAE_NPAUCvFileStorage@@PBDH@Z
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBD1@Z
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBDH@Z
?release@CvImage@@QAEXXZ
?release@CvMatrix@@QAEXXZ
?reset_roi@CvImage@@QAEXXZ
?roi@CvImage@@QBE?AUCvRect@@XZ
?roi_row@CvImage@@QAEPAEH@Z
?roi_row@CvImage@@QBEPBEH@Z
?roi_size@CvImage@@QBE?AUCvSize@@XZ
?row@CvMatrix@@QAEPAEH@Z
?row@CvMatrix@@QBEPBEH@Z
?rows@CvMatrix@@QBEHXZ
?save@CvImage@@QAEXPBD0@Z
?save@CvMatrix@@QAEXPBD0@Z
?set@CvMatrix@@QAEXPAUCvMat@@_N@Z
?set_coi@CvImage@@QAEXH@Z
?set_data@CvMatrix@@QAEXPAXH@Z
?set_roi@CvImage@@QAEXUCvRect@@@Z
?show@CvImage@@QAEXPBD@Z
?show@CvMatrix@@QAEXPBD@Z
?size@CvImage@@QBE?AUCvSize@@XZ
?size@CvMatrix@@QBE?AUCvSize@@XZ
?step@CvImage@@QBEHXZ
?step@CvMatrix@@QBEHXZ
?type@CvMatrix@@QBEHXZ
?width@CvImage@@QBEHXZ
?write@CvImage@@QAEXPAUCvFileStorage@@PBD@Z
?write@CvMatrix@@QAEXPAUCvFileStorage@@PBD@Z
cvAbsDiff
cvAbsDiffS
cvAdd
cvAddS
cvAddWeighted
cvAlloc
cvAnd
cvAndS
cvAttrValue
cvAvg
cvAvgSdv
cvBackProjectPCA
cvCalcCovarMatrix
cvCalcPCA
cvCartToPolar
cvCbrt
cvChangeSeqBlock
cvCheckArr
cvCheckTermCriteria
cvCircle
cvClearGraph
cvClearMemStorage
cvClearND
cvClearSeq
cvClearSet
cvClipLine
cvClone
cvCloneGraph
cvCloneImage
cvCloneMat
cvCloneMatND
cvCloneSparseMat
cvCmp
cvCmpS
cvColorToScalar
cvConvertScale
cvConvertScaleAbs
cvCopy
cvCountNonZero
cvCreateChildMemStorage
cvCreateData
cvCreateGraph
cvCreateGraphScanner
cvCreateImage
cvCreateImageHeader
cvCreateMat
cvCreateMatHeader
cvCreateMatND
cvCreateMatNDHeader
cvCreateMemStorage
cvCreateSeq
cvCreateSeqBlock
cvCreateSet
cvCreateSparseMat
cvCrossProduct
cvCvtSeqToArray
cvDCT
cvDFT
cvDet
cvDiv
cvDotProduct
cvDrawContours
cvEigenVV
cvEllipse
cvEllipse2Poly
cvEndWriteSeq
cvEndWriteStruct
cvError
cvErrorFromIppStatus
cvErrorStr
cvExp
cvFastArctan
cvFillConvexPoly
cvFillPoly
cvFindGraphEdge
cvFindGraphEdgeByPtr
cvFindType
cvFirstType
cvFlip
cvFlushSeqWriter
cvFree_
cvGEMM
cvGet1D
cvGet2D
cvGet3D
cvGetCols
cvGetDiag
cvGetDimSize
cvGetDims
cvGetElemType
cvGetErrInfo
cvGetErrMode
cvGetErrStatus
cvGetFileNode
cvGetFileNodeByName
cvGetFileNodeName
cvGetHashedKey
cvGetImage
cvGetImageCOI
cvGetImageROI
cvGetMat
cvGetModuleInfo
cvGetND
cvGetNumThreads
cvGetOptimalDFTSize
cvGetRawData
cvGetReal1D
cvGetReal2D
cvGetReal3D
cvGetRealND
cvGetRootFileNode
cvGetRows
cvGetSeqElem
cvGetSeqReaderPos
cvGetSize
cvGetSubRect
cvGetTextSize
cvGetThreadNum
cvGetTickCount
cvGetTickFrequency
cvGraphAddEdge
cvGraphAddEdgeByPtr
cvGraphAddVtx
cvGraphRemoveEdge
cvGraphRemoveEdgeByPtr
cvGraphRemoveVtx
cvGraphRemoveVtxByPtr
cvGraphVtxDegree
cvGraphVtxDegreeByPtr
cvGuiBoxReport
cvInRange
cvInRangeS
cvInitFont
cvInitImageHeader
cvInitLineIterator
cvInitMatHeader
cvInitMatNDHeader
cvInitNArrayIterator
cvInitSparseMatIterator
cvInitTreeNodeIterator
cvInsertNodeIntoTree
cvInvert
cvKMeans2
cvLUT
cvLine
cvLoad
cvLog
cvMahalanobis
cvMakeSeqHeaderForArray
cvMax
cvMaxS
cvMemStorageAlloc
cvMemStorageAllocString
cvMerge
cvMin
cvMinMaxLoc
cvMinS
cvMixChannels
cvMul
cvMulSpectrums
cvMulTransposed
cvNextGraphItem
cvNextNArraySlice
cvNextTreeNode
cvNorm
cvNormalize
cvNot
cvNulDevReport
cvOpenFileStorage
cvOr
cvOrS
cvPerspectiveTransform
cvPolarToCart
cvPolyLine
cvPow
cvPrevTreeNode
cvProjectPCA
cvPtr1D
cvPtr2D
cvPtr3D
cvPtrND
cvPutText
cvRandArr
cvRandShuffle
cvRange
cvRawDataToScalar
cvRead
cvReadRawData
cvReadRawDataSlice
cvRectangle
cvRedirectError
cvReduce
cvRegisterModule
cvRegisterType
cvRelease
cvReleaseData
cvReleaseFileStorage
cvReleaseGraphScanner
cvReleaseImage
cvReleaseImageHeader
cvReleaseMat
cvReleaseMemStorage
cvReleaseSparseMat
cvRemoveNodeFromTree
cvRepeat
cvResetImageROI
cvReshape
cvReshapeMatND
cvRestoreMemStoragePos
cvSVBkSb
cvSVD
cvSave
cvSaveMemStoragePos
cvScalarToRawData
cvScaleAdd
cvSeqElemIdx
cvSeqInsert
cvSeqInsertSlice
cvSeqInvert
cvSeqPartition
cvSeqPop
cvSeqPopFront
cvSeqPopMulti
cvSeqPush
cvSeqPushFront
cvSeqPushMulti
cvSeqRemove
cvSeqRemoveSlice
cvSeqSearch
cvSeqSlice
cvSeqSort
cvSet
cvSet1D
cvSet2D
cvSet3D
cvSetAdd
cvSetData
cvSetErrMode
cvSetErrStatus
cvSetIPLAllocators
cvSetIdentity
cvSetImageCOI
cvSetImageIOFunctions
cvSetImageROI
cvSetMemoryManager
cvSetND
cvSetNumThreads
cvSetReal1D
cvSetReal2D
cvSetReal3D
cvSetRealND
cvSetRemove
cvSetSeqBlockSize
cvSetSeqReaderPos
cvSetZero
cvSliceLength
cvSolve
cvSolveCubic
cvSplit
cvStartAppendToSeq
cvStartNextStream
cvStartReadRawData
cvStartReadSeq
cvStartWriteSeq
cvStartWriteStruct
cvStdErrReport
cvSub
cvSubRS
cvSum
cvTrace
cvTransform
cvTranspose
cvTreeToNodeSeq
cvTypeOf
cvUnregisterType
cvUseOptimized
cvWrite
cvWriteComment
cvWriteFileNode
cvWriteInt
cvWriteRawData
cvWriteReal
cvWriteString
cvXor
cvXorS

Sections

.text
Size: 756KB - Virtual size: 753KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
delete.ico
faceS_20_20.xml
.xml
firstPage.htm
.html
firstPage_logo.gif
.gif
hardDiskCache.gif
.gif
hideManager.exe
.exe windows:5 windows x86 arch:x86

af475dbbc7d37b4db8277fb37a2657e1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathCombineW
PathRemoveFileSpecW

kernel32

lstrcmpW
GetFileAttributesExW
GetModuleFileNameW
CreateMutexW
FlushFileBuffers
CloseHandle
CreateFileA
HeapSize
GetLocaleInfoA
GetStringTypeW
GetCommandLineA
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetFilePointer
GetConsoleCP
GetConsoleMode
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
MultiByteToWideChar
LoadLibraryA
InitializeCriticalSectionAndSpinCount
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA

user32

ShowWindow
SetWindowPos
EndDialog
LoadIconW
DialogBoxParamW
EnumWindows
GetClassNameW
GetWindowTextW
IsWindowVisible
SendMessageW
LoadStringW
GetDlgItem

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
libguide40.dll
.dll windows:4 windows x86 arch:x86

bc3d11d198ba339f839fd3b3cb12dc01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapReAlloc
LocalFree
AllocConsole
GetStdHandle
GetEnvironmentVariableA
GetCurrentProcessId
CloseHandle
ResumeThread
SetThreadPriority
SetThreadAffinityMask
GetCurrentThread
CreateThread
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateEventA
WaitForSingleObject
ResetEvent
SetEvent
TerminateThread
QueryPerformanceCounter
GetLastError
SetThreadIdealProcessor
Sleep
DuplicateHandle
GetCurrentProcess
GetExitCodeThread
TlsSetValue
TlsGetValue
GetProcessAffinityMask
QueryPerformanceFrequency
LoadLibraryA
TlsAlloc
GetSystemInfo
GetProcAddress
TlsFree
SleepEx
VirtualQuery
ExitProcess
TerminateProcess
SetStdHandle
GetFileType
HeapAlloc
HeapFree
MultiByteToWideChar
FormatMessageA
SetConsoleCtrlHandler
GetCommandLineA
GetVersion
FlushFileBuffers
WriteFile
SetHandleCount
GetStartupInfoA
GetModuleHandleA
GetModuleFileNameA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
RtlUnwind
WideCharToMultiByte
SetEnvironmentVariableW
SetEnvironmentVariableA
GetCurrentThreadId
SetLastError
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetFilePointer
InterlockedDecrement
InterlockedIncrement
GetCPInfo
CompareStringA
CompareStringW
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
ReadFile

Exports

Exports

KMP_ALIGNED_SHARABLE_MALLOC
KMP_CALLOC
KMP_FREE
KMP_GET_BLOCKTIME
KMP_GET_LIBRARY
KMP_GET_NUM_KNOWN_THREADS
KMP_GET_STACKSIZE
KMP_GET_STACKSIZE_S
KMP_LOCK_COND_BROADCAST
KMP_LOCK_COND_SIGNAL
KMP_LOCK_COND_WAIT
KMP_MALLOC
KMP_NEST_LOCK_COND_BROADCAST
KMP_NEST_LOCK_COND_SIGNAL
KMP_NEST_LOCK_COND_WAIT
KMP_PRINT_BANNER
KMP_REALLOC
KMP_SET_AFFINITY
KMP_SET_BLOCKTIME
KMP_SET_LIBRARY
KMP_SET_LIBRARY_SERIAL
KMP_SET_LIBRARY_THROUGHPUT
KMP_SET_LIBRARY_TURNAROUND
KMP_SET_PARALLEL_NAME
KMP_SET_STACKSIZE
KMP_SET_STACKSIZE_S
KMP_SET_STATS
KMP_SET_WARNINGS_OFF
KMP_SET_WARNINGS_ON
KMP_SHARABLE_CALLOC
KMP_SHARABLE_FREE
KMP_SHARABLE_MALLOC
KMP_SHARABLE_REALLOC
OMP_DESTROY_LOCK
OMP_DESTROY_NEST_LOCK
OMP_GET_DYNAMIC
OMP_GET_MAX_THREADS
OMP_GET_NESTED
OMP_GET_NUM_PROCS
OMP_GET_NUM_THREADS
OMP_GET_THREAD_NUM
OMP_GET_WTICK
OMP_GET_WTIME
OMP_INIT_LOCK
OMP_INIT_NEST_LOCK
OMP_IN_PARALLEL
OMP_SET_DYNAMIC
OMP_SET_LOCK
OMP_SET_NESTED
OMP_SET_NEST_LOCK
OMP_SET_NUM_THREADS
OMP_TEST_LOCK
OMP_TEST_NEST_LOCK
OMP_UNSET_LOCK
OMP_UNSET_NEST_LOCK
VT_getthid
__kmp_acquire_bootstrap_lock
__kmp_acquire_lock
__kmp_dispatch_dxo_4
__kmp_dispatch_dxo_8
__kmp_fork_call
__kmp_invoke_microtask
__kmp_launch_monitor
__kmp_launch_worker
__kmp_reap_monitor
__kmp_reap_worker
__kmp_release
__kmp_release_bootstrap_lock
__kmp_release_lock
__kmp_test_lock
__kmp_wait_sleep
__kmp_wait_yield_4
__kmp_wait_yield_8
__kmpc_atomic_4
__kmpc_atomic_8
__kmpc_atomic_fixed4_add
__kmpc_atomic_fixed8_add
__kmpc_atomic_float4_add
__kmpc_atomic_float8_add
__kmpc_barrier
__kmpc_barrier_master
__kmpc_barrier_master_nowait
__kmpc_barrier_reduce_master
__kmpc_begin
__kmpc_bound_num_threads
__kmpc_bound_thread_num
__kmpc_copyprivate
__kmpc_critical
__kmpc_destroy_lock
__kmpc_destroy_nest_lock
__kmpc_dispatch_fini_4
__kmpc_dispatch_fini_8
__kmpc_dispatch_init_4
__kmpc_dispatch_init_8
__kmpc_dispatch_next_4
__kmpc_dispatch_next_8
__kmpc_end
__kmpc_end_barrier_master
__kmpc_end_barrier_reduce_master
__kmpc_end_critical
__kmpc_end_master
__kmpc_end_ordered
__kmpc_end_serialized_parallel
__kmpc_end_single
__kmpc_end_taskq
__kmpc_end_taskq_task
__kmpc_flush
__kmpc_for_static_fini
__kmpc_for_static_init_4
__kmpc_for_static_init_8
__kmpc_fork_call
__kmpc_global_num_threads
__kmpc_global_thread_num
__kmpc_in_parallel
__kmpc_in_ssp
__kmpc_init_lock
__kmpc_init_nest_lock
__kmpc_invoke_task_func
__kmpc_master
__kmpc_ok_to_fork
__kmpc_ordered
__kmpc_pop_num_threads
__kmpc_push_num_threads
__kmpc_reduce_master_nowait
__kmpc_serialized_parallel
__kmpc_set_lock
__kmpc_set_nest_lock
__kmpc_single
__kmpc_ssp_begin
__kmpc_ssp_distance_4
__kmpc_ssp_distance_8
__kmpc_ssp_end
__kmpc_ssp_fork
__kmpc_ssp_get_max_threads
__kmpc_ssp_init_thread
__kmpc_ssp_num_threads
__kmpc_ssp_post_4
__kmpc_ssp_post_8
__kmpc_ssp_set_event
__kmpc_ssp_set_max_threads
__kmpc_ssp_thread_num
__kmpc_ssp_wait_4
__kmpc_ssp_wait_8
__kmpc_task
__kmpc_task_buffer
__kmpc_taskq
__kmpc_taskq_task
__kmpc_test_lock
__kmpc_test_nest_lock
__kmpc_threadprivate
__kmpc_threadprivate_cached
__kmpc_threadprivate_register
__kmpc_threadprivate_register_vec
__kmpc_unset_lock
__kmpc_unset_nest_lock
kmp_aligned_sharable_malloc
kmp_calloc
kmp_free
kmp_get_blocktime
kmp_get_library
kmp_get_num_known_threads
kmp_get_stacksize
kmp_get_stacksize_s
kmp_lock_cond_broadcast
kmp_lock_cond_signal
kmp_lock_cond_wait
kmp_malloc
kmp_nest_lock_cond_broadcast
kmp_nest_lock_cond_signal
kmp_nest_lock_cond_wait
kmp_print_banner
kmp_realloc
kmp_set_affinity
kmp_set_blocktime
kmp_set_library
kmp_set_library_serial
kmp_set_library_throughput
kmp_set_library_turnaround
kmp_set_parallel_name
kmp_set_stacksize
kmp_set_stacksize_s
kmp_set_stats
kmp_set_warnings_off
kmp_set_warnings_on
kmp_sharable_calloc
kmp_sharable_free
kmp_sharable_malloc
kmp_sharable_realloc
kmpc_aligned_sharable_malloc
kmpc_calloc
kmpc_free
kmpc_get_banner
kmpc_get_poolmode
kmpc_get_poolsize
kmpc_get_poolstat
kmpc_malloc
kmpc_poolprint
kmpc_print_banner
kmpc_realloc
kmpc_set_affinity
kmpc_set_blocktime
kmpc_set_library
kmpc_set_parallel_name
kmpc_set_poolmode
kmpc_set_poolsize
kmpc_set_stacksize
kmpc_set_stacksize_s
kmpc_set_stats
kmpc_sharable_calloc
kmpc_sharable_free
kmpc_sharable_malloc
kmpc_sharable_realloc
omp_destroy_lock
omp_destroy_nest_lock
omp_get_dynamic
omp_get_max_threads
omp_get_nested
omp_get_num_procs
omp_get_num_threads
omp_get_thread_num
omp_get_wtick
omp_get_wtime
omp_in_parallel
omp_init_lock
omp_init_nest_lock
omp_set_dynamic
omp_set_lock
omp_set_nest_lock
omp_set_nested
omp_set_num_threads
omp_test_lock
omp_test_nest_lock
omp_unset_lock
omp_unset_nest_lock
ompc_set_dynamic
ompc_set_nested
ompc_set_num_threads
vtgthid

Sections

.text
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
license.TXT
msvcrt.dll
.dll windows:5 windows x86 arch:x86

1838f96daab97a33395f5dee7b6f4a3c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcrt.pdb

Imports

kernel32

MultiByteToWideChar
GetLastError
WideCharToMultiByte
Sleep
Beep
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
FindFirstFileW
FindNextFileW
GetCurrentThreadId
TlsSetValue
TlsGetValue
GetCommandLineA
GetVersionExA
GetFileAttributesA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesA
GetFullPathNameA
GetDriveTypeA
GetCurrentProcessId
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
SetEnvironmentVariableW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
DeleteFileW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
MoveFileA
RaiseException
RtlUnwind
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
IsBadCodePtr
CloseHandle
GetExitCodeProcess
WaitForSingleObject
GetProcAddress
LoadLibraryA
FreeLibrary
CreateProcessA
CreateProcessW
HeapReAlloc
GetModuleHandleA
HeapFree
GetModuleFileNameA
HeapAlloc
GetProcessHeap
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapValidate
HeapCompact
HeapWalk
HeapSize
VirtualProtect
GetSystemInfo
VirtualQuery
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
ReadConsoleA
SetConsoleMode
GetConsoleMode
IsDBCSLeadByteEx
GetConsoleCP
ReadConsoleW
SetEndOfFile
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
DuplicateHandle
GetCurrentProcess
GetFileInformationByHandle
PeekNamedPipe
SetStdHandle
EnterCriticalSection
LeaveCriticalSection
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
LockFile
UnlockFile
SetFilePointer
CreateFileA
CreatePipe
ReadFile
CreateFileW
WriteFile
GetACP
GetOEMCP
GetCPInfo
UnhandledExceptionFilter
CompareStringA
CompareStringW
GetLocaleInfoA
GetLocaleInfoW
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetConsoleCtrlHandler
GetCommandLineW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
InitializeCriticalSection
SetLastError
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
InterlockedExchange
ExitProcess
TlsFree
GetCurrentThread
TlsAlloc
ExitThread
ResumeThread
CreateThread
GetModuleFileNameW
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
GetSystemTimeAsFileTime
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetLocalTime
SetLocalTime
GetTickCount
QueryPerformanceCounter
TerminateProcess

ntdll

RtlGetNtVersionNumbers

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@@QAE@ABV0@@Z
??0__non_rtti_object@@QAE@PBD@Z
??0bad_cast@@AAE@PBQBD@Z
??0bad_cast@@QAE@ABQBD@Z
??0bad_cast@@QAE@ABV0@@Z
??0bad_cast@@QAE@PBD@Z
??0bad_typeid@@QAE@ABV0@@Z
??0bad_typeid@@QAE@PBD@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
??1__non_rtti_object@@UAE@XZ
??1bad_cast@@UAE@XZ
??1bad_typeid@@UAE@XZ
??1exception@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??4__non_rtti_object@@QAEAAV0@ABV0@@Z
??4bad_cast@@QAEAAV0@ABV0@@Z
??4bad_typeid@@QAEAAV0@ABV0@@Z
??4exception@@QAEAAV0@ABV0@@Z
??8type_info@@QBEHABV0@@Z
??9type_info@@QBEHABV0@@Z
??_7__non_rtti_object@@6B@
??_7bad_cast@@6B@
??_7bad_typeid@@6B@
??_7exception@@6B@
??_E__non_rtti_object@@UAEPAXI@Z
??_Ebad_cast@@UAEPAXI@Z
??_Ebad_typeid@@UAEPAXI@Z
??_Eexception@@UAEPAXI@Z
??_Fbad_cast@@QAEXXZ
??_Fbad_typeid@@QAEXXZ
??_G__non_rtti_object@@UAEPAXI@Z
??_Gbad_cast@@UAEPAXI@Z
??_Gbad_typeid@@UAEPAXI@Z
??_Gexception@@UAEPAXI@Z
??_U@YAPAXI@Z
??_V@YAXPAX@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDXZ
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?terminate@@YAXXZ
?unexpected@@YAXXZ
?what@exception@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CxxThrowException
_EH_prolog
_Getdays
_Getmonths
_Gettnames
_HUGE
_Strftime
_XcptFilter
__CxxCallUnwindDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
___lc_codepage_func
___lc_handle_func
___mb_cur_max_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__crtCompareStringA
__crtCompareStringW
__crtGetLocaleInfoW
__crtGetStringTypeW
__crtLCMapStringA
__crtLCMapStringW
__dllonexit
__doserrno
__fpecode
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv_init
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fileinfo
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__osver
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__winmajor
__p__winminor
__p__winver
__p__wpgmptr
__pctype_func
__pioinfo
__pxcptinfoptrs
__set_app_type
__setlc_active
__setusermatherr
__threadhandle
__threadid
__toascii
__unDName
__unDNameEx
__uncaught_exception
__unguarded_readlc_active
__wargv
__wcserror
__wgetmainargs
__winitenv
_abnormal_termination
_access
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_aligned_free
_aligned_malloc
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_realloc
_amsg_exit
_assert
_atodbl
_atoi64
_atoldbl
_beep
_beginthread
_beginthreadex
_c_exit
_cabs
_callnewh
_cexit
_cgets
_cgetws
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_clearfp
_close
_commit
_commode
_control87
_controlfp
_copysign
_cprintf
_cputs
_cputws
_creat
_cscanf
_ctime64
_ctype
_cwait
_cwprintf
_cwscanf
_daylight
_dstbias
_dup
_dup2
_ecvt
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fcloseall
_fcvt
_fdopen
_fgetchar
_fgetwchar
_filbuf
_fileinfo
_filelength
_filelengthi64
_fileno
_findclose
_findfirst
_findfirst64
_findfirsti64
_findnext
_findnext64
_findnexti64
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fputchar
_fputwchar
_fsopen
_fstat
_fstat64
_fstati64
_ftime
_ftime64
_ftol
_fullpath
_futime
_futime64
_gcvt
_get_heap_handle
_get_osfhandle
_get_sbh_threshold
_getch
_getche
_getcwd
_getdcwd
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp
_getpid
_getsystime
_getw
_getwch
_getwche
_getws
_global_unwind2
_gmtime64
_heapadd
_heapchk
_heapmin
_heapset
_heapused
_heapwalk
_hypot
_i64toa
_i64tow
_initterm
_inp
_inpd
_inpw
_iob
_isatty
_isctype
_ismbbalnum
_ismbbalpha
_ismbbgraph
_ismbbkalnum
_ismbbkana
_ismbbkprint
_ismbbkpunct
_ismbblead
_ismbbprint
_ismbbpunct
_ismbbtrail
_ismbcalnum
_ismbcalpha
_ismbcdigit
_ismbcgraph
_ismbchira
_ismbckata
_ismbcl0
_ismbcl1
_ismbcl2
_ismbclegal
_ismbclower
_ismbcprint
_ismbcpunct
_ismbcspace
_ismbcsymbol
_ismbcupper
_ismbslead
_ismbstrail
_isnan
_itoa
_itow
_j0
_j1
_jn
_kbhit
_lfind
_loaddll
_local_unwind2
_localtime64
_lock
_locking
_logb
_longjmpex
_lrotl
_lrotr
_lsearch
_lseek
_lseeki64
_ltoa
_ltow
_makepath
_mbbtombc
_mbbtype
_mbcasemap
_mbccpy
_mbcjistojms
_mbcjmstojis
_mbclen
_mbctohira
_mbctokata
_mbctolower
_mbctombb
_mbctoupper
_mbctype
_mbsbtype
_mbscat
_mbschr
_mbscmp
_mbscoll
_mbscpy
_mbscspn
_mbsdec
_mbsdup
_mbsicmp
_mbsicoll
_mbsinc
_mbslen
_mbslwr
_mbsnbcat
_mbsnbcmp
_mbsnbcnt
_mbsnbcoll
_mbsnbcpy
_mbsnbicmp
_mbsnbicoll
_mbsnbset
_mbsncat
_mbsnccnt
_mbsncmp
_mbsncoll
_mbsncpy
_mbsnextc
_mbsnicmp
_mbsnicoll
_mbsninc
_mbsnset
_mbspbrk
_mbsrchr
_mbsrev
_mbsset
_mbsspn
_mbsspnp
_mbsstr
_mbstok
_mbstrlen
_mbsupr
_memccpy
_memicmp
_mkdir
_mktemp
_mktime64
_msize
_nextafter
_onexit
_open
_open_osfhandle
_osplatform
_osver
_outp
_outpd
_outpw
_pclose
_pctype
_pgmptr
_pipe
_popen
_purecall
_putch
_putenv
_putw
_putwch
_putws
_pwctype
_read
_resetstkoflw
_rmdir
_rmtmp
_rotl
_rotr
_safe_fdiv
_safe_fdivr
_safe_fprem
_safe_fprem1
_scalb
_scprintf
_scwprintf
_searchenv
_seh_longjmp_unwind
_set_SSE2_enable
_set_error_mode
_set_sbh_threshold
_seterrormode
_setjmp
_setjmp3
_setmaxstdio
_setmbcp
_setmode
_setsystime
_sleep
_snprintf
_snscanf
_snwprintf
_snwscanf
_sopen
_spawnl
_spawnle
_spawnlp
_spawnlpe
_spawnv
_spawnve
_spawnvp
_spawnvpe
_splitpath
_stat
_stat64
_stati64
_statusfp

Sections

.text
Size: 303KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
test.JPG
.jpg
uninst.exe
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UserInfo.dll
.dll windows:4 windows x86 arch:x86

afa8e526425f3585465337467d0b5909

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
GetCurrentThread
lstrcpynA
GetCurrentProcess
GetModuleHandleA
GetProcAddress
GetLastError
GlobalFree
CloseHandle
GlobalAlloc

advapi32

OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
GetUserNameA
OpenThreadToken

Exports

Exports

GetAccountType
GetName
GetOriginalAccountType

Sections

.text
Size: 1024B - Virtual size: 741B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 673B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
xvid.inf
xvidcore.dll
.dll windows:4 windows x86 arch:x86

056097a1b0cb00b2dfa4e81b830e30bc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateThread
WaitForSingleObject
CloseHandle
Sleep
GetSystemInfo
HeapFree
HeapAlloc
HeapReAlloc
RtlUnwind
GetCommandLineA
GetVersion
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
GetModuleHandleA
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
InitializeCriticalSection
DeleteCriticalSection
ExitProcess
WriteFile
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
InterlockedDecrement
InterlockedIncrement
SetFilePointer
SetStdHandle
FlushFileBuffers
CreateFileA
ReadFile
MultiByteToWideChar
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetEndOfFile

Exports

Exports

xvid_decore
xvid_encore
xvid_global
xvid_plugin_2pass1
xvid_plugin_2pass2
xvid_plugin_dump
xvid_plugin_lumimasking
xvid_plugin_psnr
xvid_plugin_single
xvid_plugin_ssim

Sections

.text
Size: 516KB - Virtual size: 513KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rotext
Size: 132KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 520KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
xvidvfw.dll
.dll windows:4 windows x86 arch:x86

229bd0a26cef6ce3a637e7a1707d7d55

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

EnableWindow
CreateDialogParamA
GetDesktopWindow
DestroyWindow
EndDialog
GetWindowRect
InvalidateRect
GetDC
KillTimer
SetTimer
SetWindowPos
CreateWindowExA
LoadStringA
GetParent
GetDlgCtrlID
CheckDlgButton
GetDlgItemInt
MessageBoxA
EnumChildWindows
ShowWindow
IsDlgButtonChecked
CheckRadioButton
GetDlgItemTextA
SetDlgItemInt
SendMessageA
LoadCursorA
SetClassLongA
GetDlgItem
DialogBoxParamA
wsprintfA
SetWindowLongA
GetWindowLongA
SendDlgItemMessageA
SetDlgItemTextA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

comctl32

ord17
PropertySheetA

advapi32

RegCreateKeyExA
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA

gdi32

SetBkMode
SetTextColor
GetStockObject
GetObjectA
GetTextAlign
SelectObject
SetBkColor
SetDIBitsToDevice
SetTextAlign
GetTextMetricsA
TextOutA
CreateFontIndirectA

shell32

ShellExecuteA

winmm

DefDriverProc

kernel32

GetCurrentProcess
TerminateProcess
ExitProcess
HeapReAlloc
VirtualAlloc
VirtualFree
SetHandleCount
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
GetModuleHandleA
GetVersion
GetCommandLineA
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetFilePointer
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
SetStdHandle
RtlUnwind
FlushFileBuffers
HeapCreate
ReadFile
WriteFile
HeapAlloc
HeapFree
OutputDebugStringA
FreeResource
LockResource
LoadResource
FindResourceA
FreeLibrary
GetProcAddress
LoadLibraryA
GetLastError
lstrlenA
GetFileSize
CloseHandle
CreateFileA
lstrcpyA
lstrcmpiA

Exports

Exports

Configure
DriverProc

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MiniVCap_5.1.8_trial/_uninst.exe
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UserInfo.dll
.dll windows:4 windows x86 arch:x86

afa8e526425f3585465337467d0b5909

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
GetCurrentThread
lstrcpynA
GetCurrentProcess
GetModuleHandleA
GetProcAddress
GetLastError
GlobalFree
CloseHandle
GlobalAlloc

advapi32

OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
GetUserNameA
OpenThreadToken

Exports

Exports

GetAccountType
GetName
GetOriginalAccountType

Sections

.text
Size: 1024B - Virtual size: 741B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 673B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MiniVCap_5.1.8_trial/license.TXT
MiniVCap_5.1.8_trial/˵.txt
MiniVCap_5.1.8_trial/.url
.url

Sharing

General

Malware Config

Signatures

Files

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 17KB - Virtual size: 16KB

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1KB - Virtual size: 1KB

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 1024B - Virtual size: 784B

.data Size: 512B - Virtual size: 100B

.reloc Size: 1024B - Virtual size: 520B

afa8e526425f3585465337467d0b5909

Headers

File Characteristics

Imports

kernel32

advapi32

Exports

Exports

Sections

.text Size: 1024B - Virtual size: 741B

.rdata Size: 1024B - Virtual size: 673B

.data Size: 512B - Virtual size: 88B

.reloc Size: 512B - Virtual size: 190B

1042bb30696d4426da7447f341f51a6e

Headers

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 224KB - Virtual size: 222KB

.rdata Size: 64KB - Virtual size: 63KB

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 17KB - Virtual size: 16KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 1024B - Virtual size: 520B

.text
Size: 1024B - Virtual size: 741B

.rdata
Size: 1024B - Virtual size: 673B

.data
Size: 512B - Virtual size: 88B

.reloc
Size: 512B - Virtual size: 190B

.text
Size: 224KB - Virtual size: 222KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 28KB - Virtual size: 25KB

.rsrc
Size: 4KB - Virtual size: 952B

.reloc
Size: 12KB - Virtual size: 10KB

UPX0
Size: - Virtual size: 168KB

UPX1
Size: 66KB - Virtual size: 68KB

.rsrc
Size: 2KB - Virtual size: 4KB

.text
Size: 104KB - Virtual size: 100KB

MMXCODE1
Size: 8KB - Virtual size: 5KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 31KB

H26xColo
Size: 32KB - Virtual size: 29KB

MMXDATA1
Size: 4KB - Virtual size: 448B

MMXCCDAT
Size: 20KB - Virtual size: 18KB

.rsrc
Size: 8KB - Virtual size: 6KB

.reloc
Size: 8KB - Virtual size: 7KB

.text
Size: 10KB - Virtual size: 10KB

.data
Size: 31KB - Virtual size: 31KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 1024B - Virtual size: 714B

.text
Size: 168KB - Virtual size: 167KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 8KB - Virtual size: 202KB

.rsrc
Size: 8KB - Virtual size: 4KB

.reloc
Size: 12KB - Virtual size: 9KB