251a76a61ad88d081a6444545cf01957_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

251a76a61ad88d081a6444545cf01957_JaffaCakes118
Size

5.7MB
MD5

251a76a61ad88d081a6444545cf01957
SHA1

26dc684b53a66b0bb5eb0a768f7506ab6bb5e183
SHA256

8307d35c15f428c09f02d3227adfda2026194660a615e21c34092fd37f5f42e5
SHA512

7115c00497fdbcc141f3df5736b6241ad9568f9e4efc39ffca99464f6a77090450cba7de5771b2ca5968dd1accef53c911f0dcd86f76ffe93bd9e00e1cee2a76
SSDEEP

98304:RC2OedbkO8vAv5jjJJ0S89Wtr03kiUMHFu9CEOwbnufzY2hwoQ3xJ4lxGTxEcXYY:cidbkOQs5jjY79WeZiYwbnuiLSGmcIpi

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 17 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/Balabolka/balabolka.exe	aspack_v212_v242
static1/unpack001/Balabolka/ogg.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/MultimediaConverter.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/delzip190.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/hunspell.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/libdjvulibre.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/libjpeg.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/libtiff.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/libz.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/mp4lib.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/pdfimages.exe	aspack_v212_v242
static1/unpack001/Balabolka/utils/pdftotext.exe	aspack_v212_v242
static1/unpack001/Balabolka/utils/unrar.dll	aspack_v212_v242
static1/unpack001/Balabolka/utils/viewer.exe	aspack_v212_v242
static1/unpack001/Balabolka/vorbis.dll	aspack_v212_v242
static1/unpack001/Balabolka/vorbisenc.dll	aspack_v212_v242
static1/unpack001/Balabolka/vorbisfile.dll	aspack_v212_v242

Unsigned PE 26 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Balabolka/BFileExt.dll
unpack001/Balabolka/balabolka.exe
unpack001/Balabolka/lame_enc.dll
unpack001/Balabolka/libsamplerate.dll
unpack001/Balabolka/ogg.dll
unpack001/Balabolka/utils/MMConverterCon.exe
unpack001/Balabolka/utils/MultimediaConverter.dll
unpack001/Balabolka/utils/ddjvu.exe
unpack001/Balabolka/utils/delzip190.dll
unpack001/Balabolka/utils/djvutxt.exe
unpack001/Balabolka/utils/hunspell.dll
unpack001/Balabolka/utils/libdjvulibre.dll
unpack001/Balabolka/utils/libjpeg.dll
unpack001/Balabolka/utils/libtiff.dll
unpack001/Balabolka/utils/libz.dll
unpack001/Balabolka/utils/mp4chaps.exe
unpack001/Balabolka/utils/mp4lib.dll
unpack001/Balabolka/utils/neroAacEnc.exe
unpack001/Balabolka/utils/neroAacTag.exe
unpack001/Balabolka/utils/pdfimages.exe
unpack001/Balabolka/utils/pdftotext.exe
unpack001/Balabolka/utils/unrar.dll
unpack001/Balabolka/utils/viewer.exe
unpack001/Balabolka/vorbis.dll
unpack001/Balabolka/vorbisenc.dll
unpack001/Balabolka/vorbisfile.dll

Files

251a76a61ad88d081a6444545cf01957_JaffaCakes118
.rar
Balabolka/BFileExt.dll
.dll regsvr32 windows:4 windows x86 arch:x86

13ce1dbf8f3942ab9b73fe9a5fc0b571

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegFlushKey
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegSetValueExA

kernel32

CloseHandle
CompareStringA
CompareStringW
CreateEventA
CreateFileA
CreateThread
DeleteCriticalSection
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
ExitThread
FileTimeToSystemTime
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetFileType
GetLastError
GetLocalTime
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetThreadLocale
GetThreadPriority
GetVersionExA
GetWindowsDirectoryA
HeapAlloc
HeapFree
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LoadResource
LocalAlloc
LocalFree
LockResource
MultiByteToWideChar
ReadFile
ResetEvent
ResumeThread
SetEndOfFile
SetEvent
SetFilePointer
SetLastError
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
TerminateThread
TlsAlloc
TlsGetValue
TlsSetValue
VirtualFree
WaitForSingleObject
WideCharToMultiByte
WriteFile

ole32

IsEqualGUID
ReleaseStgMedium

oleaut32

SafeArrayAccessData
SafeArrayCreate
SafeArrayGetElement
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayRedim
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString
SysReAllocStringLen
VariantChangeTypeEx
VariantClear
VariantCopy

shell32

DragQueryFileA
ShellExecuteA

user32

CharLowerA
CharLowerBuffA
CharLowerBuffW
CharUpperA
CharUpperBuffA
CharUpperBuffW
CreateMenu
GetDesktopWindow
GetSystemMetrics
InsertMenuA
InsertMenuItemA
MessageBoxA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 160B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Balabolka/English.chm
.chm
Balabolka/French.chm
.chm
Balabolka/German.chm
.chm
Balabolka/Korean.chm
.chm
Balabolka/Russian.chm
.chm
Balabolka/Ukrainian.chm
.chm
Balabolka/balabolka.exe
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 1.2MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 37KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 270KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 424KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/lame_enc.dll
.dll windows:5 windows x86 arch:x86

9a91061858771a11673ade87b98580d0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetPrivateProfileIntA
OutputDebugStringA
GetModuleFileNameA
FormatMessageA
LoadLibraryA
GetThreadLocale
HeapAlloc
GetLastError
HeapFree
GetCurrentThreadId
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
GetModuleHandleA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
SetFilePointer
MultiByteToWideChar
ReadFile
DeleteCriticalSection
VirtualFree
VirtualAlloc
HeapCreate
HeapDestroy
WriteFile
GetStdHandle
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
CloseHandle
SetHandleCount
GetFileType
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
FlushFileBuffers
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
InitializeCriticalSectionAndSpinCount
CreateFileA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
SetEndOfFile
GetProcessHeap

user32

MessageBoxA

Exports

Exports

beCloseStream
beDeinitStream
beEncodeChunk
beEncodeChunkFloatS16NI
beFlushNoGap
beInitStream
beVersion
beWriteInfoTag
beWriteVBRHeader
lame_close
lame_encode_buffer_interleaved
lame_encode_flush
lame_get_in_samplerate
lame_get_num_channels
lame_get_num_samples
lame_get_out_samplerate
lame_get_scale
lame_get_scale_left
lame_get_scale_right
lame_init
lame_init_params
lame_mp3_tags_fid
lame_set_in_samplerate
lame_set_num_channels
lame_set_num_samples
lame_set_out_samplerate
lame_set_scale
lame_set_scale_left
lame_set_scale_right

Sections

.text
Size: 308KB - Virtual size: 308KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Balabolka/languages/Bulgarian.lng
Balabolka/languages/Chinese (Simplified).lng
Balabolka/languages/Chinese (Traditional).lng
Balabolka/languages/Czech.lng
Balabolka/languages/Dutch.lng
Balabolka/languages/French.lng
Balabolka/languages/German.lng
Balabolka/languages/Hungarian.lng
Balabolka/languages/Italian.lng
Balabolka/languages/Korean.lng
Balabolka/languages/Polish.lng
Balabolka/languages/Portuguese (Brazil).lng
Balabolka/languages/Portuguese (Portugal).lng
Balabolka/languages/Romanian.lng
Balabolka/languages/Russian.lng
Balabolka/languages/Spanish.lng
Balabolka/languages/Ukrainian.lng
Balabolka/languages/Vietnamese.lng
Balabolka/languages/sample.txt
Balabolka/libsamplerate.dll
.dll windows:4 windows x86 arch:x86

d562afdc5868b30cf5aace6bbd2dc362

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Documents and Settings\Admin\Мои документы\Visual Studio 2005\Projects\libsamplerate\release\libsamplerate.pdb

Imports

msvcr80

__clean_type_info_names_internal
_unlock
_crt_debugger_hook
_lock
_onexit
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
_malloc_crt
_encode_pointer
memmove
calloc
__dllonexit
free
memset
memcpy
floor
_CIfmod

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

Exports

Exports

src_callback_new
src_callback_read
src_delete
src_error
src_float_to_short_array
src_get_description
src_get_name
src_get_version
src_is_valid_ratio
src_new
src_process
src_reset
src_set_ratio
src_short_to_float_array
src_simple
src_strerror

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 860B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 818B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Balabolka/ogg.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Exports

Exports

ogg_packet_clear
ogg_page_bos
ogg_page_checksum_set
ogg_page_continued
ogg_page_eos
ogg_page_granulepos
ogg_page_packets
ogg_page_pageno
ogg_page_serialno
ogg_page_version
ogg_stream_clear
ogg_stream_destroy
ogg_stream_eos
ogg_stream_flush
ogg_stream_init
ogg_stream_packetin
ogg_stream_packetout
ogg_stream_packetpeek
ogg_stream_pagein
ogg_stream_pageout
ogg_stream_reset
ogg_stream_reset_serialno
ogg_sync_buffer
ogg_sync_clear
ogg_sync_destroy
ogg_sync_init
ogg_sync_pageout
ogg_sync_pageseek
ogg_sync_reset
ogg_sync_wrote
oggpackB_adv
oggpackB_adv1
oggpackB_bits
oggpackB_bytes
oggpackB_get_buffer
oggpackB_look
oggpackB_look1
oggpackB_read
oggpackB_read1
oggpackB_readinit
oggpackB_reset
oggpackB_write
oggpackB_writealign
oggpackB_writeclear
oggpackB_writecopy
oggpackB_writeinit
oggpackB_writetrunc
oggpack_adv
oggpack_adv1
oggpack_bits
oggpack_bytes
oggpack_get_buffer
oggpack_look
oggpack_look1
oggpack_read
oggpack_read1
oggpack_readinit
oggpack_reset
oggpack_write
oggpack_writealign
oggpack_writeclear
oggpack_writecopy
oggpack_writeinit
oggpack_writetrunc

Sections

.text
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/skins/Neutral.asz
Balabolka/skins/Sapphire.asz
Balabolka/skins/Vienna.asz
Balabolka/skins/WLM.asz
Balabolka/sounds/finish.wav
Balabolka/utils/MMConverterCon.exe
.exe windows:4 windows x86 arch:x86

696b5dc1e295cfd42711a127361e7d24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameA
WritePrivateProfileStringA
GetCurrentDirectoryA
GlobalFlags
GetCPInfo
GetOEMCP
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
SetEnvironmentVariableA
SetCurrentDirectoryA
GetDriveTypeA
ExitProcess
HeapReAlloc
TerminateProcess
HeapSize
GlobalAddAtomA
HeapCreate
VirtualFree
IsBadWritePtr
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
SetStdHandle
GetLocaleInfoW
GlobalFindAtomA
lstrcmpW
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
InterlockedDecrement
GetCurrentThread
GetCurrentThreadId
FreeLibrary
GlobalDeleteAtom
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
SetErrorMode
lstrcatA
LoadLibraryA
GetProcAddress
GetModuleFileNameA
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
SetLastError
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcpynA
GetCommandLineA
GetModuleHandleA
CreateEventA
WaitForSingleObject
CopyFileA
DeleteFileA
CloseHandle
FormatMessageA
LocalFree
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
GetLastError
RaiseException
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
HeapDestroy
InterlockedExchange

user32

GetFocus
GetForegroundWindow
DispatchMessageA
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
PeekMessageA
MapWindowPoints
GetKeyState
SetForegroundWindow
IsWindowVisible
GetClientRect
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
CopyRect
RemovePropA
GetWindow
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetWindowTextA
SendMessageA
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
UnhookWindowsHookEx
LoadCursorA
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
PostMessageA
PostQuitMessage
ShowWindow
wsprintfA
GetSystemMetrics
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
UnregisterClassA
CharUpperA
DestroyMenu
PtInRect
SetWindowTextA
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetCursor
GetMessageA
TranslateMessage
GetActiveWindow
GetCursorPos
ValidateRect
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
IsIconic
GetPropA

gdi32

DeleteObject
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
DeleteDC
CreateBitmap
GetStockObject
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
SaveDC
ScaleWindowExtEx
GetDeviceCaps

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegSetValueExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA

comctl32

ord17

shlwapi

PathStripToRootA
PathIsUNCA
PathFindFileNameA
PathFindExtensionA

ole32

CoInitializeEx
CoCreateInstance
CoUninitialize
CoTaskMemFree

oleaut32

SysAllocString
SysFreeString
VariantClear
VariantChangeType
VariantInit

Sections

.text
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Balabolka/utils/MultimediaConverter.dll
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DbgOut
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
RedirectStdOut
RestoreStdOut
h263dClose
h263dDecodeFrame
h263dFree
h263dGetNumberOfTemporalScalabilityLevels
h263dGetSnapshotStatus
h263dIsIntra
h263dIsPB
h263dLoad
h263dLoadAndLinkRenderer
h263dOpen
h263dReportSyncInEveryGOB
h263dReturnImageBuffer
h263dSetBackChannelUsage
h263dSetErrorResilience
h263dSetFastUpdateGOBCallback
h263dSetFastUpdateMBsCallback
h263dSetFastUpdatePictureCallback
h263dSetIndNotDecodedMBsCallback
h263dSetLogFile
h263dSetMaxDisplayingDelay
h263dSetOutputFile
h263dSetPostFilter
h263dSetReferenceSegmentBuffering
h263dSetRenderer
h263dSetReportPictureSizeCallback
h263dSetStartOrEndCallback
h263dSetStartOrEndSnapshotCallback
h263dSetTemporalScalabilityLevel
mdcClose
mdcCorrectLuminance
mdcCreateGammaLookupTable
mdcDecodeFrame
mdcDestroyGammaLookupTable
mdcFree
mdcIsPB
mdcLoad
mdcOpen
mdcSet16BitRGBMask
mdcSetPostFilter

Sections

.text
Size: 305KB - Virtual size: 668KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 288KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 45KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/ddjvu.exe
.exe .pdf windows:5 windows x86 arch:x86 polyglot

afda93a9b1e3a497fc66ca0a5aa27037

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\leonb\Home\djvulibre-3.5\win32\djvulibre\Release\ddjvu.pdb

Imports

libdjvulibre

ddjvu_message_pop
ddjvu_page_create_by_pageno
ddjvu_page_get_resolution
ddjvu_page_get_height
ddjvu_format_create
ddjvu_format_set_row_order
ddjvu_message_peek
ddjvu_document_job
ddjvu_job_status
ddjvu_job_release
ddjvu_context_create
ddjvu_page_get_width
ddjvu_page_render
ddjvu_context_release
ddjvu_page_get_long_description
ddjvu_document_get_pagenum
ddjvu_document_create_by_filename
ddjvu_page_get_type
ddjvu_format_release
ddjvu_page_job
ddjvu_message_wait

libtiff

TIFFWarning
TIFFNumberOfTiles
TIFFReadEncodedTile
TIFFTileSize
TIFFTileRowSize
_TIFFrealloc
TIFFSetDirectory
TIFFClientOpen
TIFFFileName
TIFFSetField
TIFFFlush
TIFFClose
TIFFWriteDirectory
TIFFOpen
TIFFFindCODEC
TIFFScanlineSize
TIFFWriteScanline
TIFFIsCODECConfigured
TIFFGetFieldDefaulted
TIFFNumberOfStrips
TIFFReadRawStrip
TIFFGetWriteProc
TIFFError
TIFFClientdata
TIFFReadRGBAImageOriented
TIFFGetSeekProc
TIFFGetField
TIFFReadRawTile
TIFFNumberOfDirectories
TIFFReverseBits
TIFFReadEncodedStrip
_TIFFmemcpy
TIFFWriteEncodedStrip
_TIFFmalloc
TIFFIsTiled
_TIFFmemset
_TIFFfree
TIFFStripSize

msvcr90

strchr
_controlfp_s
_invoke_watson
_except_handler4_common
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
_crt_debugger_hook
__set_app_type
_encode_pointer
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
__initenv
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
_time64
atof
fseek
_localtime64
toupper
rand
atoi
qsort
sprintf
exit
fclose
vfprintf
_setmode
fwrite
ferror
_mktemp
_fileno
fprintf
fopen
free
putc
malloc
strerror
__iob_func
memset
fflush
_errno
strtol
remove
strncpy

kernel32

IsDebuggerPresent
Sleep
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedExchange
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Balabolka/utils/delzip190.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Exports

Exports

DZ_Abort
DZ_Banner
DZ_Exec
DZ_Name
DZ_Path
DZ_PrivVersion
DZ_Version
DllMain
___CPPdebugHook

Sections

.text
Size: 88KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/djvutxt.exe
.exe windows:5 windows x86 arch:x86

da246724b82c6d66b655e11e39f190ef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\leonb\Home\djvulibre-3.5\win32\djvulibre\Release\djvutxt.pdb

Imports

libdjvulibre

miniexp_to_str
ddjvu_document_create_by_filename
ddjvu_document_get_pagenum
minilisp_print_7bits
ddjvu_context_release
ddjvu_context_create
minilisp_finish
ddjvu_job_release
ddjvu_job_status
ddjvu_document_job
ddjvu_message_peek
miniexp_pprint
ddjvu_document_get_pagetext
miniexp_stringp
ddjvu_message_wait
ddjvu_message_pop
miniexp_nth

msvcr90

_controlfp_s
_invoke_watson
_except_handler4_common
_decode_pointer
putc
fputs
__iob_func
strchr
strtol
strncpy
printf
fprintf
freopen
vfprintf
exit
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
__initenv
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 650B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Balabolka/utils/hunspell.dll
.dll windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

Hunspell_add
Hunspell_add_with_affix
Hunspell_analyze
Hunspell_create
Hunspell_create_key
Hunspell_destroy
Hunspell_free_list
Hunspell_generate
Hunspell_get_dic_encoding
Hunspell_remove
Hunspell_spell
Hunspell_stem
Hunspell_suggest

Sections

.text
Size: 72KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/libdjvulibre.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

??0?$GP@VGStringRep@DJVU@@@DJVU@@QAE@ABV01@@Z
??0?$GP@VGStringRep@DJVU@@@DJVU@@QAE@PAVGStringRep@1@@Z
??0?$GP@VGStringRep@DJVU@@@DJVU@@QAE@XZ
??0ArrayBase@DJVU@@IAE@XZ
??0ArrayBase@DJVU@@QAE@ABV01@@Z
??0ArrayRep@DJVU@@QAE@ABV01@@Z
??0ArrayRep@DJVU@@QAE@HP6AXPAXHH@Z1P6AX0HHPBXHH@Z3P6AX0HH2H@Z@Z
??0ArrayRep@DJVU@@QAE@HP6AXPAXHH@Z1P6AX0HHPBXHH@Z3P6AX0HH2H@ZH@Z
??0ArrayRep@DJVU@@QAE@HP6AXPAXHH@Z1P6AX0HHPBXHH@Z3P6AX0HH2H@ZHH@Z
??0BSByteStream@DJVU@@IAE@V?$GP@VByteStream@DJVU@@@1@@Z
??0ByteStream@DJVU@@IAE@XZ
??0DataPool@DJVU@@IAE@XZ
??0DjVmDir@DJVU@@IAE@XZ
??0DjVmDoc@DJVU@@IAE@XZ
??0DjVmDoc@DJVU@@QAE@ABV01@@Z
??0DjVmNav@DJVU@@IAE@XZ
??0DjVuANT@DJVU@@IAE@XZ
??0DjVuANT@DJVU@@QAE@ABV01@@Z
??0DjVuAnno@DJVU@@IAE@XZ
??0DjVuAnno@DJVU@@QAE@ABV01@@Z
??0DjVuBookMark@DjVmNav@DJVU@@IAE@XZ
??0DjVuBookMark@DjVmNav@DJVU@@QAE@ABV012@@Z
??0DjVuDocEditor@DJVU@@IAE@XZ
??0DjVuDocument@DJVU@@IAE@XZ
??0DjVuDumpHelper@DJVU@@QAE@XZ
??0DjVuFile@DJVU@@IAE@XZ
??0DjVuImage@DJVU@@IAE@XZ
??0DjVuImage@DJVU@@QAE@ABV01@@Z
??0DjVuInfo@DJVU@@IAE@XZ
??0DjVuInfo@DJVU@@QAE@ABV01@@Z
??0DjVuMemoryPort@DJVU@@QAE@XZ
??0DjVuMessage@DJVU@@IAE@XZ
??0DjVuMessage@DJVU@@QAE@ABV01@@Z
??0DjVuMessageLite@DJVU@@IAE@XZ
??0DjVuMessageLite@DJVU@@QAE@ABV01@@Z
??0DjVuPalette@DJVU@@IAE@XZ
??0DjVuPalette@DJVU@@QAE@ABV01@@Z
??0DjVuPort@DJVU@@QAE@ABV01@@Z
??0DjVuPort@DJVU@@QAE@XZ
??0DjVuPortcaster@DJVU@@QAE@XZ
??0DjVuSimplePort@DJVU@@QAE@ABV01@@Z
??0DjVuSimplePort@DJVU@@QAE@XZ
??0DjVuTXT@DJVU@@IAE@XZ
??0DjVuTXT@DJVU@@QAE@ABV01@@Z
??0DjVuText@DJVU@@IAE@XZ
??0DjVuText@DJVU@@QAE@ABV01@@Z
??0File@DjVmDir@DJVU@@IAE@XZ
??0File@DjVmDir@DJVU@@QAE@ABV012@@Z
??0Filename@GURL@DJVU@@QAE@ABV012@@Z
??0Filename@GURL@DJVU@@QAE@ABVGNativeString@2@@Z
??0Filename@GURL@DJVU@@QAE@ABVGUTF8String@2@@Z
??0GArrayBase@DJVU@@QAE@ABUTraits@1@@Z
??0GArrayBase@DJVU@@QAE@ABUTraits@1@HH@Z
??0GArrayBase@DJVU@@QAE@ABV01@@Z
??0GBaseString@DJVU@@IAE@XZ
??0GBaseString@DJVU@@QAE@ABV01@@Z
??0GBitmap@DJVU@@IAE@AAVByteStream@1@H@Z
??0GBitmap@DJVU@@IAE@ABV01@@Z
??0GBitmap@DJVU@@IAE@ABV01@ABVGRect@1@H@Z
??0GBitmap@DJVU@@IAE@ABV01@H@Z
??0GBitmap@DJVU@@IAE@HHH@Z
??0GBitmap@DJVU@@IAE@XZ
??0GBitmapScaler@DJVU@@IAE@HHHH@Z
??0GBitmapScaler@DJVU@@IAE@XZ
??0GBitmapScaler@DJVU@@QAE@ABV01@@Z
??0GException@DJVU@@QAE@ABV01@@Z
??0GException@DJVU@@QAE@PBD0H0W4source_type@01@@Z
??0GException@DJVU@@QAE@XZ
??0GListBase@DJVU@@IAE@ABUTraits@1@@Z
??0GListBase@DJVU@@IAE@ABV01@@Z
??0GNativeString@DJVU@@QAE@ABV01@@Z
??0GNativeString@DJVU@@QAE@ABV01@AAPAD@Z
??0GNativeString@DJVU@@QAE@ABV?$GP@VGStringRep@DJVU@@@1@@Z
??0GNativeString@DJVU@@QAE@ABVGBaseString@1@@Z
??0GNativeString@DJVU@@QAE@ABVGBaseString@1@HH@Z
??0GNativeString@DJVU@@QAE@ABVGUTF8String@1@@Z
??0GNativeString@DJVU@@QAE@D@Z
??0GNativeString@DJVU@@QAE@H@Z
??0GNativeString@DJVU@@QAE@N@Z
??0GNativeString@DJVU@@QAE@PBD@Z
??0GNativeString@DJVU@@QAE@PBDI@Z
??0GNativeString@DJVU@@QAE@PBE@Z
??0GNativeString@DJVU@@QAE@PBG@Z
??0GNativeString@DJVU@@QAE@PBGI@Z
??0GNativeString@DJVU@@QAE@PBI@Z
??0GNativeString@DJVU@@QAE@PBII@Z
??0GNativeString@DJVU@@QAE@XZ
??0GPBase@DJVU@@QAE@ABV01@@Z
??0GPBase@DJVU@@QAE@PAVGPEnabled@1@@Z
??0GPBase@DJVU@@QAE@XZ
??0GPBufferBase@DJVU@@QAE@AAPAXII@Z
??0GPEnabled@DJVU@@QAE@ABV01@@Z
??0GPEnabled@DJVU@@QAE@XZ
??0GPixmap@DJVU@@IAE@AAVByteStream@1@@Z
??0GPixmap@DJVU@@IAE@ABV01@@Z
??0GPixmap@DJVU@@IAE@ABV01@ABVGRect@1@@Z
??0GPixmap@DJVU@@IAE@ABVGBitmap@1@@Z
??0GPixmap@DJVU@@IAE@ABVGBitmap@1@ABVGRect@1@@Z
??0GPixmap@DJVU@@IAE@HHPBUGPixel@1@@Z
??0GPixmap@DJVU@@IAE@XZ
??0GPixmapScaler@DJVU@@IAE@HHHH@Z
??0GPixmapScaler@DJVU@@IAE@XZ
??0GPixmapScaler@DJVU@@QAE@ABV01@@Z
??0GPosition@DJVU@@QAE@ABV01@@Z
??0GPosition@DJVU@@QAE@PAUNode@1@PAX@Z
??0GPosition@DJVU@@QAE@XZ
??0GRect@DJVU@@QAE@HHII@Z
??0GRect@DJVU@@QAE@XZ
??0GRectMapper@DJVU@@QAE@XZ
??0GScaler@DJVU@@IAE@XZ
??0GScaler@DJVU@@QAE@ABV01@@Z
??0GSetBase@DJVU@@IAE@ABUTraits@1@@Z
??0GSetBase@DJVU@@IAE@ABV01@@Z
??0GStringRep@DJVU@@QAE@ABV01@@Z
??0GStringRep@DJVU@@QAE@XZ
??0GURL@DJVU@@IAE@PBD@Z
??0GURL@DJVU@@QAE@ABV01@@Z
??0GURL@DJVU@@QAE@ABVGNativeString@1@@Z
??0GURL@DJVU@@QAE@ABVGNativeString@1@ABV01@@Z
??0GURL@DJVU@@QAE@ABVGUTF8String@1@@Z
??0GURL@DJVU@@QAE@ABVGUTF8String@1@ABV01@@Z
??0GURL@DJVU@@QAE@XZ
??0GUTF8String@DJVU@@QAE@ABV01@@Z
??0GUTF8String@DJVU@@QAE@ABV01@AAPAD@Z
??0GUTF8String@DJVU@@QAE@ABV?$GP@VGStringRep@DJVU@@@1@@Z
??0GUTF8String@DJVU@@QAE@ABVGBaseString@1@@Z
??0GUTF8String@DJVU@@QAE@ABVGBaseString@1@HH@Z
??0GUTF8String@DJVU@@QAE@ABVGNativeString@1@@Z
??0GUTF8String@DJVU@@QAE@D@Z
??0GUTF8String@DJVU@@QAE@H@Z
??0GUTF8String@DJVU@@QAE@N@Z
??0GUTF8String@DJVU@@QAE@PBD@Z
??0GUTF8String@DJVU@@QAE@PBDI@Z
??0GUTF8String@DJVU@@QAE@PBE@Z
??0GUTF8String@DJVU@@QAE@PBG@Z
??0GUTF8String@DJVU@@QAE@PBGI@Z
??0GUTF8String@DJVU@@QAE@PBI@Z
??0GUTF8String@DJVU@@QAE@PBII@Z
??0GUTF8String@DJVU@@QAE@XZ
??0IFFByteStream@DJVU@@IAE@ABV?$GP@VByteStream@DJVU@@@1@H@Z
??0IW44Image@DJVU@@IAE@XZ
??0IWBitmap@DJVU@@IAE@XZ
??0IWEncoderParms@DJVU@@QAE@XZ
??0IWPixmap@DJVU@@IAE@XZ
??0JB2Dict@DJVU@@IAE@XZ
??0JB2Dict@DJVU@@QAE@ABV01@@Z
??0JB2Image@DJVU@@IAE@XZ
??0JB2Image@DJVU@@QAE@ABV01@@Z
??0JB2Shape@DJVU@@QAE@ABV01@@Z
??0JB2Shape@DJVU@@QAE@XZ
??0MMRDecoder@DJVU@@IAE@HH@Z
??0MMRDecoder@DJVU@@QAE@ABV01@@Z
??0Native@Filename@GURL@DJVU@@QAE@ABV0123@@Z
??0Native@Filename@GURL@DJVU@@QAE@ABVGNativeString@3@@Z
??0Native@GURL@DJVU@@QAE@ABV012@@Z
??0Native@GURL@DJVU@@QAE@ABVGNativeString@2@@Z
??0Native@GURL@DJVU@@QAE@ABVGNativeString@2@ABV12@@Z
??0UTF8@Filename@GURL@DJVU@@QAE@ABV0123@@Z
??0UTF8@Filename@GURL@DJVU@@QAE@ABVGUTF8String@3@@Z
??0UTF8@GStringRep@DJVU@@QAE@ABV012@@Z
??0UTF8@GStringRep@DJVU@@QAE@XZ
??0UTF8@GURL@DJVU@@QAE@ABV012@@Z
??0UTF8@GURL@DJVU@@QAE@ABVGUTF8String@2@@Z
??0UTF8@GURL@DJVU@@QAE@ABVGUTF8String@2@ABV12@@Z
??0Wrapper@ByteStream@DJVU@@IAE@ABV?$GP@VByteStream@DJVU@@@2@@Z
??0Wrapper@ByteStream@DJVU@@IAE@XZ
??0Zone@DjVuTXT@DJVU@@QAE@ABV012@@Z
??0Zone@DjVuTXT@DJVU@@QAE@XZ
??0lt_XMLParser@DJVU@@IAE@XZ
??0lt_XMLParser@DJVU@@QAE@ABV01@@Z
??0lt_XMLTags@DJVU@@IAE@QBD@Z
??0lt_XMLTags@DJVU@@IAE@XZ
??0lt_XMLTags@DJVU@@QAE@ABV01@@Z
??0miniobj_t@@QAE@ABV0@@Z
??0miniobj_t@@QAE@XZ
??0minivar_t@@QAE@ABV0@@Z
??0minivar_t@@QAE@PAUminiexp_s@@@Z
??0minivar_t@@QAE@XZ
??1?$GP@VGStringRep@DJVU@@@DJVU@@QAE@XZ
??1ArrayBase@DJVU@@UAE@XZ
??1ArrayRep@DJVU@@UAE@XZ
??1BSByteStream@DJVU@@UAE@XZ
??1ByteStream@DJVU@@UAE@XZ
??1DataPool@DJVU@@UAE@XZ
??1DjVmDir@DJVU@@UAE@XZ
??1DjVmDoc@DJVU@@UAE@XZ
??1DjVmNav@DJVU@@UAE@XZ
??1DjVuANT@DJVU@@UAE@XZ
??1DjVuAnno@DJVU@@UAE@XZ
??1DjVuBookMark@DjVmNav@DJVU@@UAE@XZ
??1DjVuDocEditor@DJVU@@UAE@XZ
??1DjVuDocument@DJVU@@UAE@XZ
??1DjVuDumpHelper@DJVU@@QAE@XZ
??1DjVuFile@DJVU@@UAE@XZ
??1DjVuImage@DJVU@@UAE@XZ
??1DjVuInfo@DJVU@@UAE@XZ
??1DjVuMemoryPort@DJVU@@UAE@XZ
??1DjVuMessage@DJVU@@UAE@XZ
??1DjVuMessageLite@DJVU@@UAE@XZ
??1DjVuPalette@DJVU@@UAE@XZ
??1DjVuPort@DJVU@@UAE@XZ
??1DjVuPortcaster@DJVU@@UAE@XZ
??1DjVuSimplePort@DJVU@@UAE@XZ
??1DjVuTXT@DJVU@@UAE@XZ
??1DjVuText@DJVU@@UAE@XZ
??1File@DjVmDir@DJVU@@UAE@XZ
??1Filename@GURL@DJVU@@UAE@XZ
??1GArrayBase@DJVU@@QAE@XZ
??1GBaseString@DJVU@@IAE@XZ
??1GBitmap@DJVU@@UAE@XZ
??1GBitmapScaler@DJVU@@UAE@XZ
??1GException@DJVU@@UAE@XZ
??1GListBase@DJVU@@QAE@XZ
??1GNativeString@DJVU@@QAE@XZ
??1GPBase@DJVU@@QAE@XZ
??1GPBufferBase@DJVU@@QAE@XZ
??1GPEnabled@DJVU@@UAE@XZ
??1GPixmap@DJVU@@UAE@XZ
??1GPixmapScaler@DJVU@@UAE@XZ
??1GScaler@DJVU@@UAE@XZ
??1GSetBase@DJVU@@QAE@XZ
??1GStringRep@DJVU@@UAE@XZ
??1GURL@DJVU@@UAE@XZ
??1GUTF8String@DJVU@@QAE@XZ
??1IFFByteStream@DJVU@@UAE@XZ
??1IW44Image@DJVU@@UAE@XZ
??1IWBitmap@DJVU@@UAE@XZ
??1IWPixmap@DJVU@@UAE@XZ
??1JB2Dict@DJVU@@UAE@XZ
??1JB2Image@DJVU@@UAE@XZ
??1JB2Shape@DJVU@@QAE@XZ
??1MMRDecoder@DJVU@@UAE@XZ
??1Native@Filename@GURL@DJVU@@UAE@XZ
??1Native@GURL@DJVU@@UAE@XZ
??1UTF8@Filename@GURL@DJVU@@UAE@XZ
??1UTF8@GStringRep@DJVU@@UAE@XZ
??1UTF8@GURL@DJVU@@UAE@XZ
??1Wrapper@ByteStream@DJVU@@UAE@XZ
??1Zone@DjVuTXT@DJVU@@QAE@XZ
??1lt_XMLParser@DJVU@@MAE@XZ
??1lt_XMLTags@DJVU@@UAE@XZ
??1miniobj_t@@UAE@XZ
??1minivar_t@@QAE@XZ
??2DjVuPort@DJVU@@SAPAXI@Z
??3DjVuPort@DJVU@@SAXPAX@Z
??4?$GP@VGStringRep@DJVU@@@DJVU@@QAEAAV01@ABV01@@Z
??4?$GP@VGStringRep@DJVU@@@DJVU@@QAEAAV01@PAVGStringRep@1@@Z
??4ArrayBase@DJVU@@QAEAAV01@ABV01@@Z
??4ArrayRep@DJVU@@QAEAAV01@ABV01@@Z
??4DjVmDoc@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuANT@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuAnno@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuBookMark@DjVmNav@DJVU@@QAEAAV012@ABV012@@Z
??4DjVuDumpHelper@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuImage@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuInfo@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuMessage@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuMessageLite@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuPalette@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuPort@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuSimplePort@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuTXT@DJVU@@QAEAAV01@ABV01@@Z
??4DjVuText@DJVU@@QAEAAV01@ABV01@@Z
??4File@DjVmDir@DJVU@@QAEAAV012@ABV012@@Z
??4Filename@GURL@DJVU@@QAEAAV012@ABV012@@Z
??4GArrayBase@DJVU@@QAEAAV01@ABV01@@Z
??4GBaseString@DJVU@@QAEAAV01@ABV01@@Z
??4GBitmap@DJVU@@QAEAAV01@ABV01@@Z
??4GException@DJVU@@QAEAAV01@ABV01@@Z
??4GExceptionHandler@DJVU@@QAEAAV01@ABV01@@Z
??4GListBase@DJVU@@QAEAAV01@ABV01@@Z
??4GNativeString@DJVU@@QAEAAV01@ABV01@@Z
??4GNativeString@DJVU@@QAEAAV01@ABV?$GP@VGStringRep@DJVU@@@1@@Z
??4GNativeString@DJVU@@QAEAAV01@ABVGBaseString@1@@Z
??4GNativeString@DJVU@@QAEAAV01@ABVGUTF8String@1@@Z
??4GNativeString@DJVU@@QAEAAV01@D@Z
??4GNativeString@DJVU@@QAEAAV01@PBD@Z
??4GOS@DJVU@@QAEAAV01@ABV01@@Z
??4GPBase@DJVU@@QAEAAV01@ABV01@@Z
??4GPEnabled@DJVU@@QAEAAV01@ABV01@@Z
??4GPixel@DJVU@@QAEAAU01@ABU01@@Z
??4GPixmap@DJVU@@QAEAAV01@ABV01@@Z
??4GPixmap@DJVU@@QAEAAV01@ABVGBitmap@1@@Z
??4GPosition@DJVU@@QAEAAV01@ABV01@@Z
??4GRect@DJVU@@QAEAAV01@ABV01@@Z
??4GRectMapper@DJVU@@QAEAAV01@ABV01@@Z
??4GSetBase@DJVU@@QAEAAV01@ABV01@@Z
??4GStringRep@DJVU@@QAEAAV01@ABV01@@Z
??4GURL@DJVU@@QAEAAV01@ABV01@@Z
??4GUTF8String@DJVU@@QAEAAV01@ABV01@@Z
??4GUTF8String@DJVU@@QAEAAV01@ABV?$GP@VGStringRep@DJVU@@@1@@Z
??4GUTF8String@DJVU@@QAEAAV01@ABVGBaseString@1@@Z
??4GUTF8String@DJVU@@QAEAAV01@ABVGNativeString@1@@Z
??4GUTF8String@DJVU@@QAEAAV01@D@Z
??4GUTF8String@DJVU@@QAEAAV01@PBD@Z
??4IWEncoderParms@DJVU@@QAEAAU01@ABU01@@Z
??4JB2Blit@DJVU@@QAEAAV01@ABV01@@Z
??4JB2Dict@DJVU@@QAEAAV01@ABV01@@Z
??4JB2Image@DJVU@@QAEAAV01@ABV01@@Z
??4JB2Shape@DJVU@@QAEAAV01@ABV01@@Z
??4Native@Filename@GURL@DJVU@@QAEAAV0123@ABV0123@@Z
??4Native@GURL@DJVU@@QAEAAV012@ABV012@@Z
??4UTF8@Filename@GURL@DJVU@@QAEAAV0123@ABV0123@@Z
??4UTF8@GStringRep@DJVU@@QAEAAV012@ABV012@@Z
??4UTF8@GURL@DJVU@@QAEAAV012@ABV012@@Z
??4Zone@DjVuTXT@DJVU@@QAEAAV012@ABV012@@Z
??4lt_XMLParser@DJVU@@QAEAAV01@ABV01@@Z
??4lt_XMLTags@DJVU@@QAEAAV01@ABV01@@Z
??4miniobj_t@@QAEAAV0@ABV0@@Z
??4minivar_t@@QAEAAV0@ABV0@@Z
??4minivar_t@@QAEAAV0@PAUminiexp_s@@@Z
??7?$GP@VGStringRep@DJVU@@@DJVU@@QBEHXZ
??7GBaseString@DJVU@@QBE_NXZ
??7GPosition@DJVU@@QBEHXZ
??8?$GP@VGStringRep@DJVU@@@DJVU@@QBEHPAVGStringRep@1@@Z
??8GBaseString@DJVU@@QBE_NABV01@@Z
??8GBaseString@DJVU@@QBE_NPBD@Z
??8GPBase@DJVU@@QBEHABV01@@Z
??8GURL@DJVU@@QBE_NABV01@@Z
??9?$GP@VGStringRep@DJVU@@@DJVU@@QBEHPAVGStringRep@1@@Z
??9GBaseString@DJVU@@QBE_NABV01@@Z
??9GBaseString@DJVU@@QBE_NPBD@Z
??9GURL@DJVU@@QBE_NABV01@@Z
??AGBaseString@DJVU@@QBEDH@Z
??AGBitmap@DJVU@@QAEPAEH@Z
??AGBitmap@DJVU@@QBEPBEH@Z
??AGPixmap@DJVU@@QAEPAUGPixel@1@H@Z
??AGPixmap@DJVU@@QBEPBUGPixel@1@H@Z
??Alt_XMLTags@DJVU@@QBEABV?$GPList@Vlt_XMLTags@DJVU@@@1@ABVGPosition@1@@Z
??Alt_XMLTags@DJVU@@QBEABV?$GPList@Vlt_XMLTags@DJVU@@@1@VGUTF8String@1@@Z
??B?$GP@VGStringRep@DJVU@@@DJVU@@QBEPAVGStringRep@1@XZ
??BGBaseString@DJVU@@QBEPBDXZ
??BGPBufferBase@DJVU@@QBEHXZ
??BGPosition@DJVU@@QBEHXZ
??BGURL@DJVU@@QBEPBDXZ
??Bminivar_t@@QAEAAPAUminiexp_s@@XZ
??C?$GP@VGStringRep@DJVU@@@DJVU@@QBEPAVGStringRep@1@XZ
??D?$GP@VGStringRep@DJVU@@@DJVU@@QBEAAVGStringRep@1@XZ
??EGPosition@DJVU@@QAEAAV01@XZ
??FGPosition@DJVU@@QAEAAV01@XZ
??HDJVU@@YA?AVGNativeString@0@PBDABV10@@Z
??HDJVU@@YA?AVGUTF8String@0@PBDABV10@@Z
??HGBaseString@DJVU@@QBE?AVGNativeString@1@ABV21@@Z
??HGBaseString@DJVU@@QBE?AVGUTF8String@1@ABV21@@Z
??HGNativeString@DJVU@@QBE?AV01@ABV01@@Z
??HGNativeString@DJVU@@QBE?AV01@ABVGBaseString@1@@Z
??HGNativeString@DJVU@@QBE?AV01@PBD@Z
??HGNativeString@DJVU@@QBE?AVGUTF8String@1@ABV21@@Z
??HGUTF8String@DJVU@@QBE?AV01@ABV01@@Z
??HGUTF8String@DJVU@@QBE?AV01@ABVGBaseString@1@@Z
??HGUTF8String@DJVU@@QBE?AV01@ABVGNativeString@1@@Z
??HGUTF8String@DJVU@@QBE?AV01@PBD@Z
??IWrapper@ByteStream@DJVU@@QAEPAV12@XZ
??IWrapper@ByteStream@DJVU@@QBEPAV12@XZ
??Iminivar_t@@QAEPAPAUminiexp_s@@XZ
??MGBaseString@DJVU@@QBE_NABV01@@Z
??MGBaseString@DJVU@@QBE_ND@Z
??MGBaseString@DJVU@@QBE_NPBD@Z
??NGBaseString@DJVU@@QBE_NABV01@@Z
??NGBaseString@DJVU@@QBE_ND@Z
??NGBaseString@DJVU@@QBE_NPBD@Z
??OGBaseString@DJVU@@QBE_NABV01@@Z
??OGBaseString@DJVU@@QBE_ND@Z
??OGBaseString@DJVU@@QBE_NPBD@Z
??PGBaseString@DJVU@@QBE_NABV01@@Z
??PGBaseString@DJVU@@QBE_ND@Z
??PGBaseString@DJVU@@QBE_NPBD@Z
??YGNativeString@DJVU@@QAEAAV01@ABVGBaseString@1@@Z
??YGNativeString@DJVU@@QAEAAV01@D@Z
??YGNativeString@DJVU@@QAEAAV01@PBD@Z
??YGUTF8String@DJVU@@QAEAAV01@ABVGBaseString@1@@Z
??YGUTF8String@DJVU@@QAEAAV01@D@Z
??YGUTF8String@DJVU@@QAEAAV01@PBD@Z
??_7ArrayBase@DJVU@@6B@
??_7ArrayRep@DJVU@@6B@
??_7BSByteStream@DJVU@@6B@
??_7ByteStream@DJVU@@6B@
??_7DataPool@DJVU@@6B@
??_7DjVmDir@DJVU@@6B@
??_7DjVmDoc@DJVU@@6B@
??_7DjVmNav@DJVU@@6B@
??_7DjVuANT@DJVU@@6B@
??_7DjVuAnno@DJVU@@6B@
??_7DjVuBookMark@DjVmNav@DJVU@@6B@
??_7DjVuDocEditor@DJVU@@6B@
??_7DjVuDocument@DJVU@@6B@
??_7DjVuFile@DJVU@@6B@
??_7DjVuImage@DJVU@@6B@
??_7DjVuInfo@DJVU@@6B@
??_7DjVuMemoryPort@DJVU@@6B@
??_7DjVuMessage@DJVU@@6B@
??_7DjVuMessageLite@DJVU@@6B@
??_7DjVuPalette@DJVU@@6B@
??_7DjVuPort@DJVU@@6B@
??_7DjVuPortcaster@DJVU@@6B@
??_7DjVuSimplePort@DJVU@@6B@
??_7DjVuTXT@DJVU@@6B@
??_7DjVuText@DJVU@@6B@
??_7File@DjVmDir@DJVU@@6B@
??_7Filename@GURL@DJVU@@6B@
??_7GBitmap@DJVU@@6B@
??_7GBitmapScaler@DJVU@@6B@
??_7GException@DJVU@@6B@
??_7GPEnabled@DJVU@@6B@
??_7GPixmap@DJVU@@6B@
??_7GPixmapScaler@DJVU@@6B@
??_7GScaler@DJVU@@6B@
??_7GStringRep@DJVU@@6B@
??_7GURL@DJVU@@6B@
??_7IFFByteStream@DJVU@@6B@
??_7IW44Image@DJVU@@6B@
??_7IWBitmap@DJVU@@6B@
??_7IWPixmap@DJVU@@6B@
??_7JB2Dict@DJVU@@6B@
??_7JB2Image@DJVU@@6B@
??_7MMRDecoder@DJVU@@6B@
??_7Native@Filename@GURL@DJVU@@6B@
??_7Native@GURL@DJVU@@6B@
??_7UTF8@Filename@GURL@DJVU@@6B@
??_7UTF8@GStringRep@DJVU@@6B@
??_7UTF8@GURL@DJVU@@6B@
??_7Wrapper@ByteStream@DJVU@@6B@
??_7lt_XMLParser@DJVU@@6B@
??_7lt_XMLTags@DJVU@@6B@
??_7miniobj_t@@6B@
?AddByteStream@DjVuMessageLite@DJVU@@IAEXABV?$GP@VByteStream@DJVU@@@2@@Z
?AddByteStreamLater@DjVuMessage@DJVU@@SAXABV?$GP@VByteStream@DJVU@@@2@@Z
?AddByteStreamLater@DjVuMessageLite@DJVU@@SAXABV?$GP@VByteStream@DJVU@@@2@@Z
?BLACK@GPixel@DJVU@@2U12@B
?BLUE@GPixel@DJVU@@2U12@B
?CheckSubscript@GBaseString@DJVU@@IBEHH@Z
?EndOfFile@ByteStream@DJVU@@2PBDB
?GREEN@GPixel@DJVU@@2U12@B
?GetProfilePaths@DjVuMessage@DJVU@@SA?AV?$GList@VGURL@DJVU@@@2@XZ
?InsertArg@DjVuMessageLite@DJVU@@IBEXAAVGUTF8String@2@HABV32@@Z
?LookUp@DjVuMessageLite@DJVU@@QBE?AVGUTF8String@2@ABV32@@Z
?LookUpID@DjVuMessageLite@DJVU@@IBEXABVGUTF8String@2@AAV32@1@Z
?LookUpNative@DjVuMessage@DJVU@@SA?AVGNativeString@2@ABVGUTF8String@2@@Z
?LookUpNative@DjVuMessageLite@DJVU@@SA?AVGNativeString@2@ABVGUTF8String@2@@Z
?LookUpSingle@DjVuMessageLite@DJVU@@IBE?AVGUTF8String@2@ABV32@@Z
?LookUpUTF8@DjVuMessage@DJVU@@SA?AVGUTF8String@2@ABV32@@Z
?LookUpUTF8@DjVuMessageLite@DJVU@@SA?AVGUTF8String@2@ABV32@@Z
?NativeFilename@GURL@DJVU@@QBE?AVGNativeString@2@XZ
?NativeToUTF8@GBaseString@DJVU@@QBE?AVGUTF8String@2@XZ
?NativeToUTF8@GStringRep@DJVU@@SA?AV?$GP@VGStringRep@DJVU@@@2@PBD@Z
?ParseValues@lt_XMLTags@DJVU@@SAXPBDAAV?$GMap@VGUTF8String@DJVU@@V12@@2@_N@Z
?RED@GPixel@DJVU@@2U12@B
?Stop@DataPool@DJVU@@2PBDB
?UCS4toNative@GStringRep@DJVU@@SAPAEIPAEPAH@Z
?UCS4toString@UTF8@GStringRep@DJVU@@UBEPAEIPAEPAH@Z
?UCS4toUTF16@GStringRep@DJVU@@SAHIAAG0@Z
?UCS4toUTF8@GStringRep@DJVU@@SAPAEIPAE@Z
?UTF16toUCS4@GStringRep@DJVU@@SAHAAIQBGQBX@Z
?UTF8Filename@GURL@DJVU@@QBE?AVGUTF8String@2@XZ
?UTF8ToNative@GBaseString@DJVU@@QBE?AVGNativeString@2@_NW4EscapeMode@12@@Z
?UTF8ToNative@GStringRep@DJVU@@SA?AV?$GP@VGStringRep@DJVU@@@2@PBDW4EscapeMode@12@@Z
?UTF8toUCS4@GStringRep@DJVU@@SAHAAIQBEQBX@Z
?UTF8toUCS4@GStringRep@DJVU@@SAIAAPBEQBX@Z
?WHITE@GPixel@DJVU@@2U12@B
?add_alias@DjVuPortcaster@DJVU@@QAEXPBVDjVuPort@2@ABVGUTF8String@2@@Z
?add_blit@JB2Image@DJVU@@QAEHABVJB2Blit@2@@Z
?add_data@DataPool@DJVU@@QAEXPBXH@Z
?add_data@DataPool@DJVU@@QAEXPBXHH@Z
?add_data@DjVuMemoryPort@DJVU@@QAEXABVGURL@2@ABV?$GP@VDataPool@DJVU@@@2@@Z
?add_djvu_cgi_argument@GURL@DJVU@@QAEXABVGUTF8String@2@PBD@Z
?add_djvu_data@DjVuFile@DJVU@@AAEXAAVIFFByteStream@2@AAV?$GMap@VGURL@DJVU@@PAX@2@_N2@Z
?add_route@DjVuPortcaster@DJVU@@QAEXPBVDjVuPort@2@PAV32@@Z
?add_shape@JB2Dict@DJVU@@QAEHABVJB2Shape@2@@Z
?add_thumb_req@DjVuDocument@DJVU@@IAE?AV?$GP@VThumbReq@DjVuDocument@DJVU@@@2@ABV32@@Z
?add_to_cache@DjVuDocument@DJVU@@IAEXABV?$GP@VDjVuFile@DJVU@@@2@@Z
?add_to_closure@DjVuPortcaster@DJVU@@AAEXAAV?$GMap@PBXPAX@2@PBVDjVuPort@2@H@Z
?add_trigger@DataPool@DJVU@@QAEXHHP6AXPAX@Z0@Z
?add_trigger@DataPool@DJVU@@QAEXHP6AXPAX@Z0@Z
?added_data@DataPool@DJVU@@AAEXHH@Z
?addraw@lt_XMLTags@DJVU@@QAEXVGUTF8String@2@@Z
?addtag@lt_XMLTags@DJVU@@QAEXV?$GP@Vlt_XMLTags@DJVU@@@2@@Z
?alias_to_port@DjVuPortcaster@DJVU@@QAE?AV?$GP@VDjVuPort@DJVU@@@2@ABVGUTF8String@2@@Z
?allocate_hist@DjVuPalette@DJVU@@AAEXXZ
?allocate_pmap@DjVuPalette@DJVU@@AAEXXZ
?analyze_iff@DataPool@DJVU@@AAEXXZ
?append@DjVmNav@DJVU@@QAEXABV?$GP@VDjVuBookMark@DjVmNav@DJVU@@@2@@Z
?append@GListBase@DJVU@@IAEXPAUNode@2@@Z
?append@GStringRep@DJVU@@QBE?AV?$GP@VGStringRep@DJVU@@@2@PBD@Z
?append@UTF8@GStringRep@DJVU@@UBE?AV?$GP@VGStringRep@DJVU@@@3@ABV43@@Z
?append_child@Zone@DjVuTXT@DJVU@@QAEPAV123@XZ
?append_line@GBitmap@DJVU@@CAXAAPAEPBEH_N@Z
?append_long_run@GBitmap@DJVU@@CAXAAPAEH@Z
?append_run@GBitmap@DJVU@@SAXAAPAEH@Z
?are_incl_files_created@DjVuFile@DJVU@@QBE_NXZ
?area@GRect@DJVU@@QBEHXZ
?assign@GPBase@DJVU@@QAEAAV12@ABV12@@Z
?assign@GPBase@DJVU@@QAEAAV12@PAVGPEnabled@2@@Z
?attenuate@GPixmap@DJVU@@QAEXPBVGBitmap@2@HH@Z
?base@GURL@DJVU@@QBE?AV12@XZ
?basename@GOS@DJVU@@SA?AVGUTF8String@2@ABV32@PBD@Z
?bcomp@DjVuPalette@DJVU@@CAHPBX0@Z
?beautify_path@GURL@DJVU@@IAEXXZ
?beautify_path@GURL@DJVU@@KA?AVGUTF8String@2@V32@@Z
?binarize_grays@GBitmap@DJVU@@QAEXH@Z
?blank@UTF8@GStringRep@DJVU@@UBE?AV?$GP@VGStringRep@DJVU@@@3@I@Z

Sections

.text
Size: 251KB - Virtual size: 772KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 214KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 28KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/libjpeg.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

jpeg_CreateCompress
jpeg_CreateDecompress
jpeg_abort
jpeg_abort_compress
jpeg_abort_decompress
jpeg_add_quant_table
jpeg_alloc_huff_table
jpeg_alloc_quant_table
jpeg_calc_output_dimensions
jpeg_consume_input
jpeg_copy_critical_parameters
jpeg_default_colorspace
jpeg_destroy
jpeg_destroy_compress
jpeg_destroy_decompress
jpeg_finish_compress
jpeg_finish_decompress
jpeg_finish_output
jpeg_has_multiple_scans
jpeg_input_complete
jpeg_new_colormap
jpeg_quality_scaling
jpeg_read_coefficients
jpeg_read_header
jpeg_read_raw_data
jpeg_read_scanlines
jpeg_resync_to_restart
jpeg_save_markers
jpeg_set_colorspace
jpeg_set_defaults
jpeg_set_linear_quality
jpeg_set_marker_processor
jpeg_set_quality
jpeg_simple_progression
jpeg_start_compress
jpeg_start_decompress
jpeg_start_output
jpeg_std_error
jpeg_stdio_dest
jpeg_stdio_src
jpeg_suppress_tables
jpeg_write_coefficients
jpeg_write_m_byte
jpeg_write_m_header
jpeg_write_marker
jpeg_write_raw_data
jpeg_write_scanlines
jpeg_write_tables

Sections

.text
Size: 45KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/libtiff.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

TIFFAccessTagMethods
TIFFCIELabToRGBInit
TIFFCIELabToXYZ
TIFFCheckTile
TIFFCheckpointDirectory
TIFFCleanup
TIFFClientOpen
TIFFClientdata
TIFFClose
TIFFComputeStrip
TIFFComputeTile
TIFFCreateDirectory
TIFFCurrentDirOffset
TIFFCurrentDirectory
TIFFCurrentRow
TIFFCurrentStrip
TIFFCurrentTile
TIFFDataWidth
TIFFDefaultStripSize
TIFFDefaultTileSize
TIFFError
TIFFErrorExt
TIFFFdOpen
TIFFFieldWithName
TIFFFieldWithTag
TIFFFileName
TIFFFileno
TIFFFindCODEC
TIFFFindFieldInfo
TIFFFindFieldInfoByName
TIFFFlush
TIFFFlushData
TIFFFreeDirectory
TIFFGetBitRevTable
TIFFGetClientInfo
TIFFGetCloseProc
TIFFGetConfiguredCODECs
TIFFGetField
TIFFGetFieldDefaulted
TIFFGetMapFileProc
TIFFGetMode
TIFFGetReadProc
TIFFGetSeekProc
TIFFGetSizeProc
TIFFGetTagListCount
TIFFGetTagListEntry
TIFFGetUnmapFileProc
TIFFGetVersion
TIFFGetWriteProc
TIFFIsBigEndian
TIFFIsByteSwapped
TIFFIsCODECConfigured
TIFFIsMSB2LSB
TIFFIsTiled
TIFFIsUpSampled
TIFFLastDirectory
TIFFMergeFieldInfo
TIFFNumberOfDirectories
TIFFNumberOfStrips
TIFFNumberOfTiles
TIFFOpen
TIFFOpenW
TIFFPrintDirectory
TIFFRGBAImageBegin
TIFFRGBAImageEnd
TIFFRGBAImageGet
TIFFRGBAImageOK
TIFFRasterScanlineSize
TIFFRawStripSize
TIFFReadBufferSetup
TIFFReadCustomDirectory
TIFFReadDirectory
TIFFReadEXIFDirectory
TIFFReadEncodedStrip
TIFFReadEncodedTile
TIFFReadRGBAImage
TIFFReadRGBAImageOriented
TIFFReadRGBAStrip
TIFFReadRGBATile
TIFFReadRawStrip
TIFFReadRawTile
TIFFReadScanline
TIFFReadTile
TIFFReassignTagToIgnore
TIFFRegisterCODEC
TIFFReverseBits
TIFFRewriteDirectory
TIFFScanlineSize
TIFFSetClientInfo
TIFFSetClientdata
TIFFSetDirectory
TIFFSetErrorHandler
TIFFSetErrorHandlerExt
TIFFSetField
TIFFSetFileName
TIFFSetFileno
TIFFSetMode
TIFFSetSubDirectory
TIFFSetTagExtender
TIFFSetWarningHandler
TIFFSetWarningHandlerExt
TIFFSetWriteOffset
TIFFSetupStrips
TIFFStripSize
TIFFSwabArrayOfDouble
TIFFSwabArrayOfLong
TIFFSwabArrayOfShort
TIFFSwabArrayOfTriples
TIFFSwabDouble
TIFFSwabLong
TIFFSwabShort
TIFFTileRowSize
TIFFTileSize
TIFFUnRegisterCODEC
TIFFUnlinkDirectory
TIFFVGetField
TIFFVGetFieldDefaulted
TIFFVSetField
TIFFVStripSize
TIFFVTileSize
TIFFWarning
TIFFWarningExt
TIFFWriteBufferSetup
TIFFWriteCheck
TIFFWriteDirectory
TIFFWriteEncodedStrip
TIFFWriteEncodedTile
TIFFWriteRawStrip
TIFFWriteRawTile
TIFFWriteScanline
TIFFWriteTile
TIFFXYZToRGB
TIFFYCbCrToRGBInit
TIFFYCbCrtoRGB
_TIFFfree
_TIFFmalloc
_TIFFmemcmp
_TIFFmemcpy
_TIFFmemset
_TIFFrealloc

Sections

.text
Size: 61KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 129KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/libz.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

adler32
compress
compress2
compressBound
crc32
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePrime
deflateReset
deflateSetDictionary
get_crc_table
gzclearerr
gzclose
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzungetc
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCopy
inflateEnd
inflateInit2_
inflateInit_
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 18KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/mp4chaps.exe
.exe windows:4 windows x86 arch:x86

229cab131ebc36335d7a2d962954aff5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

ntohl

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetTempFileNameA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetCurrentProcessId

msvcr80

malloc
printf_s
_vsnprintf
strerror
tolower
strchr
strncpy
memmove
fopen
fflush
rename
remove
realloc
strncmp
ceil
fclose
isalnum
_purecall
fputs
fread
fwrite
fgetpos
feof
fsetpos
_fstat64
??3@YAXPAX@Z
vprintf
getenv
memset
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
exit
__initenv
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
__set_app_type
_vsnprintf_s
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
?_type_info_dtor_internal_method@type_info@@QAEXXZ
free
_errno
_stricmp
??2@YAPAXI@Z
fprintf_s
sscanf
sprintf
__iob_func
_CxxThrowException
memcpy
__CxxFrameHandler3
_fileno
_ftime64

Sections

.text
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Balabolka/utils/mp4lib.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

MP4ComposeAddAudioDescription
MP4ComposeAddVideoDescription
MP4ComposeClose
MP4ComposeOpen
MP4ComposeWriteAudioDecoderSpecificInfo
MP4ComposeWriteAudioFrames
MP4ComposeWriteVideoDecoderSpecificInfo
MP4ComposeWriteVideoFrame
MP4ParseClose
MP4ParseGetBufferedBytes
MP4ParseGetLastPosition
MP4ParseGetNextVideoTimestamp
MP4ParseIsFrameAvailable
MP4ParseIsStreamable
MP4ParseNextFrameSize
MP4ParseNextFrameType
MP4ParseOpen
MP4ParseReadAudioDecoderSpecificInfo
MP4ParseReadAudioFrames
MP4ParseReadVideoDecoderSpecificInfo
MP4ParseReadVideoFrame
MP4ParseRequestAudioDescription
MP4ParseRequestStreamDescription
MP4ParseRequestVideoDescription
MP4ParseSeek
MP4ParseWriteData

Sections

.text
Size: 34KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/neroAacEnc.exe
.exe windows:4 windows x86 arch:x86

8a08c9c098ac4f561b03f3efaa963e1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
InterlockedDecrement
CreateFileW
CloseHandle
SetFilePointer
GetFileSize
ReadFile
WriteFile
GetTempFileNameW
GetTempPathW
RaiseException
GetLastError
HeapFree
HeapReAlloc
EnterCriticalSection
LeaveCriticalSection
SetConsoleCtrlHandler
HeapAlloc
RtlUnwind
GetVersionExA
GetProcessHeap
DeleteFileW
SetEndOfFile
GetSystemTimeAsFileTime
GetProcAddress
GetModuleHandleA
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
Sleep
ExitProcess
MultiByteToWideChar
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
GetModuleFileNameA
HeapSize
SetStdHandle
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetModuleFileNameW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
InitializeCriticalSection
FlushFileBuffers
LoadLibraryA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA

Sections

.text
Size: 540KB - Virtual size: 539KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 224KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Balabolka/utils/neroAacTag.exe
.exe windows:4 windows x86 arch:x86

4efa6ffe5232a920004b4aa9ef1e3c5e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
InterlockedDecrement
GetTempFileNameW
GetTempPathW
MultiByteToWideChar
WideCharToMultiByte
GetModuleFileNameW
RaiseException
GetLastError
HeapFree
HeapReAlloc
DeleteFileW
ReadFile
SetEndOfFile
HeapAlloc
GetProcessHeap
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
GetVersionExA
GetSystemTimeAsFileTime
GetProcAddress
GetModuleHandleA
ExitProcess
FindNextFileW
FindFirstFileW
FindClose
Sleep
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
CloseHandle
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetFilePointer
WriteFile
GetConsoleCP
GetConsoleMode
SetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapSize
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
LoadLibraryA
InitializeCriticalSection
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetLocaleInfoA
CreateFileW
CreateFileA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

Sections

.text
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Balabolka/utils/pdfimages.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 166KB - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 36KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 19KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/pdftotext.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 177KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 37KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 22KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/unrar.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

RARCloseArchive
RARGetDllVersion
RAROpenArchive
RAROpenArchiveEx
RARProcessFile
RARProcessFileW
RARReadHeader
RARReadHeaderEx
RARSetCallback
RARSetChangeVolProc
RARSetPassword
RARSetProcessDataProc

Sections

.text
Size: 74KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/utils/viewer.exe
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 421KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 93KB - Virtual size: 484KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 306KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/vorbis.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Exports

Exports

_analysis_output_always
_floor_P
_mapping_P
_residue_P
vorbis_analysis
vorbis_analysis_blockout
vorbis_analysis_buffer
vorbis_analysis_headerout
vorbis_analysis_init
vorbis_analysis_wrote
vorbis_bitrate_addblock
vorbis_bitrate_flushpacket
vorbis_block_clear
vorbis_block_init
vorbis_comment_add
vorbis_comment_add_tag
vorbis_comment_clear
vorbis_comment_init
vorbis_comment_query
vorbis_comment_query_count
vorbis_commentheader_out
vorbis_dsp_clear
vorbis_encode_ctl
vorbis_encode_init
vorbis_encode_init_vbr
vorbis_encode_setup_init
vorbis_encode_setup_managed
vorbis_encode_setup_vbr
vorbis_granule_time
vorbis_info_blocksize
vorbis_info_clear
vorbis_info_init
vorbis_packet_blocksize
vorbis_synthesis
vorbis_synthesis_blockin
vorbis_synthesis_halfrate
vorbis_synthesis_halfrate_p
vorbis_synthesis_headerin
vorbis_synthesis_init
vorbis_synthesis_lapout
vorbis_synthesis_pcmout
vorbis_synthesis_read
vorbis_synthesis_restart
vorbis_synthesis_trackonly
vorbis_window

Sections

.text
Size: 51KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 81KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/vorbisenc.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Exports

Exports

vorbis_encode_ctl
vorbis_encode_init
vorbis_encode_init_vbr
vorbis_encode_setup_init
vorbis_encode_setup_managed
vorbis_encode_setup_vbr

Sections

.text
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 50KB - Virtual size: 968KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Balabolka/vorbisfile.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Exports

Exports

ov_bitrate
ov_bitrate_instant
ov_clear
ov_comment
ov_crosslap
ov_halfrate
ov_halfrate_p
ov_info
ov_open
ov_open_callbacks
ov_pcm_seek
ov_pcm_seek_lap
ov_pcm_seek_page
ov_pcm_seek_page_lap
ov_pcm_tell
ov_pcm_total
ov_raw_seek
ov_raw_seek_lap
ov_raw_tell
ov_raw_total
ov_read
ov_read_float
ov_seekable
ov_serialnumber
ov_streams
ov_test
ov_test_callbacks
ov_test_open
ov_time_seek
ov_time_seek_lap
ov_time_seek_page
ov_time_seek_page_lap
ov_time_tell
ov_time_total

Sections

.text
Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

13ce1dbf8f3942ab9b73fe9a5fc0b571

Headers

File Characteristics

Imports

advapi32

kernel32

ole32

oleaut32

shell32

user32

Exports

Exports

Sections

.text Size: 191KB - Virtual size: 191KB

.data Size: 32KB - Virtual size: 32KB

.bss Size: - Virtual size: 8KB

.idata Size: 2KB - Virtual size: 2KB

.edata Size: 160B - Virtual size: 160B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 9KB - Virtual size: 9KB

Headers

File Characteristics

Sections

.text Size: 1.2MB - Virtual size: 3.9MB

.itext Size: 8KB - Virtual size: 20KB

.data Size: 37KB - Virtual size: 80KB

.bss Size: - Virtual size: 36KB

.idata Size: 5KB - Virtual size: 20KB

.tls Size: - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.reloc Size: - Virtual size: 212KB

.rsrc Size: 270KB - Virtual size: 1.7MB

.aspack Size: 424KB - Virtual size: 424KB

.adata Size: - Virtual size: 4KB

9a91061858771a11673ade87b98580d0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 308KB - Virtual size: 308KB

.rdata Size: 134KB - Virtual size: 134KB

.data Size: 11KB - Virtual size: 215KB

.rsrc Size: 512B - Virtual size: 176B

.reloc Size: 17KB - Virtual size: 17KB

d562afdc5868b30cf5aace6bbd2dc362

Headers

File Characteristics

PDB Paths

Imports

msvcr80

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 4KB - Virtual size: 860B

.rsrc Size: 4KB - Virtual size: 428B

.reloc Size: 4KB - Virtual size: 818B

Headers

File Characteristics

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 1KB - Virtual size: 4KB

.bss Size: - Virtual size: 208B

.edata Size: 2KB - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.text
Size: 191KB - Virtual size: 191KB

.data
Size: 32KB - Virtual size: 32KB

.bss
Size: - Virtual size: 8KB

.idata
Size: 2KB - Virtual size: 2KB

.edata
Size: 160B - Virtual size: 160B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 9KB - Virtual size: 9KB

.text
Size: 1.2MB - Virtual size: 3.9MB

.itext
Size: 8KB - Virtual size: 20KB

.data
Size: 37KB - Virtual size: 80KB

.bss
Size: - Virtual size: 36KB

.idata
Size: 5KB - Virtual size: 20KB

.tls
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.reloc
Size: - Virtual size: 212KB

.rsrc
Size: 270KB - Virtual size: 1.7MB

.aspack
Size: 424KB - Virtual size: 424KB

.adata
Size: - Virtual size: 4KB

.text
Size: 308KB - Virtual size: 308KB

.rdata
Size: 134KB - Virtual size: 134KB

.data
Size: 11KB - Virtual size: 215KB

.rsrc
Size: 512B - Virtual size: 176B

.reloc
Size: 17KB - Virtual size: 17KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 4KB - Virtual size: 860B

.rsrc
Size: 4KB - Virtual size: 428B

.reloc
Size: 4KB - Virtual size: 818B

.text
Size: 5KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 1KB - Virtual size: 4KB

.bss
Size: - Virtual size: 208B

.edata
Size: 2KB - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB

.aspack
Size: 4KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB

.text
Size: 140KB - Virtual size: 136KB

.rdata
Size: 36KB - Virtual size: 32KB

.data
Size: 8KB - Virtual size: 21KB

.rsrc
Size: 12KB - Virtual size: 11KB

.text
Size: 305KB - Virtual size: 668KB

.orpc
Size: 4KB - Virtual size: 4KB

.rdata
Size: 288KB - Virtual size: 288KB

.data
Size: 45KB - Virtual size: 320KB

data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 15KB - Virtual size: 16KB

.reloc
Size: 16KB - Virtual size: 36KB

.aspack
Size: 6KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB

.text
Size: 51KB - Virtual size: 50KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 688B

.reloc
Size: 3KB - Virtual size: 3KB

.text
Size: 88KB - Virtual size: 212KB

.data
Size: 16KB - Virtual size: 92KB

.tls
Size: 512B - Virtual size: 4KB

.idata
Size: 1KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: 7KB - Virtual size: 12KB

.aspack
Size: 5KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB