infected[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

infected.zip
Size

153.6MB
MD5

c3bc465e609107d830082d1fa30a5b0a
SHA1

b149fa91d7f8b78e0b4828c92e3aa65b47b3e5e3
SHA256

5b1255aa5cf0252ea3b81d65243430c07df400f2076ebb7752dee2d2917c7d15
SHA512

ba9b1264bd39c58b6c395668d9bb35929ffda484f7c30b4678432b6a95c0c7a3716d8cd289a9e99f1525cfe764cac0b13e97aedaa8782955a55595aa637d70b3
SSDEEP

3145728:79ehwwXwfB7QQsJBflQ2WnK2+7+kqYwjL/XjnZ6fLUZUK0c60F14Nl+L:OBoiDCkqljjVKLUyKr5P4Nq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/InstallerInstallWizardPlus_v2.5l.exe

Files

infected.zip
.zip
Adobe Installer 2024.exe
.exe windows:4 windows x86 arch:x86

56a78d55f3f7af51443e58e0ce2fb5f6

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c2:ff:da:0e:a2:6c:49:13:ff:66:dd:29:81:7b:f2:27
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

20/06/2023, 00:00

Not After

19/06/2026, 23:59

Subject

SERIALNUMBER=27239909,CN=New House Internet Services B.V.,O=New House Internet Services B.V.,ST=Zuid-Holland,C=NL,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4c

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

22:a6:0c:92:b3:05:c9:03:f2:13:28:6d:12:39:32:eb:92:4f:de:62:24:9f:d4:f6:43:7b:f3:7d:c6:38:da:f6
Signer

Actual PE Digest

22:a6:0c:92:b3:05:c9:03:f2:13:28:6d:12:39:32:eb:92:4f:de:62:24:9f:d4:f6:43:7b:f3:7d:c6:38:da:f6

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExW
RegEnumKeyW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
SetFileSecurityW
RegOpenKeyExW
RegEnumValueW

shell32

SHGetSpecialFolderLocation
SHFileOperationW
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteExW
SHGetFileInfoW

ole32

OleInitialize
OleUninitialize
CoCreateInstance
IIDFromString
CoTaskMemFree

comctl32

ord17
ImageList_Create
ImageList_Destroy
ImageList_AddMasked

user32

GetClientRect
EndPaint
DrawTextW
IsWindowEnabled
DispatchMessageW
wsprintfA
CharNextA
CharPrevW
MessageBoxIndirectW
GetDlgItemTextW
SetDlgItemTextW
GetSystemMetrics
FillRect
AppendMenuW
TrackPopupMenu
OpenClipboard
SetClipboardData
CloseClipboard
IsWindowVisible
CallWindowProcW
GetMessagePos
CheckDlgButton
LoadCursorW
SetCursor
GetSysColor
SetWindowPos
GetWindowLongW
PeekMessageW
SetClassLongW
GetSystemMenu
EnableMenuItem
GetWindowRect
ScreenToClient
EndDialog
RegisterClassW
SystemParametersInfoW
CreateWindowExW
GetClassInfoW
DialogBoxParamW
CharNextW
ExitWindowsEx
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
FindWindowExW
IsWindow
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
ReleaseDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
EmptyClipboard
CreatePopupMenu

gdi32

SetBkMode
SetBkColor
GetDeviceCaps
CreateFontIndirectW
CreateBrushIndirect
DeleteObject
SetTextColor
SelectObject

kernel32

GetExitCodeProcess
WaitForSingleObject
GetModuleHandleA
GetProcAddress
GetSystemDirectoryW
lstrcatW
Sleep
lstrcpyA
WriteFile
GetTempFileNameW
CreateFileW
lstrcmpiA
RemoveDirectoryW
CreateProcessW
CreateDirectoryW
GetLastError
CreateThread
GlobalLock
GlobalUnlock
GetDiskFreeSpaceW
WideCharToMultiByte
lstrcpynW
lstrlenW
SetErrorMode
GetVersionExW
GetCommandLineW
GetTempPathW
GetWindowsDirectoryW
SetEnvironmentVariableW
CopyFileW
ExitProcess
GetCurrentProcess
GetModuleFileNameW
GetFileSize
GetTickCount
MulDiv
SetFileAttributesW
GetFileAttributesW
SetCurrentDirectoryW
MoveFileW
GetFullPathNameW
GetShortPathNameW
SearchPathW
CompareFileTime
SetFileTime
CloseHandle
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalFree
GlobalAlloc
GetModuleHandleW
LoadLibraryExW
MoveFileExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
lstrlenA
MultiByteToWideChar
ReadFile
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
InstallerInstallWizardPlus_v2.5l.exe
.exe windows:5 windows x86 arch:x86

fcf1390e9ce472c7270447fc5c61a0c1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\WinRAR\sfx\build\sfxrar32\Release\sfxrar.pdb

Imports

kernel32

GetLastError
SetLastError
FormatMessageW
GetCurrentProcess
DeviceIoControl
SetFileTime
CloseHandle
CreateDirectoryW
RemoveDirectoryW
CreateFileW
DeleteFileW
CreateHardLinkW
GetShortPathNameW
GetLongPathNameW
MoveFileW
GetFileType
GetStdHandle
WriteFile
ReadFile
FlushFileBuffers
SetEndOfFile
SetFilePointer
SetFileAttributesW
GetFileAttributesW
FindClose
FindFirstFileW
FindNextFileW
GetVersionExW
GetCurrentDirectoryW
GetFullPathNameW
FoldStringW
GetModuleFileNameW
GetModuleHandleW
FindResourceW
FreeLibrary
GetProcAddress
GetCurrentProcessId
ExitProcess
SetThreadExecutionState
Sleep
LoadLibraryW
GetSystemDirectoryW
CompareStringW
AllocConsole
FreeConsole
AttachConsole
WriteConsoleW
GetProcessAffinityMask
CreateThread
SetThreadPriority
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetEvent
ResetEvent
ReleaseSemaphore
WaitForSingleObject
CreateEventW
CreateSemaphoreW
GetSystemTime
SystemTimeToTzSpecificLocalTime
TzSpecificLocalTimeToSystemTime
SystemTimeToFileTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
FileTimeToSystemTime
GetCPInfo
IsDBCSLeadByte
MultiByteToWideChar
WideCharToMultiByte
GlobalAlloc
LockResource
GlobalLock
GlobalUnlock
GlobalFree
LoadResource
SizeofResource
SetCurrentDirectoryW
GetExitCodeProcess
GetLocalTime
GetTickCount
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
OpenFileMappingW
GetCommandLineW
SetEnvironmentVariableW
ExpandEnvironmentStringsW
GetTempPathW
MoveFileExW
GetLocaleInfoW
GetTimeFormatW
GetDateFormatW
GetNumberFormatW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
HeapSize
SetStdHandle
GetProcessHeap
RaiseException
GetSystemInfo
VirtualProtect
VirtualQuery
LoadLibraryExA
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
TerminateProcess
RtlUnwind
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
QueryPerformanceFrequency
GetModuleHandleExW
GetModuleFileNameA
GetACP
HeapFree
HeapAlloc
HeapReAlloc
GetStringTypeW
LCMapStringW
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
DecodePointer

gdiplus

GdiplusShutdown
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipDisposeImage
GdipCloneImage
GdipFree
GdipAlloc

Sections

.text
Size: 197KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MicrosoftCognitiveServicesSpeechcore.dll
.dll windows:6 windows x64 arch:x64

37b2332fff08eed2fc9cf185c01f3063

Code Sign

33:00:00:02:cc:8e:b5:96:a6:bd:d1:c9:4e:00:00:00:00:02:cc
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12/05/2022, 20:46

Not After

11/05/2023, 20:46

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

85:70:ab:31:b6:39:d6:96:a8:eb:95:b8:a8:c4:7c:d1:10:69:da:43:34:6d:9e:c2:07:fd:94:44:2c:b9:94:b4
Signer

Actual PE Digest

85:70:ab:31:b6:39:d6:96:a8:eb:95:b8:a8:c4:7c:d1:10:69:da:43:34:6d:9e:c2:07:fd:94:44:2c:b9:94:b4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_APPCONTAINER
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\_work\1\s\build\bin\Release\Microsoft.CognitiveServices.Speech.core.pdb

Imports

advapi32

EventRegister
EventSetInformation
EventWriteTransfer
EventUnregister

vccorlib140_app

?__abi_WinRTraiseOperationCanceledException@@YAXXZ
?__abi_WinRTraiseClassNotRegisteredException@@YAXXZ
?__abi_WinRTraiseInvalidArgumentException@@YAXXZ
?__abi_WinRTraiseCOMException@@YAXJ@Z
?__abi_WinRTraiseNullReferenceException@@YAXXZ
?__abi_WinRTraiseChangedStateException@@YAXXZ
?__abi_WinRTraiseOutOfMemoryException@@YAXXZ
?__abi_WinRTraiseWrongThreadException@@YAXXZ
?__abi_WinRTraiseAccessDeniedException@@YAXXZ
?__abi_WinRTraiseFailureException@@YAXXZ
?__abi_WinRTraiseDisconnectedException@@YAXXZ
?__abi_WinRTraiseNotImplementedException@@YAXXZ
?__abi_WinRTraiseInvalidCastException@@YAXXZ
?__abi_WinRTraiseObjectDisposedException@@YAXXZ
?__abi_translateCurrentException@@YAJ_N@Z
?get@Message@Exception@Platform@@QE$AAAPE$AAVString@3@XZ
?GetWeakReference@Details@Platform@@YAPEAU__abi_IUnknown@@QE$ADVObject@2@@Z
?ResolveWeakReference@Details@Platform@@YAPE$AAVObject@2@AEBU_GUID@@PEAPEAU__abi_IUnknown@@@Z
?ReleaseTarget@ControlBlock@Details@Platform@@AEAAXXZ
?AlignedFree@Heap@Details@Platform@@SAXPEAX@Z
?Free@Heap@Details@Platform@@SAXPEAX@Z
?Allocate@Heap@Details@Platform@@SAPEAX_K@Z
?Allocate@Heap@Details@Platform@@SAPEAX_K0@Z
?GetIBoxArrayVtable@Details@Platform@@YAPEAXPEAX@Z
??0Object@Platform@@QE$AAA@XZ
??0Delegate@Platform@@QE$AAA@XZ
?InitializeData@Details@Platform@@YAJH@Z
?UninitializeData@Details@Platform@@YAXH@Z
?GetIidsFn@@YAJHPEAKPEBU__s_GUID@@PEAPEAVGuid@Platform@@@Z
?GetActivationFactoryByPCWSTR@@YAJPEAXAEAVGuid@Platform@@PEAPEAX@Z
?__abi_WinRTraiseOutOfBoundsException@@YAXXZ

api-ms-win-core-sysinfo-l1-1-0

GetSystemTime
GetSystemTimeAsFileTime
GetTickCount64

api-ms-win-core-libraryloader-l1-2-0

GetProcAddress
LoadLibraryExA
GetModuleFileNameA
FreeLibrary

api-ms-win-core-synch-l1-1-0

SetEvent
WaitForSingleObject
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockShared
CreateEventW

api-ms-win-core-winrt-l1-1-0

RoUninitialize
RoInitialize

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-util-l1-1-0

DecodePointer

api-ms-win-core-synch-l1-2-0

InitOnceBeginInitialize
InitOnceExecuteOnce
SleepConditionVariableSRW
WakeAllConditionVariable
InitOnceComplete

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateStringReference
WindowsDeleteString
WindowsCreateString
WindowsDuplicateString
WindowsGetStringRawBuffer
WindowsCompareStringOrdinal

api-ms-win-core-com-l1-1-0

CoCreateGuid
CoCreateFreeThreadedMarshaler
CoTaskMemFree
CoTaskMemAlloc

ws2_32

WSACleanup
WSAStartup

api-ms-win-core-processthreads-l1-1-0

GetCurrentProcessId
GetCurrentThreadId
GetCurrentProcess

api-ms-win-core-localization-l1-2-0

FormatMessageW

msvcp140_app

?getloc@ios_base@std@@QEBA?AVlocale@2@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?get@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEBA?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AEAVios_base@2@AEAHPEAUtm@@PEBD4@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z
?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?id@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z
?setf@ios_base@std@@QEAAHHH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?_Assign@_ContextCallback@details@Concurrency@@AEAAXPEAX@Z
?_IsCurrentOriginSTA@_ContextCallback@details@Concurrency@@CA_NXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
??7ios_base@std@@QEBA_NXZ
?eof@ios_base@std@@QEBA_NXZ
?fail@ios_base@std@@QEBA_NXZ
?bad@ios_base@std@@QEBA_NXZ
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?gcount@?$basic_istream@DU?$char_traits@D@std@@@std@@QEBA_JXZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAPEAD0PEAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0_Locinfo@std@@QEAA@HPEBD@Z
?_Getname@_Locinfo@std@@QEBAPEBDXZ
?always_noconv@codecvt_base@std@@QEBA_NXZ
?unshift@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??Bios_base@std@@QEBA_NXZ
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?imbue@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEB_W_J@Z
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEA_W_J@Z
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBAPEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?epptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?egptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?eback@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXXZ
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXPEA_W00@Z
?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAGXZ
?sbumpc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAGXZ
?getloc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEBA?AVlocale@2@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WD@Z
?snextc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAGXZ
?_Ipfx@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA_N_N@Z
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@_N@Z
?_Makeloc@_Locimp@locale@std@@CAPEAV123@AEBV_Locinfo@3@HPEAV123@PEBV23@@Z
?_Xruntime_error@std@@YAXPEBD@Z
_Thrd_detach
_Thrd_sleep
?__ExceptionPtrCurrentException@@YAXPEAX@Z
??0task_continuation_context@Concurrency@@AEAA@XZ
?_CallInContext@_ContextCallback@details@Concurrency@@QEBAXV?$function@$$A6AXXZ@std@@_N@Z
?_Reset@_ContextCallback@details@Concurrency@@AEAAXXZ
?_Capture@_ContextCallback@details@Concurrency@@AEAAXXZ
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ
?_Release_chore@details@Concurrency@@YAXPEAU_Threadpool_chore@12@@Z
?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QEAAX_N@Z
?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
_Mtx_lock
?_Throw_C_error@std@@YAXH@Z
_Mtx_unlock
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPEBD@Z
?_Xout_of_range@std@@YAXPEBD@Z
?_Syserror_map@std@@YAPEBDH@Z
_Mtx_current_owns
_Query_perf_frequency
?_Throw_future_error@std@@YAXAEBVerror_code@1@@Z
?_Throw_Cpp_error@std@@YAXH@Z
_Cnd_timedwait
_Query_perf_counter
_Xtime_get_ticks
?_Xbad_function_call@std@@YAXXZ
_Mtx_destroy_in_situ
_Mtx_init_in_situ
??1_Lockit@std@@QEAA@XZ
??0_Lockit@std@@QEAA@H@Z
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
?classic@locale@std@@SAAEBV12@XZ
?uncaught_exception@std@@YA_NXZ
?id@?$ctype@D@std@@2V0locale@2@A
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?width@ios_base@std@@QEAA_J_J@Z
?width@ios_base@std@@QEBA_JXZ
?flags@ios_base@std@@QEBAHXZ
?good@ios_base@std@@QEBA_NXZ
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?tolower@?$ctype@D@std@@QEBADD@Z
??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ
??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z
?out@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z
?in@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UEAAXXZ
??Bid@locale@std@@QEAA_KXZ
?_Xinvalid_argument@std@@YAXPEBD@Z
_Thrd_id
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
_Thrd_yield
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
_Cnd_unregister_at_thread_exit
?__ExceptionPtrCreate@@YAXPEAX@Z
_Cnd_init_in_situ
?__ExceptionPtrCopyException@@YAXPEAXPEBX1@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z
?__ExceptionPtrToBool@@YA_NPEBX@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
_Cnd_register_at_thread_exit
_Cnd_do_broadcast_at_thread_exit
_Cnd_wait
_Thrd_join
_Cnd_broadcast
_Cnd_destroy_in_situ
_Strxfrm
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?id@?$collate@D@std@@2V0locale@2@A
?__ExceptionPtrRethrow@@YAXPEBX@Z
_Strcoll
?c_str@?$_Yarn@D@std@@QEBAPEBDXZ
?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z
?is@?$ctype@D@std@@QEBA_NFD@Z
??1facet@locale@std@@MEAA@XZ
??0facet@locale@std@@IEAA@_K@Z
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
??1_Locinfo@std@@QEAA@XZ
??0_Locinfo@std@@QEAA@PEBD@Z
_Cnd_signal
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?_ReportUnobservedException@details@Concurrency@@YAXXZ
?_Schedule_chore@details@Concurrency@@YAHPEAU_Threadpool_chore@12@@Z
?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ

vcruntime140_1_app

__CxxFrameHandler4

vcruntime140_app

memcmp
__std_exception_copy
memchr
__std_type_info_compare
strstr
memcpy
strchr
memset
__current_exception
__current_exception_context
__C_specific_handler
_CxxThrowException
__std_type_info_destroy_list
_purecall
memmove
__std_exception_destroy
strrchr

api-ms-win-crt-runtime-l1-1-0

_invalid_parameter_noinfo
_beginthreadex
terminate
_errno
abort
_execute_onexit_table
_invalid_parameter_noinfo_noreturn
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_initterm_e
_crt_atexit
_cexit
_initterm

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
realloc
free

api-ms-win-crt-stdio-l1-1-0

fsetpos
setvbuf
fgetpos
fopen_s
fflush
fclose
fwrite
fgetwc
fgetc
__stdio_common_vfprintf
ungetwc
__acrt_iob_func
_fseeki64
_fsopen
_get_stream_buffer_pointers
fread
__stdio_common_vsprintf
fputwc
ungetc
fputc
__stdio_common_vsprintf_s

api-ms-win-crt-string-l1-1-0

wcslen
isdigit
strnlen
strncpy
strtok
isspace
strcpy_s
_strnicmp
tolower
isupper
strncpy_s
toupper
strtok_s
strncmp
iswspace
_stricmp
strcmp

api-ms-win-crt-convert-l1-1-0

strtoull
strtoul
strtod
strtol
atof
strtoll

api-ms-win-crt-time-l1-1-0

_time64
_ctime64
strftime
_mkgmtime64
_gmtime64_s

api-ms-win-crt-math-l1-1-0

_dsign
_dclass
sqrt
ceil
pow

api-ms-win-crt-locale-l1-1-0

localeconv

api-ms-win-crt-filesystem-l1-1-0

_findfirst64i32
_lock_file
_unlock_file
_findclose
_findnext64i32

rpcrt4

RpcStringFreeA
UuidToStringA

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-interlocked-l1-1-0

InitializeSListHead
InterlockedPushEntrySList

api-ms-win-appmodel-runtime-l1-1-0

GetPackageFamilyName

api-ms-win-core-libraryloader-l2-1-0

LoadPackagedLibrary

api-ms-win-crt-environment-l1-1-0

getenv_s

oleaut32

SysFreeString
SysAllocString
GetErrorInfo
SysStringLen
SetErrorInfo

api-ms-win-core-string-l1-1-0

WideCharToMultiByte

api-ms-win-core-heap-l1-1-0

GetProcessHeap
HeapFree
HeapAlloc

api-ms-win-core-libraryloader-l1-2-1

LoadLibraryW

Exports

Exports

CreateModuleObject
GetModuleObject
add_source_lang_config_to_auto_detect_source_lang_config
ai_core_json_builder_create
ai_core_json_builder_handle_is_valid
ai_core_json_builder_handle_release
ai_core_json_builder_item_add
ai_core_json_builder_item_set
ai_core_json_item_at
ai_core_json_item_count
ai_core_json_item_name
ai_core_json_item_next
ai_core_json_parser_create
ai_core_json_parser_handle_is_valid
ai_core_json_parser_handle_release
ai_core_json_value_as_bool
ai_core_json_value_as_double
ai_core_json_value_as_int
ai_core_json_value_as_json_copy
ai_core_json_value_as_string_copy
ai_core_json_value_as_string_ptr
ai_core_json_value_as_uint
ai_core_json_value_kind
ai_core_string_create
ai_core_string_free
audio_config_create_audio_input_from_a_microphone
audio_config_create_audio_input_from_default_microphone
audio_config_create_audio_input_from_stream
audio_config_create_audio_input_from_wav_file_name
audio_config_create_audio_output_from_a_speaker
audio_config_create_audio_output_from_default_speaker
audio_config_create_audio_output_from_stream
audio_config_create_audio_output_from_wav_file_name
audio_config_create_pull_audio_input_stream
audio_config_create_push_audio_input_stream
audio_config_get_audio_processing_options
audio_config_get_property_bag
audio_config_is_handle_valid
audio_config_release
audio_config_set_audio_processing_options
audio_data_stream_can_read_data
audio_data_stream_can_read_data_from_position
audio_data_stream_create_from_file
audio_data_stream_create_from_keyword_result
audio_data_stream_create_from_result
audio_data_stream_detach_input
audio_data_stream_get_canceled_error_code
audio_data_stream_get_position
audio_data_stream_get_property_bag
audio_data_stream_get_reason_canceled
audio_data_stream_get_status
audio_data_stream_is_handle_valid
audio_data_stream_read
audio_data_stream_read_from_position
audio_data_stream_release
audio_data_stream_save_to_wave_file
audio_data_stream_set_position
audio_processing_options_create
audio_processing_options_create_from_microphone_array_geometry
audio_processing_options_create_from_preset_microphone_array_geometry
audio_processing_options_get_audio_processing_flags
audio_processing_options_get_beamforming_end_angle
audio_processing_options_get_beamforming_start_angle
audio_processing_options_get_microphone_array_type
audio_processing_options_get_microphone_coordinates
audio_processing_options_get_microphone_count
audio_processing_options_get_preset_microphone_array_geometry
audio_processing_options_get_speaker_reference_channel
audio_processing_options_is_handle_valid
audio_processing_options_release
audio_stream_create_pull_audio_input_stream
audio_stream_create_pull_audio_output_stream
audio_stream_create_push_audio_input_stream
audio_stream_create_push_audio_output_stream
audio_stream_format_create_from_compressed_format
audio_stream_format_create_from_default_input
audio_stream_format_create_from_default_output
audio_stream_format_create_from_waveformat
audio_stream_format_create_from_waveformat_pcm
audio_stream_format_is_handle_valid
audio_stream_format_release
audio_stream_is_handle_valid
audio_stream_release
auto_detect_source_lang_config_get_property_bag
auto_detect_source_lang_config_is_handle_valid
auto_detect_source_lang_config_release
bot_framework_config_from_authorization_token
bot_framework_config_from_subscription
class_language_model_assign_class
class_language_model_from_storage_id
connection_async_handle_release
connection_close
connection_connected_set_callback
connection_disconnected_set_callback
connection_from_conversation_translator
connection_from_dialog_service_connector
connection_from_recognizer
connection_from_speech_synthesizer
connection_get_property_bag
connection_handle_is_valid
connection_handle_release
connection_message_get_data
connection_message_get_data_size
connection_message_get_property_bag
connection_message_handle_is_valid
connection_message_handle_release
connection_message_received_event_get_message
connection_message_received_event_handle_is_valid
connection_message_received_event_handle_release
connection_message_received_set_callback
connection_open
connection_send_message
connection_send_message_async
connection_send_message_data
connection_send_message_data_async
connection_send_message_wait_for
connection_set_message_property
conversation_create_from_config
conversation_delete_conversation
conversation_end_conversation
conversation_get_conversation_id
conversation_get_property_bag
conversation_lock_conversation
conversation_mute_all_participants
conversation_mute_participant
conversation_release_handle
conversation_start_conversation
conversation_transcription_result_get_user_id
conversation_transcription_result_get_utterance_id
conversation_translator_canceled_set_callback
conversation_translator_connection_connected_set_callback
conversation_translator_connection_disconnected_set_callback
conversation_translator_conversation_expiration_set_callback
conversation_translator_create_from_config
conversation_translator_event_get_expiration_time
conversation_translator_event_get_participant_changed_at_index
conversation_translator_event_get_participant_changed_reason
conversation_translator_event_handle_is_valid
conversation_translator_event_handle_release
conversation_translator_get_property_bag
conversation_translator_handle_is_valid
conversation_translator_handle_release
conversation_translator_join
conversation_translator_join_with_id
conversation_translator_leave
conversation_translator_participant_get_avatar
conversation_translator_participant_get_displayname
conversation_translator_participant_get_id
conversation_translator_participant_get_is_host
conversation_translator_participant_get_is_muted
conversation_translator_participant_get_is_using_tts
conversation_translator_participants_changed_set_callback
conversation_translator_result_get_original_lang
conversation_translator_send_text_message
conversation_translator_session_started_set_callback
conversation_translator_session_stopped_set_callback
conversation_translator_set_authorization_token
conversation_translator_start_transcribing
conversation_translator_stop_transcribing
conversation_translator_text_message_recevied_set_callback
conversation_translator_transcribed_set_callback
conversation_translator_transcribing_set_callback
conversation_unlock_conversation
conversation_unmute_all_participants
conversation_unmute_participant
conversation_update_participant
conversation_update_participant_by_user
conversation_update_participant_by_user_id
create_auto_detect_source_lang_config_from_languages
create_auto_detect_source_lang_config_from_open_range
create_auto_detect_source_lang_config_from_source_lang_config
create_pronunciation_assessment_config
create_pronunciation_assessment_config_from_json
create_voice_profile
create_voice_profile_client_from_config
create_voice_profile_from_id_and_type
custom_commands_config_from_authorization_token
custom_commands_config_from_subscription
delete_voice_profile
diagnostics_free_string
diagnostics_get_handle_count
diagnostics_get_handle_info
diagnostics_is_log_level_enabled
diagnostics_log_apply_properties
diagnostics_log_console_set_filters
diagnostics_log_console_start_logging
diagnostics_log_console_stop_logging
diagnostics_log_format_message
diagnostics_log_memory_dump
diagnostics_log_memory_dump_on_exit
diagnostics_log_memory_dump_to_stderr
diagnostics_log_memory_get_line
diagnostics_log_memory_get_line_num_newest
diagnostics_log_memory_get_line_num_oldest
diagnostics_log_memory_set_filters
diagnostics_log_memory_start_logging
diagnostics_log_memory_stop_logging
diagnostics_log_start_logging
diagnostics_log_stop_logging
diagnostics_log_trace_message
diagnostics_log_trace_message2
diagnostics_log_trace_string
diagnostics_logmessage_set_callback
diagnostics_logmessage_set_filters
diagnostics_set_log_level
dialog_service_connector_activity_received_event_get_activity
dialog_service_connector_activity_received_event_get_activity_size
dialog_service_connector_activity_received_event_get_audio
dialog_service_connector_activity_received_event_handle_is_valid
dialog_service_connector_activity_received_event_has_audio
dialog_service_connector_activity_received_event_release
dialog_service_connector_activity_received_set_callback
dialog_service_connector_async_handle_is_valid
dialog_service_connector_async_handle_release
dialog_service_connector_async_reco_result_handle_is_valid
dialog_service_connector_async_reco_result_handle_release
dialog_service_connector_async_string_handle_is_valid
dialog_service_connector_async_string_handle_release
dialog_service_connector_async_void_handle_is_valid
dialog_service_connector_async_void_handle_release
dialog_service_connector_canceled_set_callback
dialog_service_connector_connect
dialog_service_connector_connect_async
dialog_service_connector_connect_async_wait_for
dialog_service_connector_create_dialog_service_connector_from_config
dialog_service_connector_disconnect
dialog_service_connector_disconnect_async
dialog_service_connector_disconnect_async_wait_for
dialog_service_connector_get_property_bag
dialog_service_connector_handle_is_valid
dialog_service_connector_handle_release
dialog_service_connector_listen_once
dialog_service_connector_listen_once_async
dialog_service_connector_listen_once_async_wait_for
dialog_service_connector_recognized_set_callback
dialog_service_connector_recognizing_set_callback
dialog_service_connector_send_activity
dialog_service_connector_send_activity_async
dialog_service_connector_send_activity_async_wait_for
dialog_service_connector_session_started_set_callback
dialog_service_connector_session_stopped_set_callback
dialog_service_connector_speech_end_detected_set_callback
dialog_service_connector_speech_start_detected_set_callback
dialog_service_connector_start_continuous_listening
dialog_service_connector_start_continuous_listening_async
dialog_service_connector_start_keyword_recognition
dialog_service_connector_start_keyword_recognition_async
dialog_service_connector_start_keyword_recognition_async_wait_for
dialog_service_connector_stop_keyword_recognition
dialog_service_connector_stop_keyword_recognition_async
dialog_service_connector_stop_keyword_recognition_async_wait_for
dialog_service_connector_stop_listening
dialog_service_connector_stop_listening_async
dialog_service_connector_synthesizing_audio_set_callback
dialog_service_connector_turn_status_received_get_conversation_id
dialog_service_connector_turn_status_received_get_conversation_id_size
dialog_service_connector_turn_status_received_get_interaction_id
dialog_service_connector_turn_status_received_get_interaction_id_size
dialog_service_connector_turn_status_received_get_status
dialog_service_connector_turn_status_received_handle_is_valid
dialog_service_connector_turn_status_received_release
dialog_service_connector_turn_status_received_set_callback
embedded_speech_config_add_path
embedded_speech_config_create
embedded_speech_config_get_num_speech_reco_models
embedded_speech_config_get_speech_reco_model
enroll_voice_profile
error_get_call_stack
error_get_error_code
error_get_message
error_release
get_activation_phrases
get_profiles_json
grammar_create_from_storage_id
grammar_handle_is_valid
grammar_handle_release
grammar_list_add_grammar
grammar_list_from_recognizer
grammar_list_set_recognition_factor
grammar_phrase_create_from_text
grammar_phrase_handle_is_valid
grammar_phrase_handle_release
hybrid_speech_config_create
intent_recognizer_add_intent
intent_recognizer_clear_language_models
intent_recognizer_import_pattern_matching_model
intent_recognizer_recognize_text_once
intent_result_get_intent_id
intent_trigger_create_from_language_understanding_model
intent_trigger_create_from_phrase
intent_trigger_handle_is_valid
intent_trigger_handle_release
keyword_recognition_model_create_from_file
keyword_recognition_model_handle_is_valid
keyword_recognition_model_handle_release
language_understanding_model__handle_release
language_understanding_model_create_from_app_id
language_understanding_model_create_from_subscription
language_understanding_model_create_from_uri
language_understanding_model_get_model_id
language_understanding_model_handle_is_valid
pal_get_value
pal_string_to_wstring
pal_wstring_to_string
participant_create_handle
participant_get_property_bag
participant_release_handle
participant_set_preferred_langugage
participant_set_voice_signature
pattern_matching_model__handle_release
pattern_matching_model_create_from_id
pattern_matching_model_handle_is_valid
phrase_list_grammar_add_phrase
phrase_list_grammar_clear
phrase_list_grammar_from_recognizer_by_name
pronunciation_assessment_config_apply_to_recognizer
pronunciation_assessment_config_get_property_bag
pronunciation_assessment_config_is_handle_valid
pronunciation_assessment_config_release
pronunciation_assessment_config_to_json
property_bag_copy
property_bag_create
property_bag_free_string
property_bag_get_string
property_bag_is_valid
property_bag_release
property_bag_set_string
pull_audio_input_stream_set_callbacks
pull_audio_input_stream_set_getproperty_callback
pull_audio_output_stream_read
push_audio_input_stream_close
push_audio_input_stream_set_property_by_id
push_audio_input_stream_set_property_by_name
push_audio_input_stream_write
push_audio_output_stream_set_callbacks
recognizer_async_handle_is_valid
recognizer_async_handle_release
recognizer_canceled_set_callback
recognizer_connection_event_get_property_bag
recognizer_create_conversation_transcriber_from_config
recognizer_create_intent_recognizer_from_config
recognizer_create_keyword_recognizer_from_audio_config
recognizer_create_source_language_recognizer_from_auto_detect_source_lang_config
recognizer_create_speaker_recognizer_from_config
recognizer_create_speech_recognizer_from_auto_detect_source_lang_config
recognizer_create_speech_recognizer_from_config
recognizer_create_speech_recognizer_from_source_lang_config
recognizer_create_translation_recognizer_from_auto_detect_source_lang_config
recognizer_create_translation_recognizer_from_config
recognizer_disable
recognizer_enable
recognizer_event_handle_is_valid
recognizer_event_handle_release
recognizer_get_property_bag
recognizer_handle_is_valid
recognizer_handle_release
recognizer_is_enabled
recognizer_join_conversation
recognizer_leave_conversation
recognizer_recognition_event_get_offset
recognizer_recognition_event_get_result
recognizer_recognize_keyword_once
recognizer_recognize_keyword_once_async
recognizer_recognize_keyword_once_async_wait_for
recognizer_recognize_once
recognizer_recognize_once_async
recognizer_recognize_once_async_wait_for
recognizer_recognize_text_once_async
recognizer_recognized_set_callback
recognizer_recognizing_set_callback
recognizer_result_handle_is_valid
recognizer_result_handle_release
recognizer_session_event_get_session_id
recognizer_session_started_set_callback
recognizer_session_stopped_set_callback
recognizer_speech_end_detected_set_callback
recognizer_speech_start_detected_set_callback
recognizer_start_continuous_recognition
recognizer_start_continuous_recognition_async
recognizer_start_continuous_recognition_async_wait_for
recognizer_start_keyword_recognition
recognizer_start_keyword_recognition_async
recognizer_start_keyword_recognition_async_wait_for
recognizer_stop_continuous_recognition
recognizer_stop_continuous_recognition_async
recognizer_stop_continuous_recognition_async_wait_for
recognizer_stop_keyword_recognition
recognizer_stop_keyword_recognition_async
recognizer_stop_keyword_recognition_async_wait_for
reset_voice_profile
result_get_canceled_error_code
result_get_duration
result_get_no_match_reason
result_get_offset
result_get_property_bag
result_get_reason
result_get_reason_canceled
result_get_result_id
result_get_text
retrieve_enrollment_result
session_from_recognizer
session_get_property_bag
session_handle_is_valid
session_handle_release
source_lang_config_from_language
source_lang_config_from_language_and_endpointId
source_lang_config_get_property_bag
source_lang_config_is_handle_valid
source_lang_config_release
speaker_identification_model_add_profile
speaker_identification_model_create
speaker_identification_model_release_handle
speaker_recognizer_get_property_bag
speaker_recognizer_identify
speaker_recognizer_release_handle
speaker_recognizer_verify
speaker_verification_model_create
speaker_verification_model_release_handle
speech_config_from_authorization_token
speech_config_from_authorization_token_internal
speech_config_from_endpoint
speech_config_from_endpoint_internal
speech_config_from_host
speech_config_from_host_internal
speech_config_from_subscription
speech_config_from_subscription_internal
speech_config_get_property_bag
speech_config_is_handle_valid
speech_config_release
speech_config_set_audio_output_format
speech_config_set_profanity
speech_config_set_service_property
speech_recognition_model_get_locales
speech_recognition_model_get_name
speech_recognition_model_get_path
speech_recognition_model_get_version
speech_recognition_model_handle_release
speech_translation_config_add_target_language
speech_translation_config_from_authorization_token
speech_translation_config_from_endpoint
speech_translation_config_from_host
speech_translation_config_from_subscription
speech_translation_config_remove_target_language
speechapi_async_handle_release
speechapi_async_wait_for
synth_result_get_audio_data
synth_result_get_audio_format
synth_result_get_audio_length_duration
synth_result_get_canceled_error_code
synth_result_get_property_bag
synth_result_get_reason
synth_result_get_reason_canceled
synth_result_get_result_id
synthesis_voices_result_get_property_bag
synthesis_voices_result_get_reason
synthesis_voices_result_get_result_id
synthesis_voices_result_get_voice_info
synthesis_voices_result_get_voice_num
synthesizer_async_handle_is_valid
synthesizer_async_handle_release
synthesizer_bookmark_event_get_values
synthesizer_bookmark_reached_set_callback
synthesizer_canceled_set_callback
synthesizer_completed_set_callback
synthesizer_connection_connected_set_callback
synthesizer_connection_disconnected_set_callback
synthesizer_create_speech_synthesizer_from_auto_detect_source_lang_config
synthesizer_create_speech_synthesizer_from_config
synthesizer_disable
synthesizer_enable
synthesizer_event_get_text
synthesizer_event_handle_is_valid
synthesizer_event_handle_release
synthesizer_get_property_bag
synthesizer_get_voices_list
synthesizer_get_voices_list_async
synthesizer_get_voices_list_async_wait_for
synthesizer_handle_is_valid
synthesizer_handle_release
synthesizer_is_enabled
synthesizer_result_handle_is_valid
synthesizer_result_handle_release
synthesizer_speak_async_wait_for
synthesizer_speak_ssml
synthesizer_speak_ssml_async
synthesizer_speak_text
synthesizer_speak_text_async
synthesizer_start_speaking_ssml
synthesizer_start_speaking_ssml_async
synthesizer_start_speaking_text
synthesizer_start_speaking_text_async
synthesizer_started_set_callback
synthesizer_stop_speaking
synthesizer_stop_speaking_async
synthesizer_stop_speaking_async_wait_for
synthesizer_synthesis_event_get_result
synthesizer_synthesizing_set_callback
synthesizer_viseme_event_get_animation
synthesizer_viseme_event_get_values
synthesizer_viseme_received_set_callback

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 405KB - Virtual size: 405KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MicrosoftTeamFoundationTestManagementCommon.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

33:00:00:00:6f:65:2d:58:6d:07:11:46:28:00:00:00:00:00:6f
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

20/03/2015, 17:32

Not After

20/06/2016, 17:32

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:C0F4-3086-DEF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/06/2015, 17:42

Not After

04/09/2016, 17:42

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:38:8d:23:6d:16:27:a3:26:e0:00:00:00:00:00:38
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/10/2014, 18:11

Not After

01/01/2016, 18:11

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

aa:c5:cc:f8:c9:90:aa:ae:d1:00:61:b0:5e:77:34:56:af:66:36:ed:90:29:0f:54:50:a2:19:61:45:23:3b:15
Signer

Actual PE Digest

aa:c5:cc:f8:c9:90:aa:ae:d1:00:61:b0:5e:77:34:56:af:66:36:ed:90:29:0f:54:50:a2:19:61:45:23:3b:15

Digest Algorithm

sha256

PE Digest Matches

true

fe:99:e4:ec:d0:72:26:45:31:a9:7d:5b:46:03:9d:5f:17:af:a9:6b
Signer

Actual PE Digest

fe:99:e4:ec:d0:72:26:45:31:a9:7d:5b:46:03:9d:5f:17:af:a9:6b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\binaries\Intermediate\ModulesBuild\tfs_core\x86r\Microsoft.TeamFoundation.TestManagement.Common\12.0.0\Microsoft.TeamFoundation.TestManagement.Common.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MicrosoftVisualStudioProgressionCodeSchema.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

33:00:00:00:9d:42:68:ee:31:1c:d7:56:bd:00:00:00:00:00:9d
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

30/03/2016, 19:21

Not After

30/06/2017, 19:21

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:148C-C4B9-2066,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/06/2015, 17:42

Not After

04/09/2016, 17:42

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:64:47:84:94:86:db:41:19:38:00:00:00:00:00:64
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

28/10/2015, 20:31

Not After

28/01/2017, 20:31

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

b5:d5:9d:1c:c8:f5:54:94:e8:58:66:70:f1:b8:88:7a:40:5b:50:3e:a0:fd:d3:b9:12:30:65:26:3f:3d:69:15
Signer

Actual PE Digest

b5:d5:9d:1c:c8:f5:54:94:e8:58:66:70:f1:b8:88:7a:40:5b:50:3e:a0:fd:d3:b9:12:30:65:26:3f:3d:69:15

Digest Algorithm

sha256

PE Digest Matches

false

ff:26:b6:d4:db:c7:89:e0:8e:bb:c5:db:3d:44:1c:8d:be:32:db:08
Signer

Actual PE Digest

ff:26:b6:d4:db:c7:89:e0:8e:bb:c5:db:3d:44:1c:8d:be:32:db:08

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

f:\binaries\Intermediate\progression\codeschema.csproj__721182699\objr\x86\Microsoft.VisualStudio.Progression.CodeSchema.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 622KB - Virtual size: 622KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56a78d55f3f7af51443e58e0ce2fb5f6

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6eCertificate

Extended Key Usages

Key Usages

c2:ff:da:0e:a2:6c:49:13:ff:66:dd:29:81:7b:f2:27Certificate

Extended Key Usages

Key Usages

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

22:a6:0c:92:b3:05:c9:03:f2:13:28:6d:12:39:32:eb:92:4f:de:62:24:9f:d4:f6:43:7b:f3:7d:c6:38:da:f6Signer

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

shell32

ole32

comctl32

user32

gdi32

kernel32

Sections

.text Size: 26KB - Virtual size: 26KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 1KB - Virtual size: 172KB

.ndata Size: - Virtual size: 64KB

.rsrc Size: 194KB - Virtual size: 194KB

fcf1390e9ce472c7270447fc5c61a0c1

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

gdiplus

Sections

.text Size: 197KB - Virtual size: 196KB

.rdata Size: 42KB - Virtual size: 41KB

.data Size: 4KB - Virtual size: 141KB

.didat Size: 512B - Virtual size: 396B

.rsrc Size: 18KB - Virtual size: 17KB

.reloc Size: 9KB - Virtual size: 8KB

37b2332fff08eed2fc9cf185c01f3063

Code Sign

33:00:00:02:cc:8e:b5:96:a6:bd:d1:c9:4e:00:00:00:00:02:ccCertificate

Extended Key Usages

61:0e:90:d2:00:00:00:00:00:03Certificate

Key Usages

85:70:ab:31:b6:39:d6:96:a8:eb:95:b8:a8:c4:7c:d1:10:69:da:43:34:6d:9e:c2:07:fd:94:44:2c:b9:94:b4Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

advapi32

vccorlib140_app

api-ms-win-core-sysinfo-l1-1-0

api-ms-win-core-libraryloader-l1-2-0

api-ms-win-core-synch-l1-1-0

api-ms-win-core-winrt-l1-1-0

api-ms-win-core-handle-l1-1-0

api-ms-win-core-util-l1-1-0

api-ms-win-core-synch-l1-2-0

api-ms-win-core-winrt-string-l1-1-0

api-ms-win-core-com-l1-1-0

ws2_32

api-ms-win-core-processthreads-l1-1-0

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

c2:ff:da:0e:a2:6c:49:13:ff:66:dd:29:81:7b:f2:27
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

22:a6:0c:92:b3:05:c9:03:f2:13:28:6d:12:39:32:eb:92:4f:de:62:24:9f:d4:f6:43:7b:f3:7d:c6:38:da:f6
Signer

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 1KB - Virtual size: 172KB

.ndata
Size: - Virtual size: 64KB

.rsrc
Size: 194KB - Virtual size: 194KB

.text
Size: 197KB - Virtual size: 196KB

.rdata
Size: 42KB - Virtual size: 41KB

.data
Size: 4KB - Virtual size: 141KB

.didat
Size: 512B - Virtual size: 396B

.rsrc
Size: 18KB - Virtual size: 17KB

.reloc
Size: 9KB - Virtual size: 8KB

33:00:00:02:cc:8e:b5:96:a6:bd:d1:c9:4e:00:00:00:00:02:cc
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

85:70:ab:31:b6:39:d6:96:a8:eb:95:b8:a8:c4:7c:d1:10:69:da:43:34:6d:9e:c2:07:fd:94:44:2c:b9:94:b4
Signer

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 405KB - Virtual size: 405KB

.data
Size: 22KB - Virtual size: 2.0MB

.pdata
Size: 144KB - Virtual size: 144KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 10KB - Virtual size: 9KB

33:00:00:00:6f:65:2d:58:6d:07:11:46:28:00:00:00:00:00:6f
Certificate

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

61:33:26:1a:00:00:00:00:00:31
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate

33:00:00:00:38:8d:23:6d:16:27:a3:26:e0:00:00:00:00:00:38
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

aa:c5:cc:f8:c9:90:aa:ae:d1:00:61:b0:5e:77:34:56:af:66:36:ed:90:29:0f:54:50:a2:19:61:45:23:3b:15
Signer

fe:99:e4:ec:d0:72:26:45:31:a9:7d:5b:46:03:9d:5f:17:af:a9:6b
Signer

.text
Size: 31KB - Virtual size: 31KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

33:00:00:00:9d:42:68:ee:31:1c:d7:56:bd:00:00:00:00:00:9d
Certificate

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

61:33:26:1a:00:00:00:00:00:31
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate