304603110894deedff704b97827dfb99_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

304603110894deedff704b97827dfb99_JaffaCakes118
Size

4.7MB
MD5

304603110894deedff704b97827dfb99
SHA1

d3c89ebf0dc7714166fc75da46106d0de7bb8721
SHA256

c77ac0954c3aec5f2ccca17a9f4aabf60aa10503c2fac576adee55abff5dbf05
SHA512

9fe2eefb55c3acadd0e4feb9442a3836a0a2259079b65b66efeea10564a241ebb4cd21de16eec951e332ce1568f0ab2b092067fb275d2197c9c480a800a0f678
SSDEEP

98304:UNrF9e5fUNKlRA5251syDwsibdd/OEqazVkoiJKrc4T7FyWdxgKZ3hkO:kWyKlRT51s6wsiKEH2BKT7FyWHgKT

Score

3^/10

Malware Config

Signatures

Unsigned PE 46 IoCs

Checks for missing Authenticode signature.

resource
unpack001/simona_8/Autorun.exe
unpack001/simona_8/Instalers/OcsAgentSetup.exe
unpack002/$PLUGINSDIR/AdvSplash.dll
unpack002/$PLUGINSDIR/InstallOptions.dll
unpack002/$PLUGINSDIR/KillProcDLL.dll
unpack002/$PLUGINSDIR/SetACL.exe
unpack002/$PLUGINSDIR/System.dll
unpack002/$PLUGINSDIR/UserInfo.dll
unpack002/$PLUGINSDIR/nsExec.dll
unpack002/$PLUGINSDIR/services.dll
unpack002/Libeay32.dll
unpack002/Mfc42.dll
unpack002/OCSInventory.exe
unpack002/OcsService.dll
unpack002/OcsService.exe
unpack002/OcsWmi.dll
unpack002/Ocs_contact.exe
unpack002/PsApi.dll
unpack002/SSLeay32.dll
unpack002/SysInfo.dll
unpack002/Zlib.dll
unpack002/download.exe
unpack002/inst32.exe
unpack002/uninst.exe
unpack003/$PLUGINSDIR/KillProcDLL.dll
unpack003/$PLUGINSDIR/services.dll
unpack001/simona_8/Instalers/OcsLogon.exe
unpack004/$PLUGINSDIR/InstallOptions.dll
unpack004/$PLUGINSDIR/System.dll
unpack004/$PLUGINSDIR/inetc.dll
unpack001/simona_8/Instalers/WinSgtc.exe
unpack001/simona_8/Instalers/ocsagent.exe
unpack005/$PLUGINSDIR/System.dll
unpack005/Libeay32.dll
unpack005/Mfc42.dll
unpack005/OCSInventory.exe
unpack005/OcsLogon.exe
unpack006/$PLUGINSDIR/InstallOptions.dll
unpack006/$PLUGINSDIR/System.dll
unpack006/$PLUGINSDIR/inetc.dll
unpack005/OcsWmi.dll
unpack005/PsApi.dll
unpack005/SSLeay32.dll
unpack005/SysInfo.dll
unpack005/Zlib.dll
unpack005/download.exe

NSIS installer 5 IoCs

installer

resource	yara_rule
static1/unpack001/simona_8/Instalers/OcsAgentSetup.exe	nsis_installer_1
static1/unpack002/uninst.exe	nsis_installer_1
static1/unpack001/simona_8/Instalers/OcsLogon.exe	nsis_installer_1
static1/unpack001/simona_8/Instalers/ocsagent.exe	nsis_installer_1
static1/unpack005/OcsLogon.exe	nsis_installer_1

Files

304603110894deedff704b97827dfb99_JaffaCakes118
.rar
simona_8/Autorun.exe
.exe windows:4 windows x86 arch:x86

d2649867cedca90066a116140657c3c4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaFreeVar
__vbaEnd
_adj_fdiv_m64
_adj_fprem1
_adj_fdiv_m32
_adj_fdiv_m16i
_adj_fdivr_m16i
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
_adj_fpatan
EVENT_SINK_Release
ord600
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaFPException
_CIlog
_adj_fdiv_m32i
_adj_fdivr_m32i
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaVarDup
_CIatan
_allmul
_CItan
_CIexp

Sections

.text
Size: 240KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
simona_8/Instalers/ChangeLog
simona_8/Instalers/LICENSE.txt
simona_8/Instalers/OcsAgentSetup.exe
.exe windows:4 windows x86 arch:x86

51af09c6f94705a14d7c2cf34b244036

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
CreateFileA
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
ExitProcess
lstrcpynA
CloseHandle
GetWindowsDirectoryA
GetTempPathA
GetUserDefaultLangID
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrcpyA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpiA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
MulDiv
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetCommandLineA

user32

EndDialog
ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
LoadCursorA
SetCursor
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
RegisterClassA
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfA
SendMessageTimeoutA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
FindWindowExA

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/AdvSplash.dll
.dll windows:4 windows x86 arch:x86

741b6bafe355b63a372d737b30543a95

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpynA
GetVersion
lstrcpyA
lstrcatA
GetModuleHandleA
GetProcAddress
GlobalAlloc
GlobalFree

user32

LoadCursorA
RegisterClassA
SetWindowPos
SetWindowLongA
SystemParametersInfoA
EndPaint
GetClientRect
BeginPaint
DefWindowProcA
DestroyWindow
LoadImageA
CreateWindowExA
IsWindow
GetMessageA
DispatchMessageA
UnregisterClassA
wsprintfA
PostMessageA
SetWindowRgn
EnumDisplaySettingsA

gdi32

CombineRgn
CreateRectRgn
GetDIBits
SelectObject
CreateCompatibleDC
GetObjectA
DeleteDC
BitBlt
DeleteObject

winmm

timeSetEvent
PlaySoundA
timeKillEvent

Exports

Exports

show

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
MultiByteToWideChar
GlobalAlloc

user32

GetDlgCtrlID
GetClientRect
SetWindowRgn
MapWindowPoints
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
PtInRect
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
LoadIconA

gdi32

SetTextColor
GetObjectA
SelectObject
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
CreateCompatibleDC

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/KillProcDLL.dll
.dll windows:4 windows x86 arch:x86

815c88741b87a0210c457b00b57bf9c6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TerminateProcess
CloseHandle
OpenProcess
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExA
GlobalFree
lstrcpyA
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
RtlUnwind
GetCPInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP

Exports

Exports

KillProc

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/SetACL.exe
.exe windows:5 windows x86 arch:x86

4107c274be99512943dedb53314a3190

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

netapi32

DsGetDcNameW
NetApiBufferFree
DsRoleGetPrimaryDomainInformation
DsRoleFreeMemory

mpr

WNetOpenEnumW
WNetEnumResourceW

kernel32

GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
VirtualAlloc
InitializeCriticalSectionAndSpinCount
LCMapStringA
GetStringTypeA
GetStringTypeW
GetFileType
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
GetProcessHeap
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
SizeofResource
GetConsoleMode
GetConsoleCP
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapSize
ExitProcess
Sleep
HeapReAlloc
HeapFree
HeapAlloc
RaiseException
RtlUnwind
SetEndOfFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GlobalFlags
WritePrivateProfileStringW
GlobalAddAtomW
GlobalFindAtomW
LoadLibraryA
GetVersionExA
GetModuleHandleA
InterlockedIncrement
InterlockedDecrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
GetCurrentProcessId
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
LoadLibraryW
InterlockedExchange
lstrcmpW
SetErrorMode
GetProcAddress
GetModuleFileNameW
lstrlenA
lstrcmpA
WideCharToMultiByte
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
lstrlenW
SetLastError
GetCommandLineW
GetModuleHandleW
GetVersionExW
CreateFileW
FindFirstFileW
FindNextFileW
FindClose
LoadLibraryExW
FormatMessageW
FreeLibrary
GetCurrentProcess
CloseHandle
GetLastError
LocalAlloc
LocalFree
MultiByteToWideChar
FindResourceW
LoadResource
LockResource

user32

DestroyMenu
ShowWindow
SetWindowTextW
SetCursor
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
TranslateMessage
GetActiveWindow
GetCursorPos
ValidateRect
RegisterWindowMessageW
LoadIconW
WinHelpW
GetCapture
SetWindowsHookExW
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
GetSubMenu
GetMenuItemCount
IsWindow
GetForegroundWindow
DispatchMessageW
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
GetKeyState
SetMenu
SetForegroundWindow
IsWindowVisible
GetClientRect
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
SetWindowLongW
SetWindowPos
SystemParametersInfoA
IsIconic
CallNextHookEx
GetMenuItemID
GetMenuState
PostQuitMessage
PostMessageW
MessageBoxW
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetWindowLongW
GetParent
SendMessageW
GetWindowThreadProcessId
UnhookWindowsHookEx
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
GetSystemMetrics
GetWindowPlacement
GetWindowRect
GetWindow
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetWindowTextW
LoadCursorW
GetMessageW

gdi32

TextOutW
GetStockObject
CreateBitmap
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
RectVisible
PtVisible
DeleteObject
GetClipBox
SetMapMode
GetDeviceCaps
SaveDC
RestoreDC
SetBkColor
SetTextColor
ExtTextOutW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegSetValueExW
RegEnumKeyW
RegDeleteKeyW
RegQueryValueW
RegOpenKeyW
RegQueryValueExW
GetSecurityDescriptorControl
ConvertSecurityDescriptorToStringSecurityDescriptorW
SetEntriesInAclW
ConvertStringSecurityDescriptorToSecurityDescriptorW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetSecurityDescriptorSacl
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorControl
SetKernelObjectSecurity
SetNamedSecurityInfoW
GetKernelObjectSecurity
GetNamedSecurityInfoW
MakeAbsoluteSD
IsValidSecurityDescriptor
IsValidSid
ConvertStringSidToSidW
LookupAccountNameW
MapGenericMask
LookupAccountSidW
ConvertSidToStringSidW
RegEnumKeyExW
RegConnectRegistryW
RegOpenKeyExW
RegCloseKey
RegCreateKeyExW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
EqualSid
CopySid
IsValidAcl
GetAce
DeleteAce
GetAclInformation
GetLengthSid
InitializeAcl
AddAccessAllowedAce
AddAce

shlwapi

PathFindFileNameW
PathFindExtensionW

oleaut32

VariantClear
VariantChangeType
VariantInit

Sections

.text
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
GetLastError
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 494B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UserInfo.dll
.dll windows:4 windows x86 arch:x86

48cfa0ea7e353e4a7dd23572da8374ef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
GetCurrentThread
GetCurrentProcess
GetLastError
GlobalFree
CloseHandle
lstrcpynA
GlobalAlloc

advapi32

OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
GetUserNameA
OpenThreadToken

Exports

Exports

GetAccountType
GetName

Sections

.text
Size: 1024B - Virtual size: 573B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 45B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsExec.dll
.dll windows:4 windows x86 arch:x86

0a429a757fe850cda370ca04651f8539

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
TerminateProcess
lstrcpyA
lstrcpynA
GlobalReAlloc
GlobalUnlock
GlobalSize
ReadFile
PeekNamedPipe
GetTickCount
CreateProcessA
GetStartupInfoA
CreatePipe
GetVersionExA
GetExitCodeProcess
lstrlenA
lstrcatA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
CreateFileA
CopyFileA
GetTempFileNameA
CloseHandle
GlobalAlloc
GetModuleFileNameA
lstrcmpiA
GetCommandLineA
DeleteFileA
GlobalLock
GlobalFree

user32

SendMessageA
CharNextA
wsprintfA
CharPrevA
FindWindowExA

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

Exports

Exports

Exec
ExecToLog
ExecToStack

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/options.ini
$PLUGINSDIR/services.dll
.dll windows:4 windows x86 arch:x86

caddd9e268e5bc2a8b67248bc1f72836

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
lstrcpynA
WideCharToMultiByte
FormatMessageA
LocalFree
HeapAlloc
MultiByteToWideChar
GetProcessHeap
GetCurrentThread
HeapReAlloc
HeapFree
GlobalAlloc
GetLastError
GetCurrentProcess
lstrcpyA

advapi32

LsaRemoveAccountRights
LsaAddAccountRights
OpenProcessToken
OpenThreadToken
ControlService
DeleteService
StartServiceA
OpenServiceA
OpenSCManagerA
QueryServiceStatus
CloseServiceHandle
LsaEnumerateAccountRights
EnumServicesStatusA
LsaNtStatusToWinError
LsaClose
FreeSid
EqualSid
AllocateAndInitializeSid
GetTokenInformation
LsaFreeMemory
LsaOpenPolicy
LookupAccountNameW

msvcrt

malloc
wcslen
memset
free
strstr
_except_handler3
_strlwr
_stricmp
_itoa

Exports

Exports

GetServiceNameFromDisplayName
GrantLogonAsAService
HasLogonAsAService
IsProcessUserAdministrator
IsServiceInstalled
IsServiceRunning
RemoveLogonAsAService
SendServiceCommand

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 356B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/splash.bmp
BiosInfo.exe
Libeay32.dll
.dll windows:4 windows x86 arch:x86

f406fff1847e3a8c708c5a07f17e5b19

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

sendto
recvfrom
accept
ntohl
bind
listen
inet_ntoa
WSACancelBlockingCall
WSACleanup
getsockopt
getservbyname
ntohs
WSAStartup
gethostbyname
htons
htonl
socket
setsockopt
connect
send
WSASetLastError
recv
WSAGetLastError
shutdown
closesocket

gdi32

CreateCompatibleDC
GetDeviceCaps
CreateCompatibleBitmap
SelectObject
GetObjectA
BitBlt
GetBitmapBits
DeleteObject
DeleteDC
CreateDCA

advapi32

ReportEventA
DeregisterEventSource
RegisterEventSourceA

user32

MessageBoxA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW

msvcrt

_write
_fileno
_stat
_chmod
_getch
_isctype
_read
sprintf
abort
wcsstr
_vsnprintf
vfprintf
_iob
free
realloc
malloc
memchr
time
localtime
gmtime
strncpy
_errno
memmove
_pctype
__mb_cur_max
_getpid
fprintf
strstr
fputs
fclose
fopen
fread
fwrite
fflush
_setmode
ftell
fseek
fgets
_ftol
atoi
perror
qsort
strcmp
getenv
strerror
strchr
strncmp
strtoul
strrchr
tolower
sscanf
exit
strtol
signal
printf
_initterm
_adjust_fdiv

kernel32

SetLastError
LoadLibraryA
FreeLibrary
FindClose
GetModuleHandleA
GetCurrentProcessId
GetThreadTimes
GetCurrentThread
GetProcAddress
GetFileType
GetVersion
GlobalMemoryStatus
QueryPerformanceCounter
CloseHandle
GetTickCount
GetVersionExA
FlushConsoleInputBuffer
ExitProcess
GetCurrentThreadId
FindNextFileA
GetLastError
FindFirstFileA
GetStdHandle

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
AES_cbc_encrypt
AES_cfb128_encrypt
AES_cfb1_encrypt
AES_cfb8_encrypt
AES_cfbr_encrypt_block
AES_ctr128_encrypt
AES_decrypt
AES_ecb_encrypt
AES_encrypt
AES_ofb128_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
ASN1_ANY_it
ASN1_BIT_STRING_asn1_meth
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_HEADER_free
ASN1_HEADER_new
ASN1_IA5STRING_asn1_meth
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SEQUENCE_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_cmp
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_encode
ASN1_STRING_free
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_check
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TIME_to_generalizedtime
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_set
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_add_oid_module
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_fp
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_pack
ASN1_item_sign
ASN1_item_unpack
ASN1_item_verify
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_pack_string
ASN1_parse
ASN1_parse_dump
ASN1_primitive_free
ASN1_primitive_new
ASN1_put_eoc
ASN1_put_object
ASN1_seq_pack
ASN1_seq_unpack
ASN1_sign
ASN1_tag2bit
ASN1_tag2str
ASN1_template_d2i
ASN1_template_free
ASN1_template_i2d
ASN1_template_new
ASN1_unpack_string
ASN1_verify
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIGNUM_it
BIO_accept
BIO_callback_ctrl
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_dgram_non_fatal_error
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_ex_data
BIO_get_ex_new_index
BIO_get_host_ip
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_gethostbyname
BIO_gets
BIO_indent
BIO_int_ctrl
BIO_new
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_dgram
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_datagram
BIO_s_fd
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_socket
BIO_set
BIO_set_cipher
BIO_set_ex_data
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_cleanup
BIO_sock_error
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket_ioctl
BIO_socket_nbio
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_get_thread_id
BN_BLINDING_invert
BN_BLINDING_invert_ex
BN_BLINDING_new
BN_BLINDING_set_flags
BN_BLINDING_set_thread_id
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_init
BN_CTX_new
BN_CTX_start
BN_GENCB_call
BN_GF2m_add
BN_GF2m_arr2poly
BN_GF2m_mod
BN_GF2m_mod_arr
BN_GF2m_mod_div
BN_GF2m_mod_div_arr
BN_GF2m_mod_exp
BN_GF2m_mod_exp_arr
BN_GF2m_mod_inv
BN_GF2m_mod_inv_arr
BN_GF2m_mod_mul
BN_GF2m_mod_mul_arr
BN_GF2m_mod_solve_quad
BN_GF2m_mod_solve_quad_arr
BN_GF2m_mod_sqr
BN_GF2m_mod_sqr_arr
BN_GF2m_mod_sqrt
BN_GF2m_mod_sqrt_arr
BN_GF2m_poly2arr
BN_MONT_CTX_copy
BN_MONT_CTX_free
BN_MONT_CTX_init
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_MONT_CTX_set_locked
BN_RECP_CTX_free
BN_RECP_CTX_init
BN_RECP_CTX_new
BN_RECP_CTX_set
BN_add
BN_add_word
BN_bin2bn
BN_bn2bin
BN_bn2dec
BN_bn2hex
BN_bn2mpi
BN_bntest_rand
BN_clear
BN_clear_bit
BN_clear_free
BN_cmp
BN_copy
BN_dec2bn
BN_div
BN_div_recp
BN_div_word
BN_dup
BN_exp
BN_free
BN_from_montgomery
BN_gcd
BN_generate_prime
BN_generate_prime_ex
BN_get0_nist_prime_192
BN_get0_nist_prime_224
BN_get0_nist_prime_256
BN_get0_nist_prime_384
BN_get0_nist_prime_521
BN_get_params
BN_get_word
BN_hex2bn
BN_init
BN_is_bit_set
BN_is_prime
BN_is_prime_ex
BN_is_prime_fasttest
BN_is_prime_fasttest_ex
BN_kronecker
BN_lshift
BN_lshift1
BN_mask_bits
BN_mod_add
BN_mod_add_quick
BN_mod_exp
BN_mod_exp2_mont
BN_mod_exp_mont
BN_mod_exp_mont_consttime
BN_mod_exp_mont_word
BN_mod_exp_recp
BN_mod_exp_simple
BN_mod_inverse
BN_mod_lshift
BN_mod_lshift1
BN_mod_lshift1_quick
BN_mod_lshift_quick
BN_mod_mul
BN_mod_mul_montgomery
BN_mod_mul_reciprocal
BN_mod_sqr
BN_mod_sqrt
BN_mod_sub
BN_mod_sub_quick
BN_mod_word
BN_mpi2bn
BN_mul
BN_mul_word
BN_new
BN_nist_mod_192
BN_nist_mod_224
BN_nist_mod_256
BN_nist_mod_384
BN_nist_mod_521
BN_nnmod
BN_num_bits
BN_num_bits_word
BN_options
BN_print
BN_print_fp
BN_pseudo_rand
BN_pseudo_rand_range
BN_rand
BN_rand_range
BN_reciprocal
BN_rshift
BN_rshift1
BN_set_bit
BN_set_negative
BN_set_params
BN_set_word
BN_sqr
BN_sub
BN_sub_word
BN_swap
BN_to_ASN1_ENUMERATED
BN_to_ASN1_INTEGER
BN_uadd
BN_ucmp
BN_usub
BN_value_one
BUF_MEM_free
BUF_MEM_grow
BUF_MEM_grow_clean
BUF_MEM_new
BUF_memdup
BUF_strdup
BUF_strlcat
BUF_strlcpy
BUF_strndup
CAST_cbc_encrypt
CAST_cfb64_encrypt
CAST_decrypt
CAST_ecb_encrypt
CAST_encrypt
CAST_ofb64_encrypt
CAST_set_key
CBIGNUM_it
CERTIFICATEPOLICIES_free
CERTIFICATEPOLICIES_it
CERTIFICATEPOLICIES_new
COMP_CTX_free
COMP_CTX_new
COMP_compress_block
COMP_expand_block
COMP_rle
COMP_zlib
CONF_dump_bio
CONF_dump_fp
CONF_free
CONF_get1_default_config_file
CONF_get_number
CONF_get_section
CONF_get_string
CONF_imodule_get_flags
CONF_imodule_get_module
CONF_imodule_get_name
CONF_imodule_get_usr_data
CONF_imodule_get_value
CONF_imodule_set_flags
CONF_imodule_set_usr_data
CONF_load
CONF_load_bio
CONF_load_fp
CONF_module_add
CONF_module_get_usr_data
CONF_module_set_usr_data
CONF_modules_finish
CONF_modules_free
CONF_modules_load
CONF_modules_load_file

Sections

.text
Size: 684KB - Virtual size: 681KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Mfc42.dll
.dll regsvr32 windows:4 windows x86 arch:x86

bcd2542f46e742c06cabefff84c7320d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

MFC42.pdb

Imports

msvcrt

memcpy
memmove
malloc
free
abort
_mbsinc
memset
_get_osfhandle
__doserrno
_fdopen
_open_osfhandle
fclose
clearerr
fread
fwrite
fputs
fgets
ftell
fseek
fflush
realloc
_mbscmp
_mbschr
_mbspbrk
_mbsrev
_mbslwr
_mbsupr
wcslen
_mbscspn
_mbsrchr
_mbsspn
_mbsstr
_mbsnbcmp
_mbclen
vsprintf
strlen
sprintf
_ismbcdigit
atoi
_ismbcspace
mktime
gmtime
localtime
strftime
time
_mbctype
_purecall
_msize
calloc
memcmp
abs
strtoul
strtol
strtod
_expand
_mbsdec
_strdup
_endthreadex
_beginthreadex
__p___argv
__p___argc
atol
_fullpath
_splitpath
floor
fabs
_ftol
ceil
modf
_itoa
labs
swprintf
_ultoa
_ltoa
wcscpy
wcsncpy
_mbsnbicmp
??1type_info@@UAE@XZ
__dllonexit
_onexit
_except_handler3
?terminate@@YAXXZ
_initterm
_adjust_fdiv
strcmp
strcpy
_CxxThrowException
__CxxFrameHandler

kernel32

WriteFile
GetProcAddress
LoadLibraryA
lstrcpyA
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetCurrentProcess
GlobalSize
GlobalLock
GlobalAlloc
GlobalReAlloc
GlobalUnlock
GlobalFree
GetFileAttributesA
GetFileSize
GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
InterlockedDecrement
WideCharToMultiByte
InterlockedIncrement
LocalFree
FormatMessageA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
LocalAlloc
LeaveCriticalSection
GlobalHandle
EnterCriticalSection
TlsGetValue
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
WaitForSingleObject
CreateSemaphoreA
ReleaseSemaphore
CreateMutexA
ReleaseMutex
CreateEventA
WaitForMultipleObjects
GetVersionExA
GetModuleHandleA
lstrcatA
FreeLibrary
GlobalDeleteAtom
GlobalFindAtomA
GetVersion
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
FreeResource
LockResource
LoadResource
FindResourceA
MulDiv
GetProfileIntA
VirtualProtect
FindResourceExA
SizeofResource
GetProcessVersion
GlobalFlags
GetTempFileNameA
GetDiskFreeSpaceA
LocalUnlock
LocalLock
SearchPathA
GetTempPathA
SetThreadPriority
ResumeThread
SetEvent
SuspendThread
GetCurrentThread
SetErrorMode
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
FindNextFileA
GetTickCount
lstrlenW
CopyFileA
lstrcpyW
GetUserDefaultLCID
IsDBCSLeadByte
GetSystemDirectoryA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
DuplicateHandle
MultiByteToWideChar
GetModuleFileNameA
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
ReadFile
lstrcmpA
OutputDebugStringA
lstrlenA
IsBadReadPtr
IsBadWritePtr
IsBadStringPtrA
IsBadStringPtrW
GetLastError
SetLastError
lstrcpynA
RaiseException
InterlockedExchange
CreateFileA

gdi32

ScaleWindowExtEx
GetROP2
EnumFontFamiliesA
GetPixel
GetPaletteEntries
RealizePalette
CreatePalette
OffsetRgn
SetBrushOrgEx
CreateMetaFileA
CopyMetaFileA
LPtoDP
EndDoc
AbortDoc
SetAbortProc
EndPage
StartPage
DPtoLP
GetMapMode
CombineRgn
SetRectRgn
CreateHatchBrush
ExtCreatePen
CreateDIBPatternBrushPt
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
PolyBezierTo
PolylineTo
PolyDraw
ArcTo
OffsetWindowOrgEx
SelectPalette
StartDocA
SelectClipPath
CreateRectRgn
GetClipRgn
SelectClipRgn
SetColorAdjustment
SetArcDirection
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
OffsetClipRgn
ExcludeClipRect
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
EnumFontFamiliesExA
CreateDCA
CreateRectRgnIndirect
UnrealizeObject
CreateBitmap
CreatePatternBrush
CreatePen
PatBlt
Rectangle
TextOutA
DeleteMetaFile
CloseMetaFile
GetPolyFillMode
ScaleViewportExtEx
IntersectClipRect
GetDeviceCaps
SetMapMode
SetWindowExtEx
SetViewportExtEx
OffsetViewportOrgEx
GetViewportOrgEx
SetViewportOrgEx
GetWindowOrgEx
SetWindowOrgEx
GetCurrentPositionEx
MoveToEx
GetWindowExtEx
GetViewportExtEx
GetTextFaceA
GetTextAlign
RectVisible
PtVisible
GetTextColor
GetBkMode
GetBkColor
Escape
GetNearestColor
SaveDC
RestoreDC
GetStockObject
CreateFontA
GetCharWidthA
DeleteObject
CreateCompatibleBitmap
StretchDIBits
DeleteDC
CreateFontIndirectA
GetTextMetricsA
GetTextExtentPoint32A
ExtTextOutA
BitBlt
SelectObject
CreateCompatibleDC
CreateSolidBrush
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetStretchBltMode

user32

GetScrollRange
LoadStringA
FrameRect
InvalidateRgn
EnumChildWindows
DrawEdge
ClipCursor
GetNextDlgGroupItem
CharNextA
SetWindowContextHelpId
CountClipboardFormats
WindowFromDC
CreateMenu
PostThreadMessageA
InSendMessage
CopyAcceleratorTableA
RegisterClipboardFormatA
InsertMenuA
GetMenuStringA
ShowOwnedPopups
UnregisterClassA
PostQuitMessage
ValidateRect
RemoveMenu
MessageBeep
IsClipboardFormatAvailable
FindWindowA
SetCursorPos
DestroyCursor
DestroyIcon
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
MoveWindow
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
SetWindowTextA
GetClassNameA
GetSysColorBrush
EndPaint
BeginPaint
TabbedTextOutA
GetDialogBaseUnits
MapDialogRect
GetAsyncKeyState
wvsprintfA
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
DrawFocusRect
UnionRect
GrayStringA
DrawTextA
GetTabbedTextExtentA
LockWindowUpdate
GetDCEx
SetParent
GetSystemMenu
AppendMenuA
DeleteMenu
IsRectEmpty
IsZoomed
GetDC
KillTimer
SetTimer
SetRect
LoadBitmapA
ReleaseDC
GetWindowDC
InvertRect
FillRect
PtInRect
InflateRect
RedrawWindow
TranslateMDISysAccel
wsprintfA
GetSystemMetrics
CharUpperA
CharToOemA
OemToCharA
UnhookWindowsHookEx
MsgWaitForMultipleObjects
GetWindow
CopyRect
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
IntersectRect
OffsetRect
SetWindowPos
SetWindowLongA
GetWindowLongA
CallWindowProcA
DefWindowProcA
SendMessageA
GetDlgCtrlID
GetWindowTextA
GetWindowTextLengthA
GetDlgItem
SetWindowPlacement
RegisterClassA
GetClassInfoA
GetMenuItemCount
GetMenuItemID
GetSubMenu
PostMessageA
GetMenu
GetClientRect
GetParent
UpdateWindow
MessageBoxA
IsWindowVisible
SetActiveWindow
SetScrollInfo
GetScrollInfo
ScrollWindow
ShowScrollBar
GetLastActivePopup
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetForegroundWindow
GetForegroundWindow
GetSysColor
MapWindowPoints
EnableWindow
PeekMessageA
LoadIconA
GetScrollPos
SetScrollPos
DrawMenuBar
SetScrollRange
DestroyWindow
GetKeyState
TrackPopupMenu
IsChild
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
SetFocus
IsWindow
GetFocus
GetMessagePos
GetMessageTime
RemovePropA
GetPropA
DispatchMessageA
SendDlgItemMessageA
SetPropA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
WinHelpA
GetCapture
RegisterWindowMessageA
LoadAcceleratorsA
TranslateAcceleratorA
IsWindowEnabled
GetDesktopWindow
ShowWindow
SetMenu
BringWindowToTop
SetRectEmpty
InvalidateRect
ReleaseCapture
SetCursor
DestroyMenu
LoadMenuA
ReuseDDElParam
UnpackDDElParam
GetActiveWindow
LoadCursorA
ClientToScreen
GetWindowThreadProcessId
SetCapture
WindowFromPoint
GetCursorPos
TranslateMessage
GetMessageA
WaitMessage
DefFrameProcA
DefMDIChildProcA

Exports

Exports

?classCCachedDataPathProperty@CCachedDataPathProperty@@2UCRuntimeClass@@B
?classCDataPathProperty@CDataPathProperty@@2UCRuntimeClass@@B
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 660KB - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 200KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OCSInventory.exe
.exe windows:4 windows x86 arch:x86

bc41c3703e0e24e347878d9fc67cad49

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libeay32

ord80
ord52
ord227
ord223
ord1015
ord1017
ord1016
ord653
ord585
ord657
ord680
ord222
ord470
ord467

ssleay32

ord183
ord225
ord21
ord142
ord141
ord12
ord111
ord108
ord58
ord75
ord83
ord43
ord96
ord42
ord48
ord8
ord74
ord78

ws2_32

inet_ntoa
htonl
gethostbyname
inet_addr
htons
gethostbyaddr
ntohs
WSASetLastError
getservbyname
getservbyport
WSAGetLastError

sysinfo

?SetProcessor@CDeviceProperties@@QAEXPBD0K@Z
?GetHash@CDeviceProperties@@QAEPBDXZ
?GetHash@CBios@@QAEPBDXZ
?GetHash@CMemorySlotList@@QAEPBDXZ
?GetHash@CSystemSlotList@@QAEPBDXZ
?GetHash@CRegistryValueList@@QAEPBDXZ
?GetHash@CSystemControllerList@@QAEPBDXZ
?GetHash@CMonitorList@@QAEPBDXZ
?GetHash@CSystemPortList@@QAEPBDXZ
?GetHash@CStoragePeripheralList@@QAEPBDXZ
?GetHash@CLogicalDriveList@@QAEPBDXZ
?GetHash@CInputDeviceList@@QAEPBDXZ
?GetHash@CModemList@@QAEPBDXZ
?GetHash@CNetworkAdapterList@@QAEPBDXZ
?GetHash@CPrinterList@@QAEPBDXZ
?GetHash@CSoundDeviceList@@QAEPBDXZ
?GetHash@CVideoAdapterList@@QAEPBDXZ
?GetHash@CSoftwareList@@QAEPBDXZ
?SetChecksum@CDeviceProperties@@QAEXK@Z
?Set@CBios@@QAEXPBD000000@Z
?GetMachineType@CBios@@QAEPBDXZ
?SetDeviceType@CDeviceProperties@@QAEXI@Z
??0CLogicalDrive@@QAE@XZ
??1CLogicalDrive@@UAE@XZ
?RetrieveDriveInfo@CLogicalDrive@@QAEHPBD@Z
?SetFilesNumber@CLogicalDrive@@QAEXJ@Z
?GetCompanyName@CFileVersion@@QAE?AVCString@@XZ
?GetProductName@CFileVersion@@QAE?AVCString@@XZ
?GetInternalName@CFileVersion@@QAE?AVCString@@XZ
?GetFileVersion@CFileVersion@@QAE?AVCString@@XZ
?GetFileDescription@CFileVersion@@QAE?AVCString@@XZ
?Clear@CSoftware@@QAEXXZ
??1SysInfo@@UAE@XZ
??0CNetworkAdapter@@QAE@XZ
?getNetworkAdapters@SysInfo@@QAEHPAVCNetworkAdapterList@@@Z
?GetMACAddress@CNetworkAdapter@@QAEPBDXZ
??1CNetworkAdapter@@UAE@XZ
??0CFileVersion@@QAE@XZ
?Open@CFileVersion@@QAEHPBD@Z
?GetProductVersion@CFileVersion@@QAE?AVCString@@XZ
??1CMemorySlot@@UAE@XZ
??1CFileVersion@@QAE@XZ
??0CSoftware@@QAE@XZ
??1CSoftware@@UAE@XZ
?SetDeviceName@CDeviceProperties@@QAEXPBD@Z
?OpenLog@@YAXPBD0@Z
?SetLastCheckDate@CDeviceProperties@@QAEXPBD@Z
??0SysInfo@@QAE@XZ
?GenerateUID@CDeviceProperties@@QAEXXZ
?SetDeviceID@CDeviceProperties@@QAEXPBD@Z
?RetrieveHardwareAndOS@CDeviceProperties@@QAEHPAVSysInfo@@PBD@Z
?GetOSName@CDeviceProperties@@QAEPBDXZ
?GetOSVersion@CDeviceProperties@@QAEPBDXZ
?GetOSComment@CDeviceProperties@@QAEPBDXZ
?SetOS@CDeviceProperties@@QAEXPBD00@Z
?Set@CSoftware@@QAEXPBD00000KH@Z
??4CSoftware@@QAEAAV0@ABV0@@Z
??0CAccessLog@@QAE@XZ
?GetLoggedOnUser@CDeviceProperties@@QAEPBDXZ
?Retrieve@CAccessLog@@QAEHPBD00@Z
?GetProcessesStatus@CAccessLog@@QAEPBDXZ
?GetLogonDate@CAccessLog@@QAEPBDXZ
?GetUserID@CAccessLog@@QAEPBDXZ
?GetDeviceName@CDeviceProperties@@QAEPBDXZ
?SetDeviceName@CAccessLog@@QAEXPBD@Z
??1CAccessLog@@UAE@XZ
?SetExecutionDuration@CDeviceProperties@@QAEXAAVCTime@@0@Z
?GetExecutionDuration@CDeviceProperties@@QAEPBDXZ
??0CDeviceProperties@@QAE@XZ
??1CDeviceProperties@@UAE@XZ
??0CRegistry@@QAE@XZ
??0CRegistryValue@@QAE@XZ
?GetRegistryMultipleValues@CRegistry@@QAEHPBD0I0PAVCRegistryValueList@@@Z
?GetRegistryValue@CRegistry@@QAEHIPBD0AAVCString@@@Z
?SetDeviceID@CRegistryValue@@QAEXPBD@Z
?Set@CRegistryValue@@QAEXPBD0@Z
??1CRegistryValue@@UAE@XZ
??1CRegistry@@UAE@XZ
?GetMaskByNetNumber@CNetworkAdapterList@@QAE?AVCString@@V2@@Z
??4CMemorySlot@@QAEAAV0@ABV0@@Z
?SetSlotNumber@CMemorySlot@@QAEXI@Z
?SetType@CMemorySlot@@QAEXPBD@Z
?SetUsage@CMemorySlot@@QAEXPBD@Z
?SetCapacity@CMemorySlot@@QAEXPBD@Z
?SetDescription@CMemorySlot@@QAEXPBD@Z
?SetCaption@CMemorySlot@@QAEXPBD@Z
??0CMemorySlot@@QAE@XZ
??1CSystemSlot@@UAE@XZ
?SetStatus@CSystemSlot@@QAEXPBD@Z
?SetSlotDesignation@CSystemSlot@@QAEXPBD@Z
?SetDescription@CSystemSlot@@QAEXPBD@Z
?SetName@CSystemSlot@@QAEXPBD@Z
??0CSystemSlot@@QAE@XZ
?FormatXML@CAccessLog@@QAEHPAVCMarkup@@@Z
?FormatXML@CBios@@QAEHPAVCMarkup@@@Z
?ParseFromXML@CBios@@QAEHAAVCString@@@Z
?GetSystemSerialNumber@CBios@@QAEPBDXZ
?FormatXML@CLogicalDrive@@QAEHPAVCMarkup@@@Z
?FormatXML@CDeviceProperties@@QAEHPAVCMarkup@@@Z
?GetProcessorSpeed@CDeviceProperties@@QAEPBDXZ
??1CInputDevice@@UAE@XZ
?FormatXML@CInputDevice@@QAEHPAVCMarkup@@@Z
??0CInputDevice@@QAE@XZ
?SetMemory@CDeviceProperties@@QAEXKK@Z
?GetPageFileSize@CDeviceProperties@@QAEKXZ
?GetPhysicalMemory@CDeviceProperties@@QAEKXZ
?GetCapacity@CMemorySlot@@QAEPBDXZ
?FormatXML@CMemorySlot@@QAEHPAVCMarkup@@@Z
??1CModem@@UAE@XZ
?FormatXML@CModem@@QAEHPAVCMarkup@@@Z
??0CModem@@QAE@XZ
??1CMonitor@@UAE@XZ
?FormatXML@CMonitor@@QAEHPAVCMarkup@@@Z
??0CMonitor@@QAE@XZ
?FormatXML@CNetworkAdapter@@QAEHPAVCMarkup@@@Z
??1CSystemPort@@UAE@XZ
?FormatXML@CSystemPort@@QAEHPAVCMarkup@@@Z
??0CSystemPort@@QAE@XZ
??1CPrinter@@UAE@XZ
?FormatXML@CPrinter@@QAEHPAVCMarkup@@@Z
?AddLog@@YAXPBDZZ
?GetDeviceID@CDeviceProperties@@QAEPBDXZ
??0CPrinter@@QAE@XZ
??1CAccountInfo@@UAE@XZ
?FormatXML@CAccountInfo@@QAEHPAVCMarkup@@VCString@@@Z
??0CAccountInfo@@QAE@XZ
?FormatXML@CRegistryValue@@QAEHPAVCMarkup@@@Z
?FormatXML@CSoftware@@QAEHPAVCMarkup@@@Z
??1CSoundDevice@@UAE@XZ
?FormatXML@CSoundDevice@@QAEHPAVCMarkup@@@Z
??0CSoundDevice@@QAE@XZ
??1CStoragePeripheral@@UAE@XZ
?FormatXML@CStoragePeripheral@@QAEHPAVCMarkup@@@Z
??0CStoragePeripheral@@QAE@XZ
??1CSystemController@@UAE@XZ
?FormatXML@CSystemController@@QAEHPAVCMarkup@@@Z
??0CSystemController@@QAE@XZ
?FormatXML@CSystemSlot@@QAEHPAVCMarkup@@@Z
??1CVideoAdapter@@UAE@XZ
?FormatXML@CVideoAdapter@@QAEHPAVCMarkup@@@Z
??0CVideoAdapter@@QAE@XZ
?Clear@CBios@@QAEXXZ
?Close@CFileVersion@@QAEXXZ

mfc42

ord6392
ord3616
ord3127
ord5651
ord5216
ord964
ord5683
ord5933
ord2825
ord470
ord755
ord2514
ord6334
ord4853
ord4234
ord2302
ord2370
ord324
ord567
ord3610
ord4627
ord3402
ord5277
ord2124
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5290
ord4353
ord6374
ord5163
ord2385
ord5241
ord4407
ord1776
ord4078
ord6055
ord3597
ord4425
ord5280
ord1775
ord6052
ord4710
ord4998
ord4376
ord5265
ord2725
ord4277
ord356
ord2770
ord2781
ord4058
ord3181
ord3178
ord6282
ord3562
ord3319
ord668
ord923
ord922
ord6874
ord5442
ord6928
ord6930
ord5207
ord958
ord1158
ord1134
ord2621
ord3811
ord1168
ord2820
ord5194
ord1997
ord5465
ord656
ord641
ord2763
ord4129
ord1988
ord690
ord5856
ord1835
ord4083
ord561
ord815
ord3738
ord4424
ord4622
ord4080
ord3079
ord3825
ord3831
ord3830
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5714
ord5289
ord5307
ord4698
ord4079
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord4673
ord2107
ord1200
ord4202
ord5710
ord5604
ord1105
ord803
ord800
ord2915
ord2818
ord540
ord665
ord5186
ord860
ord354
ord533
ord825
ord798
ord2393
ord939
ord924
ord2764
ord6139
ord858
ord823
ord2614
ord535
ord4278
ord537
ord941
ord6663
ord5572
ord926
ord3663
ord713
ord414
ord5859
ord6877
ord4189
ord5594
ord1979
ord3229
ord389
ord940
ord610
ord5857
ord287
ord2060
ord5356
ord350
ord5808
ord5204
ord913
ord398
ord6385
ord6283
ord5440
ord6383
ord5450
ord6394
ord3584
ord543
ord1576

msvcrt

_mbschr
_mbsncmp
_mbclen
_mbsstr
_mbsnbcmp
_mbccpy
memmove
_mbsicmp
_mbscmp
_CxxThrowException
_ltoa
time
strtok
sprintf
free
strncpy
calloc
strtoul
_itoa
_setmbcp
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
?terminate@@YAXXZ
_except_handler3
_onexit
__dllonexit
??1type_info@@UAE@XZ
atof
atoi
strchr
__CxxFrameHandler

kernel32

CreateMutexA
GetLastError
CopyFileA
GetFileAttributesA
CreateDirectoryA
CreateProcessA
WritePrivateProfileStringA
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FreeLibrary
GetProcAddress
LoadLibraryA
GetStartupInfoA
GetModuleHandleA
WaitForSingleObject
TerminateProcess
GetLogicalDrives
GetPrivateProfileStringA
CreateFileA
CloseHandle
DeleteFileA
GetModuleFileNameA
GetComputerNameA
GetCurrentDirectoryA
ReleaseMutex
GetExitCodeThread
ResumeThread
SuspendThread
GetSystemDirectoryA

user32

EnableWindow

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
OcsService.dll
.dll windows:4 windows x86 arch:x86

5c54715227e960c5019e7a45d4b9d02a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
RtlUnwind
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement

Exports

Exports

?Dummy@@YAXXZ

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OcsService.exe
.exe windows:4 windows x86 arch:x86

b6ecebaf1711b5474e1e5423d39c846b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libeay32

ord3040
ord3654
ord3024
ord3033
ord3106
ord470

sysinfo

??1SysInfo@@UAE@XZ
??1CNetworkAdapterList@@UAE@XZ
?getNetworkAdapters@SysInfo@@QAEHPAVCNetworkAdapterList@@@Z
?GetHash@CNetworkAdapterList@@QAEPBDXZ
??0SysInfo@@QAE@XZ
??0CNetworkAdapterList@@QAE@XZ

mfc42

ord6779
ord858
ord535
ord4278
ord6663
ord2764
ord4202
ord2393
ord798
ord964
ord1997
ord939
ord5465
ord5194
ord533
ord1168
ord941
ord536
ord3584
ord801
ord543
ord541
ord803
ord6307
ord521
ord6143
ord4204
ord5861
ord923
ord925
ord2763
ord1200
ord1147
ord1148
ord5710
ord5608
ord5440
ord6383
ord5450
ord6394
ord823
ord350
ord5186
ord5442
ord1979
ord3663
ord3616
ord3127
ord5651
ord2614
ord2818
ord860
ord2915
ord537
ord354
ord540
ord414
ord665
ord713
ord2725
ord800
ord825
ord561
ord3738
ord4424
ord4622
ord4080
ord3079
ord3825
ord3831
ord3830
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5714
ord5289
ord5307
ord4698
ord4079
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord815
ord5572
ord1576

msvcrt

_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
??1type_info@@UAE@XZ
_onexit
__dllonexit
_mbscmp
printf
__p___argc
__p___argv
_CxxThrowException
_mbccpy
_mbsnbcmp
_mbsstr
_mbclen
_mbsncmp
_mbschr
malloc
_mbsnbcpy
free
_itoa
atoi
srand
time
rand
_mbsicmp
_splitpath
_makepath
_chdir
__CxxFrameHandler
_setmbcp
_controlfp

kernel32

GetStartupInfoA
GetTickCount
SetLastError
LeaveCriticalSection
FormatMessageA
lstrcmpiA
ExitProcess
GetModuleFileNameA
GetLastError
CreateMutexA
Sleep
InterlockedExchange
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
DeleteFileA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetProcAddress
GetModuleHandleA
InitializeCriticalSection
DeleteCriticalSection
lstrlenA
EnterCriticalSection
SetConsoleCtrlHandler

advapi32

DeleteService
CreateServiceA
QueryServiceConfigA
QueryServiceStatus
UnlockServiceDatabase
LockServiceDatabase
OpenServiceA
EnumServicesStatusA
OpenSCManagerA
ControlService
CloseServiceHandle
DeregisterEventSource
ReportEventA
RegisterEventSourceA
StartServiceCtrlDispatcherA
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
StartServiceA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegFlushKey
RegCloseKey
SetServiceStatus
RegisterServiceCtrlHandlerA

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
OcsWmi.dll
.dll windows:4 windows x86 arch:x86

cdbed0462be47c495b7f5a27d9eb9b19

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1269
ord540
ord2393
ord860
ord2614
ord2813
ord835
ord861
ord2818
ord941
ord2811
ord829
ord800
ord1575
ord1168
ord1577
ord1182
ord342
ord1243
ord1197
ord1570
ord1253
ord1255
ord6467
ord1578
ord825
ord535
ord858
ord1176
ord600
ord826
ord269
ord1116

msvcrt

__CxxFrameHandler
_atoi64
??2@YAPAXI@Z
_except_handler3
?terminate@@YAXXZ
??1type_info@@UAE@XZ
__dllonexit
_onexit
free
_initterm
malloc
_adjust_fdiv

kernel32

LocalFree
LocalAlloc
MultiByteToWideChar

ole32

CoUninitialize
CoCreateInstance
CoInitializeEx
CoInitializeSecurity

oleaut32

SafeArrayGetElement
SysAllocStringLen
VariantClear
SafeArrayGetLBound
SafeArrayGetUBound
SysFreeString

Exports

Exports

??0COcsWmi@@QAE@ABV0@@Z
??0COcsWmi@@QAE@XZ
??1COcsWmi@@UAE@XZ
??4COcsWmi@@QAEAAV0@ABV0@@Z
??_7COcsWmi@@6B@
?BeginEnumClassObject@COcsWmi@@QAEHPBD@Z
?CloseEnumClassObject@COcsWmi@@QAEHXZ
?ConnectWMI@COcsWmi@@QAEHPBD@Z
?DisconnectWMI@COcsWmi@@QAEHXZ
?GetClassObjectDwordValue@COcsWmi@@QAEKPBD@Z
?GetClassObjectI64Value@COcsWmi@@QAE_JPBD@Z
?GetClassObjectStringValue@COcsWmi@@QAEPBDPBD@Z
?GetClassObjectU64Value@COcsWmi@@QAE_KPBD@Z
?GetLastErrorWMI@COcsWmi@@QAEJXZ
?GetRefElementClassObjectDwordValue@COcsWmi@@QAEKPBD0@Z
?GetRefElementClassObjectI64Value@COcsWmi@@QAE_JPBD0@Z
?GetRefElementClassObjectStringValue@COcsWmi@@QAEPBDPBD0@Z
?GetRefElementClassObjectU64Value@COcsWmi@@QAE_KPBD0@Z
?MoveNextEnumClassObject@COcsWmi@@QAEHXZ
?dwCimValue@COcsWmi@@IAEKAAUtagVARIANT@@AAJ@Z
?i64CimValue@COcsWmi@@IAE_JAAUtagVARIANT@@AAJ@Z
?strCimArrayValue@COcsWmi@@IAEPBDAAUtagVARIANT@@AAJ@Z
?strCimValue@COcsWmi@@IAEPBDAAUtagVARIANT@@AAJ@Z
?strVariant@COcsWmi@@IAEPBDUtagVARIANT@@@Z
?strVariantArray@COcsWmi@@IAEPBDUtagVARIANT@@@Z
?u64CimValue@COcsWmi@@IAE_KAAUtagVARIANT@@AAJ@Z

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Ocs_contact.exe
.exe windows:4 windows x86 arch:x86

51af09c6f94705a14d7c2cf34b244036

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
CreateFileA
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
ExitProcess
lstrcpynA
CloseHandle
GetWindowsDirectoryA
GetTempPathA
GetUserDefaultLangID
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrcpyA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpiA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
MulDiv
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetCommandLineA

user32

EndDialog
ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
LoadCursorA
SetCursor
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
RegisterClassA
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfA
SendMessageTimeoutA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
FindWindowExA

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PsApi.dll
.dll windows:4 windows x86 arch:x86

3b5b4bad881057af15fc35648ebcf206

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

ntdll

NtAllocateVirtualMemory
RtlNtStatusToDosError
_stricmp
RtlUnwind
atoi
_chkstk
NtStopProfile
sprintf
RtlMultiByteToUnicodeN
RtlAdjustPrivilege
RtlUnicodeToOemN
NtCreateProfile
NtSetIntervalProfile
NtStartProfile
DbgPrint
NtWriteFile
NtSetInformationProcess
NtQueryInformationProcess
NtQueryVirtualMemory
NtQuerySystemInformation

kernel32

MultiByteToWideChar
GetProcessWorkingSetSize
WideCharToMultiByte
ReadProcessMemory
MapViewOfFile
UnmapViewOfFile
OpenFileMappingA
CreateFileA
CloseHandle
DisableThreadLibraryCalls
lstrcpyA
GetProcessHeap
LocalFree
SetLastError
LocalAlloc
SetProcessWorkingSetSize
lstrlenA
GetSystemInfo
HeapAlloc

imagehlp

SymLoadModule
SymGetModuleInfo
SymGetSymFromAddr
SymUnloadModule
SymSetOptions
SymInitialize
SymGetSearchPath

Exports

Exports

EmptyWorkingSet
EnumDeviceDrivers
EnumProcessModules
EnumProcesses
GetDeviceDriverBaseNameA
GetDeviceDriverBaseNameW
GetDeviceDriverFileNameA
GetDeviceDriverFileNameW
GetMappedFileNameA
GetMappedFileNameW
GetModuleBaseNameA
GetModuleBaseNameW
GetModuleFileNameExA
GetModuleFileNameExW
GetModuleInformation
GetProcessMemoryInfo
GetWsChanges
InitializeProcessForWsWatch
QueryWorkingSet

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 914B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SSLeay32.dll
.dll windows:4 windows x86 arch:x86

439f91ef5d15941c3e805c4fc238afe9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libeay32

ord52
ord2206
ord857
ord905
ord901
ord904
ord1653
ord1654
ord903
ord252
ord222
ord2201
ord490
ord176
ord641
ord2821
ord281
ord290
ord654
ord181
ord188
ord269
ord3109
ord2630
ord910
ord2411
ord754
ord464
ord911
ord289
ord493
ord3245
ord354
ord2936
ord3244
ord323
ord3067
ord2894
ord961
ord89
ord109
ord202
ord285
ord3724
ord313
ord495
ord120
ord3239
ord151
ord110
ord111
ord3178
ord3695
ord3570
ord3575
ord3550
ord3608
ord3480
ord3418
ord3422
ord203
ord128
ord31
ord830
ord727
ord2760
ord866
ord2929
ord3644
ord2578
ord3010
ord2924
ord3459
ord3512
ord3663
ord123
ord201
ord118
ord3666
ord219
ord498
ord635
ord912
ord909
ord87
ord282
ord3682
ord2877
ord3711
ord205
ord486
ord484
ord763
ord577
ord907
ord572
ord3719
ord216
ord206
ord497
ord481
ord3729
ord2915
ord256
ord1096
ord1097
ord333
ord2589
ord1145
ord1144
ord1081
ord2292
ord622
ord627
ord657
ord653
ord85
ord2784
ord965
ord964
ord2572
ord2747
ord3704
ord3758
ord3767
ord3647
ord3460
ord3766
ord3365
ord3754
ord3394
ord3454
ord1027
ord3378
ord3437
ord187
ord897
ord3414
ord3495
ord67
ord66
ord1004
ord3527
ord65
ord53
ord78
ord98
ord3559
ord3399
ord636
ord914
ord316
ord629
ord892
ord626
ord890
ord364
ord1010
ord2051
ord74
ord248
ord1655
ord575
ord1025
ord58
ord630
ord628
ord1041
ord1007
ord1005
ord246
ord1100
ord679
ord2524
ord3595
ord1023
ord3505
ord401
ord93
ord3396
ord3657
ord887
ord891
ord889
ord315
ord314
ord1147
ord189
ord774
ord279
ord283
ord956
ord280
ord400
ord751
ord750
ord2181
ord399
ord748
ord3205
ord37
ord35
ord824
ord822
ord8
ord1091
ord3700
ord3623
ord32
ord718
ord7
ord716
ord703
ord680
ord86
ord88
ord1101
ord293
ord322
ord2996
ord3155
ord2927
ord325
ord329
ord318
ord304
ord292
ord299
ord955
ord2252
ord91
ord247
ord169
ord168
ord623
ord167

msvcrt

_iob
_errno
free
_initterm
malloc
_adjust_fdiv
strncmp
memmove
time
fprintf

kernel32

GetLastError
DisableThreadLibraryCalls
SetLastError

Exports

Exports

BIO_f_ssl
BIO_new_buffer_ssl_connect
BIO_new_ssl
BIO_new_ssl_connect
BIO_ssl_copy_session_id
BIO_ssl_shutdown
DTLSv1_client_method
DTLSv1_method
DTLSv1_server_method
ERR_load_SSL_strings
SSL_CIPHER_description
SSL_CIPHER_get_bits
SSL_CIPHER_get_name
SSL_CIPHER_get_version
SSL_COMP_add_compression_method
SSL_COMP_get_compression_methods
SSL_COMP_get_name
SSL_CTX_add_client_CA
SSL_CTX_add_session
SSL_CTX_callback_ctrl
SSL_CTX_check_private_key
SSL_CTX_ctrl
SSL_CTX_flush_sessions
SSL_CTX_free
SSL_CTX_get_cert_store
SSL_CTX_get_client_CA_list
SSL_CTX_get_ex_data
SSL_CTX_get_ex_new_index
SSL_CTX_get_quiet_shutdown
SSL_CTX_get_timeout
SSL_CTX_get_verify_callback
SSL_CTX_get_verify_depth
SSL_CTX_get_verify_mode
SSL_CTX_load_verify_locations
SSL_CTX_new
SSL_CTX_remove_session
SSL_CTX_sessions
SSL_CTX_set_cert_store
SSL_CTX_set_cert_verify_callback
SSL_CTX_set_cipher_list
SSL_CTX_set_client_CA_list
SSL_CTX_set_default_passwd_cb
SSL_CTX_set_default_passwd_cb_userdata
SSL_CTX_set_default_verify_paths
SSL_CTX_set_ex_data
SSL_CTX_set_generate_session_id
SSL_CTX_set_msg_callback
SSL_CTX_set_purpose
SSL_CTX_set_quiet_shutdown
SSL_CTX_set_session_id_context
SSL_CTX_set_ssl_version
SSL_CTX_set_timeout
SSL_CTX_set_tmp_dh_callback
SSL_CTX_set_tmp_ecdh_callback
SSL_CTX_set_tmp_rsa_callback
SSL_CTX_set_trust
SSL_CTX_set_verify
SSL_CTX_set_verify_depth
SSL_CTX_use_PrivateKey
SSL_CTX_use_PrivateKey_ASN1
SSL_CTX_use_PrivateKey_file
SSL_CTX_use_RSAPrivateKey
SSL_CTX_use_RSAPrivateKey_ASN1
SSL_CTX_use_RSAPrivateKey_file
SSL_CTX_use_certificate
SSL_CTX_use_certificate_ASN1
SSL_CTX_use_certificate_chain_file
SSL_CTX_use_certificate_file
SSL_SESSION_cmp
SSL_SESSION_free
SSL_SESSION_get_ex_data
SSL_SESSION_get_ex_new_index
SSL_SESSION_get_id
SSL_SESSION_get_time
SSL_SESSION_get_timeout
SSL_SESSION_hash
SSL_SESSION_new
SSL_SESSION_print
SSL_SESSION_print_fp
SSL_SESSION_set_ex_data
SSL_SESSION_set_time
SSL_SESSION_set_timeout
SSL_accept
SSL_add_client_CA
SSL_add_dir_cert_subjects_to_stack
SSL_add_file_cert_subjects_to_stack
SSL_alert_desc_string
SSL_alert_desc_string_long
SSL_alert_type_string
SSL_alert_type_string_long
SSL_callback_ctrl
SSL_check_private_key
SSL_clear
SSL_connect
SSL_copy_session_id
SSL_ctrl
SSL_do_handshake
SSL_dup
SSL_dup_CA_list
SSL_free
SSL_get1_session
SSL_get_SSL_CTX
SSL_get_certificate
SSL_get_cipher_list
SSL_get_ciphers
SSL_get_client_CA_list
SSL_get_current_cipher
SSL_get_current_compression
SSL_get_current_expansion
SSL_get_default_timeout
SSL_get_error
SSL_get_ex_data
SSL_get_ex_data_X509_STORE_CTX_idx
SSL_get_ex_new_index
SSL_get_fd
SSL_get_finished
SSL_get_info_callback
SSL_get_peer_cert_chain
SSL_get_peer_certificate
SSL_get_peer_finished
SSL_get_privatekey
SSL_get_quiet_shutdown
SSL_get_rbio
SSL_get_read_ahead
SSL_get_rfd
SSL_get_session
SSL_get_shared_ciphers
SSL_get_shutdown
SSL_get_ssl_method
SSL_get_verify_callback
SSL_get_verify_depth
SSL_get_verify_mode
SSL_get_verify_result
SSL_get_version
SSL_get_wbio
SSL_get_wfd
SSL_has_matching_session_id
SSL_library_init
SSL_load_client_CA_file
SSL_load_error_strings
SSL_new
SSL_peek
SSL_pending
SSL_read
SSL_renegotiate
SSL_renegotiate_pending
SSL_rstate_string
SSL_rstate_string_long
SSL_set_accept_state
SSL_set_bio
SSL_set_cipher_list
SSL_set_client_CA_list
SSL_set_connect_state
SSL_set_ex_data
SSL_set_fd
SSL_set_generate_session_id
SSL_set_info_callback
SSL_set_msg_callback
SSL_set_purpose
SSL_set_quiet_shutdown
SSL_set_read_ahead
SSL_set_rfd
SSL_set_session
SSL_set_session_id_context
SSL_set_shutdown
SSL_set_ssl_method
SSL_set_tmp_dh_callback
SSL_set_tmp_ecdh_callback
SSL_set_tmp_rsa_callback
SSL_set_trust
SSL_set_verify
SSL_set_verify_depth
SSL_set_verify_result
SSL_set_wfd
SSL_shutdown
SSL_state
SSL_state_string
SSL_state_string_long
SSL_use_PrivateKey
SSL_use_PrivateKey_ASN1
SSL_use_PrivateKey_file
SSL_use_RSAPrivateKey
SSL_use_RSAPrivateKey_ASN1
SSL_use_RSAPrivateKey_file
SSL_use_certificate
SSL_use_certificate_ASN1
SSL_use_certificate_file
SSL_version
SSL_want
SSL_write
SSLv23_client_method
SSLv23_method
SSLv23_server_method
SSLv2_client_method
SSLv2_method
SSLv2_server_method
SSLv3_client_method
SSLv3_method
SSLv3_server_method
TLSv1_client_method
TLSv1_method
TLSv1_server_method
d2i_SSL_SESSION
i2d_SSL_SESSION
ssl2_ciphers
ssl3_ciphers

Sections

.text
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SysInfo.dll
.dll windows:4 windows x86 arch:x86

3faafbe016ef2231599bb87d9fd8bfb6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

inet_addr
ntohl
htonl
inet_ntoa

libeay32

ord503
ord502
ord504

ocswmi

?GetClassObjectStringValue@COcsWmi@@QAEPBDPBD@Z
?DisconnectWMI@COcsWmi@@QAEHXZ
?CloseEnumClassObject@COcsWmi@@QAEHXZ
??_7COcsWmi@@6B@
??0COcsWmi@@QAE@XZ
??1COcsWmi@@UAE@XZ
?GetLastErrorWMI@COcsWmi@@QAEJXZ
?GetRefElementClassObjectStringValue@COcsWmi@@QAEPBDPBD0@Z
?GetClassObjectDwordValue@COcsWmi@@QAEKPBD@Z
?GetClassObjectU64Value@COcsWmi@@QAE_KPBD@Z
?BeginEnumClassObject@COcsWmi@@QAEHPBD@Z
?MoveNextEnumClassObject@COcsWmi@@QAEHXZ
?ConnectWMI@COcsWmi@@QAEHPBD@Z

mfc42

ord354
ord2818
ord940
ord3663
ord2614
ord5440
ord6383
ord5450
ord6394
ord533
ord798
ord964
ord2393
ord5194
ord665
ord1997
ord2808
ord6407
ord2827
ord2841
ord2107
ord5216
ord5933
ord5710
ord1200
ord1168
ord5572
ord2915
ord941
ord6874
ord4278
ord6663
ord5186
ord6930
ord2919
ord3810
ord537
ord2764
ord4129
ord924
ord939
ord4277
ord2814
ord860
ord6877
ord6282
ord6283
ord540
ord825
ord858
ord535
ord800
ord269
ord826
ord600
ord1578
ord6467
ord1255
ord1253
ord1570
ord1197
ord1243
ord342
ord1182
ord3318
ord1979
ord926
ord823
ord1577
ord1575
ord1176
ord1116
ord4202

msvcrt

_initterm
??1type_info@@UAE@XZ
_onexit
__dllonexit
?terminate@@YAXXZ
strncpy
strtoul
_mbccpy
_mbsnbcmp
_mbsstr
_mbclen
_mbsncmp
_adjust_fdiv
malloc
free
_mbsnbcpy
_ismbcdigit
atoi
_mbscmp
memmove
sprintf
_ftol
_except_handler3
strtok
__CxxFrameHandler
_mbschr
_mbsicmp

kernel32

FreeLibrary
LoadLibraryA
GetLastError
lstrcpynA
lstrcmpiA
GetVolumeInformationA
GetDriveTypeA
GetDiskFreeSpaceA
GlobalMemoryStatus
CloseHandle
GetPrivateProfileStringA
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
SetLastError
GlobalAlloc
GlobalFree
GetCurrentDirectoryA
WritePrivateProfileStringA
CreateFileA
LocalFree
LocalAlloc
GetSystemInfo
GetVersion
GetProcAddress
GetModuleHandleA
lstrlenA
OpenProcess
GetVersionExA

user32

wsprintfA
GetSystemMetrics

advapi32

RegEnumKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegEnumValueA
GetUserNameA
RegSetValueExA
RegCreateKeyExA
RegConnectRegistryA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

mpr

WNetGetConnectionA

Exports

Exports

??0CAccessLog@@QAE@ABV0@@Z
??0CAccessLog@@QAE@XZ
??0CAccountInfo@@QAE@ABV0@@Z
??0CAccountInfo@@QAE@XZ
??0CBios@@QAE@ABV0@@Z
??0CBios@@QAE@XZ
??0CDeviceComments@@QAE@ABV0@@Z
??0CDeviceComments@@QAE@XZ
??0CDeviceCommentsList@@QAE@XZ
??0CDeviceInventory@@QAE@ABV0@@Z
??0CDeviceInventory@@QAE@XZ
??0CDeviceInventoryList@@QAE@XZ
??0CDeviceProperties@@QAE@XZ
??0CDeviceRepairs@@QAE@ABV0@@Z
??0CDeviceRepairs@@QAE@XZ
??0CDeviceRepairsList@@QAE@XZ
??0CEdid@@QAE@ABV0@@Z
??0CEdid@@QAE@XZ
??0CFileVersion@@QAE@XZ
??0CIPHelper@@QAE@ABV0@@Z
??0CIPHelper@@QAE@XZ
??0CInputDevice@@QAE@ABV0@@Z
??0CInputDevice@@QAE@XZ
??0CInputDeviceList@@QAE@XZ
??0CLogicalDrive@@QAE@ABV0@@Z
??0CLogicalDrive@@QAE@XZ
??0CLogicalDriveList@@QAE@XZ
??0CMemory@@QAE@ABV0@@Z
??0CMemory@@QAE@XZ
??0CMemorySlot@@QAE@ABV0@@Z
??0CMemorySlot@@QAE@XZ
??0CMemorySlotList@@QAE@XZ
??0CModem@@QAE@ABV0@@Z
??0CModem@@QAE@XZ
??0CModemList@@QAE@XZ
??0CMonitor@@QAE@ABV0@@Z
??0CMonitor@@QAE@XZ
??0CMonitorList@@QAE@XZ
??0CNetworkAdapter@@QAE@ABV0@@Z
??0CNetworkAdapter@@QAE@XZ
??0CNetworkAdapterList@@QAE@XZ
??0COcsCrypto@@QAE@ABV0@@Z
??0COcsCrypto@@QAE@XZ
??0CPrinter@@QAE@ABV0@@Z
??0CPrinter@@QAE@XZ
??0CPrinterList@@QAE@XZ
??0CRegistry@@QAE@ABV0@@Z
??0CRegistry@@QAE@XZ
??0CRegistryValue@@QAE@ABV0@@Z
??0CRegistryValue@@QAE@XZ
??0CRegistryValueList@@QAE@XZ
??0CSNMP@@QAE@ABV0@@Z
??0CSNMP@@QAE@XZ
??0CSoftware@@QAE@ABV0@@Z
??0CSoftware@@QAE@XZ
??0CSoftwareList@@QAE@XZ
??0CSoundDevice@@QAE@ABV0@@Z
??0CSoundDevice@@QAE@XZ
??0CSoundDeviceList@@QAE@XZ
??0CStoragePeripheral@@QAE@ABV0@@Z
??0CStoragePeripheral@@QAE@XZ
??0CStoragePeripheralList@@QAE@XZ
??0CSystemController@@QAE@ABV0@@Z
??0CSystemController@@QAE@XZ
??0CSystemControllerList@@QAE@XZ
??0CSystemPort@@QAE@ABV0@@Z
??0CSystemPort@@QAE@XZ
??0CSystemPortList@@QAE@XZ
??0CSystemSlot@@QAE@ABV0@@Z
??0CSystemSlot@@QAE@XZ
??0CSystemSlotList@@QAE@XZ
??0CVideoAdapter@@QAE@ABV0@@Z
??0CVideoAdapter@@QAE@XZ
??0CVideoAdapterList@@QAE@XZ
??0CWindowsSocket@@QAE@ABV0@@Z
??0CWindowsSocket@@QAE@XZ
??0CWmi@@QAE@ABV0@@Z
??0CWmi@@QAE@XZ
??0SysInfo@@QAE@ABV0@@Z
??0SysInfo@@QAE@XZ
??1CAccessLog@@UAE@XZ
??1CAccountInfo@@UAE@XZ
??1CBios@@UAE@XZ
??1CDeviceComments@@UAE@XZ
??1CDeviceCommentsList@@UAE@XZ
??1CDeviceInventory@@UAE@XZ
??1CDeviceInventoryList@@UAE@XZ
??1CDeviceProperties@@UAE@XZ
??1CDeviceRepairs@@UAE@XZ
??1CDeviceRepairsList@@UAE@XZ
??1CEdid@@UAE@XZ
??1CFileVersion@@QAE@XZ
??1CIPHelper@@UAE@XZ
??1CInputDevice@@UAE@XZ
??1CInputDeviceList@@UAE@XZ
??1CLogicalDrive@@UAE@XZ
??1CLogicalDriveList@@UAE@XZ
??1CMemory@@UAE@XZ
??1CMemorySlot@@UAE@XZ
??1CMemorySlotList@@UAE@XZ
??1CModem@@UAE@XZ
??1CModemList@@UAE@XZ
??1CMonitor@@UAE@XZ
??1CMonitorList@@UAE@XZ
??1CNetworkAdapter@@UAE@XZ
??1CNetworkAdapterList@@UAE@XZ
??1COcsCrypto@@UAE@XZ
??1CPrinter@@UAE@XZ
??1CPrinterList@@UAE@XZ
??1CRegistry@@UAE@XZ
??1CRegistryValue@@UAE@XZ
??1CRegistryValueList@@UAE@XZ
??1CSNMP@@UAE@XZ
??1CSoftware@@UAE@XZ
??1CSoftwareList@@UAE@XZ
??1CSoundDevice@@UAE@XZ
??1CSoundDeviceList@@UAE@XZ
??1CStoragePeripheral@@UAE@XZ
??1CStoragePeripheralList@@UAE@XZ
??1CSystemController@@UAE@XZ
??1CSystemControllerList@@UAE@XZ
??1CSystemPort@@UAE@XZ
??1CSystemPortList@@UAE@XZ
??1CSystemSlot@@UAE@XZ
??1CSystemSlotList@@UAE@XZ
??1CVideoAdapter@@UAE@XZ
??1CVideoAdapterList@@UAE@XZ
??1CWindowsSocket@@UAE@XZ
??1CWmi@@UAE@XZ
??1SysInfo@@UAE@XZ
??4CAccessLog@@QAEAAV0@ABV0@@Z
??4CAccountInfo@@QAEAAV0@ABV0@@Z
??4CBios@@QAEAAV0@ABV0@@Z
??4CDeviceComments@@QAEAAV0@ABV0@@Z
??4CDeviceInventory@@QAEAAV0@ABV0@@Z
??4CDeviceRepairs@@QAEAAV0@ABV0@@Z
??4CEdid@@QAEAAV0@ABV0@@Z
??4CFileVersion@@QAEAAV0@ABV0@@Z
??4CIPHelper@@QAEAAV0@ABV0@@Z
??4CInputDevice@@QAEAAV0@ABV0@@Z
??4CLogicalDrive@@QAEAAV0@ABV0@@Z
??4CMemory@@QAEAAV0@ABV0@@Z
??4CMemorySlot@@QAEAAV0@ABV0@@Z
??4CModem@@QAEAAV0@ABV0@@Z
??4CMonitor@@QAEAAV0@ABV0@@Z
??4CNetworkAdapter@@QAEAAV0@ABV0@@Z
??4COcsCrypto@@QAEAAV0@ABV0@@Z
??4CPrinter@@QAEAAV0@ABV0@@Z
??4CRegistry@@QAEAAV0@ABV0@@Z
??4CRegistryValue@@QAEAAV0@ABV0@@Z
??4CSNMP@@QAEAAV0@ABV0@@Z
??4CSoftware@@QAEAAV0@ABV0@@Z
??4CSoundDevice@@QAEAAV0@ABV0@@Z
??4CStoragePeripheral@@QAEAAV0@ABV0@@Z
??4CSystemController@@QAEAAV0@ABV0@@Z
??4CSystemPort@@QAEAAV0@ABV0@@Z
??4CSystemSlot@@QAEAAV0@ABV0@@Z
??4CVideoAdapter@@QAEAAV0@ABV0@@Z
??4CWindowsSocket@@QAEAAV0@ABV0@@Z
??4CWmi@@QAEAAV0@ABV0@@Z
??4SysInfo@@QAEAAV0@ABV0@@Z
??_7CAccessLog@@6B@
??_7CAccountInfo@@6B@
??_7CBios@@6B@
??_7CDeviceComments@@6B@
??_7CDeviceCommentsList@@6B@
??_7CDeviceInventory@@6B@
??_7CDeviceInventoryList@@6B@
??_7CDeviceProperties@@6B@
??_7CDeviceRepairs@@6B@
??_7CDeviceRepairsList@@6B@
??_7CEdid@@6B@
??_7CIPHelper@@6B@
??_7CInputDevice@@6B@
??_7CInputDeviceList@@6B@
??_7CLogicalDrive@@6B@
??_7CLogicalDriveList@@6B@
??_7CMemory@@6B@
??_7CMemorySlot@@6B@
??_7CMemorySlotList@@6B@
??_7CModem@@6B@
??_7CModemList@@6B@
??_7CMonitor@@6B@
??_7CMonitorList@@6B@
??_7CNetworkAdapter@@6B@
??_7CNetworkAdapterList@@6B@
??_7COcsCrypto@@6B@
??_7CPrinter@@6B@
??_7CPrinterList@@6B@
??_7CRegistry@@6B@
??_7CRegistryValue@@6B@
??_7CRegistryValueList@@6B@
??_7CSNMP@@6B@
??_7CSoftware@@6B@
??_7CSoftwareList@@6B@
??_7CSoundDevice@@6B@
??_7CSoundDeviceList@@6B@
??_7CStoragePeripheral@@6B@
??_7CStoragePeripheralList@@6B@
??_7CSystemController@@6B@
??_7CSystemControllerList@@6B@
??_7CSystemPort@@6B@
??_7CSystemPortList@@6B@
??_7CSystemSlot@@6B@
??_7CSystemSlotList@@6B@
??_7CVideoAdapter@@6B@
??_7CVideoAdapterList@@6B@
??_7CWindowsSocket@@6B@
??_7CWmi@@6B@
??_7SysInfo@@6B@
??_C@_0BA@EJP@FileDescription?$AA@
??_C@_0BB@JMFD@OriginalFilename?$AA@
??_C@_0M@EOAE@FileVersion?$AA@
??_C@_0M@HFKG@CompanyName?$AA@
??_C@_0M@OKED@ProductName?$AA@
??_C@_0N@CCA@InternalName?$AA@
??_C@_0P@JKBO@ProductVersion?$AA@
??_C@_0P@NIMM@LegalCopyright?$AA@
?AddLog@@YAXPBDZZ
?Bricolage@CEdid@@IAEXPAVCMonitor@@PAUtag_Standard_EDID@@@Z
?CheckRunningProcesses@CAccessLog@@IAEHPBDAAVCString@@@Z
?Clear@CBios@@QAEXXZ
?Clear@CDeviceComments@@QAEXXZ
?Clear@CDeviceInventory@@QAEXXZ
?Clear@CDeviceProperties@@QAEXXZ
?Clear@CDeviceRepairs@@QAEXXZ
?Clear@CInputDevice@@QAEXXZ
?Clear@CLogicalDrive@@QAEXXZ
?Clear@CMemorySlot@@QAEXXZ
?Clear@CModem@@QAEXXZ
?Clear@CMonitor@@QAEXXZ
?Clear@CNetworkAdapter@@QAEXXZ
?Clear@CPrinter@@QAEXXZ
?Clear@CRegistryValue@@QAEXXZ
?Clear@CSoftware@@QAEXXZ
?Clear@CSoundDevice@@QAEXXZ
?Clear@CStoragePeripheral@@QAEXXZ
?Clear@CSystemController@@QAEXXZ
?Clear@CSystemPort@@QAEXXZ
?Clear@CSystemSlot@@QAEXXZ
?Clear@CVideoAdapter@@QAEXXZ
?Close@CFileVersion@@QAEXXZ
?CloseLog@@YAXXZ
?Connect@CEdid@@QAEHPBD@Z
?Connect@CRegistry@@QAEHPBD@Z
?Connect@CWmi@@QAEHPBD@Z
?DecodeDPMSFlag@CEdid@@IAEPBDE@Z
?Disconnect@CEdid@@QAEHXZ
?Disconnect@CRegistry@@QAEHXZ
?Disconnect@CWmi@@QAEHXZ
?FormatXML@CAccessLog@@QAEHPAVCMarkup@@@Z
?FormatXML@CAccountInfo@@QAEHPAVCMarkup@@VCString@@@Z
?FormatXML@CBios@@QAEHPAVCMarkup@@@Z
?FormatXML@CDeviceProperties@@QAEHPAVCMarkup@@@Z
?FormatXML@CInputDevice@@QAEHPAVCMarkup@@@Z
?FormatXML@CLogicalDrive@@QAEHPAVCMarkup@@@Z
?FormatXML@CMemorySlot@@QAEHPAVCMarkup@@@Z
?FormatXML@CModem@@QAEHPAVCMarkup@@@Z
?FormatXML@CMonitor@@QAEHPAVCMarkup@@@Z
?FormatXML@CNetworkAdapter@@QAEHPAVCMarkup@@@Z
?FormatXML@CPrinter@@QAEHPAVCMarkup@@@Z
?FormatXML@CRegistryValue@@QAEHPAVCMarkup@@@Z
?FormatXML@CSoftware@@QAEHPAVCMarkup@@@Z
?FormatXML@CSoundDevice@@QAEHPAVCMarkup@@@Z
?FormatXML@CStoragePeripheral@@QAEHPAVCMarkup@@@Z
?FormatXML@CSystemController@@QAEHPAVCMarkup@@@Z
?FormatXML@CSystemPort@@QAEHPAVCMarkup@@@Z
?FormatXML@CSystemSlot@@QAEHPAVCMarkup@@@Z
?FormatXML@CVideoAdapter@@QAEHPAVCMarkup@@@Z
?GenerateUID@CDeviceProperties@@QAEXXZ
?GetAccount@CDeviceInventory@@QAEPBDXZ
?GetAccount@CDeviceRepairs@@QAEPBDXZ
?GetActionDate@CDeviceRepairs@@QAE?AVCOleDateTime@@XZ
?GetActionDateString@CDeviceRepairs@@QAEPBDXZ
?GetActionDescription@CDeviceRepairs@@QAEPBDXZ
?GetBillNumber@CDeviceInventory@@QAEPBDXZ
?GetBiosDate@CBios@@QAEPBDXZ
?GetBiosInfo9X@CRegistry@@IAEHPAVCBios@@@Z
?GetBiosInfo@CRegistry@@QAEHPAVCBios@@@Z
?GetBiosInfo@CWmi@@QAEHPAVCBios@@@Z
?GetBiosInfoNT@CRegistry@@IAEHPAVCBios@@@Z
?GetBiosManufacturer@CBios@@QAEPBDXZ
?GetBiosVersion@CBios@@QAEPBDXZ
?GetByteSpeed@CNetworkAdapter@@QAEKXZ
?GetCapacity@CMemorySlot@@QAEPBDXZ
?GetCaption@CInputDevice@@QAEPBDXZ
?GetCaption@CMemorySlot@@QAEPBDXZ
?GetCaption@CMonitor@@QAEPBDXZ
?GetCaption@CSystemController@@QAEPBDXZ
?GetCaption@CSystemPort@@QAEPBDXZ
?GetChecksum@CDeviceProperties@@QAEKXZ
?GetChipset@CVideoAdapter@@QAEPBDXZ
?GetCommandDate@CDeviceInventory@@QAE?AVCOleDateTime@@XZ
?GetCommandDateString@CDeviceInventory@@QAEPBDXZ
?GetCommandNumber@CDeviceInventory@@QAEPBDXZ
?GetComments@CDeviceComments@@QAEPBDXZ
?GetComments@CDeviceInventory@@QAEPBDXZ
?GetComments@CDeviceRepairs@@QAEPBDXZ
?GetComments@CSoftware@@QAEPBDXZ
?GetCompanyName@CFileVersion@@QAE?AVCString@@XZ
?GetDescription@CDeviceProperties@@QAEPBDXZ
?GetDescription@CEdid@@IAEPBDPAUtag_Standard_EDID@@@Z
?GetDescription@CInputDevice@@QAEPBDXZ
?GetDescription@CMemorySlot@@QAEPBDXZ
?GetDescription@CModem@@QAEPBDXZ
?GetDescription@CMonitor@@QAEPBDXZ
?GetDescription@CNetworkAdapter@@QAEPBDXZ
?GetDescription@CSoundDevice@@QAEPBDXZ
?GetDescription@CStoragePeripheral@@QAEPBDXZ
?GetDescription@CSystemController@@QAEPBDXZ
?GetDescription@CSystemPort@@QAEPBDXZ
?GetDescription@CSystemSlot@@QAEPBDXZ
?GetDetailledTimingDescriptionType@CEdid@@IAE?AW4DetailTiming@@QAE@Z
?GetDeviceDescription9X@CRegistry@@IAEPBDXZ
?GetDeviceDescription@CRegistry@@QAEPBDXZ
?GetDeviceDescriptionNT@CRegistry@@IAEPBDXZ
?GetDeviceID@CAccessLog@@QAEPBDXZ
?GetDeviceID@CAccountInfo@@QAEPBDXZ
?GetDeviceID@CBios@@QAEPBDXZ
?GetDeviceID@CDeviceComments@@QAEPBDXZ
?GetDeviceID@CDeviceInventory@@QAEPBDXZ
?GetDeviceID@CDeviceProperties@@QAEPBDXZ
?GetDeviceID@CDeviceRepairs@@QAEPBDXZ
?GetDeviceID@CInputDevice@@QAEPBDXZ
?GetDeviceID@CLogicalDrive@@QAEPBDXZ
?GetDeviceID@CMemorySlot@@QAEPBDXZ
?GetDeviceID@CModem@@QAEPBDXZ
?GetDeviceID@CMonitor@@QAEPBDXZ
?GetDeviceID@CNetworkAdapter@@QAEPBDXZ
?GetDeviceID@CPrinter@@QAEPBDXZ
?GetDeviceID@CRegistry@@QAEPBDXZ
?GetDeviceID@CRegistryValue@@QAEPBDXZ
?GetDeviceID@CSoftware@@QAEPBDXZ
?GetDeviceID@CSoundDevice@@QAEPBDXZ
?GetDeviceID@CStoragePeripheral@@QAEPBDXZ
?GetDeviceID@CSystemController@@QAEPBDXZ
?GetDeviceID@CSystemPort@@QAEPBDXZ
?GetDeviceID@CSystemSlot@@QAEPBDXZ
?GetDeviceID@CVideoAdapter@@QAEPBDXZ
?GetDeviceName@CAccessLog@@QAEPBDXZ
?GetDeviceName@CBios@@QAEPBDXZ
?GetDeviceName@CDeviceComments@@QAEPBDXZ
?GetDeviceName@CDeviceInventory@@QAEPBDXZ
?GetDeviceName@CDeviceProperties@@QAEPBDXZ
?GetDeviceName@CDeviceRepairs@@QAEPBDXZ
?GetDeviceName@CInputDevice@@QAEPBDXZ
?GetDeviceName@CLogicalDrive@@QAEPBDXZ
?GetDeviceName@CMemorySlot@@QAEPBDXZ
?GetDeviceName@CModem@@QAEPBDXZ
?GetDeviceName@CMonitor@@QAEPBDXZ
?GetDeviceName@CNetworkAdapter@@QAEPBDXZ
?GetDeviceName@CPrinter@@QAEPBDXZ
?GetDeviceName@CRegistryValue@@QAEPBDXZ
?GetDeviceName@CSoftware@@QAEPBDXZ
?GetDeviceName@CSoundDevice@@QAEPBDXZ
?GetDeviceName@CStoragePeripheral@@QAEPBDXZ
?GetDeviceName@CSystemController@@QAEPBDXZ
?GetDeviceName@CSystemPort@@QAEPBDXZ
?GetDeviceName@CSystemSlot@@QAEPBDXZ
?GetDeviceName@CVideoAdapter@@QAEPBDXZ
?GetDeviceType@CDeviceProperties@@QAEIXZ
?GetDhcpServer@CNetworkAdapter@@QAEPBDXZ
?GetDisplayEDID@CEdid@@IAEHPAXPAU_SP_DEVINFO_DATA@@AAUtag_Standard_EDID@@@Z
?GetDomainOrWorkgroup9X@CRegistry@@IAEHAAVCString@@@Z
?GetDomainOrWorkgroup@CDeviceProperties@@QAEPBDXZ
?GetDomainOrWorkgroup@CRegistry@@QAEHAAVCString@@@Z
?GetDomainOrWorkgroup@CWmi@@QAEHAAVCString@@@Z
?GetDomainOrWorkgroupNT@CRegistry@@IAEHAAVCString@@@Z
?GetDriveLetter@CLogicalDrive@@QAEPBDXZ
?GetDriveTypeA@CLogicalDrive@@QAEPBDXZ
?GetDriver@CPrinter@@QAEPBDXZ
?GetEdidText@CEdid@@IAEPBDQAE@Z
?GetExecutionDuration@CDeviceProperties@@QAEPBDXZ
?GetFileDescription@CFileVersion@@QAE?AVCString@@XZ
?GetFileSystem@CLogicalDrive@@QAEPBDXZ
?GetFileVersion@CFileVersion@@QAE?AVCString@@XZ
?GetFilename@CSoftware@@QAEPBDXZ
?GetFilesNumber@CLogicalDrive@@QAEJXZ
?GetFilesize@CSoftware@@QAEKXZ
?GetFixedFileVersion@CFileVersion@@QAE?AVCString@@XZ
?GetFixedInfo@CFileVersion@@QAEHAAUtagVS_FIXEDFILEINFO@@@Z
?GetFixedProductVersion@CFileVersion@@QAE?AVCString@@XZ
?GetFolder@CSoftware@@QAEPBDXZ
?GetFreeMB@CLogicalDrive@@QAEJXZ
?GetGateway@CNetworkAdapter@@QAEPBDXZ
?GetHardwareVersion@CSystemController@@QAEPBDXZ
?GetHash@CBios@@QAEPBDXZ
?GetHash@CDeviceProperties@@QAEPBDXZ
?GetHash@CInputDeviceList@@QAEPBDXZ
?GetHash@CLogicalDriveList@@QAEPBDXZ
?GetHash@CMemorySlotList@@QAEPBDXZ
?GetHash@CModemList@@QAEPBDXZ
?GetHash@CMonitorList@@QAEPBDXZ
?GetHash@CNetworkAdapterList@@QAEPBDXZ
?GetHash@CPrinterList@@QAEPBDXZ
?GetHash@CRegistryValueList@@QAEPBDXZ
?GetHash@CSoftwareList@@QAEPBDXZ
?GetHash@CSoundDeviceList@@QAEPBDXZ
?GetHash@CStoragePeripheralList@@QAEPBDXZ
?GetHash@CSystemControllerList@@QAEPBDXZ
?GetHash@CSystemPortList@@QAEPBDXZ
?GetHash@CSystemSlotList@@QAEPBDXZ
?GetHash@CVideoAdapterList@@QAEPBDXZ
?GetID@CAccessLog@@QAEKXZ
?GetID@CDeviceComments@@QAEKXZ
?GetID@CDeviceInventory@@QAEKXZ
?GetID@CDeviceRepairs@@QAEKXZ
?GetID@CInputDevice@@QAEKXZ
?GetID@CLogicalDrive@@QAEKXZ
?GetID@CMemorySlot@@QAEKXZ
?GetID@CModem@@QAEKXZ
?GetID@CMonitor@@QAEKXZ
?GetID@CNetworkAdapter@@QAEKXZ
?GetID@CPrinter@@QAEKXZ
?GetID@CRegistryValue@@QAEKXZ
?GetID@CSoftware@@QAEKXZ
?GetID@CSoundDevice@@QAEKXZ
?GetID@CStoragePeripheral@@QAEKXZ
?GetID@CSystemController@@QAEKXZ
?GetID@CSystemPort@@QAEKXZ
?GetID@CSystemSlot@@QAEKXZ
?GetID@CVideoAdapter@@QAEKXZ
?GetIPAddress@CDeviceProperties@@QAEPBDXZ
?GetIPAddress@CNetworkAdapter@@QAEPBDXZ
?GetIPAddress@CWindowsSocket@@QAEPBDXZ
?GetIPNetMask@CNetworkAdapter@@QAEPBDXZ
?GetIfIndex@CNetworkAdapter@@QAEJXZ
?GetInputDevices9X@CRegistry@@IAEHPAVCInputDeviceList@@@Z
?GetInputDevices@CRegistry@@QAEHPAVCInputDeviceList@@@Z
?GetInputDevices@CWmi@@QAEHPAVCInputDeviceList@@@Z
?GetInputDevicesNT@CRegistry@@IAEHPAVCInputDeviceList@@@Z
?GetInternalName@CFileVersion@@QAE?AVCString@@XZ
?GetInventoryNumber@CDeviceInventory@@QAEPBDXZ
?GetIpByGateway@CNetworkAdapterList@@QAE?AVCString@@V2@@Z
?GetLastCheckDate@CDeviceProperties@@QAEPBDXZ
?GetLastLoggedUser@CDeviceProperties@@QAEPBDXZ
?GetLastLoggedUser@CRegistry@@QAEHAAVCString@@@Z
?GetLegalCopyright@CFileVersion@@QAE?AVCString@@XZ
?GetLoggedOnUser9X@CRegistry@@IAEHAAVCString@@@Z
?GetLoggedOnUser@CDeviceProperties@@QAEPBDXZ
?GetLoggedOnUser@CRegistry@@QAEHAAVCString@@@Z
?GetLoggedOnUserNT@CRegistry@@IAEHAAVCString@@@Z
?GetLogonDate@CAccessLog@@QAEPBDXZ
?GetMACAddress@CNetworkAdapter@@QAEPBDXZ
?GetMachineType@CBios@@QAEPBDXZ
?GetManufacturer@CInputDevice@@QAEPBDXZ
?GetManufacturer@CMonitor@@QAEPBDXZ
?GetManufacturer@CSoundDevice@@QAEPBDXZ
?GetManufacturer@CStoragePeripheral@@QAEPBDXZ
?GetManufacturer@CSystemController@@QAEPBDXZ
?GetManufacturerID@CEdid@@IAEPBDQAE@Z
?GetManufacturerName@CEdid@@IAEPBDPBD@Z
?GetMaskByGateway@CNetworkAdapterList@@QAE?AVCString@@V2@@Z
?GetMaskByNetNumber@CNetworkAdapterList@@QAE?AVCString@@V2@@Z
?GetMemory@CVideoAdapter@@QAEPBDXZ
?GetMemorySlots@CWmi@@QAEHPAVCMemorySlotList@@@Z
?GetModel@CModem@@QAEPBDXZ
?GetModel@CStoragePeripheral@@QAEPBDXZ
?GetModems9X@CRegistry@@IAEHPAVCModemList@@@Z
?GetModems@CRegistry@@QAEHPAVCModemList@@@Z
?GetModems@CWmi@@QAEHPAVCModemList@@@Z
?GetModemsNT@CRegistry@@IAEHPAVCModemList@@@Z
?GetMonitors9X@CRegistry@@IAEHPAVCMonitorList@@@Z
?GetMonitors@CEdid@@QAEHPAVCMonitorList@@@Z
?GetMonitors@CRegistry@@QAEHPAVCMonitorList@@@Z
?GetMonitors@CWmi@@QAEHPAVCMonitorList@@@Z
?GetMonitorsNT@CRegistry@@IAEHPAVCMonitorList@@@Z
?GetName@CDeviceComments@@QAEPBDXZ
?GetName@CDeviceInventory@@QAEPBDXZ
?GetName@CDeviceRepairs@@QAEPBDXZ
?GetName@CModem@@QAEPBDXZ
?GetName@CPrinter@@QAEPBDXZ
?GetName@CRegistryValue@@QAEPBDXZ
?GetName@CSoftware@@QAEPBDXZ
?GetName@CSoundDevice@@QAEPBDXZ
?GetName@CStoragePeripheral@@QAEPBDXZ
?GetName@CSystemController@@QAEPBDXZ
?GetName@CSystemPort@@QAEPBDXZ
?GetName@CSystemSlot@@QAEPBDXZ
?GetName@CVideoAdapter@@QAEPBDXZ
?GetNetNumber@CNetworkAdapter@@QAEPBDXZ
?GetNetworkAdapters@CIPHelper@@SAHPAVCNetworkAdapterList@@@Z
?GetNetworkAdapters@CSNMP@@SAHPAVCNetworkAdapterList@@@Z
?GetNetworkAdapters@CWmi@@QAEHPAVCNetworkAdapterList@@@Z
?GetNumberOfProcessors@CDeviceProperties@@QAEKXZ
?GetOS@CWmi@@QAEIAAVCString@@000@Z
?GetOSComment@CDeviceProperties@@QAEPBDXZ
?GetOSName@CDeviceProperties@@QAEPBDXZ
?GetOSVersion@CDeviceProperties@@QAEPBDXZ
?GetOperationalStatus@CNetworkAdapter@@QAEPBDXZ
?GetOriginalFilename@CFileVersion@@QAE?AVCString@@XZ
?GetPageFileSize@CDeviceProperties@@QAEKXZ
?GetPercentFree@CLogicalDrive@@QAEPBDXZ
?GetPhysicalMemory@CDeviceProperties@@QAEKXZ
?GetPointingInterface@CInputDevice@@QAEPBDXZ
?GetPointingType@CInputDevice@@QAEPBDXZ
?GetPort@CPrinter@@QAEPBDXZ
?GetPrice@CDeviceInventory@@QAEPBDXZ
?GetPrice@CDeviceRepairs@@QAEPBDXZ
?GetPrinters@CRegistry@@QAEHPAVCPrinterList@@@Z

Sections

.text
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Zlib.dll
.dll windows:4 windows x86 arch:x86

43bdd40916b03a6ce3c7108f3f7f52ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_fdopen
fopen
_errno
malloc
sprintf
fwrite
fread
fclose
free
fprintf
fflush
fseek
rewind
fputc
calloc
_initterm
_adjust_fdiv
vsprintf
ftell

kernel32

DisableThreadLibraryCalls

Exports

Exports

adler32
compress
compress2
crc32
deflate
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflateReset
deflateSetDictionary
get_crc_table
gzclose
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzwrite
inflate
inflateEnd
inflateInit2_
inflateInit_
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
uncompress
unzClose
unzCloseCurrentFile
unzGetCurrentFileInfo
unzGetGlobalComment
unzGetGlobalInfo
unzGetLocalExtrafield
unzGoToFirstFile
unzGoToNextFile
unzLocateFile
unzOpen
unzOpen2
unzOpenCurrentFile
unzOpenCurrentFile2
unzReadCurrentFile
unzStringFileNameCompare
unzeof
unztell
zError
zipClose
zipCloseFileInZip
zipCloseFileInZipRaw
zipOpen
zipOpenNewFileInZip
zipOpenNewFileInZip2
zipWriteInFileInZip
zlibVersion

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 762B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
download.exe
.exe windows:4 windows x86 arch:x86

a7ab07d59b89a426a6d21ba77d70a76c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libeay32

ord270
ord510
ord316
ord268
ord269
ord267

zlib

ord6
ord4
ord8
ord20
ord19
ord21
ord3

mfc42

ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord713
ord815
ord414
ord561
ord825
ord3663
ord5859
ord6385
ord1979
ord823
ord535
ord537
ord6141
ord2820
ord3811
ord1168
ord2393
ord858
ord2614
ord3229
ord389
ord940
ord610
ord5857
ord287
ord2060
ord5356
ord350
ord5808
ord5204
ord2764
ord924
ord926
ord939
ord690
ord5710
ord1988
ord5207
ord4129
ord4278
ord6877
ord1200
ord641
ord656
ord609
ord798
ord1997
ord6407
ord5194
ord922
ord533
ord5465
ord5442
ord5572
ord3790
ord5440
ord6383
ord5450
ord6394
ord5265
ord4853
ord4998
ord6052
ord1775
ord5280
ord4425
ord3597
ord4407
ord3610
ord2575
ord5307
ord4078
ord1776
ord4396
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord3402
ord4627
ord3574
ord1146
ord567
ord324
ord2370
ord2302
ord4234
ord6380
ord6197
ord6379
ord4710
ord2379
ord6215
ord6199
ord5981
ord755
ord470
ord2514
ord4376
ord1980
ord3181
ord4058
ord2781
ord2770
ord941
ord668
ord356
ord6648
ord5683
ord6139
ord964
ord4202
ord2808
ord2827
ord2919
ord3318
ord1158
ord773
ord501
ord6876
ord4327
ord1083
ord5607
ord2762
ord6153
ord6928
ord6930
ord353
ord5651
ord3127
ord3616
ord550
ord5645
ord5583
ord3701
ord500
ord772
ord5860
ord6142
ord1832
ord3126
ord349
ord1833
ord2917
ord2803
ord958
ord6312
ord4177
ord6010
ord5773
ord2601
ord3180
ord3183
ord3176
ord3507
ord6264
ord4698
ord4079
ord2725
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord4673
ord354
ord860
ord5186
ord665
ord540
ord2818
ord2915
ord800
ord6055
ord1576

msvcrt

_chdir
_getcwd
__dllonexit
_onexit
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
fflush
malloc
memmove
_mbccpy
_mbsnbcmp
_mbsstr
_mbclen
_mbsncmp
_mbschr
_splitpath
_itoa
_ftol
ceil
_mbsicmp
free
system
_errno
strerror
strtok
_CxxThrowException
_mbscmp
atoi
atol
time
__CxxFrameHandler
_setmbcp
_ltoa

kernel32

DeleteFileA
CloseHandle
RemoveDirectoryA
FormatMessageA
LocalFree
GetSystemDefaultLangID
ReleaseMutex
GetCurrentDirectoryA
CreateProcessA
GetStartupInfoA
SetFilePointer
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SetVolumeLabelA
GetDriveTypeA
GetModuleHandleA
GetProcAddress
GetDiskFreeSpaceA
SetFileAttributesA
GetFileAttributesA
GetLastError
ExitProcess
FindClose
FindNextFileA
FindFirstFileA
GetPrivateProfileStringA
Sleep
SetCurrentDirectoryA
GetModuleFileNameA
CreateMutexA
ExpandEnvironmentStringsA
CopyFileA
MoveFileA
CreateDirectoryA
GetExitCodeProcess
WaitForSingleObject

user32

EnableWindow
GetClientRect
DrawIcon
MessageBoxA
GetSystemMetrics
IsIconic
LoadIconA
BringWindowToTop
GetWindowRect
SetTimer
SendMessageA

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
inst32.exe
.exe windows:4 windows x86 arch:x86

9d80a2c7e6301e107c893e59165e03ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
GlobalLock
GlobalAlloc
GlobalReAlloc
GlobalUnlock
GlobalHandle
CloseHandle
WriteFile
SetEndOfFile
CreateFileA
GlobalFree
FindClose
FindFirstFileA
DeleteFileA
GetModuleFileNameA
GetLastError
ReadFile
GetCurrentProcessId
CreateProcessA
GetVersionExA
Sleep
SetPriorityClass
GetCurrentProcess
ExitProcess
LCMapStringA
LoadLibraryA
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
HeapFree
VirtualFree
HeapCreate
LCMapStringW
HeapDestroy
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
GetStartupInfoA
GetCommandLineA
GetVersion
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte

user32

GetMessageA
DispatchMessageA
TranslateMessage
LoadIconA
LoadCursorA
GetSysColorBrush
CreateWindowExA
ShowWindow
UpdateWindow
IsWindow
DefWindowProcA
KillTimer
PostMessageA
PostQuitMessage
DestroyWindow
SetTimer
BeginPaint
EndPaint
wsprintfA
RegisterClassA

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
uninst.exe
.exe windows:4 windows x86 arch:x86

51af09c6f94705a14d7c2cf34b244036

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
CreateFileA
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
ExitProcess
lstrcpynA
CloseHandle
GetWindowsDirectoryA
GetTempPathA
GetUserDefaultLangID
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrcpyA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpiA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
MulDiv
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetCommandLineA

user32

EndDialog
ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
LoadCursorA
SetCursor
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
RegisterClassA
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfA
SendMessageTimeoutA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
FindWindowExA

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/KillProcDLL.dll
.dll windows:4 windows x86 arch:x86

815c88741b87a0210c457b00b57bf9c6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TerminateProcess
CloseHandle
OpenProcess
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExA
GlobalFree
lstrcpyA
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
RtlUnwind
GetCPInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP

Exports

Exports

KillProc

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/services.dll
.dll windows:4 windows x86 arch:x86

caddd9e268e5bc2a8b67248bc1f72836

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
lstrcpynA
WideCharToMultiByte
FormatMessageA
LocalFree
HeapAlloc
MultiByteToWideChar
GetProcessHeap
GetCurrentThread
HeapReAlloc
HeapFree
GlobalAlloc
GetLastError
GetCurrentProcess
lstrcpyA

advapi32

LsaRemoveAccountRights
LsaAddAccountRights
OpenProcessToken
OpenThreadToken
ControlService
DeleteService
StartServiceA
OpenServiceA
OpenSCManagerA
QueryServiceStatus
CloseServiceHandle
LsaEnumerateAccountRights
EnumServicesStatusA
LsaNtStatusToWinError
LsaClose
FreeSid
EqualSid
AllocateAndInitializeSid
GetTokenInformation
LsaFreeMemory
LsaOpenPolicy
LookupAccountNameW

msvcrt

malloc
wcslen
memset
free
strstr
_except_handler3
_strlwr
_stricmp
_itoa

Exports

Exports

GetServiceNameFromDisplayName
GrantLogonAsAService
HasLogonAsAService
IsProcessUserAdministrator
IsServiceInstalled
IsServiceRunning
RemoveLogonAsAService
SendServiceCommand

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 356B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
simona_8/Instalers/OcsAgentSetup.log
simona_8/Instalers/OcsLogon.exe
.exe windows:4 windows x86 arch:x86

51af09c6f94705a14d7c2cf34b244036

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
CreateFileA
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
ExitProcess
lstrcpynA
CloseHandle
GetWindowsDirectoryA
GetTempPathA
GetUserDefaultLangID
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrcpyA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpiA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
MulDiv
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetCommandLineA

user32

EndDialog
ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
LoadCursorA
SetCursor
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
RegisterClassA
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfA
SendMessageTimeoutA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
FindWindowExA

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
MultiByteToWideChar
GlobalAlloc

user32

GetDlgCtrlID
GetClientRect
SetWindowRgn
MapWindowPoints
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
PtInRect
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
LoadIconA

gdi32

SetTextColor
GetObjectA
SelectObject
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
CreateCompatibleDC

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/OCSFloc.ini
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
GetLastError
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 494B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/inetc.dll
.dll windows:4 windows x86 arch:x86

3f1149a3053980fe6b461521d2b55a2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_mbschr
_adjust_fdiv
malloc
_initterm
free
_mbsrchr
strtoul
memset
_mbsstr
strtol

kernel32

CloseHandle
CreateThread
WaitForSingleObject
TerminateThread
GetModuleHandleA
MulDiv
lstrcpyA
GlobalAlloc
LoadLibraryA
GetProcAddress
lstrlenA
WriteFile
ReadFile
lstrcmpA
lstrcpynA
GetLastError
GlobalFree
lstrcmpiA
DeleteFileA
SleepEx
SetFilePointer
GetTickCount
lstrcatA
GetFileSize
CreateFileA

user32

MessageBoxA
GetParent
ShowWindow
PostMessageA
SetWindowTextA
GetWindowTextA
IsWindow
GetDlgItem
SetDlgItemTextA
SendDlgItemMessageA
SetWindowPos
SystemParametersInfoA
GetClientRect
GetWindowRect
SetTimer
LoadIconA
SetWindowLongA
GetWindowLongA
UpdateWindow
DestroyWindow
KillTimer
RedrawWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
IsWindowVisible
EnableWindow
CreateDialogParamA
FindWindowExA
wsprintfA
SendMessageA

wininet

HttpSendRequestA
HttpSendRequestExA
HttpQueryInfoA
FtpCreateDirectoryA
FtpOpenFileA
InternetGetLastResponseInfoA
InternetSetFilePointer
InternetSetOptionA
InternetQueryOptionA
InternetCloseHandle
InternetErrorDlg
HttpOpenRequestA
HttpAddRequestHeadersA
HttpEndRequestA
InternetConnectA
InternetCrackUrlA
InternetOpenA
InternetReadFile
InternetWriteFile

comctl32

ord17

Exports

Exports

get
head
post
put

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
simona_8/Instalers/WinSgtc.exe
.exe windows:4 windows x86 arch:x86

02785628caf4d38d3060c4ab163290e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetExitCodeProcess
lstrcpynA
WaitForSingleObject
GetCommandLineA
GetDateFormatA
GetSystemDirectoryA
GetVersionExA
CreateMutexA
GetPrivateProfileIntA
GetPrivateProfileStringA
lstrcmpA
GetSystemTime
LocalFree
LocalAlloc
GetVersion
GetWindowsDirectoryA
GetSystemInfo
GetComputerNameA
SetEndOfFile
LCMapStringA
GetStringTypeW
GetStringTypeA
GetModuleFileNameA
GetACP
GetCPInfo
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
RtlUnwind
TerminateProcess
HeapAlloc
HeapFree
SetFileTime
GlobalMemoryStatus
GetShortPathNameA
LoadLibraryExA
WritePrivateProfileStringA
WritePrivateProfileSectionA
CreateProcessA
MoveFileExA
GetCurrentProcess
ExitProcess
WideCharToMultiByte
RemoveDirectoryA
GetFileTime
VerLanguageNameA
CompareFileTime
MoveFileA
CopyFileA
GetFileSize
DeviceIoControl
GetLogicalDriveStringsA
FreeLibrary
GetCurrentDirectoryA
SetCurrentDirectoryA
SetErrorMode
MultiByteToWideChar
SetFileAttributesA
GetTempPathA
GetFileAttributesA
CreateDirectoryA
GetLocaleInfoA
FindFirstFileA
lstrcmpiA
LCMapStringW
FindNextFileA
FindClose
GetDriveTypeA
lstrcatA
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetTickCount
Sleep
GetCurrentThread
QueryPerformanceFrequency
QueryPerformanceCounter
GetThreadPriority
SetThreadPriority
GlobalReAlloc
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
GetUserDefaultLangID
MulDiv
lstrlenA
GetLastError
FormatMessageA
WriteFile
ReadFile
lstrcpyA
SetFilePointer
CreateFileA
CloseHandle
GetOEMCP
DeleteFileA

user32

IsIconic
RegisterClassW
RegisterClassA
SetRectEmpty
CharUpperA
ExitWindowsEx
PeekMessageA
MsgWaitForMultipleObjects
GetMessageA
TranslateMessage
OffsetRect
FillRect
GetActiveWindow
EndDialog
EnableWindow
LoadBitmapA
CreateDialogParamA
PostMessageA
SendDlgItemMessageW
SetDlgItemTextA
CallWindowProcA
GetWindowTextLengthA
IsWindowEnabled
FindWindowA
SetWindowPos
MoveWindow
CreateWindowExW
SetClassLongA
GetClientRect
SetTimer
IsWindowVisible
PtInRect
SetCursor
GetDlgItemTextA
PostQuitMessage
LoadIconA
LoadImageA
GetSysColor
KillTimer
GetFocus
GetWindowLongA
WaitMessage
IsDialogMessageA
MessageBoxA
MessageBoxW
CopyRect
SetWindowTextW
DrawEdge
SendDlgItemMessageA
GetDlgItem
ReleaseDC
GetDC
DestroyWindow
DefWindowProcA
EnumDisplaySettingsA
SendMessageW
GetSystemMetrics
DefWindowProcW
GetWindowRect
GetDesktopWindow
SystemParametersInfoA
GetWindowTextA
DrawTextA
DrawFocusRect
CreateWindowExA
SetForegroundWindow
DialogBoxParamA
SendMessageA
ScreenToClient
SetWindowLongA
InvalidateRect
SetFocus
GetSystemMenu
DeleteMenu
AppendMenuA
ShowWindow
SetWindowTextA
LoadCursorA
RegisterClassExW
RegisterClassExA
GetCursorPos
DispatchMessageA

gdi32

SetMapMode
SetViewportOrgEx
RestoreDC
StartDocA
StartPage
EndPage
EndDoc
RemoveFontResourceA
CreateScalableFontResourceA
AddFontResourceA
CreatePalette
CreateDIBitmap
CreateBitmap
GetTextExtentPoint32W
TextOutW
StretchDIBits
CreateCompatibleBitmap
SetBkColor
CreateCompatibleDC
GetStockObject
CreateSolidBrush
SetTextColor
TextOutA
SetBkMode
SelectObject
CreateFontA
GetDeviceCaps
BitBlt
DeleteDC
DeleteObject
SaveDC
GetTextExtentPoint32A
SetTextAlign

comdlg32

PrintDlgA
GetOpenFileNameA

advapi32

SetSecurityDescriptorDacl
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegQueryInfoKeyA
RegEnumKeyExA
OpenThreadToken
DuplicateToken
AllocateAndInitializeSid
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
AddAccessAllowedAce
RegCloseKey
SetSecurityDescriptorGroup
SetSecurityDescriptorOwner
IsValidSecurityDescriptor
AccessCheck
FreeSid
GetUserNameA
RegSetValueExA
RegCreateKeyExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

shell32

SHChangeNotify
ShellExecuteExA
SHFileOperationA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
SHGetSpecialFolderLocation

ole32

CoCreateInstance
CoUninitialize
OleInitialize
OleUninitialize
CoInitialize

oleaut32

LoadTypeLi
RegisterTypeLi

winmm

midiOutGetNumDevs
joyGetPos
waveOutGetNumDevs

comctl32

ImageList_Create
ImageList_Add
ord17

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
simona_8/Instalers/last_file.conf
simona_8/Instalers/ocsagent.exe
.exe windows:4 windows x86 arch:x86

51af09c6f94705a14d7c2cf34b244036

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
CreateFileA
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
ExitProcess
lstrcpynA
CloseHandle
GetWindowsDirectoryA
GetTempPathA
GetUserDefaultLangID
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrcpyA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpiA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
MulDiv
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetCommandLineA

user32

EndDialog
ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
LoadCursorA
SetCursor
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
RegisterClassA
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfA
SendMessageTimeoutA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
FindWindowExA

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
GetLastError
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 494B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BiosInfo.exe
Libeay32.dll
.dll windows:4 windows x86 arch:x86

f406fff1847e3a8c708c5a07f17e5b19

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

sendto
recvfrom
accept
ntohl
bind
listen
inet_ntoa
WSACancelBlockingCall
WSACleanup
getsockopt
getservbyname
ntohs
WSAStartup
gethostbyname
htons
htonl
socket
setsockopt
connect
send
WSASetLastError
recv
WSAGetLastError
shutdown
closesocket

gdi32

CreateCompatibleDC
GetDeviceCaps
CreateCompatibleBitmap
SelectObject
GetObjectA
BitBlt
GetBitmapBits
DeleteObject
DeleteDC
CreateDCA

advapi32

ReportEventA
DeregisterEventSource
RegisterEventSourceA

user32

MessageBoxA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW

msvcrt

_write
_fileno
_stat
_chmod
_getch
_isctype
_read
sprintf
abort
wcsstr
_vsnprintf
vfprintf
_iob
free
realloc
malloc
memchr
time
localtime
gmtime
strncpy
_errno
memmove
_pctype
__mb_cur_max
_getpid
fprintf
strstr
fputs
fclose
fopen
fread
fwrite
fflush
_setmode
ftell
fseek
fgets
_ftol
atoi
perror
qsort
strcmp
getenv
strerror
strchr
strncmp
strtoul
strrchr
tolower
sscanf
exit
strtol
signal
printf
_initterm
_adjust_fdiv

kernel32

SetLastError
LoadLibraryA
FreeLibrary
FindClose
GetModuleHandleA
GetCurrentProcessId
GetThreadTimes
GetCurrentThread
GetProcAddress
GetFileType
GetVersion
GlobalMemoryStatus
QueryPerformanceCounter
CloseHandle
GetTickCount
GetVersionExA
FlushConsoleInputBuffer
ExitProcess
GetCurrentThreadId
FindNextFileA
GetLastError
FindFirstFileA
GetStdHandle

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
AES_cbc_encrypt
AES_cfb128_encrypt
AES_cfb1_encrypt
AES_cfb8_encrypt
AES_cfbr_encrypt_block
AES_ctr128_encrypt
AES_decrypt
AES_ecb_encrypt
AES_encrypt
AES_ofb128_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
ASN1_ANY_it
ASN1_BIT_STRING_asn1_meth
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_HEADER_free
ASN1_HEADER_new
ASN1_IA5STRING_asn1_meth
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SEQUENCE_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_cmp
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_encode
ASN1_STRING_free
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_check
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TIME_to_generalizedtime
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_set
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_add_oid_module
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_fp
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_pack
ASN1_item_sign
ASN1_item_unpack
ASN1_item_verify
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_pack_string
ASN1_parse
ASN1_parse_dump
ASN1_primitive_free
ASN1_primitive_new
ASN1_put_eoc
ASN1_put_object
ASN1_seq_pack
ASN1_seq_unpack
ASN1_sign
ASN1_tag2bit
ASN1_tag2str
ASN1_template_d2i
ASN1_template_free
ASN1_template_i2d
ASN1_template_new
ASN1_unpack_string
ASN1_verify
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIGNUM_it
BIO_accept
BIO_callback_ctrl
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_dgram_non_fatal_error
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_ex_data
BIO_get_ex_new_index
BIO_get_host_ip
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_gethostbyname
BIO_gets
BIO_indent
BIO_int_ctrl
BIO_new
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_dgram
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_datagram
BIO_s_fd
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_socket
BIO_set
BIO_set_cipher
BIO_set_ex_data
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_cleanup
BIO_sock_error
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket_ioctl
BIO_socket_nbio
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_get_thread_id
BN_BLINDING_invert
BN_BLINDING_invert_ex
BN_BLINDING_new
BN_BLINDING_set_flags
BN_BLINDING_set_thread_id
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_init
BN_CTX_new
BN_CTX_start
BN_GENCB_call
BN_GF2m_add
BN_GF2m_arr2poly
BN_GF2m_mod
BN_GF2m_mod_arr
BN_GF2m_mod_div
BN_GF2m_mod_div_arr
BN_GF2m_mod_exp
BN_GF2m_mod_exp_arr
BN_GF2m_mod_inv
BN_GF2m_mod_inv_arr
BN_GF2m_mod_mul
BN_GF2m_mod_mul_arr
BN_GF2m_mod_solve_quad
BN_GF2m_mod_solve_quad_arr
BN_GF2m_mod_sqr
BN_GF2m_mod_sqr_arr
BN_GF2m_mod_sqrt
BN_GF2m_mod_sqrt_arr
BN_GF2m_poly2arr
BN_MONT_CTX_copy
BN_MONT_CTX_free
BN_MONT_CTX_init
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_MONT_CTX_set_locked
BN_RECP_CTX_free
BN_RECP_CTX_init
BN_RECP_CTX_new
BN_RECP_CTX_set
BN_add
BN_add_word
BN_bin2bn
BN_bn2bin
BN_bn2dec
BN_bn2hex
BN_bn2mpi
BN_bntest_rand
BN_clear
BN_clear_bit
BN_clear_free
BN_cmp
BN_copy
BN_dec2bn
BN_div
BN_div_recp
BN_div_word
BN_dup
BN_exp
BN_free
BN_from_montgomery
BN_gcd
BN_generate_prime
BN_generate_prime_ex
BN_get0_nist_prime_192
BN_get0_nist_prime_224
BN_get0_nist_prime_256
BN_get0_nist_prime_384
BN_get0_nist_prime_521
BN_get_params
BN_get_word
BN_hex2bn
BN_init
BN_is_bit_set
BN_is_prime
BN_is_prime_ex
BN_is_prime_fasttest
BN_is_prime_fasttest_ex
BN_kronecker
BN_lshift
BN_lshift1
BN_mask_bits
BN_mod_add
BN_mod_add_quick
BN_mod_exp
BN_mod_exp2_mont
BN_mod_exp_mont
BN_mod_exp_mont_consttime
BN_mod_exp_mont_word
BN_mod_exp_recp
BN_mod_exp_simple
BN_mod_inverse
BN_mod_lshift
BN_mod_lshift1
BN_mod_lshift1_quick
BN_mod_lshift_quick
BN_mod_mul
BN_mod_mul_montgomery
BN_mod_mul_reciprocal
BN_mod_sqr
BN_mod_sqrt
BN_mod_sub
BN_mod_sub_quick
BN_mod_word
BN_mpi2bn
BN_mul
BN_mul_word
BN_new
BN_nist_mod_192
BN_nist_mod_224
BN_nist_mod_256
BN_nist_mod_384
BN_nist_mod_521
BN_nnmod
BN_num_bits
BN_num_bits_word
BN_options
BN_print
BN_print_fp
BN_pseudo_rand
BN_pseudo_rand_range
BN_rand
BN_rand_range
BN_reciprocal
BN_rshift
BN_rshift1
BN_set_bit
BN_set_negative
BN_set_params
BN_set_word
BN_sqr
BN_sub
BN_sub_word
BN_swap
BN_to_ASN1_ENUMERATED
BN_to_ASN1_INTEGER
BN_uadd
BN_ucmp
BN_usub
BN_value_one
BUF_MEM_free
BUF_MEM_grow
BUF_MEM_grow_clean
BUF_MEM_new
BUF_memdup
BUF_strdup
BUF_strlcat
BUF_strlcpy
BUF_strndup
CAST_cbc_encrypt
CAST_cfb64_encrypt
CAST_decrypt
CAST_ecb_encrypt
CAST_encrypt
CAST_ofb64_encrypt
CAST_set_key
CBIGNUM_it
CERTIFICATEPOLICIES_free
CERTIFICATEPOLICIES_it
CERTIFICATEPOLICIES_new
COMP_CTX_free
COMP_CTX_new
COMP_compress_block
COMP_expand_block
COMP_rle
COMP_zlib
CONF_dump_bio
CONF_dump_fp
CONF_free
CONF_get1_default_config_file
CONF_get_number
CONF_get_section
CONF_get_string
CONF_imodule_get_flags
CONF_imodule_get_module
CONF_imodule_get_name
CONF_imodule_get_usr_data
CONF_imodule_get_value
CONF_imodule_set_flags
CONF_imodule_set_usr_data
CONF_load
CONF_load_bio
CONF_load_fp
CONF_module_add
CONF_module_get_usr_data
CONF_module_set_usr_data
CONF_modules_finish
CONF_modules_free
CONF_modules_load
CONF_modules_load_file

Sections

.text
Size: 684KB - Virtual size: 681KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Mfc42.dll
.dll regsvr32 windows:4 windows x86 arch:x86

bcd2542f46e742c06cabefff84c7320d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

MFC42.pdb

Imports

msvcrt

memcpy
memmove
malloc
free
abort
_mbsinc
memset
_get_osfhandle
__doserrno
_fdopen
_open_osfhandle
fclose
clearerr
fread
fwrite
fputs
fgets
ftell
fseek
fflush
realloc
_mbscmp
_mbschr
_mbspbrk
_mbsrev
_mbslwr
_mbsupr
wcslen
_mbscspn
_mbsrchr
_mbsspn
_mbsstr
_mbsnbcmp
_mbclen
vsprintf
strlen
sprintf
_ismbcdigit
atoi
_ismbcspace
mktime
gmtime
localtime
strftime
time
_mbctype
_purecall
_msize
calloc
memcmp
abs
strtoul
strtol
strtod
_expand
_mbsdec
_strdup
_endthreadex
_beginthreadex
__p___argv
__p___argc
atol
_fullpath
_splitpath
floor
fabs
_ftol
ceil
modf
_itoa
labs
swprintf
_ultoa
_ltoa
wcscpy
wcsncpy
_mbsnbicmp
??1type_info@@UAE@XZ
__dllonexit
_onexit
_except_handler3
?terminate@@YAXXZ
_initterm
_adjust_fdiv
strcmp
strcpy
_CxxThrowException
__CxxFrameHandler

kernel32

WriteFile
GetProcAddress
LoadLibraryA
lstrcpyA
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetCurrentProcess
GlobalSize
GlobalLock
GlobalAlloc
GlobalReAlloc
GlobalUnlock
GlobalFree
GetFileAttributesA
GetFileSize
GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
InterlockedDecrement
WideCharToMultiByte
InterlockedIncrement
LocalFree
FormatMessageA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
LocalAlloc
LeaveCriticalSection
GlobalHandle
EnterCriticalSection
TlsGetValue
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
WaitForSingleObject
CreateSemaphoreA
ReleaseSemaphore
CreateMutexA
ReleaseMutex
CreateEventA
WaitForMultipleObjects
GetVersionExA
GetModuleHandleA
lstrcatA
FreeLibrary
GlobalDeleteAtom
GlobalFindAtomA
GetVersion
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
FreeResource
LockResource
LoadResource
FindResourceA
MulDiv
GetProfileIntA
VirtualProtect
FindResourceExA
SizeofResource
GetProcessVersion
GlobalFlags
GetTempFileNameA
GetDiskFreeSpaceA
LocalUnlock
LocalLock
SearchPathA
GetTempPathA
SetThreadPriority
ResumeThread
SetEvent
SuspendThread
GetCurrentThread
SetErrorMode
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
FindNextFileA
GetTickCount
lstrlenW
CopyFileA
lstrcpyW
GetUserDefaultLCID
IsDBCSLeadByte
GetSystemDirectoryA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
DuplicateHandle
MultiByteToWideChar
GetModuleFileNameA
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
ReadFile
lstrcmpA
OutputDebugStringA
lstrlenA
IsBadReadPtr
IsBadWritePtr
IsBadStringPtrA
IsBadStringPtrW
GetLastError
SetLastError
lstrcpynA
RaiseException
InterlockedExchange
CreateFileA

gdi32

ScaleWindowExtEx
GetROP2
EnumFontFamiliesA
GetPixel
GetPaletteEntries
RealizePalette
CreatePalette
OffsetRgn
SetBrushOrgEx
CreateMetaFileA
CopyMetaFileA
LPtoDP
EndDoc
AbortDoc
SetAbortProc
EndPage
StartPage
DPtoLP
GetMapMode
CombineRgn
SetRectRgn
CreateHatchBrush
ExtCreatePen
CreateDIBPatternBrushPt
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
PolyBezierTo
PolylineTo
PolyDraw
ArcTo
OffsetWindowOrgEx
SelectPalette
StartDocA
SelectClipPath
CreateRectRgn
GetClipRgn
SelectClipRgn
SetColorAdjustment
SetArcDirection
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
OffsetClipRgn
ExcludeClipRect
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
EnumFontFamiliesExA
CreateDCA
CreateRectRgnIndirect
UnrealizeObject
CreateBitmap
CreatePatternBrush
CreatePen
PatBlt
Rectangle
TextOutA
DeleteMetaFile
CloseMetaFile
GetPolyFillMode
ScaleViewportExtEx
IntersectClipRect
GetDeviceCaps
SetMapMode
SetWindowExtEx
SetViewportExtEx
OffsetViewportOrgEx
GetViewportOrgEx
SetViewportOrgEx
GetWindowOrgEx
SetWindowOrgEx
GetCurrentPositionEx
MoveToEx
GetWindowExtEx
GetViewportExtEx
GetTextFaceA
GetTextAlign
RectVisible
PtVisible
GetTextColor
GetBkMode
GetBkColor
Escape
GetNearestColor
SaveDC
RestoreDC
GetStockObject
CreateFontA
GetCharWidthA
DeleteObject
CreateCompatibleBitmap
StretchDIBits
DeleteDC
CreateFontIndirectA
GetTextMetricsA
GetTextExtentPoint32A
ExtTextOutA
BitBlt
SelectObject
CreateCompatibleDC
CreateSolidBrush
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetStretchBltMode

user32

GetScrollRange
LoadStringA
FrameRect
InvalidateRgn
EnumChildWindows
DrawEdge
ClipCursor
GetNextDlgGroupItem
CharNextA
SetWindowContextHelpId
CountClipboardFormats
WindowFromDC
CreateMenu
PostThreadMessageA
InSendMessage
CopyAcceleratorTableA
RegisterClipboardFormatA
InsertMenuA
GetMenuStringA
ShowOwnedPopups
UnregisterClassA
PostQuitMessage
ValidateRect
RemoveMenu
MessageBeep
IsClipboardFormatAvailable
FindWindowA
SetCursorPos
DestroyCursor
DestroyIcon
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
MoveWindow
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
SetWindowTextA
GetClassNameA
GetSysColorBrush
EndPaint
BeginPaint
TabbedTextOutA
GetDialogBaseUnits
MapDialogRect
GetAsyncKeyState
wvsprintfA
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
DrawFocusRect
UnionRect
GrayStringA
DrawTextA
GetTabbedTextExtentA
LockWindowUpdate
GetDCEx
SetParent
GetSystemMenu
AppendMenuA
DeleteMenu
IsRectEmpty
IsZoomed
GetDC
KillTimer
SetTimer
SetRect
LoadBitmapA
ReleaseDC
GetWindowDC
InvertRect
FillRect
PtInRect
InflateRect
RedrawWindow
TranslateMDISysAccel
wsprintfA
GetSystemMetrics
CharUpperA
CharToOemA
OemToCharA
UnhookWindowsHookEx
MsgWaitForMultipleObjects
GetWindow
CopyRect
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
IntersectRect
OffsetRect
SetWindowPos
SetWindowLongA
GetWindowLongA
CallWindowProcA
DefWindowProcA
SendMessageA
GetDlgCtrlID
GetWindowTextA
GetWindowTextLengthA
GetDlgItem
SetWindowPlacement
RegisterClassA
GetClassInfoA
GetMenuItemCount
GetMenuItemID
GetSubMenu
PostMessageA
GetMenu
GetClientRect
GetParent
UpdateWindow
MessageBoxA
IsWindowVisible
SetActiveWindow
SetScrollInfo
GetScrollInfo
ScrollWindow
ShowScrollBar
GetLastActivePopup
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetForegroundWindow
GetForegroundWindow
GetSysColor
MapWindowPoints
EnableWindow
PeekMessageA
LoadIconA
GetScrollPos
SetScrollPos
DrawMenuBar
SetScrollRange
DestroyWindow
GetKeyState
TrackPopupMenu
IsChild
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
SetFocus
IsWindow
GetFocus
GetMessagePos
GetMessageTime
RemovePropA
GetPropA
DispatchMessageA
SendDlgItemMessageA
SetPropA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
WinHelpA
GetCapture
RegisterWindowMessageA
LoadAcceleratorsA
TranslateAcceleratorA
IsWindowEnabled
GetDesktopWindow
ShowWindow
SetMenu
BringWindowToTop
SetRectEmpty
InvalidateRect
ReleaseCapture
SetCursor
DestroyMenu
LoadMenuA
ReuseDDElParam
UnpackDDElParam
GetActiveWindow
LoadCursorA
ClientToScreen
GetWindowThreadProcessId
SetCapture
WindowFromPoint
GetCursorPos
TranslateMessage
GetMessageA
WaitMessage
DefFrameProcA
DefMDIChildProcA

Exports

Exports

?classCCachedDataPathProperty@CCachedDataPathProperty@@2UCRuntimeClass@@B
?classCDataPathProperty@CDataPathProperty@@2UCRuntimeClass@@B
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 660KB - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 200KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OCSInventory.exe
.exe windows:4 windows x86 arch:x86

bc41c3703e0e24e347878d9fc67cad49

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libeay32

ord80
ord52
ord227
ord223
ord1015
ord1017
ord1016
ord653
ord585
ord657
ord680
ord222
ord470
ord467

ssleay32

ord183
ord225
ord21
ord142
ord141
ord12
ord111
ord108
ord58
ord75
ord83
ord43
ord96
ord42
ord48
ord8
ord74
ord78

ws2_32

inet_ntoa
htonl
gethostbyname
inet_addr
htons
gethostbyaddr
ntohs
WSASetLastError
getservbyname
getservbyport
WSAGetLastError

sysinfo

?SetProcessor@CDeviceProperties@@QAEXPBD0K@Z
?GetHash@CDeviceProperties@@QAEPBDXZ
?GetHash@CBios@@QAEPBDXZ
?GetHash@CMemorySlotList@@QAEPBDXZ
?GetHash@CSystemSlotList@@QAEPBDXZ
?GetHash@CRegistryValueList@@QAEPBDXZ
?GetHash@CSystemControllerList@@QAEPBDXZ
?GetHash@CMonitorList@@QAEPBDXZ
?GetHash@CSystemPortList@@QAEPBDXZ
?GetHash@CStoragePeripheralList@@QAEPBDXZ
?GetHash@CLogicalDriveList@@QAEPBDXZ
?GetHash@CInputDeviceList@@QAEPBDXZ
?GetHash@CModemList@@QAEPBDXZ
?GetHash@CNetworkAdapterList@@QAEPBDXZ
?GetHash@CPrinterList@@QAEPBDXZ
?GetHash@CSoundDeviceList@@QAEPBDXZ
?GetHash@CVideoAdapterList@@QAEPBDXZ
?GetHash@CSoftwareList@@QAEPBDXZ
?SetChecksum@CDeviceProperties@@QAEXK@Z
?Set@CBios@@QAEXPBD000000@Z
?GetMachineType@CBios@@QAEPBDXZ
?SetDeviceType@CDeviceProperties@@QAEXI@Z
??0CLogicalDrive@@QAE@XZ
??1CLogicalDrive@@UAE@XZ
?RetrieveDriveInfo@CLogicalDrive@@QAEHPBD@Z
?SetFilesNumber@CLogicalDrive@@QAEXJ@Z
?GetCompanyName@CFileVersion@@QAE?AVCString@@XZ
?GetProductName@CFileVersion@@QAE?AVCString@@XZ
?GetInternalName@CFileVersion@@QAE?AVCString@@XZ
?GetFileVersion@CFileVersion@@QAE?AVCString@@XZ
?GetFileDescription@CFileVersion@@QAE?AVCString@@XZ
?Clear@CSoftware@@QAEXXZ
??1SysInfo@@UAE@XZ
??0CNetworkAdapter@@QAE@XZ
?getNetworkAdapters@SysInfo@@QAEHPAVCNetworkAdapterList@@@Z
?GetMACAddress@CNetworkAdapter@@QAEPBDXZ
??1CNetworkAdapter@@UAE@XZ
??0CFileVersion@@QAE@XZ
?Open@CFileVersion@@QAEHPBD@Z
?GetProductVersion@CFileVersion@@QAE?AVCString@@XZ
??1CMemorySlot@@UAE@XZ
??1CFileVersion@@QAE@XZ
??0CSoftware@@QAE@XZ
??1CSoftware@@UAE@XZ
?SetDeviceName@CDeviceProperties@@QAEXPBD@Z
?OpenLog@@YAXPBD0@Z
?SetLastCheckDate@CDeviceProperties@@QAEXPBD@Z
??0SysInfo@@QAE@XZ
?GenerateUID@CDeviceProperties@@QAEXXZ
?SetDeviceID@CDeviceProperties@@QAEXPBD@Z
?RetrieveHardwareAndOS@CDeviceProperties@@QAEHPAVSysInfo@@PBD@Z
?GetOSName@CDeviceProperties@@QAEPBDXZ
?GetOSVersion@CDeviceProperties@@QAEPBDXZ
?GetOSComment@CDeviceProperties@@QAEPBDXZ
?SetOS@CDeviceProperties@@QAEXPBD00@Z
?Set@CSoftware@@QAEXPBD00000KH@Z
??4CSoftware@@QAEAAV0@ABV0@@Z
??0CAccessLog@@QAE@XZ
?GetLoggedOnUser@CDeviceProperties@@QAEPBDXZ
?Retrieve@CAccessLog@@QAEHPBD00@Z
?GetProcessesStatus@CAccessLog@@QAEPBDXZ
?GetLogonDate@CAccessLog@@QAEPBDXZ
?GetUserID@CAccessLog@@QAEPBDXZ
?GetDeviceName@CDeviceProperties@@QAEPBDXZ
?SetDeviceName@CAccessLog@@QAEXPBD@Z
??1CAccessLog@@UAE@XZ
?SetExecutionDuration@CDeviceProperties@@QAEXAAVCTime@@0@Z
?GetExecutionDuration@CDeviceProperties@@QAEPBDXZ
??0CDeviceProperties@@QAE@XZ
??1CDeviceProperties@@UAE@XZ
??0CRegistry@@QAE@XZ
??0CRegistryValue@@QAE@XZ
?GetRegistryMultipleValues@CRegistry@@QAEHPBD0I0PAVCRegistryValueList@@@Z
?GetRegistryValue@CRegistry@@QAEHIPBD0AAVCString@@@Z
?SetDeviceID@CRegistryValue@@QAEXPBD@Z
?Set@CRegistryValue@@QAEXPBD0@Z
??1CRegistryValue@@UAE@XZ
??1CRegistry@@UAE@XZ
?GetMaskByNetNumber@CNetworkAdapterList@@QAE?AVCString@@V2@@Z
??4CMemorySlot@@QAEAAV0@ABV0@@Z
?SetSlotNumber@CMemorySlot@@QAEXI@Z
?SetType@CMemorySlot@@QAEXPBD@Z
?SetUsage@CMemorySlot@@QAEXPBD@Z
?SetCapacity@CMemorySlot@@QAEXPBD@Z
?SetDescription@CMemorySlot@@QAEXPBD@Z
?SetCaption@CMemorySlot@@QAEXPBD@Z
??0CMemorySlot@@QAE@XZ
??1CSystemSlot@@UAE@XZ
?SetStatus@CSystemSlot@@QAEXPBD@Z
?SetSlotDesignation@CSystemSlot@@QAEXPBD@Z
?SetDescription@CSystemSlot@@QAEXPBD@Z
?SetName@CSystemSlot@@QAEXPBD@Z
??0CSystemSlot@@QAE@XZ
?FormatXML@CAccessLog@@QAEHPAVCMarkup@@@Z
?FormatXML@CBios@@QAEHPAVCMarkup@@@Z
?ParseFromXML@CBios@@QAEHAAVCString@@@Z
?GetSystemSerialNumber@CBios@@QAEPBDXZ
?FormatXML@CLogicalDrive@@QAEHPAVCMarkup@@@Z
?FormatXML@CDeviceProperties@@QAEHPAVCMarkup@@@Z
?GetProcessorSpeed@CDeviceProperties@@QAEPBDXZ
??1CInputDevice@@UAE@XZ
?FormatXML@CInputDevice@@QAEHPAVCMarkup@@@Z
??0CInputDevice@@QAE@XZ
?SetMemory@CDeviceProperties@@QAEXKK@Z
?GetPageFileSize@CDeviceProperties@@QAEKXZ
?GetPhysicalMemory@CDeviceProperties@@QAEKXZ
?GetCapacity@CMemorySlot@@QAEPBDXZ
?FormatXML@CMemorySlot@@QAEHPAVCMarkup@@@Z
??1CModem@@UAE@XZ
?FormatXML@CModem@@QAEHPAVCMarkup@@@Z
??0CModem@@QAE@XZ
??1CMonitor@@UAE@XZ
?FormatXML@CMonitor@@QAEHPAVCMarkup@@@Z
??0CMonitor@@QAE@XZ
?FormatXML@CNetworkAdapter@@QAEHPAVCMarkup@@@Z
??1CSystemPort@@UAE@XZ
?FormatXML@CSystemPort@@QAEHPAVCMarkup@@@Z
??0CSystemPort@@QAE@XZ
??1CPrinter@@UAE@XZ
?FormatXML@CPrinter@@QAEHPAVCMarkup@@@Z
?AddLog@@YAXPBDZZ
?GetDeviceID@CDeviceProperties@@QAEPBDXZ
??0CPrinter@@QAE@XZ
??1CAccountInfo@@UAE@XZ
?FormatXML@CAccountInfo@@QAEHPAVCMarkup@@VCString@@@Z
??0CAccountInfo@@QAE@XZ
?FormatXML@CRegistryValue@@QAEHPAVCMarkup@@@Z
?FormatXML@CSoftware@@QAEHPAVCMarkup@@@Z
??1CSoundDevice@@UAE@XZ
?FormatXML@CSoundDevice@@QAEHPAVCMarkup@@@Z
??0CSoundDevice@@QAE@XZ
??1CStoragePeripheral@@UAE@XZ
?FormatXML@CStoragePeripheral@@QAEHPAVCMarkup@@@Z
??0CStoragePeripheral@@QAE@XZ
??1CSystemController@@UAE@XZ
?FormatXML@CSystemController@@QAEHPAVCMarkup@@@Z
??0CSystemController@@QAE@XZ
?FormatXML@CSystemSlot@@QAEHPAVCMarkup@@@Z
??1CVideoAdapter@@UAE@XZ
?FormatXML@CVideoAdapter@@QAEHPAVCMarkup@@@Z
??0CVideoAdapter@@QAE@XZ
?Clear@CBios@@QAEXXZ
?Close@CFileVersion@@QAEXXZ

mfc42

ord6392
ord3616
ord3127
ord5651
ord5216
ord964
ord5683
ord5933
ord2825
ord470
ord755
ord2514
ord6334
ord4853
ord4234
ord2302
ord2370
ord324
ord567
ord3610
ord4627
ord3402
ord5277
ord2124
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5290
ord4353
ord6374
ord5163
ord2385
ord5241
ord4407
ord1776
ord4078
ord6055
ord3597
ord4425
ord5280
ord1775
ord6052
ord4710
ord4998
ord4376
ord5265
ord2725
ord4277
ord356
ord2770
ord2781
ord4058
ord3181
ord3178
ord6282
ord3562
ord3319
ord668
ord923
ord922
ord6874
ord5442
ord6928
ord6930
ord5207
ord958
ord1158
ord1134
ord2621
ord3811
ord1168
ord2820
ord5194
ord1997
ord5465
ord656
ord641
ord2763
ord4129
ord1988
ord690
ord5856
ord1835
ord4083
ord561
ord815
ord3738
ord4424
ord4622
ord4080
ord3079
ord3825
ord3831
ord3830
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5714
ord5289
ord5307
ord4698
ord4079
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord4673
ord2107
ord1200
ord4202
ord5710
ord5604
ord1105
ord803
ord800
ord2915
ord2818
ord540
ord665
ord5186
ord860
ord354
ord533
ord825
ord798
ord2393
ord939
ord924
ord2764
ord6139
ord858
ord823
ord2614
ord535
ord4278
ord537
ord941
ord6663
ord5572
ord926
ord3663
ord713
ord414
ord5859
ord6877
ord4189
ord5594
ord1979
ord3229
ord389
ord940
ord610
ord5857
ord287
ord2060
ord5356
ord350
ord5808
ord5204
ord913
ord398
ord6385
ord6283
ord5440
ord6383
ord5450
ord6394
ord3584
ord543
ord1576

msvcrt

_mbschr
_mbsncmp
_mbclen
_mbsstr
_mbsnbcmp
_mbccpy
memmove
_mbsicmp
_mbscmp
_CxxThrowException
_ltoa
time
strtok
sprintf
free
strncpy
calloc
strtoul
_itoa
_setmbcp
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
?terminate@@YAXXZ
_except_handler3
_onexit
__dllonexit
??1type_info@@UAE@XZ
atof
atoi
strchr
__CxxFrameHandler

kernel32

CreateMutexA
GetLastError
CopyFileA
GetFileAttributesA
CreateDirectoryA
CreateProcessA
WritePrivateProfileStringA
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FreeLibrary
GetProcAddress
LoadLibraryA
GetStartupInfoA
GetModuleHandleA
WaitForSingleObject
TerminateProcess
GetLogicalDrives
GetPrivateProfileStringA
CreateFileA
CloseHandle
DeleteFileA
GetModuleFileNameA
GetComputerNameA
GetCurrentDirectoryA
ReleaseMutex
GetExitCodeThread
ResumeThread
SuspendThread
GetSystemDirectoryA

user32

EnableWindow

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
OcsLogon.exe
.exe windows:4 windows x86 arch:x86

51af09c6f94705a14d7c2cf34b244036

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
CreateFileA
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
ExitProcess
lstrcpynA
CloseHandle
GetWindowsDirectoryA
GetTempPathA
GetUserDefaultLangID
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrcpyA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpiA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
MulDiv
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetCommandLineA

user32

EndDialog
ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
LoadCursorA
SetCursor
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
RegisterClassA
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfA
SendMessageTimeoutA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
FindWindowExA

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
MultiByteToWideChar
GlobalAlloc

user32

GetDlgCtrlID
GetClientRect
SetWindowRgn
MapWindowPoints
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
PtInRect
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
LoadIconA

gdi32

SetTextColor
GetObjectA
SelectObject
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
CreateCompatibleDC

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/OCSFloc.ini
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
GetLastError
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 494B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/inetc.dll
.dll windows:4 windows x86 arch:x86

3f1149a3053980fe6b461521d2b55a2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_mbschr
_adjust_fdiv
malloc
_initterm
free
_mbsrchr
strtoul
memset
_mbsstr
strtol

kernel32

CloseHandle
CreateThread
WaitForSingleObject
TerminateThread
GetModuleHandleA
MulDiv
lstrcpyA
GlobalAlloc
LoadLibraryA
GetProcAddress
lstrlenA
WriteFile
ReadFile
lstrcmpA
lstrcpynA
GetLastError
GlobalFree
lstrcmpiA
DeleteFileA
SleepEx
SetFilePointer
GetTickCount
lstrcatA
GetFileSize
CreateFileA

user32

MessageBoxA
GetParent
ShowWindow
PostMessageA
SetWindowTextA
GetWindowTextA
IsWindow
GetDlgItem
SetDlgItemTextA
SendDlgItemMessageA
SetWindowPos
SystemParametersInfoA
GetClientRect
GetWindowRect
SetTimer
LoadIconA
SetWindowLongA
GetWindowLongA
UpdateWindow
DestroyWindow
KillTimer
RedrawWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
IsWindowVisible
EnableWindow
CreateDialogParamA
FindWindowExA
wsprintfA
SendMessageA

wininet

HttpSendRequestA
HttpSendRequestExA
HttpQueryInfoA
FtpCreateDirectoryA
FtpOpenFileA
InternetGetLastResponseInfoA
InternetSetFilePointer
InternetSetOptionA
InternetQueryOptionA
InternetCloseHandle
InternetErrorDlg
HttpOpenRequestA
HttpAddRequestHeadersA
HttpEndRequestA
InternetConnectA
InternetCrackUrlA
InternetOpenA
InternetReadFile
InternetWriteFile

comctl32

ord17

Exports

Exports

get
head
post
put

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OcsWmi.dll
.dll windows:4 windows x86 arch:x86

cdbed0462be47c495b7f5a27d9eb9b19

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1269
ord540
ord2393
ord860
ord2614
ord2813
ord835
ord861
ord2818
ord941
ord2811
ord829
ord800
ord1575
ord1168
ord1577
ord1182
ord342
ord1243
ord1197
ord1570
ord1253
ord1255
ord6467
ord1578
ord825
ord535
ord858
ord1176
ord600
ord826
ord269
ord1116

msvcrt

__CxxFrameHandler
_atoi64
??2@YAPAXI@Z
_except_handler3
?terminate@@YAXXZ
??1type_info@@UAE@XZ
__dllonexit
_onexit
free
_initterm
malloc
_adjust_fdiv

kernel32

LocalFree
LocalAlloc
MultiByteToWideChar

ole32

CoUninitialize
CoCreateInstance
CoInitializeEx
CoInitializeSecurity

oleaut32

SafeArrayGetElement
SysAllocStringLen
VariantClear
SafeArrayGetLBound
SafeArrayGetUBound
SysFreeString

Exports

Exports

??0COcsWmi@@QAE@ABV0@@Z
??0COcsWmi@@QAE@XZ
??1COcsWmi@@UAE@XZ
??4COcsWmi@@QAEAAV0@ABV0@@Z
??_7COcsWmi@@6B@
?BeginEnumClassObject@COcsWmi@@QAEHPBD@Z
?CloseEnumClassObject@COcsWmi@@QAEHXZ
?ConnectWMI@COcsWmi@@QAEHPBD@Z
?DisconnectWMI@COcsWmi@@QAEHXZ
?GetClassObjectDwordValue@COcsWmi@@QAEKPBD@Z
?GetClassObjectI64Value@COcsWmi@@QAE_JPBD@Z
?GetClassObjectStringValue@COcsWmi@@QAEPBDPBD@Z
?GetClassObjectU64Value@COcsWmi@@QAE_KPBD@Z
?GetLastErrorWMI@COcsWmi@@QAEJXZ
?GetRefElementClassObjectDwordValue@COcsWmi@@QAEKPBD0@Z
?GetRefElementClassObjectI64Value@COcsWmi@@QAE_JPBD0@Z
?GetRefElementClassObjectStringValue@COcsWmi@@QAEPBDPBD0@Z
?GetRefElementClassObjectU64Value@COcsWmi@@QAE_KPBD0@Z
?MoveNextEnumClassObject@COcsWmi@@QAEHXZ
?dwCimValue@COcsWmi@@IAEKAAUtagVARIANT@@AAJ@Z
?i64CimValue@COcsWmi@@IAE_JAAUtagVARIANT@@AAJ@Z
?strCimArrayValue@COcsWmi@@IAEPBDAAUtagVARIANT@@AAJ@Z
?strCimValue@COcsWmi@@IAEPBDAAUtagVARIANT@@AAJ@Z
?strVariant@COcsWmi@@IAEPBDUtagVARIANT@@@Z
?strVariantArray@COcsWmi@@IAEPBDUtagVARIANT@@@Z
?u64CimValue@COcsWmi@@IAE_KAAUtagVARIANT@@AAJ@Z

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PsApi.dll
.dll windows:4 windows x86 arch:x86

3b5b4bad881057af15fc35648ebcf206

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

ntdll

NtAllocateVirtualMemory
RtlNtStatusToDosError
_stricmp
RtlUnwind
atoi
_chkstk
NtStopProfile
sprintf
RtlMultiByteToUnicodeN
RtlAdjustPrivilege
RtlUnicodeToOemN
NtCreateProfile
NtSetIntervalProfile
NtStartProfile
DbgPrint
NtWriteFile
NtSetInformationProcess
NtQueryInformationProcess
NtQueryVirtualMemory
NtQuerySystemInformation

kernel32

MultiByteToWideChar
GetProcessWorkingSetSize
WideCharToMultiByte
ReadProcessMemory
MapViewOfFile
UnmapViewOfFile
OpenFileMappingA
CreateFileA
CloseHandle
DisableThreadLibraryCalls
lstrcpyA
GetProcessHeap
LocalFree
SetLastError
LocalAlloc
SetProcessWorkingSetSize
lstrlenA
GetSystemInfo
HeapAlloc

imagehlp

SymLoadModule
SymGetModuleInfo
SymGetSymFromAddr
SymUnloadModule
SymSetOptions
SymInitialize
SymGetSearchPath

Exports

Exports

EmptyWorkingSet
EnumDeviceDrivers
EnumProcessModules
EnumProcesses
GetDeviceDriverBaseNameA
GetDeviceDriverBaseNameW
GetDeviceDriverFileNameA
GetDeviceDriverFileNameW
GetMappedFileNameA
GetMappedFileNameW
GetModuleBaseNameA
GetModuleBaseNameW
GetModuleFileNameExA
GetModuleFileNameExW
GetModuleInformation
GetProcessMemoryInfo
GetWsChanges
InitializeProcessForWsWatch
QueryWorkingSet

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 914B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SSLeay32.dll
.dll windows:4 windows x86 arch:x86

439f91ef5d15941c3e805c4fc238afe9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libeay32

ord52
ord2206
ord857
ord905
ord901
ord904
ord1653
ord1654
ord903
ord252
ord222
ord2201
ord490
ord176
ord641
ord2821
ord281
ord290
ord654
ord181
ord188
ord269
ord3109
ord2630
ord910
ord2411
ord754
ord464
ord911
ord289
ord493
ord3245
ord354
ord2936
ord3244
ord323
ord3067
ord2894
ord961
ord89
ord109
ord202
ord285
ord3724
ord313
ord495
ord120
ord3239
ord151
ord110
ord111
ord3178
ord3695
ord3570
ord3575
ord3550
ord3608
ord3480
ord3418
ord3422
ord203
ord128
ord31
ord830
ord727
ord2760
ord866
ord2929
ord3644
ord2578
ord3010
ord2924
ord3459
ord3512
ord3663
ord123
ord201
ord118
ord3666
ord219
ord498
ord635
ord912
ord909
ord87
ord282
ord3682
ord2877
ord3711
ord205
ord486
ord484
ord763
ord577
ord907
ord572
ord3719
ord216
ord206
ord497
ord481
ord3729
ord2915
ord256
ord1096
ord1097
ord333
ord2589
ord1145
ord1144
ord1081
ord2292
ord622
ord627
ord657
ord653
ord85
ord2784
ord965
ord964
ord2572
ord2747
ord3704
ord3758
ord3767
ord3647
ord3460
ord3766
ord3365
ord3754
ord3394
ord3454
ord1027
ord3378
ord3437
ord187
ord897
ord3414
ord3495
ord67
ord66
ord1004
ord3527
ord65
ord53
ord78
ord98
ord3559
ord3399
ord636
ord914
ord316
ord629
ord892
ord626
ord890
ord364
ord1010
ord2051
ord74
ord248
ord1655
ord575
ord1025
ord58
ord630
ord628
ord1041
ord1007
ord1005
ord246
ord1100
ord679
ord2524
ord3595
ord1023
ord3505
ord401
ord93
ord3396
ord3657
ord887
ord891
ord889
ord315
ord314
ord1147
ord189
ord774
ord279
ord283
ord956
ord280
ord400
ord751
ord750
ord2181
ord399
ord748
ord3205
ord37
ord35
ord824
ord822
ord8
ord1091
ord3700
ord3623
ord32
ord718
ord7
ord716
ord703
ord680
ord86
ord88
ord1101
ord293
ord322
ord2996
ord3155
ord2927
ord325
ord329
ord318
ord304
ord292
ord299
ord955
ord2252
ord91
ord247
ord169
ord168
ord623
ord167

msvcrt

_iob
_errno
free
_initterm
malloc
_adjust_fdiv
strncmp
memmove
time
fprintf

kernel32

GetLastError
DisableThreadLibraryCalls
SetLastError

Exports

Exports

BIO_f_ssl
BIO_new_buffer_ssl_connect
BIO_new_ssl
BIO_new_ssl_connect
BIO_ssl_copy_session_id
BIO_ssl_shutdown
DTLSv1_client_method
DTLSv1_method
DTLSv1_server_method
ERR_load_SSL_strings
SSL_CIPHER_description
SSL_CIPHER_get_bits
SSL_CIPHER_get_name
SSL_CIPHER_get_version
SSL_COMP_add_compression_method
SSL_COMP_get_compression_methods
SSL_COMP_get_name
SSL_CTX_add_client_CA
SSL_CTX_add_session
SSL_CTX_callback_ctrl
SSL_CTX_check_private_key
SSL_CTX_ctrl
SSL_CTX_flush_sessions
SSL_CTX_free
SSL_CTX_get_cert_store
SSL_CTX_get_client_CA_list
SSL_CTX_get_ex_data
SSL_CTX_get_ex_new_index
SSL_CTX_get_quiet_shutdown
SSL_CTX_get_timeout
SSL_CTX_get_verify_callback
SSL_CTX_get_verify_depth
SSL_CTX_get_verify_mode
SSL_CTX_load_verify_locations
SSL_CTX_new
SSL_CTX_remove_session
SSL_CTX_sessions
SSL_CTX_set_cert_store
SSL_CTX_set_cert_verify_callback
SSL_CTX_set_cipher_list
SSL_CTX_set_client_CA_list
SSL_CTX_set_default_passwd_cb
SSL_CTX_set_default_passwd_cb_userdata
SSL_CTX_set_default_verify_paths
SSL_CTX_set_ex_data
SSL_CTX_set_generate_session_id
SSL_CTX_set_msg_callback
SSL_CTX_set_purpose
SSL_CTX_set_quiet_shutdown
SSL_CTX_set_session_id_context
SSL_CTX_set_ssl_version
SSL_CTX_set_timeout
SSL_CTX_set_tmp_dh_callback
SSL_CTX_set_tmp_ecdh_callback
SSL_CTX_set_tmp_rsa_callback
SSL_CTX_set_trust
SSL_CTX_set_verify
SSL_CTX_set_verify_depth
SSL_CTX_use_PrivateKey
SSL_CTX_use_PrivateKey_ASN1
SSL_CTX_use_PrivateKey_file
SSL_CTX_use_RSAPrivateKey
SSL_CTX_use_RSAPrivateKey_ASN1
SSL_CTX_use_RSAPrivateKey_file
SSL_CTX_use_certificate
SSL_CTX_use_certificate_ASN1
SSL_CTX_use_certificate_chain_file
SSL_CTX_use_certificate_file
SSL_SESSION_cmp
SSL_SESSION_free
SSL_SESSION_get_ex_data
SSL_SESSION_get_ex_new_index
SSL_SESSION_get_id
SSL_SESSION_get_time
SSL_SESSION_get_timeout
SSL_SESSION_hash
SSL_SESSION_new
SSL_SESSION_print
SSL_SESSION_print_fp
SSL_SESSION_set_ex_data
SSL_SESSION_set_time
SSL_SESSION_set_timeout
SSL_accept
SSL_add_client_CA
SSL_add_dir_cert_subjects_to_stack
SSL_add_file_cert_subjects_to_stack
SSL_alert_desc_string
SSL_alert_desc_string_long
SSL_alert_type_string
SSL_alert_type_string_long
SSL_callback_ctrl
SSL_check_private_key
SSL_clear
SSL_connect
SSL_copy_session_id
SSL_ctrl
SSL_do_handshake
SSL_dup
SSL_dup_CA_list
SSL_free
SSL_get1_session
SSL_get_SSL_CTX
SSL_get_certificate
SSL_get_cipher_list
SSL_get_ciphers
SSL_get_client_CA_list
SSL_get_current_cipher
SSL_get_current_compression
SSL_get_current_expansion
SSL_get_default_timeout
SSL_get_error
SSL_get_ex_data
SSL_get_ex_data_X509_STORE_CTX_idx
SSL_get_ex_new_index
SSL_get_fd
SSL_get_finished
SSL_get_info_callback
SSL_get_peer_cert_chain
SSL_get_peer_certificate
SSL_get_peer_finished
SSL_get_privatekey
SSL_get_quiet_shutdown
SSL_get_rbio
SSL_get_read_ahead
SSL_get_rfd
SSL_get_session
SSL_get_shared_ciphers
SSL_get_shutdown
SSL_get_ssl_method
SSL_get_verify_callback
SSL_get_verify_depth
SSL_get_verify_mode
SSL_get_verify_result
SSL_get_version
SSL_get_wbio
SSL_get_wfd
SSL_has_matching_session_id
SSL_library_init
SSL_load_client_CA_file
SSL_load_error_strings
SSL_new
SSL_peek
SSL_pending
SSL_read
SSL_renegotiate
SSL_renegotiate_pending
SSL_rstate_string
SSL_rstate_string_long
SSL_set_accept_state
SSL_set_bio
SSL_set_cipher_list
SSL_set_client_CA_list
SSL_set_connect_state
SSL_set_ex_data
SSL_set_fd
SSL_set_generate_session_id
SSL_set_info_callback
SSL_set_msg_callback
SSL_set_purpose
SSL_set_quiet_shutdown
SSL_set_read_ahead
SSL_set_rfd
SSL_set_session
SSL_set_session_id_context
SSL_set_shutdown
SSL_set_ssl_method
SSL_set_tmp_dh_callback
SSL_set_tmp_ecdh_callback
SSL_set_tmp_rsa_callback
SSL_set_trust
SSL_set_verify
SSL_set_verify_depth
SSL_set_verify_result
SSL_set_wfd
SSL_shutdown
SSL_state
SSL_state_string
SSL_state_string_long
SSL_use_PrivateKey
SSL_use_PrivateKey_ASN1
SSL_use_PrivateKey_file
SSL_use_RSAPrivateKey
SSL_use_RSAPrivateKey_ASN1
SSL_use_RSAPrivateKey_file
SSL_use_certificate
SSL_use_certificate_ASN1
SSL_use_certificate_file
SSL_version
SSL_want
SSL_write
SSLv23_client_method
SSLv23_method
SSLv23_server_method
SSLv2_client_method
SSLv2_method
SSLv2_server_method
SSLv3_client_method
SSLv3_method
SSLv3_server_method
TLSv1_client_method
TLSv1_method
TLSv1_server_method
d2i_SSL_SESSION
i2d_SSL_SESSION
ssl2_ciphers
ssl3_ciphers

Sections

.text
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SysInfo.dll
.dll windows:4 windows x86 arch:x86

3faafbe016ef2231599bb87d9fd8bfb6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

inet_addr
ntohl
htonl
inet_ntoa

libeay32

ord503
ord502
ord504

ocswmi

?GetClassObjectStringValue@COcsWmi@@QAEPBDPBD@Z
?DisconnectWMI@COcsWmi@@QAEHXZ
?CloseEnumClassObject@COcsWmi@@QAEHXZ
??_7COcsWmi@@6B@
??0COcsWmi@@QAE@XZ
??1COcsWmi@@UAE@XZ
?GetLastErrorWMI@COcsWmi@@QAEJXZ
?GetRefElementClassObjectStringValue@COcsWmi@@QAEPBDPBD0@Z
?GetClassObjectDwordValue@COcsWmi@@QAEKPBD@Z
?GetClassObjectU64Value@COcsWmi@@QAE_KPBD@Z
?BeginEnumClassObject@COcsWmi@@QAEHPBD@Z
?MoveNextEnumClassObject@COcsWmi@@QAEHXZ
?ConnectWMI@COcsWmi@@QAEHPBD@Z

mfc42

ord354
ord2818
ord940
ord3663
ord2614
ord5440
ord6383
ord5450
ord6394
ord533
ord798
ord964
ord2393
ord5194
ord665
ord1997
ord2808
ord6407
ord2827
ord2841
ord2107
ord5216
ord5933
ord5710
ord1200
ord1168
ord5572
ord2915
ord941
ord6874
ord4278
ord6663
ord5186
ord6930
ord2919
ord3810
ord537
ord2764
ord4129
ord924
ord939
ord4277
ord2814
ord860
ord6877
ord6282
ord6283
ord540
ord825
ord858
ord535
ord800
ord269
ord826
ord600
ord1578
ord6467
ord1255
ord1253
ord1570
ord1197
ord1243
ord342
ord1182
ord3318
ord1979
ord926
ord823
ord1577
ord1575
ord1176
ord1116
ord4202

msvcrt

_initterm
??1type_info@@UAE@XZ
_onexit
__dllonexit
?terminate@@YAXXZ
strncpy
strtoul
_mbccpy
_mbsnbcmp
_mbsstr
_mbclen
_mbsncmp
_adjust_fdiv
malloc
free
_mbsnbcpy
_ismbcdigit
atoi
_mbscmp
memmove
sprintf
_ftol
_except_handler3
strtok
__CxxFrameHandler
_mbschr
_mbsicmp

kernel32

FreeLibrary
LoadLibraryA
GetLastError
lstrcpynA
lstrcmpiA
GetVolumeInformationA
GetDriveTypeA
GetDiskFreeSpaceA
GlobalMemoryStatus
CloseHandle
GetPrivateProfileStringA
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
SetLastError
GlobalAlloc
GlobalFree
GetCurrentDirectoryA
WritePrivateProfileStringA
CreateFileA
LocalFree
LocalAlloc
GetSystemInfo
GetVersion
GetProcAddress
GetModuleHandleA
lstrlenA
OpenProcess
GetVersionExA

user32

wsprintfA
GetSystemMetrics

advapi32

RegEnumKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegEnumValueA
GetUserNameA
RegSetValueExA
RegCreateKeyExA
RegConnectRegistryA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

mpr

WNetGetConnectionA

Exports

Exports

??0CAccessLog@@QAE@ABV0@@Z
??0CAccessLog@@QAE@XZ
??0CAccountInfo@@QAE@ABV0@@Z
??0CAccountInfo@@QAE@XZ
??0CBios@@QAE@ABV0@@Z
??0CBios@@QAE@XZ
??0CDeviceComments@@QAE@ABV0@@Z
??0CDeviceComments@@QAE@XZ
??0CDeviceCommentsList@@QAE@XZ
??0CDeviceInventory@@QAE@ABV0@@Z
??0CDeviceInventory@@QAE@XZ
??0CDeviceInventoryList@@QAE@XZ
??0CDeviceProperties@@QAE@XZ
??0CDeviceRepairs@@QAE@ABV0@@Z
??0CDeviceRepairs@@QAE@XZ
??0CDeviceRepairsList@@QAE@XZ
??0CEdid@@QAE@ABV0@@Z
??0CEdid@@QAE@XZ
??0CFileVersion@@QAE@XZ
??0CIPHelper@@QAE@ABV0@@Z
??0CIPHelper@@QAE@XZ
??0CInputDevice@@QAE@ABV0@@Z
??0CInputDevice@@QAE@XZ
??0CInputDeviceList@@QAE@XZ
??0CLogicalDrive@@QAE@ABV0@@Z
??0CLogicalDrive@@QAE@XZ
??0CLogicalDriveList@@QAE@XZ
??0CMemory@@QAE@ABV0@@Z
??0CMemory@@QAE@XZ
??0CMemorySlot@@QAE@ABV0@@Z
??0CMemorySlot@@QAE@XZ
??0CMemorySlotList@@QAE@XZ
??0CModem@@QAE@ABV0@@Z
??0CModem@@QAE@XZ
??0CModemList@@QAE@XZ
??0CMonitor@@QAE@ABV0@@Z
??0CMonitor@@QAE@XZ
??0CMonitorList@@QAE@XZ
??0CNetworkAdapter@@QAE@ABV0@@Z
??0CNetworkAdapter@@QAE@XZ
??0CNetworkAdapterList@@QAE@XZ
??0COcsCrypto@@QAE@ABV0@@Z
??0COcsCrypto@@QAE@XZ
??0CPrinter@@QAE@ABV0@@Z
??0CPrinter@@QAE@XZ
??0CPrinterList@@QAE@XZ
??0CRegistry@@QAE@ABV0@@Z
??0CRegistry@@QAE@XZ
??0CRegistryValue@@QAE@ABV0@@Z
??0CRegistryValue@@QAE@XZ
??0CRegistryValueList@@QAE@XZ
??0CSNMP@@QAE@ABV0@@Z
??0CSNMP@@QAE@XZ
??0CSoftware@@QAE@ABV0@@Z
??0CSoftware@@QAE@XZ
??0CSoftwareList@@QAE@XZ
??0CSoundDevice@@QAE@ABV0@@Z
??0CSoundDevice@@QAE@XZ
??0CSoundDeviceList@@QAE@XZ
??0CStoragePeripheral@@QAE@ABV0@@Z
??0CStoragePeripheral@@QAE@XZ
??0CStoragePeripheralList@@QAE@XZ
??0CSystemController@@QAE@ABV0@@Z
??0CSystemController@@QAE@XZ
??0CSystemControllerList@@QAE@XZ
??0CSystemPort@@QAE@ABV0@@Z
??0CSystemPort@@QAE@XZ
??0CSystemPortList@@QAE@XZ
??0CSystemSlot@@QAE@ABV0@@Z
??0CSystemSlot@@QAE@XZ
??0CSystemSlotList@@QAE@XZ
??0CVideoAdapter@@QAE@ABV0@@Z
??0CVideoAdapter@@QAE@XZ
??0CVideoAdapterList@@QAE@XZ
??0CWindowsSocket@@QAE@ABV0@@Z
??0CWindowsSocket@@QAE@XZ
??0CWmi@@QAE@ABV0@@Z
??0CWmi@@QAE@XZ
??0SysInfo@@QAE@ABV0@@Z
??0SysInfo@@QAE@XZ
??1CAccessLog@@UAE@XZ
??1CAccountInfo@@UAE@XZ
??1CBios@@UAE@XZ
??1CDeviceComments@@UAE@XZ
??1CDeviceCommentsList@@UAE@XZ
??1CDeviceInventory@@UAE@XZ
??1CDeviceInventoryList@@UAE@XZ
??1CDeviceProperties@@UAE@XZ
??1CDeviceRepairs@@UAE@XZ
??1CDeviceRepairsList@@UAE@XZ
??1CEdid@@UAE@XZ
??1CFileVersion@@QAE@XZ
??1CIPHelper@@UAE@XZ
??1CInputDevice@@UAE@XZ
??1CInputDeviceList@@UAE@XZ
??1CLogicalDrive@@UAE@XZ
??1CLogicalDriveList@@UAE@XZ
??1CMemory@@UAE@XZ
??1CMemorySlot@@UAE@XZ
??1CMemorySlotList@@UAE@XZ
??1CModem@@UAE@XZ
??1CModemList@@UAE@XZ
??1CMonitor@@UAE@XZ
??1CMonitorList@@UAE@XZ
??1CNetworkAdapter@@UAE@XZ
??1CNetworkAdapterList@@UAE@XZ
??1COcsCrypto@@UAE@XZ
??1CPrinter@@UAE@XZ
??1CPrinterList@@UAE@XZ
??1CRegistry@@UAE@XZ
??1CRegistryValue@@UAE@XZ
??1CRegistryValueList@@UAE@XZ
??1CSNMP@@UAE@XZ
??1CSoftware@@UAE@XZ
??1CSoftwareList@@UAE@XZ
??1CSoundDevice@@UAE@XZ
??1CSoundDeviceList@@UAE@XZ
??1CStoragePeripheral@@UAE@XZ
??1CStoragePeripheralList@@UAE@XZ
??1CSystemController@@UAE@XZ
??1CSystemControllerList@@UAE@XZ
??1CSystemPort@@UAE@XZ
??1CSystemPortList@@UAE@XZ
??1CSystemSlot@@UAE@XZ
??1CSystemSlotList@@UAE@XZ
??1CVideoAdapter@@UAE@XZ
??1CVideoAdapterList@@UAE@XZ
??1CWindowsSocket@@UAE@XZ
??1CWmi@@UAE@XZ
??1SysInfo@@UAE@XZ
??4CAccessLog@@QAEAAV0@ABV0@@Z
??4CAccountInfo@@QAEAAV0@ABV0@@Z
??4CBios@@QAEAAV0@ABV0@@Z
??4CDeviceComments@@QAEAAV0@ABV0@@Z
??4CDeviceInventory@@QAEAAV0@ABV0@@Z
??4CDeviceRepairs@@QAEAAV0@ABV0@@Z
??4CEdid@@QAEAAV0@ABV0@@Z
??4CFileVersion@@QAEAAV0@ABV0@@Z
??4CIPHelper@@QAEAAV0@ABV0@@Z
??4CInputDevice@@QAEAAV0@ABV0@@Z
??4CLogicalDrive@@QAEAAV0@ABV0@@Z
??4CMemory@@QAEAAV0@ABV0@@Z
??4CMemorySlot@@QAEAAV0@ABV0@@Z
??4CModem@@QAEAAV0@ABV0@@Z
??4CMonitor@@QAEAAV0@ABV0@@Z
??4CNetworkAdapter@@QAEAAV0@ABV0@@Z
??4COcsCrypto@@QAEAAV0@ABV0@@Z
??4CPrinter@@QAEAAV0@ABV0@@Z
??4CRegistry@@QAEAAV0@ABV0@@Z
??4CRegistryValue@@QAEAAV0@ABV0@@Z
??4CSNMP@@QAEAAV0@ABV0@@Z
??4CSoftware@@QAEAAV0@ABV0@@Z
??4CSoundDevice@@QAEAAV0@ABV0@@Z
??4CStoragePeripheral@@QAEAAV0@ABV0@@Z
??4CSystemController@@QAEAAV0@ABV0@@Z
??4CSystemPort@@QAEAAV0@ABV0@@Z
??4CSystemSlot@@QAEAAV0@ABV0@@Z
??4CVideoAdapter@@QAEAAV0@ABV0@@Z
??4CWindowsSocket@@QAEAAV0@ABV0@@Z
??4CWmi@@QAEAAV0@ABV0@@Z
??4SysInfo@@QAEAAV0@ABV0@@Z
??_7CAccessLog@@6B@
??_7CAccountInfo@@6B@
??_7CBios@@6B@
??_7CDeviceComments@@6B@
??_7CDeviceCommentsList@@6B@
??_7CDeviceInventory@@6B@
??_7CDeviceInventoryList@@6B@
??_7CDeviceProperties@@6B@
??_7CDeviceRepairs@@6B@
??_7CDeviceRepairsList@@6B@
??_7CEdid@@6B@
??_7CIPHelper@@6B@
??_7CInputDevice@@6B@
??_7CInputDeviceList@@6B@
??_7CLogicalDrive@@6B@
??_7CLogicalDriveList@@6B@
??_7CMemory@@6B@
??_7CMemorySlot@@6B@
??_7CMemorySlotList@@6B@
??_7CModem@@6B@
??_7CModemList@@6B@
??_7CMonitor@@6B@
??_7CMonitorList@@6B@
??_7CNetworkAdapter@@6B@
??_7CNetworkAdapterList@@6B@
??_7COcsCrypto@@6B@
??_7CPrinter@@6B@
??_7CPrinterList@@6B@
??_7CRegistry@@6B@
??_7CRegistryValue@@6B@
??_7CRegistryValueList@@6B@
??_7CSNMP@@6B@
??_7CSoftware@@6B@
??_7CSoftwareList@@6B@
??_7CSoundDevice@@6B@
??_7CSoundDeviceList@@6B@
??_7CStoragePeripheral@@6B@
??_7CStoragePeripheralList@@6B@
??_7CSystemController@@6B@
??_7CSystemControllerList@@6B@
??_7CSystemPort@@6B@
??_7CSystemPortList@@6B@
??_7CSystemSlot@@6B@
??_7CSystemSlotList@@6B@
??_7CVideoAdapter@@6B@
??_7CVideoAdapterList@@6B@
??_7CWindowsSocket@@6B@
??_7CWmi@@6B@
??_7SysInfo@@6B@
??_C@_0BA@EJP@FileDescription?$AA@
??_C@_0BB@JMFD@OriginalFilename?$AA@
??_C@_0M@EOAE@FileVersion?$AA@
??_C@_0M@HFKG@CompanyName?$AA@
??_C@_0M@OKED@ProductName?$AA@
??_C@_0N@CCA@InternalName?$AA@
??_C@_0P@JKBO@ProductVersion?$AA@
??_C@_0P@NIMM@LegalCopyright?$AA@
?AddLog@@YAXPBDZZ
?Bricolage@CEdid@@IAEXPAVCMonitor@@PAUtag_Standard_EDID@@@Z
?CheckRunningProcesses@CAccessLog@@IAEHPBDAAVCString@@@Z
?Clear@CBios@@QAEXXZ
?Clear@CDeviceComments@@QAEXXZ
?Clear@CDeviceInventory@@QAEXXZ
?Clear@CDeviceProperties@@QAEXXZ
?Clear@CDeviceRepairs@@QAEXXZ
?Clear@CInputDevice@@QAEXXZ
?Clear@CLogicalDrive@@QAEXXZ
?Clear@CMemorySlot@@QAEXXZ
?Clear@CModem@@QAEXXZ
?Clear@CMonitor@@QAEXXZ
?Clear@CNetworkAdapter@@QAEXXZ
?Clear@CPrinter@@QAEXXZ
?Clear@CRegistryValue@@QAEXXZ
?Clear@CSoftware@@QAEXXZ
?Clear@CSoundDevice@@QAEXXZ
?Clear@CStoragePeripheral@@QAEXXZ
?Clear@CSystemController@@QAEXXZ
?Clear@CSystemPort@@QAEXXZ
?Clear@CSystemSlot@@QAEXXZ
?Clear@CVideoAdapter@@QAEXXZ
?Close@CFileVersion@@QAEXXZ
?CloseLog@@YAXXZ
?Connect@CEdid@@QAEHPBD@Z
?Connect@CRegistry@@QAEHPBD@Z
?Connect@CWmi@@QAEHPBD@Z
?DecodeDPMSFlag@CEdid@@IAEPBDE@Z
?Disconnect@CEdid@@QAEHXZ
?Disconnect@CRegistry@@QAEHXZ
?Disconnect@CWmi@@QAEHXZ
?FormatXML@CAccessLog@@QAEHPAVCMarkup@@@Z
?FormatXML@CAccountInfo@@QAEHPAVCMarkup@@VCString@@@Z
?FormatXML@CBios@@QAEHPAVCMarkup@@@Z
?FormatXML@CDeviceProperties@@QAEHPAVCMarkup@@@Z
?FormatXML@CInputDevice@@QAEHPAVCMarkup@@@Z
?FormatXML@CLogicalDrive@@QAEHPAVCMarkup@@@Z
?FormatXML@CMemorySlot@@QAEHPAVCMarkup@@@Z
?FormatXML@CModem@@QAEHPAVCMarkup@@@Z
?FormatXML@CMonitor@@QAEHPAVCMarkup@@@Z
?FormatXML@CNetworkAdapter@@QAEHPAVCMarkup@@@Z
?FormatXML@CPrinter@@QAEHPAVCMarkup@@@Z
?FormatXML@CRegistryValue@@QAEHPAVCMarkup@@@Z
?FormatXML@CSoftware@@QAEHPAVCMarkup@@@Z
?FormatXML@CSoundDevice@@QAEHPAVCMarkup@@@Z
?FormatXML@CStoragePeripheral@@QAEHPAVCMarkup@@@Z
?FormatXML@CSystemController@@QAEHPAVCMarkup@@@Z
?FormatXML@CSystemPort@@QAEHPAVCMarkup@@@Z
?FormatXML@CSystemSlot@@QAEHPAVCMarkup@@@Z
?FormatXML@CVideoAdapter@@QAEHPAVCMarkup@@@Z
?GenerateUID@CDeviceProperties@@QAEXXZ
?GetAccount@CDeviceInventory@@QAEPBDXZ
?GetAccount@CDeviceRepairs@@QAEPBDXZ
?GetActionDate@CDeviceRepairs@@QAE?AVCOleDateTime@@XZ
?GetActionDateString@CDeviceRepairs@@QAEPBDXZ
?GetActionDescription@CDeviceRepairs@@QAEPBDXZ
?GetBillNumber@CDeviceInventory@@QAEPBDXZ
?GetBiosDate@CBios@@QAEPBDXZ
?GetBiosInfo9X@CRegistry@@IAEHPAVCBios@@@Z
?GetBiosInfo@CRegistry@@QAEHPAVCBios@@@Z
?GetBiosInfo@CWmi@@QAEHPAVCBios@@@Z
?GetBiosInfoNT@CRegistry@@IAEHPAVCBios@@@Z
?GetBiosManufacturer@CBios@@QAEPBDXZ
?GetBiosVersion@CBios@@QAEPBDXZ
?GetByteSpeed@CNetworkAdapter@@QAEKXZ
?GetCapacity@CMemorySlot@@QAEPBDXZ
?GetCaption@CInputDevice@@QAEPBDXZ
?GetCaption@CMemorySlot@@QAEPBDXZ
?GetCaption@CMonitor@@QAEPBDXZ
?GetCaption@CSystemController@@QAEPBDXZ
?GetCaption@CSystemPort@@QAEPBDXZ
?GetChecksum@CDeviceProperties@@QAEKXZ
?GetChipset@CVideoAdapter@@QAEPBDXZ
?GetCommandDate@CDeviceInventory@@QAE?AVCOleDateTime@@XZ
?GetCommandDateString@CDeviceInventory@@QAEPBDXZ
?GetCommandNumber@CDeviceInventory@@QAEPBDXZ
?GetComments@CDeviceComments@@QAEPBDXZ
?GetComments@CDeviceInventory@@QAEPBDXZ
?GetComments@CDeviceRepairs@@QAEPBDXZ
?GetComments@CSoftware@@QAEPBDXZ
?GetCompanyName@CFileVersion@@QAE?AVCString@@XZ
?GetDescription@CDeviceProperties@@QAEPBDXZ
?GetDescription@CEdid@@IAEPBDPAUtag_Standard_EDID@@@Z
?GetDescription@CInputDevice@@QAEPBDXZ
?GetDescription@CMemorySlot@@QAEPBDXZ
?GetDescription@CModem@@QAEPBDXZ
?GetDescription@CMonitor@@QAEPBDXZ
?GetDescription@CNetworkAdapter@@QAEPBDXZ
?GetDescription@CSoundDevice@@QAEPBDXZ
?GetDescription@CStoragePeripheral@@QAEPBDXZ
?GetDescription@CSystemController@@QAEPBDXZ
?GetDescription@CSystemPort@@QAEPBDXZ
?GetDescription@CSystemSlot@@QAEPBDXZ
?GetDetailledTimingDescriptionType@CEdid@@IAE?AW4DetailTiming@@QAE@Z
?GetDeviceDescription9X@CRegistry@@IAEPBDXZ
?GetDeviceDescription@CRegistry@@QAEPBDXZ
?GetDeviceDescriptionNT@CRegistry@@IAEPBDXZ
?GetDeviceID@CAccessLog@@QAEPBDXZ
?GetDeviceID@CAccountInfo@@QAEPBDXZ
?GetDeviceID@CBios@@QAEPBDXZ
?GetDeviceID@CDeviceComments@@QAEPBDXZ
?GetDeviceID@CDeviceInventory@@QAEPBDXZ
?GetDeviceID@CDeviceProperties@@QAEPBDXZ
?GetDeviceID@CDeviceRepairs@@QAEPBDXZ
?GetDeviceID@CInputDevice@@QAEPBDXZ
?GetDeviceID@CLogicalDrive@@QAEPBDXZ
?GetDeviceID@CMemorySlot@@QAEPBDXZ
?GetDeviceID@CModem@@QAEPBDXZ
?GetDeviceID@CMonitor@@QAEPBDXZ
?GetDeviceID@CNetworkAdapter@@QAEPBDXZ
?GetDeviceID@CPrinter@@QAEPBDXZ
?GetDeviceID@CRegistry@@QAEPBDXZ
?GetDeviceID@CRegistryValue@@QAEPBDXZ
?GetDeviceID@CSoftware@@QAEPBDXZ
?GetDeviceID@CSoundDevice@@QAEPBDXZ
?GetDeviceID@CStoragePeripheral@@QAEPBDXZ
?GetDeviceID@CSystemController@@QAEPBDXZ
?GetDeviceID@CSystemPort@@QAEPBDXZ
?GetDeviceID@CSystemSlot@@QAEPBDXZ
?GetDeviceID@CVideoAdapter@@QAEPBDXZ
?GetDeviceName@CAccessLog@@QAEPBDXZ
?GetDeviceName@CBios@@QAEPBDXZ
?GetDeviceName@CDeviceComments@@QAEPBDXZ
?GetDeviceName@CDeviceInventory@@QAEPBDXZ
?GetDeviceName@CDeviceProperties@@QAEPBDXZ
?GetDeviceName@CDeviceRepairs@@QAEPBDXZ
?GetDeviceName@CInputDevice@@QAEPBDXZ
?GetDeviceName@CLogicalDrive@@QAEPBDXZ
?GetDeviceName@CMemorySlot@@QAEPBDXZ
?GetDeviceName@CModem@@QAEPBDXZ
?GetDeviceName@CMonitor@@QAEPBDXZ
?GetDeviceName@CNetworkAdapter@@QAEPBDXZ
?GetDeviceName@CPrinter@@QAEPBDXZ
?GetDeviceName@CRegistryValue@@QAEPBDXZ
?GetDeviceName@CSoftware@@QAEPBDXZ
?GetDeviceName@CSoundDevice@@QAEPBDXZ
?GetDeviceName@CStoragePeripheral@@QAEPBDXZ
?GetDeviceName@CSystemController@@QAEPBDXZ
?GetDeviceName@CSystemPort@@QAEPBDXZ
?GetDeviceName@CSystemSlot@@QAEPBDXZ
?GetDeviceName@CVideoAdapter@@QAEPBDXZ
?GetDeviceType@CDeviceProperties@@QAEIXZ
?GetDhcpServer@CNetworkAdapter@@QAEPBDXZ
?GetDisplayEDID@CEdid@@IAEHPAXPAU_SP_DEVINFO_DATA@@AAUtag_Standard_EDID@@@Z
?GetDomainOrWorkgroup9X@CRegistry@@IAEHAAVCString@@@Z
?GetDomainOrWorkgroup@CDeviceProperties@@QAEPBDXZ
?GetDomainOrWorkgroup@CRegistry@@QAEHAAVCString@@@Z
?GetDomainOrWorkgroup@CWmi@@QAEHAAVCString@@@Z
?GetDomainOrWorkgroupNT@CRegistry@@IAEHAAVCString@@@Z
?GetDriveLetter@CLogicalDrive@@QAEPBDXZ
?GetDriveTypeA@CLogicalDrive@@QAEPBDXZ
?GetDriver@CPrinter@@QAEPBDXZ
?GetEdidText@CEdid@@IAEPBDQAE@Z
?GetExecutionDuration@CDeviceProperties@@QAEPBDXZ
?GetFileDescription@CFileVersion@@QAE?AVCString@@XZ
?GetFileSystem@CLogicalDrive@@QAEPBDXZ
?GetFileVersion@CFileVersion@@QAE?AVCString@@XZ
?GetFilename@CSoftware@@QAEPBDXZ
?GetFilesNumber@CLogicalDrive@@QAEJXZ
?GetFilesize@CSoftware@@QAEKXZ
?GetFixedFileVersion@CFileVersion@@QAE?AVCString@@XZ
?GetFixedInfo@CFileVersion@@QAEHAAUtagVS_FIXEDFILEINFO@@@Z
?GetFixedProductVersion@CFileVersion@@QAE?AVCString@@XZ
?GetFolder@CSoftware@@QAEPBDXZ
?GetFreeMB@CLogicalDrive@@QAEJXZ
?GetGateway@CNetworkAdapter@@QAEPBDXZ
?GetHardwareVersion@CSystemController@@QAEPBDXZ
?GetHash@CBios@@QAEPBDXZ
?GetHash@CDeviceProperties@@QAEPBDXZ
?GetHash@CInputDeviceList@@QAEPBDXZ
?GetHash@CLogicalDriveList@@QAEPBDXZ
?GetHash@CMemorySlotList@@QAEPBDXZ
?GetHash@CModemList@@QAEPBDXZ
?GetHash@CMonitorList@@QAEPBDXZ
?GetHash@CNetworkAdapterList@@QAEPBDXZ
?GetHash@CPrinterList@@QAEPBDXZ
?GetHash@CRegistryValueList@@QAEPBDXZ
?GetHash@CSoftwareList@@QAEPBDXZ
?GetHash@CSoundDeviceList@@QAEPBDXZ
?GetHash@CStoragePeripheralList@@QAEPBDXZ
?GetHash@CSystemControllerList@@QAEPBDXZ
?GetHash@CSystemPortList@@QAEPBDXZ
?GetHash@CSystemSlotList@@QAEPBDXZ
?GetHash@CVideoAdapterList@@QAEPBDXZ
?GetID@CAccessLog@@QAEKXZ
?GetID@CDeviceComments@@QAEKXZ
?GetID@CDeviceInventory@@QAEKXZ
?GetID@CDeviceRepairs@@QAEKXZ
?GetID@CInputDevice@@QAEKXZ
?GetID@CLogicalDrive@@QAEKXZ
?GetID@CMemorySlot@@QAEKXZ
?GetID@CModem@@QAEKXZ
?GetID@CMonitor@@QAEKXZ
?GetID@CNetworkAdapter@@QAEKXZ
?GetID@CPrinter@@QAEKXZ
?GetID@CRegistryValue@@QAEKXZ
?GetID@CSoftware@@QAEKXZ
?GetID@CSoundDevice@@QAEKXZ
?GetID@CStoragePeripheral@@QAEKXZ
?GetID@CSystemController@@QAEKXZ
?GetID@CSystemPort@@QAEKXZ
?GetID@CSystemSlot@@QAEKXZ
?GetID@CVideoAdapter@@QAEKXZ
?GetIPAddress@CDeviceProperties@@QAEPBDXZ
?GetIPAddress@CNetworkAdapter@@QAEPBDXZ
?GetIPAddress@CWindowsSocket@@QAEPBDXZ
?GetIPNetMask@CNetworkAdapter@@QAEPBDXZ
?GetIfIndex@CNetworkAdapter@@QAEJXZ
?GetInputDevices9X@CRegistry@@IAEHPAVCInputDeviceList@@@Z
?GetInputDevices@CRegistry@@QAEHPAVCInputDeviceList@@@Z
?GetInputDevices@CWmi@@QAEHPAVCInputDeviceList@@@Z
?GetInputDevicesNT@CRegistry@@IAEHPAVCInputDeviceList@@@Z
?GetInternalName@CFileVersion@@QAE?AVCString@@XZ
?GetInventoryNumber@CDeviceInventory@@QAEPBDXZ
?GetIpByGateway@CNetworkAdapterList@@QAE?AVCString@@V2@@Z
?GetLastCheckDate@CDeviceProperties@@QAEPBDXZ
?GetLastLoggedUser@CDeviceProperties@@QAEPBDXZ
?GetLastLoggedUser@CRegistry@@QAEHAAVCString@@@Z
?GetLegalCopyright@CFileVersion@@QAE?AVCString@@XZ
?GetLoggedOnUser9X@CRegistry@@IAEHAAVCString@@@Z
?GetLoggedOnUser@CDeviceProperties@@QAEPBDXZ
?GetLoggedOnUser@CRegistry@@QAEHAAVCString@@@Z
?GetLoggedOnUserNT@CRegistry@@IAEHAAVCString@@@Z
?GetLogonDate@CAccessLog@@QAEPBDXZ
?GetMACAddress@CNetworkAdapter@@QAEPBDXZ
?GetMachineType@CBios@@QAEPBDXZ
?GetManufacturer@CInputDevice@@QAEPBDXZ
?GetManufacturer@CMonitor@@QAEPBDXZ
?GetManufacturer@CSoundDevice@@QAEPBDXZ
?GetManufacturer@CStoragePeripheral@@QAEPBDXZ
?GetManufacturer@CSystemController@@QAEPBDXZ
?GetManufacturerID@CEdid@@IAEPBDQAE@Z
?GetManufacturerName@CEdid@@IAEPBDPBD@Z
?GetMaskByGateway@CNetworkAdapterList@@QAE?AVCString@@V2@@Z
?GetMaskByNetNumber@CNetworkAdapterList@@QAE?AVCString@@V2@@Z
?GetMemory@CVideoAdapter@@QAEPBDXZ
?GetMemorySlots@CWmi@@QAEHPAVCMemorySlotList@@@Z
?GetModel@CModem@@QAEPBDXZ
?GetModel@CStoragePeripheral@@QAEPBDXZ
?GetModems9X@CRegistry@@IAEHPAVCModemList@@@Z
?GetModems@CRegistry@@QAEHPAVCModemList@@@Z
?GetModems@CWmi@@QAEHPAVCModemList@@@Z
?GetModemsNT@CRegistry@@IAEHPAVCModemList@@@Z
?GetMonitors9X@CRegistry@@IAEHPAVCMonitorList@@@Z
?GetMonitors@CEdid@@QAEHPAVCMonitorList@@@Z
?GetMonitors@CRegistry@@QAEHPAVCMonitorList@@@Z
?GetMonitors@CWmi@@QAEHPAVCMonitorList@@@Z
?GetMonitorsNT@CRegistry@@IAEHPAVCMonitorList@@@Z
?GetName@CDeviceComments@@QAEPBDXZ
?GetName@CDeviceInventory@@QAEPBDXZ
?GetName@CDeviceRepairs@@QAEPBDXZ
?GetName@CModem@@QAEPBDXZ
?GetName@CPrinter@@QAEPBDXZ
?GetName@CRegistryValue@@QAEPBDXZ
?GetName@CSoftware@@QAEPBDXZ
?GetName@CSoundDevice@@QAEPBDXZ
?GetName@CStoragePeripheral@@QAEPBDXZ
?GetName@CSystemController@@QAEPBDXZ
?GetName@CSystemPort@@QAEPBDXZ
?GetName@CSystemSlot@@QAEPBDXZ
?GetName@CVideoAdapter@@QAEPBDXZ
?GetNetNumber@CNetworkAdapter@@QAEPBDXZ
?GetNetworkAdapters@CIPHelper@@SAHPAVCNetworkAdapterList@@@Z
?GetNetworkAdapters@CSNMP@@SAHPAVCNetworkAdapterList@@@Z
?GetNetworkAdapters@CWmi@@QAEHPAVCNetworkAdapterList@@@Z
?GetNumberOfProcessors@CDeviceProperties@@QAEKXZ
?GetOS@CWmi@@QAEIAAVCString@@000@Z
?GetOSComment@CDeviceProperties@@QAEPBDXZ
?GetOSName@CDeviceProperties@@QAEPBDXZ
?GetOSVersion@CDeviceProperties@@QAEPBDXZ
?GetOperationalStatus@CNetworkAdapter@@QAEPBDXZ
?GetOriginalFilename@CFileVersion@@QAE?AVCString@@XZ
?GetPageFileSize@CDeviceProperties@@QAEKXZ
?GetPercentFree@CLogicalDrive@@QAEPBDXZ
?GetPhysicalMemory@CDeviceProperties@@QAEKXZ
?GetPointingInterface@CInputDevice@@QAEPBDXZ
?GetPointingType@CInputDevice@@QAEPBDXZ
?GetPort@CPrinter@@QAEPBDXZ
?GetPrice@CDeviceInventory@@QAEPBDXZ
?GetPrice@CDeviceRepairs@@QAEPBDXZ
?GetPrinters@CRegistry@@QAEHPAVCPrinterList@@@Z

Sections

.text
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Zlib.dll
.dll windows:4 windows x86 arch:x86

43bdd40916b03a6ce3c7108f3f7f52ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_fdopen
fopen
_errno
malloc
sprintf
fwrite
fread
fclose
free
fprintf
fflush
fseek
rewind
fputc
calloc
_initterm
_adjust_fdiv
vsprintf
ftell

kernel32

DisableThreadLibraryCalls

Exports

Exports

adler32
compress
compress2
crc32
deflate
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflateReset
deflateSetDictionary
get_crc_table
gzclose
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzwrite
inflate
inflateEnd
inflateInit2_
inflateInit_
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
uncompress
unzClose
unzCloseCurrentFile
unzGetCurrentFileInfo
unzGetGlobalComment
unzGetGlobalInfo
unzGetLocalExtrafield
unzGoToFirstFile
unzGoToNextFile
unzLocateFile
unzOpen
unzOpen2
unzOpenCurrentFile
unzOpenCurrentFile2
unzReadCurrentFile
unzStringFileNameCompare
unzeof
unztell
zError
zipClose
zipCloseFileInZip
zipCloseFileInZipRaw
zipOpen
zipOpenNewFileInZip
zipOpenNewFileInZip2
zipWriteInFileInZip
zlibVersion

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 762B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
download.exe
.exe windows:4 windows x86 arch:x86

a7ab07d59b89a426a6d21ba77d70a76c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libeay32

ord270
ord510
ord316
ord268
ord269
ord267

zlib

ord6
ord4
ord8
ord20
ord19
ord21
ord3

mfc42

ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord713
ord815
ord414
ord561
ord825
ord3663
ord5859
ord6385
ord1979
ord823
ord535
ord537
ord6141
ord2820
ord3811
ord1168
ord2393
ord858
ord2614
ord3229
ord389
ord940
ord610
ord5857
ord287
ord2060
ord5356
ord350
ord5808
ord5204
ord2764
ord924
ord926
ord939
ord690
ord5710
ord1988
ord5207
ord4129
ord4278
ord6877
ord1200
ord641
ord656
ord609
ord798
ord1997
ord6407
ord5194
ord922
ord533
ord5465
ord5442
ord5572
ord3790
ord5440
ord6383
ord5450
ord6394
ord5265
ord4853
ord4998
ord6052
ord1775
ord5280
ord4425
ord3597
ord4407
ord3610
ord2575
ord5307
ord4078
ord1776
ord4396
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord3402
ord4627
ord3574
ord1146
ord567
ord324
ord2370
ord2302
ord4234
ord6380
ord6197
ord6379
ord4710
ord2379
ord6215
ord6199
ord5981
ord755
ord470
ord2514
ord4376
ord1980
ord3181
ord4058
ord2781
ord2770
ord941
ord668
ord356
ord6648
ord5683
ord6139
ord964
ord4202
ord2808
ord2827
ord2919
ord3318
ord1158
ord773
ord501
ord6876
ord4327
ord1083
ord5607
ord2762
ord6153
ord6928
ord6930
ord353
ord5651
ord3127
ord3616
ord550
ord5645
ord5583
ord3701
ord500
ord772
ord5860
ord6142
ord1832
ord3126
ord349
ord1833
ord2917
ord2803
ord958
ord6312
ord4177
ord6010
ord5773
ord2601
ord3180
ord3183
ord3176
ord3507
ord6264
ord4698
ord4079
ord2725
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord4673
ord354
ord860
ord5186
ord665
ord540
ord2818
ord2915
ord800
ord6055
ord1576

msvcrt

_chdir
_getcwd
__dllonexit
_onexit
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
fflush
malloc
memmove
_mbccpy
_mbsnbcmp
_mbsstr
_mbclen
_mbsncmp
_mbschr
_splitpath
_itoa
_ftol
ceil
_mbsicmp
free
system
_errno
strerror
strtok
_CxxThrowException
_mbscmp
atoi
atol
time
__CxxFrameHandler
_setmbcp
_ltoa

kernel32

DeleteFileA
CloseHandle
RemoveDirectoryA
FormatMessageA
LocalFree
GetSystemDefaultLangID
ReleaseMutex
GetCurrentDirectoryA
CreateProcessA
GetStartupInfoA
SetFilePointer
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SetVolumeLabelA
GetDriveTypeA
GetModuleHandleA
GetProcAddress
GetDiskFreeSpaceA
SetFileAttributesA
GetFileAttributesA
GetLastError
ExitProcess
FindClose
FindNextFileA
FindFirstFileA
GetPrivateProfileStringA
Sleep
SetCurrentDirectoryA
GetModuleFileNameA
CreateMutexA
ExpandEnvironmentStringsA
CopyFileA
MoveFileA
CreateDirectoryA
GetExitCodeProcess
WaitForSingleObject

user32

EnableWindow
GetClientRect
DrawIcon
MessageBoxA
GetSystemMetrics
IsIconic
LoadIconA
BringWindowToTop
GetWindowRect
SetTimer
SendMessageA

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
simona_8/Instalers/setclient.conf

Sharing

General

Malware Config

Signatures

Files

d2649867cedca90066a116140657c3c4

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 240KB - Virtual size: 236KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 2KB

51af09c6f94705a14d7c2cf34b244036

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 108KB

.ndata Size: - Virtual size: 40KB

.rsrc Size: 14KB - Virtual size: 16KB

741b6bafe355b63a372d737b30543a95

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 208B

.reloc Size: 512B - Virtual size: 412B

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 9KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 940B

815c88741b87a0210c457b00b57bf9c6

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 2KB

4107c274be99512943dedb53314a3190

Headers

DLL Characteristics

File Characteristics

.text
Size: 240KB - Virtual size: 236KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 2KB

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 108KB

.ndata
Size: - Virtual size: 40KB

.rsrc
Size: 14KB - Virtual size: 16KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 208B

.reloc
Size: 512B - Virtual size: 412B

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 9KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 940B

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 2KB

.text
Size: 217KB - Virtual size: 216KB

.rdata
Size: 64KB - Virtual size: 64KB

.data
Size: 9KB - Virtual size: 24KB

.rsrc
Size: 5KB - Virtual size: 4KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 92B

.reloc
Size: 512B - Virtual size: 494B

.text
Size: 1024B - Virtual size: 573B

.rdata
Size: 1024B - Virtual size: 576B

.data
Size: 512B - Virtual size: 45B

.reloc
Size: 512B - Virtual size: 132B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 340B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 356B

.reloc
Size: 512B - Virtual size: 408B