Frija-v1[.]4[.]2[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

Frija-v1.4.2.zip
Size

6.2MB
MD5

58c3ec4aec9663e58f5d61d3a1705dfc
SHA1

1a4a647120d85d5f77160e1e0785c0de03ac8dd0
SHA256

84f66faa3fdad1bd9b570dac25c3bfb9897e36b9fcac32da58811eae59c82688
SHA512

a4c2f6d5dd962efdce3d514fe1dbd29c5678af30806ea3326353781a9fb7f8eaf8b10933e2af331bf272aa42bee67e4e9180aba7ec5d239cb0f373f038e7ef1b
SSDEEP

196608:BSndRma27AMFjtYh8xz4QmyYs+FN+RoZRaK4:BWXkAMwh8xz4IcFNVR0

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/GlobalUtil.dll	acprotect

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/GlobalUtil.dll	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Frija.exe
unpack002/out.upx

Files

Frija-v1.4.2.zip
.zip
AgentModule.dll
.dll windows:5 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Code Sign

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

31/12/2015, 00:00

Not After

27/01/2017, 23:59

Subject

CN=Samsung Electronics CO.\, LTD.,O=Samsung Electronics CO.\, LTD.,L=Suwon,ST=Kyungki-Do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2d:4e:86:50:85:be:e0:0e:13:72:28:b3:d0:b1:32:e9
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

11/06/2015, 00:00

Not After

29/12/2020, 23:59

Subject

CN=GeoTrust 2048-bit Timestamping Signer 2,O=GeoTrust Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

01/01/1997, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

31/12/2015, 00:00

Not After

27/01/2017, 23:59

Subject

CN=Samsung Electronics CO.\, LTD.,O=Samsung Electronics CO.\, LTD.,L=Suwon,ST=Kyungki-Do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2d:4e:86:50:85:be:e0:0e:13:72:28:b3:d0:b1:32:e9
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

11/06/2015, 00:00

Not After

29/12/2020, 23:59

Subject

CN=GeoTrust 2048-bit Timestamping Signer 2,O=GeoTrust Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

01/01/1997, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

94:8e:fb:51:56:84:bf:2a:a0:61:ae:9f:9f:a3:0d:3c:f2:7b:53:3b:57:04:9c:aa:a7:3e:6b:20:91:27:57:93
Signer

Actual PE Digest

94:8e:fb:51:56:84:bf:2a:a0:61:ae:9f:9f:a3:0d:3c:f2:7b:53:3b:57:04:9c:aa:a7:3e:6b:20:91:27:57:93

Digest Algorithm

sha256

PE Digest Matches

true

bf:8c:4c:12:76:dd:30:e8:94:45:8a:5e:6d:b6:8f:4a:7d:3a:77:b7
Signer

Actual PE Digest

bf:8c:4c:12:76:dd:30:e8:94:45:8a:5e:6d:b6:8f:4a:7d:3a:77:b7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

??0?$AgentModuleSingleTone@VAgentModule@@@@QAE@XZ
??0AgentModule@@QAE@XZ
??0AgentNetworkModule@@QAE@ABV0@@Z
??0AgentNetworkModule@@QAE@XZ
??0AgentUtilModule@@QAE@XZ
??0BaseNetworkModule@@QAE@ABV0@@Z
??0CUnzipper@@QAE@ABV0@@Z
??0FileProcessAndTimeModule@@QAE@ABV0@@Z
??0NetworkModule@@QAE@ABV0@@Z
??1?$AgentModuleSingleTone@VAgentModule@@@@QAE@XZ
??1AgentModule@@QAE@XZ
??1AgentNetworkModule@@QAE@XZ
??1AgentUtilModule@@QAE@XZ
??4?$AgentModuleSingleTone@VAgentModule@@@@QAEAAV0@ABV0@@Z
??4AgentNetworkModule@@QAEAAV0@ABV0@@Z
??4AgentUtilModule@@QAEAAV0@ABV0@@Z
??4BaseNetworkModule@@QAEAAV0@ABV0@@Z
??4CStopWatch@@QAEAAV0@ABV0@@Z
??4CUnzipper@@QAEAAV0@ABV0@@Z
??4FileProcessAndTimeModule@@QAEAAV0@ABV0@@Z
??4GlobalFirmwareInfo@@QAEAAV0@ABV0@@Z
??4GlobalFunc@@QAEAAV0@ABV0@@Z
??4NetworkModule@@QAEAAV0@ABV0@@Z
??_7AgentModule@@6BBaseNetworkModule@@@
??_7AgentModule@@6BFileProcessAndTimeModule@@@
??_7AgentNetworkModule@@6BBaseNetworkModule@@@
??_7AgentNetworkModule@@6BFileProcessAndTimeModule@@@
??_7BaseNetworkModule@@6B@
??_7FileProcessAndTimeModule@@6B@
??_7NetworkModule@@6BBaseNetworkModule@@@
??_7NetworkModule@@6BFileProcessAndTimeModule@@@
?ApplicationDownloadRetryAgain@AgentNetworkModule@@CGXIIKKK@Z
?ApplicationDownloadingStatusCallBackFunc@AgentNetworkModule@@CGXW4_DOWNLOADING_STATUS@@PB_W_J2@Z
?CheckAgentParameter@AgentModule@@AAE_NAAVAgentParameter@@H@Z
?CheckEmergencyNoticePopupInfo@AgentUtilModule@@AAE_NPB_W@Z
?CheckEventDeviceController@AgentModule@@QAE_NXZ
?CompareCheckSize@AgentModule@@AAE_NPB_WH@Z
?DeleteAuthParamClientFile@AgentNetworkModule@@QAEXXZ
?FindEmergencyList@AgentUtilModule@@QAEXAAV?$vector@VUpdateDeviceInfo@@V?$allocator@VUpdateDeviceInfo@@@std@@@std@@@Z
?FindRecoveryList@AgentUtilModule@@QAEXHAAV?$vector@VUpdateDeviceInfo@@V?$allocator@VUpdateDeviceInfo@@@std@@@std@@@Z
?GetAddNoticeUrlLast@AgentModule@@QAEPB_WXZ
?GetAgentParameterPtr@AgentModule@@QAEPAVAgentParameter@@XZ
?GetAuthParamClientFileFullPath@AgentNetworkModule@@CAPB_WXZ
?GetComplete100S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete110S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete130L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete180S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete190S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete240S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetComplete290S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetCompleteURL@AgentUtilModule@@QAEPB_WPB_W0_N@Z
?GetCurrentUpdateNotice@AgentModule@@QAEPB_WXZ
?GetNoticeURL@AgentUtilModule@@QAEPB_WPAVUpdateDeviceInfo@@@Z
?GetNoticeUrlLast@AgentModule@@QAEPB_WXZ
?GetSingleTone@?$AgentModuleSingleTone@VAgentModule@@@@SAPAVAgentModule@@XZ
?GetUpdateApplicationInformation@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateApplicationInfo@@@Z
?GetUpdateInfo@AgentModule@@QAE_NW4_FUS_UPDATE_BINARY_TYPE@@PAVAgentParameter@@AAVFUSUpdateInfo@@@Z
?GetUpdateInfo_EmergencyList@AgentModule@@QAE_NPAVAgentParameter@@AAVFUSUpdateInfo@@@Z
?GetUpdateInfo_Native@AgentModule@@AAE_NW4_FUS_UPDATE_BINARY_TYPE@@PAVAgentParameter@@AAVFUSUpdateInfo@@@Z
?GetUpdateInfo_ZLog@AgentModule@@QAE_NW4_FUS_UPDATE_BINARY_TYPE@@PAVAgentParameter@@AAVFUSUpdateInfo@@@Z
?GetUrl100S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl110S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl130K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl130L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl180K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl180L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl180S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl180W@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl190S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl220L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl240S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl290K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrl290S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE110S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE120K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE120L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE120S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE140K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE140L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE140S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE150S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE160K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE160L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlE160S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM210S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM250K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM250L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM250S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM305W@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM340K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM340L@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM340S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM380K@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM380S@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM380W@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlM430W@AgentUtilModule@@AAEPB_WPB_W@Z
?GetUrlPlayer_GB@AgentUtilModule@@AAEPB_WPB_W@Z
?InitializeAgentParameter@AgentModule@@QAE_NPB_W000000000000H0HAAVAgentParameter@@00@Z
?IsBadaTempBinaryUpdatedModel@AgentModule@@QAE_NAAVFUSUpdateInfo@@AAVUpdateDeviceInfo@@AAVAgentParameter@@@Z
?IsBootUpgradeModel@AgentUtilModule@@QAE_NPB_W@Z
?IsRunning@CStopWatch@@QAE_NXZ
?MakeAuthorizationHeaderWithGeneratedNonceValueAndAMModule@AgentNetworkModule@@CAPB_WPB_W@Z
?MakeMemCheckZLogFirst_RequestInfoMap@AgentNetworkModule@@AAEXAAVUpdateDeviceInfo@@AAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@@Z
?MakeZLogFirst_RequestInfoMap@AgentNetworkModule@@AAEXAAVUpdateDeviceInfo@@AAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@@Z
?MakeZLog_RequestInfoMap@AgentNetworkModule@@AAEXAAVUpdateDeviceInfo@@AAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@@Z
?MemoryCheckString@AgentModule@@AAEXHAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?NeedApplicationUpdate@AgentModule@@QAE_NAAVUpdateApplicationInfo@@@Z
?NeedFirmwareUpdateRecovery@AgentModule@@QAE_NXZ
?NotiAllDownloadBinaryProcessingHasBeenEnded@AgentNetworkModule@@MAEX_N@Z
?ObexBatteryCheck@AgentModule@@QAE_NPB_WAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ObexMemSizeCheck@AgentModule@@QAE_NHPB_WAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ObexRootingCheck@AgentModule@@QAEHPB_WAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ParseObexMemSizeCheckResponse@AgentModule@@AAE_NHV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@HAAV23@@Z
?ParseObexMemSizeCheckResponse_Tizen@AgentModule@@AAE_NHV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@HHAAV23@@Z
?ParsingNoticeURL@AgentUtilModule@@QAEPB_WAAH0PB_W@Z
?QueryLatestMP3PVersionFromServer@AgentNetworkModule@@QAE_NPB_W0000AAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ReceiveAndProcessNFModuleSignal@AgentNetworkModule@@CA_NI@Z
?SendAuthorizationHeaderResponseSignal@AgentNetworkModule@@CA_NPB_W@Z
?SendMemCheckZLogInformation@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@@Z
?SendZLogInformation@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@@Z
?SendZLogInformation_Obex@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@@Z
?SetAddNoticeUrlLast@AgentModule@@QAEXPB_W@Z
?SetAgentParameter@AgentModule@@QAEXAAVAgentParameter@@@Z
?SetCurrentUpdateNotice@AgentModule@@QAEXPB_W@Z
?SetEventDeviceContoller@AgentModule@@QAEX_N@Z
?SetNoticeUrlLast@AgentModule@@QAEXPB_W@Z
?SignalReceiverForNFModuleThreadFunc@AgentNetworkModule@@CAIPAX@Z
?StartDownloadApplication@AgentNetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateApplicationInfo@@@Z
?StartPredownload@AgentModule@@QAEXXZ
?StartSignalReceiverForNFModule@AgentNetworkModule@@QAEXXZ
?WaitBinaryWebDownloadCompleteEvent@AgentModule@@QAE_NXZ
?m_bStopDeviceController@AgentModule@@0_NA
?m_eventStopDeviceController@AgentModule@@0VCEvent@@A
?m_pSingleTone@?$AgentModuleSingleTone@VAgentModule@@@@0PAVAgentModule@@A

Sections

Size: 40KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 732KB - Virtual size: 803KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gfldpqkw
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ydlmwkpa
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
CommonModule.dll
.dll windows:5 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Code Sign

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

31/12/2015, 00:00

Not After

27/01/2017, 23:59

Subject

CN=Samsung Electronics CO.\, LTD.,O=Samsung Electronics CO.\, LTD.,L=Suwon,ST=Kyungki-Do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

5f:d6:93:fa:b0:98:e3:f4:67:7b:b8:cb:67:2c:22:9e
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

11/06/2015, 00:00

Not After

29/12/2020, 23:59

Subject

CN=GeoTrust 2048-bit Timestamping Signer 1,O=GeoTrust Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

01/01/1997, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

31/12/2015, 00:00

Not After

27/01/2017, 23:59

Subject

CN=Samsung Electronics CO.\, LTD.,O=Samsung Electronics CO.\, LTD.,L=Suwon,ST=Kyungki-Do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

70:a0:1c:f4:ea:ef:99:fd:46:6c:ed:16:30:c1:b0:1f
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

11/06/2015, 00:00

Not After

29/12/2020, 23:59

Subject

CN=GeoTrust 2048-bit Timestamping Signer 4,O=GeoTrust Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

01/01/1997, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

9b:87:bf:c0:6a:6f:ac:7a:f6:4e:4b:94:e9:29:47:4e:a6:ea:e2:c4:2b:fc:76:ab:a3:b6:02:7d:69:67:2a:2e
Signer

Actual PE Digest

9b:87:bf:c0:6a:6f:ac:7a:f6:4e:4b:94:e9:29:47:4e:a6:ea:e2:c4:2b:fc:76:ab:a3:b6:02:7d:69:67:2a:2e

Digest Algorithm

sha256

PE Digest Matches

true

5b:71:12:18:7e:b3:93:8c:6c:14:f3:cf:bc:84:18:31:66:2a:48:a1
Signer

Actual PE Digest

5b:71:12:18:7e:b3:93:8c:6c:14:f3:cf:bc:84:18:31:66:2a:48:a1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

??0AgentParameter@@QAE@ABV0@@Z
??0AgentParameter@@QAE@XZ
??0BaseNetworkModule@@QAE@ABV0@@Z
??0BaseNetworkModule@@QAE@XZ
??0CEachItemNode@@QAE@ABV0@@Z
??0CEachItemNode@@QAE@PB_W000@Z
??0CEachItemNode@@QAE@XZ
??0CUnzipper@@QAE@ABV0@@Z
??0CUnzipper@@QAE@XZ
??0DeviceDBItem@@QAE@ABV0@@Z
??0DeviceDBItem@@QAE@XZ
??0FUSUpdateInfo@@QAE@ABV0@@Z
??0FUSUpdateInfo@@QAE@XZ
??0FileProcessAndTimeModule@@QAE@ABV0@@Z
??0FileProcessAndTimeModule@@QAE@XZ
??0GlobalFirmwareInfo@@QAE@XZ
??0MP3PUpdateInfo@@QAE@ABV0@@Z
??0MP3PUpdateInfo@@QAE@XZ
??0NetworkModule@@QAE@ABV0@@Z
??0NetworkModule@@QAE@XZ
??0PredownloadInfoItem@@QAE@ABV0@@Z
??0PredownloadInfoItem@@QAE@XZ
??0UpdateApplicationInfo@@QAE@ABV0@@Z
??0UpdateApplicationInfo@@QAE@XZ
??0UpdateDeviceInfo@@QAE@ABV0@@Z
??0UpdateDeviceInfo@@QAE@ABVAgentParameter@@@Z
??0UpdateDeviceInfo@@QAE@XZ
??1AgentParameter@@QAE@XZ
??1BaseNetworkModule@@QAE@XZ
??1CEachItemNode@@QAE@XZ
??1CUnzipper@@QAE@XZ
??1DeviceDBItem@@QAE@XZ
??1FUSUpdateInfo@@QAE@XZ
??1FileProcessAndTimeModule@@QAE@XZ
??1GlobalFirmwareInfo@@QAE@XZ
??1MP3PUpdateInfo@@QAE@XZ
??1NetworkModule@@QAE@XZ
??1PredownloadInfoItem@@QAE@XZ
??1UpdateApplicationInfo@@QAE@XZ
??1UpdateDeviceInfo@@QAE@XZ
??4AgentParameter@@QAEAAV0@ABV0@@Z
??4BaseNetworkModule@@QAEAAV0@ABV0@@Z
??4CEachItemNode@@QAEAAV0@ABV0@@Z
??4CStopWatch@@QAEAAV0@ABV0@@Z
??4CUnzipper@@QAEAAV0@ABV0@@Z
??4DeviceDBItem@@QAEAAV0@ABV0@@Z
??4FUSUpdateInfo@@QAEAAV0@ABV0@@Z
??4FileProcessAndTimeModule@@QAEAAV0@ABV0@@Z
??4GlobalFirmwareInfo@@QAEAAV0@ABV0@@Z
??4GlobalFunc@@QAEAAV0@ABV0@@Z
??4MP3PUpdateInfo@@QAEAAV0@ABV0@@Z
??4NetworkModule@@QAEAAV0@ABV0@@Z
??4PredownloadInfoItem@@QAEAAV0@ABV0@@Z
??4UpdateApplicationInfo@@QAEAAV0@ABV0@@Z
??4UpdateDeviceInfo@@QAEAAV0@ABV0@@Z
??8AgentParameter@@QBE_NABV0@@Z
??8CEachItemNode@@QBEHABV0@@Z
??8DeviceDBItem@@QAE?B_NABV0@@Z
??8FUSUpdateInfo@@QAE?B_NABV0@@Z
??8MP3PUpdateInfo@@QBE_NABV0@@Z
??8PredownloadInfoItem@@QBE_NABV0@@Z
??8UpdateApplicationInfo@@QBE_NABV0@@Z
??8UpdateDeviceInfo@@QBE_NABV0@@Z
??9AgentParameter@@QBE_NABV0@@Z
??9CEachItemNode@@QBEHABV0@@Z
??9DeviceDBItem@@QAE?B_NABV0@@Z
??9FUSUpdateInfo@@QAE?B_NABV0@@Z
??9MP3PUpdateInfo@@QBE_NABV0@@Z
??9PredownloadInfoItem@@QBE_NABV0@@Z
??9UpdateApplicationInfo@@QBE_NABV0@@Z
??9UpdateDeviceInfo@@QBE_NABV0@@Z
??_7BaseNetworkModule@@6B@
??_7FileProcessAndTimeModule@@6B@
??_7NetworkModule@@6BBaseNetworkModule@@@
??_7NetworkModule@@6BFileProcessAndTimeModule@@@
?AdminDelegator_DeleteTargetFile@FileProcessAndTimeModule@@QAE_NPB_W@Z
?AdminDelegator_DriverSearchOrderConfigChange@FileProcessAndTimeModule@@QAE_NXZ
?AdminDelegator_End@FileProcessAndTimeModule@@QAEXXZ
?AdminDelegator_ExecuteCmd@FileProcessAndTimeModule@@QAE_NPB_WH_N@Z
?AdminDelegator_GetAuthorityAsAdmin@FileProcessAndTimeModule@@QAE_NXZ
?AdminDelegator_InstallCopyFile@FileProcessAndTimeModule@@QAE_NPB_W0@Z
?CancelCurrentFileDownloading@BaseNetworkModule@@IAEX_N@Z
?ChangeFileDate@CUnzipper@@AAEHPBD@Z
?CharToUnicode@CUnzipper@@AAEPA_WPADPAH@Z
?CheckEmergencyBinaryFile@UpdateDeviceInfo@@QAE_NXZ
?CheckRawHTTPHeader@BaseNetworkModule@@CA_NAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?CheckTempBinary@NetworkModule@@AAE_NAAVUpdateDeviceInfo@@AAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@1@Z
?CheckXMLResultStatusValue@NetworkModule@@IAE?AW4_FUSErrorCode@@XZ
?CloseNetwork@BaseNetworkModule@@AAEXXZ
?CloseTargetXML@BaseNetworkModule@@IAEXXZ
?CloseZipFile@CUnzipper@@QAEXXZ
?ConnectHTTPSession@BaseNetworkModule@@AAE_NPB_W000@Z
?ContinueBackupFlag@UpdateDeviceInfo@@QBE?AW4_FUS_BNR_SUPPORT@@XZ
?ConvertRequestInfoMapToArgumentsToXMLMap@BaseNetworkModule@@IAEXV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@AAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@VCEachItemNode@@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@VCEachItemNode@@@std@@@5@@3@@Z
?CreateDirectoryTree@CUnzipper@@AAE_NPB_W@Z
?DebugAndLogPrint_MultiByte@CUnzipper@@SAXPBDZZ
?DecryptEndCallBack@FileProcessAndTimeModule@@CGX_NPB_W1W4_SET_JOB_CALLBACK_RESULT@@@Z
?DecryptThreadFunc@FileProcessAndTimeModule@@CAIPAX@Z
?DecryptionJobEnded@NetworkModule@@MAEX_NPB_W1W4_SET_JOB_CALLBACK_RESULT@@@Z
?DeleteKeyAndValueFromInfoMap@BaseNetworkModule@@IAEXPB_WAAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@@Z
?DeleteQueryinfoReg@UpdateDeviceInfo@@QAEXXZ
?DeleteRecoveryReg@UpdateDeviceInfo@@QAEXPB_W0@Z
?DeleteRecoveryRegInfo@UpdateDeviceInfo@@QAEXXZ
?DeleteTargetFile@FileProcessAndTimeModule@@QAEXPB_W@Z
?DirectoryCopy@FileProcessAndTimeModule@@QAE_NPB_W0@Z
?DirectoryDelete@FileProcessAndTimeModule@@QAEXPB_W@Z
?DoSNInitializeOrNot@UpdateDeviceInfo@@QBE_NXZ
?DownloadApplicationDO@NetworkModule@@IAE?AW4_FUSErrorCode@@AAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@PB_WP6GXW4_DOWNLOADING_STATUS@@1_J3@Z@Z
?DownloadBinaryDO@NetworkModule@@IAE?AW4_FUSErrorCode@@AAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@PB_WP6GXW4_DOWNLOADING_STATUS@@1_J3@Z_N@Z
?DownloadOneFile@BaseNetworkModule@@IAE_NW4_NETWORK_REQUEST_TYPE@@PB_WAAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@P6GXW4_DOWNLOADING_STATUS@@1_J4@Z1_N6@Z
?DownloadThreadFunc@BaseNetworkModule@@CAIPAX@Z
?ExcutePDLRProcess@FileProcessAndTimeModule@@QAEXXZ
?ExecuteConsoleProgram@FileProcessAndTimeModule@@QAE_NPB_WAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@0@Z
?ExecutePluginOrNot@UpdateDeviceInfo@@QBE_NXZ
?ExecuteTargetProgram@FileProcessAndTimeModule@@QAE_NPB_W0_N@Z
?ExecuteTargetProgramWithCreateProcess@FileProcessAndTimeModule@@QAE_NPB_W@Z
?ExtractNonceValueFromHTTPHeader@BaseNetworkModule@@AAE_NAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?ExtractRawHTTPHeader@BaseNetworkModule@@CA_NAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?FileCopyToTempFolder@NetworkModule@@IAEXXZ
?FileExist@CUnzipper@@AAE_NPB_W@Z
?FileUnZip_2GOver@FileProcessAndTimeModule@@CA_NPB_W0_N@Z
?FinishAllDownloadingJob@NetworkModule@@QAEX_N0@Z
?GetAbsoluteSupport@UpdateDeviceInfo@@QBEPB_WXZ
?GetAccessModeToString@UpdateDeviceInfo@@QAEPB_WXZ
?GetAddAnnounce@UpdateDeviceInfo@@QBEPB_WXZ
?GetAddAnnounceFlag@UpdateDeviceInfo@@QBEPB_WXZ
?GetAddDescription@UpdateDeviceInfo@@QBEPB_WXZ
?GetAddDescriptionFlag@UpdateDeviceInfo@@QBEPB_WXZ
?GetAddLatestDisplayVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetAddLatestFWVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetAddNoticeUrlFirst@UpdateDeviceInfo@@QBEPB_WXZ
?GetAddNoticeUrlLast@UpdateDeviceInfo@@QBEPB_WXZ
?GetAddOSVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetAgentVersion@GlobalFirmwareInfo@@SAPB_WXZ
?GetAgentVersion@UpdateApplicationInfo@@QBEPB_WXZ
?GetAgentVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetAllAppVersion@GlobalFirmwareInfo@@SAPB_WPB_W_N@Z
?GetAmss_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetAmss_File_BD20@DeviceDBItem@@QBEPB_WXZ
?GetAmss_File_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetAndroidCurrentDisplayVersion@UpdateDeviceInfo@@QAEXXZ
?GetAndroidOSListLength@GlobalFirmwareInfo@@SAHXZ
?GetAndroidOSVersionIndex@GlobalFirmwareInfo@@SAHPB_W@Z
?GetAnnounce@UpdateDeviceInfo@@QBEPB_WXZ
?GetAnnounceFlag@UpdateDeviceInfo@@QBEPB_WXZ
?GetApplicationLanguageCode@GlobalFirmwareInfo@@SAPB_WXZ
?GetApplicationMidPath@GlobalFirmwareInfo@@SAPB_WXZ
?GetApplicationType@UpdateApplicationInfo@@QBE?AW4_APPLICATION_TYPE@@XZ
?GetApplicationVersion@GlobalFirmwareInfo@@SAPB_WXZ
?GetApplicationVersion@UpdateApplicationInfo@@QBEPB_WXZ
?GetApplicationWorkingFolder@GlobalFirmwareInfo@@SAPB_WXZ
?GetApps_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetApps_File_BD20@DeviceDBItem@@QBEPB_WXZ
?GetApps_File_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetAuthorizationHeader@BaseNetworkModule@@MAE_NPB_WAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?GetBadaDLPath_BD20@DeviceDBItem@@QBEPB_WXZ
?GetBadaDLPath_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetBadaDLPath_BD20_TEMP@DeviceDBItem@@QBEPB_WXZ
?GetBadaDLPath_BD20_TEMP@UpdateDeviceInfo@@QBEPB_WXZ
?GetBadaPreDLPath_BD20@DeviceDBItem@@QBEPB_WXZ
?GetBadaPreDLPath_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetBadaPreDLPath_BD20_TEMP@DeviceDBItem@@QBEPB_WXZ
?GetBadaPreDLPath_BD20_TEMP@UpdateDeviceInfo@@QBEPB_WXZ
?GetBadaTempDeviceDownloadTime@DeviceDBItem@@QBEPB_WXZ
?GetBadaTempDeviceDownloadTime@UpdateDeviceInfo@@QBEPB_WXZ
?GetBadaTempTotalFUSTime@UpdateDeviceInfo@@QBEPB_WXZ
?GetBadaTempWebDownloadTime@DeviceDBItem@@QBEPB_WXZ
?GetBadaTempWebDownloadTime@UpdateDeviceInfo@@QBEPB_WXZ
?GetBadaTotalFusTime@DeviceDBItem@@QBEPB_WXZ
?GetBadaUpdateMode@AgentParameter@@QBEHXZ
?GetBadaUpdateState_BD20@DeviceDBItem@@QBEPB_WXZ
?GetBadaUpdateState_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetBatteryPercent@UpdateDeviceInfo@@QBEPB_WXZ
?GetBatteryStandards@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinaryByteSize@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinaryCRC@MP3PUpdateInfo@@QBEPB_WXZ
?GetBinaryCrc@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinaryCrc_BD20@DeviceDBItem@@QBEPB_WXZ
?GetBinaryCrc_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinaryFileName@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinaryFolder_BD20@DeviceDBItem@@QBEPB_WXZ
?GetBinaryFolder_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinaryName@MP3PUpdateInfo@@QBEPB_WXZ
?GetBinaryName_BD20@DeviceDBItem@@QBEPB_WXZ
?GetBinaryName_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinarySize@FUSUpdateInfo@@QBEHXZ
?GetBinarySize@MP3PUpdateInfo@@QBEPB_WXZ
?GetBinarySize@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinarySize_BD20@DeviceDBItem@@QBEPB_WXZ
?GetBinarySize_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinary_Folder@UpdateDeviceInfo@@QBEPB_WXZ
?GetBinary_Type@UpdateDeviceInfo@@QBEPB_WXZ
?GetBoot_Address@UpdateDeviceInfo@@QBEPB_WXZ
?GetBoot_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetBsy_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetButtonType@FUSUpdateInfo@@QBEPB_WXZ
?GetButtonType@UpdateDeviceInfo@@QBEPB_WXZ
?GetBuyerCode@DeviceDBItem@@QBEPB_WXZ
?GetBuyerCode@MP3PUpdateInfo@@QBEPB_WXZ
?GetBuyerCode@UpdateDeviceInfo@@QBEPB_WXZ
?GetCDNTraffic@UpdateDeviceInfo@@QBEPB_WXZ
?GetCDNTrafficOption@UpdateDeviceInfo@@QBEPB_WXZ
?GetCDNUrl@GlobalFirmwareInfo@@SAPB_WXZ
?GetCDNUrl@MP3PUpdateInfo@@QBEPB_WXZ
?GetCSCVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetCSC_Code2_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetCSC_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetCSC_File_BD20@DeviceDBItem@@QBEPB_WXZ
?GetCSC_File_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetCSC_Home_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetCallerProgram@GlobalFirmwareInfo@@SA?AW4_RUNNING_PROGRAM@@XZ
?GetCarrierTestMode@AgentParameter@@QBEHXZ
?GetCarrierTestMode@UpdateDeviceInfo@@QBEHXZ
?GetCds_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetCode1_Address@UpdateDeviceInfo@@QBEPB_WXZ
?GetCode2_Address@UpdateDeviceInfo@@QBEPB_WXZ
?GetCommonDisplayUpdateInfo@UpdateDeviceInfo@@QAEXXZ
?GetCommonDisplayVersion@UpdateDeviceInfo@@QAEPB_WPB_W@Z
?GetCommonPlugin@AgentParameter@@QBEPB_WXZ
?GetCommonPlugin@DeviceDBItem@@QBEPB_WXZ
?GetCommonPlugin@FUSUpdateInfo@@QBEPB_WXZ
?GetCommonPlugin@UpdateDeviceInfo@@QBEPB_WXZ
?GetContentVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetContents_Data_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetCurrentApplicationType@GlobalFirmwareInfo@@SA?AW4_APPLICATION_TYPE@@XZ
?GetCurrentApplicationTypeToString@GlobalFirmwareInfo@@SAPB_WXZ
?GetCurrentCarrierTestMode@GlobalFirmwareInfo@@SAHXZ
?GetCurrentDisplayVersion@FUSUpdateInfo@@QBEPB_WXZ
?GetCurrentDisplayVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetCurrentDownloadingFileFullPath@NetworkModule@@QAEPB_WXZ
?GetCurrentDownloadingStatus@BaseNetworkModule@@IAE?AW4_DOWNLOADING_STATUS@@XZ
?GetCurrentDownloadingUpdateApplicationInfoPtr@NetworkModule@@QAEPAVUpdateApplicationInfo@@XZ
?GetCurrentDownloadingUpdateDeviceInfoPtr@NetworkModule@@QAEPAVUpdateDeviceInfo@@XZ
?GetCurrentFWVersion@MP3PUpdateInfo@@QBEPB_WXZ
?GetCurrentModelVersion@MP3PUpdateInfo@@QBEPB_WXZ
?GetCurrentOSVersion@FUSUpdateInfo@@QBEPB_WXZ
?GetCurrentOSVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetCurrentSecurityID@GlobalFirmwareInfo@@SAPB_WXZ
?GetCurrentSecurityPassword@GlobalFirmwareInfo@@SAPB_WXZ
?GetCurrentTargetZipFilePath@FileProcessAndTimeModule@@QBEPB_WXZ
?GetCurrentZipFolderPath@FileProcessAndTimeModule@@QBEPB_WXZ
?GetDSP1_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetDSP2_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetData@CEachItemNode@@QBEPB_WXZ
?GetData_Address@UpdateDeviceInfo@@QBEPB_WXZ
?GetDescription@UpdateDeviceInfo@@QBEPB_WXZ
?GetDescriptionFlag@UpdateDeviceInfo@@QBEPB_WXZ
?GetDescription_BD20@DeviceDBItem@@QBEPB_WXZ
?GetDescription_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetDeviceDBInfoFromRegistry@DeviceDBItem@@QAE_NXZ
?GetDeviceDBListCount@GlobalFirmwareInfo@@SAHXZ
?GetDeviceDBListItem@GlobalFirmwareInfo@@SAPB_WH@Z
?GetDeviceDetached@NetworkModule@@QAE_NXZ
?GetDeviceID@AgentParameter@@QBEPB_WXZ
?GetDeviceID@DeviceDBItem@@QBEHXZ
?GetDeviceID@UpdateDeviceInfo@@QBEHXZ
?GetDeviceLocalCode@MP3PUpdateInfo@@QBEPB_WXZ
?GetDevicePlatform@AgentParameter@@QBEPB_WXZ
?GetDevicePlatform@DeviceDBItem@@QBEPB_WXZ
?GetDevicePlatform@FUSUpdateInfo@@QBEPB_WXZ
?GetDevicePlatform@MP3PUpdateInfo@@QBEPB_WXZ
?GetDevicePlatform@UpdateDeviceInfo@@QBEPB_WXZ
?GetDevicePlatformFromServer@UpdateDeviceInfo@@QAEXPB_W@Z
?GetDevicePlatformNameByModelName@GlobalFirmwareInfo@@SAPB_WPB_W@Z
?GetDeviceProductCode@UpdateDeviceInfo@@QBEPB_WXZ
?GetDeviceSN@DeviceDBItem@@QBEPB_WXZ
?GetDisplayFirmwareVersion@UpdateDeviceInfo@@QAEPB_WPB_W@Z
?GetDisplayFirmwareVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetDisplayModelName@FUSUpdateInfo@@QBEPB_WXZ
?GetDisplayModelName@UpdateDeviceInfo@@QBEPB_WXZ
?GetDisplayName@AgentParameter@@QBEPB_WXZ
?GetDisplayName@DeviceDBItem@@QBEPB_WXZ
?GetDisplayNewVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetDisplayUpdateInfo@UpdateDeviceInfo@@QAEXXZ
?GetDllType@DeviceDBItem@@QBEPB_WXZ
?GetDllType@GlobalFirmwareInfo@@SAPB_WPB_W@Z
?GetDllType@UpdateDeviceInfo@@QBEPB_WXZ
?GetDownloadBinarySize@UpdateDeviceInfo@@QBEPB_WXZ
?GetDownloadCompletedNotice@MP3PUpdateInfo@@QBEPB_WXZ
?GetDownloadFileInfo@BaseNetworkModule@@IAE_NPB_WAAV?$map@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@U?$less@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@V?$allocator@U?$pair@$$CBV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@std@@@4@@std@@AAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@2@Z
?GetEFS_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetEmergencyBinaryPRDCode@DeviceDBItem@@QBEPB_WXZ
?GetEmergencyBinaryPRDCode@UpdateDeviceInfo@@QBEPB_WXZ
?GetEmergencyBinaryType@UpdateDeviceInfo@@QBE?AW4_FUS_UPDATE_BINARY_TYPE@@XZ
?GetEmergencyBinaryVersion@DeviceDBItem@@QBEPB_WXZ
?GetEmergencyBinaryVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetEmergencyMode@DeviceDBItem@@QBEPB_WXZ
?GetEmergencyNoticePopup@DeviceDBItem@@QBEPB_WXZ
?GetEmergencyOTPCode@AgentParameter@@QBEPB_WXZ
?GetEmergencyOTPCode@UpdateApplicationInfo@@QBEPB_WXZ
?GetEmergencyOTPCode@UpdateDeviceInfo@@QBEPB_WXZ
?GetEmergencyOTPCode_BD20@DeviceDBItem@@QBEPB_WXZ
?GetEmergencyOTPCode_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetEmergencyOTPCode_BD20_TEMP@DeviceDBItem@@QBEPB_WXZ
?GetEmergencyOTPCode_BD20_TEMP@UpdateDeviceInfo@@QBEPB_WXZ
?GetEmergencyPath@DeviceDBItem@@QBEPB_WXZ
?GetEmergencyPath@UpdateDeviceInfo@@QBEPB_WXZ
?GetEmergencyPath_BD20@DeviceDBItem@@QBEPB_WXZ
?GetEmergencyPath_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetErrorCode@FUSUpdateInfo@@QBEHXZ
?GetFUSErrorStringByFusErrorCode@GlobalFirmwareInfo@@SAPB_WW4_FUSErrorCode@@@Z
?GetFUSTime@FileProcessAndTimeModule@@QAEPB_WXZ
?GetFW_Index_BD20@DeviceDBItem@@QBEPB_WXZ
?GetFW_Index_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetFactoryDoExist@DeviceDBItem@@QBEPB_WXZ
?GetFactoryFileExist@FUSUpdateInfo@@QBE?AW4_FACTORY_FILE_EXIST@@XZ
?GetFactoryFileExist@UpdateDeviceInfo@@QBE?AW4_FACTORY_FILE_EXIST@@XZ
?GetFactoryKeyType@UpdateDeviceInfo@@QBEPB_WXZ
?GetFactoryModeSupport@UpdateDeviceInfo@@QBE?AW4_FACTORY_SUPPORT@@XZ
?GetFactorySupport@DeviceDBItem@@QBEPB_WXZ
?GetFactorySupport@FUSUpdateInfo@@QBE?AW4_FACTORY_SUPPORT@@XZ
?GetFirmwareVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetFont_Address@UpdateDeviceInfo@@QBEPB_WXZ
?GetFota_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetFota_File_BD20@DeviceDBItem@@QBEPB_WXZ
?GetFota_File_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetFusBinaryType@DeviceDBItem@@QBEPB_WXZ
?GetHardwareID@DeviceDBItem@@QBEPB_WXZ
?GetHardwareID@UpdateDeviceInfo@@QBEPB_WXZ
?GetHidBinVersion@AgentParameter@@QBEPB_WXZ
?GetHiddenVersion@DeviceDBItem@@QBEPB_WXZ
?GetHiddenVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetIMEI@AgentParameter@@QBEPB_WXZ
?GetIMEI@DeviceDBItem@@QBEPB_WXZ
?GetIMEI@UpdateDeviceInfo@@QBEPB_WXZ
?GetIMEIPush@UpdateDeviceInfo@@QBEPB_WXZ
?GetIni_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetIsNullPhoneNum@UpdateDeviceInfo@@QBEPB_WXZ
?GetIsPhoneSave@AgentParameter@@QBEPB_WXZ
?GetKiesDevconinfo@AgentParameter@@QBEPB_WXZ
?GetKiesVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetKoreaDeviceType@DeviceDBItem@@QBEPB_WXZ
?GetKoreaDeviceType@GlobalFirmwareInfo@@SAPB_WPB_W@Z
?GetKoreaDeviceType@UpdateDeviceInfo@@QBEPB_WXZ
?GetLangCode@UpdateDeviceInfo@@QBEPB_WXZ
?GetLanguage_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetLastModified_BD20@DeviceDBItem@@QBEPB_WXZ
?GetLastModified_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetLastUpdate@DeviceDBItem@@QBEPB_WXZ
?GetLastUpdate@UpdateDeviceInfo@@QBEPB_WXZ
?GetLatestDisplayVersion@FUSUpdateInfo@@QBEPB_WXZ
?GetLatestDisplayVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetLatestDisplayVersion_BD20@DeviceDBItem@@QBEPB_WXZ
?GetLatestDisplayVersion_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetLatestFWVersion@MP3PUpdateInfo@@QBEPB_WXZ
?GetLatestFWVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetLatestFWVersion_BD20@DeviceDBItem@@QBEPB_WXZ
?GetLatestFWVersion_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetLatestModelVersion@MP3PUpdateInfo@@QBEPB_WXZ
?GetLatestOSVersion@FUSUpdateInfo@@QBEPB_WXZ
?GetLatestOSVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetLogAccessModeToString@MP3PUpdateInfo@@QAEPB_WXZ
?GetLogAccessModeToString@UpdateDeviceInfo@@QAEPB_WXZ
?GetLogResultCode@FileProcessAndTimeModule@@QAE?AW4_LogResultCode@@XZ
?GetLogResultCodeToString@FileProcessAndTimeModule@@QAEPB_WXZ
?GetLogicOptionFactory@UpdateDeviceInfo@@QBEPB_WXZ
?GetLogicOptionHome@UpdateDeviceInfo@@QBEPB_WXZ
?GetLogicValueFactory@UpdateDeviceInfo@@QBEPB_WXZ
?GetLogicValueHome@UpdateDeviceInfo@@QBEPB_WXZ
?GetMCC@AgentParameter@@QBEPB_WXZ
?GetMCC@DeviceDBItem@@QBEPB_WXZ
?GetMCC@UpdateDeviceInfo@@QBEPB_WXZ
?GetMNC@AgentParameter@@QBEPB_WXZ
?GetMNC@DeviceDBItem@@QBEPB_WXZ
?GetMNC@UpdateDeviceInfo@@QBEPB_WXZ
?GetMRLatestDisplayVersion@FUSUpdateInfo@@QBEPB_WXZ
?GetMachineName@DeviceDBItem@@QBEPB_WXZ
?GetMemAnnounce@FUSUpdateInfo@@QBEPB_WXZ
?GetMemSizeCheck@FUSUpdateInfo@@QBEHXZ
?GetMemoryAnnounce@UpdateDeviceInfo@@QBEPB_WXZ
?GetMemorySizeCheck@UpdateDeviceInfo@@QBEHXZ
?GetModelName@AgentParameter@@QBEPB_WXZ
?GetModelName@DeviceDBItem@@QBEPB_WXZ
?GetModelName@MP3PUpdateInfo@@QBEPB_WXZ
?GetModelName@PredownloadInfoItem@@QBEPB_WXZ
?GetModelName@UpdateApplicationInfo@@QBEPB_WXZ
?GetModelName@UpdateDeviceInfo@@QBEPB_WXZ
?GetModelPath@MP3PUpdateInfo@@QBEPB_WXZ
?GetModelPath@UpdateDeviceInfo@@QBEPB_WXZ
?GetModelType@MP3PUpdateInfo@@QBEPB_WXZ
?GetModelType@UpdateDeviceInfo@@QBEPB_WXZ
?GetName@CEachItemNode@@QBEPB_WXZ
?GetNationCode@AgentParameter@@QBEPB_WXZ
?GetNewPlatform@UpdateDeviceInfo@@QBEPB_WXZ
?GetNewVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetNotSupportPreDownload@DeviceDBItem@@QBEPB_WXZ
?GetNoticeUrlFirst@UpdateDeviceInfo@@QBEPB_WXZ
?GetNoticeUrlLast@UpdateDeviceInfo@@QBEPB_WXZ
?GetOperatorFromModelName@GlobalFirmwareInfo@@SAPB_WPB_W@Z
?GetPDAVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetPDA_Code1_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetPDLRProcessName@GlobalFirmwareInfo@@SAPB_WXZ
?GetPFSSize@UpdateDeviceInfo@@QBEPB_WXZ
?GetPfs_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetPfs_File_BD20@DeviceDBItem@@QBEPB_WXZ
?GetPfs_File_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetPfs_Size_BD20@DeviceDBItem@@QBEPB_WXZ
?GetPfs_Size_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetPhoneNumber2@DeviceDBItem@@QBEPB_WXZ
?GetPhoneNumber2@UpdateDeviceInfo@@QBEPB_WXZ
?GetPhoneNumber@AgentParameter@@QBEPB_WXZ
?GetPhoneNumber@DeviceDBItem@@QBEPB_WXZ
?GetPhoneNumber@UpdateDeviceInfo@@QBEPB_WXZ
?GetPhoneVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetPhone_Font_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetPitFile@UpdateDeviceInfo@@QBEPB_WXZ
?GetPluginVersion@GlobalFirmwareInfo@@SAPB_WPB_W@Z
?GetPluginVersion@UpdateApplicationInfo@@QBEPB_WXZ
?GetPluginVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetPreDownloadDate@DeviceDBItem@@QBEPB_WXZ
?GetPreDownloadDate@UpdateDeviceInfo@@QBEPB_WXZ
?GetPreDownloadEnable@DeviceDBItem@@QBEPB_WXZ
?GetPreDownloadEnable@UpdateDeviceInfo@@QBEPB_WXZ
?GetPreDownloadFilePath@UpdateDeviceInfo@@QAEPB_W_N@Z
?GetPreDownloadPath@DeviceDBItem@@QBEPB_WXZ
?GetPreDownloadPath@UpdateDeviceInfo@@QBEPB_WXZ
?GetPreDownloadStatus@GlobalFirmwareInfo@@SA_NXZ
?GetPredownloadInfoItemList@GlobalFirmwareInfo@@SAXAAV?$list@VPredownloadInfoItem@@V?$allocator@VPredownloadInfoItem@@@std@@@std@@@Z
?GetPredownloadPath@PredownloadInfoItem@@QBEPB_WXZ
?GetProductCode@AgentParameter@@QBEPB_WXZ
?GetProductCode@DeviceDBItem@@QBEPB_WXZ
?GetProductCode@PredownloadInfoItem@@QBEPB_WXZ
?GetProductCode@UpdateApplicationInfo@@QBEPB_WXZ
?GetProductCode@UpdateDeviceInfo@@QBEPB_WXZ
?GetProductNumber@MP3PUpdateInfo@@QBEPB_WXZ
?GetPsiFlash_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetQueryBinaryLastModifiedTime@UpdateDeviceInfo@@QBEPB_WXZ
?GetQueryBinaryPath@UpdateDeviceInfo@@QBEPB_WXZ
?GetQueryBinarySize@UpdateDeviceInfo@@QBEPB_WXZ
?GetReceivedXMLDocument@MP3PUpdateInfo@@QBEPB_WXZ
?GetRegKeyPath@PredownloadInfoItem@@QBEPB_WXZ
?GetRegistryKeyName@UpdateDeviceInfo@@QBEPB_WXZ
?GetResponseValue@NetworkModule@@QAEPB_WPB_W@Z
?GetRootingSupport@AgentParameter@@QBE?AW4_ROOTING_SUPPORT@@XZ
?GetRootingSupport@FUSUpdateInfo@@QBE?AW4_ROOTING_SUPPORT@@XZ
?GetRoutingSupport@UpdateDeviceInfo@@QBEPB_WXZ
?GetRsrc1_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetRsrc1_File_BD20@DeviceDBItem@@QBEPB_WXZ
?GetRsrc1_File_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetRsrc2_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetRsrc2_File_BD20@DeviceDBItem@@QBEPB_WXZ
?GetRsrc2_File_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetSNNumber@AgentParameter@@QBEPB_WXZ
?GetSNNumber@UpdateDeviceInfo@@QBEPB_WXZ
?GetSNType@AgentParameter@@QBEPB_WXZ
?GetSNType@UpdateDeviceInfo@@QBEPB_WXZ
?GetSNTypeCheck@AgentParameter@@QBEPB_WXZ
?GetSNTypeCheck@UpdateDeviceInfo@@QBEPB_WXZ
?GetSWBinVersion@AgentParameter@@QBEPB_WXZ
?GetSWPkgCrc@UpdateApplicationInfo@@QBEPB_WXZ
?GetSWPkgName@UpdateApplicationInfo@@QBEPB_WXZ
?GetSWPkgSize@UpdateApplicationInfo@@QBEPB_WXZ
?GetSWVersion@UpdateApplicationInfo@@QBEPB_WXZ
?GetSecurityID@AgentParameter@@QBEPB_WXZ
?GetSecurityID@UpdateDeviceInfo@@QBEPB_WXZ
?GetSecurityPassword@AgentParameter@@QBEPB_WXZ
?GetSecurityPassword@UpdateDeviceInfo@@QBEPB_WXZ
?GetSharingBinary@UpdateDeviceInfo@@QBE?AW4_FUS_SHARING_BINARY_TYPE@@XZ
?GetShpApp_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetShpApp_File_BD20@DeviceDBItem@@QBEPB_WXZ
?GetShpApp_File_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetSoftwareVersion@DeviceDBItem@@QBEPB_WXZ
?GetSoftwareVersion@UpdateDeviceInfo@@QBEPB_WXZ
?GetSupportObex@FUSUpdateInfo@@QBEHXZ
?GetSupportObex@UpdateDeviceInfo@@QBEHXZ
?GetSupport_BD20@DeviceDBItem@@QBEPB_WXZ
?GetSupport_BD20@UpdateDeviceInfo@@QBEPB_WXZ
?GetTargetAppDataFolder@GlobalFirmwareInfo@@SAPB_WXZ
?GetTargetExternalDriveName@MP3PUpdateInfo@@QBEPB_WXZ
?GetTargetServerURL@GlobalFirmwareInfo@@SAPB_WXZ
?GetTargetValueFromXML@BaseNetworkModule@@IAEPB_WPB_W0@Z
?GetType@CEachItemNode@@QBEPB_WXZ
?GetTypeFormat@CEachItemNode@@QBEPB_WXZ
?GetTypeOfDevice@DeviceDBItem@@QBEPB_WXZ
?GetTypeOfDevice@UpdateDeviceInfo@@QBE?AW4_CONNECTED_DEVICE_INFO@@XZ
?GetUiImage_File@UpdateDeviceInfo@@QBEPB_WXZ
?GetUnzipCurrentFileInfo@CUnzipper@@AAEHXZ
?GetUnzipFolderPath@MP3PUpdateInfo@@QBEPB_WXZ
?GetUpdateBinaryMode@UpdateDeviceInfo@@QBE?AW4_FUS_UPDATE_BINARY_TYPE@@XZ
?GetUpdateBinaryType@AgentParameter@@QBE?AW4_FUS_UPDATE_BINARY_TYPE@@XZ
?GetUpdateDeviceInfo@NetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@@Z
?GetUpdateDeviceInfoLocalTest@NetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@@Z
?GetUpdateInformation@NetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@_N1@Z
?GetUpdateInformationForMP3P@NetworkModule@@QAE?AW4_FUSErrorCode@@AAVMP3PUpdateInfo@@@Z
?GetUpdateInformationForResumeApplicationDownload@NetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateApplicationInfo@@@Z
?GetUpdateInformationForResumeBinaryDownload@NetworkModule@@QAE?AW4_FUSErrorCode@@AAVUpdateDeviceInfo@@@Z
?GetUpdateType@AgentParameter@@QBE?AW4_UPDATE_TYPE@@XZ
?GetUpdate_Notice@UpdateDeviceInfo@@QBEPB_WXZ
?GetUpgradeCompleteNotice@MP3PUpdateInfo@@QBEPB_WXZ
?GetUpgradeFilePath@UpdateApplicationInfo@@QBEPB_WXZ
?GetUpgradeFilePath@UpdateDeviceInfo@@QBEPB_WXZ
?GetUpgradeTime@FileProcessAndTimeModule@@QAEPB_WXZ
?GetUpgradeVariable@UpdateDeviceInfo@@QBEPB_WXZ
?GetUpgradeVariableType@AgentParameter@@QBEPB_WXZ
?GetUpgradeVariableType@DeviceDBItem@@QBEPB_WXZ
?GetUpgradeVariableType@UpdateDeviceInfo@@QBEPB_WXZ
?GetUrl@UpdateDeviceInfo@@QBEPB_WXZ
?GetUseSN@DeviceDBItem@@QBEPB_WXZ
?GetUseSN@UpdateDeviceInfo@@QBEPB_WXZ
?GetUseUpdateBinaryType@UpdateDeviceInfo@@QBE?AW4_FUS_UPDATE_BINARY_TYPE@@XZ

Sections

Size: 148KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SHARED
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rqqcysov
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rgaommvy
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Frija.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 195KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GlobalUtil.dll
.dll windows:5 windows x86 arch:x86

Code Sign

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

31/12/2015, 00:00

Not After

27/01/2017, 23:59

Subject

CN=Samsung Electronics CO.\, LTD.,O=Samsung Electronics CO.\, LTD.,L=Suwon,ST=Kyungki-Do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

70:a0:1c:f4:ea:ef:99:fd:46:6c:ed:16:30:c1:b0:1f
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

11/06/2015, 00:00

Not After

29/12/2020, 23:59

Subject

CN=GeoTrust 2048-bit Timestamping Signer 4,O=GeoTrust Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

01/01/1997, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

31/12/2015, 00:00

Not After

27/01/2017, 23:59

Subject

CN=Samsung Electronics CO.\, LTD.,O=Samsung Electronics CO.\, LTD.,L=Suwon,ST=Kyungki-Do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

70:a0:1c:f4:ea:ef:99:fd:46:6c:ed:16:30:c1:b0:1f
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

11/06/2015, 00:00

Not After

29/12/2020, 23:59

Subject

CN=GeoTrust 2048-bit Timestamping Signer 4,O=GeoTrust Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

01/01/1997, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

70:9d:e4:70:59:03:12:e9:6c:32:10:16:81:1f:ee:07:93:6f:01:8b:c3:20:e9:f9:64:9c:17:15:9c:d2:4c:ed
Signer

Actual PE Digest

70:9d:e4:70:59:03:12:e9:6c:32:10:16:81:1f:ee:07:93:6f:01:8b:c3:20:e9:f9:64:9c:17:15:9c:d2:4c:ed

Digest Algorithm

sha256

PE Digest Matches

true

c1:62:6c:6a:7b:70:52:a6:e5:c4:a0:d4:19:40:bd:77:b1:ee:8a:3c
Signer

Actual PE Digest

c1:62:6c:6a:7b:70:52:a6:e5:c4:a0:d4:19:40:bd:77:b1:ee:8a:3c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

??0CContourBitmap@@QAE@XZ
??0CMemDCEx@@QAE@PAVCDC@@PBVCRect@@H@Z
??0CStaticEx@@QAE@XZ
??0CStopWatch@@QAE@XZ
??0GlobalFunc@@QAE@XZ
??1CContourBitmap@@UAE@XZ
??1CMemDCEx@@UAE@XZ
??1CStaticEx@@UAE@XZ
??1CStopWatch@@QAE@XZ
??1GlobalFunc@@QAE@XZ
??4CStopWatch@@QAEAAV0@ABV0@@Z
??4GlobalFunc@@QAEAAV0@ABV0@@Z
??BCMemDCEx@@QAEPAV0@XZ
??CCMemDCEx@@QAEPAV0@XZ
??_7CContourBitmap@@6B@
??_7CMemDCEx@@6B@
??_7CStaticEx@@6B@
?ActivateTooltip@CStaticEx@@IAEXH@Z
?Base64Decode@GlobalFunc@@CAHABV_bstr_t@@PAPAEPAH@Z
?Base64Encode@GlobalFunc@@CAHPBEHAAV_bstr_t@@@Z
?CheckCrc@GlobalFunc@@SA_NPB_W0@Z
?CheckTargetProcessIsRunningOrNot@GlobalFunc@@SA_NPB_W@Z
?CreateDirectoryTree@GlobalFunc@@SA_NPB_W_N@Z
?CreateMSXmlParser@GlobalFunc@@CAXAAV?$_com_ptr_t@V?$_com_IIID@UIXMLDOMDocument2@MSXML2@@$1?_GUID_2933bf95_7b36_11d2_b20e_00c04f983e60@@3U__s_GUID@@B@@@@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?CreateRegion@CContourBitmap@@QAEPAUHRGN__@@K@Z
?CreateRegion@CContourBitmap@@QAEPAUHRGN__@@VCPoint@@@Z
?CreateRgnFromBMPFile@GlobalFunc@@SAPAUHRGN__@@PAVCDC@@PAUHBITMAP__@@K@Z
?CreateStretchRgn@CContourBitmap@@QAEPAUHRGN__@@PAU2@MMHH@Z
?DebugAndLogPrint@GlobalFunc@@SAXPB_WZZ
?DecodingFromBase64@GlobalFunc@@SAPB_WPB_W@Z
?DecodingFromBase64ToByte@GlobalFunc@@CAPAEPB_WAAK@Z
?DecryptString@GlobalFunc@@SAPB_WPB_W@Z
?DeleteRegKey@GlobalFunc@@SAXPB_W0PAUHKEY__@@@Z
?DeleteRegValue@GlobalFunc@@SAHPB_W0PAUHKEY__@@@Z
?DeleteTargetFile@GlobalFunc@@SAXPB_W@Z
?DeleteUDPPort@GlobalFunc@@SAXPB_W@Z
?EncodingToBase64@GlobalFunc@@SAPB_WPB_W@Z
?EncodingToBase64FromByte@GlobalFunc@@CAPB_WPAEK@Z
?EncryptString@GlobalFunc@@SAPB_WPB_W@Z
?ExecuteUSBInstallProgram@GlobalFunc@@SA_NPB_W0_N@Z
?ExportCryptKey@GlobalFunc@@CAXXZ
?FUSDriverInstall@GlobalFunc@@SAKPA_W@Z
?FUSGetCompareAppVersionName@GlobalFunc@@SA_NPA_W0@Z
?FUSIsNeedUSBDriver@GlobalFunc@@SA_NPB_W@Z
?FileDecrypt@GlobalFunc@@SAJPB_W00@Z
?FileEncrypt@GlobalFunc@@SAJPB_W00@Z
?FileExist@GlobalFunc@@SA_NPB_W_N@Z
?FileNameFromFilePath@GlobalFunc@@SAPB_WPB_W@Z
?FileSize@GlobalFunc@@SA_KPB_W@Z
?FileUnZip@GlobalFunc@@SA_NPB_W0_N@Z
?FreeGlobalResource@GlobalFunc@@SAXXZ
?GenerateNonce@GlobalFunc@@SAXAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?GenerateTempFileFullPath@GlobalFunc@@SAPB_WXZ
?GetAllRegValueNames@GlobalFunc@@SAXPB_WAAV?$list@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V?$allocator@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@@std@@PAUHKEY__@@@Z
?GetCPUName@GlobalFunc@@SAPB_WXZ
?GetCommonDataFolder@GlobalFunc@@SAPB_WXZ
?GetCrc@GlobalFunc@@CA_NPB_W0@Z
?GetCurrentProgram@GlobalFunc@@SA?AW4_RUNNING_PROGRAM@@XZ
?GetCurrentRunningProcessName@GlobalFunc@@SAPB_WXZ
?GetElapsedTime@CStopWatch@@QAEMXZ
?GetFUSImageFilePath@GlobalFunc@@SAPB_WPB_W@Z
?GetFileCrc@GlobalFunc@@SAKPB_W@Z
?GetFont@CStaticEx@@QAEPAVCFont@@XZ
?GetFreeDiskSpace@GlobalFunc@@SAJXZ
?GetGlobalFont@GlobalFunc@@SAPAVCFont@@XZ
?GetGlobalFontName@GlobalFunc@@SA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PB_W@Z
?GetIPAddress@GlobalFunc@@SAPB_WXZ
?GetKiesInstallMode@GlobalFunc@@SAHXZ
?GetLanguageLocale@GlobalFunc@@SAPB_WXZ
?GetLocalComputerName@GlobalFunc@@SAPB_WXZ
?GetMacAddress@GlobalFunc@@SAPB_WXZ
?GetMessageMap@CStaticEx@@MBEPBUAFX_MSGMAP@@XZ
?GetMotherboardInfo@GlobalFunc@@SAPB_WXZ
?GetOSLanguage@GlobalFunc@@SAPB_WXZ
?GetOSName@GlobalFunc@@SAPB_WXZ
?GetOSVersion@GlobalFunc@@SA?AW4_OS_VERSION@@XZ
?GetPhysicalDiskSerialNumber@GlobalFunc@@SAPB_WXZ
?GetPhysicalRAMSize@GlobalFunc@@SAPB_WXZ
?GetRegString@GlobalFunc@@SAHPAUHKEY__@@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@1AAV34@@Z
?GetRegValue@GlobalFunc@@CAHPAUHKEY__@@PB_W1AAK@Z
?GetRegValue@GlobalFunc@@CAHPAUHKEY__@@PB_W1AAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?GetSize@CContourBitmap@@QAE?AVCSize@@XZ
?GetString@CStaticEx@@QAEXAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?GetStringFromBasicResource@GlobalFunc@@SA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PB_W@Z
?GetStringFromResource@GlobalFunc@@SA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PB_W@Z
?GetSubKeyNames@GlobalFunc@@SAXPB_WAAV?$list@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V?$allocator@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@@std@@PAUHKEY__@@@Z
?GetSymmetrickey@GlobalFunc@@SA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PB_WAAV23@@Z
?GetTargetDllVersion@GlobalFunc@@SAPB_WPB_W@Z
?GetThisMessageMap@CStaticEx@@KGPBUAFX_MSGMAP@@XZ
?GetUSBHostHWID@GlobalFunc@@SAPB_WXZ
?GetUSBHostName@GlobalFunc@@SAPB_WXZ
?GetUserTempFolder@GlobalFunc@@SAPB_WXZ
?GetWlanList@GlobalFunc@@CAHAAV?$vector@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V?$allocator@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@std@@@std@@@Z
?ImportCryptKey@GlobalFunc@@CAXXZ
?InitToolTip@CStaticEx@@IAEXXZ
?InitializeDebugAndLogPrint@GlobalFunc@@CAXPB_W@Z
?InternalCreateRegion@CContourBitmap@@AAEPAUHRGN__@@PAVCDC@@K@Z
?Is64BitOS@GlobalFunc@@SAHXZ
?IsAvailableIPv4@GlobalFunc@@SAHPA_W@Z
?IsRTL@GlobalFunc@@SAHXZ
?IsRunning@CStopWatch@@QAE_NXZ
?IsWow64@GlobalFunc@@SAHXZ
?LoadBaseLanguageResource@GlobalFunc@@CAX_N@Z
?LoadCPUName@GlobalFunc@@CAHXZ
?LoadHardwareInformation@GlobalFunc@@CAHXZ
?LoadLanguageResource@GlobalFunc@@SAXPB_W_N@Z
?LoadNetworkInformation@GlobalFunc@@CAHAAV?$vector@U_PC_NETWORKINFO@@V?$allocator@U_PC_NETWORKINFO@@@std@@@std@@@Z
?LoadNetworkInformation@GlobalFunc@@CAHXZ
?LoadOSInformation@GlobalFunc@@CAHXZ
?LoadOSLanguage@GlobalFunc@@CAHXZ
?LoadOSVersion@GlobalFunc@@CAHXZ
?LoadPNGImage2@GlobalFunc@@SAPAVBitmap@Gdiplus@@PAUHINSTANCE__@@I@Z
?LoadPNGImage@GlobalFunc@@SAPAVBitmap@Gdiplus@@PAUHINSTANCE__@@I@Z
?LoadUSBController@GlobalFunc@@CAHXZ
?OnEraseBkgnd@CStaticEx@@IAEHPAVCDC@@@Z
?OnPaint@CStaticEx@@IAEXXZ
?OnSetCursor@CStaticEx@@QAEHPAVCWnd@@II@Z
?OnSize@CStaticEx@@QAEXIHH@Z
?Paint@CContourBitmap@@QAEHPAVCDC@@HH@Z
?PreTranslateMessage@CStaticEx@@MAEHPAUtagMSG@@@Z
?ReadCryptReg@GlobalFunc@@SAPB_WPB_W0PAUHKEY__@@@Z
?ReadDWORDValue@GlobalFunc@@SAKPB_W0KPAUHKEY__@@@Z
?ReadKeyAndIVFromManageCode@GlobalFunc@@SA_NXZ
?ReadStringValue@GlobalFunc@@SAPB_WPB_W00PAUHKEY__@@@Z
?ReadUDPPortFromRegistry@GlobalFunc@@SAKPB_WH@Z
?ReleasePNGImages2@GlobalFunc@@SAXXZ
?SetBoldFont@CStaticEx@@QAEXH@Z
?SetColor@CStaticEx@@QAEXKK@Z
?SetCurrentProgram@GlobalFunc@@SAXW4_RUNNING_PROGRAM@@@Z
?SetCurrentRunningProcessName@GlobalFunc@@SAXPB_W@Z
?SetCurstomCursor@CStaticEx@@QAEXPAUHICON__@@@Z
?SetFont@CStaticEx@@QAEXAAUtagLOGFONTW@@@Z
?SetFontSize@CStaticEx@@QAEXH@Z
?SetGlobalFont@GlobalFunc@@SAXPB_W@Z
?SetPasswordEnable@CStaticEx@@QAEXH@Z
?SetRTL@CStaticEx@@QAEXH@Z
?SetRegValue@GlobalFunc@@CAHPAUHKEY__@@PB_W11@Z
?SetRegValue@GlobalFunc@@CAHPAUHKEY__@@PB_W1K@Z
?SetString@CStaticEx@@QAEXV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@W4_ALIGN_POS@@@Z
?SetToolTipText@CStaticEx@@QAEXPB_WH@Z
?SetToolTipText@CStaticEx@@QAEXPB_WPAVCFont@@H@Z
?ShowErrorMessage@GlobalFunc@@SAPB_WK@Z
?SinglePaint@CContourBitmap@@QAEHPAVCDC@@HHHHHH@Z
?Start@CStopWatch@@QAEXXZ
?StretchPaint@CContourBitmap@@QAEHPAVCDC@@HHHH@Z
?TransparentPaint@CContourBitmap@@QAEHPAVCDC@@HHHHHHHHI@Z
?USBDriverReinstall@GlobalFunc@@SA_NXZ
?UTF8ToUnicode@GlobalFunc@@SAPA_WPADPAH@Z
?Unicode2UTF8@GlobalFunc@@SAPADPB_WPAH@Z
?WaitingForUSBInstaller@GlobalFunc@@SAXXZ
?WriteCryptReg@GlobalFunc@@SAHPB_W00PAUHKEY__@@@Z
?WriteDWORDValue@GlobalFunc@@SAHPB_W0KPAUHKEY__@@@Z
?WriteStringValue@GlobalFunc@@SAHPB_W00PAUHKEY__@@@Z
?WriteUDPPortToRegistry@GlobalFunc@@SAXIPB_W@Z
?encryptMD5@GlobalFunc@@SAJV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAEAAV23@@Z

Sections

UPX0
Size: - Virtual size: 152KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

baa93d47220682c04d92f7797d9224ce

Code Sign

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3Certificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

2d:4e:86:50:85:be:e0:0e:13:72:28:b3:d0:b1:32:e9Certificate

Extended Key Usages

Key Usages

Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3Certificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

2d:4e:86:50:85:be:e0:0e:13:72:28:b3:d0:b1:32:e9Certificate

Extended Key Usages

Key Usages

Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

94:8e:fb:51:56:84:bf:2a:a0:61:ae:9f:9f:a3:0d:3c:f2:7b:53:3b:57:04:9c:aa:a7:3e:6b:20:91:27:57:93Signer

bf:8c:4c:12:76:dd:30:e8:94:45:8a:5e:6d:b6:8f:4a:7d:3a:77:b7Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comctl32

Exports

Exports

Sections

Size: 40KB - Virtual size: 268KB

.rsrc Size: 732KB - Virtual size: 803KB

.idata Size: 512B - Virtual size: 4KB

Size: 512B - Virtual size: 2.2MB

gfldpqkw Size: 1.3MB - Virtual size: 1.3MB

ydlmwkpa Size: 512B - Virtual size: 4KB

baa93d47220682c04d92f7797d9224ce

Code Sign

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3Certificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

5f:d6:93:fa:b0:98:e3:f4:67:7b:b8:cb:67:2c:22:9eCertificate

Extended Key Usages

Key Usages

Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3Certificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

70:a0:1c:f4:ea:ef:99:fd:46:6c:ed:16:30:c1:b0:1fCertificate

Extended Key Usages

Key Usages

Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

9b:87:bf:c0:6a:6f:ac:7a:f6:4e:4b:94:e9:29:47:4e:a6:ea:e2:c4:2b:fc:76:ab:a3:b6:02:7d:69:67:2a:2eSigner

5b:71:12:18:7e:b3:93:8c:6c:14:f3:cf:bc:84:18:31:66:2a:48:a1Signer

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

2d:4e:86:50:85:be:e0:0e:13:72:28:b3:d0:b1:32:e9
Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

2d:4e:86:50:85:be:e0:0e:13:72:28:b3:d0:b1:32:e9
Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

94:8e:fb:51:56:84:bf:2a:a0:61:ae:9f:9f:a3:0d:3c:f2:7b:53:3b:57:04:9c:aa:a7:3e:6b:20:91:27:57:93
Signer

bf:8c:4c:12:76:dd:30:e8:94:45:8a:5e:6d:b6:8f:4a:7d:3a:77:b7
Signer

.rsrc
Size: 732KB - Virtual size: 803KB

.idata
Size: 512B - Virtual size: 4KB

gfldpqkw
Size: 1.3MB - Virtual size: 1.3MB

ydlmwkpa
Size: 512B - Virtual size: 4KB

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

5f:d6:93:fa:b0:98:e3:f4:67:7b:b8:cb:67:2c:22:9e
Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

70:a0:1c:f4:ea:ef:99:fd:46:6c:ed:16:30:c1:b0:1f
Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

9b:87:bf:c0:6a:6f:ac:7a:f6:4e:4b:94:e9:29:47:4e:a6:ea:e2:c4:2b:fc:76:ab:a3:b6:02:7d:69:67:2a:2e
Signer

5b:71:12:18:7e:b3:93:8c:6c:14:f3:cf:bc:84:18:31:66:2a:48:a1
Signer

SHARED
Size: 512B - Virtual size: 4B

.rsrc
Size: 2KB - Virtual size: 1KB

.idata
Size: 512B - Virtual size: 4KB

rqqcysov
Size: 1.3MB - Virtual size: 1.3MB

rgaommvy
Size: 512B - Virtual size: 4KB

.text
Size: 3.0MB - Virtual size: 3.0MB

.rsrc
Size: 195KB - Virtual size: 195KB

.reloc
Size: 512B - Virtual size: 12B

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

70:a0:1c:f4:ea:ef:99:fd:46:6c:ed:16:30:c1:b0:1f
Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

26:18:1c:ed:f2:c1:13:e1:6a:c7:48:20:df:7a:38:a3
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

70:a0:1c:f4:ea:ef:99:fd:46:6c:ed:16:30:c1:b0:1f
Certificate

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

70:9d:e4:70:59:03:12:e9:6c:32:10:16:81:1f:ee:07:93:6f:01:8b:c3:20:e9:f9:64:9c:17:15:9c:d2:4c:ed
Signer

c1:62:6c:6a:7b:70:52:a6:e5:c4:a0:d4:19:40:bd:77:b1:ee:8a:3c
Signer

UPX0
Size: - Virtual size: 152KB

UPX1
Size: 57KB - Virtual size: 60KB

.rsrc
Size: 12KB - Virtual size: 12KB