481540954ef8fb3b281c223d6cb62896_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

481540954ef8fb3b281c223d6cb62896_JaffaCakes118
Size

3.4MB
MD5

481540954ef8fb3b281c223d6cb62896
SHA1

4b855d3570a67a1a06b7a5b7e324c281d7347a58
SHA256

822cef1ba7db275e2bfe6c5afc21cd6cff41d28a6563d79b1afe4e8c5693e6c5
SHA512

54bf1d61b0057252e441fd0b7fbaa2b13cf73703e0e951a4b2a0e64ff2e4acde7bc916151c51aeb39c0d220093c6657cbd692746643c83a98bfea1b52f62d926
SSDEEP

49152:ZfN3uiwVAWL58xqwFTO3fFLkXLxAMfiPw+uj0z0msNCJkoUr/Vt2LR8RTw4blc8z:KijpssyPtCdNIz0msNCJkD/Vt+R0wilt

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 3 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/$SYSDIR/DivX.dll	aspack_v212_v242
static1/unpack001/$SYSDIR/DivXdec.ax	aspack_v212_v242
static1/unpack001/$SYSDIR/mp4fil32.dll	aspack_v212_v242

Unsigned PE 38 IoCs

Checks for missing Authenticode signature.

resource
481540954ef8fb3b281c223d6cb62896_JaffaCakes118
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/$SYSDIR/Ac3audio.ax
unpack001/$SYSDIR/Decaudio.ax
unpack001/$SYSDIR/DivX.dll
unpack001/$SYSDIR/DivX412.dll
unpack001/$SYSDIR/DivXa32.acm
unpack001/$SYSDIR/DivXdec.ax
unpack001/$SYSDIR/Mpg4c32.dll
unpack001/$SYSDIR/OggDS.dll
unpack001/$SYSDIR/VorbisEnc.dll
unpack001/$SYSDIR/ac3filter.cpl
unpack001/$SYSDIR/ffdshow.ax
unpack001/$SYSDIR/libavcodec.dll
unpack001/$SYSDIR/libpostproc.dll
unpack001/$SYSDIR/mp4fil32.dll
unpack001/$SYSDIR/mpg4ds32.ax
unpack001/$SYSDIR/msvcr70.dll
unpack001/$SYSDIR/ogg.dll
unpack001/$SYSDIR/quicktime/3ivx Delta 3.5.qtx
unpack001/$SYSDIR/quicktime/3ivx.cm.flask
unpack001/$SYSDIR/vorbis.dll
unpack001/$SYSDIR/xvid.ax
unpack001/$SYSDIR/xvidcore.dll
unpack001/$SYSDIR/xvidvfw.dll
unpack001/AC3/ac3filter.ax
unpack001/AC3/dialog_patch.exe
unpack001/DivX 3.11/DIVX_c32.ax
unpack001/DivX 3.11/DivXa32.acm
unpack001/DivX 3.11/DivXc32.dll
unpack001/DivX 3.11/DivXc32f.dll
unpack001/DivX 3.11/L3codeca.acm
unpack001/MP4Player.exe
unpack001/ffdhow/TomsMoComp_ff.dll
unpack001/ffdhow/ffdshow.ax
unpack001/ffdhow/libavcodec.dll
unpack001/ffdhow/libmpeg2_ff.dll
unpack001/ffdhow/libmplayer.dll

NSIS installer 1 IoCs

installer

resource	yara_rule
sample	nsis_installer_1

Files

481540954ef8fb3b281c223d6cb62896_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9c523d8653da5455667e3f82274f2f88

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
CreateFileA
GetFileSize
GetModuleFileNameA
GetTickCount
lstrcmpiA
CopyFileA
ExitProcess
GetCommandLineA
GetWindowsDirectoryA
GetTempPathA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetCurrentProcess

user32

ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
EndDialog
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
RegisterClassA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
MultiByteToWideChar
GlobalAlloc

user32

GetDlgCtrlID
GetClientRect
SetWindowRgn
MapWindowPoints
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
PtInRect
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
LoadIconA

gdi32

SetTextColor
GetObjectA
SelectObject
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
CreateCompatibleDC

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 954B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-wizard.bmp
$SYSDIR/Ac3audio.ax
.dll regsvr32 windows:4 windows x86 arch:x86

9909c1e7a09b278aefe7706dd2faa936

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_purecall
rand
??2@YAPAXI@Z
srand
_ftol
memmove
??3@YAXPAX@Z
_vsnprintf
_stat
sprintf
strncpy
_iob
fprintf
_CIpow
__CxxFrameHandler
strncmp

winmm

mixerOpen
waveOutUnprepareHeader
waveOutReset
waveOutSetVolume
waveOutWrite
waveOutPrepareHeader
mixerGetLineControlsA
mixerGetLineInfoA
mixerSetControlDetails
mixerGetControlDetailsA
mixerClose
timeGetTime
waveOutOpen
waveOutClose

kernel32

InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
OpenMutexA
FreeLibrary
GetProcAddress
LoadLibraryA
ExitProcess
CloseHandle
CreateFileA
MulDiv
lstrcatA
lstrcpyA
GetVersionExA
DisableThreadLibraryCalls
InterlockedIncrement
InterlockedDecrement
WaitForSingleObject
CreateEventA
SetEvent
MultiByteToWideChar
GetLastError
lstrlenA
GetModuleFileNameA
CreateFileMappingA
MapViewOfFile
Sleep
UnmapViewOfFile
GetSystemDirectoryA

advapi32

RegEnumKeyExA
RegCreateKeyA
RegSetValueA
RegSetValueExA
RegOpenKeyExA
RegDeleteKeyA
RegCloseKey
RegQueryValueExA
RegCreateKeyExA

user32

LoadStringA
LoadStringW
GetWindowRect
GetDesktopWindow
InvalidateRect
DestroyWindow
SendMessageA
CheckRadioButton
EnableWindow
SetDlgItemTextA
MoveWindow
CreateDialogParamA
SetWindowLongA
GetWindowLongA
wsprintfA
ShowWindow
GetDlgItem

ole32

StringFromGUID2
CoTaskMemAlloc
CoFreeUnusedLibraries
CoInitialize
CoTaskMemFree
CoUninitialize
CoCreateInstance

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 172KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$SYSDIR/Decaudio.ax
.dll regsvr32 windows:4 windows x86 arch:x86

b46a3282dfc9cc1392a4ac8c091e7eaf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

??3@YAXPAX@Z
??2@YAPAXI@Z

kernel32

EnterCriticalSection
InitializeCriticalSection
LeaveCriticalSection
GetVersionExA
DisableThreadLibraryCalls
InterlockedIncrement
InterlockedDecrement
lstrlenA
DeleteCriticalSection
FreeLibrary
MultiByteToWideChar
GetLastError
GetModuleFileNameA

advapi32

RegOpenKeyExA
RegCreateKeyA
RegSetValueA
RegSetValueExA
RegDeleteKeyA
RegEnumKeyExA
RegCloseKey

user32

wsprintfA

ole32

CoUninitialize
CoCreateInstance
CoFreeUnusedLibraries
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$SYSDIR/DivX.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DriverProc
NotifyAudio
SetAudioFormat
decore
encore

Sections

Size: 239KB - Virtual size: 636KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 23KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 207KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 14KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
$SYSDIR/DivX412.dll
.dll windows:4 windows x86 arch:x86

007d0de6da39db4aeeb27b4ec20efb30

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

DefDriverProc

kernel32

RtlUnwind
HeapAlloc
HeapFree
GetCommandLineA
ExitProcess
TerminateProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapSize
HeapReAlloc
GetACP
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
RaiseException
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetProcessVersion
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
GetProcAddress
Sleep
QueryPerformanceCounter
QueryPerformanceFrequency
SetEndOfFile
FlushFileBuffers
ReadFile
SetFilePointer
WriteFile
CreateFileA
GetCurrentProcess
WritePrivateProfileStringA
GetCPInfo
GetOEMCP
GetEnvironmentStringsW
GetLastError
GetWindowsDirectoryA
SetLastError
GlobalFlags
MulDiv
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetModuleFileNameA
CloseHandle
GlobalAlloc
lstrcmpA
GetCurrentThread
lstrcpynA
LocalFree
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle

user32

SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
ShowWindow
PostQuitMessage
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
SetCursor
UnregisterClassA
LoadStringA
GetClassNameA
PtInRect
ClientToScreen
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
GetSysColorBrush
DestroyMenu
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
wvsprintfA
GetDC
ReleaseDC
LoadIconA
PostMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
GetClientRect
CopyRect
GetMenuCheckMarkDimensions
IsWindowVisible
GetTopWindow
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
MessageBoxA
GetDesktopWindow
EnableWindow
SendMessageA
CreateWindowExA
DefWindowProcA

gdi32

GetObjectA
CreateBitmap
DeleteObject
SelectObject
GetDeviceCaps
GetStockObject
DeleteDC
SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SetTextColor
GetClipBox
PtVisible
TextOutA
ExtTextOutA
RectVisible
Escape
SetBkColor

comdlg32

GetSaveFileNameA
GetOpenFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

comctl32

ord17

Exports

Exports

DriverProc
decore
encore

Sections

.text
Size: 352KB - Virtual size: 348KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/DivXa32.acm
.dll windows:4 windows x86 arch:x86

4a6b5dd91037124752d0b0b9bee8d857

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

ntdll

RtlUnwind

kernel32

LocalFree
MulDiv
GlobalAlloc
WaitForSingleObject
SetEvent
CreateThread
CreateEventA
LocalAlloc
CloseHandle
LockResource
LoadResource
FindResourceA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
SizeofResource
HeapReAlloc
GetCurrentProcess
HeapSize
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
InterlockedIncrement
GetProcAddress
GetModuleHandleA
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapAlloc
GetACP
GetStdHandle
GetFileType
MultiByteToWideChar
GetModuleFileNameA
GetCPInfo
GetOEMCP
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
HeapDestroy
HeapCreate
VirtualFree
WriteFile
HeapFree
VirtualAlloc
GetLocaleInfoA
LCMapStringA
LCMapStringW
SetFilePointer
GetStringTypeA
GetStringTypeW
LoadLibraryA
SetStdHandle
RaiseException
FlushFileBuffers
GetLocaleInfoW
GlobalFree
SetHandleCount
GetStartupInfoA

user32

LoadStringA

winmm

DefDriverProc
GetDriverModuleHandle

Exports

Exports

DriverProc

Sections

.text
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 118KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$SYSDIR/DivXdec.ax
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

Config
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

Size: 98KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 19KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
$SYSDIR/Mpg4c32.dll
.dll windows:4 windows x86 arch:x86

7218d5c9b86e089c8756c597ad12f873

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msvcrt

_adjust_fdiv
_initterm
??3@YAXPAX@Z
??2@YAPAXI@Z
malloc
free
_except_handler3

user32

GetDlgItemInt
EndDialog
SetDlgItemInt
wsprintfA
CheckDlgButton
IsDlgButtonChecked
SetScrollPos
GetDC
ReleaseDC
DialogBoxParamA
LoadStringA
SetDlgItemTextA
GetDlgItem
SetScrollRange
GetDesktopWindow
MessageBoxA
GetScrollPos
GetWindowLongA

gdi32

GetSystemPaletteEntries

kernel32

CreateEventA
Sleep
CloseHandle
SetEvent
IsBadReadPtr
DisableThreadLibraryCalls
CreateThread
MultiByteToWideChar
WaitForSingleObject
GetSystemInfo
IsBadWritePtr

winmm

GetDriverModuleHandle
DefDriverProc

advapi32

RegQueryValueExA
RegCloseKey
RegSetValueExA
RegOpenKeyA
RegCreateKeyA

Exports

Exports

DriverProc

Sections

.text
Size: 230KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 465KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/OggDS.dll
.dll regsvr32 windows:4 windows x86 arch:x86

3367ff0aa14a3f3ca9a3aa81a9935abb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

vorbis

vorbis_info_clear
vorbis_dsp_clear
vorbis_block_clear
vorbis_synthesis
vorbis_comment_init
vorbis_analysis_init
vorbis_analysis_wrote
vorbis_analysis
vorbis_analysis_buffer
vorbis_synthesis_init
vorbis_analysis_headerout
vorbis_bitrate_flushpacket
vorbis_bitrate_addblock
vorbis_comment_add_tag
vorbis_packet_blocksize
vorbis_commentheader_out
vorbis_comment_clear
vorbis_synthesis_read
vorbis_synthesis_blockin
vorbis_comment_query_count
vorbis_comment_add
vorbis_synthesis_pcmout
vorbis_block_init
vorbis_synthesis_headerin
vorbis_info_init
vorbis_analysis_blockout
vorbis_comment_query

kernel32

FreeLibrary
InterlockedIncrement
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
ResetEvent
InterlockedDecrement
lstrlenA
CreateThread
MultiByteToWideChar
WaitForSingleObject
GetModuleHandleA
CloseHandle
CreateEventA
GetProcAddress
SetEvent
InterlockedExchange
GetModuleFileNameA
GetLastError
GetVersionExA

user32

FindWindowA
SendMessageA
SendDlgItemMessageA
wsprintfA
SetWindowLongA
CreateDialogParamA
MoveWindow
GetDesktopWindow
GetWindowRect
LoadStringW
LoadStringA
GetDlgItem
EnableWindow
DefWindowProcA
DestroyWindow
ShowWindow
InvalidateRect
GetWindowLongA

advapi32

RegSetValueA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegOpenKeyA
RegEnumValueA
RegCreateKeyA
RegSetValueExA
RegDeleteValueA
RegQueryValueExA
RegDeleteKeyA
RegCreateKeyExA

ole32

CoTaskMemAlloc
CoInitialize
CoFreeUnusedLibraries
CoUninitialize
StringFromGUID2
CoCreateInstance
CoTaskMemFree

oleaut32

VariantInit
VariantClear
SysAllocStringLen
VariantChangeType
SysAllocString

ogg

ogg_sync_pageout
ogg_page_granulepos
ogg_sync_wrote
ogg_stream_pageout
ogg_stream_flush
ogg_page_pageno
ogg_stream_clear
ogg_stream_reset
ogg_stream_init
ogg_stream_packetin
ogg_page_packets
ogg_stream_pagein
ogg_stream_packetout
ogg_sync_init
ogg_sync_clear
ogg_page_serialno
ogg_sync_reset
ogg_sync_buffer

vorbisenc

vorbis_encode_init_vbr
vorbis_encode_init

msvcr70

swprintf
_purecall
strncmp
_strlwr
malloc
??2@YAPAXI@Z
_strupr
wcsstr
__CxxFrameHandler
??_V@YAXPAX@Z
??_U@YAPAXI@Z
free
strtol
??3@YAXPAX@Z
atoi
strstr
sprintf
wcslen

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/VorbisEnc.dll
.dll windows:4 windows x86 arch:x86

9d3068c35e3fc37d930efbdcaf56156b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

vorbis

vorbis_info_clear
residue_free_info

msvcr70

_except_handler3
calloc
malloc
floor
free
_initterm
_adjust_fdiv
__dllonexit
_onexit

kernel32

DisableThreadLibraryCalls

Exports

Exports

vorbis_encode_ctl
vorbis_encode_init
vorbis_encode_init_vbr

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 736B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 416KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/ac3filter.cpl
.dll regsvr32 windows:4 windows x86 arch:x86

135a6c6d4a158d1051e08a607647b1cb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

fopen
strtod
fclose
memmove
??3@YAXPAX@Z
__CxxFrameHandler
_swab
sprintf
_errno
_ftol
??2@YAPAXI@Z
_purecall
strtol
?terminate@@YAXXZ
_except_handler3
_CIpow

comctl32

ord17

comdlg32

GetOpenFileNameA

olepro32

ord250

kernel32

InterlockedIncrement
GetModuleHandleA
WideCharToMultiByte
GetLastError
GetThreadTimes
SystemTimeToFileTime
GetSystemTime
DuplicateHandle
GetCurrentThread
GetCurrentProcess
CloseHandle
GetPrivateProfileStringA
WritePrivateProfileStringA
GetVersionExA
DisableThreadLibraryCalls
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
FreeLibrary
lstrlenA
MultiByteToWideChar
GetModuleFileNameA

user32

IsDlgButtonChecked
CheckDlgButton
EndDialog
DialogBoxParamA
GetDlgCtrlID
GetDlgItemTextA
InvalidateRect
CreateDialogParamA
SetTimer
DefWindowProcA
wsprintfA
MoveWindow
IsWindowVisible
LoadStringA
LoadStringW
GetWindowRect
GetDesktopWindow
GetClientRect
GetWindowTextA
DrawTextA
BeginPaint
SetDlgItemTextA
SendDlgItemMessageA
EnableWindow
GetWindowLongA
CallWindowProcA
SendMessageA
SetWindowLongA
MessageBoxA
ShowWindow
DestroyWindow
GetDlgItem
EndPaint

gdi32

SelectObject
SetTextColor
DeleteObject
CreateFontA

shell32

ShellExecuteA

ole32

CoInitialize
CoUninitialize
CoFreeUnusedLibraries
StringFromGUID2
CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree

advapi32

RegEnumValueA
RegCreateKeyA
RegSetValueA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
RegCloseKey
RegDeleteKeyA

Exports

Exports

CPlApplet
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
config

Sections

.text
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/ffdshow.ax
.dll regsvr32 windows:4 windows x86 arch:x86

3e0ff5761b43849838b30066d765153e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
FreeLibrary
LoadLibraryA
WideCharToMultiByte
lstrlenA
GetSystemDirectoryA
lstrcpyA
GetVersionExA
InterlockedDecrement
LeaveCriticalSection
GetLastError
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
GetModuleHandleA
SystemTimeToFileTime
GetModuleFileNameA
EnterCriticalSection
DisableThreadLibraryCalls

user32

CreateWindowExA
PostQuitMessage
SendMessageA
DefWindowProcA
GetWindowLongA
KillTimer
SetWindowLongA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
DestroyWindow
LoadIconA
GetDesktopWindow
LoadCursorA
RegisterClassA
CreateDialogParamA
SetParent
SetWindowPos
MoveWindow
InvalidateRect
wsprintfA
LoadStringA
LoadStringW
GetWindowRect
GetClientRect
GetSysColorBrush
SetTimer
GetDlgItem
ShowWindow
SendDlgItemMessageA
EnableWindow

msvcrt

wcsstr
_makepath
__dllonexit
_ftol
_wcsupr
wcscpy
??1type_info@@UAE@XZ
_onexit
sprintf
memmove
??0exception@@QAE@ABQBD@Z
__CxxFrameHandler
strlen
??1exception@@UAE@XZ
??2@YAPAXI@Z
??3@YAXPAX@Z
free
realloc
malloc
_splitpath
time
_CxxThrowException
??0exception@@QAE@ABV0@@Z
_purecall

advapi32

RegEnumKeyExA
RegDeleteKeyA
RegSetValueA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegCreateKeyA

ole32

CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoCreateInstance
CoInitialize

comctl32

ord17

gdi32

GetStockObject

winmm

timeGetTime

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
configure

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/libavcodec.dll
.dll windows:4 windows x86 arch:x86

d43b9654391a3a76f1a3ae1edb8e7788

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_DLL

Imports

msvcrt

abort
exit
free
log10
malloc
memcpy
memset
perror
realloc
sprintf
sscanf
strcmp

Exports

Exports

avcodec_close
avcodec_decode_video
avcodec_find_decoder_by_name
avcodec_open
get_quant_store
libavcodec_init
set_ff_idct

Sections

.text
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stab
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stabstr
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/libpostproc.dll
.dll windows:4 windows x86 arch:x86

b9f5d9119da4d6509143fcb5c3126d44

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_DLL

Imports

crtdll

_errno
_snprintf
exit
free
malloc
memcpy
memmove
memset
sprintf
strcmp
strncpy
strtok
strtol

Exports

Exports

getPPModeByNameAndQuality
getPpModeForQuality
init_mplayer
postprocess
setModifyPPmode

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stab
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stabstr
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/mp4fil32.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

Avi2Mp4
CreateMP4File
DllGetClassObject

Sections

Size: 30KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 46KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
$SYSDIR/mpg4ds32.ax
.dll regsvr32 windows:4 windows x86 arch:x86

398b30b97cec9554019381f370365b26

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
MulDiv
GetProfileIntA
GetVersionExA
DisableThreadLibraryCalls
InterlockedIncrement
InterlockedDecrement
FreeLibrary
lstrlenA
MultiByteToWideChar
GetLastError
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetSystemInfo

user32

GetDC
ReleaseDC
IsRectEmpty
GetWindowLongA
SetWindowLongA
CreateDialogParamA
MoveWindow
InvalidateRect
ShowWindow
DestroyWindow
DefWindowProcA
wsprintfA
GetDesktopWindow
LoadStringA
LoadStringW
GetWindowRect
EnableWindow
GetDlgItem
SendMessageA
SetDlgItemTextA

gdi32

GetSystemPaletteEntries

advapi32

RegCreateKeyA
RegQueryValueExA
RegSetValueA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegSetValueExA
RegCloseKey
RegOpenKeyA

ole32

CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc
CoFreeUnusedLibraries
StringFromGUID2
CoInitialize
CoUninitialize

winmm

timeGetTime

msvcrt

_purecall
sprintf
??3@YAXPAX@Z
??2@YAPAXI@Z
__dllonexit
_onexit

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/msvcr70.dll
.dll windows:4 windows x86 arch:x86

1042bb30696d4426da7447f341f51a6e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr70.pdb

Imports

kernel32

GetModuleFileNameA
GetModuleFileNameW
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetCurrentThreadId
TlsSetValue
GetCommandLineA
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitThread
CloseHandle
TlsGetValue
GetLastError
ResumeThread
CreateThread
TlsFree
SetLastError
GetCurrentThread
TlsAlloc
FindNextFileA
FindFirstFileA
FindClose
FindNextFileW
FindFirstFileW
HeapAlloc
HeapFree
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetHandleCount
GetFileType
GetStartupInfoA
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
MultiByteToWideChar
GetCommandLineW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
InitializeCriticalSection
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetConsoleCtrlHandler
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetEnvironmentVariableA
SetEnvironmentVariableW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
RtlUnwind
GetLocaleInfoW
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
HeapSize
VirtualProtect
GetSystemInfo
VirtualQuery
FlushFileBuffers
SetFilePointer
SetStdHandle
CompareStringA
CompareStringW
Sleep
Beep
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
GetFileAttributesA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesA
GetFullPathNameA
GetDriveTypeA
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
DeleteFileW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
MoveFileA
RaiseException
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadCodePtr
GetExitCodeProcess
WaitForSingleObject
FreeLibrary
CreateProcessA
CreateProcessW
HeapValidate
HeapCompact
HeapWalk
ReadConsoleA
SetConsoleMode
GetConsoleMode
IsDBCSLeadByteEx
GetConsoleCP
ReadConsoleW
SetEndOfFile
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
DuplicateHandle
GetFileInformationByHandle
PeekNamedPipe
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
LockFile
UnlockFile
CreateFileA
CreatePipe
ReadFile
CreateFileW
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetLocalTime
SetLocalTime

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@@QAE@ABV0@@Z
??0__non_rtti_object@@QAE@PBD@Z
??0bad_cast@@AAE@PBQBD@Z
??0bad_cast@@QAE@ABQBD@Z
??0bad_cast@@QAE@ABV0@@Z
??0bad_cast@@QAE@PBD@Z
??0bad_typeid@@QAE@ABV0@@Z
??0bad_typeid@@QAE@PBD@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
??1__non_rtti_object@@UAE@XZ
??1bad_cast@@UAE@XZ
??1bad_typeid@@UAE@XZ
??1exception@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??4__non_rtti_object@@QAEAAV0@ABV0@@Z
??4bad_cast@@QAEAAV0@ABV0@@Z
??4bad_typeid@@QAEAAV0@ABV0@@Z
??4exception@@QAEAAV0@ABV0@@Z
??8type_info@@QBEHABV0@@Z
??9type_info@@QBEHABV0@@Z
??_7__non_rtti_object@@6B@
??_7bad_cast@@6B@
??_7bad_typeid@@6B@
??_7exception@@6B@
??_E__non_rtti_object@@UAEPAXI@Z
??_Ebad_cast@@UAEPAXI@Z
??_Ebad_typeid@@UAEPAXI@Z
??_Eexception@@UAEPAXI@Z
??_Fbad_cast@@QAEXXZ
??_Fbad_typeid@@QAEXXZ
??_G__non_rtti_object@@UAEPAXI@Z
??_Gbad_cast@@UAEPAXI@Z
??_Gbad_typeid@@UAEPAXI@Z
??_Gexception@@UAEPAXI@Z
??_U@YAPAXI@Z
??_V@YAXPAX@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDXZ
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?terminate@@YAXXZ
?unexpected@@YAXXZ
?what@exception@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CxxThrowException
_EH_prolog
_Getdays
_Getmonths
_Gettnames
_HUGE
_Strftime
_XcptFilter
__CxxCallUnwindDtor
__CxxCallUnwindVecDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
___lc_codepage_func
___lc_collate_cp_func
___lc_handle_func
___mb_cur_max_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__buffer_overrun
__crtCompareStringA
__crtCompareStringW
__crtGetLocaleInfoW
__crtGetStringTypeW
__crtLCMapStringA
__crtLCMapStringW
__dllonexit
__doserrno
__fpecode
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__lc_clike
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv_init
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fileinfo
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__osver
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__winmajor
__p__winminor
__p__winver
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__security_error_handler
__set_app_type
__set_buffer_overrun_handler
__setlc_active
__setusermatherr
__threadhandle
__threadid
__toascii
__unDName
__unDNameEx
__uncaught_exception
__unguarded_readlc_active
__wargv
__wcserror
__wgetmainargs
__winitenv
_abnormal_termination
_access
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_aligned_free
_aligned_malloc
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_realloc
_amsg_exit
_assert
_atodbl
_atoi64
_atoldbl
_beep
_beginthread
_beginthreadex
_c_exit
_cabs
_callnewh
_cexit
_cgets
_cgetws
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_clearfp
_close
_commit
_commode
_control87
_controlfp
_copysign
_cprintf
_cputs
_cputws
_creat
_cscanf
_ctime64
_ctype
_cwait
_cwprintf
_cwscanf
_daylight
_dstbias
_dup
_dup2
_ecvt
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fcloseall
_fcvt
_fdopen
_fgetchar
_fgetwchar
_filbuf
_fileinfo
_filelength
_filelengthi64
_fileno
_findclose
_findfirst
_findfirst64
_findfirsti64
_findnext
_findnext64
_findnexti64
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fputchar
_fputwchar
_fsopen
_fstat
_fstat64
_fstati64
_ftime
_ftime64
_ftol
_fullpath
_futime
_futime64
_gcvt
_get_osfhandle
_get_sbh_threshold
_getch
_getche
_getcwd
_getdcwd
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp
_getpid
_getsystime
_getw
_getwch
_getwche
_getws
_global_unwind2
_gmtime64
_heapadd
_heapchk
_heapmin
_heapset
_heapused
_heapwalk
_hypot
_i64toa
_i64tow
_initterm
_inp
_inpd
_inpw
_iob
_isatty
_isctype
_ismbbalnum
_ismbbalpha
_ismbbgraph
_ismbbkalnum
_ismbbkana
_ismbbkprint
_ismbbkpunct
_ismbblead
_ismbbprint
_ismbbpunct
_ismbbtrail
_ismbcalnum
_ismbcalpha
_ismbcdigit
_ismbcgraph
_ismbchira
_ismbckata
_ismbcl0
_ismbcl1
_ismbcl2
_ismbclegal
_ismbclower
_ismbcprint
_ismbcpunct
_ismbcspace
_ismbcsymbol
_ismbcupper
_ismbslead
_ismbstrail
_isnan
_itoa
_itow
_j0
_j1
_jn
_kbhit
_lfind
_loaddll
_local_unwind2
_localtime64
_lock
_locking
_logb
_longjmpex
_lrotl
_lrotr
_lsearch
_lseek
_lseeki64
_ltoa
_ltow
_makepath
_mbbtombc
_mbbtype
_mbcasemap
_mbccpy
_mbcjistojms
_mbcjmstojis
_mbclen
_mbctohira
_mbctokata
_mbctolower
_mbctombb
_mbctoupper
_mbctype
_mbsbtype
_mbscat
_mbschr
_mbscmp
_mbscoll
_mbscpy
_mbscspn
_mbsdec
_mbsdup
_mbsicmp
_mbsicoll
_mbsinc
_mbslen
_mbslwr
_mbsnbcat
_mbsnbcmp
_mbsnbcnt
_mbsnbcoll
_mbsnbcpy
_mbsnbicmp
_mbsnbicoll
_mbsnbset
_mbsncat
_mbsnccnt
_mbsncmp
_mbsncoll
_mbsncpy
_mbsnextc
_mbsnicmp
_mbsnicoll
_mbsninc
_mbsnset
_mbspbrk
_mbsrchr
_mbsrev
_mbsset
_mbsspn
_mbsspnp
_mbsstr
_mbstok
_mbstrlen
_mbsupr
_memccpy
_memicmp
_mkdir
_mktemp
_mktime64
_msize
_nextafter
_onexit
_open
_open_osfhandle
_osplatform
_osver
_outp
_outpd
_outpw
_pclose
_pctype
_pgmptr
_pipe
_popen
_purecall
_putch
_putenv
_putw
_putwch
_putws
_pwctype
_read
_resetstkoflw
_rmdir
_rmtmp
_rotl
_rotr
_safe_fdiv
_safe_fdivr
_safe_fprem
_safe_fprem1
_scalb
_scprintf
_scwprintf
_searchenv
_seh_longjmp_unwind
_set_SSE2_enable
_set_error_mode
_set_sbh_threshold
_set_security_error_handler
_seterrormode
_setjmp
_setjmp3
_setmaxstdio
_setmbcp
_setmode
_setsystime
_sleep
_snprintf
_snscanf
_snwprintf
_snwscanf
_sopen
_spawnl
_spawnle
_spawnlp
_spawnlpe
_spawnv

Sections

.text
Size: 224KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/ogg.dll
.dll windows:4 windows x86 arch:x86

9eafc5d28eca8275d632e7cc55ca88c9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcr70

realloc
memmove
memchr
_initterm
malloc
__dllonexit
_onexit
_except_handler3
_adjust_fdiv
free

kernel32

DisableThreadLibraryCalls

Exports

Exports

ogg_packet_clear
ogg_page_bos
ogg_page_continued
ogg_page_eos
ogg_page_granulepos
ogg_page_packets
ogg_page_pageno
ogg_page_serialno
ogg_page_version
ogg_stream_clear
ogg_stream_destroy
ogg_stream_eos
ogg_stream_flush
ogg_stream_init
ogg_stream_packetin
ogg_stream_packetout
ogg_stream_packetpeek
ogg_stream_pagein
ogg_stream_pageout
ogg_stream_reset
ogg_sync_buffer
ogg_sync_clear
ogg_sync_destroy
ogg_sync_init
ogg_sync_pageout
ogg_sync_pageseek
ogg_sync_reset
ogg_sync_wrote
oggpack_adv
oggpack_adv1
oggpack_adv_huff
oggpack_bits
oggpack_bytes
oggpack_get_buffer
oggpack_look
oggpack_look1
oggpack_look_huff
oggpack_read
oggpack_read1
oggpack_readinit
oggpack_reset
oggpack_write
oggpack_writeclear
oggpack_writeinit

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 198B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/quicktime/3ivx Delta 3.5.qtx
.dll windows:4 windows x86 arch:x86

07a453398a4dc873bacce12ab89cb359

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
GetModuleFileNameA
LoadLibraryA
GetSystemDirectoryA
GetProcAddress
CloseHandle
GetModuleHandleA
LCMapStringA
GetFileType
GetStartupInfoA
CompareStringW
CompareStringA
SetEnvironmentVariableA
ReadFile
SetEndOfFile
GetTimeZoneInformation
GetSystemTime
GetLocalTime
InterlockedDecrement
InterlockedIncrement
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
RaiseException
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
WideCharToMultiByte
MultiByteToWideChar
FreeLibrary
LCMapStringW
HeapFree
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
HeapAlloc
GetCPInfo
HeapReAlloc
RtlUnwind
GetStringTypeA
GetStringTypeW
SetFilePointer
VirtualAlloc
CreateFileA
SetStdHandle
FlushFileBuffers
GetACP
GetOEMCP

user32

GetClientRect
GetWindowLongA
LoadImageA
CallWindowProcA
SetWindowLongA

gdi32

SelectObject
PatBlt
CreatePatternBrush

advapi32

RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA

Exports

Exports

ThrivXCDComponentDispatch

Sections

.text
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 232B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/quicktime/3ivx.cm.flask
.dll windows:4 windows x86 arch:x86

75644c6ef7d9bf066d0e46ca6c0d7df1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord4627
ord4424
ord3582
ord567
ord825
ord616
ord4080
ord4275
ord823
ord1168
ord5277
ord3619
ord3626
ord3663
ord800
ord941
ord3825
ord3079
ord540
ord2414
ord283
ord2859
ord2379
ord4407
ord3716
ord790
ord3742
ord818
ord6880
ord2152
ord537
ord1233
ord3317
ord2971
ord5759
ord2243
ord3571
ord6186
ord4330
ord6189
ord6172
ord5873
ord5789
ord5794
ord5678
ord5736
ord5579
ord5571
ord6061
ord5864
ord3596
ord755
ord640
ord5785
ord4133
ord4297
ord2754
ord6194
ord6021
ord1640
ord323
ord470
ord3573
ord1641
ord5788
ord472
ord5265
ord3749
ord6192
ord5241
ord2514
ord6052
ord1775
ord5280
ord5756
ord2976
ord3402
ord641
ord324
ord2302
ord4234
ord4710
ord1948
ord2396
ord3346
ord5300
ord5303
ord4079
ord4699
ord5307
ord5289
ord5715
ord4538
ord565
ord817
ord2726
ord4226
ord3092
ord5953
ord2645
ord2575
ord4396
ord3574
ord609
ord860
ord2299
ord6646
ord6111
ord2642
ord4694
ord3089
ord4476
ord3098
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord5302
ord2725
ord4698
ord5714
ord3953
ord3738
ord561
ord815
ord6467
ord1105
ord6215
ord2086
ord6055
ord2023
ord2411
ord4774
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5290
ord4353
ord6374
ord5163
ord2385
ord3831
ord3830
ord3262
ord3081
ord2985
ord3259
ord3136
ord4465
ord2124
ord3147
ord2982
ord1727
ord2446
ord5261
ord4425
ord5065
ord3597
ord4398
ord1776
ord4078
ord4998
ord4376
ord4853
ord4622
ord1243
ord1116
ord1176
ord1575
ord1577
ord1182
ord342
ord269
ord1197
ord1570
ord1253
ord1255
ord1578
ord600
ord826

msvcrt

_onexit
sprintf
_ftol
free
??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_initterm
floor
__dllonexit
atoi
strncpy
_CIpow
__CxxFrameHandler

kernel32

GetCurrentProcessId
CreateMutexA
LocalFree
ReleaseMutex
CloseHandle
GetLastError
GetModuleFileNameA
LoadLibraryA
GetModuleHandleA
GetProcAddress
FreeLibrary
GetSystemDirectoryA
WaitForSingleObject
ResetEvent
CreateEventA
lstrcpyA
SetEvent
LocalAlloc

user32

EnableWindow
LoadImageA
IsDialogMessageA
DrawIconEx
SendMessageA
DispatchMessageA
FillRect
GetSysColor
wsprintfA
GetMessageA
GrayStringA
TranslateMessage
MessageBoxA
PostQuitMessage
InvalidateRect
DrawTextA
TabbedTextOutA
GetWindowRect

gdi32

SelectObject
BitBlt
GetBkColor
DPtoLP
PtVisible
GetMapMode
LPtoDP
CreateCompatibleDC
CreateSolidBrush
CreateCompatibleBitmap
GetStockObject
RectVisible
TextOutA
ExtTextOutA
Escape

comdlg32

GetOpenFileNameA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

Exports

Exports

xCompileEntry

Sections

.text
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/vorbis.dll
.dll windows:4 windows x86 arch:x86

4947ed15a4b01550bcbfd9fd94643c01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ogg

oggpack_bits
oggpack_readinit
oggpack_look
oggpack_adv
oggpack_read
oggpack_read1
oggpack_writeinit
oggpack_writeclear
oggpack_get_buffer
oggpack_write
oggpack_reset
oggpack_bytes

msvcr70

_CIpow
memmove
_except_handler3
_onexit
__dllonexit
_adjust_fdiv
_initterm
ldexp
toupper
qsort
sprintf
perror
fopen
fprintf
fclose
_iob
_CIacos
free
calloc
malloc
realloc
floor

kernel32

DisableThreadLibraryCalls

Exports

Exports

_floor_P
_mapping_P
_residue_P
_time_P
_vi_psy_copy
residue_free_info
vorbis_analysis
vorbis_analysis_blockout
vorbis_analysis_buffer
vorbis_analysis_headerout
vorbis_analysis_init
vorbis_analysis_wrote
vorbis_bitrate_addblock
vorbis_bitrate_flushpacket
vorbis_block_clear
vorbis_block_init
vorbis_comment_add
vorbis_comment_add_tag
vorbis_comment_clear
vorbis_comment_init
vorbis_comment_query
vorbis_comment_query_count
vorbis_commentheader_out
vorbis_dsp_clear
vorbis_info_blocksize
vorbis_info_clear
vorbis_info_init
vorbis_packet_blocksize
vorbis_synthesis
vorbis_synthesis_blockin
vorbis_synthesis_headerin
vorbis_synthesis_init
vorbis_synthesis_pcmout
vorbis_synthesis_read

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/xvid.ax
.dll regsvr32 windows:4 windows x86 arch:x86

71d75bc7537f464567aece6ef2106aa0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
DisableThreadLibraryCalls
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
lstrlenA
OutputDebugStringA
GetLastError
MultiByteToWideChar
GetModuleFileNameA

user32

GetWindowRect
SetWindowLongA
GetWindowLongA
DefWindowProcA
CreateDialogParamA
DestroyWindow
InvalidateRect
ShowWindow
MoveWindow
wsprintfA
LoadStringW
LoadStringA
MessageBoxA
GetDlgItem
GetDesktopWindow
SendMessageA

msvcrt

__CxxFrameHandler
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall

advapi32

RegEnumKeyExA
RegSetValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCreateKeyA
RegDeleteKeyA
RegCloseKey
RegCreateKeyExA

ole32

CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CoFreeUnusedLibraries
CoUninitialize
CoInitialize
StringFromGUID2

comctl32

PropertySheetA
ord17

winmm

timeGetTime

Exports

Exports

Configure
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/xvidcore.dll
.dll windows:4 windows x86 arch:x86

fb8c4a7e7c246dad65e187e6877adca9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

fopen
fclose
_errno
free
rand
fprintf
setbuf
fputs
fgetc
realloc
malloc
sscanf
sprintf
strncmp
_except_handler3
srand
log
fwrite
_initterm
_adjust_fdiv
vsprintf
printf

kernel32

DisableThreadLibraryCalls

Exports

Exports

xvid_decore
xvid_encore
xvid_global
xvid_plugin_2pass1
xvid_plugin_2pass2
xvid_plugin_dump
xvid_plugin_lumimasking
xvid_plugin_psnr
xvid_plugin_single

Sections

.text
Size: 528KB - Virtual size: 524KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 838B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 486KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$SYSDIR/xvidvfw.dll
.dll windows:4 windows x86 arch:x86

b445e40db2bde9ec51c7c56a6f5f9979

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CreateWindowExA
LoadStringA
GetParent
SetWindowPos
GetDlgCtrlID
EnableWindow
CheckDlgButton
GetDlgItemInt
MessageBoxA
EnumChildWindows
GetWindowLongA
KillTimer
GetDC
SetWindowLongA
SetTimer
IsDlgButtonChecked
CheckRadioButton
GetDlgItemTextA
SetDlgItemInt
DialogBoxParamA
SendMessageA
LoadCursorA
SetClassLongA
SendDlgItemMessageA
SetDlgItemTextA
GetDlgItem
EndDialog
InvalidateRect
GetDesktopWindow
ShowWindow
GetWindowRect
wsprintfA
DestroyWindow
CreateDialogParamA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

comctl32

PropertySheetA
ord17

advapi32

RegCloseKey
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA

gdi32

SetTextAlign
SelectObject
GetTextAlign
GetTextMetricsA
CreateFontIndirectA
GetStockObject
SetBkMode
SetDIBitsToDevice
TextOutA
SetTextColor
GetObjectA
SetBkColor

shell32

ShellExecuteA

winmm

DefDriverProc

kernel32

OutputDebugStringA
FreeLibrary
CloseHandle
lstrlenA
GetProcAddress
LoadLibraryA
GetLastError
CreateFileA
GetFileSize
lstrcpyA
WriteFile
ReadFile
lstrcmpiA

msvcrt

malloc
atoi
wcscpy
free
sscanf
atof
sprintf
_initterm
_adjust_fdiv

Exports

Exports

Configure
DriverProc

Sections

.text
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AC3/ac3filter.ax
.dll regsvr32 windows:4 windows x86 arch:x86

135a6c6d4a158d1051e08a607647b1cb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

fopen
strtod
fclose
memmove
??3@YAXPAX@Z
__CxxFrameHandler
_swab
sprintf
_errno
_ftol
??2@YAPAXI@Z
_purecall
strtol
?terminate@@YAXXZ
_except_handler3
_CIpow

comctl32

ord17

comdlg32

GetOpenFileNameA

olepro32

ord250

kernel32

InterlockedIncrement
GetModuleHandleA
WideCharToMultiByte
GetLastError
GetThreadTimes
SystemTimeToFileTime
GetSystemTime
DuplicateHandle
GetCurrentThread
GetCurrentProcess
CloseHandle
GetPrivateProfileStringA
WritePrivateProfileStringA
GetVersionExA
DisableThreadLibraryCalls
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
FreeLibrary
lstrlenA
MultiByteToWideChar
GetModuleFileNameA

user32

IsDlgButtonChecked
CheckDlgButton
EndDialog
DialogBoxParamA
GetDlgCtrlID
GetDlgItemTextA
InvalidateRect
CreateDialogParamA
SetTimer
DefWindowProcA
wsprintfA
MoveWindow
IsWindowVisible
LoadStringA
LoadStringW
GetWindowRect
GetDesktopWindow
GetClientRect
GetWindowTextA
DrawTextA
BeginPaint
SetDlgItemTextA
SendDlgItemMessageA
EnableWindow
GetWindowLongA
CallWindowProcA
SendMessageA
SetWindowLongA
MessageBoxA
ShowWindow
DestroyWindow
GetDlgItem
EndPaint

gdi32

SelectObject
SetTextColor
DeleteObject
CreateFontA

shell32

ShellExecuteA

ole32

CoInitialize
CoUninitialize
CoFreeUnusedLibraries
StringFromGUID2
CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree

advapi32

RegEnumValueA
RegCreateKeyA
RegSetValueA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
RegCloseKey
RegDeleteKeyA

Exports

Exports

CPlApplet
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
config

Sections

.text
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AC3/dialog_patch.exe
.exe windows:4 windows x86 arch:x86

e4d6d7f3f0c0db6f2549f2eb543b9e85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
fwrite
fread
fseek
printf
fopen
_exit
_XcptFilter
exit
__p___initenv
__getmainargs
fclose
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 4KB - Virtual size: 636B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 486B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DivX 3.11/DIVX_c32.ax
.dll regsvr32 windows:4 windows x86 arch:x86

8cfac2158b1f16737530e07b4529fbbc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

MulDiv
Sleep
InitializeCriticalSection
EnterCriticalSection
GetVersionExA
DisableThreadLibraryCalls
InterlockedIncrement
InterlockedDecrement
FreeLibrary
lstrlenA
MultiByteToWideChar
GetLastError
GetModuleFileNameA
LeaveCriticalSection
GetSystemInfo
DeleteCriticalSection
GetProfileIntA

user32

ReleaseDC
GetDC
IsRectEmpty
GetDesktopWindow
GetWindowLongA
SetWindowLongA
CreateDialogParamA
MoveWindow
InvalidateRect
ShowWindow
DestroyWindow
DefWindowProcA
wsprintfA
LoadStringA
LoadStringW
GetWindowRect
EnableWindow
GetDlgItem
SendMessageA
SetDlgItemTextA

gdi32

GetSystemPaletteEntries

advapi32

RegCloseKey
RegOpenKeyA
RegSetValueA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegQueryValueExA
RegCreateKeyA
RegSetValueExA

ole32

CoCreateInstance
CoInitialize
StringFromGUID2
CoFreeUnusedLibraries
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc

winmm

timeGetTime

msvcrt

_purecall
??2@YAPAXI@Z
sprintf
??3@YAXPAX@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DivX 3.11/DivX.inf
DivX 3.11/DivXa32.acm
.dll windows:4 windows x86 arch:x86

4a6b5dd91037124752d0b0b9bee8d857

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

ntdll

RtlUnwind

kernel32

LocalFree
MulDiv
GlobalAlloc
WaitForSingleObject
SetEvent
CreateThread
CreateEventA
LocalAlloc
CloseHandle
LockResource
LoadResource
FindResourceA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
SizeofResource
HeapReAlloc
GetCurrentProcess
HeapSize
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
InterlockedIncrement
GetProcAddress
GetModuleHandleA
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapAlloc
GetACP
GetStdHandle
GetFileType
MultiByteToWideChar
GetModuleFileNameA
GetCPInfo
GetOEMCP
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
HeapDestroy
HeapCreate
VirtualFree
WriteFile
HeapFree
VirtualAlloc
GetLocaleInfoA
LCMapStringA
LCMapStringW
SetFilePointer
GetStringTypeA
GetStringTypeW
LoadLibraryA
SetStdHandle
RaiseException
FlushFileBuffers
GetLocaleInfoW
GlobalFree
SetHandleCount
GetStartupInfoA

user32

LoadStringA

winmm

DefDriverProc
GetDriverModuleHandle

Exports

Exports

DriverProc

Sections

.text
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 118KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DivX 3.11/DivXc32.dll
.dll windows:4 windows x86 arch:x86

d7de9f987b5d00efa55c3d8150821744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msvcrt

??3@YAXPAX@Z
_initterm
_adjust_fdiv
malloc
??2@YAPAXI@Z
free
_except_handler3

user32

SetDlgItemTextA
IsDlgButtonChecked
wsprintfA
SetScrollPos
CheckDlgButton
EndDialog
SetDlgItemInt
GetScrollPos
SetScrollRange
GetDlgItemInt
GetDlgItem
GetDesktopWindow
GetDC
ReleaseDC
DialogBoxParamA
LoadStringA
MessageBoxA
GetWindowLongA

gdi32

GetSystemPaletteEntries

kernel32

Sleep
CreateThread
SetEvent
CreateEventA
IsBadWritePtr
MultiByteToWideChar
IsBadReadPtr
DisableThreadLibraryCalls
GetSystemInfo
WaitForSingleObject
CloseHandle

winmm

GetDriverModuleHandle
DefDriverProc

advapi32

RegOpenKeyA
RegCreateKeyA
RegCloseKey
RegSetValueExA
RegQueryValueExA

Exports

Exports

DriverProc

Sections

.text
Size: 227KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 160KB - Virtual size: 465KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DivX 3.11/DivXc32f.dll
.dll windows:4 windows x86 arch:x86

d7de9f987b5d00efa55c3d8150821744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msvcrt

??3@YAXPAX@Z
_initterm
_adjust_fdiv
malloc
??2@YAPAXI@Z
free
_except_handler3

user32

SetDlgItemTextA
IsDlgButtonChecked
wsprintfA
SetScrollPos
CheckDlgButton
EndDialog
SetDlgItemInt
GetScrollPos
SetScrollRange
GetDlgItemInt
GetDlgItem
GetDesktopWindow
GetDC
ReleaseDC
DialogBoxParamA
LoadStringA
MessageBoxA
GetWindowLongA

gdi32

GetSystemPaletteEntries

kernel32

Sleep
CreateThread
SetEvent
CreateEventA
IsBadWritePtr
MultiByteToWideChar
IsBadReadPtr
DisableThreadLibraryCalls
GetSystemInfo
WaitForSingleObject
CloseHandle

winmm

GetDriverModuleHandle
DefDriverProc

advapi32

RegOpenKeyA
RegCreateKeyA
RegCloseKey
RegSetValueExA
RegQueryValueExA

Exports

Exports

DriverProc

Sections

.text
Size: 227KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 465KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DivX 3.11/L3codeca.acm
.dll windows:4 windows x86 arch:x86

009d46f489b6caf6423c0b0661dedb20

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

TlsSetValue
WideCharToMultiByte
HeapDestroy
UnhandledExceptionFilter
WriteFile
HeapCreate
HeapSize
CloseHandle
VirtualAlloc
GetCPInfo
GetStringTypeA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FlushFileBuffers
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetStringTypeW
VirtualFree
GlobalAlloc
GetTimeZoneInformation
GetCurrentProcess
GetDriveTypeA
GetEnvironmentStrings
GetEnvironmentStringsW
GetFileSize
GetFileType
GetLastError
GetLocaleInfoA
GetLocaleInfoW
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetStdHandle
GetACP
GlobalFree
HeapAlloc
GetCurrentThreadId
CompareStringW
GetCommandLineA
CompareStringA
GetVersion
CreateFileA
HeapFree
HeapReAlloc
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LocalAlloc
LocalFree
MultiByteToWideChar
RaiseException
ReadFile
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue

gdi32

SetTextColor
SetBkColor
DeleteObject
CreateSolidBrush

winmm

GetDriverModuleHandle
DefDriverProc

user32

wvsprintfA
SetWindowLongA
SetDlgItemTextA
SendMessageA
LoadIconA
GetWindowLongA
GetSysColor
GetDlgItem
EndDialog
DialogBoxParamA
LoadStringA
wsprintfA

advapi32

RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey

Exports

Exports

DriverProc

Sections

CODE
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 86KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
MP4Player.exe
.exe windows:4 windows x86 arch:x86

0f820abd401ecfee26f77886cff93511

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

quartz

AMGetErrorTextW

kernel32

GetCurrentProcessId
DebugBreak
SetLastError
FindFirstFileW
lstrcpynA
lstrcmpW
FindClose
LockResource
FindNextFileW
GetShortPathNameW
CloseHandle
GetSystemInfo
VirtualFree
VirtualAlloc
GetProcAddress
GetTickCount
CreateThread
LCMapStringW
LCMapStringA
GetCPInfo
GetOEMCP
GetStringTypeW
GetStringTypeA
VirtualQuery
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetCommandLineW
GetCommandLineA
lstrcatW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
WriteFile
SetFilePointer
ReadFile
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
WideCharToMultiByte
GetCurrentDirectoryW
UnhandledExceptionFilter
TlsGetValue
TlsSetValue
TlsFree
TlsAlloc
HeapSize
TerminateProcess
IsBadWritePtr
HeapCreate
HeapDestroy
ExitProcess
RtlUnwind
GetStartupInfoW
GetModuleHandleA
GetFullPathNameW
ResumeThread
ExitThread
HeapReAlloc
GetVersionExA
GetLongPathNameW
OutputDebugStringW
lstrlenA
lstrcpyW
GetCurrentThreadId
DeleteCriticalSection
lstrcmpiW
EnterCriticalSection
GetThreadLocale
GetLastError
InterlockedExchange
RaiseException
FlushInstructionCache
lstrlenW
MultiByteToWideChar
GetDriveTypeA
VirtualProtect
CreateFileW
SetStdHandle
FlushFileBuffers
LoadLibraryA
SetUnhandledExceptionFilter
IsBadReadPtr
GetACP
GetModuleFileNameW
lstrcpynW
LeaveCriticalSection
GetVersionExW
SizeofResource
InitializeCriticalSection
GetProcessHeap
GetModuleHandleW
HeapFree
GetCurrentProcess
IsBadCodePtr
SetEndOfFile
InterlockedDecrement
InterlockedIncrement
LoadLibraryExW
HeapAlloc
LoadResource
FreeLibrary
FindResourceW
GetLocaleInfoA
CreateMutexW
GetEnvironmentStringsW

user32

IsMenu
PostQuitMessage
GetWindowDC
FillRect
DrawTextW
GetKeyState
LoadStringA
GetFocus
DialogBoxParamW
CallNextHookEx
MessageBeep
IsWindowEnabled
WindowFromPoint
DrawEdge
ModifyMenuW
SetCapture
GetMenu
OffsetRect
TrackPopupMenuEx
CheckMenuRadioItem
GetClassNameW
GetSysColor
SetMenu
GetSysColorBrush
FrameRect
LoadBitmapW
CreateDialogParamW
SetMenuDefaultItem
UnhookWindowsHookEx
GetSystemMetrics
IsWindowVisible
DrawFrameControl
SetMenuItemInfoW
CallWindowProcW
GetMessagePos
GetWindowThreadProcessId
ReleaseCapture
GetDlgItemTextW
TranslateAcceleratorW
PtInRect
ScreenToClient
EndDialog
SetDlgItemTextW
MapWindowPoints
GetWindow
EndPaint
ClientToScreen
SetWindowPlacement
SetTimer
GetWindowRect
TrackPopupMenu
wvsprintfW
ChangeDisplaySettingsW
PostMessageW
KillTimer
GetSubMenu
SetForegroundWindow
DeleteMenu
GetParent
GetMenuStringW
SetParent
GetClientRect
SetFocus
GetMenuItemInfoW
SetRectEmpty
BeginPaint
CharLowerW
GetDC
ShowCursor
InflateRect
GetWindowPlacement
InvalidateRect
AppendMenuW
SystemParametersInfoW
ReleaseDC
EnableMenuItem
GetDlgItem
RedrawWindow
GetDesktopWindow
SetWindowPos
CreatePopupMenu
GetActiveWindow
GetMenuItemCount
RemoveMenu
InsertMenuW
MessageBoxW
SendMessageW
UpdateWindow
SetWindowTextW
EnumDisplaySettingsW
MoveWindow
IsRectEmpty
DestroyWindow
GetMessageW
CharNextW
RegisterWindowMessageW
LoadImageW
UnregisterClassW
LoadCursorW
GetClassInfoExW
wsprintfW
TranslateMessage
LoadAcceleratorsW
RegisterClassExW
LoadMenuW
GetWindowLongW
PeekMessageW
SetWindowLongW
LoadStringW
ShowWindow
SendMessageTimeoutW
IsWindow
CreateWindowExW
DestroyMenu
DefWindowProcW
DispatchMessageW
SetWindowsHookExW

gdi32

GetObjectW
GetTextExtentPoint32W
BitBlt
PatBlt
CreatePatternBrush
GetStockObject
DeleteDC
SetBkColor
ExtTextOutW
SetTextColor
CreateDIBSection
CreateFontIndirectW
SetBrushOrgEx
CreateBitmap
SetBkMode
SelectObject
CreateCompatibleDC
GetClipBox
DeleteObject
CreateCompatibleBitmap

comdlg32

ChooseFontW
GetSaveFileNameW
CommDlgExtendedError
GetOpenFileNameW

advapi32

RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW

shell32

DragAcceptFiles
FindExecutableW
ShellExecuteW
DragQueryFileW

ole32

CoTaskMemRealloc
CoTaskMemAlloc
CoInitialize
CoTaskMemFree
GetRunningObjectTable
CoUninitialize
CreateItemMoniker
CoFreeUnusedLibraries
CoCreateInstance

oleaut32

SysFreeString
SysAllocString
OleCreatePropertyFrame
VarUI4FromStr

comctl32

InitCommonControlsEx
ImageList_Draw
ImageList_DrawIndirect
ImageList_AddMasked
ImageList_LoadImageW
ImageList_Create
ImageList_GetImageCount
ord8
ImageList_Destroy

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
divx.chm
.chm
ffdhow/TomsMoComp_ff.dll
.dll windows:4 windows x86 arch:x86

a39681e7ddb0f3b2c5b9b4e6e015393f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_initterm
malloc
??3@YAXPAX@Z
_adjust_fdiv
free
??2@YAPAXI@Z

kernel32

DisableThreadLibraryCalls

Exports

Exports

create
destroy
process

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ffdhow/ffdshow.ax
.dll regsvr32 windows:4 windows x86 arch:x86

706e8a14262559c78d79b4150906ffd5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
GetACP
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls
lstrlenA
Sleep
LocalAlloc
LocalFree
DeleteFileA
GetPrivateProfileStringA
FindResourceA
LoadResource
SizeofResource
LockResource
LoadLibraryA
GetProcAddress
FreeLibrary
WritePrivateProfileStringA
GetPrivateProfileSectionNamesA
GetPrivateProfileSectionA
CloseHandle
CreateEventA
GetCurrentProcessId
LeaveCriticalSection
InitializeCriticalSection
EnterCriticalSection
DeleteCriticalSection
WideCharToMultiByte
GetVersionExA
SystemTimeToFileTime
SearchPathA
GetModuleFileNameA
GetSystemDirectoryA
InterlockedExchange
MultiByteToWideChar
GetFileAttributesA
FindFirstFileA
FindNextFileA
FindClose
OutputDebugStringA
WaitForSingleObject

user32

EndDialog
DialogBoxParamA
GetWindowPlacement
SetWindowPlacement
IsWindow
CreateDialogParamA
DrawEdge
MapWindowPoints
PtInRect
WindowFromPoint
LoadMenuA
GetSubMenu
MessageBoxA
EnableMenuItem
ScreenToClient
LoadCursorA
SetCursor
GetClientRect
RegisterWindowMessageA
SendMessageA
GetDesktopWindow
LoadStringW
SetMenuItemInfoA
GetMenuItemInfoA
GetMenuItemCount
ScrollWindow
ClientToScreen
SetCursorPos
GetSysColor
LoadBitmapA
SetCapture
ReleaseCapture
DestroyIcon
GetDC
ReleaseDC
GetFocus
GetDlgItemInt
SetDlgItemInt
GetWindowRect
GetParent
OffsetRect
MoveWindow
SetWindowPos
SetFocus
ShowWindow
IsWindowVisible
InvalidateRect
CallWindowProcA
EnableWindow
GetDlgItemTextA
SendDlgItemMessageA
SetDlgItemTextA
FillRect
LoadIconA
KillTimer
SetTimer
GetCursorPos
SetForegroundWindow
GetScrollInfo
SetScrollInfo
GetSystemMetrics
CreateDialogIndirectParamA
wsprintfA
UnregisterClassA
DispatchMessageA
TranslateMessage
TrackPopupMenu
GetMenuStringA
DestroyMenu
CreatePopupMenu
InsertMenuItemA
LoadStringA
GetDlgItem
SetWindowTextA
EnumChildWindows
GetWindowTextA
GetDlgCtrlID
DestroyWindow
GetForegroundWindow
GetWindowThreadProcessId
PostMessageA
GetWindowLongA
PostQuitMessage
DefWindowProcA
RegisterClassA
CreateWindowExA
SetWindowLongA
GetMessageA

msvcrt

??1type_info@@UAE@XZ
_stricoll
memchr
_vsnprintf
strtod
strtoul
fread
fputs
_strtime
fwrite
floor
_snprintf
strrchr
_CIpow
calloc
rewind
strncmp
sscanf
_beginthreadex
_endthreadex
vsprintf
__CxxFrameHandler
memmove
??2@YAPAXI@Z
strtol
_makepath
_splitpath
_ftol
??3@YAXPAX@Z
??0exception@@QAE@ABV0@@Z
_CxxThrowException
strncpy
??0exception@@QAE@XZ
??1exception@@UAE@XZ
malloc
free
memcpy
_purecall
realloc
srand
time
clock
_stricmp
strchr
sprintf
rand
_beginthread
atoi
fclose
fgets
fopen
_itoa
_strdup
isspace
_strnicmp
strstr

advapi32

RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegEnumKeyExA
RegDeleteKeyA
RegQueryValueExA
RegSetValueA
RegCreateKeyA

winmm

timeGetTime

ole32

GetRunningObjectTable
CoTaskMemFree
CoGetMalloc
CoInitialize
CoTaskMemAlloc
CoCreateInstance
CoUninitialize
CoFreeUnusedLibraries
StringFromGUID2

oleaut32

OleCreatePropertyFrame

comctl32

ord17
ImageList_Create
ImageList_Destroy
ImageList_DrawEx
ImageList_Draw
ImageList_Add

gdi32

TextOutA
SetBkColor
SetTextColor
GetStockObject
SelectObject
CreateCompatibleBitmap
DeleteDC
SetTextCharacterExtra
CreateCompatibleDC
CreateFontIndirectA
GetDIBits
CreateBrushIndirect
GetObjectA
GetCurrentObject
Polygon
SetTextAlign
CreatePen
CreateSolidBrush
StretchDIBits
StretchBlt
SetDIBitsToDevice
EnumFontFamiliesExA
GetTextExtentPoint32A
DeleteObject

shell32

Shell_NotifyIconA
ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

dinput

DirectInputCreateA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
configure

Sections

.text
Size: 488KB - Virtual size: 487KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ffdhow/ffdshow.ax.manifest
.xml
ffdhow/libavcodec.dll
.dll windows:4 windows x86 arch:x86

b51fc6a8a7c9a782ca6484d1910a8809

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msvcrt

__dllonexit
_errno
abort
cos
exit
fflush
free
malloc
memcpy
memmove
memset
perror
sqrt
sscanf
strlen
strtoul
toupper

kernel32

AddAtomA
CreateMutexA
FindAtomA
GetAtomNameA
InterlockedIncrement
ReleaseMutex
Sleep
WaitForSingleObject

Exports

Exports

av_free_static
avcodec_alloc_context
avcodec_alloc_frame
avcodec_close
avcodec_decode_video
avcodec_find_decoder
avcodec_flush_buffers
avcodec_init
avcodec_open
avcodec_register_all
getVersion
setAllocator

Sections

.text
Size: 727KB - Virtual size: 726KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 736B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ffdhow/libmpeg2_ff.dll
.dll windows:4 windows x86 arch:x86

67db939c52f2b57725ae990f2d0abbd9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msvcrt

__dllonexit
_errno
abort
fflush
free
malloc
memset
strlen
strtoul

kernel32

AddAtomA
CreateMutexA
FindAtomA
GetAtomNameA
InterlockedIncrement
ReleaseMutex
Sleep
WaitForSingleObject

Exports

Exports

mpeg2_buffer
mpeg2_close
mpeg2_info
mpeg2_init
mpeg2_parse

Sections

.text
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 556B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ffdhow/libmplayer.dll
.dll windows:4 windows x86 arch:x86

25b02e99a161d0ccae01e276f5a2a8ec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msvcrt

__dllonexit
_assert
_errno
abort
ceil
exp
fflush
floor
free
frexp
ldexp
log
malloc
memcpy
memset
rand
srand
strlen
strtoul

kernel32

AddAtomA
CreateMutexA
FindAtomA
GetAtomNameA
InterlockedIncrement
ReleaseMutex
Sleep
WaitForSingleObject

Exports

Exports

init_mplayer
mp_noise_
mp_noise_done
mp_noise_init
mp_noise_process
pp_free_context
pp_get_context
pp_postprocess
sws_freeContext
sws_getContextFromCmdLine
sws_scale
yuy2toyv12
yv12toyuy2

Sections

.text
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 73KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 764B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9c523d8653da5455667e3f82274f2f88

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 110KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 30KB - Virtual size: 29KB

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 9KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 954B

9909c1e7a09b278aefe7706dd2faa936

Headers

File Characteristics

Imports

msvcrt

winmm

kernel32

advapi32

user32

ole32

Exports

Exports

Sections

.text Size: 172KB - Virtual size: 169KB

.rdata Size: 60KB - Virtual size: 57KB

.data Size: 32KB - Virtual size: 153KB

.CRT Size: 4KB - Virtual size: 16B

.reloc Size: 12KB - Virtual size: 11KB

.rsrc Size: 4KB - Virtual size: 2KB

b46a3282dfc9cc1392a4ac8c091e7eaf

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

user32

ole32

Exports

Exports

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 5KB - Virtual size: 5KB

.reloc Size: 2KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 952B

Headers

File Characteristics

Exports

Exports

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 110KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 30KB - Virtual size: 29KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 9KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 954B

.text
Size: 172KB - Virtual size: 169KB

.rdata
Size: 60KB - Virtual size: 57KB

.data
Size: 32KB - Virtual size: 153KB

.CRT
Size: 4KB - Virtual size: 16B

.reloc
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 4KB - Virtual size: 2KB

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 5KB - Virtual size: 5KB

.reloc
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 952B

.rsrc
Size: 207KB - Virtual size: 444KB

.data
Size: 51KB - Virtual size: 52KB

.adata
Size: - Virtual size: 4KB

.text
Size: 352KB - Virtual size: 348KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 116KB - Virtual size: 155KB

.data1
Size: 20KB - Virtual size: 16KB

.rsrc
Size: 20KB - Virtual size: 16KB

.reloc
Size: 24KB - Virtual size: 20KB

.text
Size: 119KB - Virtual size: 119KB

.data
Size: 35KB - Virtual size: 57KB

.data1
Size: 512B - Virtual size: 176B

.reloc
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 118KB - Virtual size: 120KB

.rsrc
Size: 50KB - Virtual size: 180KB

.data
Size: 49KB - Virtual size: 52KB

.adata
Size: - Virtual size: 4KB