6ab7e551921dba512202510207880c06705369174ceaa8c86c82398eae91732e

Sharing

Copy URL Twitter E-mail

General

Target

6ab7e551921dba512202510207880c06705369174ceaa8c86c82398eae91732e
Size

8.4MB
MD5

ecb5a862fe41c3657c361f45539d2982
SHA1

a73b9d2c929849b5a9701eee26bfb79e42a7b900
SHA256

6ab7e551921dba512202510207880c06705369174ceaa8c86c82398eae91732e
SHA512

f7bc65b663868affadeb95406480d44539076ad6ea865fbd7f96490ee6122cf557fdffbbd57aca566f9e5ed4663ece330db60b78554b4ad5567c8b28394b141a
SSDEEP

196608:2RudI+SJIt76akqF3QMSrGu7dWl2XfwcjN:2R0I+Hb9F3QMS37enc

Score

3^/10

Malware Config

Signatures

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
6ab7e551921dba512202510207880c06705369174ceaa8c86c82398eae91732e
unpack001/$PLUGINSDIR/LangDLL.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/nsDialogs.dll

Files

6ab7e551921dba512202510207880c06705369174ceaa8c86c82398eae91732e
.exe windows:4 windows x86 arch:x86

f4639a0b3116c2cfc71144b88a929cfd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumValueW
RegEnumKeyW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegOpenKeyExW
RegCreateKeyExW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW
SHFileOperationW
ShellExecuteExW

ole32

CoCreateInstance
OleUninitialize
OleInitialize
IIDFromString
CoTaskMemFree

comctl32

ImageList_Destroy
ord17
ImageList_AddMasked
ImageList_Create

user32

MessageBoxIndirectW
GetDlgItemTextW
SetDlgItemTextW
CreatePopupMenu
AppendMenuW
TrackPopupMenu
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
IsWindowVisible
CallWindowProcW
GetMessagePos
CheckDlgButton
LoadCursorW
SetCursor
GetSysColor
SetWindowPos
GetWindowLongW
IsWindowEnabled
SetClassLongW
GetSystemMenu
EnableMenuItem
GetWindowRect
ScreenToClient
EndDialog
RegisterClassW
SystemParametersInfoW
CharPrevW
GetClassInfoW
DialogBoxParamW
CharNextW
ExitWindowsEx
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
FindWindowExW
IsWindow
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
ReleaseDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
CharNextA
wsprintfA
DispatchMessageW
CreateWindowExW
PeekMessageW
GetSystemMetrics

gdi32

GetDeviceCaps
SetBkColor
SelectObject
DeleteObject
CreateBrushIndirect
CreateFontIndirectW
SetBkMode
SetTextColor

kernel32

lstrcmpiA
CreateFileW
GetTempFileNameW
RemoveDirectoryW
CreateProcessW
CreateDirectoryW
GetLastError
CreateThread
GlobalLock
GlobalUnlock
GetDiskFreeSpaceW
WideCharToMultiByte
lstrcpynW
lstrlenW
SetErrorMode
GetVersionExW
GetCommandLineW
GetTempPathW
GetWindowsDirectoryW
WriteFile
CopyFileW
ExitProcess
GetCurrentProcess
GetModuleFileNameW
GetFileSize
GetTickCount
Sleep
SetFileAttributesW
GetFileAttributesW
SetCurrentDirectoryW
MoveFileW
GetFullPathNameW
GetShortPathNameW
SearchPathW
CompareFileTime
SetFileTime
CloseHandle
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalFree
GlobalAlloc
GetModuleHandleW
LoadLibraryExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
lstrlenA
MultiByteToWideChar
ReadFile
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
MulDiv
lstrcpyA
MoveFileExW
lstrcatW
GetSystemDirectoryW
GetProcAddress
GetModuleHandleA
GetExitCodeProcess
WaitForSingleObject
SetEnvironmentVariableW

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 156KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/LangDLL.dll
.dll windows:4 windows x86 arch:x86

fe3375e7e4529b73ba45ab2246b9269b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
lstrlenW
GlobalAlloc
lstrcmpW
GetModuleHandleW
MulDiv
lstrcpyW
lstrcpynW

user32

SetWindowTextW
SetDlgItemTextW
SendDlgItemMessageW
EndDialog
DialogBoxParamW
LoadIconW
SendMessageW
ShowWindow
GetDC

gdi32

CreateFontIndirectW
GetDeviceCaps
DeleteObject

Exports

Exports

LangDialog

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 681B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

509a34b3a68a773e0afb4259e68f9f82

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
lstrcpynW
lstrcpyW
GetProcAddress
WideCharToMultiByte
VirtualFree
FreeLibrary
lstrlenW
LoadLibraryW
GetModuleHandleW
MultiByteToWideChar
VirtualAlloc
VirtualProtect
GetLastError

user32

wsprintfW

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 867B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 662B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsDialogs.dll
.dll windows:4 windows x86 arch:x86

3b477381217c97b22146297f93df2a92

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyW
GetFileAttributesW
lstrcmpiW
MulDiv
lstrlenW
HeapFree
GetProcessHeap
GetCurrentDirectoryW
HeapReAlloc
GlobalFree
lstrcpynW
GlobalAlloc
HeapAlloc
SetCurrentDirectoryW

user32

GetPropW
DestroyWindow
CallWindowProcW
SetCursor
LoadCursorW
RemovePropW
CharPrevW
GetWindowLongW
DrawTextW
GetWindowTextW
SetWindowLongW
GetDlgItem
GetSysColor
SetWindowPos
CreateDialogParamW
MapWindowPoints
GetWindowRect
SetPropW
CreateWindowExW
IsWindow
SetTimer
KillTimer
DispatchMessageW
TranslateMessage
GetMessageW
IsDialogMessageW
ShowWindow
wsprintfW
MapDialogRect
GetClientRect
CharNextW
SendMessageW
DrawFocusRect

gdi32

SetTextColor

shell32

SHBrowseForFolderW
SHGetPathFromIDListW

comdlg32

GetSaveFileNameW
GetOpenFileNameW
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

Create
CreateControl
CreateItem
CreateTimer
GetUserData
KillTimer
OnBack
OnChange
OnClick
OnNotify
SelectFileDialog
SelectFolderDialog
SetRTL
SetUserData
Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 638B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
README_de.txt
README_en.txt
README_es.txt
README_ja.txt
bin/DemoApp.bat
.bat .vbs
bin/GetHostId.bat
.bat .vbs
bin/InstallTestWrapper-NT.bat
.bat .vbs
bin/PauseTestWrapper-NT.bat
.bat .vbs
bin/QueryTestWrapper-NT.bat
.bat .vbs
bin/ResumeTestWrapper-NT.bat
.bat .vbs
bin/SetupTestWrapper.bat
.bat .vbs
bin/StartTestWrapper-NT.bat
.bat .vbs
bin/StopTestWrapper-NT.bat
.bat .vbs
bin/TeardownTestWrapper.bat
.bat .vbs
bin/TestWrapper.bat
.bat .vbs
bin/TestWrapperCommand.bat
.bat .vbs
bin/UninstallTestWrapper-NT.bat
.bat .vbs
bin/demoapp
bin/testwrapper
bin/wrapper-aix-ppc-32
bin/wrapper-aix-ppc-64
bin/wrapper-freebsd-arm-64
.elf linux aarch64
bin/wrapper-freebsd-x86-32
.elf linux x86
bin/wrapper-freebsd-x86-64
.elf linux x64
bin/wrapper-hpux-ia-32
.elf linux ia64
bin/wrapper-hpux-ia-64
.elf linux ia64
bin/wrapper-hpux-parisc-32
bin/wrapper-hpux-parisc-64
.elf linux
bin/wrapper-linux-390-64
.elf linux s390
bin/wrapper-linux-arm-64
.elf linux aarch64
bin/wrapper-linux-armel-32
.elf linux arm
bin/wrapper-linux-armhf-32
.elf linux arm
bin/wrapper-linux-ppcle-64
.elf linux ppc64
bin/wrapper-linux-x86-32
.elf linux x86
bin/wrapper-linux-x86-64
.elf linux x64
bin/wrapper-macosx-arm-64
.macho macos arch:arm64
bin/wrapper-macosx-universal-32
.macho macos arch:ppc arch:x86
bin/wrapper-macosx-universal-64
.macho macos arch:ppc64 arch:x64
bin/wrapper-solaris-sparc-32
.elf linux
bin/wrapper-solaris-sparc-64
.elf linux
bin/wrapper-solaris-x86-32
.elf linux x86
bin/wrapper-solaris-x86-64
.elf linux x64
bin/wrapper-windows-x86-32.exe
.exe windows:5 windows x86 arch:x86

86631d4bf6e84c28b4fb71abbc6bf6b9

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

20/02/2024, 00:00

Not After

19/02/2027, 23:59

Subject

SERIALNUMBER=0117-02-015715,CN=Tanuki Software\, Ltd.,O=Tanuki Software\, Ltd.,ST=Tokyo,C=JP,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024a50

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

20/02/2024, 00:00

Not After

19/02/2027, 23:59

Subject

SERIALNUMBER=0117-02-015715,CN=Tanuki Software\, Ltd.,O=Tanuki Software\, Ltd.,ST=Tokyo,C=JP,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024a50

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

93:45:46:c5:b9:de:56:3a:fe:9c:a9:97:d5:38:14:dd:8e:0b:78:91:95:dd:a9:fb:dc:ed:5c:06:bf:3d:61:96
Signer

Actual PE Digest

93:45:46:c5:b9:de:56:3a:fe:9c:a9:97:d5:38:14:dd:8e:0b:78:91:95:dd:a9:fb:dc:ed:5c:06:bf:3d:61:96

Digest Algorithm

sha256

PE Digest Matches

true

a9:13:f9:49:ee:2b:11:6a:24:ef:b1:e2:e0:d0:94:83:bb:72:cd:47
Signer

Actual PE Digest

a9:13:f9:49:ee:2b:11:6a:24:ef:b1:e2:e0:d0:94:83:bb:72:cd:47

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\jenkins-agent\workspace\wrapper\wrapper-32\wrapper_prerelease_3.5.59-pro\src\c\wrapper32_VC8__Win32_Release\wrapper.pdb

Imports

mpr

WNetCancelConnection2W
WNetAddConnection2W
WNetGetConnectionW
WNetGetUniversalNameW

shell32

ShellExecuteExW

netapi32

NetWkstaGetInfo
NetApiBufferFree

wsock32

ntohs
connect
select
__WSAFDIsSet
WSASetLastError
WSAGetLastError
sendto
WSAStartup
inet_ntoa
accept
ioctlsocket
htons
gethostname
recv
bind
socket
closesocket
send
listen

ws2_32

getaddrinfo
freeaddrinfo
getnameinfo

shlwapi

PathFindOnPathW
PathIsDirectoryW

advapi32

ControlService
ConvertSidToStringSidW
RegCreateKeyW
RegisterServiceCtrlHandlerW
LsaNtStatusToWinError
RegOpenKeyExW
IsValidSid
RegEnumValueW
QueryServiceStatusEx
SetServiceStatus
ChangeServiceConfigW
LsaClose
QueryServiceStatus
StartServiceW
DuplicateTokenEx
PrivilegeCheck
LookupPrivilegeNameW
GetSecurityDescriptorDacl
BuildExplicitAccessWithNameW
SetEntriesInAclW
QueryServiceObjectSecurity
GetAce
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
GetAclInformation
SetServiceObjectSecurity
ReportEventW
DeregisterEventSource
LookupAccountSidW
RegisterEventSourceW
LsaFreeMemory
RegSetValueExW
EnumServicesStatusExW
RegCloseKey
OpenProcessToken
OpenSCManagerW
OpenServiceW
QueryServiceConfig2W
EqualSid
LookupPrivilegeValueW
AdjustTokenPrivileges
CreateServiceW
LsaRemoveAccountRights
CloseServiceHandle
LsaQueryInformationPolicy
IsWellKnownSid
DeleteService
StartServiceCtrlDispatcherW
LogonUserW
LsaOpenPolicy
LsaEnumerateAccountRights
GetTokenInformation
RegCreateKeyExW
LsaAddAccountRights
RegQueryValueExW
CreateProcessAsUserW
RegQueryInfoKeyW
RegDeleteKeyW
LookupAccountNameW
ChangeServiceConfig2W
QueryServiceConfigW

user32

GetWindowThreadProcessId
GetSystemMetrics
LoadStringW
EnumWindows
DestroyWindow
SetWindowPlacement
GetWindowRect
IsIconic
GetTopWindow
GetKeyState
SetForegroundWindow
FindWindowW
TranslateMessage
GetForegroundWindow
RegisterClassExW
GetWindowPlacement
SystemParametersInfoW
PeekMessageW
ShowWindow
CreateWindowExW
IsWindowVisible
UpdateWindow
DefWindowProcW
GetWindow
DispatchMessageW
PostMessageW

crypt32

CryptMsgClose
CryptDecodeObject
CryptQueryObject
CertGetNameStringW
CertFreeCertificateChain
CertFreeCertificateContext
CertFindCertificateInStore
CertCloseStore
CertGetCertificateChain
CryptMsgGetParam

wintrust

WinVerifyTrust

pdh

PdhCollectQueryData
PdhCloseQuery
PdhOpenQueryW
PdhGetFormattedCounterValue

psapi

GetModuleFileNameExW
GetProcessMemoryInfo
GetPerformanceInfo

ole32

CoUninitialize
CoInitialize
CoCreateInstance
StringFromCLSID
CoTaskMemFree

oleaut32

SysFreeString

activeds

ord3

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

iphlpapi

GetAdaptersAddresses

dnsapi

DnsQuery_W
DnsFree

kernel32

RtlUnwind
GetCurrentDirectoryA
GetDriveTypeA
LCMapStringW
SetHandleCount
GetStartupInfoA
CreateFileA
WriteConsoleA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
SetEnvironmentVariableA
GetStringTypeW
SetFilePointer
LCMapStringA
GetCommandLineW
VirtualAlloc
DeleteCriticalSection
VirtualFree
HeapCreate
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
InterlockedIncrement
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetFileInformationByHandle
FindNextFileW
MoveFileW
GetModuleFileNameA
GetFileType
SetStdHandle
LeaveCriticalSection
EnterCriticalSection
ReadConsoleInputW
GetTickCount
GetStringTypeA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
RaiseException
CompareStringW
HeapSize
ReadConsoleInputA
GetConsoleCP
InterlockedDecrement
DeleteFileW
GetSystemTimeAsFileTime
SetCurrentDirectoryW
SetEnvironmentVariableW
FindFirstFileW
FindClose
HeapAlloc
HeapFree
ReadProcessMemory
GetProcessAffinityMask
SetProcessAffinityMask
QueryPerformanceFrequency
GetProcessTimes
QueryPerformanceCounter
GetTimeZoneInformation
WriteConsoleW
GetModuleHandleA
SetEndOfFile
ExpandEnvironmentStringsW
CreateThread
SetFileAttributesW
lstrcpyW
ExitProcess
HeapReAlloc
GetProcessHeap
CompareStringA
FreeLibrary
GetFullPathNameW
CreateMutexW
PeekNamedPipe
GetCurrentProcess
GetEnvironmentStringsW
WaitForSingleObject
ConnectNamedPipe
GetModuleHandleW
CreateNamedPipeW
GenerateConsoleCtrlEvent
WriteFile
OpenProcess
WideCharToMultiByte
LoadLibraryW
GetConsoleMode
GetLocaleInfoW
GetVersionExW
SetConsoleMode
TerminateProcess
ReadFile
GetACP
MultiByteToWideChar
SetThreadLocale
GetStdHandle
GetLastError
SetLastError
GetThreadLocale
GetProcAddress
IsValidCodePage
Process32FirstW
GetSystemInfo
GetOEMCP
Process32NextW
SetConsoleTitleW
FreeEnvironmentStringsW
CreateToolhelp32Snapshot
ReleaseMutex
CloseHandle
GetSystemDefaultLangID
GetEnvironmentVariableW
GetFileSize
lstrcmpA
SetPriorityClass
GetDriveTypeW
AllocConsole
GetCPInfo
GetSystemDefaultUILanguage
CreateProcessW
EndUpdateResourceW
SetEvent
WaitNamedPipeW
GlobalAlloc
Sleep
CopyFileW
GetConsoleWindow
FormatMessageW
GetExitCodeProcess
FileTimeToSystemTime
GetModuleFileNameW
CreateFileW
lstrlenW
GetStartupInfoW
DisconnectNamedPipe
FlushFileBuffers
GetConsoleOutputCP
GetCPInfoExW
GetCurrentDirectoryW
GetLongPathNameW
BeginUpdateResourceW
GlobalFree
GetLocalTime
ProcessIdToSessionId
LocalAlloc
SetConsoleCtrlHandler
GlobalMemoryStatusEx
CreateEventW
SetNamedPipeHandleState
CreatePipe
UpdateResourceW
GetUserDefaultUILanguage
GetCurrentThreadId
DuplicateHandle
FileTimeToLocalFileTime
GetCurrentProcessId
LocalFree
ResumeThread

Sections

.text
Size: 492KB - Virtual size: 492KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 289KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/wrapper-windows-x86-64.exe
.exe windows:5 windows x64 arch:x64

8c2ce4be95c6adcc8e40d2a03cf768be

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

20/02/2024, 00:00

Not After

19/02/2027, 23:59

Subject

SERIALNUMBER=0117-02-015715,CN=Tanuki Software\, Ltd.,O=Tanuki Software\, Ltd.,ST=Tokyo,C=JP,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024a50

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

20/02/2024, 00:00

Not After

19/02/2027, 23:59

Subject

SERIALNUMBER=0117-02-015715,CN=Tanuki Software\, Ltd.,O=Tanuki Software\, Ltd.,ST=Tokyo,C=JP,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024a50

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

eb:7c:ad:cc:ca:93:fe:05:d1:80:24:42:88:6b:d8:1e:f5:7e:1a:b5:d0:8f:4c:28:d3:fa:ab:94:59:26:68:5c
Signer

Actual PE Digest

eb:7c:ad:cc:ca:93:fe:05:d1:80:24:42:88:6b:d8:1e:f5:7e:1a:b5:d0:8f:4c:28:d3:fa:ab:94:59:26:68:5c

Digest Algorithm

sha256

PE Digest Matches

true

d8:c1:90:88:f1:e4:6e:ce:68:30:56:4c:db:f1:cd:dd:00:f8:f8:a6
Signer

Actual PE Digest

d8:c1:90:88:f1:e4:6e:ce:68:30:56:4c:db:f1:cd:dd:00:f8:f8:a6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\jenkins-agent\workspace\wrapper\wrapper-64\wrapper_prerelease_3.5.59-pro\src\c\wrapper64_VC8__Win32_Release\wrapper.pdb

Imports

mpr

WNetCancelConnection2W
WNetAddConnection2W
WNetGetConnectionW
WNetGetUniversalNameW

shell32

ShellExecuteExW

netapi32

NetWkstaGetInfo
NetApiBufferFree

wsock32

ntohs
connect
select
__WSAFDIsSet
WSASetLastError
WSAGetLastError
sendto
WSAStartup
inet_ntoa
accept
ioctlsocket
htons
gethostname
recv
bind
socket
closesocket
send
listen

ws2_32

getaddrinfo
freeaddrinfo
getnameinfo

shlwapi

PathFindOnPathW
PathIsDirectoryW

advapi32

ControlService
ConvertSidToStringSidW
RegCreateKeyW
RegisterServiceCtrlHandlerW
LsaNtStatusToWinError
RegOpenKeyExW
IsValidSid
RegEnumValueW
QueryServiceStatusEx
SetServiceStatus
ChangeServiceConfigW
LsaClose
QueryServiceStatus
StartServiceW
DuplicateTokenEx
PrivilegeCheck
LookupPrivilegeNameW
GetSecurityDescriptorDacl
BuildExplicitAccessWithNameW
SetEntriesInAclW
QueryServiceObjectSecurity
GetAce
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
GetAclInformation
SetServiceObjectSecurity
ReportEventW
DeregisterEventSource
LookupAccountSidW
RegisterEventSourceW
LsaFreeMemory
RegSetValueExW
EnumServicesStatusExW
RegCloseKey
OpenProcessToken
OpenSCManagerW
OpenServiceW
QueryServiceConfig2W
EqualSid
LookupPrivilegeValueW
AdjustTokenPrivileges
CreateServiceW
LsaRemoveAccountRights
CloseServiceHandle
LsaQueryInformationPolicy
IsWellKnownSid
DeleteService
StartServiceCtrlDispatcherW
LogonUserW
LsaOpenPolicy
LsaEnumerateAccountRights
GetTokenInformation
RegCreateKeyExW
LsaAddAccountRights
RegQueryValueExW
CreateProcessAsUserW
RegQueryInfoKeyW
RegDeleteKeyW
LookupAccountNameW
ChangeServiceConfig2W
QueryServiceConfigW

user32

GetWindowThreadProcessId
GetSystemMetrics
LoadStringW
EnumWindows
DestroyWindow
SetWindowPlacement
GetWindowRect
IsIconic
GetTopWindow
GetKeyState
SetForegroundWindow
FindWindowW
TranslateMessage
GetForegroundWindow
RegisterClassExW
GetWindowPlacement
SystemParametersInfoW
PeekMessageW
ShowWindow
CreateWindowExW
IsWindowVisible
UpdateWindow
DefWindowProcW
GetWindow
DispatchMessageW
PostMessageW

crypt32

CryptMsgClose
CryptDecodeObject
CryptQueryObject
CertGetNameStringW
CertFreeCertificateChain
CertFreeCertificateContext
CertFindCertificateInStore
CertCloseStore
CertGetCertificateChain
CryptMsgGetParam

wintrust

WinVerifyTrust

pdh

PdhCollectQueryData
PdhCloseQuery
PdhOpenQueryW
PdhGetFormattedCounterValue

psapi

GetModuleFileNameExW
GetProcessMemoryInfo
GetPerformanceInfo

ole32

CoUninitialize
CoInitialize
CoCreateInstance
StringFromCLSID
CoTaskMemFree

oleaut32

SysFreeString

activeds

ord3

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

iphlpapi

GetAdaptersAddresses

dnsapi

DnsQuery_W
DnsFree

kernel32

GetCurrentDirectoryA
GetDriveTypeA
LCMapStringW
SetHandleCount
GetStartupInfoA
CreateFileA
WriteConsoleA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
SetEnvironmentVariableA
GetStringTypeW
SetFilePointer
LCMapStringA
GetCommandLineW
GetModuleFileNameA
HeapCreate
HeapSetInformation
FlsAlloc
FlsFree
FlsSetValue
FlsGetValue
DecodePointer
EncodePointer
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetFileInformationByHandle
DeleteCriticalSection
MoveFileW
ExitProcess
GetFileType
SetStdHandle
LeaveCriticalSection
GetTickCount
GetStringTypeA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
CompareStringW
HeapReAlloc
HeapSize
EnterCriticalSection
ReadConsoleInputW
ReadConsoleInputA
GetConsoleCP
DeleteFileW
GetSystemTimeAsFileTime
SetCurrentDirectoryW
SetEnvironmentVariableW
FindFirstFileW
FindClose
HeapAlloc
HeapFree
ReadProcessMemory
GetProcessAffinityMask
SetProcessAffinityMask
QueryPerformanceFrequency
GetProcessTimes
QueryPerformanceCounter
GetTimeZoneInformation
SetEndOfFile
GetProcessHeap
WriteConsoleW
ExpandEnvironmentStringsW
CreateThread
SetFileAttributesW
FindNextFileW
RtlUnwindEx
CompareStringA
GetCurrentProcess
GetFullPathNameW
CreateMutexW
PeekNamedPipe
FreeLibrary
RaiseException
GetEnvironmentStringsW
WaitForSingleObject
ConnectNamedPipe
GetModuleHandleW
CreateNamedPipeW
GenerateConsoleCtrlEvent
WriteFile
OpenProcess
WideCharToMultiByte
LoadLibraryW
GetConsoleMode
GetLocaleInfoW
GetVersionExW
SetConsoleMode
TerminateProcess
ReadFile
GetACP
MultiByteToWideChar
SetThreadLocale
GetStdHandle
GetLastError
SetLastError
GetThreadLocale
GetProcAddress
IsValidCodePage
Process32FirstW
GetSystemInfo
GetOEMCP
Process32NextW
SetConsoleTitleW
FreeEnvironmentStringsW
CreateToolhelp32Snapshot
ReleaseMutex
CloseHandle
GetSystemDefaultLangID
GetEnvironmentVariableW
GetFileSize
lstrcmpA
SetPriorityClass
GetDriveTypeW
AllocConsole
GetCPInfo
GetSystemDefaultUILanguage
CreateProcessW
EndUpdateResourceW
SetEvent
WaitNamedPipeW
GlobalAlloc
Sleep
CopyFileW
GetConsoleWindow
FormatMessageW
GetExitCodeProcess
FileTimeToSystemTime
GetModuleFileNameW
CreateFileW
lstrlenW
GetStartupInfoW
DisconnectNamedPipe
FlushFileBuffers
GetConsoleOutputCP
GetCPInfoExW
GetCurrentDirectoryW
GetLongPathNameW
BeginUpdateResourceW
GlobalFree
GetLocalTime
ProcessIdToSessionId
LocalAlloc
SetConsoleCtrlHandler
GlobalMemoryStatusEx
CreateEventW
SetNamedPipeHandleState
CreatePipe
UpdateResourceW
GetUserDefaultUILanguage
GetCurrentThreadId
DuplicateHandle
FileTimeToLocalFileTime
GetCurrentProcessId
LocalFree
ResumeThread
lstrcpyW

Sections

.text
Size: 568KB - Virtual size: 568KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
conf/demoapp.conf
conf/wrapper-license.conf
conf/wrapper.conf
doc/index.html
.html
doc/revisions.txt
doc/wrapper-development-license-1.3.txt
doc/wrapper-server-license-1.3.txt
doc/wrapper-tsims-addendum-1.3.txt
lang/wrapperTestApp_de.mo
lang/wrapperTestApp_ja.mo
lang/wrapper_de.mo
lang/wrapper_ja.mo
lang/wrapperjni_de.mo
lang/wrapperjni_ja.mo
lib/libwrapper-aix-ppc-32.so
lib/libwrapper-aix-ppc-64.so
lib/libwrapper-freebsd-arm-64.so
.elf linux aarch64
lib/libwrapper-freebsd-x86-32.so
.elf linux x86
lib/libwrapper-freebsd-x86-64.so
.elf linux x64
lib/libwrapper-hpux-ia-32.so
.elf linux ia64
lib/libwrapper-hpux-ia-64.so
.elf linux ia64
lib/libwrapper-hpux-parisc-32.sl
lib/libwrapper-hpux-parisc-64.sl
.elf linux
lib/libwrapper-linux-390-64.so
.elf linux s390
lib/libwrapper-linux-arm-64.so
.elf linux aarch64
lib/libwrapper-linux-armel-32.so
.elf linux arm
lib/libwrapper-linux-armhf-32.so
.elf linux arm
lib/libwrapper-linux-ppcle-64.so
.elf linux ppc64
lib/libwrapper-linux-x86-32.so
.elf linux x86
lib/libwrapper-linux-x86-64.so
.elf linux x64
lib/libwrapper-macosx-arm-64.dylib
.bundle macos arch:arm64
lib/libwrapper-macosx-universal-32.jnilib
.bundle macos arch:ppc arch:x86
lib/libwrapper-macosx-universal-64.jnilib
.bundle macos arch:ppc64 arch:x64
lib/libwrapper-solaris-sparc-32.so
.elf linux
lib/libwrapper-solaris-sparc-64.so
.elf linux
lib/libwrapper-solaris-x86-32.so
.elf linux x86
lib/libwrapper-solaris-x86-64.so
.elf linux x64
lib/wrapper-windows-x86-32.dll
.dll windows:5 windows x86 arch:x86

b1523ad87a68f453e0811834083b44c6

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

20/02/2024, 00:00

Not After

19/02/2027, 23:59

Subject

SERIALNUMBER=0117-02-015715,CN=Tanuki Software\, Ltd.,O=Tanuki Software\, Ltd.,ST=Tokyo,C=JP,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024a50

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

20/02/2024, 00:00

Not After

19/02/2027, 23:59

Subject

SERIALNUMBER=0117-02-015715,CN=Tanuki Software\, Ltd.,O=Tanuki Software\, Ltd.,ST=Tokyo,C=JP,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024a50

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

30:55:55:d4:d6:c6:fc:d8:af:29:8a:66:0f:da:62:1c:fd:03:42:4f:03:6f:08:c3:92:b1:85:ce:85:0d:9b:42
Signer

Actual PE Digest

30:55:55:d4:d6:c6:fc:d8:af:29:8a:66:0f:da:62:1c:fd:03:42:4f:03:6f:08:c3:92:b1:85:ce:85:0d:9b:42

Digest Algorithm

sha256

PE Digest Matches

true

0d:cd:33:f6:4c:22:0d:3b:b5:3c:c2:d8:4b:35:d0:92:87:1b:2c:90
Signer

Actual PE Digest

0d:cd:33:f6:4c:22:0d:3b:b5:3c:c2:d8:4b:35:d0:92:87:1b:2c:90

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\jenkins-agent\workspace\wrapper\wrapper-32\wrapper_prerelease_3.5.59-pro\src\c\wrapperJNI32_VC8__Win32_Release\wrapper.pdb

Imports

wsock32

WSAGetLastError
ntohs
inet_addr

advapi32

QueryServiceStatus
OpenServiceW
DuplicateTokenEx
RegCloseKey
RegEnumKeyExW
RegOpenKeyW
LookupAccountSidW
ConvertSidToStringSidW
GetTokenInformation
OpenProcessToken
CloseServiceHandle
EnumServicesStatusW
OpenSCManagerW
GetServiceDisplayNameW
StartServiceW
ControlService
CreateProcessAsUserW

user32

GetThreadDesktop
EnumWindows
GetWindowThreadProcessId
PostMessageW
MonitorFromPoint

iphlpapi

GetTcpTable

wtsapi32

WTSQueryUserToken

kernel32

GetLocaleInfoW
CreateFileA
HeapSize
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetEnvironmentVariableW
SetEnvironmentVariableA
CompareStringA
FreeEnvironmentStringsW
CompareStringW
IsValidLocale
GetLastError
MultiByteToWideChar
GetACP
WideCharToMultiByte
WaitForSingleObject
ReleaseMutex
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
FileTimeToSystemTime
LocalFree
FormatMessageW
CloseHandle
OpenProcess
GetProcAddress
GetModuleHandleW
GetCurrentProcessId
SetConsoleCtrlHandler
CreateMutexW
GetVersionExW
AddVectoredExceptionHandler
SetProcessShutdownParameters
GetProcessShutdownParameters
GetModuleFileNameW
SetLastError
RaiseException
GenerateConsoleCtrlEvent
SetConsoleTitleW
LoadLibraryW
LeaveCriticalSection
CreateProcessW
SetHandleInformation
CreatePipe
CreateFileW
CreateNamedPipeW
EnterCriticalSection
InitializeCriticalSection
ReadFile
PeekNamedPipe
WriteFile
TerminateProcess
QueryPerformanceCounter
QueryPerformanceFrequency
Sleep
GetEnvironmentStringsW
GetExitCodeProcess
lstrlenW
HeapAlloc
HeapFree
FileTimeToLocalFileTime
GetFileInformationByHandle
GetFileType
InterlockedDecrement
GetSystemTimeAsFileTime
DuplicateHandle
GetCurrentProcess
GetCurrentThreadId
GetCommandLineA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DeleteCriticalSection
FatalAppExitA
VirtualFree
VirtualAlloc
HeapReAlloc
HeapCreate
HeapDestroy
ExitProcess
GetStdHandle
GetModuleFileNameA
SetHandleCount
GetStartupInfoA
GetCPInfo
InterlockedIncrement
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetCurrentThread
LCMapStringW
GetStringTypeW
SetFilePointer
SetStdHandle
RtlUnwind
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetEndOfFile
GetProcessHeap
InterlockedExchange
FreeEnvironmentStringsA
GetEnvironmentStrings
GetTickCount
InitializeCriticalSectionAndSpinCount
FreeLibrary
LoadLibraryA
LCMapStringA
GetStringTypeA
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA

Exports

Exports

_Java_org_tanukisoftware_wrapper_WrapperManager_accessViolationInner@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeCheckDeadLocks@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeDispose@12
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeExec@24
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetControlEvent@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetDpiAwareness@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetDpiScale@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetInteractiveUser@12
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetJavaPID@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetLibraryVersion@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetPortStatus@20
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetUser@12
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeInit@12
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeIsProfessionalEdition@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeIsStandardEdition@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeListServices@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeLoadWrapperProperties@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeLoadWrapperResources@20
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeRaiseExceptionInner@12
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeRaiseFailFastExceptionInner@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeRedirectPipes@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeRequestThreadDump@8
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeSendServiceControlCode@16
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeSetConsoleTitle@12
_Java_org_tanukisoftware_wrapper_WrapperManager_nativeSetDpiAwareness@12
_Java_org_tanukisoftware_wrapper_WrapperProcessConfig_isSupportedNative@12
_Java_org_tanukisoftware_wrapper_WrapperProcessConfig_nativeGetEnv@8
_Java_org_tanukisoftware_wrapper_WrapperProcessInputStream_nativeClose@8
_Java_org_tanukisoftware_wrapper_WrapperProcessInputStream_nativeRead2@20
_Java_org_tanukisoftware_wrapper_WrapperProcessInputStream_nativeRead@12
_Java_org_tanukisoftware_wrapper_WrapperProcessOutputStream_nativeClose@8
_Java_org_tanukisoftware_wrapper_WrapperProcessOutputStream_nativeWrite@12
_Java_org_tanukisoftware_wrapper_WrapperProcess_nativeDestroy@8
_Java_org_tanukisoftware_wrapper_WrapperProcess_nativeExitValue@8
_Java_org_tanukisoftware_wrapper_WrapperProcess_nativeIsAlive@8
_Java_org_tanukisoftware_wrapper_WrapperProcess_nativeWaitFor@8
_Java_org_tanukisoftware_wrapper_WrapperResources_nativeDestroyResource@8
_Java_org_tanukisoftware_wrapper_WrapperResources_nativeGetLocalizedString@12

Sections

.text
Size: 229KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/wrapper-windows-x86-64.dll
.dll windows:5 windows x64 arch:x64

7e7e8babb73101a4fd633995f72ddc84

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

20/02/2024, 00:00

Not After

19/02/2027, 23:59

Subject

SERIALNUMBER=0117-02-015715,CN=Tanuki Software\, Ltd.,O=Tanuki Software\, Ltd.,ST=Tokyo,C=JP,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024a50

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

Issuer

CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

Not Before

20/02/2024, 00:00

Not After

19/02/2027, 23:59

Subject

SERIALNUMBER=0117-02-015715,CN=Tanuki Software\, Ltd.,O=Tanuki Software\, Ltd.,ST=Tokyo,C=JP,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024a50

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:dc:40:93:8b:c8:4d:28:f4:c0:b6:15:66:65:bc:8e:bf:02:18:64:a8:34:f7:af:32:0a:c9:db:fb:71:79:d9
Signer

Actual PE Digest

52:dc:40:93:8b:c8:4d:28:f4:c0:b6:15:66:65:bc:8e:bf:02:18:64:a8:34:f7:af:32:0a:c9:db:fb:71:79:d9

Digest Algorithm

sha256

PE Digest Matches

true

f3:1d:5e:8d:37:d4:13:59:47:3d:fb:0f:39:94:86:5e:ba:83:d8:df
Signer

Actual PE Digest

f3:1d:5e:8d:37:d4:13:59:47:3d:fb:0f:39:94:86:5e:ba:83:d8:df

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\jenkins-agent\workspace\wrapper\wrapper-64\wrapper_prerelease_3.5.59-pro\src\c\wrapperJNI64_VC8__Win32_Release\wrapper.pdb

Imports

wsock32

WSAGetLastError
ntohs
inet_addr

advapi32

QueryServiceStatus
OpenServiceW
DuplicateTokenEx
RegCloseKey
RegEnumKeyExW
RegOpenKeyW
LookupAccountSidW
ConvertSidToStringSidW
GetTokenInformation
OpenProcessToken
CloseServiceHandle
EnumServicesStatusW
OpenSCManagerW
GetServiceDisplayNameW
StartServiceW
ControlService
CreateProcessAsUserW

user32

GetThreadDesktop
EnumWindows
GetWindowThreadProcessId
PostMessageW
MonitorFromPoint

iphlpapi

GetTcpTable

wtsapi32

WTSQueryUserToken

kernel32

GetLocaleInfoW
CreateFileA
HeapSize
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
HeapReAlloc
SetEnvironmentVariableW
CompareStringA
GetEnvironmentStringsW
SetEnvironmentVariableA
CompareStringW
GetLastError
MultiByteToWideChar
GetACP
WideCharToMultiByte
WaitForSingleObject
ReleaseMutex
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
FileTimeToSystemTime
LocalFree
FormatMessageW
CloseHandle
OpenProcess
GetProcAddress
GetModuleHandleW
GetCurrentProcessId
SetConsoleCtrlHandler
CreateMutexW
GetVersionExW
AddVectoredExceptionHandler
SetProcessShutdownParameters
GetProcessShutdownParameters
GetModuleFileNameW
SetLastError
RaiseException
GenerateConsoleCtrlEvent
SetConsoleTitleW
LoadLibraryW
LeaveCriticalSection
CreateProcessW
SetHandleInformation
CreatePipe
CreateFileW
CreateNamedPipeW
EnterCriticalSection
InitializeCriticalSection
ReadFile
PeekNamedPipe
WriteFile
TerminateProcess
QueryPerformanceCounter
QueryPerformanceFrequency
Sleep
FreeEnvironmentStringsW
GetExitCodeProcess
lstrlenW
HeapAlloc
HeapFree
FileTimeToLocalFileTime
GetFileInformationByHandle
GetFileType
GetSystemTimeAsFileTime
DuplicateHandle
GetCurrentProcess
GetCurrentThreadId
FlsSetValue
GetCommandLineA
RtlUnwindEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
ExitProcess
GetStdHandle
GetModuleFileNameA
HeapSetInformation
HeapCreate
HeapDestroy
SetHandleCount
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetOEMCP
IsValidCodePage
EncodePointer
DecodePointer
TlsAlloc
FlsGetValue
FlsFree
GetCurrentThread
FlsAlloc
LCMapStringW
GetStringTypeW
SetFilePointer
SetStdHandle
FatalAppExitA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetEndOfFile
GetProcessHeap
FreeEnvironmentStringsA
GetEnvironmentStrings
GetTickCount
FreeLibrary
LoadLibraryA
InitializeCriticalSectionAndSpinCount
LCMapStringA
GetStringTypeA
GetDateFormatA
GetTimeFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale

Exports

Exports

Java_org_tanukisoftware_wrapper_WrapperManager_accessViolationInner
Java_org_tanukisoftware_wrapper_WrapperManager_nativeCheckDeadLocks
Java_org_tanukisoftware_wrapper_WrapperManager_nativeDispose
Java_org_tanukisoftware_wrapper_WrapperManager_nativeExec
Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetControlEvent
Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetDpiAwareness
Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetDpiScale
Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetInteractiveUser
Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetJavaPID
Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetLibraryVersion
Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetPortStatus
Java_org_tanukisoftware_wrapper_WrapperManager_nativeGetUser
Java_org_tanukisoftware_wrapper_WrapperManager_nativeInit
Java_org_tanukisoftware_wrapper_WrapperManager_nativeIsProfessionalEdition
Java_org_tanukisoftware_wrapper_WrapperManager_nativeIsStandardEdition
Java_org_tanukisoftware_wrapper_WrapperManager_nativeListServices
Java_org_tanukisoftware_wrapper_WrapperManager_nativeLoadWrapperProperties
Java_org_tanukisoftware_wrapper_WrapperManager_nativeLoadWrapperResources
Java_org_tanukisoftware_wrapper_WrapperManager_nativeRaiseExceptionInner
Java_org_tanukisoftware_wrapper_WrapperManager_nativeRaiseFailFastExceptionInner
Java_org_tanukisoftware_wrapper_WrapperManager_nativeRedirectPipes
Java_org_tanukisoftware_wrapper_WrapperManager_nativeRequestThreadDump
Java_org_tanukisoftware_wrapper_WrapperManager_nativeSendServiceControlCode
Java_org_tanukisoftware_wrapper_WrapperManager_nativeSetConsoleTitle
Java_org_tanukisoftware_wrapper_WrapperManager_nativeSetDpiAwareness
Java_org_tanukisoftware_wrapper_WrapperProcessConfig_isSupportedNative
Java_org_tanukisoftware_wrapper_WrapperProcessConfig_nativeGetEnv
Java_org_tanukisoftware_wrapper_WrapperProcessInputStream_nativeClose
Java_org_tanukisoftware_wrapper_WrapperProcessInputStream_nativeRead
Java_org_tanukisoftware_wrapper_WrapperProcessInputStream_nativeRead2
Java_org_tanukisoftware_wrapper_WrapperProcessOutputStream_nativeClose
Java_org_tanukisoftware_wrapper_WrapperProcessOutputStream_nativeWrite
Java_org_tanukisoftware_wrapper_WrapperProcess_nativeDestroy
Java_org_tanukisoftware_wrapper_WrapperProcess_nativeExitValue
Java_org_tanukisoftware_wrapper_WrapperProcess_nativeIsAlive
Java_org_tanukisoftware_wrapper_WrapperProcess_nativeWaitFor
Java_org_tanukisoftware_wrapper_WrapperResources_nativeDestroyResource
Java_org_tanukisoftware_wrapper_WrapperResources_nativeGetLocalizedString

Sections

.text
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lib/wrapper.jar
.jar
lib/wrapperdemo.jar
.jar
lib/wrappertest.jar
.jar
src/bin/App.bat.in
.vbs
src/bin/App.sh.in
src/bin/App.shconf.in
src/bin/AppCommand.bat.in
.vbs
src/bin/AppNoWrapper.bat.in
src/bin/AppTemplate.bat.in
.vbs
src/bin/AppTemplatePassThrough.bat.in
.vbs
src/bin/InstallApp-NT.bat.in
.vbs
src/bin/PauseApp-NT.bat.in
.vbs
src/bin/QueryApp-NT.bat.in
.vbs
src/bin/ResumeApp-NT.bat.in
.vbs
src/bin/SetupApp.bat.in
.vbs
src/bin/StartApp-NT.bat.in
.vbs
src/bin/StopApp-NT.bat.in
.vbs
src/bin/TeardownApp.bat.in
.vbs
src/bin/UninstallApp-NT.bat.in
.vbs
src/conf/wrapper-license-time.conf
src/conf/wrapper.conf.in
src/conf/wrapper.conf.in_ja

Sharing

General

Malware Config

Signatures

Files

f4639a0b3116c2cfc71144b88a929cfd

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

shell32

ole32

comctl32

user32

gdi32

kernel32

Sections

.text Size: 26KB - Virtual size: 25KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 3.6MB

.ndata Size: - Virtual size: 156KB

.rsrc Size: 52KB - Virtual size: 51KB

fe3375e7e4529b73ba45ab2246b9269b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 681B

.data Size: 512B - Virtual size: 6KB

.rsrc Size: 512B - Virtual size: 352B

.reloc Size: 512B - Virtual size: 352B

509a34b3a68a773e0afb4259e68f9f82

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 1024B - Virtual size: 867B

.data Size: 512B - Virtual size: 120B

.reloc Size: 1024B - Virtual size: 662B

3b477381217c97b22146297f93df2a92

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 8KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 638B

86631d4bf6e84c28b4fb71abbc6bf6b9

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6eCertificate

Extended Key Usages

.text
Size: 26KB - Virtual size: 25KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 3.6MB

.ndata
Size: - Virtual size: 156KB

.rsrc
Size: 52KB - Virtual size: 51KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 681B

.data
Size: 512B - Virtual size: 6KB

.rsrc
Size: 512B - Virtual size: 352B

.reloc
Size: 512B - Virtual size: 352B

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 1024B - Virtual size: 867B

.data
Size: 512B - Virtual size: 120B

.reloc
Size: 1024B - Virtual size: 662B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 8KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 638B

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

93:45:46:c5:b9:de:56:3a:fe:9c:a9:97:d5:38:14:dd:8e:0b:78:91:95:dd:a9:fb:dc:ed:5c:06:bf:3d:61:96
Signer

a9:13:f9:49:ee:2b:11:6a:24:ef:b1:e2:e0:d0:94:83:bb:72:cd:47
Signer

.text
Size: 492KB - Virtual size: 492KB

.rdata
Size: 289KB - Virtual size: 289KB

.data
Size: 6KB - Virtual size: 239KB

.rsrc
Size: 28KB - Virtual size: 28KB

.reloc
Size: 33KB - Virtual size: 33KB

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e
Certificate

0c:a9:d0:55:d3:78:c3:cc:1e:73:07:f1:0a:c6:6d:60
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate