8d6caf284661e91b0dc4c786b580360e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8d6caf284661e91b0dc4c786b580360e_JaffaCakes118
Size

988KB
MD5

8d6caf284661e91b0dc4c786b580360e
SHA1

3bed41c2685297b6c53dd773c3a3687a7fb82b1f
SHA256

dfcea556b8ad5b5866af58a0df3ec64075976935b5b7a37e32afa8748104ff41
SHA512

468da65515d1215423dc58f12260ee8faf1a2a77894457b70b421e7b91021817de4e9f52acb10fa4425b65f003659aa93a83ad85b2da62ffc03a9c3e5b17c7a2
SSDEEP

24576:o7ok86TzKdcSdGcpKdXeodCTUKEZJ5mn4GqaVqa:W58XcqGWK5eoiUKqJ5m4iX

Score

3^/10

Malware Config

Signatures

Unsigned PE 19 IoCs

Checks for missing Authenticode signature.

resource
unpack001/LyGame/Client/Junqi/Junqi.dll
unpack001/LyGame/Client/Junqi/JunqiRes.dll
unpack001/LyGame/Client/Main.exe
unpack001/LyGame/Client/Main/Chatter.dll
unpack001/LyGame/Client/Main/Frame.dll
unpack001/LyGame/Client/Main/Login.dll
unpack001/LyGame/Client/Main/MainRes.dll
unpack001/LyGame/Client/Share/Image/Player000.dll
unpack001/LyGame/Client/Share/Image/Player001.dll
unpack001/LyGame/Client/Share/Tables/Table000.dll
unpack001/LyGame/Client/Share/Tables/Table001.dll
unpack001/LyGame/Client/Share/Tables/Table002.dll
unpack001/LyGame/Client/Share/Tables/Table003.dll
unpack001/LyGame/Client/Share/Tables/Table004.dll
unpack001/LyGame/Client/Share/Tables/Table005.dll
unpack001/LyGame/Client/Upgrade/Upgrade.dll
unpack001/LyGame/Client/Upgrade/UpgradeRes.dll
unpack001/LyGame/JunqiServer/JunqiServer.exe
unpack001/LyGame/JunqiServer/XT1922Lib.dll

Files

8d6caf284661e91b0dc4c786b580360e_JaffaCakes118
.rar
LyGame/Client/Junqi/Junqi.dll
.dll windows:4 windows x86 arch:x86

1ea180d049d28a6113bd1dc683009d92

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

sndPlaySoundA

mfc42

ord4078
ord1775
ord6052
ord2514
ord4407
ord2385
ord5163
ord6374
ord5241
ord5280
ord4353
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord3798
ord2446
ord2124
ord5261
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4627
ord4425
ord3597
ord324
ord5277
ord2358
ord4234
ord4710
ord4853
ord641
ord1871
ord3663
ord1200
ord1168
ord1253
ord342
ord1182
ord860
ord858
ord2233
ord5440
ord6383
ord5450
ord6394
ord1945
ord3571
ord4589
ord4588
ord4899
ord4370
ord4892
ord5076
ord4341
ord4349
ord4723
ord4890
ord4531
ord4545
ord4543
ord4526
ord4529
ord4524
ord4964
ord4961
ord4108
ord5240
ord6334
ord1726
ord4432
ord2575
ord6055
ord1776
ord4396
ord5290
ord3402
ord5265
ord4998
ord640
ord609
ord813
ord323
ord567
ord560
ord3626
ord2414
ord4273
ord1641
ord1146
ord5785
ord1640
ord2859
ord2379
ord535
ord4464
ord2078
ord6215
ord2642
ord4299
ord6199
ord4224
ord3499
ord2515
ord355
ord2764
ord941
ord668
ord939
ord2820
ord3811
ord1980
ord2770
ord356
ord5260
ord3619
ord5875
ord686
ord3562
ord2781
ord384
ord2096
ord4275
ord2077
ord2152
ord1948
ord2396
ord3346
ord5300
ord5303
ord4079
ord4699
ord5307
ord5289
ord5715
ord4622
ord565
ord817
ord2726
ord4226
ord2864
ord800
ord4975
ord4919
ord4411
ord4447
ord605
ord278
ord3570
ord966
ord1971
ord5478
ord5796
ord4863
ord4335
ord2031
ord5481
ord5810
ord825
ord4376
ord823
ord2818
ord540
ord4424
ord3574
ord3748
ord1106

msvcrt

_itoa
__CxxFrameHandler
memmove
fread
fopen
fclose
__dllonexit
_onexit
fwrite
_initterm
malloc
free
_adjust_fdiv

kernel32

LockResource
GetLastError
CreateDirectoryA
LoadResource
FreeLibrary
LoadLibraryA
ResumeThread
FindResourceA

user32

GetNextDlgGroupItem
GetParent
GetCapture
WindowFromPoint
PostThreadMessageA
GetDesktopWindow
LoadIconA
OffsetRect
SetTimer
KillTimer
LoadBitmapA
GetDC
InvalidateRect
PostMessageA
EnableWindow
SendMessageA
ClientToScreen
ReleaseCapture

gdi32

CreateFontA
CreateCompatibleBitmap
GetObjectA
CreateCompatibleDC
StretchBlt
BitBlt

comctl32

ImageList_GetImageCount
_TrackMouseEvent
ImageList_Draw
ImageList_ReplaceIcon

wsock32

htonl
htons

Exports

Exports

ExitInstance
Get
InitInstance
Set

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Junqi/JunqiRes.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 584KB - Virtual size: 580KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Main.exe
.exe windows:4 windows x86 arch:x86

c08aec52a8aad2bf37e023d23ef72635

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord4274
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord4079
ord4698
ord5307
ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord815
ord6215
ord2092
ord1151
ord1168
ord1200
ord1193
ord2621
ord1134
ord6375
ord4486
ord4376
ord4853
ord4998
ord4710
ord2514
ord6052
ord4078
ord1775
ord4407
ord5241
ord2385
ord5163
ord6374
ord825
ord5280
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord4627
ord4425
ord3597
ord324
ord641
ord4234
ord1146
ord800
ord4160
ord540
ord2863
ord2379
ord755
ord470
ord4673
ord5265
ord2725
ord4353
ord1576

msvcrt

_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
exit
__p__fmode
__set_app_type
_except_handler3
_controlfp
_exit
_XcptFilter
__dllonexit
__CxxFrameHandler
_onexit
_setmbcp

kernel32

GetProcAddress
GetModuleHandleA
GetStartupInfoA

user32

GetSystemMenu
DrawIcon
AppendMenuA
GetClientRect
SendMessageA
IsIconic
EnableWindow
GetSystemMetrics
LoadIconA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 564B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
LyGame/Client/Main/Chatter.dll
.dll windows:4 windows x86 arch:x86

51adf0ac73fa6ee79c056cbd9f141fc9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord5163
ord4353
ord5290
ord2385
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3748
ord5065
ord1726
ord2446
ord2124
ord5277
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4627
ord4432
ord3663
ord813
ord560
ord4273
ord5260
ord4464
ord4299
ord2379
ord2077
ord6374
ord2233
ord3089
ord6215
ord1106
ord5440
ord6383
ord5450
ord6394
ord5265
ord4376
ord4998
ord2514
ord6052
ord1775
ord5241
ord5280
ord3749
ord1727
ord5261
ord4425
ord3597
ord641
ord860
ord540
ord324
ord2289
ord2370
ord4234
ord6334
ord4710
ord4224
ord4853
ord2411
ord2023
ord4218
ord2578
ord4398
ord3402
ord4424
ord3582
ord3573
ord616
ord1146
ord567
ord3626
ord2414
ord2298
ord2294
ord2362
ord2302
ord6199
ord6197
ord2080
ord3797
ord6880
ord2642
ord3092
ord1641
ord5875
ord4476
ord3708
ord2575
ord4396
ord3574
ord781
ord609
ord2818
ord3874
ord2516
ord361
ord4132
ord6136
ord6134
ord3876
ord941
ord939
ord2820
ord1871
ord1200
ord3610
ord656
ord4275
ord3398
ord3733
ord686
ord810
ord384
ord4284
ord2123
ord4220
ord2584
ord3654
ord2438
ord6270
ord2863
ord4083
ord3287
ord1644
ord3914
ord2862
ord2096
ord2089
ord2078
ord5981
ord2864
ord6930
ord6928
ord3481
ord2252
ord2582
ord3370
ord3640
ord4402
ord693
ord3286
ord4964
ord2100
ord3996
ord6905
ord6907
ord6007
ord4407
ord4524
ord6008
ord1776
ord5240
ord1848
ord4243
ord2583
ord4532
ord4403
ord5253
ord3371
ord3641
ord303
ord1849
ord4244
ord6453
ord3571
ord6654
ord6696
ord3619
ord283
ord2860
ord3293
ord1168
ord5787
ord3754
ord6888
ord6675
ord3910
ord2408
ord3742
ord818
ord755
ord470
ord640
ord5785
ord1640
ord323
ord1907
ord5161
ord5162
ord5160
ord4905
ord4742
ord4948
ord4358
ord4377
ord4854
ord5287
ord4835
ord768
ord489
ord4258
ord4976
ord2363
ord2358
ord1948
ord2396
ord3346
ord5300
ord5303
ord4079
ord4699
ord5307
ord5289
ord5715
ord4622
ord565
ord817
ord2726
ord4226
ord1908
ord4715
ord1690
ord2528
ord5288
ord2054
ord4431
ord771
ord1008
ord2038
ord497
ord4259
ord4439
ord5849
ord2881
ord5810
ord5481
ord2031
ord4411
ord4447
ord4335
ord4863
ord5796
ord5478
ord1971
ord966
ord3570
ord278
ord605
ord4975
ord5809
ord4919
ord556
ord809
ord2754
ord2405
ord6232
ord6230
ord6148
ord2568
ord6268
ord6271
ord3225
ord3257
ord2544
ord2543
ord2511
ord978
ord1731
ord5851
ord2883
ord2398
ord2418
ord6224
ord6226
ord2429
ord2250
ord4732
ord5477
ord2259
ord4836
ord4440
ord3720
ord794
ord527
ord4264
ord4541
ord5038
ord3912
ord4789
ord4763
ord825
ord356
ord2770
ord2781
ord3562
ord858
ord6438
ord668
ord800
ord537
ord1182
ord823
ord342
ord1253
ord4529
ord4526
ord4543
ord4545
ord4531
ord4890
ord4108
ord4078
ord6055
ord4000
ord4961
ord2859
ord4341
ord4723
ord4349
ord4370
ord5076
ord4892
ord4589
ord4899
ord4588
ord3998
ord1945
ord3301
ord4480
ord6762

msvcrt

time
memmove
__CxxFrameHandler
srand
fclose
rand
fopen
_mbscmp
fwrite
_winver
_mbsnbcpy
atoi
__dllonexit
_onexit
fread
_initterm
malloc
free
_adjust_fdiv

kernel32

GetLastError
LoadLibraryA
GetProcAddress
lstrcpyA
ResumeThread
FreeLibrary
WaitForSingleObject

user32

DrawEdge
WindowFromPoint
OffsetRect
GetWindowLongA
GetCapture
ClientToScreen
ReleaseCapture
GetNextDlgGroupItem
SetWindowRgn
SetCursor
CreateMenu
LoadMenuA
GetWindowRect
LoadIconA
EnableWindow
GetClientRect
PostMessageA
SendMessageA
SetTimer
LoadCursorA
LoadBitmapA
FrameRect
CreatePopupMenu
PtInRect
GetParent
DrawFocusRect
InsertMenuA
FillRect
ReleaseDC
GetFocus
GetDC
DrawIcon
InvalidateRect
DestroyCursor
ScreenToClient
SetActiveWindow
GetCursorPos
GetSubMenu
EnableMenuItem
GetSysColor

gdi32

CreateSolidBrush
GetObjectA
GetTextExtentPoint32A
CreateFontIndirectA
BitBlt
CreateCompatibleDC
PatBlt
DeleteDC
StretchBlt
DeleteObject
SelectObject
SelectClipRgn
CombineRgn
CreateRectRgn
GetPixel
CreateCompatibleBitmap
GetDeviceCaps

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA

comctl32

ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_GetImageInfo
ImageList_AddMasked
ord8
_TrackMouseEvent
ImageList_Draw
ImageList_GetIcon

wsock32

htonl
inet_addr

Exports

Exports

ExitInstance
Get
InitInstance
Set

Sections

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Main/Frame.dll
.dll windows:4 windows x86 arch:x86

b00a7acd2b8a493a2d701a57afbc4ee0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

htons
htonl

mfc42

ord6376
ord4299
ord823
ord1949
ord6055
ord4078
ord1776
ord4407
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord6170
ord5875
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord2055
ord3825
ord4080
ord4627
ord4424
ord818
ord567
ord4275
ord3573
ord3626
ord2414
ord2754
ord1641
ord1175
ord1200
ord535
ord860
ord537
ord6008
ord4220
ord2584
ord3654
ord2438
ord6270
ord2863
ord1644
ord1146
ord5440
ord6383
ord5450
ord6394
ord3742
ord641
ord2379
ord4125
ord6334
ord5265
ord4376
ord4998
ord2514
ord3079
ord1775
ord5280
ord6052
ord3597
ord324
ord2370
ord2301
ord4234
ord2645
ord858
ord4853
ord6199
ord3092
ord4710
ord2289
ord2642
ord2362
ord2363
ord4224
ord1168
ord1253
ord342
ord1182
ord668
ord3562
ord2781
ord2770
ord356
ord2233
ord1945
ord4589
ord4588
ord4899
ord4370
ord4892
ord5076
ord4341
ord4349
ord4723
ord4890
ord4531
ord4545
ord4543
ord4526
ord4529
ord4524
ord4964
ord4961
ord4108
ord5240
ord3748
ord1726
ord5260
ord4432
ord3571
ord813
ord560
ord4273
ord4464
ord2864
ord2575
ord4396
ord3402
ord3574
ord609
ord686
ord384
ord2096
ord1193
ord6805
ord4000
ord2078
ord3916
ord2252
ord323
ord1640
ord3481
ord2975
ord6597
ord4425
ord3570
ord6807
ord6857
ord6823
ord6855
ord2818
ord540
ord6867
ord6847
ord6814
ord6839
ord6846
ord6858
ord6816
ord6815
ord6812
ord6845
ord6856
ord6808
ord6835
ord6817
ord4340
ord4347
ord4720
ord4889
ord4963
ord4960
ord5478
ord5281
ord1725
ord6614
ord6691
ord6478
ord6514
ord6800
ord4456
ord3398
ord3733
ord810
ord2862
ord2123
ord4129
ord2915
ord3181
ord3185
ord2820
ord3811
ord3287
ord1842
ord4242
ord2723
ord2390
ord3059
ord5100
ord5103
ord4303
ord3350
ord5012
ord975
ord5472
ord3403
ord2879
ord2878
ord4151
ord4077
ord5237
ord5282
ord2649
ord1665
ord4436
ord4427
ord3619
ord796
ord674
ord554
ord529
ord366
ord807
ord755
ord470
ord4457
ord5252
ord3706
ord5030
ord2971
ord4467
ord4413
ord2859
ord3089
ord6129
ord5148
ord4284
ord4083
ord4508
ord2152
ord2077
ord556
ord809
ord3874
ord2405
ord6197
ord6232
ord6230
ord6148
ord2568
ord6268
ord6271
ord3225
ord3257
ord2544
ord2543
ord2511
ord978
ord1731
ord5851
ord2883
ord2398
ord2418
ord6224
ord6226
ord2429
ord2250
ord4732
ord5477
ord2259
ord4836
ord4440
ord3720
ord794
ord527
ord4264
ord4541
ord5038
ord3912
ord4789
ord4763
ord4271
ord5796
ord4863
ord4335
ord2031
ord5481
ord5810
ord825
ord5785
ord640
ord6215
ord1871
ord3663
ord4975
ord4919
ord4411
ord4447
ord605
ord278
ord800
ord6832
ord6859
ord966
ord1971
ord6650
ord6591
ord5910
ord5949
ord6054

msvcrt

__CxxFrameHandler
memmove
strncpy
_mbscmp
rand
srand
time
fclose
fread
fopen
fwrite
__dllonexit
_onexit
free
_initterm
malloc
_adjust_fdiv

kernel32

FreeLibrary
GetProcAddress
GetLastError
LoadLibraryA

user32

LoadIconA
SetWindowRgn
GetWindowRect
GetDC
SetCursor
GetDesktopWindow
GetSysColor
GetWindowLongA
DrawFocusRect
GetSystemMetrics
IsZoomed
GetCursorPos
InvalidateRect
ClientToScreen
ReleaseCapture
GetNextDlgGroupItem
GetClientRect
OffsetRect
AppendMenuA
SendMessageA
PostMessageA
LoadCursorA
GetParent
LoadBitmapA
KillTimer
SetTimer
IntersectRect
IsRectEmpty
PtInRect
FillRect
FrameRect
EnableWindow
LoadMenuA
GetSubMenu
ScreenToClient
RemoveMenu
WindowFromPoint
DrawEdge
GetCapture

gdi32

CreateCompatibleDC
CreateSolidBrush
StretchBlt
SelectObject
CreateCompatibleBitmap
CreateRoundRectRgn
DeleteObject
DeleteDC
GetObjectA
SelectClipRgn
CombineRgn
CreateRectRgn
GetPixel
BitBlt

advapi32

RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey

comctl32

ImageList_Draw
ImageList_GetImageCount
ImageList_ReplaceIcon
_TrackMouseEvent

Exports

Exports

ExitInstance
Get
InitInstance
Set

Sections

.text
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Main/LatestInfo/CurServer.dat
LyGame/Client/Main/LatestInfo/LoginPlayer.dat
LyGame/Client/Main/LatestInfo/ServerList.dat
LyGame/Client/Main/Login.dll
.dll windows:4 windows x86 arch:x86

d9cc0b78c75844161df83f6b1a4eca3b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord5280
ord4425
ord3597
ord4407
ord2411
ord2023
ord4218
ord2578
ord6055
ord4078
ord1776
ord4398
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3402
ord3830
ord3831
ord3825
ord3079
ord4080
ord4627
ord4424
ord3582
ord3571
ord616
ord800
ord641
ord860
ord567
ord540
ord324
ord3626
ord2414
ord2289
ord2370
ord2301
ord2299
ord2302
ord4234
ord2379
ord668
ord6334
ord3317
ord535
ord2818
ord4284
ord2864
ord858
ord3562
ord2781
ord2770
ord356
ord4710
ord1641
ord6215
ord2642
ord3092
ord823
ord2528
ord1200
ord4853
ord1980
ord2514
ord4058
ord5440
ord6383
ord5450
ord6394
ord1871
ord6052
ord1775
ord1168
ord1253
ord342
ord1182
ord1247
ord1907
ord5161
ord5162
ord5160
ord4905
ord4742
ord4948
ord4358
ord825
ord4854
ord5287
ord4835
ord768
ord489
ord2358
ord2362
ord4258
ord4976
ord2294
ord2298
ord6197
ord2080
ord3797
ord6880
ord6283
ord6282
ord6199
ord1908
ord1690
ord5288
ord2054
ord4431
ord771
ord1008
ord2038
ord497
ord4259
ord4439
ord4715
ord2881
ord686
ord384
ord2096
ord3742
ord818
ord2077
ord2152
ord2029
ord2575
ord4396
ord3574
ord609
ord556
ord809
ord2754
ord5875
ord3874
ord640
ord2405
ord1640
ord323
ord5265
ord3663
ord537
ord4975
ord4919
ord4411
ord4447
ord605
ord278
ord3570
ord966
ord1971
ord5478
ord5796
ord4863
ord4335
ord2031
ord5481
ord5810
ord4998
ord4376
ord4275
ord2859
ord3178
ord4377

msvcrt

__CxxFrameHandler
_adjust_fdiv
fclose
fgets
fopen
_mbscmp
memmove
atoi
fread
fwrite
_mkdir
fputs
rand
srand
time
__dllonexit
_onexit
free
_initterm
malloc

kernel32

LoadLibraryA
DeleteFileA
RemoveDirectoryA
GetLastError
FreeLibrary

user32

GetCapture
GetCursorPos
DrawEdge
ClientToScreen
WindowFromPoint
OffsetRect
GetNextDlgGroupItem
DrawFocusRect
GetWindowLongA
GetSysColor
GetDesktopWindow
LoadIconA
GetWindowRect
GetParent
DrawIcon
SetTimer
KillTimer
EnableWindow
InvalidateRect
GetWindow
SendMessageA
PostMessageA
ReleaseCapture

gdi32

SelectObject
CreateCompatibleDC
BitBlt
StretchBlt
CreateCompatibleBitmap
DeleteDC
DeleteObject
GetObjectA

comctl32

_TrackMouseEvent
ImageList_GetImageCount
ImageList_GetIcon
ImageList_ReplaceIcon

wsock32

htonl
htons

Exports

Exports

ExitInstance
Get
InitInstance
Set

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Main/MainRes.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 276B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 540KB - Virtual size: 536KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Main/default_hzh.swf
LyGame/Client/Share/Image/Player000.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 278B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 236KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Share/Image/Player001.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 278B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 236KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Share/Tables/Table000.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Share/Tables/Table001.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Share/Tables/Table002.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Share/Tables/Table003.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Share/Tables/Table004.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Share/Tables/Table005.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Upgrade/Upgrade.dll
.dll windows:4 windows x86 arch:x86

80fb3cd12dc0606db32c1b43eb74d911

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord686
ord668
ord858
ord3562
ord2781
ord2770
ord356
ord384
ord3571
ord1641
ord1146
ord823
ord2096
ord1168
ord5440
ord6383
ord5450
ord6394
ord3626
ord2414
ord6055
ord4078
ord1776
ord4407
ord5241
ord2385
ord5163
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4627
ord4424
ord567
ord4275
ord2077
ord2152
ord6374
ord2379
ord1200
ord3663
ord1971
ord1871
ord2233
ord3619
ord1945
ord4589
ord540
ord4370
ord4892
ord5076
ord4341
ord4349
ord4723
ord4890
ord4531
ord4545
ord4543
ord4526
ord4529
ord4524
ord4964
ord825
ord4108
ord5240
ord3748
ord1726
ord4432
ord2575
ord4396
ord3402
ord3574
ord640
ord609
ord813
ord323
ord560
ord4273
ord283
ord755
ord5785
ord1640
ord470
ord4464
ord535
ord2642
ord6215
ord4299
ord2078
ord939
ord6199
ord3092
ord5260
ord4123
ord4508
ord5875
ord556
ord809
ord4284
ord2754
ord3874
ord2859
ord2405
ord6197
ord6358
ord1088
ord2122
ord2864
ord5796
ord4863
ord4335
ord2031
ord5481
ord5810
ord800
ord4975
ord4919
ord4411
ord4447
ord605
ord278
ord3570
ord966
ord2818
ord537
ord4588
ord4899
ord1182
ord5478
ord860
ord1253
ord342
ord4961

msvcrt

srand
time
rand
__CxxFrameHandler
memmove
__dllonexit
free
_initterm
_onexit
_adjust_fdiv
malloc

kernel32

FindResourceA
LoadResource
GetLastError
LoadLibraryA
FreeLibrary

user32

GetCursorPos
GetDC
SetWindowRgn
ClientToScreen
ReleaseCapture
WindowFromPoint
GetCapture
KillTimer
LoadBitmapA
LoadIconA
SendMessageA
PostMessageA
DrawFocusRect
DrawEdge
OffsetRect
PtInRect
GetWindowLongA
GetSysColor
GetClientRect
FillRect
GetSystemMetrics
GetDesktopWindow
InvalidateRect
EnableWindow
GetNextDlgGroupItem
GetParent
SetTimer

gdi32

CreateFontA
CreateCompatibleBitmap
CombineRgn
StretchBlt
DeleteObject
DeleteDC
SelectObject
SelectClipRgn
BitBlt
CreateRectRgn
GetPixel
CreateCompatibleDC
GetObjectA

comctl32

ImageList_ReplaceIcon
ImageList_Draw
ImageList_GetImageCount
_TrackMouseEvent

wsock32

htons
htonl

Exports

Exports

ExitInstance
Get
InitInstance
Set

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/Client/Upgrade/UpgradeRes.dll
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 279B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 848KB - Virtual size: 847KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/JunqiServer/JunqiServer.exe
.exe windows:4 windows x86 arch:x86

35dea1132eb87a4625e395291b99663b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord4998
ord823
ord540
ord2818
ord812
ord6144
ord559
ord2820
ord6907
ord3998
ord3811
ord5862
ord858
ord860
ord548
ord941
ord537
ord535
ord2514
ord6052
ord1775
ord5280
ord4425
ord3597
ord6055
ord4078
ord1776
ord4407
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord5265
ord4837
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4627
ord4424
ord641
ord1146
ord1168
ord567
ord324
ord2370
ord4441
ord4234
ord6215
ord2302
ord2915
ord1200
ord6334
ord4853
ord4710
ord4376
ord2642
ord2298
ord2294
ord2362
ord1871
ord3663
ord3742
ord818
ord4275
ord2379
ord696
ord394
ord5590
ord3435
ord3935
ord6007
ord909
ord4185
ord5628
ord3996
ord5440
ord6383
ord5450
ord6394
ord6008
ord4000
ord4615
ord4612
ord4610
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord4622
ord3738
ord686
ord815
ord384
ord561
ord6199
ord1175
ord2862
ord617
ord5301
ord5214
ord296
ord986
ord520
ord1106
ord4159
ord6117
ord2621
ord3092
ord2096
ord1825
ord4238
ord4919
ord800
ord3065
ord6336
ord2510
ord2542
ord5243
ord5740
ord1746
ord5577
ord3172
ord5653
ord4420
ord4953
ord4858
ord2399
ord4387
ord3454
ord3198
ord6080
ord6175
ord4623
ord4426
ord338
ord652
ord4823
ord4614
ord4613
ord1849
ord4244
ord4588
ord4370
ord4892
ord4532
ord4723
ord5253
ord3371
ord3641
ord2583
ord4589
ord4899
ord5076
ord4341
ord4349
ord4890
ord4531
ord4545
ord4543
ord4526
ord4529
ord4524
ord4964
ord4961
ord4108
ord4403
ord5240
ord3748
ord1726
ord4432
ord303
ord813
ord2535
ord4083
ord4464
ord3286
ord1942
ord4272
ord5259
ord4284
ord3287
ord4125
ord2723
ord2390
ord3059
ord5100
ord5103
ord4303
ord3350
ord5012
ord975
ord5472
ord3403
ord2879
ord2878
ord4151
ord4077
ord5237
ord2649
ord1665
ord5810
ord4427
ord6000
ord2117
ord4457
ord2252
ord1233
ord1133
ord3481
ord3797
ord1644
ord5949
ord2233
ord3916
ord4413
ord4364
ord4056
ord5471
ord4121
ord1711
ord5234
ord5248
ord2444
ord2099
ord1641
ord2414
ord3626
ord3619
ord2077
ord2152
ord1945
ord5260
ord560
ord4273
ord6120
ord4299
ord6905
ord6442
ord3303
ord2123
ord1948
ord5303
ord4699
ord5715
ord817
ord565
ord2726
ord4226
ord278
ord3570
ord966
ord1971
ord5478
ord5796
ord4863
ord4335
ord2031
ord5481
ord4975
ord605
ord4411
ord4447
ord4696
ord825
ord3058
ord1134
ord4436
ord1576

msvcrt

_setmbcp
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
memmove
time
__getmainargs
sprintf
_initterm
__CxxFrameHandler
fwrite
fopen
fclose
rand
srand

kernel32

GetSystemTime
WaitForSingleObject
GetModuleHandleA
GetStartupInfoA
GetLastError
ResumeThread

user32

GetClientRect
RedrawWindow
SetForegroundWindow
LoadMenuA
SetTimer
GetCursorPos
UpdateWindow
SendMessageA
EnableWindow
LoadIconA
KillTimer
GetDesktopWindow
PostMessageA

gdi32

CreateFontA

comctl32

ImageList_ReplaceIcon

xt1922lib

?SwitchSDIView@CXTFrameWnd@@UAEXPAUCRuntimeClass@@PAVCDocument@@PAUCCreateContext@@@Z
?PreTranslateMessage@CXTFrameWnd@@MAEHPAUtagMSG@@@Z
??1CXTToolBar@@UAE@XZ
??1CXTStatusBar@@UAE@XZ
??1CXTSplitterWnd@@UAE@XZ
??1CXTTrayIcon@@UAE@XZ
?LoadBarState@CXTFrameWnd@@UAEXPBD@Z
??1CXTFrameWnd@@UAE@XZ
??0CXTWindowPos@@QAE@XZ
??0CXTToolBar@@QAE@XZ
??0CXTStatusBar@@QAE@XZ
??0CXTSplitterWnd@@QAE@XZ
??0CXTTrayIcon@@QAE@XZ
??0CXTFrameWnd@@QAE@XZ
??1CXTWindowPos@@UAE@XZ
?InstallCoolMenus@CXTFrameWnd@@QAEXI@Z
?DockControlBar@CXTFrameWnd@@QAEXPAVCControlBar@@IPBUtagRECT@@@Z
?EnableDockingEx@CXTFrameWnd@@QAEXKK@Z
?EnableDockingEx@CXTControlBar@@QAEXKK@Z
?LoadToolBar@CXTToolBar@@QAEHPBD@Z
?LoadMenuBar@CXTMenuBar@@QAEHI@Z
?xtAfxData@@3UXT_AUX_DATA@@A
?PreCreateWindow@CXTFrameWnd@@MAEHAAUtagCREATESTRUCTA@@@Z
??1CXTMenu@@UAE@XZ
?TrackPopupMenu@CXTMenu@@QAEHIHHPAVCWnd@@PBUtagRECT@@H@Z
??1CXTHyperLink@@UAE@XZ
??0CXTHyperLink@@QAE@XZ
?SaveWindowPos@CXTWindowPos@@QAEHPAVCWnd@@PBD@Z
?UpdateButtonXStyles@CXTDockWindow@@MAEXXZ
?DrawCaption@CXTDockWindow@@MAEXPAVCDC@@ABVCRect@@@Z
?OnDrawGripper@CXTDockWindow@@MAEXPAVCDC@@@Z
?GetButtonRect@CXTDockWindow@@UAE?AVCRect@@XZ
?GetGripperRect@CXTDockWindow@@UAE?AVCRect@@XZ
?DockControlBarLeftOf@CXTFrameWnd@@UAEXPAVCControlBar@@0@Z
?SetChild@CXTDockWindow@@UAEXPAVCWnd@@@Z
?CreateView@CXTDockWindow@@UAEPAVCWnd@@PAUCRuntimeClass@@PAVCDocument@@PAUCCreateContext@@@Z
?GetHorzSize@CXTDockWindow@@UAEHXZ
?GetVertSize@CXTDockWindow@@UAEHXZ
?EnableDocking@CXTDockWindow@@UAEXK@Z
?Maximize@CXTDockWindow@@UAEXH@Z
?Minimize@CXTDockWindow@@UAEHXZ
?Normalize@CXTDockWindow@@UAEXXZ
?SetFloatSize@CXTDockWindow@@UAEXXZ
?SetNormalSize@CXTDockWindow@@UAEXABVCSize@@@Z
?IsUnique@CXTDockWindow@@UBEHXZ
?IsMaximized@CXTDockWindow@@UBEHXZ
?GetMinExt@CXTDockWindow@@UAEHXZ
?GetMenu@CXTFrameWnd@@UBEPAVCMenu@@XZ
?SaveBarState@CXTFrameWnd@@UBEXPBD@Z
?EraseNonClient@CXTDockWindow@@MAEXXZ
?CalcInsideRect@CXTControlBar@@MBEXAAVCRect@@H@Z
?OnPopupMenu@CXTControlBar@@MAEHAAVCPoint@@PAVCFrameWnd@@@Z
?DockTrackingDone@CXTControlBar@@UAEXXZ
?CanSwitchFrames@CXTControlBar@@UAE_NXZ
?GetBackgroundColor@CXTControlBar@@UBEKXZ
?IsFloating@CXTControlBar@@UBEHXZ
?IsVertDocked@CXTControlBar@@UBEHXZ
?IsHorzDocked@CXTControlBar@@UBEHXZ
?IsBottomDocked@CXTControlBar@@UBEHXZ
?IsTopDocked@CXTControlBar@@UBEHXZ
?IsRightDocked@CXTControlBar@@UBEHXZ
?IsLeftDocked@CXTControlBar@@UBEHXZ
?DrawBorders@CXTDockWindow@@MAEXPAVCDC@@AAVCRect@@@Z
?DrawGripper@CXTControlBar@@UAEXPAVCDC@@ABVCRect@@@Z
?GetMenuID@CXTControlBar@@UAEIXZ
?SetMenuID@CXTControlBar@@UAEXIH@Z
?ModifyXTBarStyle@CXTDockWindow@@UAEHKKH@Z
?SetXTBarStyle@CXTControlBar@@UAEXK@Z
?GetXTBarStyle@CXTControlBar@@UAEKXZ
?GetBorders@CXTControlBar@@MBE?AVCRect@@XZ
?SetBorders@CXTControlBar@@MAEXPBUtagRECT@@@Z
?SetBorders@CXTControlBar@@MAEXHHHH@Z
?SetStatusText@CXTControlBar@@MAEHH@Z
?DoPaint@CXTDockWindow@@UAEXPAVCDC@@@Z
?DelayShow@CXTDockWindow@@UAEXH@Z
?OnUpdateCmdUI@CXTDockWindow@@UAEXPAVCFrameWnd@@H@Z
?CalcDynamicLayout@CXTDockWindow@@UAE?AVCSize@@HK@Z
?WindowProc@CXTControlBar@@MAEJIIJ@Z
?PreTranslateMessage@CXTDockWindow@@UAEHPAUtagMSG@@@Z
??1CXTListBox@@UAE@XZ
??1CXTFlatTabCtrl@@UAE@XZ
??1CXTDockWindow@@UAE@XZ
??0CXTListBox@@QAE@XZ
??0CXTFlatTabCtrl@@QAE@XZ
??0CXTDockWindow@@QAE@XZ
?classCXTDockWindow@CXTDockWindow@@2UCRuntimeClass@@B
?messageMap@CXTDockWindow@@1UAFX_MSGMAP@@B
?OnCreate@CXTDockWindow@@IAEHPAUtagCREATESTRUCTA@@@Z
??0CXTListCtrl@@QAE@XZ
??1CXTListCtrl@@UAE@XZ
??0CXTHexEdit@@QAE@XZ
??1CXTHexEdit@@UAE@XZ
?SetAddressBase@CXTHexEdit@@QAEKK@Z
?RepositionCaret@CXTHexEdit@@IAEXH@Z
?SetData@CXTHexEdit@@QAEXPAEH@Z
??1CXTTreeCtrl@@UAE@XZ
??0CXTTreeCtrl@@QAE@XZ
?HideMenuItems@CXTFrameWnd@@UAEHQBDH@Z
?HideMenuItem@CXTFrameWnd@@UAEHPBD@Z
?HideMenuItem@CXTFrameWnd@@UAEHI@Z
?GetDockState@CXTFrameWnd@@MBEXAAVCXTDockState@@@Z
?HideMenuItems@CXTFrameWnd@@UAEHPBIH@Z
?SetDockState@CXTFrameWnd@@MAEXABVCXTDockState@@@Z
?classCXTFrameWnd@CXTFrameWnd@@2UCRuntimeClass@@B
?PreCreateWindow@CXTFrameWnd@@MAEHAAUtagCREATESTRUCTA@@I@Z
?messageMap@CXTFrameWnd@@1UAFX_MSGMAP@@B
??0CXTTipOfTheDay@@QAE@PBDPAVCWnd@@@Z
??1CXTCoolMenu@@UAE@XZ
??0CXTCoolMenu@@QAE@H@Z
?GetInsideRect@CXTDockWindow@@UAEXAAVCRect@@@Z
??1CXTTipOfTheDay@@UAE@XZ
?Create@CXTDockWindow@@UAEHPAVCWnd@@IPBDVCSize@@KK@Z
?SetBarPlacement@CXTDockWindow@@UAEXPAUXT_BARPLACEMENT@@@Z
?GetSubMenu@CXTMenu@@QBEPAV1@H@Z
??0CXTMenu@@QAE@XZ

wsock32

recv
accept
send
bind
closesocket
socket
WSAAsyncSelect
htonl
listen
gethostbyname
ntohl
gethostname
inet_addr
htons
WSAStartup

Sections

.text
Size: 128KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
LyGame/JunqiServer/XT1922Lib.dll
.dll windows:4 windows x86 arch:x86

0f34b4954cecbe1d3c581a42a57edbd9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord5981
ord2089
ord3089
ord609
ord1146
ord1795
ord5875
ord2567
ord2754
ord2859
ord535
ord6170
ord858
ord2860
ord1126
ord5053
ord1127
ord755
ord470
ord3626
ord2414
ord4133
ord4297
ord5788
ord472
ord3721
ord795
ord1929
ord2714
ord4287
ord2116
ord6605
ord816
ord562
ord818
ord1949
ord686
ord2408
ord2097
ord384
ord2152
ord537
ord1233
ord6453
ord3571
ord2452
ord1641
ord826
ord4644
ord1771
ord6366
ord2413
ord2024
ord692
ord1797
ord4225
ord4024
ord5890
ord2937
ord4060
ord3803
ord1719
ord640
ord2405
ord283
ord1640
ord323
ord3028
ord4401
ord5262
ord5246
ord5267
ord764
ord824
ord1908
ord1690
ord2528
ord5288
ord4439
ord2054
ord4431
ord771
ord1008
ord496
ord3475
ord4259
ord5849
ord3092
ord4715
ord613
ord289
ord2818
ord6442
ord2646
ord5785
ord2753
ord1907
ord4258
ord5161
ord5162
ord5160
ord4905
ord4742
ord4948
ord4358
ord5265
ord4377
ord4854
ord4998
ord2514
ord6052
ord1775
ord5287
ord4835
ord4425
ord3719
ord793
ord768
ord489
ord2294
ord2362
ord2302
ord4710
ord4976
ord6334
ord2841
ord2107
ord5450
ord5440
ord6383
ord6394
ord5271
ord3573
ord3693
ord5787
ord3742
ord809
ord556
ord1087
ord2122
ord2566
ord1175
ord2411
ord2023
ord4218
ord2578
ord4398
ord2862
ord1137
ord616
ord1802
ord3639
ord6265
ord6229
ord6228
ord4083
ord2494
ord5613
ord3495
ord4364
ord4056
ord5471
ord4121
ord2389
ord1709
ord1711
ord5234
ord5279
ord5248
ord2444
ord620
ord298
ord1803
ord4230
ord773
ord5607
ord998
ord1930
ord6603
ord501
ord4454
ord3072
ord6154
ord2614
ord812
ord702
ord559
ord400
ord4288
ord4285
ord5596
ord915
ord4191
ord2096
ord1168
ord6877
ord3920
ord4129
ord5710
ord2763
ord5862
ord2817
ord1176
ord2866
ord6209
ord2800
ord1200
ord4219
ord2581
ord6648
ord5572
ord2919
ord1859
ord4478
ord5850
ord2882
ord548
ord834
ord3337
ord932
ord936
ord2719
ord5949
ord2142
ord6335
ord6194
ord4333
ord3102
ord4057
ord5083
ord6369
ord331
ord645
ord1819
ord4236
ord5606
ord2997
ord1234
ord3986
ord5871
ord3100
ord2493
ord2531
ord2767
ord332
ord646
ord5852
ord1708
ord2884
ord4076
ord1229
ord2155
ord3101
ord5489
ord6908
ord6707
ord2571
ord3220
ord3955
ord1741
ord5860
ord5755
ord5754
ord5815
ord333
ord647
ord1820
ord6571
ord299
ord6127
ord3747
ord4759
ord4045
ord6357
ord1865
ord1270
ord3103
ord2380
ord5805
ord4718
ord1567
ord1265
ord2233
ord268
ord1847
ord3021
ord2580
ord4400
ord3630
ord682
ord1844
ord5610
ord3706
ord5786
ord1849
ord1848
ord3711
ord783
ord2112
ord1088
ord6358
ord3807
ord3754
ord6128
ord3752
ord3582
ord2247
ord3619
ord3317
ord2244
ord2088
ord5869
ord2902
ord1954
ord2455
ord5088
ord4362
ord2723
ord2390
ord3059
ord5100
ord5103
ord4467
ord4303
ord3350
ord5012
ord975
ord5472
ord3403
ord2879
ord2878
ord4151
ord4077
ord5237
ord2649
ord1665
ord4436
ord4427
ord674
ord366
ord1842
ord4242
ord5252
ord6458
ord5282
ord1133
ord1945
ord2258
ord4204
ord1572
ord6874
ord6663
ord1205
ord5510
ord4042
ord1652
ord429
ord5903
ord1706
ord430
ord3216
ord465
ord464
ord466
ord4589
ord4588
ord4899
ord4370
ord4892
ord5076
ord4340
ord4347
ord4720
ord4424
ord4627
ord4545
ord4543
ord4526
ord4529
ord4524
ord4963
ord4960
ord4108
ord6376
ord4080
ord5281
ord3748
ord1725
ord5260
ord4432
ord365
ord784
ord1841
ord4241
ord2688
ord2863
ord1644
ord2135
ord1134
ord539
ord2241
ord1238
ord1601
ord6482
ord846
ord463
ord4034
ord1574
ord610
ord6289
ord6139
ord968
ord3470
ord455
ord287
ord6027
ord1199
ord6907
ord3998
ord3301
ord3996
ord3293
ord3910
ord6242
ord939
ord1140
ord2582
ord4402
ord3370
ord3640
ord693
ord4243
ord2583
ord4532
ord4341
ord4349
ord4723
ord4890
ord4964
ord4961
ord4403
ord1726
ord5253
ord3371
ord3641
ord303
ord813
ord4244
ord4508
ord4464
ord5856
ord1109
ord5216
ord2814
ord5101
ord2101
ord3351
ord976
ord4152
ord2382
ord5283
ord2445
ord401
ord1858
ord4245
ord5254
ord5104
ord4458
ord3869
ord860
ord2391
ord5102
ord5105
ord4468
ord2880
ord4153
ord2383
ord4437
ord4428
ord402
ord4246
ord5255
ord5284
ord2587
ord4406
ord3394
ord3729
ord804
ord1937
ord4267
ord4216
ord2119
ord6320
ord4505
ord1815
ord3887
ord2830
ord4222
ord5467
ord1581

msvcrt

isalnum
rand
srand
time
__CxxFrameHandler
_ftol
floor
_purecall
strncpy
toupper
memmove
strcoll
_strnicmp
strchr
free
isprint
sprintf
malloc
calloc
atoi
isxdigit
isalpha
isdigit
_stricmp
_splitpath
strtok
atof
atol
fseek
ctime
_fstat
fopen
fclose
ftell
fgets
_except_handler3
?terminate@@YAXXZ
__dllonexit
_onexit
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv

kernel32

MultiByteToWideChar
WideCharToMultiByte
GlobalFree
lstrcpyA
GetVersion
GetFileAttributesA
GetLastError
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetVersionExA
lstrlenW
lstrlenA
GetModuleFileNameA
GlobalSize
FindFirstFileA
FindClose
LoadLibraryA
GetProcAddress
FreeLibrary
MulDiv
GetModuleHandleA
LoadResource
LockResource
GetCurrentThreadId
GlobalAlloc
GlobalLock
GlobalUnlock
FindResourceA
GetCurrentDirectoryA
Sleep

user32

wsprintfA
GetMenuStringA
GetMenu
EndDeferWindowPos
EqualRect
BeginDeferWindowPos
SetFocus
IntersectRect
LockWindowUpdate
GetMessageA
GetDlgCtrlID
TrackPopupMenuEx
PeekMessageA
GetWindow
IsChild
GetCursor
DeferWindowPos
SetWindowLongA
GetKeyState
CheckMenuItem
EnableScrollBar
ShowScrollBar
LoadIconA
DrawMenuBar
GetWindowLongA
PostQuitMessage
LoadCursorA
DestroyCursor
ShowCaret
SetCaretPos
DestroyCaret
SetScrollPos
GetScrollInfo
DragDetect
CreateCaret
SetScrollInfo
ShowWindow
EnableMenuItem
DrawFocusRect
GetClassLongA
SetMenuDefaultItem
DestroyMenu
SetMenu
GetMessagePos
DrawIcon
UnionRect
TrackPopupMenu
CallWindowProcA
CloseWindow
WindowFromPoint
GetWindowPlacement
MessageBoxA
GetMenuItemID
GetCursorPos
PtInRect
InvalidateRect
GetDesktopWindow
RedrawWindow
EnableWindow
IsWindow
TranslateMessage
DispatchMessageA
LoadMenuA
GetSubMenu
PostMessageA
DestroyIcon
CopyRect
GetWindowRect
GetParent
SendMessageA
GrayStringA
DrawTextA
TabbedTextOutA
GetMenuItemInfoA
SetMenuItemInfoA
GetClassNameA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
SystemParametersInfoA
CreatePopupMenu
InsertMenuA
DeleteMenu
ClientToScreen
DefWindowProcA
SetRect
GetCapture
IsRectEmpty
SetRectEmpty
DrawFrameControl
ReleaseCapture
SetCapture
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
FillRect
LoadBitmapA
GetFocus
GetSysColorBrush
SetParent
GetDC
ReleaseDC
UpdateWindow
GetSystemMetrics
AppendMenuA
InsertMenuItemA
RemoveMenu
IsMenu
GetSystemMenu
DrawEdge
GetWindowDC
SetWindowPos
SetWindowRgn
GetMenuItemCount
DrawIconEx
OffsetRect
IsWindowVisible
GetClientRect
SetTimer
LoadImageA
MapWindowPoints
SetCursor
DrawStateA
ScreenToClient
InflateRect
KillTimer
GetSysColor
RegisterClipboardFormatA
MessageBeep

gdi32

DeleteObject
CreateCompatibleDC
CreateDIBSection
SelectObject
RectVisible
TextOutA
PtVisible
Escape
GetTextExtentPoint32A
ExtTextOutA
GetTextMetricsA
GetObjectA
SetPixel
SetPixelV
CreateCompatibleBitmap
GetPixel
CreatePen
CreatePatternBrush
CreateSolidBrush
GetStockObject
CreateBitmap
GetMapMode
GetTextAlign
CreateRectRgnIndirect
Polygon
EnumFontFamiliesExA
CreateFontIndirectA
GetDeviceCaps
PatBlt
DeleteDC
CreateFontA
GetCharWidthA
SetBoundsRect
GetBkColor
GetTextColor
StretchDIBits
CombineRgn
CreateRectRgn
Rectangle
BitBlt

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegEnumValueA
RegEnumKeyExA

shell32

Shell_NotifyIconA
SHGetDesktopFolder
ShellExecuteExA
SHGetFileInfoA
SHGetSpecialFolderLocation
ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA

comctl32

ImageList_GetImageInfo
ImageList_Destroy
ImageList_GetIcon
ImageList_LoadImageA
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Draw
InitCommonControlsEx
ord17

ole32

DoDragDrop

oleaut32

VariantClear
SysFreeString
SafeArrayCreateVector

Exports

Exports

??0CXTAnimationMemDC@@QAE@PAVCDC@@ABVCRect@@K@Z
??0CXTBarFolder@@QAE@PBDK@Z
??0CXTBarItem@@QAE@ABV0@@Z
??0CXTBarItem@@QAE@PBDHK@Z
??0CXTBrowseDialog@@QAE@ABV0@@Z
??0CXTBrowseDialog@@QAE@PAVCWnd@@@Z
??0CXTBrowseEdit@@QAE@XZ
??0CXTButton@@QAE@XZ
??0CXTCaption@@QAE@XZ
??0CXTCaptionButton@@QAE@XZ
??0CXTCaptionPopupWnd@@QAE@XZ
??0CXTCheckListBox@@QAE@XZ
??0CXTColorBase@@QAE@XZ
??0CXTColorDialog@@QAE@KKKPAVCWnd@@@Z
??0CXTColorHex@@QAE@XZ
??0CXTColorLum@@QAE@XZ
??0CXTColorPageCustom@@QAE@PAVCXTColorDialog@@@Z
??0CXTColorPageStandard@@QAE@PAVCXTColorDialog@@@Z
??0CXTColorPicker@@QAE@XZ
??0CXTColorPopup@@QAE@HJ@Z
??0CXTColorRef@@QAE@HHH@Z
??0CXTColorRef@@QAE@K@Z
??0CXTColorRef@@QAE@XZ
??0CXTColorWnd@@QAE@XZ
??0CXTComboBoxEx@@QAE@XZ
??0CXTCommandsListBox@@QAE@XZ
??0CXTControlBar@@IAE@XZ
??0CXTCoolMenu@@QAE@H@Z
??0CXTCustCommands@@QAE@PAVCFrameWnd@@@Z
??0CXTCustOptions@@QAE@PAVCFrameWnd@@@Z
??0CXTCustToolbar@@QAE@PAVCFrameWnd@@@Z
??0CXTCustomizeSheet@@QAE@PAVCFrameWnd@@@Z
??0CXTDateEdit@@QAE@XZ
??0CXTDateTimeCtrl@@QAE@XZ
??0CXTDialogBar@@QAE@XZ
??0CXTDockBar@@QAE@XZ
??0CXTDockContext@@QAE@ABV0@@Z
??0CXTDockContext@@QAE@PAVCControlBar@@@Z
??0CXTDockWindow@@QAE@XZ
??0CXTDropSource@@QAE@ABV0@@Z
??0CXTDropSource@@QAE@XZ
??0CXTEditGroup@@QAE@XZ
??0CXTEditItem@@QAE@XZ
??0CXTEditListBox@@QAE@XZ
??0CXTFlatComboBox@@QAE@XZ
??0CXTFlatHeaderCtrl@@QAE@XZ
??0CXTFlatTabCtrl@@QAE@XZ
??0CXTFontCombo@@QAE@XZ
??0CXTFrameImpl@@QAE@XZ
??0CXTFrameWnd@@QAE@XZ
??0CXTHeaderCtrl@@QAE@XZ
??0CXTHexEdit@@QAE@XZ
??0CXTHtmlView@@IAE@XZ
??0CXTHyperLink@@QAE@XZ
??0CXTItemData@@QAE@ABV0@@Z
??0CXTItemData@@QAE@XZ
??0CXTItemEdit@@QAE@PAVCWnd@@ABVCRect@@AAVCString@@K_N@Z
??0CXTListBox@@QAE@XZ
??0CXTListCtrl@@QAE@XZ
??0CXTListCtrlBase@@QAE@XZ
??0CXTListView@@QAE@XZ
??0CXTLoadLibrary@@QAE@ABV0@@Z
??0CXTLoadLibrary@@QAE@PBD@Z
??0CXTLogoPane@@QAE@XZ
??0CXTMBarMDIWndHook@@QAE@XZ
??0CXTMBarWndHook@@QAE@XZ
??0CXTMDIChildWnd@@QAE@XZ
??0CXTMDIClientWnd@@QAE@PAVCXTMDIWndTab@@@Z
??0CXTMDIFrameWnd@@QAE@XZ
??0CXTMDIWndTab@@QAE@XZ
??0CXTMaskEdit@@QAE@XZ
??0CXTMemDC@@QAE@PAVCDC@@ABVCRect@@K@Z
??0CXTMemFile@@QAE@I@Z
??0CXTMemFile@@QAE@PAEII@Z
??0CXTMemFile@@QAE@PBDI@Z
??0CXTMenu@@QAE@XZ
??0CXTMenuBar@@QAE@XZ
??0CXTMiniDockFrameWnd@@QAE@XZ
??0CXTMonthCalCtrl@@QAE@XZ
??0CXTNewToolbarDlg@@QAE@PAVCFrameWnd@@@Z
??0CXTOleIPFrameWnd@@QAE@XZ
??0CXTOutBarCtrl@@QAE@XZ
??0CXTOutlookBar@@QAE@XZ
??0CXTPagerCtrl@@QAE@XZ
??0CXTPreviewView@@IAE@XZ
??0CXTReBar@@QAE@XZ
??0CXTReBarCtrl@@QAE@XZ
??0CXTRegistryManager@@QAE@ABV0@@Z
??0CXTRegistryManager@@QAE@PAUHKEY__@@@Z
??0CXTSearchOptionsCtrl@@QAE@XZ
??0CXTSearchOptionsView@@IAE@I@Z
??0CXTSearchOptionsView@@IAE@PBD@Z
??0CXTShellListCtrl@@QAE@XZ
??0CXTShellListView@@QAE@XZ
??0CXTShellPidl@@QAE@ABV0@@Z
??0CXTShellPidl@@QAE@XZ
??0CXTShellSettings@@QAE@ABV0@@Z
??0CXTShellSettings@@QAE@XZ
??0CXTShellTreeCtrl@@QAE@XZ
??0CXTShellTreeView@@QAE@XZ
??0CXTSortClass@@QAE@ABV0@@Z
??0CXTSortClass@@QAE@PAVCListCtrl@@H@Z
??0CXTSplitterRowDock@@QAE@ABV0@@Z
??0CXTSplitterRowDock@@QAE@PAVCXTDockBar@@ABVCRect@@HH@Z
??0CXTSplitterWnd@@QAE@XZ
??0CXTSplitterWndEx@@QAE@XZ
??0CXTStatusBar@@QAE@XZ
??0CXTTabCtrl@@QAE@XZ
??0CXTTabCtrlBar@@QAE@XZ
??0CXTTabCtrlBase@@QAE@XZ
??0CXTTabCtrlBaseEx@@QAE@XZ
??0CXTTabView@@QAE@XZ
??0CXTTimeEdit@@QAE@XZ
??0CXTTipOfTheDay@@QAE@PBDPAVCWnd@@@Z
??0CXTTipWindow@@QAE@XZ
??0CXTToolBar@@QAE@XZ
??0CXTToolBarCtrl@@QAE@XZ
??0CXTTrayIcon@@QAE@XZ
??0CXTTreeCtrl@@QAE@XZ
??0CXTTreeView@@IAE@XZ
??0CXTWindowMap@@QAE@XZ
??0CXTWindowPos@@QAE@ABV0@@Z
??0CXTWindowPos@@QAE@XZ
??0CXTWndHook@@QAE@XZ
??0CXTWndShadow@@QAE@PAUHWND__@@_N1@Z
??0XT_AUX_DATA@@QAE@XZ
??1CXTAnimationMemDC@@UAE@XZ
??1CXTBarFolder@@UAE@XZ
??1CXTBarItem@@UAE@XZ
??1CXTBrowseDialog@@UAE@XZ
??1CXTBrowseEdit@@UAE@XZ
??1CXTButton@@UAE@XZ
??1CXTCaption@@UAE@XZ
??1CXTCaptionButton@@UAE@XZ
??1CXTCaptionPopupWnd@@UAE@XZ
??1CXTCheckListBox@@UAE@XZ
??1CXTColorBase@@UAE@XZ
??1CXTColorDialog@@UAE@XZ
??1CXTColorHex@@UAE@XZ
??1CXTColorLum@@UAE@XZ
??1CXTColorPageCustom@@UAE@XZ
??1CXTColorPageStandard@@UAE@XZ
??1CXTColorPicker@@UAE@XZ
??1CXTColorPopup@@UAE@XZ
??1CXTColorWnd@@UAE@XZ
??1CXTComboBoxEx@@UAE@XZ
??1CXTCommandsListBox@@UAE@XZ
??1CXTControlBar@@UAE@XZ
??1CXTCoolMenu@@UAE@XZ
??1CXTCustCommands@@UAE@XZ
??1CXTCustOptions@@UAE@XZ
??1CXTCustToolbar@@UAE@XZ
??1CXTCustomizeSheet@@UAE@XZ
??1CXTDateEdit@@UAE@XZ
??1CXTDateTimeCtrl@@UAE@XZ
??1CXTDialogBar@@UAE@XZ
??1CXTDockBar@@UAE@XZ
??1CXTDockContext@@UAE@XZ
??1CXTDockWindow@@UAE@XZ
??1CXTDropSource@@QAE@XZ
??1CXTEditGroup@@UAE@XZ
??1CXTEditItem@@UAE@XZ
??1CXTEditListBox@@UAE@XZ
??1CXTFlatComboBox@@UAE@XZ
??1CXTFlatHeaderCtrl@@UAE@XZ
??1CXTFlatTabCtrl@@UAE@XZ
??1CXTFontCombo@@UAE@XZ
??1CXTFrameImpl@@UAE@XZ
??1CXTFrameWnd@@UAE@XZ
??1CXTHeaderCtrl@@UAE@XZ
??1CXTHexEdit@@UAE@XZ
??1CXTHtmlView@@MAE@XZ
??1CXTHyperLink@@UAE@XZ
??1CXTItemData@@UAE@XZ
??1CXTItemEdit@@UAE@XZ
??1CXTListBox@@UAE@XZ
??1CXTListCtrl@@UAE@XZ
??1CXTListCtrlBase@@UAE@XZ
??1CXTListView@@UAE@XZ
??1CXTLoadLibrary@@UAE@XZ
??1CXTLogoPane@@UAE@XZ
??1CXTMBarMDIWndHook@@UAE@XZ
??1CXTMBarWndHook@@UAE@XZ
??1CXTMDIChildWnd@@UAE@XZ
??1CXTMDIClientWnd@@UAE@XZ
??1CXTMDIFrameWnd@@UAE@XZ
??1CXTMDIWndTab@@UAE@XZ
??1CXTMaskEdit@@UAE@XZ
??1CXTMemDC@@UAE@XZ
??1CXTMemFile@@UAE@XZ
??1CXTMenu@@UAE@XZ
??1CXTMenuBar@@UAE@XZ
??1CXTMiniDockFrameWnd@@UAE@XZ
??1CXTMonthCalCtrl@@UAE@XZ
??1CXTNewToolbarDlg@@UAE@XZ
??1CXTOleIPFrameWnd@@UAE@XZ
??1CXTOutBarCtrl@@UAE@XZ
??1CXTOutlookBar@@UAE@XZ
??1CXTPagerCtrl@@UAE@XZ
??1CXTPreviewView@@MAE@XZ
??1CXTReBar@@UAE@XZ
??1CXTReBarCtrl@@UAE@XZ
??1CXTRegistryManager@@UAE@XZ
??1CXTSearchOptionsCtrl@@UAE@XZ
??1CXTSearchOptionsView@@MAE@XZ
??1CXTShellListCtrl@@UAE@XZ
??1CXTShellListView@@UAE@XZ
??1CXTShellPidl@@UAE@XZ
??1CXTShellSettings@@UAE@XZ
??1CXTShellTreeCtrl@@UAE@XZ
??1CXTShellTreeView@@UAE@XZ
??1CXTSortClass@@UAE@XZ
??1CXTSplitterRowDock@@UAE@XZ
??1CXTSplitterWnd@@UAE@XZ
??1CXTSplitterWndEx@@UAE@XZ
??1CXTStatusBar@@UAE@XZ
??1CXTTabCtrl@@UAE@XZ
??1CXTTabCtrlBar@@UAE@XZ
??1CXTTabCtrlBase@@UAE@XZ
??1CXTTabCtrlBaseEx@@UAE@XZ
??1CXTTabView@@UAE@XZ
??1CXTTimeEdit@@UAE@XZ
??1CXTTipOfTheDay@@UAE@XZ
??1CXTTipWindow@@UAE@XZ
??1CXTToolBar@@UAE@XZ
??1CXTToolBarCtrl@@UAE@XZ
??1CXTTrayIcon@@UAE@XZ
??1CXTTreeCtrl@@UAE@XZ
??1CXTTreeView@@MAE@XZ
??1CXTWindowMap@@UAE@XZ
??1CXTWindowPos@@UAE@XZ
??1CXTWndHook@@UAE@XZ
??1CXTWndShadow@@UAE@XZ
??1XT_AUX_DATA@@UAE@XZ
??4CXTBarItem@@QAEAAV0@ABV0@@Z
??4CXTBrowseDialog@@QAEAAV0@ABV0@@Z
??4CXTColorRef@@QAEAAV0@ABV0@@Z
??4CXTColorRef@@QAEAAV0@K@Z
??4CXTDockContext@@QAEAAV0@ABV0@@Z
??4CXTDropSource@@QAEAAV0@ABV0@@Z
??4CXTItemData@@QAEAAV0@ABV0@@Z
??4CXTLoadLibrary@@QAEAAV0@ABV0@@Z
??4CXTMemFile@@QAEXK@Z
??4CXTMemFile@@QAEXPAVCFile@@@Z
??4CXTMemFile@@QAEXVCString@@@Z
??4CXTRegistryManager@@QAEAAV0@ABV0@@Z
??4CXTShellPidl@@QAEAAV0@ABV0@@Z
??4CXTShellSettings@@QAEAAV0@ABV0@@Z
??4CXTSortClass@@QAEAAV0@ABV0@@Z
??4CXTSplitterRowDock@@QAEAAV0@ABV0@@Z
??4CXTWindowPos@@QAEAAV0@ABV0@@Z
??ACXTMemFile@@QAEEK@Z
??BCXTColorRef@@QBEKXZ
??BCXTLoadLibrary@@QBEPAUHINSTANCE__@@XZ
??DCXTColorRef@@QBE?AV0@H@Z
??DCXTColorRef@@QBE?AV0@K@Z
??GCXTColorRef@@QBE?AV0@H@Z
??GCXTColorRef@@QBE?AV0@K@Z
??HCXTColorRef@@QBE?AV0@H@Z
??HCXTColorRef@@QBE?AV0@K@Z
??KCXTColorRef@@QBE?AV0@H@Z
??KCXTColorRef@@QBE?AV0@K@Z
??XCXTColorRef@@QAEAAV0@H@Z
??XCXTColorRef@@QAEAAV0@K@Z
??YCXTColorRef@@QAEAAV0@H@Z
??YCXTColorRef@@QAEAAV0@K@Z
??YCXTMemFile@@QAEXPAVCFile@@@Z
??YCXTMemFile@@QAEXVCString@@@Z
??ZCXTColorRef@@QAEAAV0@H@Z
??ZCXTColorRef@@QAEAAV0@K@Z
??_0CXTColorRef@@QAEAAV0@H@Z
??_0CXTColorRef@@QAEAAV0@K@Z
??_7CXTAnimationMemDC@@6B@
??_7CXTBarFolder@@6B@
??_7CXTBarItem@@6B@
??_7CXTBrowseDialog@@6B@
??_7CXTBrowseEdit@@6B@
??_7CXTButton@@6B@
??_7CXTCaption@@6B@
??_7CXTCaptionButton@@6B@
??_7CXTCaptionPopupWnd@@6B@
??_7CXTCheckListBox@@6B@
??_7CXTColorBase@@6B@
??_7CXTColorDialog@@6B@
??_7CXTColorHex@@6B@
??_7CXTColorLum@@6B@
??_7CXTColorPageCustom@@6B@
??_7CXTColorPageStandard@@6B@
??_7CXTColorPicker@@6B@
??_7CXTColorPopup@@6B@
??_7CXTColorWnd@@6B@
??_7CXTComboBoxEx@@6B@
??_7CXTCommandsListBox@@6B@
??_7CXTControlBar@@6B@
??_7CXTCoolMenu@@6B@
??_7CXTCustCommands@@6B@
??_7CXTCustOptions@@6B@
??_7CXTCustToolbar@@6B@
??_7CXTCustomizeSheet@@6B@
??_7CXTDateEdit@@6B@
??_7CXTDateTimeCtrl@@6B@
??_7CXTDialogBar@@6B@
??_7CXTDockBar@@6B@
??_7CXTDockContext@@6B@
??_7CXTDockWindow@@6B@
??_7CXTDropSource@@6B@
??_7CXTEditGroup@@6B@
??_7CXTEditItem@@6B@
??_7CXTEditListBox@@6B@
??_7CXTFlatComboBox@@6B@
??_7CXTFlatHeaderCtrl@@6B@
??_7CXTFlatTabCtrl@@6B@
??_7CXTFontCombo@@6B@
??_7CXTFrameImpl@@6B@
??_7CXTFrameWnd@@6BCFrameWnd@@@
??_7CXTFrameWnd@@6BCXTFrameImpl@@@
??_7CXTHeaderCtrl@@6B@
??_7CXTHexEdit@@6B@
??_7CXTHtmlView@@6B@
??_7CXTHyperLink@@6B@
??_7CXTItemData@@6B@
??_7CXTItemEdit@@6B@
??_7CXTListBox@@6B@
??_7CXTListCtrl@@6BCListCtrl@@@
??_7CXTListCtrl@@6BCXTListCtrlBase@@@
??_7CXTListCtrlBase@@6B@
??_7CXTListView@@6BCListView@@@
??_7CXTListView@@6BCXTListCtrlBase@@@
??_7CXTLoadLibrary@@6B@
??_7CXTLogoPane@@6B@
??_7CXTMBarMDIWndHook@@6B@
??_7CXTMBarWndHook@@6B@
??_7CXTMDIChildWnd@@6BCMDIChildWnd@@@
??_7CXTMDIChildWnd@@6BCXTFrameImpl@@@
??_7CXTMDIClientWnd@@6B@
??_7CXTMDIFrameWnd@@6BCMDIFrameWnd@@@
??_7CXTMDIFrameWnd@@6BCXTFrameImpl@@@
??_7CXTMDIWndTab@@6BCTabCtrl@@@
??_7CXTMDIWndTab@@6BCXTTabCtrlBase@@@
??_7CXTMaskEdit@@6B@
??_7CXTMemDC@@6B@
??_7CXTMemFile@@6B@
??_7CXTMenu@@6B@
??_7CXTMenuBar@@6B@
??_7CXTMiniDockFrameWnd@@6B@
??_7CXTMonthCalCtrl@@6B@
??_7CXTNewToolbarDlg@@6B@
??_7CXTOleIPFrameWnd@@6BCOleIPFrameWnd@@@
??_7CXTOleIPFrameWnd@@6BCXTFrameImpl@@@
??_7CXTOutBarCtrl@@6B@
??_7CXTOutlookBar@@6B@
??_7CXTPagerCtrl@@6B@
??_7CXTPreviewView@@6B@
??_7CXTReBar@@6B@
??_7CXTReBarCtrl@@6B@
??_7CXTRegistryManager@@6B@
??_7CXTSearchOptionsCtrl@@6B@
??_7CXTSearchOptionsView@@6B@
??_7CXTShellListCtrl@@6B@
??_7CXTShellListCtrl@@6BCListCtrl@@@
??_7CXTShellListCtrl@@6BCXTListCtrlBase@@@
??_7CXTShellListView@@6B@
??_7CXTShellListView@@6BCListView@@@
??_7CXTShellListView@@6BCXTListCtrlBase@@@
??_7CXTShellPidl@@6B@
??_7CXTShellSettings@@6B@
??_7CXTShellTreeCtrl@@6BCXTShellPidl@@@
??_7CXTShellTreeCtrl@@6BCXTTreeCtrl@@@
??_7CXTShellTreeView@@6BCXTShellPidl@@@
??_7CXTShellTreeView@@6BCXTTreeView@@@
??_7CXTSortClass@@6B@
??_7CXTSplitterRowDock@@6B@
??_7CXTSplitterWnd@@6B@
??_7CXTSplitterWndEx@@6B@
??_7CXTStatusBar@@6B@
??_7CXTTabCtrl@@6BCTabCtrl@@@
??_7CXTTabCtrl@@6BCXTTabCtrlBaseEx@@@
??_7CXTTabCtrlBar@@6B@
??_7CXTTabCtrlBase@@6B@
??_7CXTTabCtrlBaseEx@@6B@
??_7CXTTabView@@6BCCtrlView@@@
??_7CXTTabView@@6BCXTTabCtrlBaseEx@@@
??_7CXTTimeEdit@@6B@
??_7CXTTipOfTheDay@@6B@
??_7CXTTipWindow@@6B@
??_7CXTToolBar@@6B@
??_7CXTToolBarCtrl@@6B@
??_7CXTTrayIcon@@6B@
??_7CXTTreeCtrl@@6B@
??_7CXTTreeView@@6B@
??_7CXTWindowMap@@6B@
??_7CXTWindowPos@@6B@
??_7CXTWndHook@@6B@
??_7CXTWndShadow@@6B@
??_7XT_AUX_DATA@@6B@
??_FCXTBrowseDialog@@QAEXXZ
??_FCXTColorPageCustom@@QAEXXZ
??_FCXTColorPageStandard@@QAEXXZ
??_FCXTColorPopup@@QAEXXZ
??_FCXTCoolMenu@@QAEXXZ
??_FCXTCustCommands@@QAEXXZ
??_FCXTCustOptions@@QAEXXZ
??_FCXTCustToolbar@@QAEXXZ
??_FCXTCustomizeSheet@@QAEXXZ
??_FCXTLoadLibrary@@QAEXXZ
??_FCXTMemFile@@QAEXXZ
??_FCXTNewToolbarDlg@@QAEXXZ
??_FCXTRegistryManager@@QAEXXZ
??_FCXTTipOfTheDay@@QAEXXZ
?ActivateView@CXTTabCtrlBaseEx@@UAEXPAVCWnd@@@Z
?Add@CXTWindowMap@@QAEXPAUHWND__@@PAVCXTWndHook@@@Z
?AddBar@CXTReBar@@QAEHPAVCWnd@@KKPBDKI@Z
?AddBar@CXTReBar@@QAEHPAVCWnd@@PAUtagREBARBANDINFOA@@@Z
?AddBar@CXTReBar@@QAEHPAVCWnd@@PBDPAVCBitmap@@KI@Z
?AddButtons@CXTToolBar@@QAEHHPAU_TBBUTTON@@@Z
?AddColumn@CXTListCtrlBase@@UAEHPBDHH@Z
?AddControl@CXTSearchOptionsCtrl@@QAEXPAVCWnd@@@Z
?AddControl@CXTStatusBar@@QAEHPAVCWnd@@IH@Z
?AddControl@CXTTabCtrlBar@@UAEHPBDPAVCWnd@@H@Z
?AddControl@CXTTabCtrlBaseEx@@UAEHPBDPAVCWnd@@HH@Z
?AddDropDownButton@CXTToolBar@@QAEHIIH@Z
?AddDropDownButton@CXTToolBar@@QAEHIKKKHH@Z
?AddFolder@CXTOutBarCtrl@@UAEHPBDK@Z
?AddFolderBar@CXTOutBarCtrl@@UAEHPBDPAVCWnd@@K@Z
?AddFont@CXTFontCombo@@MAEXPAUtagENUMLOGFONTEXA@@K@Z
?AddImageToMap@CXTCoolMenu@@MAEXIPAUHICON__@@VCSize@@@Z
?AddIndicator@CXTStatusBar@@QAEHIH@Z
?AddListener@CXTColorPopup@@QAEXPAUHWND__@@@Z
?AddMenuItem@CXTOutlookBar@@QAEHIPBD@Z
?AddRecentItem@CXTCoolMenu@@MAEHI@Z
?AddRef@CXTDropSource@@UAGKXZ
?AddReplaceBitmap@CXTToolBar@@QAEHPAUHBITMAP__@@@Z
?AddSplitter@CXTDockBar@@IAEXVCRect@@HHH@Z
?AddString@CXTComboBoxEx@@QAEHPBD@Z
?AddString@CXTCommandsListBox@@QAEHPAUXT_CMDINFO@@@Z
?AddStrings@CXTToolBar@@QAEHPBD@Z
?AddToolTip@CXTTabCtrlBar@@UAEXIPBD@Z
?AddToolTip@CXTTabCtrlBaseEx@@UAEXIPBD@Z
?AddView@CXTTabCtrlBar@@UAEHPBDPAUCRuntimeClass@@PAVCDocument@@PAUCCreateContext@@H@Z
?AddView@CXTTabCtrlBar@@UAEHPBDPAVCView@@HH@Z
?AddView@CXTTabCtrlBaseEx@@UAEHPBDPAUCRuntimeClass@@PAVCDocument@@PAUCCreateContext@@HH@Z
?AddView@CXTTabCtrlBaseEx@@UAEHPBDPAVCView@@HH@Z
?AdjustClientRect@CXTMenuBar@@MAEXAAVCRect@@@Z
?AdjustRectangle@CXTDockContext@@AAEXAAVCRect@@VCPoint@@@Z
?AdjustRowSizes@CXTDockBar@@IAEXH@Z
?AllowUpperCase@CXTShellSettings@@QAE_NXZ
?Animate@CXTAnimationMemDC@@QAEXW4ANIMATIONTYPE@@HH@Z
?AnimateFolderScroll@CXTOutBarCtrl@@MAEXHH@Z
?Append@CXTMemFile@@MAE_NPAVCFile@@@Z
?AppendImageList@CXTCoolMenu@@UAEHIPAIH@Z
?AppendImageList@CXTCoolMenu@@UAEHPAUHBITMAP__@@PAIH@Z
?ApplyFieldWidths@CXTHeaderCtrl@@MAEXH@Z
?AssociateCombo@CXTShellTreeCtrl@@UAEXPAVCWnd@@@Z
?AssociateCombo@CXTShellTreeView@@UAEXPAVCWnd@@@Z
?AssociateList@CXTShellTreeCtrl@@UAEXPAVCWnd@@@Z
?AssociateTree@CXTShellListCtrl@@UAEXPAVCWnd@@@Z
?AutoSaveColumns@CXTListCtrlBase@@UAEXPBD00@Z
?AutoSize@CXTToolBar@@QAEXXZ
?AutoSizeColumn@CXTListCtrlBase@@UAEXH@Z
?AutoSizeToolbar@CXTToolBar@@QAEHXZ
?BLACK@CXTColorRef@@2V1@B
?BeforeNavigate2@CXTHtmlView@@MAEXPAUIDispatch@@PAUtagVARIANT@@1111PAH@Z
?BeginDrag@CXTReBarCtrl@@QAEXIK@Z
?BlendColor@CXTColorRef@@SAHHHH@Z
?BltShadowArea@CXTWndShadow@@SAXPAVCDC@@VCRect@@0VCPoint@@@Z
?BrowseCtrlCallback@CXTBrowseDialog@@CGHPAUHWND__@@IJJ@Z
?BuildColumns@CXTListCtrlBase@@UAE_NHPAH0@Z
?BuildColumns@CXTListCtrlBase@@UAE_NHPAHPAVCString@@@Z
?BuildDefaultColumns@CXTShellListCtrl@@UAEXXZ
?BuildDefaultColumns@CXTShellListView@@UAEXXZ
?ButtonHitTest@CXTFlatTabCtrl@@MBEHAAVCPoint@@@Z
?CBTHook@CXTCoolMenu@@KGJHIJ@Z
?CalcDynamicLayout@CXTDockWindow@@UAE?AVCSize@@HK@Z
?CalcDynamicLayout@CXTMenuBar@@MAE?AVCSize@@HK@Z
?CalcDynamicLayout@CXTReBar@@UAE?AVCSize@@HK@Z
?CalcDynamicLayout@CXTToolBar@@UAE?AVCSize@@HK@Z
?CalcFixedLayout@CXTDialogBar@@MAE?AVCSize@@HH@Z
?CalcFixedLayout@CXTDockBar@@UAE?AVCSize@@HH@Z
?CalcFixedLayout@CXTMenuBar@@MAE?AVCSize@@HH@Z
?CalcFixedLayout@CXTReBar@@UAE?AVCSize@@HH@Z
?CalcFixedLayout@CXTToolBar@@UAE?AVCSize@@HH@Z
?CalcFloatingLayout@CXTMenuBar@@MAE?AVCSize@@XZ
?CalcInsideRect@CXTControlBar@@MBEXAAVCRect@@H@Z
?CalcLayout@CXTToolBar@@QAE?AVCSize@@KH@Z
?CalcMaxMinHeight@CXTSplitterRowDock@@MAEXXZ
?CalcPos@CXTHexEdit@@IAE?AVCPoint@@HH@Z
?CalcSize@CXTToolBar@@QAE?AVCSize@@PAU_TBBUTTON@@H@Z
?CalcSysButtonLayout@CXTMenuBar@@MAEXXZ
?CalcWindowRect@CXTMDIClientWnd@@MAEXPAUtagRECT@@I@Z
?CalculateImagePosition@CXTButton@@MAE?AVCPoint@@PAVCDC@@IAAVCRect@@_N@Z
?CalculateTabWidth@CXTTabCtrlBaseEx@@IAEHPAVCDC@@AAVCString@@_N@Z
?CanDock@CXTDockContext@@QAEKVCRect@@KPAPAVCDockBar@@@Z
?CanDock@CXTDockContext@@QAEKXZ
?CanDock@CXTDockContext@@QAE_NPAVCFrameWnd@@AAKVCRect@@KPAPAVCDockBar@@@Z
?CanSwitchFrames@CXTControlBar@@UAE_NXZ
?CanSwitchFrames@CXTDockContext@@UAE_NXZ
?CanSwitchFrames@CXTMenuBar@@UAE_NXZ
?CancelLoop@CXTDockContext@@AAEXXZ
?CancelMenuAndTrackNewOne@CXTMenuBar@@IAEXH@Z
?CheckButton@CXTToolBar@@QAEHHH@Z

Sections

.text
Size: 456KB - Virtual size: 452KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LyGame/下载说明.htm
.html .js polyglot
下载说明.htm
.html .js polyglot

Sharing

General

Malware Config

Signatures

Files

1ea180d049d28a6113bd1dc683009d92

Headers

File Characteristics

Imports

winmm

mfc42

msvcrt

kernel32

user32

gdi32

comctl32

wsock32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 8KB - Virtual size: 9KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 8KB - Virtual size: 4KB

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

Imports

mfc42

msvcrt

Sections

.text Size: 4KB - Virtual size: 508B

.rdata Size: 4KB - Virtual size: 277B

.data Size: 4KB - Virtual size: 76B

.rsrc Size: 584KB - Virtual size: 580KB

.reloc Size: 4KB - Virtual size: 432B

c08aec52a8aad2bf37e023d23ef72635

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 564B

.rsrc Size: 8KB - Virtual size: 5KB

51adf0ac73fa6ee79c056cbd9f141fc9

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

gdi32

advapi32

comctl32

wsock32

Exports

Exports

Sections

.text Size: 112KB - Virtual size: 109KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 40KB - Virtual size: 39KB

.rsrc Size: 32KB - Virtual size: 28KB

.reloc Size: 12KB - Virtual size: 11KB

b00a7acd2b8a493a2d701a57afbc4ee0

Headers

File Characteristics

Imports

ws2_32

mfc42

msvcrt

kernel32

user32

gdi32

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 8KB - Virtual size: 9KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 8KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 508B

.rdata
Size: 4KB - Virtual size: 277B

.data
Size: 4KB - Virtual size: 76B

.rsrc
Size: 584KB - Virtual size: 580KB

.reloc
Size: 4KB - Virtual size: 432B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 564B

.rsrc
Size: 8KB - Virtual size: 5KB

.text
Size: 112KB - Virtual size: 109KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 40KB - Virtual size: 39KB

.rsrc
Size: 32KB - Virtual size: 28KB

.reloc
Size: 12KB - Virtual size: 11KB

.text
Size: 104KB - Virtual size: 102KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 40KB - Virtual size: 40KB

.rsrc
Size: 60KB - Virtual size: 58KB

.reloc
Size: 12KB - Virtual size: 10KB

.text
Size: 48KB - Virtual size: 45KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 36KB - Virtual size: 39KB

.rsrc
Size: 4KB - Virtual size: 824B

.reloc
Size: 8KB - Virtual size: 5KB

.text
Size: 4KB - Virtual size: 508B

.rdata
Size: 4KB - Virtual size: 276B

.data
Size: 4KB - Virtual size: 76B

.rsrc
Size: 540KB - Virtual size: 536KB

.reloc
Size: 4KB - Virtual size: 432B

.text
Size: 4KB - Virtual size: 508B

.rdata
Size: 4KB - Virtual size: 278B

.data
Size: 4KB - Virtual size: 76B

.rsrc
Size: 236KB - Virtual size: 234KB

.reloc
Size: 4KB - Virtual size: 432B

.text
Size: 4KB - Virtual size: 508B

.rdata
Size: 4KB - Virtual size: 278B

.data
Size: 4KB - Virtual size: 76B

.rsrc
Size: 236KB - Virtual size: 234KB

.reloc
Size: 4KB - Virtual size: 432B