c:\working\SUMP4\trunk\dev\workspace\release\UniblueCommon.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
93ae75ec591e352c04acafe0abe47a19_JaffaCakes118.dll
Resource
win7-20240704-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
93ae75ec591e352c04acafe0abe47a19_JaffaCakes118.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
93ae75ec591e352c04acafe0abe47a19_JaffaCakes118
-
Size
300KB
-
MD5
93ae75ec591e352c04acafe0abe47a19
-
SHA1
f8160341931e663221af116d70984404d3a5e8a1
-
SHA256
b4dd563564ba3c6a50f1973595faa9aa28920db257796d7c514c46b8ee3984ff
-
SHA512
af99129e20c005c54b38229afbaf3b7362ad1ee6aa4268495bd894d98025297ba7ccf11313517be40a96cadf14e3401870d4d295ea62c6d919ff7f7a42bdc3fb
-
SSDEEP
6144:uiPYsouFewbJOgsY2xxzq5Cw51t+dJ9FxS:u4Yso4Lh
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 93ae75ec591e352c04acafe0abe47a19_JaffaCakes118
Files
-
93ae75ec591e352c04acafe0abe47a19_JaffaCakes118.dll windows:4 windows x86 arch:x86
46b568bcd6e69ebc3164e65cd987d53c
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
qtcore4
?data@QByteArray@@QAEPADXZ
??0QLocale@@QAE@W4Language@0@W4Country@0@@Z
??0QString@@QAE@PBD@Z
??1QByteArray@@QAE@XZ
??1QString@@QAE@XZ
?language@QLocale@@QBE?AW4Language@1@XZ
?removeTranslator@QCoreApplication@@SAXPAVQTranslator@@@Z
?toAscii@QString@@QBE?AVQByteArray@@XZ
?load@QTranslator@@QAE_NABVQString@@000@Z
??0QTranslator@@QAE@PAVQObject@@@Z
??0QString@@QAE@XZ
?installTranslator@QCoreApplication@@SAXPAVQTranslator@@@Z
??8QString@@QBE_NABV0@@Z
??1QTranslator@@UAE@XZ
qtgui4
?find@QWidget@@SAPAV1@PAUHWND__@@@Z
?windowTitle@QWidget@@QBE?AVQString@@XZ
shlwapi
PathAppendW
PathRemoveFileSpecW
psapi
GetProcessImageFileNameW
kernel32
FlushFileBuffers
LocalAlloc
SizeofResource
FreeResource
LockResource
GetProcessHeap
HeapFree
lstrlenA
MultiByteToWideChar
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
InterlockedCompareExchange
Sleep
RaiseException
LoadLibraryA
GetModuleFileNameW
SetFilePointerEx
GetModuleHandleW
InitializeCriticalSection
ExpandEnvironmentStringsW
CreateDirectoryW
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
CreateFileW
CloseHandle
DeleteFileW
DeleteCriticalSection
WriteFile
InterlockedExchange
ReadFile
GetVersionExW
CreateThread
CreateEventW
ResumeThread
TerminateThread
SuspendThread
SetEvent
GetProcAddress
GetCurrentProcess
GetModuleHandleExW
GetSystemInfo
FreeLibrary
SearchPathW
FindFirstFileW
FindNextFileW
FindClose
GetTempPathW
GetLongPathNameW
GetDriveTypeW
LoadLibraryW
GetFileSizeEx
WaitForSingleObject
InterlockedIncrement
CreateMutexW
GetLastError
WideCharToMultiByte
FormatMessageW
LocalFree
FindResourceExW
LoadResource
user32
MessageBoxW
LoadStringW
shell32
SHGetFolderPathW
SHFileOperationW
ole32
CoInitialize
CoUninitialize
CoCreateInstance
OleRun
StgOpenStorageEx
StringFromGUID2
CoGetObject
oleaut32
SysFreeString
SysAllocString
GetErrorInfo
VariantClear
msvcp80
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z
?end@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE?AV?$_String_iterator@GU?$char_traits@G@std@@V?$allocator@G@2@@2@XZ
?begin@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE?AV?$_String_iterator@GU?$char_traits@G@std@@V?$allocator@G@2@@2@XZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGI@Z
?_Getfacet@locale@std@@QBEPBVfacet@12@I@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??$?HGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@PBG@Z
?clear@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEXXZ
?compare@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEHABV12@@Z
?swap@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEXAAV12@@Z
?insert@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@IPBG@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??_D?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEXXZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?uncaught_exception@std@@YA_NXZ
?append@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@ABV12@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
?npos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@2IB
?substr@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBE?AV12@II@Z
?find_last_of@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGI@Z
?find_first_of@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGI@Z
?find@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIABV12@I@Z
?end@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBE?AV?$_String_const_iterator@GU?$char_traits@G@std@@V?$allocator@G@2@@2@XZ
?begin@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBE?AV?$_String_const_iterator@GU?$char_traits@G@std@@V?$allocator@G@2@@2@XZ
?append@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBG@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@@Z
??Bid@locale@std@@QAEIXZ
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBGHH@Z
?widen@?$ctype@G@std@@QBEGD@Z
?setstate@?$basic_ios@GU?$char_traits@G@std@@@std@@QAEXH_N@Z
?assign@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBG@Z
?id@?$ctype@G@std@@2V0locale@2@A
?str@?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEXABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@2@@Z
?str@?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@2@XZ
??$?6GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
??1locale@std@@QAE@XZ
?sputc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEGG@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
?sputn@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEHPBGH@Z
?_Osfx@?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?wcout@std@@3V?$basic_ostream@GU?$char_traits@G@std@@@1@A
?_Unlock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEXXZ
?flush@?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV12@XZ
?endl@std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@1@AAV21@@Z
?_Lock@?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEXXZ
?_Register@facet@locale@std@@QAEXXZ
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z
?close@?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAEXXZ
?_Incref@facet@locale@std@@QAEXXZ
?compare@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEHIIPBG@Z
?find_last_of@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIGI@Z
??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
?find@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIGI@Z
?find@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGI@Z
?resize@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEXI@Z
?replace@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@IIPBG@Z
?replace@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@IIABV12@@Z
?erase@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@II@Z
?insert@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@IABV12@@Z
msvcr80
_lock
_onexit
_decode_pointer
_malloc_crt
free
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
malloc
__CxxFrameHandler3
_CxxThrowException
memset
memcpy
floor
_invalid_parameter_noinfo
??3@YAXPAX@Z
??_V@YAXPAX@Z
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABV01@@Z
_purecall
??2@YAPAXI@Z
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
wcscpy_s
??0exception@std@@QAE@XZ
_localtime64_s
_time64
swprintf_s
wcsnlen
_mbscat_s
ldiv
_mbsncat_s
wcscat_s
_ui64toa_s
_ltow_s
_wtoi
wcsncpy_s
_itow_s
wcsncat_s
_mbslen
??0bad_cast@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??1bad_cast@std@@UAE@XZ
exit
vswprintf_s
_wgetenv
islower
toupper
_wcsnicmp
memmove_s
wcsftime
towlower
_i64tow_s
iswspace
sprintf
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
version
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
Exports
Exports
??0AES@@QAE@XZ
??0AbstractEventLogger@@IAE@W4Severity@CommonLogger@@@Z
??0AbstractEventLogger@@IAE@XZ
??0AbstractEventLogger@@QAE@ABV0@@Z
??0ActionParameter@@QAE@PAG0@Z
??0CommonLogger@@IAE@W4Severity@0@@Z
??0CommonLogger@@IAE@XZ
??0DataRequest@@QAE@PAG@Z
??0ElevatedCOM@@QAE@ABV0@@Z
??0ElevatedCOM@@QAE@XZ
??0EncryptedFile@@QAE@ABV0@@Z
??0EncryptedFile@@QAE@PAG@Z
??0EventLogger@@IAE@XZ
??0FileLogger@@IAE@PAGW4Severity@CommonLogger@@@Z
??0FileLogger@@IAE@XZ
??0FileLogger@@QAE@ABV0@@Z
??0FileSummaryInfo@@QAE@XZ
??0GeneralThread@@QAE@ABV0@@Z
??0GeneralThread@@QAE@XZ
??0IModel@@QAE@ABV0@@Z
??0IModel@@QAE@XZ
??0IModelObserver@@QAE@ABV0@@Z
??0IModelObserver@@QAE@XZ
??0IPresenter@@QAE@ABV0@@Z
??0IPresenter@@QAE@XZ
??0IPresenterObserver@@QAE@ABV0@@Z
??0IPresenterObserver@@QAE@XZ
??0IResourceReceiver@@QAE@ABV0@@Z
??0IResourceReceiver@@QAE@XZ
??0LoggerThread@FileLogger@@QAE@PAPAV?$basic_ostream@GU?$char_traits@G@std@@@std@@PAU_RTL_CRITICAL_SECTION@@@Z
??0NTEventLogger@@IAE@PAGW4Severity@CommonLogger@@@Z
??0NTEventLogger@@IAE@XZ
??0NTEventLogger@@QAE@ABV0@@Z
??0PluginFactory@@AAE@XZ
??0PointerReferenceCounter@@QAE@XZ
??0Presenter@@QAE@ABV0@@Z
??0Presenter@@QAE@XZ
??0RegistryHelper@@QAE@ABV0@@Z
??0RegistryHelper@@QAE@PAUHKEY__@@@Z
??0ResourceAction@@QAE@ABV0@@Z
??0ResourceAction@@QAE@HPAG@Z
??0ResourceAction@@QAE@XZ
??0ResourceDataChange@@QAE@ABV0@@Z
??0ResourceDataChange@@QAE@PAVResourcePlugin@@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@11PAX@Z
??0ResourceDataChange@@QAE@PAVResourcePlugin@@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@1V?$list@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V?$allocator@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@2@@3@PAV?$list@PAXV?$allocator@PAX@std@@@3@@Z
??0ResourcePlugin@@QAE@ABV0@@Z
??0ResourcePlugin@@QAE@PAG@Z
??0RestorePoint@@QAE@XZ
??0ScanStatistics@@QAE@ABV0@@Z
??0ScanStatistics@@QAE@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@00@Z
??0SingleInstanceHelper@@QAE@PAG@Z
??0TranslatorSingleton@@IAE@PAVQApplication@@@Z
??0UniblueEventsFilter@@IAE@XZ
??0UniblueEventsFilter@@QAE@ABV0@@Z
??0WindowsResource@@QAE@XZ
??0version@@QAE@PBG@Z
??1ActionParameter@@QAE@XZ
??1ElevatedCOM@@UAE@XZ
??1EncryptedFile@@UAE@XZ
??1FileLogger@@UAE@XZ
??1FileSummaryInfo@@QAE@XZ
??1GeneralThread@@UAE@XZ
??1LoggerThread@FileLogger@@QAE@XZ
??1NTEventLogger@@UAE@XZ
??1PluginFactory@@AAE@XZ
??1PointerReferenceCounter@@QAE@XZ
??1Presenter@@UAE@XZ
??1RegistryHelper@@UAE@XZ
??1ResourceAction@@UAE@XZ
??1ResourceDataChange@@UAE@XZ
??1ResourcePlugin@@UAE@XZ
??1RestorePoint@@QAE@XZ
??1ScanStatistics@@QAE@XZ
??1SingleInstanceHelper@@QAE@XZ
??1TranslatorSingleton@@QAE@XZ
??1UniblueEventsFilter@@QAE@XZ
??1WindowsResource@@QAE@XZ
??1version@@QAE@XZ
??4AES@@QAEAAV0@ABV0@@Z
??4AbstractEventLogger@@QAEAAV0@ABV0@@Z
??4ActionParameter@@QAEAAV0@ABV0@@Z
??4CommonLogger@@QAEAAV0@ABV0@@Z
??4DataRequest@@QAEAAV0@ABV0@@Z
??4ElevatedCOM@@QAEAAV0@ABV0@@Z
??4EncryptedFile@@QAEAAV0@ABV0@@Z
??4EventLogger@@QAEAAV0@ABV0@@Z
??4FileLogger@@QAEAAV0@ABV0@@Z
??4FileSummaryInfo@@QAEAAV0@ABV0@@Z
??4GeneralThread@@QAEAAV0@ABV0@@Z
??4IModel@@QAEAAV0@ABV0@@Z
??4IModelObserver@@QAEAAV0@ABV0@@Z
??4IPresenter@@QAEAAV0@ABV0@@Z
??4IPresenterObserver@@QAEAAV0@ABV0@@Z
??4IResourceReceiver@@QAEAAV0@ABV0@@Z
??4IView@@QAEAAV0@ABV0@@Z
??4NTEventLogger@@QAEAAV0@ABV0@@Z
??4OSHelper@@QAEAAV0@ABV0@@Z
??4PathUtil@@QAEAAV0@ABV0@@Z
??4PluginFactory@@QAEAAV0@ABV0@@Z
??4PointerReferenceCounter@@QAEAAV0@ABV0@@Z
??4Presenter@@QAEAAV0@ABV0@@Z
??4RegistryHelper@@QAEAAV0@ABV0@@Z
??4ResourceAction@@QAEAAV0@ABV0@@Z
??4ResourceDataChange@@QAEAAV0@ABV0@@Z
??4ResourcePlugin@@QAEAAV0@ABV0@@Z
??4RestorePoint@@QAEAAV0@ABV0@@Z
??4ScanStatistics@@QAEAAV0@ABV0@@Z
??4SingleInstanceHelper@@QAEAAV0@ABV0@@Z
??4StringUtil@@QAEAAV0@ABV0@@Z
??4UniblueEventsFilter@@QAEAAV0@ABV0@@Z
??4WindowsResource@@QAEAAV0@ABV0@@Z
??4version@@QAEAAV0@ABV0@@Z
??6LoggerThread@FileLogger@@QAEAAV01@M@Z
??6LoggerThread@FileLogger@@QAEAAV01@P6AAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AAV23@@Z@Z
??6LoggerThread@FileLogger@@QAEAAV01@P6AAAVios_base@std@@AAV?$basic_ostream@DU?$char_traits@D@std@@@3@@Z@Z
??6LoggerThread@FileLogger@@QAEAAV01@PAG@Z
??6LoggerThread@FileLogger@@QAEAAV01@PBD@Z
??6LoggerThread@FileLogger@@QAEAAV01@PBE@Z
??6LoggerThread@FileLogger@@QAEAAV01@PBG@Z
??_7AbstractEventLogger@@6B@
??_7ElevatedCOM@@6B@
??_7EncryptedFile@@6B@
??_7FileLogger@@6B@
??_7GeneralThread@@6B@
??_7IModel@@6B@
??_7IModelObserver@@6B@
??_7IPresenter@@6B@
??_7IPresenterObserver@@6B@
??_7IResourceReceiver@@6B@
??_7NTEventLogger@@6B@
??_7Presenter@@6BIModelObserver@@@
??_7Presenter@@6BIPresenter@@@
??_7RegistryHelper@@6B@
??_7ResourceAction@@6B@
??_7ResourceDataChange@@6B@
??_7ResourcePlugin@@6B@
??_7UniblueEventsFilter@@6B@
??_FRegistryHelper@@QAEXXZ
?CoCreateInitialiseElevated@ElevatedCOM@@SAJABU_GUID@@PBG0PAPAX@Z
?Decrypt@AES@@QAEXPBEPAEKW4BlockMode@1@@Z
?DecryptBlock@AES@@QAEXPBEPAE@Z
?Encrypt@AES@@QAEXPBEPAEKW4BlockMode@1@@Z
?EncryptBlock@AES@@QAEXPBEPAE@Z
?KeyExpansion@AES@@AAEXPBE@Z
?SetParameters@AES@@QAEXHH@Z
?StartDecryption@AES@@QAEXPBE@Z
?StartEncryption@AES@@QAEXPBE@Z
?UnloadPlugins@PluginFactory@@SAXXZ
?actionHandler@ResourcePlugin@@UAEXPAVResourceAction@@@Z
?actionId@ResourceAction@@QAEHXZ
?actionName@ResourceAction@@QAEPAGXZ
?actionParameters@ResourceAction@@QAEPAV?$vector@PAVActionParameter@@V?$allocator@PAVActionParameter@@@std@@@std@@XZ
?beginSystemChange@RestorePoint@@QAE_NV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?closeEvent@NTEventLogger@@UAEXXZ
?closeFile@FileLogger@@QAEXXZ
?createData@ResourcePlugin@@UAEXXZ
?createDirectoryHierarchy@PathUtil@@SAXAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?critical@FileLogger@@1PAU_RTL_CRITICAL_SECTION@@A
?data@Presenter@@UAEPAV?$list@PAVResourceDataChange@@V?$allocator@PAVResourceDataChange@@@std@@@std@@XZ
?data@ResourceDataChange@@QAEPAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?dataList@ResourceDataChange@@QAEPAV?$list@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V?$allocator@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@2@@std@@XZ
?debug@FileLogger@@SAAAVLoggerThread@1@XZ
?decremementReference@PointerReferenceCounter@@QAEIXZ
?decremementReference@ResourceDataChange@@QAEIXZ
?defaultConfig@EncryptedFile@@2PAV1@A
?deleteValue@RegistryHelper@@QAE_NPAG0@Z
?deleteValueWithBackup@RegistryHelper@@QAE_NPAG00@Z
?doubleToWstring@StringUtil@@SA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@N@Z
?dwordToHexString@StringUtil@@SA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@K@Z
?emptyCtrl@FileLogger@@1PAVLoggerThread@1@A
?endSystemChange@RestorePoint@@QAE_NXZ
?enforceWrite@EncryptedFile@@QAEXXZ
?environmentVars@PathUtil@@0V?$map@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V12@U?$less@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V12@@std@@@2@@std@@A
?erase@PathUtil@@SAXV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?error@FileLogger@@SAAAVLoggerThread@1@XZ
?executeAction@Presenter@@UAAXAAVQString@@HZZ
?executeAction@Presenter@@UAEXAAVQString@@AAV?$vector@PAVActionParameter@@V?$allocator@PAVActionParameter@@@std@@@std@@@Z
?executeAction@ResourcePlugin@@QAEXPAVResourceAction@@@Z
?expandEnvironmentVariables@PathUtil@@SAXAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?expandLogicalPath@PathUtil@@SAXAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?fatal@FileLogger@@SAAAVLoggerThread@1@XZ
?findCustomResource@WindowsResource@@QAEPAXPAUHINSTANCE__@@IPBGI@Z
?findStringResource@WindowsResource@@QAE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@PAUHINSTANCE__@@II@Z
?findTranslation@TranslatorSingleton@@QAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PBD0@Z
?formatMessage@CommonLogger@@QAE_NW4Severity@1@IPAGI1@Z
?freeAction@ResourceAction@@QAEXXZ
?freeCustomResource@WindowsResource@@QAEXXZ
?freePlugin@ResourcePlugin@@QAEXXZ
?freeResource@ResourcePlugin@@UAEXPAX@Z
?freeResourceDataChange@ResourceDataChange@@QAEXXZ
?gFileLogger@FileLogger@@1PAV1@A
?gStream@FileLogger@@1PAV?$basic_ofstream@GU?$char_traits@G@std@@@std@@A
?g_pEventsFilter@UniblueEventsFilter@@1PAV1@A
?getActualFileRun@PathUtil@@CA_NAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@00@Z
?getCategories@EncryptedFile@@QAE?AV?$list@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V?$allocator@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@2@@std@@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@3@@Z
?getCategoryInfo@EncryptedFile@@QAEPAV?$map@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V12@U?$less@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V12@@std@@@2@@std@@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@3@@Z
?getCurrentProcessName@OSHelper@@SA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?getDateFromLastScan@ScanStatistics@@QAE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?getDays@ScanStatistics@@QAEJXZ
?getDaysFromLastScan@ScanStatistics@@QAE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?getDirectorySize@PathUtil@@SA?AT_LARGE_INTEGER@@PAG@Z
?getEntriesFound@ScanStatistics@@QAE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?getEntriesRepaired@ScanStatistics@@QAE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?getFileCreationTime@OSHelper@@SA_KPAX@Z
?getFileFlags@version@@QAEKXZ
?getFileFlagsMask@version@@QAEKXZ
?getFileOS@version@@QAEKXZ
?getFileSubtype@version@@QAEKXZ
?getFileType@version@@QAEKXZ
?getFilenameFromCommand@PathUtil@@SA_NAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@0@Z
?getFilenameFromCommand@PathUtil@@SA_NAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?getIgnoredDrivers@ScanStatistics@@QAE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?getInstallLocation@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?getIntValueFrom@RegistryHelper@@QAE_NPAG0PAK@Z
?getKeyInfo@RegistryHelper@@AAE_NAAPAUHKEY__@@AAK1@Z
?getKeyName@RegistryHelper@@AAE_NAAPAUHKEY__@@PAGAAK@Z
?getKeyName@RegistryHelper@@QAE_NPAG0AAK@Z
?getLastError@StringUtil@@SAXAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@K@Z
?getLoadedPresenterPlugins@PluginFactory@@QAEPAV?$vector@PAVPresenter@@V?$allocator@PAVPresenter@@@std@@@std@@XZ
?getLoadedResourcePlugins@PluginFactory@@QAEPAV?$vector@PAVResourcePlugin@@V?$allocator@PAVResourcePlugin@@@std@@@std@@XZ
?getLocationFolders@RegistryHelper@@QAEPAV?$list@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V?$allocator@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@2@@std@@PAG@Z
?getLocationKeys@RegistryHelper@@QAEPAV?$list@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V?$allocator@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@2@@std@@PAG@Z
?getPageSize@OSHelper@@SAKXZ
?getPluginName@ResourcePlugin@@QAEPAGXZ
?getPresenterName@Presenter@@UAEPAGXZ
?getPresenterPlugin@PluginFactory@@QAEPAVPresenter@@PAG@Z
?getResourcePlugin@PluginFactory@@QAEPAVResourcePlugin@@PAG@Z
?getResources@ResourcePlugin@@UAE?AV?$list@PAVResourceDataChange@@V?$allocator@PAVResourceDataChange@@@std@@@std@@XZ
?getSeverity@CommonLogger@@QAE?AW4Severity@1@XZ
?getShortcutTarget@PathUtil@@SA_NPAGAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?getStatus@ScanStatistics@@QAE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@_N@Z
?getStringResource@StringUtil@@SA_NAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@I@Z
?getStringValueFrom@RegistryHelper@@QAE?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@PAG0@Z
?getSystemPath@PathUtil@@SAAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@W4SystemPath@1@@Z
?getThreadHandle@GeneralThread@@QAEPAXXZ
?getThreadStatus@GeneralThread@@QAE?AW4ThreadStatus@1@XZ
?getValueInfo@RegistryHelper@@AAE_NAAPAUHKEY__@@PAGAAK1@Z
?getValueName@RegistryHelper@@AAE_NAAPAUHKEY__@@PAGAAK2@Z
?getWidgetList@UniblueEventsFilter@@UAEAAV?$list@PAVQWidget@@V?$allocator@PAVQWidget@@@std@@@std@@XZ
?get_comments@version@@QAE_NPAGH@Z
?get_company_name@version@@QAE_NPAGH@Z
?get_copyright@version@@QAE_NPAGH@Z
?get_file_description@version@@QAE_NPAGH@Z
?get_file_version@version@@QAE_NPAGH@Z
?get_fixed_file_version@version@@QAE_NPAGH@Z
?get_fixed_product_version@version@@QAE_NPAGH@Z
?get_internal_name@version@@QAE_NPAGH@Z
?get_language_codepage@version@@QAE_NPAGH@Z
?get_original_filename@version@@QAE_NPAGH@Z
?get_private_build@version@@QAE_NPAGH@Z
?get_product_name@version@@QAE_NPAGH@Z
?get_product_version@version@@QAE_NPAGH@Z
?get_special_build@version@@QAE_NPAGH@Z
?get_trademarks@version@@QAE_NPAGH@Z
?get_value@version@@AAE_NPBGPAGI@Z
?hexDecode@StringUtil@@SAXPBGPAE@Z
?hexEncode@StringUtil@@SAXPBEHPAG@Z
?incrementReference@PointerReferenceCounter@@QAEXXZ
?incrementReference@ResourceDataChange@@QAEXXZ
?info@FileLogger@@SAAAVLoggerThread@1@XZ
?initialiseActions@ResourcePlugin@@IAAXHPAGZZ
?initialiseKey@EncryptedFile@@QAEXXZ
?installSource@NTEventLogger@@IAE_NXZ
?instance@EventLogger@@SAPAVAbstractEventLogger@@XZ
?instance@FileLogger@@SAPAV1@XZ
?instance@PluginFactory@@0PAV1@A
?instance@TranslatorSingleton@@SAPAV1@PAVQApplication@@@Z
?instance@UniblueEventsFilter@@SAPAV1@XZ
?int64ToWstring@StringUtil@@SA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@_J@Z
?internal@LoggerThread@FileLogger@@QAEAAV?$basic_ostream@GU?$char_traits@G@std@@@std@@XZ
?isActionAvailable@ResourcePlugin@@QAE_NPAG@Z
?isActionInProgress@ResourcePlugin@@UAE_NXZ
?isAnotherInstanceRunning@SingleInstanceHelper@@QAE_NXZ
?isDisposed@ResourcePlugin@@QAE_NXZ
?isHandle@UniblueEventsFilter@@UAE_NPAUHWND__@@@Z
?isPluginLoaded@PluginFactory@@SA_NPAG@Z
?isVista@EventLogger@@KA_NXZ
?isVistaOrLater@OSHelper@@SA_NXZ
?isWidgetSet@UniblueEventsFilter@@UAE_NXZ
?isWow64Process@OSHelper@@SA_NPAUHINSTANCE__@@@Z
?isXpOrLater@OSHelper@@SA_NXZ
?isXpSPxOrLater@OSHelper@@SA_NH@Z
?loadAllData@EncryptedFile@@QAEXXZ
?loadFrench@TranslatorSingleton@@IAEXXZ
?loadPluginDll@PluginFactory@@QAE_NPAG@Z
?loadPlugins@PluginFactory@@SA_NPAG@Z
?loadTranslations@TranslatorSingleton@@QAEXXZ
?loadedPresenterPlugins@PluginFactory@@SAPAV?$vector@PAVPresenter@@V?$allocator@PAVPresenter@@@std@@@std@@XZ
?loadedResourcePlugins@PluginFactory@@SAPAV?$vector@PAVResourcePlugin@@V?$allocator@PAVResourcePlugin@@@std@@@std@@XZ
?logger@EventLogger@@0PAVAbstractEventLogger@@A
?loggerCtrl@FileLogger@@1PAVLoggerThread@1@A
?lower@StringUtil@@SAXAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?lowerCopy@StringUtil@@SA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V23@@Z
?lwcout@FileLogger@@1PAV?$basic_ostream@GU?$char_traits@G@std@@@std@@A
?m_instance@TranslatorSingleton@@0PAV1@A
?makeLogicalPath@PathUtil@@SAXAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?makeLongPathCompatible@PathUtil@@SAXAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?makeLongPathname@PathUtil@@SAXAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?modelId@Presenter@@UAEPAGXZ
?modelResourceDataChanged@Presenter@@UAEXPAVResourceDataChange@@@Z
?object@ResourceDataChange@@QAEPAXXZ
?objectList@ResourceDataChange@@QAEPAV?$list@PAXV?$allocator@PAX@std@@@std@@XZ
?openFile@FileSummaryInfo@@QAE_NV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?openFileName@FileLogger@@QAE_NPAG@Z
?openKeyRead@RegistryHelper@@AAE_NPAUHKEY__@@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@PAPAU2@@Z
?openKeyWrite@RegistryHelper@@AAE_NPAUHKEY__@@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@PAPAU2@@Z
?padStr@EncryptedFile@@AAEPAEPAEI@Z
?padStr@EncryptedFile@@AAEPAGPAGI@Z
?parameterName@ActionParameter@@QAEPAGXZ
?parameterValue@ActionParameter@@QAEPAGXZ
?plugin@ResourceDataChange@@QAEPAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?pluginExists@PluginFactory@@QAE_NPAG@Z
?readEntry@EncryptedFile@@QAE_NAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@00@Z
?references@PointerReferenceCounter@@QAEIXZ
?requestResource@Presenter@@UAEXPAVQObject@@@Z
?retrievePresenterPlugin@PluginFactory@@SAPAVPresenter@@PAG@Z
?retrieveResourcePlugin@PluginFactory@@SAPAVResourcePlugin@@PAG@Z
?run@GeneralThread@@MAEXXZ
?runStatic@GeneralThread@@KGKPAX@Z
?saveAllData@EncryptedFile@@QAEXXZ
?searchPath@PathUtil@@CA_NAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?seekStart@EncryptedFile@@QAEX_N@Z
?setActionId@ResourceAction@@QAEXH@Z
?setActionName@ResourceAction@@QAEXPAG@Z
?setCategoryInfo@EncryptedFile@@QAEXV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@PAV?$map@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V12@U?$less@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V12@@std@@@2@@3@@Z
?setComments@FileSummaryInfo@@QAE_NV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?setEntries@ScanStatistics@@QAE_NH@Z
?setEventName@NTEventLogger@@UAE_NPAG@Z
?setIgnoredDrivers@ScanStatistics@@QAE_NH@Z
?setIntValueTo@RegistryHelper@@QAE_NPAG0AAK@Z
?setModelObserver@Presenter@@UAEXPAVIModel@@@Z
?setRepaired@ScanStatistics@@QAE_NH@Z
?setResourceReceiver@ResourcePlugin@@QAEXPAVIResourceReceiver@@@Z
?setSeverity@CommonLogger@@QAEXW4Severity@1@@Z
?setStatusFinished@GeneralThread@@IAEXXZ
?setStringValueTo@RegistryHelper@@QAE_NPAG00K@Z
?setWidget@UniblueEventsFilter@@UAEXAAV?$list@PAVQWidget@@V?$allocator@PAVQWidget@@@std@@@std@@@Z
?sizeOfResource@WindowsResource@@QAEKXZ
?start@GeneralThread@@QAE_NXZ
?stop@GeneralThread@@QAEXXZ
?strSizeOf@EncryptedFile@@AAEPAGV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@I@Z
?stringToHexString@StringUtil@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAV23@@Z
?stringToWstring@StringUtil@@SA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@@Z
?suspend@GeneralThread@@QAE_NXZ
?tag@ResourceDataChange@@QAEPAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@XZ
?tagName@DataRequest@@QAEPAGXZ
?triggerAsyncActionFinished@ResourcePlugin@@UAEXXZ
?triggerAsyncActionStarted@ResourcePlugin@@QAEXXZ
?trim@StringUtil@@SAXAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?tryBindParameters@ResourceAction@@QAAXHPAVActionParameter@@ZZ
?tryBindParameters@ResourceAction@@QAEXAAV?$vector@PAVActionParameter@@V?$allocator@PAVActionParameter@@@std@@@std@@@Z
?tryBindParameters@ResourceAction@@QAEXHAAPAD@Z
?uninstallTranslation@TranslatorSingleton@@QAEXXZ
?unsetWidgetList@UniblueEventsFilter@@UAEXXZ
?userConfig@EncryptedFile@@2PAV1@A
?warning@FileLogger@@SAAAVLoggerThread@1@XZ
?writeEntry@EncryptedFile@@QAEXV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@00@Z
?writeLog@FileLogger@@QAE_NW4Severity@CommonLogger@@PAG@Z
?writeLog@NTEventLogger@@UAE_NW4Severity@CommonLogger@@PAG@Z
?writeRegistryEntry@RegistryHelper@@AAEXPAG00@Z
?wstringToHexUTF8String@StringUtil@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@3@@Z
?wstringToInt@StringUtil@@SAHAAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@@Z
?wstringToString@StringUtil@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@3@@Z
?wstringToUtf8String@StringUtil@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@3@@Z
Sections
.text Size: 120KB - Virtual size: 118KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 52KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 4KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 104KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 16KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ