genki[.]zip | Triage

resource
unpack001/genki/GenkiArcade_1.6.14.0/TelemetryDependencies/Newtonsoft.Json.dll

genki.zip

.zip

genki/GenkiArcade_1.6.14.0/.DS_Store

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.ps1

.ps1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/cs-CZ/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/de-DE/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/en-US/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/es-ES/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/fr-FR/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/it-IT/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/ja-JP/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/ko-KR/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/pl-PL/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/pt-BR/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/ru-RU/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/tr-TR/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/zh-CN/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Add-AppDevPackage.resources/zh-TW/Add-AppDevPackage.psd1

genki/GenkiArcade_1.6.14.0/Dependencies/arm/Microsoft.NET.Native.Framework.2.2.appx

.appx

AppxBlockMap.xml

.xml

AppxManifest.xml

AppxMetadata/CodeIntegrity.cat

AppxSignature.p7x

SharedLibrary.dll

.dll windows:6 windows

4ece8caf7624a2a505dbe45075888914

Code Sign

33:00:00:03:25:48:b2:9d:0e:7f:c5:f4:1f:00:00:00:00:03:25
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 18:29

Not After

03/03/2021, 18:29

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:8a:07:37:33:cf:20:48:89:3c:00:00:00:00:01:8a
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 18:39

Not After

03/03/2021, 18:39

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

a4:f0:8a:03:78:29:ce:40:c3:d2:fa:65:b1:7e:b0:dc:5b:96:a5:e2:c0:0d:b6:61:35:43:22:4a:72:05:22:7d
Signer

Actual PE Digest

a4:f0:8a:03:78:29:ce:40:c3:d2:fa:65:b1:7e:b0:dc:5b:96:a5:e2:c0:0d:b6:61:35:43:22:4a:72:05:22:7d

Digest Algorithm

sha256

PE Digest Matches

true

a4:f0:8a:03:78:29:ce:40:c3:d2:fa:65:b1:7e:b0:dc:5b:96:a5:e2:c0:0d:b6:61:35:43:22:4a:72:05:22:7d
Signer

Actual PE Digest

a4:f0:8a:03:78:29:ce:40:c3:d2:fa:65:b1:7e:b0:dc:5b:96:a5:e2:c0:0d:b6:61:35:43:22:4a:72:05:22:7d

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

f:\binaries.armret\ProjectN\TestILC\ExternalFiles\SharedAssemblyPath\ret\Native\SharedLibrary.pdb

Imports

mrt100_app

RhpNewFinalizableAlign8

RhpNewFast

RhpNewFastMisalign

RhpCheckCctor2

RhpNewArray

RhTypeCast_CheckArrayStore

RhpAssignRefR1

RhpNewFinalizable

RhGetGCSegmentSize

RhpCopyMultibyteWithWriteBarrier

RhpNewArrayAlign8

RhpCopyMultibyteNoGCRefs

RhpNewFastAlign8

__rt_sdiv64

RhpLng2Dbl

RhpCheckedAssignRefR1

RhAllocLocal

RhpInitMultibyte

RhNewArray

RhpCopyAnyWithWriteBarrier

RhpReversePInvoke

RhpSuppressGcStress

RhpRegisterModule

RhpUnsuppressGcStress

RhpReversePInvokeReturn

RhpPInvokeExceptionGuard

RhMemberwiseClone

RhpThrowEx

RhTypeCast_CheckCastClass

RhTypeCast_CheckCast

RhTypeCast_CheckCastArray

RhTypeCast_IsInstanceOf

RhBoxAny

RhTypeCast_IsInstanceOfInterface

RhpInitialInterfaceDispatch

RhpResolveInterfaceMethod

RhUnboxAny

RhTypeCast_CheckCastInterface

RhpCheckedXchg

RhHandleSetDependentSecondary

RhHandleSet

RhHandleGetDependent

RhTypeCast_CheckVectorElemAddr

RhTypeCast_IsInstanceOfArray

RhpCheckedLockCmpXchg

RhpRethrow

RhTypeCast_IsInstanceOfClass

RhTypeCast_CheckUnbox

RhArrayStoreCheckAny

__rt_sdiv

RhTypeCast_AreTypesEquivalent

__rt_udiv

RhpGetThread

RhpTrapThreads

RhpWaitForSuspend

RhpWaitForGC

RhGetProcessCpuCount

__rt_udiv64

RhpULng2Dbl

RhpDbl2ULng

RhpDbl2Lng

memmove

RhNewString

RhpArrayCopy

RhTypeCast_AreTypesAssignable

RhUnbox

RhBox

RhNewObject

RhSuppressFinalize

RhSpinWait

RhCompatibleReentrantWaitAny

RhHandleFree

RhpHandleAlloc

RhSetThunkData

RhGetJmpStubCodeTarget

RhGetLoadedOSModules

RhSetErrorInfoBuffer

RhGetExceptionsForCurrentThread

RhAllocateThunk

RhCreateThunksHeap

RhYield

RhGetCurrentThreadStackBounds

RhReRegisterForFinalize

RhpArrayClear

RhGetOSModuleFromEEType

RhTryGetThunkData

RhFreeThunk

RhBulkMoveWithWriteBarrier

memset

RhResolveDispatch

RhGetGeneration

RhFindBlob

RhGetModuleFromEEType

RhConvertPublicKeyToPublicKeyToken

RhGetDispatchMapForType

RhCreateGenericInstanceDescForType2

RhGetGCDescSize

RhRegisterGcCallout

RhpETWShouldWalkCom

RhpETWLogLiveCom

RhIsPromoted

RhpHandleAllocDependent

RhGetGcCollectionCount

RhGetCurrentObjSize

RhGetGCNow

RhGetLastGCStartTime

RhGetLastGCDuration

RhCollect

RhGetThreadLocalStorageForDynamicType

RhGetCodeTarget

RhGetTargetOfUnboxingAndInstantiatingStub

RhGetOSModuleFromPointer

RhResolveDispatchOnType

RhGetUniversalTransitionThunk

RhpCopyMultibyte

RhInitializeConservativeReportingRegion

RhDisableConservativeReportingRegion

RhCallDescrWorker

RhRegisterRefCountedHandleCallback

RhpLMod

RhpULMod

RhpUMod

RhpIMod

RhpLDiv

RhpULDiv

RhpUDiv

RhpIDiv

RhpGetModuleSection

RhpRegisterFrozenSegment

RhpCreateTypeManager

RhpRegisterOsModule

RhCurrentOSThreadId

RhpCancelThreadAbort

RhpInitiateThreadAbort

RhpGetCurrentThread

RhpVerifyDebuggerCleanup

RhGetOSModuleForMrt

RhpRecordDebuggeeInitiatedHandle

RhpGetFuncEvalMode

RhpGetFuncEvalParameterBufferSize

RhpSendCustomEventToDebugger

RhGetThunkSize

RhFindMethodStartAddress

RhGetModuleFileName

RhNewInterfaceDispatchCell

RhGetThreadStaticFieldAddress

RhGetRuntimeHelperForType

RhGetCurrentThreadStackTrace

pow

__rt_srsh

RhpDblRemRev

RhpFltRemRev

RhStartNoGCRegion

RhWaitForPendingFinalizers

_ecvt_s

RhFlushProcessWriteBuffers

modf

fmodf

fmod

floor

cos

sin

tan

RhCompareObjectContentsAndPadding

ceil

RhIsServerGc

RhSetLohCompactionMode

RhGetLohCompactionMode

RhSetGcLatencyMode

RhGetGcLatencyMode

RhGetAllocatedBytesForCurrentThread

RhGetGcTotalMemory

RhGetMaxGcGeneration

RhEndNoGCRegion

RhCancelFullGCNotification

RhWaitForFullGCComplete

RhWaitForFullGCApproach

RhRegisterForFullGCNotification

tanhf

tanf

sinhf

sinf

powf

log10f

logf

floorf

expf

coshf

cosf

ceilf

cbrtf

atanhf

atan2f

atanf

asinhf

asinf

acoshf

acosf

tanh

sinh

log10

log

exp

cosh

cbrt

atanh

atan2

atan

asinh

asin

acosh

acos

RhpEtwExceptionThrown

RhpHandleAllocVariable

RhUnregisterRefCountedHandleCallback

RhHandleGetVariableType

RhHandleSetVariableType

RhHandleCompareExchangeVariableType

RhpLoopHijack

api-ms-win-core-sysinfo-l1-1-0

GetTickCount64

GetSystemTimeAsFileTime

kernel32

CompareStringOrdinal

CompareStringEx

FormatMessageW

SetEvent

CreateEventExW

WaitForMultipleObjectsEx

GetThreadPriority

GetCurrentProcess

GetCurrentThread

DuplicateHandle

LCMapStringEx

GetLocaleInfoEx

ResolveLocaleName

LCIDToLocaleName

GetCalendarInfoEx

EnumCalendarInfoExEx

EnumTimeFormatsEx

SetThreadPriority

Sleep

ResetEvent

FindNLSStringEx

FindStringOrdinal

GetCurrentProcessId

QueryPerformanceFrequency

GetVersionExW

GetCPInfo

GetSystemInfo

SetFilePointerEx

ReadFile

CancelIoEx

WriteFile

SetEndOfFile

FlushFileBuffers

WaitForSingleObject

SetThreadErrorMode

FindFirstFileExW

GetFileAttributesExW

GetLongPathNameW

GetFullPathNameW

ResumeThread

CreateThread

FindClose

CloseHandle

GetTempPathW

CreateFile2

UnlockFile

LockFile

GetFileInformationByHandleEx

GetFileType

ReleaseSemaphore

OpenSemaphoreW

CreateSemaphoreExW

OpenMutexW

CreateMutexExW

OpenEventW

MultiByteToWideChar

GetModuleFileNameW

WideCharToMultiByte

LocaleNameToLCID

EnumSystemLocalesEx

VirtualQuery

GlobalMemoryStatusEx

SignalObjectAndWait

GetNLSVersionEx

SetEnvironmentVariableW

IsNLSDefinedString

QueryPerformanceCounter

GetComputerNameW

GetLogicalDrives

IsWow64Process

ExpandEnvironmentStringsW

SetCurrentDirectoryW

GetCurrentDirectoryW

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetTempFileNameW

VirtualFree

ReleaseMutex

GetSystemDirectoryW

api-ms-win-core-heap-l1-1-0

GetProcessHeap

HeapFree

HeapAlloc

HeapReAlloc

api-ms-win-core-errorhandling-l1-1-0

SetLastError

GetLastError

ole32

CoGetApartmentType

CoTaskMemAlloc

CoTaskMemFree

CoCreateGuid

CoTaskMemRealloc

api-ms-win-core-winrt-l1-1-0

RoInitialize

RoUninitialize

RoGetActivationFactory

api-ms-win-core-kernel32-legacy-l1-1-0

RaiseFailFastException

api-ms-win-core-threadpool-l1-2-0

CreateThreadpoolWork

CloseThreadpoolWork

SubmitThreadpoolWork

CreateThreadpoolTimer

SetThreadpoolTimer

SetThreadpoolWait

CreateThreadpoolWait

CancelThreadpoolIo

StartThreadpoolIo

CloseThreadpoolIo

CreateThreadpoolIo

CloseThreadpoolWait

WaitForThreadpoolWaitCallbacks

api-ms-win-core-realtime-l1-1-0

QueryUnbiasedInterruptTime

advapi32

EventActivityIdControl

EventSetInformation

EnumerateTraceGuidsEx

EventWriteTransfer

EventUnregister

EventRegister

api-ms-win-core-timezone-l1-1-0

GetTimeZoneInformationForYear

GetDynamicTimeZoneInformationEffectiveYears

EnumDynamicTimeZoneInformation

GetDynamicTimeZoneInformation

bcrypt

BCryptCreateHash

BCryptFinishHash

BCryptHashData

BCryptGetProperty

BCryptOpenAlgorithmProvider

BCryptGenRandom

BCryptCloseAlgorithmProvider

BCryptDestroyHash

api-ms-win-core-localization-l1-2-0

FormatMessageW

api-ms-win-core-com-l1-1-0

CoGetObjectContext

CoReleaseMarshalData

CoUnmarshalInterface

CoMarshalInterface

CoGetMarshalSizeMax

CoGetContextToken

CoCreateFreeThreadedMarshaler

CoCreateInstanceFromApp

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateString

WindowsDeleteString

WindowsGetStringRawBuffer

WindowsCreateStringReference

api-ms-win-core-debug-l1-1-0

OutputDebugStringW

IsDebuggerPresent

oleaut32

SysFreeString

SysStringLen

SysAllocStringLen

VariantClear

api-ms-win-core-winrt-error-l1-1-0

GetRestrictedErrorInfo

RoOriginateError

SetRestrictedErrorInfo

api-ms-win-core-processthreads-l1-1-1

GetCurrentProcessorNumber

normaliz

NormalizeString

IsNormalizedString

IdnToUnicode

IdnToAscii

crypt32

CryptUnprotectMemory

CryptProtectMemory

api-ms-win-core-winrt-error-l1-1-1

RoOriginateLanguageException

RoReportUnhandledError

api-ms-win-ro-typeresolution-l1-1-0

RoParseTypeName

api-ms-win-core-processthreads-l1-1-0

GetCurrentThreadId

api-ms-win-core-processenvironment-l1-1-0

GetCommandLineW

GetEnvironmentVariableW

api-ms-win-core-memory-l1-1-3

VirtualAllocFromApp

Exports

$NEAT$

ActivatorCreateInstanceAny

AppendExceptionStackFrame

CheckStaticClassConstruction

CreateCommandLine

Dbl2IntOvf

Dbl2LngOvf

Dbl2UIntOvf

Dbl2ULngOvf

DebugFuncEvalAbortHelper

DebugFuncEvalHelper

DllGetClassObject

FailFast

Flt2IntOvf

Flt2LngOvf

GenericLookup

GenericLookupAndAllocArray

GenericLookupAndAllocObject

GenericLookupAndCallCtor

GenericLookupAndCast

GenericLookupAndCheckArrayElemType

GetRuntimeException

GetSystemArrayEEType

GetThreadStaticsForDynamicType

InitializeFinalizerThread

InitializeModules

InvokeExeMain

LMulOvf

OnFirstChanceException

ULMulOvf

IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.text
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.reloc
Size: 401KB - Virtual size: 401KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

[Content_Types].xml

.xml

logo.png

.png

genki/GenkiArcade_1.6.14.0/Dependencies/arm/Microsoft.NET.Native.Runtime.2.2.appx

.appx

AppxBlockMap.xml

.xml

AppxManifest.xml

AppxMetadata/CodeIntegrity.cat

AppxSignature.p7x

[Content_Types].xml

.xml

logo.png

.png

mrt100_app.dll

.dll windows:6 windows

f56a4dcf7ebbef06d42540406e497e61

Code Sign

33:00:00:01:3c:ed:d3:5c:e9:30:dd:53:d0:00:00:00:00:01:3c
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/10/2019, 23:17

Not After

21/01/2021, 23:17

Subject

CN=Microsoft Time-Stamp Service,OU=Microsoft Ireland Operations Limited+OU=Thales TSS ESN:86DF-4BBC-9335,O=Microsoft Corporation,L=Redmond,ST=WA,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

14:ad:e5:b3:7a:2a:02:1a:3b:f1:90:f6:52:77:b6:73:2b:26:cc:fa:0c:4a:8b:6f:8c:91:9a:c8:f0:f1:71:54
Signer

Actual PE Digest

14:ad:e5:b3:7a:2a:02:1a:3b:f1:90:f6:52:77:b6:73:2b:26:cc:fa:0c:4a:8b:6f:8c:91:9a:c8:f0:f1:71:54

Digest Algorithm

sha256

PE Digest Matches

true

e2:da:6c:66:d9:ec:64:70:dd:6f:84:40:26:35:64:67:2e:68:a4:1f
Signer

Actual PE Digest

e2:da:6c:66:d9:ec:64:70:dd:6f:84:40:26:35:64:67:2e:68:a4:1f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

mrt100_app.pdb

Imports

api-ms-win-core-delayload-l1-1-1

DelayLoadFailureHook

ResolveDelayLoadedAPI

api-ms-win-core-errorhandling-l1-1-1

SetLastError

RaiseException

GetLastError

api-ms-win-core-heap-l1-2-0

GetProcessHeap

HeapAlloc

HeapFree

api-ms-win-core-synch-l1-2-0

WaitForMultipleObjectsEx

SetEvent

InitializeCriticalSectionEx

DeleteCriticalSection

WaitForSingleObjectEx

LeaveCriticalSection

ResetEvent

CreateEventExW

EnterCriticalSection

api-ms-win-core-com-l1-1-1

CoCreateFreeThreadedMarshaler

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateStringReference

api-ms-win-core-winrt-l1-1-0

RoInitialize

RoGetActivationFactory

api-ms-win-core-processthreads-l1-1-2

GetProcessMitigationPolicy

GetCurrentThread

IsProcessorFeaturePresent

GetCurrentProcessId

GetCurrentProcess

GetCurrentThreadId

FlushProcessWriteBuffers

api-ms-win-core-handle-l1-1-0

DuplicateHandle

CloseHandle

api-ms-win-eventing-provider-l1-1-0

EventRegister

EventWrite

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

QueryPerformanceFrequency

api-ms-win-core-sysinfo-l1-2-1

GetNativeSystemInfo

GetSystemTimeAsFileTime

GetTickCount64

api-ms-win-core-file-l1-2-1

ReadFile

GetFileAttributesExW

CreateFile2

api-ms-win-core-memory-l1-1-2

VirtualQuery

UnmapViewOfFile

api-ms-win-core-fibers-l1-1-1

FlsAlloc

FlsGetValue

FlsSetValue

vcruntime140_app

_CxxThrowException

_purecall

__std_exception_destroy

__std_exception_copy

__std_type_info_destroy_list

__std_terminate

memmove

memcpy

memset

memcmp

__C_specific_handler

__CxxFrameHandler3

api-ms-win-crt-string-l1-1-0

_stricmp

strnlen

_wcsicmp

wcslen

api-ms-win-crt-convert-l1-1-0

mbstowcs_s

api-ms-win-crt-runtime-l1-1-0

terminate

_initterm_e

_seh_filter_dll

_configure_narrow_argv

_initialize_narrow_environment

_initialize_onexit_table

_execute_onexit_table

_cexit

_initterm

api-ms-win-crt-heap-l1-1-0

free

malloc

_callnewh

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

api-ms-win-crt-math-l1-1-0

fmod

Exports

GetRuntimeException

ProcessFinalizers

RegisterCodeManager

RhAllocLocal

RhAllocLocal2

RhAllocateThunk

RhAllocateThunksMapping

RhArrayStoreCheckAny

RhBox

RhBoxAndNullCheck

RhBoxAny

RhBulkMoveWithWriteBarrier

RhCallDescrWorker

RhCancelFullGCNotification

RhCollect

RhCompareObjectContentsAndPadding

RhCompatibleReentrantWaitAny

RhConvertPublicKeyToPublicKeyToken

RhCreateGenericInstanceDescForType2

RhCreateThunksHeap

RhCurrentOSThreadId

RhDisableConservativeReportingRegion

RhEndNoGCRegion

RhExceptionHandling_FailedAllocation

RhExceptionHandling_ThrowClasslibDivideByZeroException

RhExceptionHandling_ThrowClasslibOverflowException

RhFindBlob

RhFindMethodStartAddress

RhFlushProcessWriteBuffers

RhFreeThunk

RhGcStress_Initialize

RhGcStress_Initialize2

RhGetAllocatedBytesForCurrentThread

RhGetCodeTarget

RhGetCurrentObjSize

RhGetCurrentThreadStackBounds

RhGetCurrentThreadStackTrace

RhGetDispatchMapForType

RhGetExceptionsForCurrentThread

RhGetGCDescSize

RhGetGCNow

RhGetGCSegmentSize

RhGetGcCollectionCount

RhGetGcLatencyMode

RhGetGcTotalMemory

RhGetGeneration

RhGetJmpStubCodeTarget

RhGetLastGCDuration

RhGetLastGCStartTime

RhGetLoadedOSModules

RhGetLohCompactionMode

RhGetMaxGcGeneration

RhGetModuleFileName

RhGetModuleFromEEType

RhGetOSModuleForMrt

RhGetOSModuleFromEEType

RhGetOSModuleFromPointer

RhGetProcessCpuCount

RhGetRuntimeHelperForType

RhGetTargetOfUnboxingAndInstantiatingStub

RhGetThreadLocalStorageForDynamicType

RhGetThreadStaticFieldAddress

RhGetThunkSize

RhGetUniversalTransitionThunk

RhHandleCompareExchangeVariableType

RhHandleFree

RhHandleGet

RhHandleGetDependent

RhHandleGetVariableType

RhHandleSet

RhHandleSetDependentSecondary

RhHandleSetVariableType

RhInitializeConservativeReportingRegion

RhIsPromoted

RhIsServerGc

RhMemberwiseClone

RhNewArray

RhNewInterfaceDispatchCell

RhNewObject

RhNewString

RhR2RLazyAlloc

RhR2RLazyAllocArray

RhR2RLazyCheckCast

RhR2RLazyCheckVectorElemAddr

RhR2RLazyIsInstanceOf

RhReRegisterForFinalize

RhRegisterForFullGCNotification

RhRegisterGcCallout

RhRegisterRefCountedHandleCallback

RhResolveDispatch

RhResolveDispatchOnType

RhRethrow

RhSetErrorInfoBuffer

RhSetGcLatencyMode

RhSetLohCompactionMode

RhSetThunkData

RhSpinWait

RhStartNoGCRegion

RhSuppressFinalize

RhThrowEx

RhThrowHwEx

RhTryGetThunkData

RhTypeCast_AreTypesAssignable

RhTypeCast_AreTypesEquivalent

RhTypeCast_CheckArrayStore

RhTypeCast_CheckCast

RhTypeCast_CheckCast2

RhTypeCast_CheckCastArray

RhTypeCast_CheckCastClass

RhTypeCast_CheckCastInterface

RhTypeCast_CheckUnbox

RhTypeCast_CheckVectorElemAddr

RhTypeCast_IsInstanceOf

RhTypeCast_IsInstanceOf2

RhTypeCast_IsInstanceOfArray

RhTypeCast_IsInstanceOfClass

RhTypeCast_IsInstanceOfInterface

RhUnbox

RhUnbox2

RhUnboxAny

RhUnboxNullable

RhUnregisterGcCallout

RhUnregisterRefCountedHandleCallback

RhWaitForFullGCApproach

RhWaitForFullGCComplete

RhWaitForPendingFinalizers

RhYield

RhpArrayClear

RhpArrayCopy

RhpAssignRefR1

RhpBulkWriteBarrier

RhpCalculateStackTraceWorker

RhpCancelThreadAbort

RhpCastableObjectResolve

RhpCheckCctor

RhpCheckCctor2

RhpCheckedAssignRefR1

RhpCheckedLockCmpXchg

RhpCheckedXchg

RhpCidResolve

RhpClearThreadDoNotTriggerGC

RhpCopyAnyWithWriteBarrier

RhpCopyMultibyte

RhpCopyMultibyteNoGCRefs

RhpCopyMultibyteWithWriteBarrier

RhpCreateTypeManager

RhpDbl2Lng

RhpDbl2ULng

RhpDblRemRev

RhpDebugFuncEvalHelper

RhpEHJumpByref

RhpEHJumpObject

RhpEHJumpScalar

RhpETWLogLiveCom

RhpETWShouldWalkCom

RhpEnableConservativeStackReporting

RhpEtwExceptionThrown

RhpFailFastForPInvokeExceptionCoop

RhpFailFastForPInvokeExceptionPreemp

RhpFltRemRev

RhpGcPoll

RhpGcPollStress

RhpGetCurrentThread

RhpGetFuncEvalMode

RhpGetFuncEvalParameterBufferSize

RhpGetModuleSection

RhpGetThread

RhpHandleAlloc

RhpHandleAllocDependent

RhpHandleAllocVariable

RhpIDiv

RhpIMod

RhpInitMultibyte

RhpInitialDynamicInterfaceDispatch

RhpInitialInterfaceDispatch

RhpInitiateThreadAbort

RhpInterfaceDispatch1

RhpInterfaceDispatch16

RhpInterfaceDispatch2

RhpInterfaceDispatch32

RhpInterfaceDispatch4

RhpInterfaceDispatch64

RhpInterfaceDispatch8

RhpInterfaceDispatchSlow

RhpLDiv

RhpLMod

RhpLMul

RhpLdelemaRef

RhpLng2Dbl

RhpLoopHijack

RhpNewArray

RhpNewArrayAlign8

RhpNewFast

RhpNewFastAlign8

RhpNewFastMisalign

RhpNewFinalizable

RhpNewFinalizableAlign8

RhpPInvokeExceptionGuard

RhpRecordDebuggeeInitiatedHandle

RhpRegisterCoffUtcModule

RhpRegisterFrozenSegment

RhpRegisterModule

RhpRegisterOsModule

RhpResolveInterfaceMethod

RhpRethrow

RhpReversePInvoke

RhpReversePInvoke2

RhpReversePInvokeBadTransition

RhpReversePInvokeReturn

RhpSendCustomEventToDebugger

RhpSetHaveNewClasslibs

RhpSetThreadDoNotTriggerGC

RhpShutdown

RhpStelemRef

RhpSuppressGcStress

RhpThrowEx

RhpTrapThreads

RhpUDiv

RhpULDiv

RhpULMod

RhpULMul

RhpULng2Dbl

RhpUMod

RhpUniversalTransition

RhpUniversalTransition_DebugStepTailCall

RhpUnsuppressGcStress

RhpVTableOffsetDispatch

RhpVerifyDebuggerCleanup

RhpWaitForGC

RhpWaitForSuspend

UnregisterCodeManager

__chkstk

__rt_sdiv

__rt_sdiv64

__rt_srsh

__rt_udiv

__rt_udiv64

__rt_ursh

_ecvt_s

acos

acosf

acosh

acoshf

asin

asinf

asinh

asinhf

atan

atan2

atan2f

atanf

atanh

atanhf

cbrt

cbrtf

ceil

ceilf

copysign

copysignf

cos

cosf

cosh

coshf

exp

expf

fabs

floor

floorf

fmod

fmodf

log

log10

log10f

logf

memcmp

memcpy

memmove

memset

modf

pow

powf

sin

sinf

sinh

sinhf

sqrt

sqrtf

t100static_gcdata

t103static_data

t104static_gcdata

t115static_data

t117static_data

t117static_gcdata

t173static_data

t173static_gcdata

t82static_data

t83static_data

t98static_data

tan

tanf

tanh

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

mrt_map.dll

.dll windows:6 windows

06cc5a8d72305716a65abfd71a818969

Code Sign

33:00:00:02:cf:6d:2c:c5:7c:aa:65:a6:d8:00:00:00:00:02:cf
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:25

Not After

02/05/2020, 21:25

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:55:f9:d5:dc:67:86:67:b1:07:00:00:00:00:01:55
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

f2:82:ab:41:6c:71:84:89:a5:b9:6a:d9:56:5d:1c:b4:83:ff:7b:9d:d7:68:37:82:c9:27:8d:a7:28:78:f9:78
Signer

Actual PE Digest

f2:82:ab:41:6c:71:84:89:a5:b9:6a:d9:56:5d:1c:b4:83:ff:7b:9d:d7:68:37:82:c9:27:8d:a7:28:78:f9:78

Digest Algorithm

sha256

PE Digest Matches

true

f2:82:ab:41:6c:71:84:89:a5:b9:6a:d9:56:5d:1c:b4:83:ff:7b:9d:d7:68:37:82:c9:27:8d:a7:28:78:f9:78
Signer

Actual PE Digest

f2:82:ab:41:6c:71:84:89:a5:b9:6a:d9:56:5d:1c:b4:83:ff:7b:9d:d7:68:37:82:c9:27:8d:a7:28:78:f9:78

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

mrt_map.pdb

Imports

msvcrt

_initterm

__C_specific_handler

wcslen

_amsg_exit

_XcptFilter

memcmp

__CxxFrameHandler3

malloc

free

api-ms-win-core-synch-l1-2-0

Sleep

api-ms-win-core-rtlsupport-l1-2-0

RtlCaptureContext

RtlVirtualUnwind

RtlLookupFunctionEntry

api-ms-win-core-errorhandling-l1-1-1

UnhandledExceptionFilter

SetUnhandledExceptionFilter

api-ms-win-core-processthreads-l1-1-2

GetCurrentProcess

TerminateProcess

Exports

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

genki/GenkiArcade_1.6.14.0/Dependencies/arm/Microsoft.VCLibs.ARM.14.00.appx

.appx

AppxBlockMap.xml

.xml

AppxManifest.xml

AppxMetadata/CodeIntegrity.cat

AppxSignature.p7x

[Content_Types].xml

.xml

concrt140_app.dll

.dll windows:6 windows

fd32517e993c2849631e2386347b919a

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

a2:4b:a0:10:8a:d3:57:86:12:4b:85:6d:63:7e:e6:2e:9c:a0:67:22:30:04:52:08:bc:1f:91:aa:f2:b4:b9:b4
Signer

Actual PE Digest

a2:4b:a0:10:8a:d3:57:86:12:4b:85:6d:63:7e:e6:2e:9c:a0:67:22:30:04:52:08:bc:1f:91:aa:f2:b4:b9:b4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\\concrt140_app.arm.pdb

Imports

msvcp140_app

?_Xbad_function_call@std@@YAXXZ

?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ

_Mtx_init_in_situ

_Mtx_destroy_in_situ

_Mtx_lock

_Mtx_unlock

_Cnd_init_in_situ

_Cnd_destroy_in_situ

_Cnd_wait

_Cnd_broadcast

?_Throw_C_error@std@@YAXH@Z

?_Xbad_alloc@std@@YAXXZ

?_Xlength_error@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

?__ExceptionPtrDestroy@@YAXPAX@Z

?__ExceptionPtrCreate@@YAXPAX@Z

?__ExceptionPtrCopy@@YAXPAXPBX@Z

?__ExceptionPtrCurrentException@@YAXPAX@Z

?__ExceptionPtrRethrow@@YAXPBX@Z

vcruntime140_app

__CxxFrameHandler3

_purecall

__std_terminate

__std_exception_copy

__std_exception_destroy

_CxxThrowException

memset

__uncaught_exception

memcpy

__C_specific_handler

__RTDynamicCast

__current_exception

__current_exception_context

__std_type_info_destroy_list

api-ms-win-crt-heap-l1-1-0

malloc

free

_callnewh

api-ms-win-crt-runtime-l1-1-0

_cexit

_initialize_narrow_environment

_execute_onexit_table

_seh_filter_dll

_configure_narrow_argv

_crt_atexit

_register_onexit_function

_initterm_e

_initterm

terminate

_initialize_onexit_table

api-ms-win-crt-string-l1-1-0

wcslen

wcsncpy_s

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfwprintf

fflush

__acrt_iob_func

__stdio_common_vswprintf_s

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

QueryDepthSList

InterlockedFlushSList

InterlockedPushEntrySList

InterlockedPopEntrySList

api-ms-win-core-processthreads-l1-1-2

IsProcessorFeaturePresent

CreateThread

FlushProcessWriteBuffers

GetCurrentThread

GetCurrentProcessId

GetCurrentThreadId

GetCurrentProcess

api-ms-win-core-handle-l1-1-0

DuplicateHandle

CloseHandle

api-ms-win-core-errorhandling-l1-1-1

GetLastError

api-ms-win-core-synch-l1-2-0

SetEvent

WaitForSingleObjectEx

DeleteCriticalSection

CreateSemaphoreExW

LeaveCriticalSection

EnterCriticalSection

ReleaseSemaphore

TryEnterCriticalSection

Sleep

InitializeCriticalSectionEx

WaitForMultipleObjectsEx

CreateEventExW

api-ms-win-core-fibers-l1-1-1

FlsAlloc

FlsGetValue

FlsFree

FlsSetValue

api-ms-win-core-sysinfo-l1-2-1

GetTickCount64

GetSystemTimeAsFileTime

GetNativeSystemInfo

api-ms-win-core-threadpool-l1-2-0

CloseThreadpoolTimer

WaitForThreadpoolTimerCallbacks

CreateThreadpoolTimer

SetThreadpoolTimer

api-ms-win-core-util-l1-1-0

EncodePointer

api-ms-win-core-libraryloader-l1-2-0

DisableThreadLibraryCalls

api-ms-win-core-debug-l1-1-1

OutputDebugStringW

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

Exports

??0?$_SpinWait@$00@details@Concurrency@@QAA@P6AXXZ@Z

??0?$_SpinWait@$0A@@details@Concurrency@@QAA@P6AXXZ@Z

??0SchedulerPolicy@Concurrency@@QAA@ABV01@@Z

??0SchedulerPolicy@Concurrency@@QAA@IZZ

??0SchedulerPolicy@Concurrency@@QAA@XZ

??0_Cancellation_beacon@details@Concurrency@@QAA@XZ

??0_Concurrent_queue_base_v4@details@Concurrency@@IAA@I@Z

??0_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAA@ABV_Concurrent_queue_base_v4@12@@Z

??0_Condition_variable@details@Concurrency@@QAA@XZ

??0_Context@details@Concurrency@@QAA@PAVContext@2@@Z

??0_NonReentrantBlockingLock@details@Concurrency@@QAA@XZ

??0_NonReentrantPPLLock@details@Concurrency@@QAA@XZ

??0_ReaderWriterLock@details@Concurrency@@QAA@XZ

??0_ReentrantBlockingLock@details@Concurrency@@QAA@XZ

??0_ReentrantLock@details@Concurrency@@QAA@XZ

??0_ReentrantPPLLock@details@Concurrency@@QAA@XZ

??0_Runtime_object@details@Concurrency@@QAA@H@Z

??0_Runtime_object@details@Concurrency@@QAA@XZ

??0_Scheduler@details@Concurrency@@QAA@PAVScheduler@2@@Z

??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAA@AAV123@@Z

??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAA@AAV123@@Z

??0_SpinLock@details@Concurrency@@QAA@ACJ@Z

??0_StructuredTaskCollection@details@Concurrency@@QAA@PAV_CancellationTokenState@12@@Z

??0_TaskCollection@details@Concurrency@@QAA@PAV_CancellationTokenState@12@@Z

??0_TaskCollection@details@Concurrency@@QAA@XZ

??0_Timer@details@Concurrency@@IAA@I_N@Z

??0agent@Concurrency@@QAA@AAVScheduleGroup@1@@Z

??0agent@Concurrency@@QAA@AAVScheduler@1@@Z

??0agent@Concurrency@@QAA@XZ

??0bad_target@Concurrency@@QAA@PBD@Z

??0bad_target@Concurrency@@QAA@XZ

??0context_self_unblock@Concurrency@@QAA@PBD@Z

??0context_self_unblock@Concurrency@@QAA@XZ

??0context_unblock_unbalanced@Concurrency@@QAA@PBD@Z

??0context_unblock_unbalanced@Concurrency@@QAA@XZ

??0critical_section@Concurrency@@QAA@XZ

??0default_scheduler_exists@Concurrency@@QAA@PBD@Z

??0default_scheduler_exists@Concurrency@@QAA@XZ

??0event@Concurrency@@QAA@XZ

??0improper_lock@Concurrency@@QAA@PBD@Z

??0improper_lock@Concurrency@@QAA@XZ

??0improper_scheduler_attach@Concurrency@@QAA@PBD@Z

??0improper_scheduler_attach@Concurrency@@QAA@XZ

??0improper_scheduler_detach@Concurrency@@QAA@PBD@Z

??0improper_scheduler_detach@Concurrency@@QAA@XZ

??0improper_scheduler_reference@Concurrency@@QAA@PBD@Z

??0improper_scheduler_reference@Concurrency@@QAA@XZ

??0invalid_link_target@Concurrency@@QAA@PBD@Z

??0invalid_link_target@Concurrency@@QAA@XZ

??0invalid_multiple_scheduling@Concurrency@@QAA@PBD@Z

??0invalid_multiple_scheduling@Concurrency@@QAA@XZ

??0invalid_oversubscribe_operation@Concurrency@@QAA@PBD@Z

??0invalid_oversubscribe_operation@Concurrency@@QAA@XZ

??0invalid_scheduler_policy_key@Concurrency@@QAA@PBD@Z

??0invalid_scheduler_policy_key@Concurrency@@QAA@XZ

??0invalid_scheduler_policy_thread_specification@Concurrency@@QAA@PBD@Z

??0invalid_scheduler_policy_thread_specification@Concurrency@@QAA@XZ

??0invalid_scheduler_policy_value@Concurrency@@QAA@PBD@Z

??0invalid_scheduler_policy_value@Concurrency@@QAA@XZ

??0message_not_found@Concurrency@@QAA@PBD@Z

??0message_not_found@Concurrency@@QAA@XZ

??0missing_wait@Concurrency@@QAA@PBD@Z

??0missing_wait@Concurrency@@QAA@XZ

??0nested_scheduler_missing_detach@Concurrency@@QAA@PBD@Z

??0nested_scheduler_missing_detach@Concurrency@@QAA@XZ

??0operation_timed_out@Concurrency@@QAA@PBD@Z

??0operation_timed_out@Concurrency@@QAA@XZ

??0reader_writer_lock@Concurrency@@QAA@XZ

??0scheduler_not_attached@Concurrency@@QAA@PBD@Z

??0scheduler_not_attached@Concurrency@@QAA@XZ

??0scheduler_resource_allocation_error@Concurrency@@QAA@J@Z

??0scheduler_resource_allocation_error@Concurrency@@QAA@PBDJ@Z

??0scheduler_worker_creation_error@Concurrency@@QAA@J@Z

??0scheduler_worker_creation_error@Concurrency@@QAA@PBDJ@Z

??0scoped_lock@critical_section@Concurrency@@QAA@AAV12@@Z

??0scoped_lock@reader_writer_lock@Concurrency@@QAA@AAV12@@Z

??0scoped_lock_read@reader_writer_lock@Concurrency@@QAA@AAV12@@Z

??0unsupported_os@Concurrency@@QAA@PBD@Z

??0unsupported_os@Concurrency@@QAA@XZ

??1SchedulerPolicy@Concurrency@@QAA@XZ

??1_Cancellation_beacon@details@Concurrency@@QAA@XZ

??1_Concurrent_queue_base_v4@details@Concurrency@@MAA@XZ

??1_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAA@XZ

??1_Concurrent_vector_base_v4@details@Concurrency@@IAA@XZ

??1_Condition_variable@details@Concurrency@@QAA@XZ

??1_NonReentrantBlockingLock@details@Concurrency@@QAA@XZ

??1_ReentrantBlockingLock@details@Concurrency@@QAA@XZ

??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAA@XZ

??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAA@XZ

??1_SpinLock@details@Concurrency@@QAA@XZ

??1_StructuredTaskCollection@details@Concurrency@@QAA@XZ

??1_TaskCollection@details@Concurrency@@QAA@XZ

??1_Timer@details@Concurrency@@MAA@XZ

??1agent@Concurrency@@UAA@XZ

??1critical_section@Concurrency@@QAA@XZ

??1event@Concurrency@@QAA@XZ

??1reader_writer_lock@Concurrency@@QAA@XZ

??1scoped_lock@critical_section@Concurrency@@QAA@XZ

??1scoped_lock@reader_writer_lock@Concurrency@@QAA@XZ

??1scoped_lock_read@reader_writer_lock@Concurrency@@QAA@XZ

??4?$_SpinWait@$00@details@Concurrency@@QAAAAV012@$$QAV012@@Z

??4?$_SpinWait@$00@details@Concurrency@@QAAAAV012@ABV012@@Z

??4?$_SpinWait@$0A@@details@Concurrency@@QAAAAV012@$$QAV012@@Z

??4?$_SpinWait@$0A@@details@Concurrency@@QAAAAV012@ABV012@@Z

??4SchedulerPolicy@Concurrency@@QAAAAV01@ABV01@@Z

??_F?$_SpinWait@$00@details@Concurrency@@QAAXXZ

??_F?$_SpinWait@$0A@@details@Concurrency@@QAAXXZ

??_F_Context@details@Concurrency@@QAAXXZ

??_F_Scheduler@details@Concurrency@@QAAXXZ

?AgentEventGuid@Concurrency@@3U_GUID@@B

?Alloc@Concurrency@@YAPAXI@Z

?Block@Context@Concurrency@@SAXXZ

?ChoreEventGuid@Concurrency@@3U_GUID@@B

?ConcRTEventGuid@Concurrency@@3U_GUID@@B

?ConcRT_ProviderGuid@Concurrency@@3U_GUID@@B

?ContextEventGuid@Concurrency@@3U_GUID@@B

?Create@CurrentScheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z

?Create@Scheduler@Concurrency@@SAPAV12@ABVSchedulerPolicy@2@@Z

?CreateResourceManager@Concurrency@@YAPAUIResourceManager@1@XZ

?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@AAVlocation@2@@Z

?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@XZ

?CurrentContext@Context@Concurrency@@SAPAV12@XZ

?Detach@CurrentScheduler@Concurrency@@SAXXZ

?DisableTracing@Concurrency@@YAJXZ

?EnableTracing@Concurrency@@YAJXZ

?Free@Concurrency@@YAXPAX@Z

?Get@CurrentScheduler@Concurrency@@SAPAVScheduler@2@XZ

?GetExecutionContextId@Concurrency@@YAIXZ

?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ

?GetOSVersion@Concurrency@@YA?AW4OSVersion@IResourceManager@1@XZ

?GetPolicy@CurrentScheduler@Concurrency@@SA?AVSchedulerPolicy@2@XZ

?GetPolicyValue@SchedulerPolicy@Concurrency@@QBAIW4PolicyElementKey@2@@Z

?GetProcessorCount@Concurrency@@YAIXZ

?GetProcessorNodeCount@Concurrency@@YAIXZ

?GetSchedulerId@Concurrency@@YAIXZ

?GetSharedTimerQueue@details@Concurrency@@YAPAXXZ

?Id@Context@Concurrency@@SAIXZ

?Id@CurrentScheduler@Concurrency@@SAIXZ

?IsAvailableLocation@CurrentScheduler@Concurrency@@SA_NABVlocation@2@@Z

?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ

?LockEventGuid@Concurrency@@3U_GUID@@B

?Log2@details@Concurrency@@YAKI@Z

?NFS_Allocate@details@Concurrency@@YAPAXIIPAX@Z

?NFS_Free@details@Concurrency@@YAXPAX@Z

?NFS_GetLineSize@details@Concurrency@@YAIXZ

?Oversubscribe@Context@Concurrency@@SAX_N@Z

?PPLParallelForEventGuid@Concurrency@@3U_GUID@@B

?PPLParallelForeachEventGuid@Concurrency@@3U_GUID@@B

?PPLParallelInvokeEventGuid@Concurrency@@3U_GUID@@B

?RegisterShutdownEvent@CurrentScheduler@Concurrency@@SAXPAX@Z

?ResetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXXZ

?ResourceManagerEventGuid@Concurrency@@3U_GUID@@B

?ScheduleGroupEventGuid@Concurrency@@3U_GUID@@B

?ScheduleGroupId@Context@Concurrency@@SAIXZ

?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z

?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0AAVlocation@2@@Z

?SchedulerEventGuid@Concurrency@@3U_GUID@@B

?SetConcurrencyLimits@SchedulerPolicy@Concurrency@@QAAXII@Z

?SetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z

?SetPolicyValue@SchedulerPolicy@Concurrency@@QAAIW4PolicyElementKey@2@I@Z

?VirtualProcessorEventGuid@Concurrency@@3U_GUID@@B

?VirtualProcessorId@Context@Concurrency@@SAIXZ

?Yield@Context@Concurrency@@SAXXZ

?_Abort@_StructuredTaskCollection@details@Concurrency@@AAAXXZ

?_Acquire@_NonReentrantBlockingLock@details@Concurrency@@QAAXXZ

?_Acquire@_NonReentrantPPLLock@details@Concurrency@@QAAXPAX@Z

?_Acquire@_ReentrantBlockingLock@details@Concurrency@@QAAXXZ

?_Acquire@_ReentrantLock@details@Concurrency@@QAAXXZ

?_Acquire@_ReentrantPPLLock@details@Concurrency@@QAAXPAX@Z

?_AcquireRead@_ReaderWriterLock@details@Concurrency@@QAAXXZ

?_AcquireWrite@_ReaderWriterLock@details@Concurrency@@QAAXXZ

?_Advance@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAAXXZ

?_Assign@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAAXABV123@@Z

?_Byte_reverse_table@details@Concurrency@@3QBEB

?_Cancel@_StructuredTaskCollection@details@Concurrency@@QAAXXZ

?_Cancel@_TaskCollection@details@Concurrency@@QAAXXZ

?_CheckTaskCollection@_UnrealizedChore@details@Concurrency@@IAAXXZ

?_CleanupToken@_StructuredTaskCollection@details@Concurrency@@AAAXXZ

?_ConcRT_CoreAssert@details@Concurrency@@YAXPBD0H@Z

?_ConcRT_Trace@details@Concurrency@@YAXHPB_WZZ

?_Confirm_cancel@_Cancellation_beacon@details@Concurrency@@QAA_NXZ

?_CurrentContext@_Context@details@Concurrency@@SA?AV123@XZ

?_Current_node@location@Concurrency@@SA?AV12@XZ

?_Destroy@_AsyncTaskCollection@details@Concurrency@@EAAXXZ

?_DoYield@?$_SpinWait@$00@details@Concurrency@@IAAXXZ

?_DoYield@?$_SpinWait@$0A@@details@Concurrency@@IAAXXZ

?_Get@_CurrentScheduler@details@Concurrency@@SA?AV_Scheduler@23@XZ

?_GetCombinableSize@details@Concurrency@@YAIXZ

?_GetConcRTTraceInfo@Concurrency@@YAPBU_CONCRT_TRACE_INFO@details@1@XZ

?_GetConcurrency@details@Concurrency@@YAIXZ

?_GetCurrentInlineDepth@_StackGuard@details@Concurrency@@CAAAIXZ

?_GetNumberOfVirtualProcessors@_CurrentScheduler@details@Concurrency@@SAIXZ

?_GetScheduler@_Scheduler@details@Concurrency@@QAAPAVScheduler@3@XZ

?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ

?_Internal_assign@_Concurrent_vector_base_v4@details@Concurrency@@IAAXABV123@IP6AXPAXI@ZP6AX1PBXI@Z4@Z

?_Internal_capacity@_Concurrent_vector_base_v4@details@Concurrency@@IBAIXZ

?_Internal_clear@_Concurrent_vector_base_v4@details@Concurrency@@IAAIP6AXPAXI@Z@Z

?_Internal_compact@_Concurrent_vector_base_v4@details@Concurrency@@IAAPAXIPAXP6AX0I@ZP6AX0PBXI@Z@Z

?_Internal_copy@_Concurrent_vector_base_v4@details@Concurrency@@IAAXABV123@IP6AXPAXPBXI@Z@Z

?_Internal_empty@_Concurrent_queue_base_v4@details@Concurrency@@IBA_NXZ

?_Internal_finish_clear@_Concurrent_queue_base_v4@details@Concurrency@@IAAXXZ

?_Internal_grow_by@_Concurrent_vector_base_v4@details@Concurrency@@IAAIIIP6AXPAXPBXI@Z1@Z

?_Internal_grow_to_at_least_with_result@_Concurrent_vector_base_v4@details@Concurrency@@IAAIIIP6AXPAXPBXI@Z1@Z

?_Internal_move_push@_Concurrent_queue_base_v4@details@Concurrency@@IAAXPAX@Z

?_Internal_pop_if_present@_Concurrent_queue_base_v4@details@Concurrency@@IAA_NPAX@Z

?_Internal_push@_Concurrent_queue_base_v4@details@Concurrency@@IAAXPBX@Z

?_Internal_push_back@_Concurrent_vector_base_v4@details@Concurrency@@IAAPAXIAAI@Z

?_Internal_reserve@_Concurrent_vector_base_v4@details@Concurrency@@IAAXIII@Z

?_Internal_resize@_Concurrent_vector_base_v4@details@Concurrency@@IAAXIIIP6AXPAXI@ZP6AX0PBXI@Z2@Z

?_Internal_size@_Concurrent_queue_base_v4@details@Concurrency@@IBAIXZ

?_Internal_swap@_Concurrent_queue_base_v4@details@Concurrency@@IAAXAAV123@@Z

?_Internal_swap@_Concurrent_vector_base_v4@details@Concurrency@@IAAXAAV123@@Z

?_Internal_throw_exception@_Concurrent_queue_base_v4@details@Concurrency@@IBAXXZ

?_Internal_throw_exception@_Concurrent_vector_base_v4@details@Concurrency@@IBAXI@Z

?_IsCanceling@_StructuredTaskCollection@details@Concurrency@@QAA_NXZ

?_IsCanceling@_TaskCollection@details@Concurrency@@QAA_NXZ

?_IsSynchronouslyBlocked@_Context@details@Concurrency@@QBA_NXZ

?_NewCollection@_AsyncTaskCollection@details@Concurrency@@SAPAV123@PAV_CancellationTokenState@23@@Z

?_NumberOfSpins@?$_SpinWait@$00@details@Concurrency@@IAAKXZ

?_NumberOfSpins@?$_SpinWait@$0A@@details@Concurrency@@IAAKXZ

?_Oversubscribe@_Context@details@Concurrency@@SAX_N@Z

?_Reference@_Scheduler@details@Concurrency@@QAAIXZ

?_Release@_NonReentrantBlockingLock@details@Concurrency@@QAAXXZ

?_Release@_NonReentrantPPLLock@details@Concurrency@@QAAXXZ

?_Release@_ReentrantBlockingLock@details@Concurrency@@QAAXXZ

?_Release@_ReentrantLock@details@Concurrency@@QAAXXZ

?_Release@_ReentrantPPLLock@details@Concurrency@@QAAXXZ

?_Release@_Scheduler@details@Concurrency@@QAAIXZ

?_ReleaseRead@_ReaderWriterLock@details@Concurrency@@QAAXXZ

?_ReleaseWrite@_ReaderWriterLock@details@Concurrency@@QAAXXZ

?_Reset@?$_SpinWait@$00@details@Concurrency@@IAAXXZ

?_Reset@?$_SpinWait@$0A@@details@Concurrency@@IAAXXZ

?_RunAndWait@_StructuredTaskCollection@details@Concurrency@@QAA?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z

?_RunAndWait@_TaskCollection@details@Concurrency@@QAA?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z

?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAAXPAV_UnrealizedChore@23@@Z

?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAAXPAV_UnrealizedChore@23@PAVlocation@3@@Z

?_Schedule@_TaskCollection@details@Concurrency@@QAAXPAV_UnrealizedChore@23@@Z

?_Schedule@_TaskCollection@details@Concurrency@@QAAXPAV_UnrealizedChore@23@PAVlocation@3@@Z

?_ScheduleTask@_CurrentScheduler@details@Concurrency@@SAXP6AXPAX@Z0@Z

?_Segment_index_of@_Concurrent_vector_base_v4@details@Concurrency@@KAII@Z

?_SetSpinCount@?$_SpinWait@$00@details@Concurrency@@QAAXI@Z

?_SetSpinCount@?$_SpinWait@$0A@@details@Concurrency@@QAAXI@Z

?_ShouldSpinAgain@?$_SpinWait@$00@details@Concurrency@@IAA_NXZ

?_ShouldSpinAgain@?$_SpinWait@$0A@@details@Concurrency@@IAA_NXZ

?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAA_NXZ

?_SpinOnce@?$_SpinWait@$0A@@details@Concurrency@@QAA_NXZ

?_SpinYield@Context@Concurrency@@SAXXZ

?_Start@_Timer@details@Concurrency@@IAAXXZ

?_Stop@_Timer@details@Concurrency@@IAAXXZ

?_Trace_agents@Concurrency@@YAXW4Agents_EventType@1@_JZZ

?_Trace_ppl_function@Concurrency@@YAXABU_GUID@@EW4ConcRT_EventType@1@@Z

?_TryAcquire@_NonReentrantBlockingLock@details@Concurrency@@QAA_NXZ

?_TryAcquire@_ReentrantBlockingLock@details@Concurrency@@QAA_NXZ

?_TryAcquire@_ReentrantLock@details@Concurrency@@QAA_NXZ

?_TryAcquireWrite@_ReaderWriterLock@details@Concurrency@@QAA_NXZ

?_UnderlyingYield@details@Concurrency@@YAXXZ

?_Value@_SpinCount@details@Concurrency@@SAIXZ

?_Yield@_Context@details@Concurrency@@SAXXZ

?cancel@agent@Concurrency@@QAA_NXZ

?current@location@Concurrency@@SA?AV12@XZ

?done@agent@Concurrency@@IAA_NXZ

?from_numa_node@location@Concurrency@@SA?AV12@G@Z

?get_error_code@scheduler_resource_allocation_error@Concurrency@@QBAJXZ

?is_current_task_group_canceling@Concurrency@@YA_NXZ

?lock@critical_section@Concurrency@@QAAXXZ

?lock@reader_writer_lock@Concurrency@@QAAXXZ

?lock_read@reader_writer_lock@Concurrency@@QAAXXZ

?native_handle@critical_section@Concurrency@@QAAAAV12@XZ

?notify_all@_Condition_variable@details@Concurrency@@QAAXXZ

?notify_one@_Condition_variable@details@Concurrency@@QAAXXZ

?reset@event@Concurrency@@QAAXXZ

?set@event@Concurrency@@QAAXXZ

?set_task_execution_resources@Concurrency@@YAXGPAU_GROUP_AFFINITY@@@Z

?set_task_execution_resources@Concurrency@@YAXK@Z

?start@agent@Concurrency@@QAA_NXZ

?status@agent@Concurrency@@QAA?AW4agent_status@2@XZ

?status_port@agent@Concurrency@@QAAPAV?$ISource@W4agent_status@Concurrency@@@2@XZ

?try_lock@critical_section@Concurrency@@QAA_NXZ

?try_lock@reader_writer_lock@Concurrency@@QAA_NXZ

?try_lock_for@critical_section@Concurrency@@QAA_NI@Z

?try_lock_read@reader_writer_lock@Concurrency@@QAA_NXZ

?unlock@critical_section@Concurrency@@QAAXXZ

?unlock@reader_writer_lock@Concurrency@@QAAXXZ

?wait@Concurrency@@YAXI@Z

?wait@_Condition_variable@details@Concurrency@@QAAXAAVcritical_section@3@@Z

?wait@agent@Concurrency@@SA?AW4agent_status@2@PAV12@I@Z

?wait@event@Concurrency@@QAAII@Z

?wait_for@_Condition_variable@details@Concurrency@@QAA_NAAVcritical_section@3@I@Z

?wait_for_all@agent@Concurrency@@SAXIPAPAV12@PAW4agent_status@2@I@Z

?wait_for_multiple@event@Concurrency@@SAIPAPAV12@I_NI@Z

?wait_for_one@agent@Concurrency@@SAXIPAPAV12@AAW4agent_status@2@AAII@Z

Sections

.text
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

logo.png

.png

msvcp140_1_app.dll

.dll windows:6 windows

62fbfcf0587cd2296a14b001f5ef0a89

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

4c:1c:26:f8:bd:17:02:d8:ac:a7:a5:1b:3c:8b:88:ac:c1:2a:29:c0:6d:17:5c:06:e4:f6:df:d6:b2:9f:e9:ef
Signer

Actual PE Digest

4c:1c:26:f8:bd:17:02:d8:ac:a7:a5:1b:3c:8b:88:ac:c1:2a:29:c0:6d:17:5c:06:e4:f6:df:d6:b2:9f:e9:ef

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\\msvcp140_1_app.arm.pdb

Imports

msvcp140_app

?_Xbad_alloc@std@@YAXXZ

vcruntime140_app

__C_specific_handler

__std_exception_copy

__std_exception_destroy

_CxxThrowException

__std_type_info_destroy_list

api-ms-win-crt-heap-l1-1-0

malloc

free

_aligned_free

_callnewh

_aligned_malloc

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table

_configure_narrow_argv

_seh_filter_dll

_cexit

_initterm_e

_initterm

_initialize_narrow_environment

_execute_onexit_table

api-ms-win-core-libraryloader-l1-2-0

DisableThreadLibraryCalls

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-2

IsProcessorFeaturePresent

GetCurrentThreadId

GetCurrentProcessId

api-ms-win-core-sysinfo-l1-2-1

GetSystemTimeAsFileTime

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

Exports

_Aligned_get_default_resource

_Aligned_new_delete_resource

_Aligned_set_default_resource

_Unaligned_get_default_resource

_Unaligned_new_delete_resource

_Unaligned_set_default_resource

null_memory_resource

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

msvcp140_2_app.dll

.dll windows:6 windows

b25ffc3b9c52b0f7fa6eba1ce7a98fc0

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

37:f0:9b:cf:5e:e1:9c:7f:06:64:5f:06:dc:02:5b:cb:d0:f8:c2:26:cb:66:80:e9:4a:3d:20:18:d1:49:8a:e4
Signer

Actual PE Digest

37:f0:9b:cf:5e:e1:9c:7f:06:64:5f:06:dc:02:5b:cb:d0:f8:c2:26:cb:66:80:e9:4a:3d:20:18:d1:49:8a:e4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\\msvcp140_2_app.arm.pdb

Imports

msvcp140_app

??0_Lockit@std@@QAA@H@Z

??1_Lockit@std@@QAA@XZ

?_Xbad_alloc@std@@YAXXZ

?_Xlength_error@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

?uncaught_exceptions@std@@YAHXZ

??0_Locinfo@std@@QAA@PBD@Z

??1_Locinfo@std@@QAA@XZ

?_Getcvt@_Locinfo@std@@QBA?AU_Cvtvec@@XZ

?_Getfalse@_Locinfo@std@@QBAPBDXZ

?_Gettrue@_Locinfo@std@@QBAPBDXZ

?c_str@?$_Yarn@D@std@@QBAPBDXZ

??Bid@locale@std@@QAAIXZ

??0facet@locale@std@@IAA@I@Z

??1facet@locale@std@@MAA@XZ

?_Init@locale@std@@CAPAV_Locimp@12@_N@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?widen@?$ctype@D@std@@QBADD@Z

?widen@?$ctype@D@std@@QBAPBDPBD0PAD@Z

?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?clear@ios_base@std@@QAAXH_N@Z

?getloc@ios_base@std@@QBA?AVlocale@2@XZ

??1ios_base@std@@UAA@XZ

?_Addstd@ios_base@std@@SAXPAV12@@Z

??0ios_base@std@@IAA@XZ

?_Init@ios_base@std@@IAAXXZ

?setprecision@std@@YA?AU?$_Smanip@_J@1@_J@Z

?_Decref@facet@locale@std@@UAAPAV_Facet_base@3@XZ

?_Incref@facet@locale@std@@UAAXXZ

?id@?$ctype@D@std@@2V0locale@2@A

?id@?$numpunct@D@std@@2V0locale@2@A

vcruntime140_app

_purecall

__std_terminate

__std_exception_copy

__std_exception_destroy

_CxxThrowException

__CxxFrameHandler3

memchr

memcmp

memcpy

memmove

memset

__C_specific_handler

__std_type_info_destroy_list

api-ms-win-crt-runtime-l1-1-0

_errno

_cexit

_execute_onexit_table

_register_onexit_function

_initialize_onexit_table

_initialize_narrow_environment

_configure_narrow_argv

_seh_filter_dll

_initterm_e

_initterm

_crt_atexit

api-ms-win-crt-math-l1-1-0

pow

tan

log

fmod

floor

ldexp

sinh

_dclass

_fdclass

atan

ceil

cos

log1p

cosh

sin

frexp

expm1

exp

api-ms-win-crt-heap-l1-1-0

calloc

malloc

_callnewh

free

api-ms-win-crt-string-l1-1-0

strlen

strcspn

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf_s

api-ms-win-crt-locale-l1-1-0

localeconv

api-ms-win-core-libraryloader-l1-2-0

DisableThreadLibraryCalls

api-ms-win-core-errorhandling-l1-1-1

RaiseException

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-2

GetCurrentThreadId

GetCurrentProcessId

IsProcessorFeaturePresent

api-ms-win-core-sysinfo-l1-2-1

GetSystemTimeAsFileTime

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

Exports

__std_smf_assoc_laguerre

__std_smf_assoc_laguerref

__std_smf_assoc_legendre

__std_smf_assoc_legendref

__std_smf_beta

__std_smf_betaf

__std_smf_comp_ellint_1

__std_smf_comp_ellint_1f

__std_smf_comp_ellint_2

__std_smf_comp_ellint_2f

__std_smf_comp_ellint_3

__std_smf_comp_ellint_3f

__std_smf_cyl_bessel_i

__std_smf_cyl_bessel_if

__std_smf_cyl_bessel_j

__std_smf_cyl_bessel_jf

__std_smf_cyl_bessel_k

__std_smf_cyl_bessel_kf

__std_smf_cyl_neumann

__std_smf_cyl_neumannf

__std_smf_ellint_1

__std_smf_ellint_1f

__std_smf_ellint_2

__std_smf_ellint_2f

__std_smf_ellint_3

__std_smf_ellint_3f

__std_smf_expint

__std_smf_expintf

__std_smf_hermite

__std_smf_hermitef

__std_smf_hypot3

__std_smf_hypot3f

__std_smf_laguerre

__std_smf_laguerref

__std_smf_legendre

__std_smf_legendref

__std_smf_riemann_zeta

__std_smf_riemann_zetaf

__std_smf_sph_bessel

__std_smf_sph_besself

__std_smf_sph_legendre

__std_smf_sph_legendref

__std_smf_sph_neumann

__std_smf_sph_neumannf

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

msvcp140_app.dll

.dll windows:6 windows

f3999de838b721144f094aee6704a196

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

49:ac:b2:6d:95:7b:45:5f:49:61:15:91:4d:08:8e:7f:1b:9f:be:6d:0d:84:78:18:ea:26:70:45:28:2e:24:0f
Signer

Actual PE Digest

49:ac:b2:6d:95:7b:45:5f:49:61:15:91:4d:08:8e:7f:1b:9f:be:6d:0d:84:78:18:ea:26:70:45:28:2e:24:0f

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\\msvcp140_app.arm.pdb

Imports

vcruntime140_app

__std_exception_copy

__std_exception_destroy

__current_exception

__AdjustPointer

_CxxThrowException

__CxxFrameHandler3

memcpy

memset

_purecall

__std_terminate

memmove

memcmp

memchr

__GetPlatformExceptionInfo

__uncaught_exception

__uncaught_exceptions

__C_specific_handler

__current_exception_context

__std_type_info_destroy_list

api-ms-win-crt-heap-l1-1-0

_callnewh

calloc

free

malloc

realloc

api-ms-win-crt-runtime-l1-1-0

abort

_initialize_onexit_table

_set_new_handler

terminate

_initterm_e

_errno

_initterm

_cexit

_crt_atexit

_execute_onexit_table

_register_onexit_function

_initialize_narrow_environment

_configure_narrow_argv

_beginthreadex

_endthreadex

_seh_filter_dll

api-ms-win-crt-string-l1-1-0

tolower

isalnum

isxdigit

_wcsdup

iswdigit

isdigit

iswspace

iswxdigit

wcslen

isspace

wcscpy_s

isupper

strlen

iswalnum

strcmp

islower

strcspn

wcsnlen

__strncnt

api-ms-win-crt-locale-l1-1-0

localeconv

___lc_locale_name_func

__pctype_func

___lc_codepage_func

_lock_locales

_unlock_locales

___lc_collate_cp_func

setlocale

___mb_cur_max_func

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func

_get_stream_buffer_pointers

fclose

fflush

fgetc

fgetpos

fputc

fread

fsetpos

_fseeki64

fwrite

setvbuf

ungetc

fgetwc

fputwc

ungetwc

fseek

__stdio_common_vsprintf_s

_fsopen

_wfsopen

fputs

api-ms-win-crt-filesystem-l1-1-0

_wrmdir

_wremove

_unlock_file

_lock_file

_wrename

api-ms-win-crt-time-l1-1-0

_Getmonths

_Strftime

_Wcsftime

_Gettnames

_W_Getdays

_W_Gettnames

_W_Getmonths

_Getdays

api-ms-win-crt-math-l1-1-0

powf

pow

log

ldexp

frexp

logf

api-ms-win-crt-convert-l1-1-0

strtof

btowc

strtod

api-ms-win-crt-utility-l1-1-0

rand_s

api-ms-win-core-rtlsupport-l1-2-0

RtlPcToFileHeader

api-ms-win-core-errorhandling-l1-1-1

RaiseException

GetLastError

api-ms-win-core-string-l1-1-0

GetStringTypeW

CompareStringEx

MultiByteToWideChar

WideCharToMultiByte

api-ms-win-core-localization-l1-2-1

LCMapStringEx

FormatMessageA

GetLocaleInfoEx

GetCPInfo

api-ms-win-core-synch-l1-2-0

TryEnterCriticalSection

InitializeCriticalSectionEx

LeaveCriticalSection

EnterCriticalSection

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

TryAcquireSRWLockExclusive

InitializeSRWLock

SleepConditionVariableCS

Sleep

WaitForSingleObjectEx

SleepConditionVariableSRW

InitializeConditionVariable

WakeConditionVariable

WakeAllConditionVariable

InitOnceExecuteOnce

DeleteCriticalSection

api-ms-win-core-file-l1-2-1

CreateDirectoryW

FindClose

FindFirstFileExW

FindNextFileW

GetDiskFreeSpaceExW

GetFileAttributesExW

SetEndOfFile

SetFileAttributesW

CreateFile2

GetTempPathW

SetFileTime

SetFilePointerEx

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-file-l2-1-1

CopyFile2

GetFileInformationByHandleEx

api-ms-win-core-util-l1-1-0

DecodePointer

EncodePointer

api-ms-win-core-heap-l2-1-0

LocalFree

api-ms-win-core-processthreads-l1-1-2

GetCurrentProcessId

GetExitCodeThread

GetCurrentThreadId

SwitchToThread

IsProcessorFeaturePresent

api-ms-win-core-sysinfo-l1-2-1

GetNativeSystemInfo

GetSystemTimePreciseAsFileTime

GetSystemTimeAsFileTime

api-ms-win-core-winrt-error-l1-1-1

SetRestrictedErrorInfo

RoFailFastWithErrorContext

RoReportUnhandledError

api-ms-win-core-threadpool-l1-2-0

SubmitThreadpoolWork

CreateThreadpoolWork

CloseThreadpoolWork

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

QueryPerformanceFrequency

api-ms-win-core-com-l1-1-1

CoGetObjectContext

CoGetApartmentType

api-ms-win-core-winrt-l1-1-0

RoGetActivationFactory

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateStringReference

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

Exports

??$_Getvals@_W@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAAX_WABV_Locinfo@1@@Z

??$_Getvals@_W@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAAX_WABV_Locinfo@1@@Z

??$_Getvals@_W@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAAX_WABV_Locinfo@1@@Z

??0?$_Yarn@D@std@@QAA@ABV01@@Z

??0?$_Yarn@D@std@@QAA@PBD@Z

??0?$_Yarn@D@std@@QAA@XZ

??0?$_Yarn@G@std@@QAA@ABV01@@Z

??0?$_Yarn@G@std@@QAA@PBG@Z

??0?$_Yarn@G@std@@QAA@XZ

??0?$_Yarn@_W@std@@QAA@ABV01@@Z

??0?$_Yarn@_W@std@@QAA@PB_W@Z

??0?$_Yarn@_W@std@@QAA@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAA@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAA@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAA@XZ

??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAA@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAA@XZ

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAA@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@IAA@$$QAV01@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAA@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@IAA@$$QAV01@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAA@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAA@$$QAV01@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAA@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@IAA@$$QAV01@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAA@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAA@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAA@W4_Uninitialized@1@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@IAA@$$QAV01@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAA@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAA@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAA@W4_Uninitialized@1@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAA@$$QAV01@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAA@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAA@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAA@W4_Uninitialized@1@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@IAA@$$QAV01@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAA@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAA@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@IAA@$$QAV01@@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAA@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAA@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAA@$$QAV01@@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAA@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAA@W4_Uninitialized@1@_N@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAA@ABV01@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAA@W4_Uninitialized@1@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAA@XZ

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAA@ABV01@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAA@W4_Uninitialized@1@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAA@XZ

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAA@ABV01@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAA@W4_Uninitialized@1@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAA@XZ

??0?$codecvt@DDU_Mbstatet@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$codecvt@DDU_Mbstatet@@@std@@QAA@I@Z

??0?$codecvt@GDU_Mbstatet@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$codecvt@GDU_Mbstatet@@@std@@QAA@I@Z

??0?$codecvt@_SDU_Mbstatet@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$codecvt@_SDU_Mbstatet@@@std@@QAA@ABV_Locinfo@1@KW4_Codecvt_mode@1@I@Z

??0?$codecvt@_SDU_Mbstatet@@@std@@QAA@I@Z

??0?$codecvt@_UDU_Mbstatet@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$codecvt@_UDU_Mbstatet@@@std@@QAA@ABV_Locinfo@1@KW4_Codecvt_mode@1@I@Z

??0?$codecvt@_UDU_Mbstatet@@@std@@QAA@I@Z

??0?$codecvt@_WDU_Mbstatet@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$codecvt@_WDU_Mbstatet@@@std@@QAA@I@Z

??0?$ctype@D@std@@QAA@ABV_Locinfo@1@I@Z

??0?$ctype@D@std@@QAA@PBF_NI@Z

??0?$ctype@G@std@@QAA@ABV_Locinfo@1@I@Z

??0?$ctype@G@std@@QAA@I@Z

??0?$ctype@_W@std@@QAA@ABV_Locinfo@1@I@Z

??0?$ctype@_W@std@@QAA@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAA@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAA@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAA@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAA@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAA@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAA@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAA@PBDI@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAA@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAA@PBDI@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAA@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAA@PBDI@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAA@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAA@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAA@PBDI@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAA@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAA@PBDI@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAA@ABV_Locinfo@1@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAA@I@Z

??0Init@ios_base@std@@QAA@XZ

??0_Facet_base@std@@QAA@ABV01@@Z

??0_Facet_base@std@@QAA@XZ

??0_Init_locks@std@@QAA@XZ

??0_Locimp@locale@std@@AAA@ABV012@@Z

??0_Locimp@locale@std@@AAA@_N@Z

??0_Locinfo@std@@QAA@HPBD@Z

??0_Locinfo@std@@QAA@PBD@Z

??0_Lockit@std@@QAA@H@Z

??0_Lockit@std@@QAA@XZ

??0_Timevec@std@@QAA@ABV01@@Z

??0_Timevec@std@@QAA@PAX@Z

??0_UShinit@std@@QAA@XZ

??0_Winit@std@@QAA@XZ

??0codecvt_base@std@@QAA@I@Z

??0ctype_base@std@@QAA@I@Z

??0facet@locale@std@@IAA@I@Z

??0id@locale@std@@QAA@I@Z

??0ios_base@std@@IAA@XZ

??0task_continuation_context@Concurrency@@AAA@XZ

??0time_base@std@@QAA@I@Z

??1?$_Yarn@D@std@@QAA@XZ

??1?$_Yarn@G@std@@QAA@XZ

??1?$_Yarn@_W@std@@QAA@XZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAA@XZ

??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAA@XZ

??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAA@XZ

??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAA@XZ

??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAA@XZ

??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAA@XZ

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAA@XZ

??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAA@XZ

??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAA@XZ

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAA@XZ

??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAA@XZ

??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAA@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAA@XZ

??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAA@XZ

??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAA@XZ

??1?$codecvt@DDU_Mbstatet@@@std@@MAA@XZ

??1?$codecvt@GDU_Mbstatet@@@std@@MAA@XZ

??1?$codecvt@_SDU_Mbstatet@@@std@@MAA@XZ

??1?$codecvt@_UDU_Mbstatet@@@std@@MAA@XZ

??1?$codecvt@_WDU_Mbstatet@@@std@@MAA@XZ

??1?$ctype@D@std@@MAA@XZ

??1?$ctype@G@std@@MAA@XZ

??1?$ctype@_W@std@@MAA@XZ

??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAA@XZ

??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAA@XZ

??1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAA@XZ

??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAA@XZ

??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAA@XZ

??1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAA@XZ

??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAA@XZ

??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAA@XZ

??1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAA@XZ

??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAA@XZ

??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAA@XZ

??1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAA@XZ

??1Init@ios_base@std@@QAA@XZ

??1_Facet_base@std@@UAA@XZ

??1_Init_locks@std@@QAA@XZ

??1_Locimp@locale@std@@MAA@XZ

??1_Locinfo@std@@QAA@XZ

??1_Lockit@std@@QAA@XZ

??1_Timevec@std@@QAA@XZ

??1_UShinit@std@@QAA@XZ

??1_Winit@std@@QAA@XZ

??1codecvt_base@std@@UAA@XZ

??1ctype_base@std@@UAA@XZ

??1facet@locale@std@@MAA@XZ

??1ios_base@std@@UAA@XZ

??1time_base@std@@UAA@XZ

??4?$_Iosb@H@std@@QAAAAV01@$$QAV01@@Z

??4?$_Iosb@H@std@@QAAAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAAAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAAAAV01@PBD@Z

??4?$_Yarn@G@std@@QAAAAV01@ABV01@@Z

??4?$_Yarn@G@std@@QAAAAV01@PBG@Z

??4?$_Yarn@_W@std@@QAAAAV01@ABV01@@Z

??4?$_Yarn@_W@std@@QAAAAV01@PB_W@Z

??4?$basic_iostream@DU?$char_traits@D@std@@@std@@IAAAAV01@$$QAV01@@Z

??4?$basic_iostream@GU?$char_traits@G@std@@@std@@IAAAAV01@$$QAV01@@Z

??4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAAAAV01@$$QAV01@@Z

??4?$basic_istream@DU?$char_traits@D@std@@@std@@IAAAAV01@$$QAV01@@Z

??4?$basic_istream@GU?$char_traits@G@std@@@std@@IAAAAV01@$$QAV01@@Z

??4?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAAAAV01@$$QAV01@@Z

??4?$basic_ostream@DU?$char_traits@D@std@@@std@@IAAAAV01@$$QAV01@@Z

??4?$basic_ostream@GU?$char_traits@G@std@@@std@@IAAAAV01@$$QAV01@@Z

??4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAAAAV01@$$QAV01@@Z

??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAAAAV01@ABV01@@Z

??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAAAAV01@ABV01@@Z

??4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAAAAV01@ABV01@@Z

??4Init@ios_base@std@@QAAAAV012@ABV012@@Z

??4_Crt_new_delete@std@@QAAAAU01@$$QAU01@@Z

??4_Crt_new_delete@std@@QAAAAU01@ABU01@@Z

??4_Facet_base@std@@QAAAAV01@ABV01@@Z

??4_Init_locks@std@@QAAAAV01@ABV01@@Z

??4_Timevec@std@@QAAAAV01@ABV01@@Z

??4_UShinit@std@@QAAAAV01@ABV01@@Z

??4_Winit@std@@QAAAAV01@ABV01@@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAF@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAG@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAH@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAI@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAJ@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAK@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAM@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAN@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAO@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AAPAX@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AA_J@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AA_K@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@AA_N@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAAAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAF@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAG@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAH@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAI@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAJ@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAK@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAM@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAN@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAO@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AAPAX@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AA_J@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AA_K@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@AA_N@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAAAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAF@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAG@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAH@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAI@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAJ@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAK@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAM@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAN@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAO@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AAPAX@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AA_J@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AA_K@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@AA_N@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@F@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@I@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@M@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@N@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@O@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@PBX@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@_K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAAAV01@_N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@F@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@G@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@H@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@I@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@M@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@O@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@PBX@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@_J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@_K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAAAV01@_N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@F@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@G@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@H@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@I@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@M@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@O@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@PBX@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@_J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@_K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAAAV01@_N@Z

??7ios_base@std@@QBA_NXZ

??Bid@locale@std@@QAAIXZ

??Bios_base@std@@QBA_NXZ

??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$codecvt@DDU_Mbstatet@@@std@@6B@

??_7?$codecvt@GDU_Mbstatet@@@std@@6B@

??_7?$codecvt@_SDU_Mbstatet@@@std@@6B@

??_7?$codecvt@_UDU_Mbstatet@@@std@@6B@

??_7?$codecvt@_WDU_Mbstatet@@@std@@6B@

??_7?$ctype@D@std@@6B@

??_7?$ctype@G@std@@6B@

??_7?$ctype@_W@std@@6B@

??_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7_Facet_base@std@@6B@

??_7_Locimp@locale@std@@6B@

??_7codecvt_base@std@@6B@

??_7ctype_base@std@@6B@

??_7facet@locale@std@@6B@

??_7ios_base@std@@6B@

??_7time_base@std@@6B@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@

??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@

??_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QAAXXZ

??_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QAAXXZ

??_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAAXXZ

??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAAXXZ

??_D?$basic_istream@GU?$char_traits@G@std@@@std@@QAAXXZ

??_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAAXXZ

??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAAXXZ

??_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QAAXXZ

??_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAAXXZ

??_F?$codecvt@DDU_Mbstatet@@@std@@QAAXXZ

??_F?$codecvt@GDU_Mbstatet@@@std@@QAAXXZ

??_F?$codecvt@_SDU_Mbstatet@@@std@@QAAXXZ

??_F?$codecvt@_UDU_Mbstatet@@@std@@QAAXXZ

??_F?$codecvt@_WDU_Mbstatet@@@std@@QAAXXZ

??_F?$ctype@D@std@@QAAXXZ

??_F?$ctype@G@std@@QAAXXZ

??_F?$ctype@_W@std@@QAAXXZ

??_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAAXXZ

??_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAAXXZ

??_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAAXXZ

??_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAAXXZ

??_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAAXXZ

??_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAAXXZ

??_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAAXXZ

??_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAAXXZ

??_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAAXXZ

??_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAAXXZ

??_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAAXXZ

??_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAAXXZ

??_F_Locinfo@std@@QAAXXZ

??_F_Timevec@std@@QAAXXZ

??_Fcodecvt_base@std@@QAAXXZ

??_Fctype_base@std@@QAAXXZ

??_Ffacet@locale@std@@QAAXXZ

??_Fid@locale@std@@QAAXXZ

??_Ftime_base@std@@QAAXXZ

?CaptureCallstack@platform@details@Concurrency@@YAIPAPAXII@Z

?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ

?GetNextAsyncId@platform@details@Concurrency@@YAIXZ

?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AAAXXZ

?_Addcats@_Locinfo@std@@QAAAAV12@HPBD@Z

?_Addfac@_Locimp@locale@std@@AAAXPAVfacet@23@I@Z

?_Addstd@ios_base@std@@SAXPAV12@@Z

?_Assign@_ContextCallback@details@Concurrency@@AAAXPAX@Z

?_Atexit@@YAXP6AXXZ@Z

?_BADOFF@std@@3_JB

?_C_str@?$_Yarn@D@std@@QBAPBDXZ

?_C_str@?$_Yarn@G@std@@QBAPBGXZ

?_C_str@?$_Yarn@_W@std@@QBAPB_WXZ

?_CallInContext@_ContextCallback@details@Concurrency@@QBAXV?$function@$$A6AXXZ@std@@_N@Z

?_Callfns@ios_base@std@@AAAXW4event@12@@Z

?_Capture@_ContextCallback@details@Concurrency@@AAAXXZ

?_Clocptr@_Locimp@locale@std@@0PAV123@A

?_Decref@facet@locale@std@@UAAPAV_Facet_base@3@XZ

?_Donarrow@?$ctype@G@std@@IBADGD@Z

?_Donarrow@?$ctype@_W@std@@IBAD_WD@Z

?_Dowiden@?$ctype@G@std@@IBAGD@Z

?_Dowiden@?$ctype@_W@std@@IBA_WD@Z

?_Empty@?$_Yarn@D@std@@QBA_NXZ

?_Empty@?$_Yarn@G@std@@QBA_NXZ

?_Empty@?$_Yarn@_W@std@@QBA_NXZ

?_Execute_once@std@@YAHAAUonce_flag@1@P6AHPAX1PAPAX@Z1@Z

?_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADDH@Z

?_Findarr@ios_base@std@@AAAAAU_Iosarray@12@H@Z

?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PBGHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBDI@Z

?_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AAVios_base@2@GPBDI@Z

?_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBDI@Z

?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@GDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@_SDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@_UDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@facet@locale@std@@SAIPAPBV123@PBV23@@Z

?_Getcoll@_Locinfo@std@@QBA?AU_Collvec@@XZ

?_Getctype@_Locinfo@std@@QBA?AU_Ctypevec@@XZ

?_Getcvt@_Locinfo@std@@QBA?AU_Cvtvec@@XZ

?_Getdateorder@_Locinfo@std@@QBAHXZ

?_Getdays@_Locinfo@std@@QBAPBDXZ

?_Getfalse@_Locinfo@std@@QBAPBDXZ

?_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z

?_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z

?_Getffld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z

?_Getfmt@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IBA?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getfmt@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IBA?AV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getfmt@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IBA?AV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_Getifld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1HABVlocale@2@@Z

?_Getifld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1HABVlocale@2@@Z

?_Getifld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1HABVlocale@2@@Z

?_Getint@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@0HHAAHABV?$ctype@D@2@@Z

?_Getint@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@0HHAAHABV?$ctype@G@2@@Z

?_Getint@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@0HHAAHABV?$ctype@_W@2@@Z

?_Getlconv@_Locinfo@std@@QBAPBUlconv@@XZ

?_Getmonths@_Locinfo@std@@QBAPBDXZ

?_Getname@_Locinfo@std@@QBAPBDXZ

?_Getptr@_Timevec@std@@QBAPAXXZ

?_Gettnames@_Locinfo@std@@QBA?AV_Timevec@2@XZ

?_Gettrue@_Locinfo@std@@QBAPBDXZ

?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBA_JXZ

?_Gnavail@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IBA_JXZ

?_Gnavail@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBA_JXZ

?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAAPADXZ

?_Gndec@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAAPAGXZ

?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAAPA_WXZ

?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAAPADXZ

?_Gninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAAPAGXZ

?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAAPA_WXZ

?_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAAPADXZ

?_Gnpreinc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAAPAGXZ

?_Gnpreinc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAAPA_WXZ

?_Id_cnt@id@locale@std@@0HA

?_Ifmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Ifmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Ifmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Incref@facet@locale@std@@UAAXXZ

?_Index@ios_base@std@@0HA

Sections

.text
Size: 251KB - Virtual size: 250KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

msvcp140_atomic_wait_app.dll

.dll windows:6 windows

d593d8781fc154dec40b97654fc5f68e

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

ba:5f:31:43:2c:85:1b:1e:4c:4d:3e:23:dc:5b:61:08:e3:ba:e2:7d:ca:6b:41:06:06:21:60:ab:99:a9:38:7e
Signer

Actual PE Digest

ba:5f:31:43:2c:85:1b:1e:4c:4d:3e:23:dc:5b:61:08:e3:ba:e2:7d:ca:6b:41:06:06:21:60:ab:99:a9:38:7e

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\\msvcp140_atomic_wait_app.arm.pdb

Imports

msvcp140_app

_Thrd_hardware_concurrency

vcruntime140_app

__C_specific_handler

__std_type_info_destroy_list

__CxxFrameHandler3

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table

_execute_onexit_table

_initialize_narrow_environment

_cexit

_configure_narrow_argv

_seh_filter_dll

_initterm_e

_initterm

api-ms-win-core-synch-l1-2-0

WakeByAddressAll

WakeByAddressSingle

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

WakeAllConditionVariable

SleepConditionVariableSRW

WaitOnAddress

api-ms-win-core-sysinfo-l1-2-1

GetTickCount64

GetSystemTimeAsFileTime

api-ms-win-core-threadpool-l1-2-0

WaitForThreadpoolWorkCallbacks

CloseThreadpoolWork

SubmitThreadpoolWork

CreateThreadpoolWork

api-ms-win-core-libraryloader-l1-2-0

DisableThreadLibraryCalls

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-2

GetCurrentProcessId

GetCurrentThreadId

IsProcessorFeaturePresent

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

Exports

__std_atomic_compare_exchange_128

__std_atomic_get_mutex

__std_atomic_has_cmpxchg16b

__std_atomic_notify_all_direct

__std_atomic_notify_all_indirect

__std_atomic_notify_one_direct

__std_atomic_notify_one_indirect

__std_atomic_set_api_level

__std_atomic_wait_direct

__std_atomic_wait_get_deadline

__std_atomic_wait_get_remaining_timeout

__std_atomic_wait_indirect

__std_bulk_submit_threadpool_work

__std_close_threadpool_work

__std_create_threadpool_work

__std_execution_wait_on_uchar

__std_execution_wake_by_address_all

__std_parallel_algorithms_hw_threads

__std_submit_threadpool_work

__std_wait_for_threadpool_work_callbacks

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 440B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

msvcp140_codecvt_ids_app.dll

.dll windows:6 windows

3f4d8329a93279c28c9756ead356c372

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

65:c0:97:e6:b8:ef:05:c0:23:42:03:d8:2c:cc:09:60:53:cc:4e:f8:f9:16:44:9e:2b:56:56:f2:30:a3:29:e1
Signer

Actual PE Digest

65:c0:97:e6:b8:ef:05:c0:23:42:03:d8:2c:cc:09:60:53:cc:4e:f8:f9:16:44:9e:2b:56:56:f2:30:a3:29:e1

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\\msvcp140_codecvt_ids_app.arm.pdb

Imports

vcruntime140_app

__std_type_info_destroy_list

__C_specific_handler

api-ms-win-crt-runtime-l1-1-0

_cexit

_execute_onexit_table

_initialize_onexit_table

_initialize_narrow_environment

_configure_narrow_argv

_seh_filter_dll

_initterm_e

_initterm

api-ms-win-core-libraryloader-l1-2-0

DisableThreadLibraryCalls

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-2

IsProcessorFeaturePresent

GetCurrentProcessId

GetCurrentThreadId

api-ms-win-core-sysinfo-l1-2-1

GetSystemTimeAsFileTime

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

Exports

?id@?$codecvt@_SDU_Mbstatet@@@std@@2V0locale@2@A

?id@?$codecvt@_S_QU_Mbstatet@@@std@@2V0locale@2@A

?id@?$codecvt@_UDU_Mbstatet@@@std@@2V0locale@2@A

?id@?$codecvt@_U_QU_Mbstatet@@@std@@2V0locale@2@A

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

vcamp140_app.dll

.dll windows:6 windows

3092b1b31eda737339b93cc972e11f68

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

8e:de:09:38:cd:71:75:58:bc:76:74:d9:52:23:41:24:53:a0:fe:85:b4:89:0e:ee:82:9e:0c:d5:1b:39:61:1b
Signer

Actual PE Digest

8e:de:09:38:cd:71:75:58:bc:76:74:d9:52:23:41:24:53:a0:fe:85:b4:89:0e:ee:82:9e:0c:d5:1b:39:61:1b

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\\vcamp140_app.arm.pdb

Imports

vcruntime140_app

memcmp

memcpy

memmove

memset

__std_type_info_destroy_list

_CxxThrowException

__C_specific_handler

__current_exception_context

__current_exception

wcsstr

_purecall

__std_exception_destroy

__std_exception_copy

__CxxFrameHandler3

api-ms-win-crt-runtime-l1-1-0

_invalid_parameter_noinfo

_initialize_onexit_table

_initterm

terminate

_errno

_cexit

abort

_beginthreadex

_seh_filter_dll

_configure_narrow_argv

_crt_atexit

_initialize_narrow_environment

_initterm_e

_register_onexit_function

_execute_onexit_table

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf_s

api-ms-win-crt-string-l1-1-0

wcscpy_s

wcscat_s

wcslen

_wcsicmp

strcpy_s

wcscmp

strlen

api-ms-win-crt-convert-l1-1-0

_itow_s

api-ms-win-crt-heap-l1-1-0

_aligned_malloc

malloc

free

_callnewh

_aligned_free

msvcp140_app

_Cnd_wait

_Mtx_unlock

_Cnd_destroy_in_situ

_Cnd_unregister_at_thread_exit

_Cnd_register_at_thread_exit

?_Release_chore@details@Concurrency@@YAXPAU_Threadpool_chore@12@@Z

_Cnd_broadcast

?_Schedule_chore@details@Concurrency@@YAHPAU_Threadpool_chore@12@@Z

?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ

?_Capture@_ContextCallback@details@Concurrency@@AAAXXZ

?_Reset@_ContextCallback@details@Concurrency@@AAAXXZ

?_IsCurrentOriginSTA@_ContextCallback@details@Concurrency@@CA_NXZ

_Cnd_init_in_situ

?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QAAX_N@Z

_Mtx_lock

_Cnd_do_broadcast_at_thread_exit

_Thrd_detach

?_Throw_Cpp_error@std@@YAXH@Z

_Thrd_yield

?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QAAXXZ

?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QAAXXZ

?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QAAXXZ

?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z

?_Throw_future_error@std@@YAXABVerror_code@1@@Z

?_Xbad_function_call@std@@YAXXZ

_Mtx_destroy_in_situ

?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QAAXXZ

?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QAAXXZ

??0task_continuation_context@Concurrency@@AAA@XZ

?_ReportUnobservedException@details@Concurrency@@YAXXZ

?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AAAXXZ

?_CallInContext@_ContextCallback@details@Concurrency@@QBAXV?$function@$$A6AXXZ@std@@_N@Z

?_Xlength_error@std@@YAXPBD@Z

?__ExceptionPtrCreate@@YAXPAX@Z

?__ExceptionPtrDestroy@@YAXPAX@Z

?__ExceptionPtrCopy@@YAXPAXPBX@Z

?__ExceptionPtrAssign@@YAXPAXPBX@Z

?__ExceptionPtrToBool@@YA_NPBX@Z

?__ExceptionPtrCurrentException@@YAXPAX@Z

?__ExceptionPtrRethrow@@YAXPBX@Z

?_Throw_C_error@std@@YAXH@Z

?_Syserror_map@std@@YAPBDH@Z

_Mtx_init_in_situ

?_Assign@_ContextCallback@details@Concurrency@@AAAXPAX@Z

concrt140_app

??1critical_section@Concurrency@@QAA@XZ

??0scoped_lock@critical_section@Concurrency@@QAA@AAV12@@Z

??1scoped_lock@critical_section@Concurrency@@QAA@XZ

?try_lock@critical_section@Concurrency@@QAA_NXZ

?lock@critical_section@Concurrency@@QAAXXZ

?unlock@critical_section@Concurrency@@QAAXXZ

??0critical_section@Concurrency@@QAA@XZ

d3d11

D3D11CreateDevice

d3dcompiler_47

D3DLoadModule

D3DCreateLinker

dxgi

CreateDXGIFactory1

api-ms-win-core-synch-l1-2-0

InitOnceComplete

ReleaseSRWLockExclusive

CreateEventExW

ResetEvent

InitOnceInitialize

LeaveCriticalSection

WaitForSingleObjectEx

EnterCriticalSection

InitOnceExecuteOnce

DeleteCriticalSection

InitOnceBeginInitialize

SleepConditionVariableSRW

WakeAllConditionVariable

AcquireSRWLockExclusive

InitializeCriticalSectionEx

SetEvent

api-ms-win-core-errorhandling-l1-1-1

GetLastError

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

InterlockedPushEntrySList

InterlockedFlushSList

InterlockedPopEntrySList

api-ms-win-core-processthreads-l1-1-2

GetCurrentProcessId

IsProcessorFeaturePresent

GetCurrentThreadId

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-sysinfo-l1-2-1

GetSystemTimeAsFileTime

api-ms-win-core-libraryloader-l1-2-0

DisableThreadLibraryCalls

api-ms-win-crt-math-l1-1-0

ceilf

pow

ceil

Exports

??0_Event@details@Concurrency@@QAA@ABV012@@Z

??0_Event@details@Concurrency@@QAA@XZ

??0accelerator@Concurrency@@AAA@V?$_Reference_counted_obj_ptr@V_Accelerator_impl@details@Concurrency@@@details@1@@Z

??0accelerator@Concurrency@@QAA@ABV01@@Z

??0accelerator@Concurrency@@QAA@XZ

??0accelerator_view@Concurrency@@AAA@V?$_Reference_counted_obj_ptr@V_Accelerator_view_impl@details@Concurrency@@@details@1@_N@Z

??0accelerator_view@Concurrency@@QAA@ABV01@@Z

??0accelerator_view_removed@Concurrency@@QAA@J@Z

??0accelerator_view_removed@Concurrency@@QAA@PBDJ@Z

??0invalid_compute_domain@Concurrency@@QAA@PBD@Z

??0invalid_compute_domain@Concurrency@@QAA@XZ

??0out_of_memory@Concurrency@@QAA@PBD@Z

??0out_of_memory@Concurrency@@QAA@XZ

??0runtime_exception@Concurrency@@QAA@ABV01@@Z

??0runtime_exception@Concurrency@@QAA@J@Z

??0runtime_exception@Concurrency@@QAA@PBDJ@Z

??0scoped_d3d_access_lock@direct3d@Concurrency@@QAA@$$QAV012@@Z

??0scoped_d3d_access_lock@direct3d@Concurrency@@QAA@AAVaccelerator_view@2@@Z

??0scoped_d3d_access_lock@direct3d@Concurrency@@QAA@AAVaccelerator_view@2@Uadopt_d3d_access_lock_t@12@@Z

??0unsupported_feature@Concurrency@@QAA@PBD@Z

??0unsupported_feature@Concurrency@@QAA@XZ

??1_Amp_runtime_trace@details@Concurrency@@QAA@XZ

??1_Event@details@Concurrency@@QAA@XZ

??1accelerator@Concurrency@@QAA@XZ

??1accelerator_view@Concurrency@@QAA@XZ

??1runtime_exception@Concurrency@@UAA@XZ

??1scoped_d3d_access_lock@direct3d@Concurrency@@QAA@XZ

??4_Event@details@Concurrency@@QAAAAV012@ABV012@@Z

??4accelerator@Concurrency@@QAAAAV01@ABV01@@Z

??4accelerator_view@Concurrency@@QAAAAV01@ABV01@@Z

??4runtime_exception@Concurrency@@QAAAAV01@ABV01@@Z

??4scoped_d3d_access_lock@direct3d@Concurrency@@QAAAAV012@$$QAV012@@Z

??8_Event@details@Concurrency@@QBA_NABV012@@Z

??8accelerator@Concurrency@@QBA_NABV01@@Z

??8accelerator_view@Concurrency@@QBA_NABV01@@Z

??9_Event@details@Concurrency@@QBA_NABV012@@Z

??9accelerator@Concurrency@@QBA_NABV01@@Z

??9accelerator_view@Concurrency@@QBA_NABV01@@Z

?_Add_continuation@_Event@details@Concurrency@@QAA?AV123@ABV?$function@$$A6A?AV_Event@details@Concurrency@@XZ@std@@@Z

?_Add_event@_Event@details@Concurrency@@QAA?AV123@V123@@Z

?_Adopt_texture@_Texture@details@Concurrency@@SAPAV123@IW4_Short_vector_base_type_id@23@PAUIUnknown@@Vaccelerator_view@3@I@Z

?_Clone_texture@_Texture@details@Concurrency@@SAPAV123@PBV123@ABVaccelerator_view@3@1@Z

?_Copy_async_impl@details@Concurrency@@YA?AV_Event@12@PAV_Texture@12@PBII01I11@Z

?_Copy_impl@details@Concurrency@@YA?AV_Event@12@PAV_Buffer@12@I0III@Z

?_Copy_impl@details@Concurrency@@YA?AV_Event@12@PAV_Buffer@12@V?$_Reference_counted_obj_ptr@V_View_shape@details@Concurrency@@@12@01@Z

?_Copy_to_async@_Buffer@details@Concurrency@@QAA?AV_Event@23@PAV123@III@Z

?_Copy_to_async@_Buffer@details@Concurrency@@QAA?AV_Event@23@PAV123@V?$_Reference_counted_obj_ptr@V_View_shape@details@Concurrency@@@23@1@Z

?_Copy_to_async@_Texture@details@Concurrency@@QAA?AV_Event@23@PAV123@PBI11II@Z

?_Create@_Sampler@details@Concurrency@@SAPAV123@IIMMMM@Z

?_Create@_Sampler@details@Concurrency@@SAPAV123@PAX@Z

?_Create_buffer@_Buffer@details@Concurrency@@SAPAV123@PAXVaccelerator_view@3@II@Z

?_Create_buffer@_Buffer@details@Concurrency@@SAPAV123@Vaccelerator_view@3@0II_NW4access_type@3@@Z

?_Create_stage_buffer@_Buffer@details@Concurrency@@SAPAV123@Vaccelerator_view@3@0II_N@Z

?_Create_stage_texture@_Texture@details@Concurrency@@SAPAV123@Vaccelerator_view@3@0IIIIII_N@Z

?_Create_stage_texture@_Texture@details@Concurrency@@SAPAV123@Vaccelerator_view@3@0IIIIIW4_Short_vector_base_type_id@23@II@Z

?_Create_texture@_Texture@details@Concurrency@@SAPAV123@Vaccelerator_view@3@IIIIIW4_Short_vector_base_type_id@23@II_N@Z

?_Create_ubiquitous_buffer@_Ubiquitous_buffer@details@Concurrency@@SAPAV123@II@Z

?_Create_ubiquitous_buffer@_Ubiquitous_buffer@details@Concurrency@@SAPAV123@V?$_Reference_counted_obj_ptr@V_Buffer@details@Concurrency@@@23@@Z

?_Create_view_shape@_View_shape@details@Concurrency@@SAPAV123@IIPBI00PB_N@Z

?_Discard@_Ubiquitous_buffer@details@Concurrency@@QAAXPAU_Buffer_descriptor@23@@Z

?_Exclusively_owns_data@_Buffer@details@Concurrency@@QAA_NXZ

?_Get@_Event@details@Concurrency@@QAAXXZ

?_Get_CPU_access@_Buffer_descriptor@details@Concurrency@@QBAXW4_Access_mode@@@Z

?_Get_D3D_buffer@_D3D_interop@details@Concurrency@@SAPAUIUnknown@@PAV_Buffer@23@@Z

?_Get_D3D_sampler@_D3D_interop@details@Concurrency@@SAPAUIUnknown@@ABVaccelerator_view@3@PAV_Sampler@23@@Z

?_Get_D3D_sampler_data_ptr@_D3D_interop@details@Concurrency@@SAPAXPAUIUnknown@@@Z

?_Get_D3D_texture@_D3D_interop@details@Concurrency@@SAPAUIUnknown@@PAV_Texture@23@@Z

?_Get_accelerator_view@_Buffer@details@Concurrency@@QBA?AVaccelerator_view@3@XZ

?_Get_access_async@_Ubiquitous_buffer@details@Concurrency@@AAA?AV_Event@23@PAU_Buffer_descriptor@23@Vaccelerator_view@3@W4_Access_mode@@AAV?$_Reference_counted_obj_ptr@V_Buffer@details@Concurrency@@@23@PA_K@Z

?_Get_access_async@_Ubiquitous_buffer@details@Concurrency@@QAA?AV_Event@23@PAU_Buffer_descriptor@23@V?$_Reference_counted_obj_ptr@V_Accelerator_view_impl@details@Concurrency@@@23@W4_Access_mode@@AAV?$_Reference_counted_obj_ptr@V_Buffer@details@Concurrency@@@23@PA_K@Z

?_Get_access_on_accelerator_view@_Buffer@details@Concurrency@@QBA?AVaccelerator_view@3@XZ

?_Get_amp_trace@details@Concurrency@@YAPAV_Amp_runtime_trace@12@XZ

?_Get_description@accelerator@Concurrency@@ABAPB_WXZ

?_Get_device_path@accelerator@Concurrency@@ABAPB_WXZ

?_Get_devices@details@Concurrency@@YAPAV?$_Reference_counted_obj_ptr@V_Accelerator_impl@details@Concurrency@@@12@XZ

?_Get_master_accelerator_view@_Ubiquitous_buffer@details@Concurrency@@QBA?AVaccelerator_view@3@XZ

?_Get_master_buffer@_Ubiquitous_buffer@details@Concurrency@@QBA?AV?$_Reference_counted_obj_ptr@V_Buffer@details@Concurrency@@@23@XZ

?_Get_num_devices@details@Concurrency@@YAIXZ

?_Get_preferred_copy_chunk_size@details@Concurrency@@YAII@Z

?_Get_recommended_buffer_host_access_mode@details@Concurrency@@YA?AW4_Access_mode@@ABVaccelerator_view@2@@Z

?_Get_reduced_shape_for_copy@_View_shape@details@Concurrency@@QAAPAV123@XZ

?_Get_src_dest_accelerator_view@details@Concurrency@@YA?AU?$pair@Vaccelerator_view@Concurrency@@V12@@std@@PBU_Buffer_descriptor@12@0@Z

?_Get_temp_staging_buffer@_Buffer@details@Concurrency@@SAPAV123@Vaccelerator_view@3@II@Z

?_Get_temp_staging_texture@_Texture@details@Concurrency@@SAPAV123@Vaccelerator_view@3@IIIIII@Z

?_Get_view_shape@_Ubiquitous_buffer@details@Concurrency@@QAA?AV?$_Reference_counted_obj_ptr@V_View_shape@details@Concurrency@@@23@PAU_Buffer_descriptor@23@@Z

?_Init@accelerator@Concurrency@@AAAXPB_W@Z

?_Is_D3D_accelerator_view@details@Concurrency@@YA_NABVaccelerator_view@2@@Z

?_Is_empty@_Event@details@Concurrency@@QBA_NXZ

?_Is_finished@_Event@details@Concurrency@@QAA_NXZ

?_Is_finished_nothrow@_Event@details@Concurrency@@QAA_NXZ

?_Is_mappable@_Buffer@details@Concurrency@@QBA_NXZ

?_Launch_array_view_synchronize_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Buffer_descriptor@23@@Z

?_Launch_async_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAK$$TABU_Buffer_descriptor@23@_K@Z

?_Launch_async_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAK$$TABU_Texture_descriptor@23@_K@Z

?_Launch_async_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Buffer_descriptor@23@$$T_K@Z

?_Launch_async_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Buffer_descriptor@23@0_K@Z

?_Launch_async_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Texture_descriptor@23@$$T_K@Z

?_Launch_async_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Texture_descriptor@23@0_K@Z

?_Map_buffer@_Buffer@details@Concurrency@@QAAXW4_Access_mode@@_N@Z

?_Map_buffer_async@_Buffer@details@Concurrency@@QAA?AV_Event@23@W4_Access_mode@@@Z

?_Recursive_array_copy@details@Concurrency@@YAJABU_Array_copy_desc@12@IV?$function@$$A6AJABU_Array_copy_desc@details@Concurrency@@@Z@std@@@Z

?_Register_async_event@details@Concurrency@@YAXABV_Event@12@ABV?$shared_future@X@std@@@Z

?_Register_view@_Buffer@details@Concurrency@@QAAXPAU_Buffer_descriptor@23@@Z

?_Register_view@_Ubiquitous_buffer@details@Concurrency@@QAAXPAU_Buffer_descriptor@23@Vaccelerator_view@3@V?$_Reference_counted_obj_ptr@V_View_shape@details@Concurrency@@@23@QAU423@@Z

?_Register_view_copy@_Ubiquitous_buffer@details@Concurrency@@QAAXPAU_Buffer_descriptor@23@0@Z

?_Release@_Reference_counter@details@Concurrency@@QAAXXZ

?_Release_D3D_sampler_data_ptr@_D3D_interop@details@Concurrency@@SAXPAX@Z

?_Select_copy_src_accelerator_view@details@Concurrency@@YA?AVaccelerator_view@2@PAU_Buffer_descriptor@12@ABV32@@Z

?_Select_default_accelerator@details@Concurrency@@YA?AVaccelerator@2@XZ

?_Set_default_accelerator@details@Concurrency@@YA_NV?$_Reference_counted_obj_ptr@V_Accelerator_impl@details@Concurrency@@@12@@Z

?_Start_array_view_synchronize_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Buffer_descriptor@23@@Z

?_Start_async_op_wait_event@_Amp_runtime_trace@details@Concurrency@@AAAKK@Z

?_Start_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAK$$TABU_Buffer_descriptor@23@_K@Z

?_Start_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAK$$TABU_Texture_descriptor@23@_K@Z

?_Start_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Buffer_descriptor@23@$$T_K@Z

?_Start_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Buffer_descriptor@23@0_K@Z

?_Start_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Texture_descriptor@23@$$T_K@Z

?_Start_copy_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKABU_Texture_descriptor@23@0_K@Z

?_Start_parallel_for_each_event_helper@_Amp_runtime_trace@details@Concurrency@@QAAKPAU_DPC_call_handle@23@@Z

?_Unmap_buffer@_Buffer@details@Concurrency@@QAAXXZ

?_Unregister_view@_Buffer@details@Concurrency@@QAAXPAU_Buffer_descriptor@23@@Z

?_Unregister_view@_Ubiquitous_buffer@details@Concurrency@@QAAXPAU_Buffer_descriptor@23@@Z

?_Write_end_event@_Amp_runtime_trace@details@Concurrency@@QAAXK@Z

?amp_uninitialize@Concurrency@@YAXXZ

?cpu_accelerator@accelerator@Concurrency@@2QB_WB

?create_accelerator_view@direct3d@Concurrency@@YA?AVaccelerator_view@2@AAVaccelerator@2@_NW4queuing_mode@2@@Z

?create_accelerator_view@direct3d@Concurrency@@YA?AVaccelerator_view@2@PAUIUnknown@@W4queuing_mode@2@@Z

?create_marker@accelerator_view@Concurrency@@QAA?AVcompletion_future@2@XZ

?create_view@accelerator@Concurrency@@QAA?AVaccelerator_view@2@W4queuing_mode@2@@Z

?d3d_access_lock@direct3d@Concurrency@@YAXAAVaccelerator_view@2@@Z

?d3d_access_try_lock@direct3d@Concurrency@@YA_NAAVaccelerator_view@2@@Z

?d3d_access_unlock@direct3d@Concurrency@@YAXAAVaccelerator_view@2@@Z

?default_accelerator@accelerator@Concurrency@@2QB_WB

?direct3d_ref@accelerator@Concurrency@@2QB_WB

?direct3d_warp@accelerator@Concurrency@@2QB_WB

?flush@accelerator_view@Concurrency@@QAAXXZ

?get_accelerator@accelerator_view@Concurrency@@QBA?AVaccelerator@2@XZ

?get_auto_selection_view@accelerator@Concurrency@@SA?AVaccelerator_view@2@XZ

?get_dedicated_memory@accelerator@Concurrency@@QBAIXZ

?get_default_cpu_access_type@accelerator@Concurrency@@QBA?AW4access_type@2@XZ

?get_default_view@accelerator@Concurrency@@QBA?AVaccelerator_view@2@XZ

?get_device@direct3d@Concurrency@@YAPAUIUnknown@@ABVaccelerator_view@2@@Z

?get_error_code@runtime_exception@Concurrency@@QBAJXZ

?get_has_display@accelerator@Concurrency@@QBA_NXZ

?get_is_auto_selection@accelerator_view@Concurrency@@QBA_NXZ

?get_is_debug@accelerator@Concurrency@@QBA_NXZ

?get_is_debug@accelerator_view@Concurrency@@QBA_NXZ

?get_is_emulated@accelerator@Concurrency@@QBA_NXZ

?get_queuing_mode@accelerator_view@Concurrency@@QBA?AW4queuing_mode@2@XZ

?get_supports_cpu_shared_memory@accelerator@Concurrency@@QBA_NXZ

?get_supports_double_precision@accelerator@Concurrency@@QBA_NXZ

?get_supports_limited_double_precision@accelerator@Concurrency@@QBA_NXZ

?get_version@accelerator@Concurrency@@QBAIXZ

?get_version@accelerator_view@Concurrency@@QBAIXZ

?get_view_removed_reason@accelerator_view_removed@Concurrency@@QBAJXZ

?is_timeout_disabled@direct3d@Concurrency@@YA_NABVaccelerator_view@2@@Z

?set_default_cpu_access_type@accelerator@Concurrency@@QAA_NW4access_type@2@@Z

?wait@accelerator_view@Concurrency@@QAAXXZ

__dpc_create_call_handle

__dpc_dispatch_kernel

__dpc_release_call_handle

__dpc_set_const_buffer_info

__dpc_set_device_resource_info

__dpc_set_kernel_dispatch_info

__dpc_set_kernel_shader_info

Sections

.text
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

vccorlib140_app.dll

.dll windows:6 windows

f4a4514492c26f03714661c40906367b

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

f9:bf:d5:32:66:3d:db:22:51:3e:1c:9e:78:d4:98:73:31:fe:46:2c:d7:e1:e3:6f:69:ca:0f:36:4e:00:92:83
Signer

Actual PE Digest

f9:bf:d5:32:66:3d:db:22:51:3e:1c:9e:78:d4:98:73:31:fe:46:2c:d7:e1:e3:6f:69:ca:0f:36:4e:00:92:83

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\vccorlib140_app.arm.pdb

Imports

vcruntime140_app

__GetPlatformExceptionInfo

_SetWinRTOutOfMemoryExceptionCallback

__current_exception

__current_exception_context

__C_specific_handler

__std_exception_destroy

__std_type_info_destroy_list

__std_terminate

memset

memmove

memcpy

memcmp

__std_exception_copy

_purecall

_CxxThrowException

__CxxFrameHandler3

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vswprintf_s

__stdio_common_vfprintf

__acrt_iob_func

api-ms-win-crt-heap-l1-1-0

free

_aligned_free

_callnewh

malloc

_aligned_offset_malloc

api-ms-win-crt-string-l1-1-0

wcscmp

wcslen

wcscpy_s

api-ms-win-crt-runtime-l1-1-0

_register_onexit_function

_crt_atexit

_initialize_onexit_table

_initialize_narrow_environment

_configure_narrow_argv

_seh_filter_dll

terminate

_cexit

_initterm

_configure_wide_argv

_initterm_e

__p___argc

__p___wargv

_invoke_watson

_execute_onexit_table

msvcp140_app

?_Xlength_error@std@@YAXPBD@Z

api-ms-win-core-winrt-string-l1-1-0

WindowsIsStringEmpty

WindowsCompareStringOrdinal

WindowsGetStringRawBuffer

WindowsCreateString

WindowsGetStringLen

WindowsStringHasEmbeddedNull

WindowsCreateStringReference

WindowsDeleteString

WindowsDuplicateString

api-ms-win-core-com-l1-1-1

CoMarshalInterThreadInterfaceInStream

CoTaskMemAlloc

CoCreateFreeThreadedMarshaler

CoGetObjectContext

CoTaskMemFree

CoGetInterfaceAndReleaseStream

CoGetContextToken

CoGetApartmentType

api-ms-win-core-winrt-error-l1-1-1

SetRestrictedErrorInfo

RoTransformError

RoOriginateError

RoOriginateLanguageException

GetRestrictedErrorInfo

api-ms-win-core-errorhandling-l1-1-1

RaiseException

GetLastError

api-ms-win-core-synch-l1-2-0

LeaveCriticalSection

InitializeSRWLock

InitializeCriticalSectionEx

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

ReleaseSRWLockShared

AcquireSRWLockShared

DeleteCriticalSection

EnterCriticalSection

TryAcquireSRWLockShared

oleaut32

SysFreeString

SysAllocStringLen

api-ms-win-core-localization-l1-2-1

FormatMessageW

api-ms-win-core-heap-l1-2-0

HeapAlloc

HeapFree

GetProcessHeap

api-ms-win-core-debug-l1-1-1

OutputDebugStringW

api-ms-win-core-util-l1-1-0

DecodePointer

api-ms-win-core-winrt-l1-1-0

RoGetApartmentIdentifier

RoRegisterForApartmentShutdown

RoInitialize

RoUninitialize

RoUnregisterForApartmentShutdown

RoGetActivationFactory

api-ms-win-core-processthreads-l1-1-2

GetCurrentProcessId

GetCurrentThreadId

IsProcessorFeaturePresent

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-sysinfo-l1-2-1

GetSystemTimeAsFileTime

api-ms-win-core-libraryloader-l1-2-0

DisableThreadLibraryCalls

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

api-ms-win-crt-math-l1-1-0

ceilf

Exports

?<Dispose>@Exception@Platform@@U$AAAXXZ

?<Dispose>@String@Platform@@U$AAAXXZ

?<Dispose>@Type@Platform@@U$AAAXXZ

??0AccessDeniedException@Platform@@Q$AAA@P$AAVString@1@@Z

??0AccessDeniedException@Platform@@Q$AAA@XZ

??0Attribute@Metadata@Platform@@Q$AAA@XZ

??0Boolean@Platform@@QAA@_N@Z

??0COMException@Platform@@Q$AAA@H@Z

??0COMException@Platform@@Q$AAA@HP$AAVString@1@@Z

??0ChangedStateException@Platform@@Q$AAA@P$AAVString@1@@Z

??0ChangedStateException@Platform@@Q$AAA@XZ

??0ClassNotRegisteredException@Platform@@Q$AAA@P$AAVString@1@@Z

??0ClassNotRegisteredException@Platform@@Q$AAA@XZ

??0Delegate@Platform@@Q$AAA@XZ

??0DisconnectedException@Platform@@Q$AAA@P$AAVString@1@@Z

??0DisconnectedException@Platform@@Q$AAA@XZ

??0Enum@Platform@@Q$AAA@XZ

??0Exception@Platform@@Q$AAA@H@Z

??0Exception@Platform@@Q$AAA@HP$AAVString@1@@Z

??0FailureException@Platform@@Q$AAA@P$AAVString@1@@Z

??0FailureException@Platform@@Q$AAA@XZ

??0GridLength@Xaml@UI@Windows@@QAA@NW4GridUnitType@123@@Z

??0IntPtr@Platform@@QAA@H@Z

??0IntPtr@Platform@@QAA@PAX@Z

??0InvalidArgumentException@Platform@@Q$AAA@P$AAVString@1@@Z

??0InvalidArgumentException@Platform@@Q$AAA@XZ

??0InvalidCastException@Platform@@Q$AAA@P$AAVString@1@@Z

??0InvalidCastException@Platform@@Q$AAA@XZ

??0MTAThreadAttribute@Platform@@Q$AAA@XZ

??0NotImplementedException@Platform@@Q$AAA@P$AAVString@1@@Z

??0NotImplementedException@Platform@@Q$AAA@XZ

??0NullReferenceException@Platform@@Q$AAA@P$AAVString@1@@Z

??0NullReferenceException@Platform@@Q$AAA@XZ

??0Object@Platform@@Q$AAA@XZ

??0ObjectDisposedException@Platform@@Q$AAA@P$AAVString@1@@Z

??0ObjectDisposedException@Platform@@Q$AAA@XZ

??0OnePhaseConstructedAttribute@CompilerServices@Runtime@Platform@@Q$AAA@XZ

??0OperationCanceledException@Platform@@Q$AAA@P$AAVString@1@@Z

??0OperationCanceledException@Platform@@Q$AAA@XZ

??0OutOfBoundsException@Platform@@Q$AAA@P$AAVString@1@@Z

??0OutOfBoundsException@Platform@@Q$AAA@XZ

??0OutOfMemoryException@Platform@@Q$AAA@P$AAVString@1@@Z

??0OutOfMemoryException@Platform@@Q$AAA@XZ

??0Rect@Foundation@Windows@@QAA@VPoint@12@0@Z

??0Rect@Foundation@Windows@@QAA@VPoint@12@VSize@12@@Z

??0RepeatBehavior@Animation@Media@Xaml@UI@Windows@@QAA@N@Z

??0STAThreadAttribute@Platform@@Q$AAA@XZ

??0SizeT@Platform@@QAA@H@Z

??0SizeT@Platform@@QAA@PAX@Z

??0Type@Platform@@Q$AAA@P$AAVObject@1@@Z

??0Type@Platform@@Q$AAA@VIntPtr@1@@Z

??0Type@Platform@@Q$AAA@VTypeName@Interop@Xaml@UI@Windows@@@Z

??0ValueType@Platform@@Q$AAA@XZ

??0WrongThreadException@Platform@@Q$AAA@P$AAVString@1@@Z

??0WrongThreadException@Platform@@Q$AAA@XZ

??0char16@default@@QAA@_W@Z

??0float32@default@@QAA@M@Z

??0float64@default@@QAA@N@Z

??0int16@default@@QAA@F@Z

??0int32@default@@QAA@H@Z

??0int64@default@@QAA@_J@Z

??0int8@default@@QAA@C@Z

??0uint16@default@@QAA@G@Z

??0uint32@default@@QAA@I@Z

??0uint64@default@@QAA@_K@Z

??0uint8@default@@QAA@E@Z

??BIntPtr@Platform@@SA?AV01@H@Z

??BIntPtr@Platform@@SA?AV01@PAX@Z

??BIntPtr@Platform@@SAPAXV01@@Z

??BType@Platform@@SA?AVTypeName@Interop@Xaml@UI@Windows@@P$AAV01@@Z

??BType@Platform@@SAP$AAV01@VTypeName@Interop@Xaml@UI@Windows@@@Z

??DMatrix3D@Media3D@Media@Xaml@UI@Windows@@SA?AV012345@V012345@0@Z

??GDuration@Xaml@UI@Windows@@SA?AV0123@V0123@0@Z

??HDuration@Xaml@UI@Windows@@SA?AV0123@V0123@0@Z

??MDuration@Xaml@UI@Windows@@SA_NV0123@0@Z

??NDuration@Xaml@UI@Windows@@SA_NV0123@0@Z

??ODuration@Xaml@UI@Windows@@SA_NV0123@0@Z

??PDuration@Xaml@UI@Windows@@SA_NV0123@0@Z

?AlignedAllocate@Heap@Details@Platform@@SAPAXII@Z

?AlignedAllocate@Heap@Details@Platform@@SAPAXIII@Z

?AlignedAllocateException@Heap@Details@Platform@@SAPAXII@Z

?AlignedAllocateException@Heap@Details@Platform@@SAPAXIII@Z

?AlignedFree@Heap@Details@Platform@@SAXPAX@Z

?AlignedFreeException@Heap@Details@Platform@@SAXPAX@Z

?Allocate@Heap@Details@Platform@@SAPAXI@Z

?Allocate@Heap@Details@Platform@@SAPAXII@Z

?AllocateException@Heap@Details@Platform@@SAPAXI@Z

?AllocateException@Heap@Details@Platform@@SAPAXII@Z

?Compare@Duration@Xaml@UI@Windows@@SAHV1234@0@Z

?Contains@Rect@Foundation@Windows@@QAA_NVPoint@23@@Z

?CreateException@Exception@Platform@@SAP$AAV12@H@Z

?CreateException@Exception@Platform@@SAP$AAV12@HP$AAVString@2@@Z

?CreateValue@Details@Platform@@YAP$AAVObject@2@W4TypeCode@2@PBX@Z

?EnableFactoryCache@@YAXXZ

?EnumerateAllocatedObjects@Heap@Details@Platform@@SAXP$AAVHeapEntryHandler@23@@Z

?Equals@Attribute@Metadata@Platform@@Q$AAA_NP$AAVObject@3@@Z

?Equals@Boolean@Platform@@QAA_NP$AAVObject@2@@Z

?Equals@Delegate@Platform@@Q$AAA_NP$AAVObject@2@@Z

?Equals@Enum@Platform@@Q$AAA_NP$AAVObject@2@@Z

?Equals@Exception@Platform@@U$AAA_NP$AAVObject@2@@Z

?Equals@MTAThreadAttribute@Platform@@Q$AAA_NP$AAVObject@2@@Z

?Equals@Object@Platform@@Q$AAA_NP$AAV12@@Z

?Equals@OnePhaseConstructedAttribute@CompilerServices@Runtime@Platform@@Q$AAA_NP$AAVObject@4@@Z

?Equals@STAThreadAttribute@Platform@@Q$AAA_NP$AAVObject@2@@Z

?Equals@Type@Platform@@U$AAA_NP$AAVObject@2@@Z

?Equals@ValueType@Platform@@Q$AAA_NP$AAVObject@2@@Z

?Equals@char16@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@float32@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@float64@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@int16@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@int32@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@int64@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@int8@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@uint16@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@uint32@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@uint64@default@@QAA_NP$AAVObject@Platform@@@Z

?Equals@uint8@default@@QAA_NP$AAVObject@Platform@@@Z

?EventSourceAdd@Details@Platform@@YA?AVEventRegistrationToken@Foundation@Windows@@PAPAXPAUEventLock@12@P$AAVDelegate@2@@Z

?EventSourceGetTargetArray@Details@Platform@@YAPAXPAXPAUEventLock@12@@Z

?EventSourceGetTargetArrayEvent@Details@Platform@@YAPAXPAXIPBXPA_J@Z

?EventSourceGetTargetArraySize@Details@Platform@@YAIPAX@Z

?EventSourceInitialize@Details@Platform@@YAXPAPAX@Z

?EventSourceRemove@Details@Platform@@YAXPAPAXPAUEventLock@12@VEventRegistrationToken@Foundation@Windows@@@Z

?EventSourceUninitialize@Details@Platform@@YAXPAPAX@Z

?FlushFactoryCache@@YAXXZ

?Free@Heap@Details@Platform@@SAXPAX@Z

?FreeException@Heap@Details@Platform@@SAXPAX@Z

?GetActivationFactory@Details@Platform@@YAJPAVModuleBase@1WRL@Microsoft@@PAUHSTRING__@@PAPAUIActivationFactory@@@Z

?GetActivationFactoryByPCWSTR@@YAJPAXAAVGuid@Platform@@PAPAX@Z

?GetCmdArguments@Details@Platform@@YAPAPA_WPAH@Z

?GetHashCode@Attribute@Metadata@Platform@@Q$AAAHXZ

?GetHashCode@Boolean@Platform@@QAAHXZ

?GetHashCode@Delegate@Platform@@Q$AAAHXZ

?GetHashCode@Enum@Platform@@Q$AAAHXZ

?GetHashCode@Exception@Platform@@U$AAAHXZ

?GetHashCode@Guid@Platform@@QAAHXZ

?GetHashCode@MTAThreadAttribute@Platform@@Q$AAAHXZ

?GetHashCode@Object@Platform@@Q$AAAHXZ

?GetHashCode@OnePhaseConstructedAttribute@CompilerServices@Runtime@Platform@@Q$AAAHXZ

?GetHashCode@STAThreadAttribute@Platform@@Q$AAAHXZ

?GetHashCode@Type@Platform@@U$AAAHXZ

?GetHashCode@ValueType@Platform@@Q$AAAHXZ

?GetHashCode@char16@default@@QAAHXZ

?GetHashCode@float32@default@@QAAHXZ

?GetHashCode@float64@default@@QAAHXZ

?GetHashCode@int16@default@@QAAHXZ

?GetHashCode@int32@default@@QAAHXZ

?GetHashCode@int64@default@@QAAHXZ

?GetHashCode@int8@default@@QAAHXZ

?GetHashCode@uint16@default@@QAAHXZ

?GetHashCode@uint32@default@@QAAHXZ

?GetHashCode@uint64@default@@QAAHXZ

?GetHashCode@uint8@default@@QAAHXZ

?GetIBoxArrayVtable@Details@Platform@@YAPAXPAX@Z

?GetIBoxVtable@Details@Platform@@YAPAXPAX@Z

?GetIidsFn@@YAJHPAKPBU__s_GUID@@PAPAVGuid@Platform@@@Z

?GetObjectContext@Details@Platform@@YAPAUIUnknown@@XZ

?GetProxyImpl@Details@Platform@@YAJPAUIUnknown@@ABU_GUID@@0PAPAU3@@Z

?GetType@Boolean@Platform@@QAAP$AAVType@2@XZ

?GetType@Guid@Platform@@QAAP$AAVType@2@XZ

?GetType@Object@Platform@@Q$AAAP$AAVType@2@XZ

?GetType@char16@default@@QAAP$AAVType@Platform@@XZ

?GetType@float32@default@@QAAP$AAVType@Platform@@XZ

?GetType@float64@default@@QAAP$AAVType@Platform@@XZ

?GetType@int16@default@@QAAP$AAVType@Platform@@XZ

?GetType@int32@default@@QAAP$AAVType@Platform@@XZ

?GetType@int64@default@@QAAP$AAVType@Platform@@XZ

?GetType@int8@default@@QAAP$AAVType@Platform@@XZ

?GetType@uint16@default@@QAAP$AAVType@Platform@@XZ

?GetType@uint32@default@@QAAP$AAVType@Platform@@XZ

?GetType@uint64@default@@QAAP$AAVType@Platform@@XZ

?GetType@uint8@default@@QAAP$AAVType@Platform@@XZ

?GetTypeCode@Type@Platform@@SA?AW4TypeCode@2@P$AAV12@@Z

?GetWeakReference@Details@Platform@@YAPAU__abi_IUnknown@@Q$ADVObject@2@@Z

?InitControlBlock@ControlBlock@Details@Platform@@AAAXPAX_N11@Z

?InitializeData@Details@Platform@@YAJH@Z

?Intersect@Rect@Foundation@Windows@@QAAXV123@@Z

?IntersectsWith@Rect@Foundation@Windows@@QAA_NV123@@Z

?Invert@Matrix3D@Media3D@Media@Xaml@UI@Windows@@QAAXXZ

?ReCreateException@Exception@Platform@@SAP$AAV12@H@Z

?ReferenceEquals@Object@Platform@@SA_NP$AAV12@0@Z

?ReferenceEquals@Object@Platform@@SA_NP$AAVString@2@0@Z

?RegisterFactories@Details@Platform@@YAP$AAVObject@2@PAPAVModuleBase@1WRL@Microsoft@@PAPAU__abi_Module@@P6AXXZ@Z

?ReleaseInContextImpl@Details@Platform@@YAJPAUIUnknown@@0@Z

?ReleaseTarget@ControlBlock@Details@Platform@@AAAXXZ

?ResolveWeakReference@Details@Platform@@YAP$AAVObject@2@ABU_GUID@@PAPAU__abi_IUnknown@@@Z

?RunApplicationServer@Details@Platform@@YAXPAPAVModuleBase@1WRL@Microsoft@@PAPAU__abi_Module@@PB_W@Z

?RunServer@Details@Platform@@YAXPAPAVModuleBase@1WRL@Microsoft@@PAPAU__abi_Module@@PB_W@Z

?TerminateModule@Details@Platform@@YA_NPAVModuleBase@1WRL@Microsoft@@@Z

?ToInt32@IntPtr@Platform@@QAAHXZ

?ToString@Attribute@Metadata@Platform@@Q$AAAP$AAVString@3@XZ

?ToString@Boolean@Platform@@QAAP$AAVString@2@XZ

?ToString@Delegate@Platform@@Q$AAAP$AAVString@2@XZ

?ToString@Enum@Platform@@Q$AAAP$AAVString@2@XZ

?ToString@Exception@Platform@@U$AAAP$AAVString@2@XZ

?ToString@Guid@Platform@@QAAP$AAVString@2@XZ

?ToString@MTAThreadAttribute@Platform@@Q$AAAP$AAVString@2@XZ

?ToString@OnePhaseConstructedAttribute@CompilerServices@Runtime@Platform@@Q$AAAP$AAVString@4@XZ

?ToString@STAThreadAttribute@Platform@@Q$AAAP$AAVString@2@XZ

?ToString@Type@Platform@@U$AAAP$AAVString@2@XZ

?ToString@ValueType@Platform@@Q$AAAP$AAVString@2@XZ

?ToString@char16@default@@QAAP$AAVString@Platform@@XZ

?ToString@float32@default@@QAAP$AAVString@Platform@@XZ

?ToString@float64@default@@QAAP$AAVString@Platform@@XZ

?ToString@int16@default@@QAAP$AAVString@Platform@@XZ

?ToString@int32@default@@QAAP$AAVString@Platform@@XZ

?ToString@int64@default@@QAAP$AAVString@Platform@@XZ

?ToString@int8@default@@QAAP$AAVString@Platform@@XZ

?ToString@uint16@default@@QAAP$AAVString@Platform@@XZ

?ToString@uint32@default@@QAAP$AAVString@Platform@@XZ

?ToString@uint64@default@@QAAP$AAVString@Platform@@XZ

?ToString@uint8@default@@QAAP$AAVString@Platform@@XZ

?UninitializeData@Details@Platform@@YAXH@Z

?Union@Rect@Foundation@Windows@@QAAXV123@@Z

?Union@Rect@Foundation@Windows@@QAAXVPoint@23@@Z

?WriteLine@Console@Details@Platform@@SAXP$AAVObject@3@@Z

?WriteLine@Console@Details@Platform@@SAXP$AAVString@3@@Z

?WriteLine@Console@Details@Platform@@SAXXZ

?__abi_FailFast@@YAXXZ

?__abi_ObjectToString@__abi_details@@YAP$AAVString@Platform@@P$AAVObject@3@_N@Z

?__abi_Resolve@ControlBlock@Details@Platform@@UAAJAAVGuid@3@PAPAU__abi_IInspectable@@@Z

?__abi_WinRTraiseAccessDeniedException@@YAXXZ

?__abi_WinRTraiseCOMException@@YAXJ@Z

?__abi_WinRTraiseChangedStateException@@YAXXZ

?__abi_WinRTraiseClassNotRegisteredException@@YAXXZ

?__abi_WinRTraiseDisconnectedException@@YAXXZ

?__abi_WinRTraiseFailureException@@YAXXZ

?__abi_WinRTraiseInvalidArgumentException@@YAXXZ

?__abi_WinRTraiseInvalidCastException@@YAXXZ

?__abi_WinRTraiseNotImplementedException@@YAXXZ

?__abi_WinRTraiseNullReferenceException@@YAXXZ

?__abi_WinRTraiseObjectDisposedException@@YAXXZ

?__abi_WinRTraiseOperationCanceledException@@YAXXZ

?__abi_WinRTraiseOutOfBoundsException@@YAXXZ

?__abi_WinRTraiseOutOfMemoryException@@YAXXZ

?__abi_WinRTraiseWrongThreadException@@YAXXZ

?__abi_cast_Object_to_String@__abi_details@@YAP$AAVString@Platform@@_NP$AAVObject@3@@Z

?__abi_cast_String_to_Object@__abi_details@@YAP$AAVObject@Platform@@P$AAVString@3@@Z

?__abi_make_type_id@@YAP$AAVType@Platform@@ABU__abi_type_descriptor@@@Z

?__abi_translateCurrentException@@YAJ_N@Z

?__getActivationFactoryByHSTRING@@YAJPAUHSTRING__@@AAVGuid@Platform@@PAPAX@Z

?get@Bottom@Rect@Foundation@Windows@@QAAMXZ

?get@BreakOnAllocationId@Heap@Details@Platform@@SAHXZ

?get@BreakOnFreeId@Heap@Details@Platform@@SAHXZ

?get@CurrentAllocationId@Heap@Details@Platform@@SAHXZ

?get@Empty@Rect@Foundation@Windows@@SA?AV234@XZ

?get@Empty@Size@Foundation@Windows@@SA?AV234@XZ

?get@FullName@Type@Platform@@Q$AAAP$AAVString@3@XZ

?get@HasInverse@Matrix3D@Media3D@Media@Xaml@UI@Windows@@QAA_NXZ

?get@Message@Exception@Platform@@Q$AAAP$AAVString@3@XZ

?get@ObjectCount@Heap@Details@Platform@@SAHXZ

?get@Right@Rect@Foundation@Windows@@QAAMXZ

?get@TrackingLevel@Heap@Details@Platform@@SA?AW4HeapAllocationTrackingLevel@34@XZ

?set@BreakOnAllocationId@Heap@Details@Platform@@SAXH@Z

?set@BreakOnFreeId@Heap@Details@Platform@@SAXH@Z

?set@TrackingLevel@Heap@Details@Platform@@SAXW4HeapAllocationTrackingLevel@34@@Z

Sections

.text
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

vcomp140_app.dll

.dll windows:6 windows

d7129c53097bb6737a67d1ecd2d11912

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

c9:77:51:fe:7f:d4:5f:f7:8e:bd:eb:c0:8e:73:b7:48:92:50:bb:1f:03:f8:69:91:dc:6f:8b:aa:98:f6:db:7a
Signer

Actual PE Digest

c9:77:51:fe:7f:d4:5f:f7:8e:bd:eb:c0:8e:73:b7:48:92:50:bb:1f:03:f8:69:91:dc:6f:8b:aa:98:f6:db:7a

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\\vcomp140_app.arm.pdb

Imports

vcruntime140_app

__std_exception_copy

__std_exception_destroy

_CxxThrowException

memset

memcpy

__C_specific_handler

api-ms-win-crt-runtime-l1-1-0

abort

api-ms-win-crt-heap-l1-1-0

_callnewh

malloc

free

api-ms-win-core-heap-l1-2-0

HeapAlloc

GetProcessHeap

HeapFree

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-synch-l1-2-0

DeleteCriticalSection

WaitForSingleObjectEx

TryEnterCriticalSection

LeaveCriticalSection

SetEvent

EnterCriticalSection

ResetEvent

Sleep

CreateEventExW

WaitOnAddress

WakeByAddressAll

InitializeCriticalSectionEx

api-ms-win-core-profile-l1-1-0

QueryPerformanceFrequency

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-2

GetCurrentThreadId

CreateThread

GetCurrentProcessId

api-ms-win-core-sysinfo-l1-2-1

GetTickCount64

GetNativeSystemInfo

GetSystemTimeAsFileTime

api-ms-win-core-fibers-l1-1-1

FlsGetValue

FlsSetValue

FlsFree

FlsAlloc

api-ms-win-core-threadpool-l1-2-0

CreateThreadpoolWork

SubmitThreadpoolWork

CallbackMayRunLong

CloseThreadpoolWork

api-ms-win-core-errorhandling-l1-1-1

RaiseException

Exports

C2VectParallel

_vcomp_atomic_add_i1

_vcomp_atomic_add_i2

_vcomp_atomic_add_i4

_vcomp_atomic_add_i8

_vcomp_atomic_add_r4

_vcomp_atomic_add_r8

_vcomp_atomic_and_i1

_vcomp_atomic_and_i2

_vcomp_atomic_and_i4

_vcomp_atomic_and_i8

_vcomp_atomic_div_i1

_vcomp_atomic_div_i2

_vcomp_atomic_div_i4

_vcomp_atomic_div_i8

_vcomp_atomic_div_r4

_vcomp_atomic_div_r8

_vcomp_atomic_div_ui1

_vcomp_atomic_div_ui2

_vcomp_atomic_div_ui4

_vcomp_atomic_div_ui8

_vcomp_atomic_mul_i1

_vcomp_atomic_mul_i2

_vcomp_atomic_mul_i4

_vcomp_atomic_mul_i8

_vcomp_atomic_mul_r4

_vcomp_atomic_mul_r8

_vcomp_atomic_or_i1

_vcomp_atomic_or_i2

_vcomp_atomic_or_i4

_vcomp_atomic_or_i8

_vcomp_atomic_shl_i1

_vcomp_atomic_shl_i2

_vcomp_atomic_shl_i4

_vcomp_atomic_shl_i8

_vcomp_atomic_shr_i1

_vcomp_atomic_shr_i2

_vcomp_atomic_shr_i4

_vcomp_atomic_shr_i8

_vcomp_atomic_shr_ui1

_vcomp_atomic_shr_ui2

_vcomp_atomic_shr_ui4

_vcomp_atomic_shr_ui8

_vcomp_atomic_sub_i1

_vcomp_atomic_sub_i2

_vcomp_atomic_sub_i4

_vcomp_atomic_sub_i8

_vcomp_atomic_sub_r4

_vcomp_atomic_sub_r8

_vcomp_atomic_xor_i1

_vcomp_atomic_xor_i2

_vcomp_atomic_xor_i4

_vcomp_atomic_xor_i8

_vcomp_barrier

_vcomp_copyprivate_broadcast

_vcomp_copyprivate_receive

_vcomp_enter_critsect

_vcomp_flush

_vcomp_for_dynamic_init

_vcomp_for_dynamic_init_i8

_vcomp_for_dynamic_next

_vcomp_for_dynamic_next_i8

_vcomp_for_static_end

_vcomp_for_static_init

_vcomp_for_static_init_i8

_vcomp_for_static_simple_init

_vcomp_for_static_simple_init_i8

_vcomp_fork

_vcomp_get_thread_num

_vcomp_leave_critsect

_vcomp_master_barrier

_vcomp_master_begin

_vcomp_master_end

_vcomp_ordered_begin

_vcomp_ordered_end

_vcomp_ordered_loop_end

_vcomp_reduction_i1

_vcomp_reduction_i2

_vcomp_reduction_i4

_vcomp_reduction_i8

_vcomp_reduction_r4

_vcomp_reduction_r8

_vcomp_reduction_u1

_vcomp_reduction_u2

_vcomp_reduction_u4

_vcomp_reduction_u8

_vcomp_sections_init

_vcomp_sections_next

_vcomp_set_num_threads

_vcomp_single_begin

_vcomp_single_end

omp_destroy_lock

omp_destroy_nest_lock

omp_get_dynamic

omp_get_max_threads

omp_get_nested

omp_get_num_procs

omp_get_num_threads

omp_get_thread_num

omp_get_wtick

omp_get_wtime

omp_in_parallel

omp_init_lock

omp_init_nest_lock

omp_set_dynamic

omp_set_lock

omp_set_nest_lock

omp_set_nested

omp_set_num_threads

omp_test_lock

omp_test_nest_lock

omp_unset_lock

omp_unset_nest_lock

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 748B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

vcruntime140_app.dll

.dll windows:6 windows

146a883dc413a4635097bc33adde96ad

Code Sign

33:00:00:01:6e:6f:b0:d9:a7:d1:18:aa:7d:00:00:00:00:01:6e
Certificate

Issuer

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 19:25

Not After

03/03/2021, 19:25

Subject

CN=Windows Phone,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:0b:fc:f9:8e:58:4c:15:50:bf:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/07/2012, 22:23

Not After

24/07/2027, 22:33

Subject

CN=Microsoft Windows Phone Production PCA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

13:70:a1:10:e6:3f:21:d7:a7:e4:3e:3d:01:cb:aa:26:75:5d:58:10:a9:61:c9:ac:d7:60:58:21:82:f8:30:52
Signer

Actual PE Digest

13:70:a1:10:e6:3f:21:d7:a7:e4:3e:3d:01:cb:aa:26:75:5d:58:10:a9:61:c9:ac:d7:60:58:21:82:f8:30:52

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

D:\agent\_work\5\s\\binaries\armret\bin\arm\\app\\vcruntime140_app.arm.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

terminate

abort

api-ms-win-crt-string-l1-1-0

strcpy_s

strlen

strcmp

strncmp

api-ms-win-crt-heap-l1-1-0

calloc

malloc

free

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf_s

api-ms-win-crt-convert-l1-1-0

atol

api-ms-win-core-rtlsupport-l1-2-0

RtlPcToFileHeader

RtlLookupFunctionEntry

RtlUnwindEx

api-ms-win-core-util-l1-1-0

EncodePointer

api-ms-win-core-errorhandling-l1-1-1

GetLastError

RaiseException

SetLastError

api-ms-win-core-interlocked-l1-2-0

InterlockedPushEntrySList

InterlockedFlushSList

api-ms-win-core-processthreads-l1-1-2

IsProcessorFeaturePresent

GetCurrentProcessId

GetCurrentThreadId

api-ms-win-core-synch-l1-2-0

EnterCriticalSection

DeleteCriticalSection

LeaveCriticalSection

InitializeCriticalSectionEx

api-ms-win-core-fibers-l1-1-1

FlsSetValue

FlsGetValue

FlsAlloc

FlsFree

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-sysinfo-l1-2-1

GetSystemTimeAsFileTime

Exports

_CreateFrameInfo

_CxxThrowException

_FindAndUnlinkFrame

_IsExceptionObjectToBeDestroyed

_SetWinRTOutOfMemoryExceptionCallback

__AdjustPointer

__BuildCatchObject

__BuildCatchObjectHelper

__C_specific_handler

__C_specific_handler_noexcept

__CxxDetectRethrow

__CxxExceptionFilter

__CxxFrameHandler

__CxxFrameHandler2

__CxxFrameHandler3

__CxxQueryExceptionSize

__CxxRegisterExceptionObject

__CxxUnregisterExceptionObject

__DestructExceptionObject

__FrameUnwindFilter

__GetPlatformExceptionInfo

__NLG_Dispatch2

__NLG_Return2

__RTCastToVoid

__RTDynamicCast

__RTtypeid

__TypeMatch

__current_exception

__current_exception_context

__intrinsic_setjmp

__intrinsic_setjmpex

__jump_unwind

__processing_throw

__report_gsfailure

__std_exception_copy

__std_exception_destroy

__std_terminate

__std_type_info_compare

__std_type_info_destroy_list

__std_type_info_hash

__std_type_info_name

__telemetry_main_invoke_trigger

__telemetry_main_return_trigger

__unDName

__unDNameEx

__uncaught_exception

__uncaught_exceptions

__vcrt_GetModuleFileNameW

__vcrt_GetModuleHandleW

__vcrt_InitializeCriticalSectionEx

__vcrt_LoadLibraryExW

_get_purecall_handler

_get_unexpected

_is_exception_typeof

_purecall

_set_purecall_handler

_set_se_translator

longjmp

memchr

memcmp

memcpy

memmove

memset

set_unexpected

strchr

strrchr

strstr

unexpected

wcschr

wcsrchr

wcsstr

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

genki/GenkiArcade_1.6.14.0/Dependencies/arm64/Microsoft.NET.Native.Framework.2.2.appx

.appx

AppxBlockMap.xml

.xml

AppxManifest.xml

AppxMetadata/CodeIntegrity.cat

AppxSignature.p7x

SharedLibrary.dll

[Content_Types].xml

.xml

logo.png

.png

genki/GenkiArcade_1.6.14.0/Dependencies/arm64/Microsoft.NET.Native.Runtime.2.2.appx

.appx

AppxBlockMap.xml

.xml

AppxManifest.xml

AppxMetadata/CodeIntegrity.cat

AppxSignature.p7x

[Content_Types].xml

.xml

logo.png

.png

mrt100.dll

mrt100_app.dll

mrt_map.dll

genki/GenkiArcade_1.6.14.0/Dependencies/arm64/Microsoft.VCLibs.ARM64.14.00.appx

.appx

AppxBlockMap.xml

.xml

AppxManifest.xml

AppxMetadata/CodeIntegrity.cat

AppxSignature.p7x

[Content_Types].xml

.xml

concrt140_app.dll

logo.png

.png

msvcp140_1_app.dll

msvcp140_2_app.dll

msvcp140_app.dll

msvcp140_atomic_wait_app.dll

msvcp140_codecvt_ids_app.dll

vcamp140_app.dll

vccorlib140_app.dll

vcomp140_app.dll

vcruntime140_app.dll

genki/GenkiArcade_1.6.14.0/Dependencies/x64/Microsoft.NET.Native.Framework.2.2.appx

.appx

AppxBlockMap.xml

.xml

AppxManifest.xml

AppxMetadata/CodeIntegrity.cat

AppxSignature.p7x

SharedLibrary.dll

.dll windows:6 windows x64 arch:x64

b1dcb4ff287abc464287b433470ddff3

Code Sign

33:00:00:01:87:72:17:72:15:59:40:c7:09:00:00:00:00:01:87
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 18:39

Not After

03/03/2021, 18:39

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

c1:b7:b0:c5:74:d8:41:38:59:9d:b9:6e:1b:18:9e:a5:0d:10:78:88:07:c7:7b:85:a9:a8:a1:e6:67:13:79:14
Signer

Actual PE Digest

c1:b7:b0:c5:74:d8:41:38:59:9d:b9:6e:1b:18:9e:a5:0d:10:78:88:07:c7:7b:85:a9:a8:a1:e6:67:13:79:14

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

f:\binaries.amd64ret\ProjectN\TestILC\ExternalFiles\SharedAssemblyPath\ret\Native\SharedLibrary.pdb

Imports

mrt100_app

RhpNewArray

RhpNewFinalizable

RhpNewFast

RhpCheckCctor2

RhTypeCast_CheckArrayStore

RhpAssignRefEDX

RhGetGCSegmentSize

RhpCopyMultibyteWithWriteBarrier

RhpCopyMultibyte

RhpCheckedAssignRefEDX

RhAllocLocal

RhpInitMultibyte

RhpCopyAnyWithWriteBarrier

RhpReversePInvoke

RhpSuppressGcStress

RhpRegisterModule

RhpUnsuppressGcStress

RhpReversePInvokeReturn

RhpPInvokeExceptionGuard

RhMemberwiseClone

RhpThrowEx

RhTypeCast_CheckCastClass

RhTypeCast_CheckCast

RhTypeCast_CheckCastArray

RhTypeCast_IsInstanceOf

RhBoxAny

RhTypeCast_IsInstanceOfInterface

RhpInitialInterfaceDispatch

RhpResolveInterfaceMethod

RhUnboxAny

RhTypeCast_CheckCastInterface

RhpCheckedXchg

RhHandleSetDependentSecondary

RhHandleSet

RhHandleGetDependent

RhTypeCast_CheckVectorElemAddr

RhTypeCast_IsInstanceOfArray

RhpCheckedLockCmpXchg

RhpRethrow

RhTypeCast_IsInstanceOfClass

RhTypeCast_CheckUnbox

__chkstk

RhArrayStoreCheckAny

RhTypeCast_AreTypesEquivalent

RhpGetThread

RhpTrapThreads

RhpWaitForSuspend

RhpWaitForGC

RhGetProcessCpuCount

memmove

RhNewString

RhpArrayCopy

RhTypeCast_AreTypesAssignable

RhUnbox

RhBox

RhNewObject

RhSuppressFinalize

RhSpinWait

RhCompatibleReentrantWaitAny

RhHandleFree

RhpHandleAlloc

RhSetThunkData

RhGetJmpStubCodeTarget

RhGetLoadedOSModules

RhSetErrorInfoBuffer

RhGetExceptionsForCurrentThread

RhAllocateThunk

RhCreateThunksHeap

RhNewArray

RhYield

RhGetCurrentThreadStackBounds

RhReRegisterForFinalize

RhpArrayClear

RhGetOSModuleFromEEType

RhTryGetThunkData

RhFreeThunk

RhBulkMoveWithWriteBarrier

memset

RhResolveDispatch

RhGetGeneration

RhFindBlob

RhGetModuleFromEEType

RhConvertPublicKeyToPublicKeyToken

RhGetDispatchMapForType

RhCreateGenericInstanceDescForType2

RhGetGCDescSize

RhRegisterGcCallout

RhpETWShouldWalkCom

RhpETWLogLiveCom

RhIsPromoted

RhpHandleAllocDependent

RhGetGcCollectionCount

RhGetCurrentObjSize

RhGetGCNow

RhGetLastGCStartTime

RhGetLastGCDuration

RhCollect

RhGetThreadLocalStorageForDynamicType

RhGetCodeTarget

RhGetTargetOfUnboxingAndInstantiatingStub

RhGetOSModuleFromPointer

RhResolveDispatchOnType

RhGetUniversalTransitionThunk

RhInitializeConservativeReportingRegion

RhDisableConservativeReportingRegion

RhCallDescrWorker

RhRegisterRefCountedHandleCallback

RhpGetModuleSection

RhpRegisterFrozenSegment

RhpCreateTypeManager

RhpRegisterOsModule

RhCurrentOSThreadId

RhpCancelThreadAbort

RhpInitiateThreadAbort

RhpGetCurrentThread

RhpVerifyDebuggerCleanup

RhGetOSModuleForMrt

RhpRecordDebuggeeInitiatedHandle

RhpGetFuncEvalMode

RhpGetFuncEvalParameterBufferSize

RhpSendCustomEventToDebugger

RhGetThunkSize

RhFindMethodStartAddress

RhGetModuleFileName

RhNewInterfaceDispatchCell

RhGetThreadStaticFieldAddress

RhGetRuntimeHelperForType

RhGetCurrentThreadStackTrace

pow

RhpDblRemRev

RhpFltRemRev

RhStartNoGCRegion

RhWaitForPendingFinalizers

_ecvt_s

RhFlushProcessWriteBuffers

modf

fmodf

fmod

cos

sin

tan

RhCompareObjectContentsAndPadding

RhIsServerGc

RhSetLohCompactionMode

RhGetLohCompactionMode

RhSetGcLatencyMode

RhGetGcLatencyMode

RhGetAllocatedBytesForCurrentThread

RhGetGcTotalMemory

RhGetMaxGcGeneration

RhEndNoGCRegion

RhCancelFullGCNotification

RhWaitForFullGCComplete

RhWaitForFullGCApproach

RhRegisterForFullGCNotification

tanhf

tanf

sinhf

sinf

powf

log10f

logf

expf

coshf

cosf

cbrtf

atanhf

atan2f

atanf

asinhf

asinf

acoshf

acosf

tanh

sinh

log10

log

exp

cosh

cbrt

atanh

atan2

atan

asinh

asin

acosh

acos

RhpEtwExceptionThrown

RhpHandleAllocVariable

RhUnregisterRefCountedHandleCallback

RhHandleGetVariableType

RhHandleSetVariableType

RhHandleCompareExchangeVariableType

RhpLoopHijack

api-ms-win-core-sysinfo-l1-1-0

GetTickCount64

GetSystemTimeAsFileTime

kernel32

CompareStringOrdinal

CompareStringEx

FormatMessageW

SetEvent

CreateEventExW

WaitForMultipleObjectsEx

GetThreadPriority

GetCurrentProcess

GetCurrentThread

DuplicateHandle

LCMapStringEx

GetLocaleInfoEx

ResolveLocaleName

LCIDToLocaleName

GetCalendarInfoEx

EnumCalendarInfoExEx

EnumTimeFormatsEx

SetThreadPriority

Sleep

ResetEvent

FindNLSStringEx

FindStringOrdinal

GetCurrentProcessId

QueryPerformanceFrequency

GetVersionExW

GetCPInfo

GetSystemInfo

SetFilePointerEx

ReadFile

CancelIoEx

WriteFile

SetEndOfFile

FlushFileBuffers

WaitForSingleObject

SetThreadErrorMode

FindFirstFileExW

GetFileAttributesExW

GetLongPathNameW

GetFullPathNameW

ResumeThread

CreateThread

FindClose

CloseHandle

GetTempPathW

CreateFile2

UnlockFile

LockFile

GetFileInformationByHandleEx

GetFileType

ReleaseSemaphore

OpenSemaphoreW

CreateSemaphoreExW

OpenMutexW

CreateMutexExW

OpenEventW

MultiByteToWideChar

GetModuleFileNameW

WideCharToMultiByte

LocaleNameToLCID

EnumSystemLocalesEx

VirtualQuery

GlobalMemoryStatusEx

SignalObjectAndWait

GetNLSVersionEx

SetEnvironmentVariableW

IsNLSDefinedString

QueryPerformanceCounter

GetComputerNameW

GetLogicalDrives

IsWow64Process

ExpandEnvironmentStringsW

SetCurrentDirectoryW

GetCurrentDirectoryW

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetTempFileNameW

VirtualFree

ReleaseMutex

GetSystemDirectoryW

api-ms-win-core-heap-l1-1-0

GetProcessHeap

HeapFree

HeapAlloc

HeapReAlloc

api-ms-win-core-errorhandling-l1-1-0

SetLastError

GetLastError

ole32

CoGetApartmentType

CoTaskMemAlloc

CoTaskMemFree

CoCreateGuid

CoTaskMemRealloc

api-ms-win-core-winrt-l1-1-0

RoInitialize

RoUninitialize

RoGetActivationFactory

api-ms-win-core-kernel32-legacy-l1-1-0

RaiseFailFastException

api-ms-win-core-threadpool-l1-2-0

CreateThreadpoolWork

CloseThreadpoolWork

SubmitThreadpoolWork

CreateThreadpoolTimer

SetThreadpoolTimer

SetThreadpoolWait

CreateThreadpoolWait

CancelThreadpoolIo

StartThreadpoolIo

CloseThreadpoolIo

CreateThreadpoolIo

CloseThreadpoolWait

WaitForThreadpoolWaitCallbacks

api-ms-win-core-realtime-l1-1-0

QueryUnbiasedInterruptTime

advapi32

EventActivityIdControl

EventSetInformation

EnumerateTraceGuidsEx

EventWriteTransfer

EventUnregister

EventRegister

api-ms-win-core-timezone-l1-1-0

GetTimeZoneInformationForYear

GetDynamicTimeZoneInformationEffectiveYears

EnumDynamicTimeZoneInformation

GetDynamicTimeZoneInformation

bcrypt

BCryptCreateHash

BCryptFinishHash

BCryptHashData

BCryptGetProperty

BCryptOpenAlgorithmProvider

BCryptGenRandom

BCryptCloseAlgorithmProvider

BCryptDestroyHash

api-ms-win-core-localization-l1-2-0

FormatMessageW

api-ms-win-core-com-l1-1-0

CoGetObjectContext

CoReleaseMarshalData

CoUnmarshalInterface

CoMarshalInterface

CoGetMarshalSizeMax

CoGetContextToken

CoCreateFreeThreadedMarshaler

CoCreateInstanceFromApp

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateString

WindowsGetStringRawBuffer

WindowsDeleteString

WindowsCreateStringReference

api-ms-win-core-debug-l1-1-0

OutputDebugStringW

IsDebuggerPresent

oleaut32

SysFreeString

SysStringLen

SysAllocStringLen

VariantClear

api-ms-win-core-winrt-error-l1-1-0

GetRestrictedErrorInfo

RoOriginateError

SetRestrictedErrorInfo

api-ms-win-core-processthreads-l1-1-1

GetCurrentProcessorNumber

normaliz

NormalizeString

IsNormalizedString

IdnToUnicode

IdnToAscii

crypt32

CryptUnprotectMemory

CryptProtectMemory

api-ms-win-core-winrt-error-l1-1-1

RoOriginateLanguageException

RoReportUnhandledError

api-ms-win-ro-typeresolution-l1-1-0

RoParseTypeName

api-ms-win-core-processthreads-l1-1-0

GetCurrentThreadId

api-ms-win-core-processenvironment-l1-1-0

GetCommandLineW

GetEnvironmentVariableW

api-ms-win-core-memory-l1-1-3

VirtualAllocFromApp

Exports

$NEAT$

ActivatorCreateInstanceAny

AppendExceptionStackFrame

CheckStaticClassConstruction

CreateCommandLine

Dbl2IntOvf

Dbl2LngOvf

Dbl2UIntOvf

Dbl2ULngOvf

DebugFuncEvalAbortHelper

DebugFuncEvalHelper

DllGetClassObject

FailFast

Flt2IntOvf

Flt2LngOvf

GenericLookup

GenericLookupAndAllocArray

GenericLookupAndAllocObject

GenericLookupAndCallCtor

GenericLookupAndCast

GenericLookupAndCheckArrayElemType

GetRuntimeException

GetSystemArrayEEType

GetThreadStaticsForDynamicType

InitializeFinalizerThread

InitializeModules

InvokeExeMain

OnFirstChanceException

IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.text
Size: 6.1MB - Virtual size: 6.1MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.reloc
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

[Content_Types].xml

.xml

logo.png

.png

genki/GenkiArcade_1.6.14.0/Dependencies/x64/Microsoft.NET.Native.Runtime.2.2.appx

.appx

AppxBlockMap.xml

.xml

AppxManifest.xml

AppxMetadata/CodeIntegrity.cat

AppxSignature.p7x

[Content_Types].xml

.xml

logo.png

.png

mrt100_app.dll

.dll windows:6 windows x64 arch:x64

0903d9f79a51c693a1d9933b61be6d1c

Code Sign

33:00:00:01:31:8d:e1:be:a7:9f:0a:35:e0:00:00:00:00:01:31
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/09/2019, 20:40

Not After

04/12/2020, 20:40

Subject

CN=Microsoft Time-Stamp Service,OU=Microsoft Operations Puerto Rico+OU=Thales TSS ESN:148C-C4B9-2066,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

49:c1:e5:97:e9:4b:8f:61:82:66:90:50:74:7a:67:e5:50:3b:39:8b:e0:a1:10:6f:0d:17:fa:a6:4e:e6:bd:03
Signer

Actual PE Digest

49:c1:e5:97:e9:4b:8f:61:82:66:90:50:74:7a:67:e5:50:3b:39:8b:e0:a1:10:6f:0d:17:fa:a6:4e:e6:bd:03

Digest Algorithm

sha256

PE Digest Matches

true

66:9f:0f:63:ee:f7:d8:43:4b:88:1c:01:d2:28:4b:4a:47:ac:3f:d7
Signer

Actual PE Digest

66:9f:0f:63:ee:f7:d8:43:4b:88:1c:01:d2:28:4b:4a:47:ac:3f:d7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_APPCONTAINER

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

mrt100_app.pdb

Imports

api-ms-win-core-errorhandling-l1-1-1

RaiseException

GetLastError

SetLastError

api-ms-win-core-heap-l1-2-0

GetProcessHeap

HeapAlloc

HeapFree

api-ms-win-core-synch-l1-2-0

SetEvent

ResetEvent

WaitForSingleObjectEx

LeaveCriticalSection

InitializeCriticalSectionEx

EnterCriticalSection

DeleteCriticalSection

WaitForMultipleObjectsEx

CreateEventExW

api-ms-win-core-com-l1-1-1

CoCreateFreeThreadedMarshaler

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateStringReference

api-ms-win-core-winrt-l1-1-0

RoInitialize

RoGetActivationFactory

api-ms-win-core-processthreads-l1-1-2

FlushProcessWriteBuffers

GetCurrentProcess

GetCurrentThread

GetProcessMitigationPolicy

GetCurrentProcessId

GetCurrentThreadId

api-ms-win-core-handle-l1-1-0

DuplicateHandle

CloseHandle

api-ms-win-eventing-provider-l1-1-0

EventWrite

EventRegister

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

QueryPerformanceFrequency

api-ms-win-core-sysinfo-l1-2-1

GetNativeSystemInfo

GetTickCount64

GetSystemTimeAsFileTime

api-ms-win-core-file-l1-2-1

GetFileAttributesExW

ReadFile

CreateFile2

api-ms-win-core-memory-l1-1-2

UnmapViewOfFile

VirtualQuery

api-ms-win-core-fibers-l1-1-1

FlsSetValue

FlsGetValue

FlsAlloc

vcruntime140_app

memcmp

__std_terminate

__std_type_info_destroy_list

_purecall

__C_specific_handler

__CxxFrameHandler3

__std_exception_copy

__std_exception_destroy

_CxxThrowException

memcpy

memset

memmove

api-ms-win-crt-string-l1-1-0

strnlen

_stricmp

_wcsicmp

api-ms-win-crt-convert-l1-1-0

mbstowcs_s

api-ms-win-crt-runtime-l1-1-0

_initterm_e

_initterm

_configure_narrow_argv

_initialize_narrow_environment

_initialize_onexit_table

terminate

_cexit

_seh_filter_dll

_execute_onexit_table

api-ms-win-crt-heap-l1-1-0

free

_callnewh

malloc

api-ms-win-core-delayload-l1-1-1

ResolveDelayLoadedAPI

DelayLoadFailureHook

api-ms-win-core-interlocked-l1-2-0

InitializeSListHead

Exports

GetRuntimeException

ProcessFinalizers

RegisterCodeManager

RhAllocLocal

RhAllocLocal2

RhAllocateThunk

RhAllocateThunksMapping

RhArrayStoreCheckAny

RhBox

RhBoxAndNullCheck

RhBoxAny

RhBulkMoveWithWriteBarrier

RhCallDescrWorker

RhCancelFullGCNotification

RhCollect

RhCompareObjectContentsAndPadding

RhCompatibleReentrantWaitAny

RhConvertPublicKeyToPublicKeyToken

RhCreateGenericInstanceDescForType2

RhCreateThunksHeap

RhCurrentOSThreadId

RhDisableConservativeReportingRegion

RhEndNoGCRegion

RhExceptionHandling_FailedAllocation

RhExceptionHandling_ThrowClasslibDivideByZeroException

RhExceptionHandling_ThrowClasslibOverflowException

RhFindBlob

RhFindMethodStartAddress

RhFlushProcessWriteBuffers

RhFreeThunk

RhGcStress_Initialize

RhGcStress_Initialize2

RhGetAllocatedBytesForCurrentThread

RhGetCodeTarget

RhGetCurrentObjSize

RhGetCurrentThreadStackBounds

RhGetCurrentThreadStackTrace

RhGetDispatchMapForType

RhGetExceptionsForCurrentThread

RhGetGCDescSize

RhGetGCNow

RhGetGCSegmentSize

RhGetGcCollectionCount

RhGetGcLatencyMode

RhGetGcTotalMemory

RhGetGeneration

RhGetJmpStubCodeTarget

RhGetLastGCDuration

RhGetLastGCStartTime

RhGetLoadedOSModules

RhGetLohCompactionMode

RhGetMaxGcGeneration

RhGetModuleFileName

RhGetModuleFromEEType

RhGetOSModuleForMrt

RhGetOSModuleFromEEType

RhGetOSModuleFromPointer

RhGetProcessCpuCount

RhGetRuntimeHelperForType

RhGetTargetOfUnboxingAndInstantiatingStub

RhGetThreadLocalStorageForDynamicType

RhGetThreadStaticFieldAddress

RhGetThunkSize

RhGetUniversalTransitionThunk

RhHandleCompareExchangeVariableType

RhHandleFree

RhHandleGet

RhHandleGetDependent

RhHandleGetVariableType

RhHandleSet

RhHandleSetDependentSecondary

RhHandleSetVariableType

RhInitializeConservativeReportingRegion

RhIsPromoted

RhIsServerGc

RhMemberwiseClone

RhNewArray

RhNewInterfaceDispatchCell

RhNewObject

RhNewString

RhR2RLazyAlloc

RhR2RLazyAllocArray

RhR2RLazyCheckCast

RhR2RLazyCheckVectorElemAddr

RhR2RLazyIsInstanceOf

RhReRegisterForFinalize

RhRegisterForFullGCNotification

RhRegisterGcCallout

RhRegisterRefCountedHandleCallback

RhResolveDispatch

RhResolveDispatchOnType

RhRethrow

RhSetErrorInfoBuffer

RhSetGcLatencyMode

RhSetLohCompactionMode

RhSetThunkData

RhSpinWait

RhStartNoGCRegion

RhSuppressFinalize

RhThrowEx

RhThrowHwEx

RhTryGetThunkData

RhTypeCast_AreTypesAssignable

RhTypeCast_AreTypesEquivalent

RhTypeCast_CheckArrayStore

RhTypeCast_CheckCast

RhTypeCast_CheckCast2

RhTypeCast_CheckCastArray

RhTypeCast_CheckCastClass

RhTypeCast_CheckCastInterface

RhTypeCast_CheckUnbox

RhTypeCast_CheckVectorElemAddr

RhTypeCast_IsInstanceOf

RhTypeCast_IsInstanceOf2

RhTypeCast_IsInstanceOfArray

RhTypeCast_IsInstanceOfClass

RhTypeCast_IsInstanceOfInterface

RhUnbox

RhUnbox2

RhUnboxAny

RhUnboxNullable

RhUnregisterGcCallout

RhUnregisterRefCountedHandleCallback

RhWaitForFullGCApproach

RhWaitForFullGCComplete

RhWaitForPendingFinalizers

RhYield

RhpArrayClear

RhpArrayCopy

RhpAssignRefEDX

RhpBulkWriteBarrier

RhpCalculateStackTraceWorker

RhpCancelThreadAbort

RhpCastableObjectResolve

RhpCheckCctor

RhpCheckCctor2

RhpCheckedAssignRefEDX

RhpCheckedLockCmpXchg

RhpCheckedXchg

RhpCidResolve

RhpClearThreadDoNotTriggerGC

RhpCopyAnyWithWriteBarrier

RhpCopyMultibyte

RhpCopyMultibyteNoGCRefs

RhpCopyMultibyteWithWriteBarrier

RhpCreateTypeManager

RhpDbl2ULng

RhpDblRemRev

RhpDebugFuncEvalHelper

RhpEHJumpByref

RhpEHJumpObject

RhpEHJumpScalar

RhpETWLogLiveCom

RhpETWShouldWalkCom

RhpEnableConservativeStackReporting

RhpEtwExceptionThrown

RhpFailFastForPInvokeExceptionCoop

RhpFailFastForPInvokeExceptionPreemp

RhpFltRemRev

RhpGcPoll

RhpGcPollStress

RhpGetCurrentThread

RhpGetFuncEvalMode

RhpGetFuncEvalParameterBufferSize

RhpGetModuleSection

RhpGetThread

RhpHandleAlloc

RhpHandleAllocDependent

RhpHandleAllocVariable

RhpInitMultibyte

RhpInitialDynamicInterfaceDispatch

RhpInitialInterfaceDispatch

RhpInitiateThreadAbort

RhpInterfaceDispatch1

RhpInterfaceDispatch16

RhpInterfaceDispatch2

RhpInterfaceDispatch32

RhpInterfaceDispatch4

RhpInterfaceDispatch64

RhpInterfaceDispatch8

RhpInterfaceDispatchSlow

RhpLdelemaRef

RhpLoopHijack

RhpNewArray

RhpNewFast

RhpNewFinalizable

RhpPInvokeExceptionGuard

RhpRecordDebuggeeInitiatedHandle

RhpRegisterCoffUtcModule

RhpRegisterFrozenSegment

RhpRegisterModule

RhpRegisterOsModule

RhpResolveInterfaceMethod

RhpRethrow

RhpReversePInvoke

RhpReversePInvoke2

RhpReversePInvokeBadTransition

RhpReversePInvokeReturn

RhpSendCustomEventToDebugger

RhpSetHaveNewClasslibs

RhpSetThreadDoNotTriggerGC

RhpShutdown

RhpStelemRef

RhpSuppressGcStress

RhpThrowEx

RhpTrapThreads

RhpTrapToGC

RhpUniversalTransition

RhpUniversalTransition_DebugStepTailCall

RhpUnsuppressGcStress

RhpVTableOffsetDispatch

RhpVerifyDebuggerCleanup

RhpWaitForGC

RhpWaitForSuspend

UnregisterCodeManager

__chkstk

_ecvt_s

acos

acosf

acosh

acoshf

asin

asinf

asinh

asinhf

atan

atan2

atan2f

atanf

atanh

atanhf

cbrt

cbrtf

ceil

ceilf

copysign

copysignf

cos

cosf

cosh

coshf

exp

expf

fabs

floor

floorf

fmod

fmodf

log

log10

log10f

logf

memcmp

memcpy

memmove

memset

modf

pow

powf

sin

sinf

sinh

sinhf

sqrt

sqrtf

t101static_gcdata

t104static_data

t105static_gcdata

t116static_data

t118static_data

t118static_gcdata

t174static_data

t174static_gcdata

t83static_data

t84static_data

t99static_data

tan

tanf

tanh

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

mrt_map.dll

.dll windows:6 windows x64 arch:x64

b838a0b9d5fb4b9588a038c6005f58c0

Code Sign

33:00:00:01:2e:8f:84:66:68:39:bf:05:bd:00:00:00:00:01:2e
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/09/2019, 20:40

Not After

04/12/2020, 20:40

Subject

CN=Microsoft Time-Stamp Service,OU=Microsoft Operations Puerto Rico+OU=Thales TSS ESN:B1B7-F67F-FEC2,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

3f:88:c9:9a:f1:d4:a4:56:3f:dd:cc:ec:62:b2:ec:5b:77:4a:2e:3b:90:70:0a:3a:cf:9d:a6:13:24:1b:24:5b
Signer

Actual PE Digest

3f:88:c9:9a:f1:d4:a4:56:3f:dd:cc:ec:62:b2:ec:5b:77:4a:2e:3b:90:70:0a:3a:cf:9d:a6:13:24:1b:24:5b

Digest Algorithm

sha256

PE Digest Matches

true

d5:29:48:fe:30:cb:a3:68:a4:dc:a9:9c:08:dc:8d:99:36:fe:c1:d4
Signer

Actual PE Digest

d5:29:48:fe:30:cb:a3:68:a4:dc:a9:9c:08:dc:8d:99:36:fe:c1:d4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

mrt_map.pdb

Imports

msvcrt

_initterm

_amsg_exit

memcmp

__C_specific_handler

_XcptFilter

__CxxFrameHandler3

malloc

free

api-ms-win-core-synch-l1-2-0

Sleep

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-2

GetCurrentProcess

TerminateProcess

GetCurrentThreadId

GetCurrentProcessId

api-ms-win-core-sysinfo-l1-2-1

GetTickCount

GetSystemTimeAsFileTime

api-ms-win-core-rtlsupport-l1-2-0

RtlLookupFunctionEntry

RtlCaptureContext

RtlVirtualUnwind

api-ms-win-core-errorhandling-l1-1-1

UnhandledExceptionFilter

SetUnhandledExceptionFilter

Exports

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

genki/GenkiArcade_1.6.14.0/Dependencies/x64/Microsoft.VCLibs.x64.14.00.appx

.appx

genki/GenkiArcade_1.6.14.0/Dependencies/x86/Microsoft.NET.Native.Framework.2.2.appx

.appx

genki/GenkiArcade_1.6.14.0/Dependencies/x86/Microsoft.NET.Native.Runtime.2.2.appx

.appx

genki/GenkiArcade_1.6.14.0/Dependencies/x86/Microsoft.VCLibs.x86.14.00.appx

.appx

genki/GenkiArcade_1.6.14.0/GenkiArcade_1.6.14.0_ARM.appxsym

.zip

genki/GenkiArcade_1.6.14.0/GenkiArcade_1.6.14.0_x64.appxsym

.zip

genki/GenkiArcade_1.6.14.0/GenkiArcade_1.6.14.0_x86.appxsym

.zip

genki/GenkiArcade_1.6.14.0/GenkiArcade_1.6.14.0_x86_x64_arm.cer

genki/GenkiArcade_1.6.14.0/GenkiArcade_1.6.14.0_x86_x64_arm.msixbundle

.zip

genki/GenkiArcade_1.6.14.0/Install.ps1

.ps1

genki/GenkiArcade_1.6.14.0/TelemetryDependencies/LogSideloadingTelemetry.ps1

.ps1

genki/GenkiArcade_1.6.14.0/TelemetryDependencies/Microsoft.VisualStudio.RemoteControl.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

33:00:00:02:cf:6d:2c:c5:7c:aa:65:a6:d8:00:00:00:00:02:cf
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:25

Not After

02/05/2020, 21:25

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

d8:5e:a8:42:81:26:15:9e:85:7f:10:64:9b:15:63:c4:ff:c7:12:3a:5a:14:9d:52:71:7f:9d:63:ed:af:32:1e
Signer

Actual PE Digest

d8:5e:a8:42:81:26:15:9e:85:7f:10:64:9b:15:63:c4:ff:c7:12:3a:5a:14:9d:52:71:7f:9d:63:ed:af:32:1e

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

E:\A\_work\682\s\obj\Microsoft.VisualStudio.RemoteControl\Release\net45\Microsoft.VisualStudio.RemoteControl.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

genki/GenkiArcade_1.6.14.0/TelemetryDependencies/Microsoft.VisualStudio.Telemetry.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

33:00:00:03:25:48:b2:9d:0e:7f:c5:f4:1f:00:00:00:00:03:25
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 18:29

Not After

03/03/2021, 18:29

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

20:37:d0:e5:f0:50:7c:e1:fb:8f:b0:c7:fe:ed:3e:16:f7:60:0a:28:74:94:e7:38:c0:db:ad:79:1a:3e:4e:eb
Signer

Actual PE Digest

20:37:d0:e5:f0:50:7c:e1:fb:8f:b0:c7:fe:ed:3e:16:f7:60:0a:28:74:94:e7:38:c0:db:ad:79:1a:3e:4e:eb

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

C:\A\_work\156\s\obj\Microsoft.VisualStudio.Telemetry\Release\net45\Microsoft.VisualStudio.Telemetry.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 762KB - Virtual size: 762KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

genki/GenkiArcade_1.6.14.0/TelemetryDependencies/Microsoft.VisualStudio.Utilities.Internal.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

33:00:00:02:ce:7c:9a:ce:7d:90:5e:d2:b7:00:00:00:00:02:ce
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:25

Not After

02/05/2020, 21:25

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

a0:78:0f:ab:02:58:d9:d9:b0:5b:03:75:84:76:0a:f0:8d:81:60:a7:89:10:82:00:cf:31:82:9c:30:30:f9:3c
Signer

Actual PE Digest

a0:78:0f:ab:02:58:d9:d9:b0:5b:03:75:84:76:0a:f0:8d:81:60:a7:89:10:82:00:cf:31:82:9c:30:30:f9:3c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

E:\A\_work\89\s\obj\Microsoft.VisualStudio.Utilities.Internal\Release\net45\Microsoft.VisualStudio.Utilities.Internal.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

genki/GenkiArcade_1.6.14.0/TelemetryDependencies/Newtonsoft.Json.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

C:\Development\Releases\Json\Working\Newtonsoft.Json\Working-Signed\Src\Newtonsoft.Json\obj\Release\Net45\Newtonsoft.Json.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 511KB - Virtual size: 511KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

genki/GenkiArcade_1.6.14.0/install.bat

genki/GenkiArcade_1.6.14.0_x86_x64_arm_bundle.msixupload

.zip

install.bat

Resubmissions

Sharing

General

Malware Config

Signatures

Files

4ece8caf7624a2a505dbe45075888914

Code Sign

33:00:00:03:25:48:b2:9d:0e:7f:c5:f4:1f:00:00:00:00:03:25Certificate

Extended Key Usages

61:0c:52:4c:00:00:00:00:00:03Certificate

Key Usages

33:00:00:01:8a:07:37:33:cf:20:48:89:3c:00:00:00:00:01:8aCertificate

Extended Key Usages

61:0e:90:d2:00:00:00:00:00:03Certificate

Key Usages

a4:f0:8a:03:78:29:ce:40:c3:d2:fa:65:b1:7e:b0:dc:5b:96:a5:e2:c0:0d:b6:61:35:43:22:4a:72:05:22:7dSigner

a4:f0:8a:03:78:29:ce:40:c3:d2:fa:65:b1:7e:b0:dc:5b:96:a5:e2:c0:0d:b6:61:35:43:22:4a:72:05:22:7dSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mrt100_app

api-ms-win-core-sysinfo-l1-1-0

kernel32

api-ms-win-core-heap-l1-1-0

api-ms-win-core-errorhandling-l1-1-0

ole32

api-ms-win-core-winrt-l1-1-0

api-ms-win-core-kernel32-legacy-l1-1-0

api-ms-win-core-threadpool-l1-2-0

api-ms-win-core-realtime-l1-1-0

advapi32

api-ms-win-core-timezone-l1-1-0

bcrypt

api-ms-win-core-localization-l1-2-0

api-ms-win-core-com-l1-1-0

api-ms-win-core-winrt-string-l1-1-0

api-ms-win-core-debug-l1-1-0

oleaut32

api-ms-win-core-winrt-error-l1-1-0

api-ms-win-core-processthreads-l1-1-1

normaliz

crypt32

api-ms-win-core-winrt-error-l1-1-1

api-ms-win-ro-typeresolution-l1-1-0

api-ms-win-core-processthreads-l1-1-0

api-ms-win-core-processenvironment-l1-1-0

api-ms-win-core-memory-l1-1-3

Exports

Exports

Sections

.rdata Size: 4.7MB - Virtual size: 4.7MB

.data Size: 396KB - Virtual size: 396KB

.pdata Size: 341KB - Virtual size: 341KB

.rsrc Size: 14KB - Virtual size: 14KB

.text Size: 4.6MB - Virtual size: 4.6MB

.reloc Size: 401KB - Virtual size: 401KB

f56a4dcf7ebbef06d42540406e497e61

Code Sign

33:00:00:01:3c:ed:d3:5c:e9:30:dd:53:d0:00:00:00:00:01:3cCertificate

Extended Key Usages

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52Certificate

Extended Key Usages

61:16:68:34:00:00:00:00:00:1cCertificate

Extended Key Usages

Key Usages

61:0e:90:d2:00:00:00:00:00:03Certificate

Key Usages

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52Certificate

Extended Key Usages

61:0e:90:d2:00:00:00:00:00:03Certificate

Key Usages

14:ad:e5:b3:7a:2a:02:1a:3b:f1:90:f6:52:77:b6:73:2b:26:cc:fa:0c:4a:8b:6f:8c:91:9a:c8:f0:f1:71:54Signer

e2:da:6c:66:d9:ec:64:70:dd:6f:84:40:26:35:64:67:2e:68:a4:1fSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

33:00:00:03:25:48:b2:9d:0e:7f:c5:f4:1f:00:00:00:00:03:25
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate

33:00:00:01:8a:07:37:33:cf:20:48:89:3c:00:00:00:00:01:8a
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

a4:f0:8a:03:78:29:ce:40:c3:d2:fa:65:b1:7e:b0:dc:5b:96:a5:e2:c0:0d:b6:61:35:43:22:4a:72:05:22:7d
Signer

a4:f0:8a:03:78:29:ce:40:c3:d2:fa:65:b1:7e:b0:dc:5b:96:a5:e2:c0:0d:b6:61:35:43:22:4a:72:05:22:7d
Signer

.rdata
Size: 4.7MB - Virtual size: 4.7MB

.data
Size: 396KB - Virtual size: 396KB

.pdata
Size: 341KB - Virtual size: 341KB

.rsrc
Size: 14KB - Virtual size: 14KB

.text
Size: 4.6MB - Virtual size: 4.6MB

.reloc
Size: 401KB - Virtual size: 401KB

33:00:00:01:3c:ed:d3:5c:e9:30:dd:53:d0:00:00:00:00:01:3c
Certificate

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

14:ad:e5:b3:7a:2a:02:1a:3b:f1:90:f6:52:77:b6:73:2b:26:cc:fa:0c:4a:8b:6f:8c:91:9a:c8:f0:f1:71:54
Signer

e2:da:6c:66:d9:ec:64:70:dd:6f:84:40:26:35:64:67:2e:68:a4:1f
Signer

.pad0
Size: 512B - Virtual size: 4B

.pad1
Size: 512B - Virtual size: 4B

.pad2
Size: 512B - Virtual size: 4B

.pad3
Size: 512B - Virtual size: 4B

.pad4
Size: 512B - Virtual size: 4B

.pad5
Size: 512B - Virtual size: 4B

.pad6
Size: 512B - Virtual size: 4B

.pad7
Size: 512B - Virtual size: 4B

.pad8
Size: 512B - Virtual size: 4B

.pad9
Size: 512B - Virtual size: 4B

.pad10
Size: 512B - Virtual size: 4B

.pad11
Size: 512B - Virtual size: 4B

.pad12
Size: 512B - Virtual size: 4B

.pad13
Size: 512B - Virtual size: 4B

.pad14
Size: 512B - Virtual size: 4B

.tks0
Size: 4KB - Virtual size: 3KB

.tkd0
Size: 512B - Virtual size: 4B

.tks1
Size: 4KB - Virtual size: 3KB

.tkd1
Size: 512B - Virtual size: 4B

.tks2
Size: 4KB - Virtual size: 3KB

.tkd2
Size: 512B - Virtual size: 4B

.tks3
Size: 4KB - Virtual size: 3KB

.tkd3
Size: 512B - Virtual size: 4B

.tks4
Size: 4KB - Virtual size: 3KB

.tkd4
Size: 512B - Virtual size: 4B

.tks5
Size: 4KB - Virtual size: 3KB

.tkd5
Size: 512B - Virtual size: 4B

.tks6
Size: 4KB - Virtual size: 3KB

.tkd6
Size: 512B - Virtual size: 4B

.tks7
Size: 4KB - Virtual size: 3KB

.tkd7
Size: 512B - Virtual size: 4B

.rdata
Size: 43KB - Virtual size: 42KB

.data
Size: 2KB - Virtual size: 13KB

.pdata
Size: 14KB - Virtual size: 13KB

.didat
Size: 512B - Virtual size: 28B

.text
Size: 220KB - Virtual size: 219KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 8KB

33:00:00:02:cf:6d:2c:c5:7c:aa:65:a6:d8:00:00:00:00:02:cf
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate