c:\packages\EAInstaller\1.09.02\build\eainstaller\release\EAInstall.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
ad223f4f7a857a8c08d91c6696452db2_JaffaCakes118.dll
Resource
win7-20240704-en
windows7-x64
12 signatures
150 seconds
General
-
Target
ad223f4f7a857a8c08d91c6696452db2_JaffaCakes118
-
Size
800KB
-
MD5
ad223f4f7a857a8c08d91c6696452db2
-
SHA1
5e65a2c3a2a50e9df909a9e055977bf9632a599d
-
SHA256
019026adc6150778c4884d574f074a4f9c22ab291ca5c590cca7a38f0dc6c61d
-
SHA512
cd92bdd7d6a0d4fb47f1060e91332b0a158df22806440332027122bbba3d7d14b447f1e8641224276fcfc128e3c6e16e0794758b1c59d7f0dfa0070157d883cf
-
SSDEEP
24576:4RQ20pTS4sIcpHfZQdXkmCjDsLwVR5Hg2f7g:SQyjDFU2f
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ad223f4f7a857a8c08d91c6696452db2_JaffaCakes118
Files
-
ad223f4f7a857a8c08d91c6696452db2_JaffaCakes118.dll windows:4 windows x86 arch:x86
b0977edfbc8ca38c7702ee6b371e2e73
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
version
VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA
kernel32
ResumeThread
GetCurrentThreadId
WaitForSingleObject
SetEvent
CreateEventA
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
FreeResource
EnumResourceLanguagesA
ConvertDefaultLocale
GetCPInfo
GetOEMCP
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
HeapFree
RtlUnwind
ExitProcess
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
TerminateProcess
SetEnvironmentVariableA
ExitThread
CreateThread
GetCommandLineA
GlobalFlags
SetStdHandle
GetFileType
HeapSize
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetTimeZoneInformation
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetConsoleCtrlHandler
GetLocaleInfoW
lstrcatA
lstrcmpA
SystemTimeToFileTime
FileTimeToSystemTime
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
InterlockedDecrement
GetModuleFileNameA
GetFullPathNameA
lstrcpyA
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
MoveFileA
GlobalFree
MulDiv
GetThreadLocale
GetLocaleInfoA
GetACP
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcpynA
CreateFileA
GetFileTime
DosDateTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
LocalAlloc
GetCurrentProcess
GetVersionExA
CreateProcessA
GetExitCodeProcess
GetSystemDirectoryA
GetWindowsDirectoryA
GetTempPathA
GetUserDefaultLangID
SetThreadPriority
GetLogicalDrives
GetDriveTypeA
GetShortPathNameA
LocalFree
GetDiskFreeSpaceA
GetVolumeInformationA
FindResourceExA
CreateToolhelp32Snapshot
Process32First
Process32Next
CloseHandle
GetModuleHandleA
FormatMessageA
GetCurrentDirectoryA
SetCurrentDirectoryA
LoadResource
LockResource
SizeofResource
FindResourceA
SetErrorMode
FreeLibrary
DeleteFileA
FindNextFileA
CreateDirectoryA
RemoveDirectoryA
GetCurrentThread
SuspendThread
GetFileAttributesA
SetFileAttributesA
CopyFileA
GetLastError
SetLastError
Sleep
FindFirstFileA
FindClose
LoadLibraryA
GetProcAddress
lstrlenA
lstrcmpiA
lstrcmpiW
GetStringTypeExA
GetStringTypeExW
lstrlenW
WideCharToMultiByte
CompareStringA
CompareStringW
GetEnvironmentVariableA
MultiByteToWideChar
GetEnvironmentVariableW
GetVersion
InterlockedExchange
HeapReAlloc
user32
DestroyMenu
GetMenuItemInfoA
InflateRect
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
IsWindow
IsChild
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
ScrollWindow
TrackPopupMenuEx
TrackPopupMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
UpdateWindow
GetClientRect
GetMenu
PostMessageA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetClassInfoA
RegisterClassA
SetWindowPlacement
CallWindowProcA
OffsetRect
IntersectRect
IsIconic
GetWindowPlacement
PostQuitMessage
EndPaint
BeginPaint
GetWindowDC
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
SetWindowPos
ScrollWindowEx
ShowWindow
MoveWindow
SetWindowLongA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
SendDlgItemMessageA
GetDlgItemInt
GetDlgItem
CheckRadioButton
CheckDlgButton
GetScrollPos
SetScrollPos
SetFocus
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
GetCursorPos
ValidateRect
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetFocus
GetDesktopWindow
SetWindowTextA
GetClassNameA
GetWindowTextLengthA
GetWindowTextA
SendMessageA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
LoadCursorA
SetCursor
ShowOwnedPopups
DeleteMenu
DestroyIcon
GetDC
ReleaseDC
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetDialogBaseUnits
CopyRect
GetSysColor
GetSysColorBrush
UnregisterClassA
UnhookWindowsHookEx
GetSystemMetrics
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
PeekMessageA
TranslateMessage
DispatchMessageA
wsprintfA
ExitWindowsEx
LoadImageA
SystemParametersInfoA
DefWindowProcA
MessageBoxA
CharUpperA
CharUpperW
CharLowerA
CharLowerW
GetDlgItemTextA
gdi32
CreateHatchBrush
GetDCOrgEx
CreateFontIndirectA
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
GetTextExtentPoint32A
CreateSolidBrush
ExtTextOutA
TextOutA
RectVisible
PtVisible
StartDocA
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
ExtCreatePen
CreatePen
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
SelectPalette
GetStockObject
CreateCompatibleDC
CreateBitmap
CreatePatternBrush
CreateDIBPatternBrushPt
DeleteDC
ExtSelectClipRgn
PolyBezierTo
PolylineTo
PolyDraw
ArcTo
GetCurrentPositionEx
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
DeleteObject
GetDeviceCaps
CopyMetaFileA
GetTextMetricsA
CreateDCA
GetObjectA
SelectClipPath
CreateRectRgn
GetClipRgn
SelectClipRgn
SetColorAdjustment
SetArcDirection
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
MoveToEx
LineTo
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
Escape
comdlg32
GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA
winspool.drv
OpenPrinterA
DocumentPropertiesA
ClosePrinter
advapi32
SetSecurityDescriptorOwner
RegCreateKeyA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegSetValueA
ImpersonateSelf
OpenThreadToken
AllocateAndInitializeSid
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup
RegCloseKey
IsValidSecurityDescriptor
AccessCheck
RevertToSelf
FreeSid
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegSetValueExA
RegDeleteValueA
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
shell32
SHGetFileInfoA
ExtractIconA
ShellExecuteA
comctl32
ord17
shlwapi
PathStripToRootA
PathIsUNCA
PathFindFileNameA
PathFindExtensionA
PathRemoveExtensionA
ole32
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
ReadFmtUserTypeStg
CoTaskMemFree
CoUninitialize
CoInitialize
CoCreateInstance
ReadClassStg
StringFromCLSID
CoTreatAsClass
CreateBindCtx
CoTaskMemAlloc
ReleaseStgMedium
CoDisconnectObject
OleDuplicateData
StringFromGUID2
CLSIDFromString
SetConvertStg
oleaut32
VarDecFromStr
VarBstrFromDec
VarDateFromStr
SysReAllocStringLen
SysAllocString
SystemTimeToVariantTime
SafeArrayUnaccessData
VariantTimeToSystemTime
SysAllocStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayCopy
SafeArrayAllocDescriptor
SafeArrayAllocData
VariantCopy
VariantChangeType
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
VariantClear
VariantInit
SysFreeString
SysStringLen
SysAllocStringByteLen
SysStringByteLen
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
Exports
Exports
??0CEACopyFile@@QAE@XZ
??0CEARegistry@@QAE@XZ
??0CEASystem@@QAE@XZ
??0CEAUninstall@@QAE@XZ
??0CEAVersion@@QAE@XZ
??1CEACopyFile@@QAE@XZ
??1CEARegistry@@QAE@XZ
??1CEASystem@@QAE@XZ
??1CEAUninstall@@QAE@XZ
??1CEAVersion@@QAE@XZ
??4CEACopyFile@@QAEAAV0@ABV0@@Z
??4CEARegistry@@QAEAAV0@ABV0@@Z
??4CEASystem@@QAEAAV0@ABV0@@Z
??4CEAUninstall@@QAEAAV0@ABV0@@Z
??4CEAVersion@@QAEAAV0@ABV0@@Z
?DLLHasCOMObjects@CEACopyFile@@AAE_NPBD@Z
?DebugMessageBox@@YGHPAUHWND__@@PBD1I@Z
?EAINSTALL_AddFileListEntry@@YAXHHPAD@Z
?EAINSTALL_InstallCommonEASO@@YA_NXZ
?EAINSTALL_InstallFlashAndShockwave@@YA_NXZ
?EAINSTALL_InstallIE55Patch@@YA_NXZ
?EAINSTALL_InstallIE@@YA_NXZ
?EAINSTALL_RestoreScreenSaverState@@YAXXZ
?EAINSTALL_SetScreenSaverState@@YAXH@Z
?EAINSTALL_askForCDKey@@YA_NXZ
?EAINSTALL_askUserElectronicRegistation@@YAHXZ
?EAINSTALL_autoSelectLanguage@@YA_NPAHPAD@Z
?EAINSTALL_cancelInstallGame@@YA_NPAH0PAM0@Z
?EAINSTALL_convertLanguageToLocale@@YAHHPAKPAG@Z
?EAINSTALL_convertLocaleToLanguageIndex@@YAHK@Z
?EAINSTALL_convertVersion@@YA_NPAD@Z
?EAINSTALL_copyCacheFiles@@YA_NHPAHPADPAM0_JPAPAX@Z
?EAINSTALL_copyReadMe@@YAHXZ
?EAINSTALL_createDesktopItem@@YA_NXZ
?EAINSTALL_createDirectory@@YA_NPAD@Z
?EAINSTALL_createStartMenuItems@@YA_NXZ
?EAINSTALL_dirExists@@YA_NPBD@Z
?EAINSTALL_exeToTempAndRestart@@YAXPAD00@Z
?EAINSTALL_execAndWait@@YAHPAD00H@Z
?EAINSTALL_fileExists@@YA_NPBD@Z
?EAINSTALL_forceLanguage@@YA_NH@Z
?EAINSTALL_freeDirectXEULAText@@YA_NPAPAD@Z
?EAINSTALL_getAvailableLanguages@@YAPA_NXZ
?EAINSTALL_getCDDirectXVersion@@YA_NPAM@Z
?EAINSTALL_getCDDirectXVersionString@@YA_NPAD@Z
?EAINSTALL_getCDFlashVersion@@YA_NPAD@Z
?EAINSTALL_getCDIEVersion@@YA_NPAM@Z
?EAINSTALL_getCDIEVersionString@@YA_NPAD@Z
?EAINSTALL_getCacheFull@@YAHPA_J@Z
?EAINSTALL_getCacheMinimum@@YAHPA_J@Z
?EAINSTALL_getCacheSatisfactory@@YAHPA_J@Z
?EAINSTALL_getCurrentlySelectedLanguage@@YAHPAD@Z
?EAINSTALL_getDebugMode@@YA_NXZ
?EAINSTALL_getDirectXEULAText@@YA_NPAPADPAIH@Z
?EAINSTALL_getDirectXInstalled@@YA_NXZ
?EAINSTALL_getDirectXLicenseAgreement@@YA_NPAD@Z
?EAINSTALL_getDisplayToolsEULA@@YA_NXZ
?EAINSTALL_getERegDisplayName@@YAXPAD@Z
?EAINSTALL_getFlashLicenseAgreement@@YA_NPAD@Z
?EAINSTALL_getFriendlyProductName@@YA_NPAD@Z
?EAINSTALL_getGameCacheLocation@@YAXPAD@Z
?EAINSTALL_getGameCacheSize@@YA_JXZ
?EAINSTALL_getGameHasStreaming@@YA_NXZ
?EAINSTALL_getGameIcon@@YAXPAD@Z
?EAINSTALL_getInstallFromLocation@@YAXPAD@Z
?EAINSTALL_getInstallSize@@YA_JH@Z
?EAINSTALL_getInstallerWindowHandle@@YAPAUHWND__@@XZ
?EAINSTALL_getIsCDKeyValid@@YA_NXZ
?EAINSTALL_getIsDirectXInstallerPresent@@YA_NXZ
?EAINSTALL_getIsGameElectronicRegistered@@YA_NXZ
?EAINSTALL_getIsIEInstallerPresent@@YA_NXZ
?EAINSTALL_getIsRTPatchActive@@YA_NXZ
?EAINSTALL_getIsRebootRequired@@YA_NXZ
?EAINSTALL_getIsSufficentSpace@@YA_NPAD_J@Z
?EAINSTALL_getIsValidDrive@@YA_NPAD@Z
?EAINSTALL_getIsValidEAPath@@YA?AW4PathStatus@@PAD@Z
?EAINSTALL_getIsValidEAStartMenuLocation@@YA_NPAD@Z
?EAINSTALL_getLanguageIndexName@@YAPADH@Z
?EAINSTALL_getLanguageIndexPrefix@@YAPADH@Z
?EAINSTALL_getLanguagePrefix@@YA_NPAD@Z
?EAINSTALL_getLocalizedReadmeFilename@@YAXPAD@Z
?EAINSTALL_getLocalizedTechSupportFilename@@YAXPAD@Z
?EAINSTALL_getMinimumDirectXVersion@@YA_NPAM@Z
?EAINSTALL_getMinimumDirectXVersionString@@YA_NPAD@Z
?EAINSTALL_getMinimumFlashVersion@@YA_NPAD@Z
?EAINSTALL_getMinimumIEVersion@@YA_NPAM@Z
?EAINSTALL_getMinimumIEVersionString@@YA_NPAD@Z
?EAINSTALL_getOS@@YAXPAD@Z
?EAINSTALL_getProductDivision@@YAXPAD@Z
?EAINSTALL_getProductName@@YA_NPAD@Z
?EAINSTALL_getRTPatchURL@@YAXPAD@Z
?EAINSTALL_getRestartedStatus@@YA_NPAD@Z
?EAINSTALL_getSideBar@@YA_NPAUHBITMAP__@@@Z
?EAINSTALL_getStartMenuLocation@@YA_NPAD@Z
?EAINSTALL_getStartMenuRoot@@YAXPAD@Z
?EAINSTALL_getStartupFolderName@@YA_NPAD@Z
?EAINSTALL_getString@@YAGPAUHINSTANCE__@@IPADH@Z
?EAINSTALL_getStringFromDLLorEXE@@YA_NHPADH@Z
?EAINSTALL_getSuppressionExe@@YA_NPAD@Z
?EAINSTALL_getSwapSize@@YAHPA_J@Z
?EAINSTALL_getToolsEULAAgreement@@YA_NPAD@Z
?EAINSTALL_getToolsEULADeclineContinue@@YA_NXZ
?EAINSTALL_getUseSlideShow@@YA_NXZ
?EAINSTALL_getUseSplashScreen@@YA_NXZ
?EAINSTALL_getUserDirectXVersion@@YA_NPAM@Z
?EAINSTALL_getUserDirectXVersionString@@YA_NPAD@Z
?EAINSTALL_getUserFlashVersion@@YA_NPAD@Z
?EAINSTALL_getUserIEVersion@@YA_NPAM@Z
?EAINSTALL_getUserIEVersionString@@YA_NPAD@Z
?EAINSTALL_getWasGamePreviouslyInstalled@@YA_NXZ
?EAINSTALL_init@@YA_NPAD@Z
?EAINSTALL_installDirectX@@YA_NPA_N@Z
?EAINSTALL_installEAD@@YA_NXZ
?EAINSTALL_installGameSpy@@YA_NXZ
?EAINSTALL_isAdministrator@@YA_NXZ
?EAINSTALL_isCommonEASOInstallRequired@@YA_NXZ
?EAINSTALL_isDemo@@YA_NXZ
?EAINSTALL_isDirectXInstallRequired@@YA_NXZ
?EAINSTALL_isEADInstallRequired@@YA_NXZ
?EAINSTALL_isFile@@YA_NPAD@Z
?EAINSTALL_isFlashInstallRequired@@YA_NXZ
?EAINSTALL_isFlashInstallRequiredForOnlineOnly@@YA_NXZ
?EAINSTALL_isGameSpyInstallRequired@@YA_NXZ
?EAINSTALL_isIEInstallRequired@@YA_NXZ
?EAINSTALL_isIEInstallRequiredForOnlineOnly@@YA_NXZ
?EAINSTALL_isThisProgramRunning@@YA_NPADH@Z
?EAINSTALL_launchEAD@@YA_NPAD@Z
?EAINSTALL_makeStringMFCFriendly@@YAXPADPBD@Z
?EAINSTALL_readSettings@@YA_NXZ
?EAINSTALL_rebootSystem@@YA_NXZ
?EAINSTALL_removeRunOnceOnReboot@@YA_NH@Z
?EAINSTALL_requestSpecificCD@@YAHH@Z
?EAINSTALL_requestStartupCD@@YAHXZ
?EAINSTALL_restore@@YA_NXZ
?EAINSTALL_runGame@@YAHPAD@Z
?EAINSTALL_runGameInstallSpecificExe@@YAHXZ
?EAINSTALL_runOnceOnReboot@@YAHPAD00@Z
?EAINSTALL_setAfterCDRequest@@YAXP6GHH@Z@Z
?EAINSTALL_setBeforeCDRequest@@YAXP6GHH@Z@Z
?EAINSTALL_setDebugMode@@YAX_N@Z
?EAINSTALL_setDirectXInstalled@@YAX_N@Z
?EAINSTALL_setERegDisplayName@@YAXPAD@Z
?EAINSTALL_setFriendlyProductName@@YA_NPAD@Z
?EAINSTALL_setGameCacheLocation@@YAXPAD@Z
?EAINSTALL_setGameCacheSize@@YAX_J@Z
?EAINSTALL_setGameSwapSize@@YAX_J@Z
?EAINSTALL_setInstallationCompleted@@YAX_N@Z
?EAINSTALL_setInstallerWindowHandle@@YAXPAUHWND__@@@Z
?EAINSTALL_setLanguage@@YA_NH@Z
?EAINSTALL_setMessageBox@@YAXP6GHPAUHWND__@@PBD1I@Z@Z
?EAINSTALL_setProductName@@YA_NPAD@Z
?EAINSTALL_setRestartedStatus@@YA_N_N@Z
?EAINSTALL_setSideBar@@YA_NPBD@Z
?EAINSTALL_setStandardGameRegistryItems@@YA_NXZ
?EAINSTALL_setStartMenuLocation@@YAXPAD@Z
?EAINSTALL_squeezeFilename@@YAXPAD0H@Z
?MyCopyFile@CEACopyFile@@QAE_NPBD0PAHP6GKT_LARGE_INTEGER@@222KKPAX33@ZPAU_ea_copyprogress@@@Z
?MyCopyFileEx@CEACopyFile@@QAEHPBD0P6GKT_LARGE_INTEGER@@111KKPAX22@Z2PAHK@Z
?Remove@CEACopyFile@@QAEHPAD@Z
?XCopy@CEACopyFile@@QAEHPBD0HPAH1HPAMP6GKT_LARGE_INTEGER@@333KKPAX44@ZPAU_ea_copyprogress@@@Z
?XRemove@CEACopyFile@@QAEHPAD_N@Z
?XdelKeys@CEARegistry@@QAEHPBD@Z
?asyncExec@CEASystem@@QAE_NPBD00@Z
?cancelInstallation@CEAUninstall@@QAE_NPBD00PAMPAHH@Z
?cleanUpUninstallation@CEAUninstall@@QAEXXZ
?closeKey@CEARegistry@@QAEXXZ
?compare@CEAVersion@@QAEHPBD0@Z
?convertVersion@CEASystem@@QAE_NPAD@Z
?copySuspended@CEACopyFile@@2_NA
?createDirectory@CEACopyFile@@QAE_NPBDH@Z
?createKey@CEARegistry@@QAEHPAUHKEY__@@PBD@Z
?deleteKey@CEARegistry@@QAEHPBD@Z
?deleteKeyIfEmpty@CEARegistry@@QAEHPBD@Z
?deleteValue@CEARegistry@@QAEHPBD@Z
?determineIfNorthAmerica@CEASystem@@AAEXXZ
?determineOS@CEASystem@@AAEXXZ
?dirExists@CEACopyFile@@QAE_NPBD@Z
?execAndWait@CEASystem@@QAEKPBD00HH@Z
?extractExtension@CEACopyFile@@QAEXPADPBD@Z
?extractFilename@CEACopyFile@@QAEXPADPBD@Z
?extractPath@CEACopyFile@@QAEXPADPBD@Z
?fileExists@CEACopyFile@@QAE_NPBD_N@Z
?fileExists@CEASystem@@QAE_NPBD@Z
?findFile@CEACopyFile@@QAE_NPBDHPAD@Z
?firstTime@CEACopyFile@@0_NA
?getDebug@CEAUninstall@@QAE_NXZ
?getDesktopPath@CEASystem@@QAEXPAD@Z
?getIsAdminstator@CEASystem@@QAE_NXZ
?getIsNT@CEASystem@@QAE_NXZ
?getIsNorthAmerica@CEASystem@@QAE_NXZ
?getOS@CEASystem@@QAEXPAD@Z
?getProfilesPath@CEASystem@@QAEXPAD@Z
?getProgramFilesPath@CEASystem@@AAE_NPADH@Z
?getProgramFilesPath@CEASystem@@QAEXPAD@Z
?getStartMenuPath@CEASystem@@QAEXPAD@Z
?getStartUpMenuPath@CEASystem@@QAEXPAD@Z
?getTempPath@CEASystem@@QAEXPAD@Z
?getValue@CEARegistry@@QAEHPBDPADPAK@Z
?getValue@CEARegistry@@QAEHPBDPAK@Z
?getVersionString@CEAVersion@@QAE_NPBDPAD@Z
?getWindowsPath@CEASystem@@QAEXPAD@Z
?getWindowsSystemPath@CEASystem@@QAEXPAD@Z
?initialized@CEASystem@@2_NA
?isAdmin@CEASystem@@AAEHXZ
?isFile@CEACopyFile@@QAEHV?$CStringT@DV?$StrTraitMFC@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@PAK1@Z
?m_OS@CEASystem@@2PADA
?m_desktopPath@CEASystem@@2PADA
?m_isAdmin@CEASystem@@2_NA
?m_isNT@CEASystem@@2_NA
?m_isNorthAmerica@CEASystem@@2_NA
?m_locale@CEASystem@@2PADA
?m_profilesPath@CEASystem@@2PADA
?m_programFilesPath@CEASystem@@2PADA
?m_registerFilename@CEACopyFile@@0PADA
?m_startMenuPath@CEASystem@@2PADA
?m_startUpMenuPath@CEASystem@@2PADA
?m_tempPath@CEASystem@@2PADA
?m_windowsPath@CEASystem@@2PADA
?m_windowsSystemPath@CEASystem@@2PADA
?openKey@CEARegistry@@QAEHPAUHKEY__@@PBD@Z
?prepareForCancellation@CEAUninstall@@QAE_NPBD@Z
?prepareForUninstallation@CEAUninstall@@QAE_NPBD0@Z
?rebootSystem@CEASystem@@QAEXXZ
?removeDesktopIcon@CEAUninstall@@QAE_NXZ
?removeFiles@CEAUninstall@@QAE_NPAM@Z
?removeGameRegistryEntries@CEAUninstall@@QAE_NXZ
?removeStartMenu@CEAUninstall@@QAE_NXZ
?removeUninstallRegistryEntry@CEAUninstall@@QAE_NXZ
?runERegUninstallExe@CEAUninstall@@QAE_NXZ
?runGameSpecificUninstallExe@CEAUninstall@@QAE_NXZ
?runUninstallExe@CEAUninstall@@QAE_NPAD0@Z
?setDebug@CEAUninstall@@QAEX_N@Z
?setDebugMode@CEACopyFile@@QAEX_N@Z
?setDebugMode@CEASystem@@QAEX_N@Z
?setValue@CEARegistry@@QAEHPBD0@Z
?setValue@CEARegistry@@QAEHPBDK@Z
?stringToKey@CEARegistry@@QAEPAUHKEY__@@PAD@Z
Sections
.text Size: 536KB - Virtual size: 535KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 96KB - Virtual size: 93KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 20KB - Virtual size: 223KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.didat Size: 4KB - Virtual size: 793B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 28KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rmnet Size: 96KB - Virtual size: 96KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE