dialog
initDialog
show
Overview
overview
7Static
static
3b05dab2400...18.exe
windows7-x64
7b05dab2400...18.exe
windows10-2004-x64
7$PLUGINSDI...ns.dll
windows7-x64
3$PLUGINSDI...ns.dll
windows10-2004-x64
3$PLUGINSDI...dl.dll
windows7-x64
3$PLUGINSDI...dl.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...er.exe
windows7-x64
3$PLUGINSDI...er.exe
windows10-2004-x64
6$PLUGINSDI...ll.dll
windows7-x64
3$PLUGINSDI...ll.dll
windows10-2004-x64
3$PLUGINSDI...ns.dll
windows7-x64
3$PLUGINSDI...ns.dll
windows10-2004-x64
3FileManager.dll
windows7-x64
3FileManager.dll
windows10-2004-x64
3GdiPlus.dll
windows7-x64
3GdiPlus.dll
windows10-2004-x64
3Mypoco.exe
windows7-x64
3Mypoco.exe
windows10-2004-x64
7PocoIM.dll
windows7-x64
3PocoIM.dll
windows10-2004-x64
3PocoReader.dll
windows7-x64
3PocoReader.dll
windows10-2004-x64
3PocoUI.dll
windows7-x64
3PocoUI.dll
windows10-2004-x64
3PocoUpload.dll
windows7-x64
3PocoUpload.dll
windows10-2004-x64
3Update.dll
windows7-x64
3Update.dll
windows10-2004-x64
3poco_tools.exe
windows7-x64
3poco_tools.exe
windows10-2004-x64
3Static task
static1
2 signatures
Behavioral task
behavioral1
Sample
b05dab24000f9afa3ab2fd243877c27c_JaffaCakes118.exe
Resource
win7-20240729-en
windows7-x64
4 signatures
150 seconds
Behavioral task
behavioral2
Sample
b05dab24000f9afa3ab2fd243877c27c_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
3 signatures
150 seconds
Behavioral task
behavioral3
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win7-20240705-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral4
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
3 signatures
150 seconds
Behavioral task
behavioral5
Sample
$PLUGINSDIR/NSISdl.dll
Resource
win7-20240704-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral6
Sample
$PLUGINSDIR/NSISdl.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
3 signatures
150 seconds
Behavioral task
behavioral7
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240708-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral8
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
3 signatures
150 seconds
Behavioral task
behavioral9
Sample
$PLUGINSDIR/driver.exe
Resource
win7-20240705-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral10
Sample
$PLUGINSDIR/driver.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
5 signatures
150 seconds
Behavioral task
behavioral11
Sample
$PLUGINSDIR/nsisFirewall.dll
Resource
win7-20240729-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral12
Sample
$PLUGINSDIR/nsisFirewall.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral13
Sample
$PLUGINSDIR/poco_plugins.dll
Resource
win7-20240704-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral14
Sample
$PLUGINSDIR/poco_plugins.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral15
Sample
FileManager.dll
Resource
win7-20240708-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral16
Sample
FileManager.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral17
Sample
GdiPlus.dll
Resource
win7-20240704-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral18
Sample
GdiPlus.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
3 signatures
150 seconds
Behavioral task
behavioral19
Sample
Mypoco.exe
Resource
win7-20240708-en
windows7-x64
6 signatures
150 seconds
Behavioral task
behavioral20
Sample
Mypoco.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
7 signatures
150 seconds
Behavioral task
behavioral21
Sample
PocoIM.dll
Resource
win7-20240704-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral22
Sample
PocoIM.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral23
Sample
PocoReader.dll
Resource
win7-20240705-en
windows7-x64
4 signatures
150 seconds
Behavioral task
behavioral24
Sample
PocoReader.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
4 signatures
150 seconds
Behavioral task
behavioral25
Sample
PocoUI.dll
Resource
win7-20240708-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral26
Sample
PocoUI.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral27
Sample
PocoUpload.dll
Resource
win7-20240729-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral28
Sample
PocoUpload.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
3 signatures
150 seconds
Behavioral task
behavioral29
Sample
Update.dll
Resource
win7-20240708-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral30
Sample
Update.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral31
Sample
poco_tools.exe
Resource
win7-20240704-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral32
Sample
poco_tools.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
b05dab24000f9afa3ab2fd243877c27c_JaffaCakes118
-
Size
3.6MB
-
MD5
b05dab24000f9afa3ab2fd243877c27c
-
SHA1
8b0a8f115f9cc42d8e7a22570e0e416b5a948d2f
-
SHA256
c83600d155f6ef398ac86a01467745bebc3a42057af9ade418654ea58c58a054
-
SHA512
83d45bc465e7da8e73b0f3381d99e601e2cf1e685843bd186d7efa6ae81ab5fc09315bc2dc9e871132100bddc0a9628d839e3d2bc86ad2726d8fa4a9e07ba922
-
SSDEEP
98304:nScVWDSizRsYEosQdclUOUOJeirDzsfCfU1VpyD+8:neFRJ1oU9OJBDzsiUPuZ
Score
3/10
Malware Config
Signatures
-
Unsigned PE 6 IoCs
Checks for missing Authenticode signature.
resource b05dab24000f9afa3ab2fd243877c27c_JaffaCakes118 unpack001/$PLUGINSDIR/InstallOptions.dll unpack001/$PLUGINSDIR/NSISdl.dll unpack001/$PLUGINSDIR/System.dll unpack001/PocoIM.dll unpack001/PocoUI.dll -
NSIS installer 1 IoCs
resource yara_rule sample nsis_installer_1
Files
-
b05dab24000f9afa3ab2fd243877c27c_JaffaCakes118.exe windows:4 windows x86 arch:x86
b2a0d9368ec1be7deb968a920e5c993e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
CreateFileA
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
SetFileTime
GetWindowsDirectoryA
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
ExitProcess
user32
EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow
gdi32
SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject
shell32
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation
advapi32
RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
comctl32
ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create
ole32
CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
Sections
.text Size: 22KB - Virtual size: 22KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 107KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ndata Size: - Virtual size: 48KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/InstallOptions.dll.dll windows:4 windows x86 arch:x86
b1cd0d78f652ce5fc63f0879371af012
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
SetCurrentDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
GetPrivateProfileIntA
GlobalLock
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalAlloc
user32
MapWindowPoints
GetDlgCtrlID
CloseClipboard
GetClipboardData
OpenClipboard
PtInRect
SetWindowRgn
LoadIconA
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
GetClientRect
gdi32
SetTextColor
CreateCompatibleDC
GetObjectA
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject
shell32
SHBrowseForFolderA
SHGetDesktopFolder
SHGetPathFromIDListA
ShellExecuteA
comdlg32
GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
ole32
CoTaskMemFree
Exports
Exports
Sections
.text Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 152B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 1012B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/NSISdl.dll.dll windows:4 windows x86 arch:x86
9cce555dd3ff1b6c7dc92d64c794c51a
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
WaitForSingleObject
lstrcpynA
lstrlenA
lstrcatA
GlobalAlloc
GlobalFree
CloseHandle
GetTickCount
DeleteFileA
Sleep
WriteFile
CreateFileA
lstrcmpiA
lstrcpyA
MulDiv
CreateThread
user32
CharPrevA
SetWindowLongA
RegisterWindowMessageA
CallWindowProcA
DestroyWindow
EnableWindow
GetWindowLongA
CreateWindowExA
GetWindowRect
GetClientRect
ShowWindow
IsWindowVisible
GetFocus
GetDlgItem
FindWindowExA
SetWindowTextA
SendMessageA
wsprintfA
SetDlgItemTextA
advapi32
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
ws2_32
gethostbyname
inet_addr
ioctlsocket
htons
socket
closesocket
shutdown
connect
__WSAFDIsSet
select
recv
WSAGetLastError
send
WSACleanup
WSAStartup
Exports
Exports
download
download_quiet
Sections
.text Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1024B - Virtual size: 812B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/System.dll.dll windows:4 windows x86 arch:x86
4ec328f99bdd944fc98d8a5cf11f7a62
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
GlobalAlloc
GlobalFree
GlobalSize
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
GetLastError
VirtualAlloc
VirtualProtect
user32
wsprintfA
ole32
StringFromGUID2
CLSIDFromString
Exports
Exports
Alloc
Call
Copy
Free
Get
Int64Op
Store
Sections
.text Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 784B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 92B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 496B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/driver.exe.exe windows:4 windows x86 arch:x86
67d358789fa6d1e6811d2250f3d2baae
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
f:\myrootkit\driver_load\release\driver_load.pdb
Imports
kernel32
GlobalAlloc
GlobalFree
InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
GetLastError
LoadResource
LockResource
SizeofResource
FindResourceA
FindResourceExA
CloseHandle
CreateThread
SetEvent
WaitForSingleObject
GetFullPathNameA
LoadLibraryExA
FreeLibrary
CreateFileA
GetModuleHandleA
GetProcAddress
LoadLibraryA
GetCurrentThreadId
GetCommandLineW
WriteFile
GetCurrentProcessId
CreateEventA
ResumeThread
Sleep
OpenEventA
DeleteFileA
HeapAlloc
HeapFree
VirtualAlloc
HeapReAlloc
GetCommandLineA
GetVersionExA
GetProcessHeap
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
HeapDestroy
HeapCreate
ExitProcess
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
InitializeCriticalSection
RtlUnwind
SetFilePointer
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
HeapSize
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
FlushFileBuffers
GetThreadLocale
RaiseException
user32
PostMessageA
MessageBoxA
UnregisterClassA
shell32
CommandLineToArgvW
setupapi
InstallHinfSectionW
Sections
.text Size: 52KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 48KB - Virtual size: 47KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/ioSpecial.ini
-
$PLUGINSDIR/modern-header.bmp
-
$PLUGINSDIR/modern-wizard.bmp
-
$PLUGINSDIR/nsisFirewall.dll.dll windows:4 windows x86 arch:x86
668ee366fb5b7f916e44ba8830cd1caf
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
GetLastError
lstrlenA
InterlockedDecrement
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
LocalFree
HeapAlloc
HeapFree
RaiseException
HeapReAlloc
VirtualAlloc
GetProcAddress
GetModuleHandleA
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetProcessHeap
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
HeapDestroy
HeapCreate
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
InitializeCriticalSection
LoadLibraryA
GetCPInfo
ole32
OleRun
CLSIDFromString
CoUninitialize
CoInitialize
CLSIDFromProgID
CoCreateInstance
oleaut32
SysFreeString
GetErrorInfo
SysAllocString
VariantClear
Exports
Exports
AddAuthorizedApplication
RemoveAuthorizedApplication
Sections
.text Size: 46KB - Virtual size: 46KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 176B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/plugins.bmp
-
$PLUGINSDIR/poco_plugins.dll.dll windows:4 windows x86 arch:x86
1fff20c44a4a4418c537245ea1a607f4
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
f:\安装包\安装包文档\browserhelper\release\browserhelper.pdb
Imports
kernel32
LoadResource
LockResource
SizeofResource
FindResourceA
FindResourceExA
lstrlenA
InterlockedDecrement
CloseHandle
GetLastError
CreateToolhelp32Snapshot
Process32First
OpenProcess
Process32Next
CreateDirectoryA
GetLocalTime
GetTempPathA
GetTempFileNameA
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
LoadLibraryA
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
LocalFree
VirtualAlloc
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
RtlUnwind
HeapCreate
VirtualFree
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCPInfo
GetOEMCP
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
user32
UnregisterClassA
wsprintfA
advapi32
SetEntriesInAclA
BuildExplicitAccessWithNameA
GetNamedSecurityInfoA
SetNamedSecurityInfoA
shell32
SHGetSpecialFolderPathA
ole32
CoCreateInstance
CoSetProxyBlanket
CoInitializeSecurity
oleaut32
VariantClear
VariantInit
SysAllocString
SysFreeString
iphlpapi
GetAdaptersInfo
urlmon
URLDownloadToFileA
Exports
Exports
D
E
G
M
P
T
X
X2
Sections
.text Size: 84KB - Virtual size: 81KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 176B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
FileExt.inf
-
FileManager.dll.dll regsvr32 windows:4 windows x86 arch:x86
d508aaef9c9314ed4c771c768d22ee34
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\My_Application_2005\Source_in_Vss\PocoManager\Release\FileManager.pdb
Imports
kernel32
GetModuleFileNameA
GetModuleHandleA
lstrlenA
SystemTimeToFileTime
GetLocalTime
ReadFile
GetFileTime
GetFileSize
CreateFileA
CloseHandle
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
CreateDirectoryW
GetModuleFileNameW
WritePrivateProfileStringW
SetThreadLocale
GetThreadLocale
DeleteFileW
GetLastError
lstrcmpiA
IsDBCSLeadByte
FreeLibrary
LoadLibraryExA
InterlockedExchange
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
CopyFileW
MultiByteToWideChar
WideCharToMultiByte
FindResourceExA
FindResourceA
LoadResource
LockResource
lstrlenW
SizeofResource
LoadLibraryA
GetConsoleMode
GetConsoleCP
SetFilePointer
GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetACP
GetLocaleInfoA
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
VirtualProtect
VirtualAlloc
GetProcAddress
GetSystemInfo
VirtualQuery
GetCurrentThreadId
GetCommandLineA
GetCPInfo
GetOEMCP
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
LCMapStringA
LCMapStringW
VirtualFree
HeapCreate
ExitProcess
WriteFile
GetStdHandle
Sleep
SetHandleCount
GetFileType
GetStringTypeA
user32
KillTimer
CharNextA
SetTimer
UnregisterClassA
advapi32
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyExA
shell32
SHGetSpecialFolderPathW
ole32
StgCreateDocfile
StgOpenStorage
CoCreateGuid
CoCreateInstance
StringFromGUID2
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CLSIDFromString
oleaut32
LoadTypeLi
LoadRegTypeLi
SysStringLen
VarUI4FromStr
SysFreeString
VariantCopy
SysAllocString
VariantClear
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Sections
.text Size: 124KB - Virtual size: 121KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 24KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
GdiPlus.dll.dll windows:5 windows x86 arch:x86
2ace81ae239dd5867a499e7debe900d2
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
gdiplus.pdb
Imports
kernel32
ReadFile
InterlockedDecrement
EnterCriticalSection
LeaveCriticalSection
InterlockedCompareExchange
HeapAlloc
GetProcessHeap
InterlockedExchange
GetCurrentThreadId
InitializeCriticalSection
DeleteCriticalSection
DisableThreadLibraryCalls
HeapFree
RaiseException
HeapReAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
CloseHandle
WriteFile
CreateFileA
WaitForSingleObject
SetEvent
lstrcmpiA
CreateThread
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCPInfo
VirtualQuery
RtlUnwind
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ExitProcess
GetCommandLineA
GetSystemInfo
VirtualAlloc
IsValidLocale
ConvertDefaultLocale
GetLocaleInfoW
GetModuleFileNameW
GetModuleFileNameA
FindResourceA
LoadResource
LockResource
GetProfileIntA
GetProfileStringA
lstrcmpiW
IsDBCSLeadByteEx
LocalReAlloc
MulDiv
SetLastError
LocalAlloc
LocalFree
GetFileTime
SearchPathW
SearchPathA
GetOEMCP
SetEndOfFile
SetFilePointer
InterlockedIncrement
UnlockFile
GetFileInformationByHandle
LockFile
FlushFileBuffers
CreateSemaphoreA
CreateFileW
LoadLibraryW
GetSystemDirectoryA
CreateFileMappingW
ReleaseSemaphore
GetProfileSectionA
GetLastError
VirtualFree
GlobalAlloc
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GlobalLock
GlobalSize
GlobalUnlock
GlobalFree
HeapCreate
GetModuleHandleA
GetModuleHandleW
FreeLibrary
HeapDestroy
LoadLibraryA
GetProcAddress
GetSystemDirectoryW
GetWindowsDirectoryA
GetVersionExA
GetACP
GetSystemDefaultLCID
MultiByteToWideChar
WideCharToMultiByte
CreateEventA
user32
MsgWaitForMultipleObjects
LoadBitmapW
LoadBitmapA
wsprintfW
ReleaseDC
GetDC
wsprintfA
GetSysColor
UnregisterClassA
DestroyWindow
GetSystemMetrics
DefWindowProcA
CreateWindowExA
RegisterWindowMessageA
RegisterClassA
DispatchMessageA
TranslateMessage
PeekMessageA
GetClientRect
GetDesktopWindow
GetWindowRect
WindowFromDC
ClientToScreen
wvsprintfA
CreateIconIndirect
GetIconInfo
GetDCEx
GetWindowLongA
GetClassLongA
SystemParametersInfoA
gdi32
GetDIBColorTable
FillRgn
SetMiterLimit
CreateSolidBrush
StrokePath
GetGraphicsMode
SetPolyFillMode
FillPath
StrokeAndFillPath
PolyPolyline
GetNearestPaletteIndex
ExtTextOutA
GetTextCharsetInfo
TranslateCharsetInfo
PolylineTo
Polyline
LineTo
GetCurrentPositionEx
ArcTo
SetArcDirection
SelectClipPath
GetPath
CloseFigure
AbortPath
FlattenPath
WidenPath
BeginPath
Ellipse
AngleArc
PolyBezierTo
PolyBezier
RoundRect
PolyDraw
Pie
Chord
Arc
EndPath
OffsetClipRgn
GetRgnBox
CombineRgn
SetPaletteEntries
ResizePalette
ExcludeClipRect
MoveToEx
PlayEnhMetaFile
GetWinMetaFileBits
PlgBlt
BitBlt
OffsetViewportOrgEx
StretchBlt
ScaleViewportExtEx
ScaleWindowExtEx
CombineTransform
SetMapperFlags
CreatePen
CreateDIBitmap
CreatePatternBrush
ExtSelectClipRgn
GetBkMode
GetTextAlign
ModifyWorldTransform
ExtCreateRegion
CreateCompatibleBitmap
GetNearestColor
SetStretchBltMode
StretchDIBits
SetTextAlign
SetTextJustification
PolyPolygon
PlayMetaFileRecord
ExtCreatePen
GetWorldTransform
GetROP2
SetROP2
Rectangle
Polygon
IntersectClipRect
SetBrushOrgEx
GetClipRgn
SelectClipRgn
GetBkColor
GetTextColor
CreatePenIndirect
GetObjectW
DPtoLP
CreateDIBPatternBrushPt
ExtTextOutW
SetBitmapBits
SetDIBColorTable
CreateEnhMetaFileW
GdiComment
GetMetaFileW
GetMetaFileA
SaveDC
SetWindowOrgEx
SetViewportOrgEx
SetGraphicsMode
SetWorldTransform
GetEnhMetaFileW
GetEnhMetaFileA
GetEnhMetaFileBits
CopyEnhMetaFileA
CopyMetaFileA
DeleteMetaFile
GetEnhMetaFileHeader
SetMetaFileBitsEx
SetEnhMetaFileBits
CreateEnhMetaFileA
SetMapMode
SetViewportExtEx
SetWindowExtEx
PlayMetaFile
CloseEnhMetaFile
DeleteEnhMetaFile
SetMetaRgn
GetMetaFileBitsEx
EnumMetaFile
EnumEnhMetaFile
PlayEnhMetaFileRecord
RestoreDC
GetStockObject
CreateBitmap
SetTextColor
SetBkColor
SetBkMode
SetDIBits
CreatePalette
GetSystemPaletteEntries
GetSystemPaletteUse
GetDeviceCaps
ExtEscape
GetObjectType
GetPixel
DeleteObject
SelectPalette
GetTextFaceA
GetTextMetricsA
GetTextFaceW
GetTextMetricsW
EnumFontFamiliesExA
EnumFontFamiliesExW
SelectObject
CreateFontIndirectW
CreateFontIndirectA
GetRegionData
DeleteDC
CreateDCA
CreateICA
CreateRectRgn
GetRandomRgn
LPtoDP
GetWindowExtEx
GetViewportExtEx
GetWindowOrgEx
GetViewportOrgEx
GetMapMode
SetICMMode
Escape
GetDCOrgEx
GetObjectA
GetCurrentObject
GetDIBits
CreateCompatibleDC
CreateDIBSection
RealizePalette
GetPaletteEntries
GdiFlush
PatBlt
CreateBrushIndirect
ole32
CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal
advapi32
RegOpenKeyW
RegOpenKeyA
RegCloseKey
RegEnumValueW
RegQueryInfoKeyA
RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExA
RegQueryValueExW
RegEnumKeyExA
RegEnumKeyExW
RegCreateKeyExA
RegSetValueExW
RegSetValueExA
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyExW
RegEnumValueA
Exports
Exports
GdipAddPathArc
GdipAddPathArcI
GdipAddPathBezier
GdipAddPathBezierI
GdipAddPathBeziers
GdipAddPathBeziersI
GdipAddPathClosedCurve
GdipAddPathClosedCurve2
GdipAddPathClosedCurve2I
GdipAddPathClosedCurveI
GdipAddPathCurve
GdipAddPathCurve2
GdipAddPathCurve2I
GdipAddPathCurve3
GdipAddPathCurve3I
GdipAddPathCurveI
GdipAddPathEllipse
GdipAddPathEllipseI
GdipAddPathLine
GdipAddPathLine2
GdipAddPathLine2I
GdipAddPathLineI
GdipAddPathPath
GdipAddPathPie
GdipAddPathPieI
GdipAddPathPolygon
GdipAddPathPolygonI
GdipAddPathRectangle
GdipAddPathRectangleI
GdipAddPathRectangles
GdipAddPathRectanglesI
GdipAddPathString
GdipAddPathStringI
GdipAlloc
GdipBeginContainer
GdipBeginContainer2
GdipBeginContainerI
GdipBitmapGetPixel
GdipBitmapLockBits
GdipBitmapSetPixel
GdipBitmapSetResolution
GdipBitmapUnlockBits
GdipClearPathMarkers
GdipCloneBitmapArea
GdipCloneBitmapAreaI
GdipCloneBrush
GdipCloneCustomLineCap
GdipCloneFont
GdipCloneFontFamily
GdipCloneImage
GdipCloneImageAttributes
GdipCloneMatrix
GdipClonePath
GdipClonePen
GdipCloneRegion
GdipCloneStringFormat
GdipClosePathFigure
GdipClosePathFigures
GdipCombineRegionPath
GdipCombineRegionRect
GdipCombineRegionRectI
GdipCombineRegionRegion
GdipComment
GdipCreateAdjustableArrowCap
GdipCreateBitmapFromDirectDrawSurface
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromGraphics
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromHICON
GdipCreateBitmapFromResource
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateCachedBitmap
GdipCreateCustomLineCap
GdipCreateFont
GdipCreateFontFamilyFromName
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCreateFontFromLogfontW
GdipCreateFromHDC
GdipCreateFromHDC2
GdipCreateFromHWND
GdipCreateFromHWNDICM
GdipCreateHBITMAPFromBitmap
GdipCreateHICONFromBitmap
GdipCreateHalftonePalette
GdipCreateHatchBrush
GdipCreateImageAttributes
GdipCreateLineBrush
GdipCreateLineBrushFromRect
GdipCreateLineBrushFromRectI
GdipCreateLineBrushFromRectWithAngle
GdipCreateLineBrushFromRectWithAngleI
GdipCreateLineBrushI
GdipCreateMatrix
GdipCreateMatrix2
GdipCreateMatrix3
GdipCreateMatrix3I
GdipCreateMetafileFromEmf
GdipCreateMetafileFromFile
GdipCreateMetafileFromStream
GdipCreateMetafileFromWmf
GdipCreateMetafileFromWmfFile
GdipCreatePath
GdipCreatePath2
GdipCreatePath2I
GdipCreatePathGradient
GdipCreatePathGradientFromPath
GdipCreatePathGradientI
GdipCreatePathIter
GdipCreatePen1
GdipCreatePen2
GdipCreateRegion
GdipCreateRegionHrgn
GdipCreateRegionPath
GdipCreateRegionRect
GdipCreateRegionRectI
GdipCreateRegionRgnData
GdipCreateSolidFill
GdipCreateStreamOnFile
GdipCreateStringFormat
GdipCreateTexture
GdipCreateTexture2
GdipCreateTexture2I
GdipCreateTextureIA
GdipCreateTextureIAI
GdipDeleteBrush
GdipDeleteCachedBitmap
GdipDeleteCustomLineCap
GdipDeleteFont
GdipDeleteFontFamily
GdipDeleteGraphics
GdipDeleteMatrix
GdipDeletePath
GdipDeletePathIter
GdipDeletePen
GdipDeletePrivateFontCollection
GdipDeleteRegion
GdipDeleteStringFormat
GdipDisposeImage
GdipDisposeImageAttributes
GdipDrawArc
GdipDrawArcI
GdipDrawBezier
GdipDrawBezierI
GdipDrawBeziers
GdipDrawBeziersI
GdipDrawCachedBitmap
GdipDrawClosedCurve
GdipDrawClosedCurve2
GdipDrawClosedCurve2I
GdipDrawClosedCurveI
GdipDrawCurve
GdipDrawCurve2
GdipDrawCurve2I
GdipDrawCurve3
GdipDrawCurve3I
GdipDrawCurveI
GdipDrawDriverString
GdipDrawEllipse
GdipDrawEllipseI
GdipDrawImage
GdipDrawImageI
GdipDrawImagePointRect
GdipDrawImagePointRectI
GdipDrawImagePoints
GdipDrawImagePointsI
GdipDrawImagePointsRect
GdipDrawImagePointsRectI
GdipDrawImageRect
GdipDrawImageRectI
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipDrawLine
GdipDrawLineI
GdipDrawLines
GdipDrawLinesI
GdipDrawPath
GdipDrawPie
GdipDrawPieI
GdipDrawPolygon
GdipDrawPolygonI
GdipDrawRectangle
GdipDrawRectangleI
GdipDrawRectangles
GdipDrawRectanglesI
GdipDrawString
GdipEmfToWmfBits
GdipEndContainer
GdipEnumerateMetafileDestPoint
GdipEnumerateMetafileDestPointI
GdipEnumerateMetafileDestPoints
GdipEnumerateMetafileDestPointsI
GdipEnumerateMetafileDestRect
GdipEnumerateMetafileDestRectI
GdipEnumerateMetafileSrcRectDestPoint
GdipEnumerateMetafileSrcRectDestPointI
GdipEnumerateMetafileSrcRectDestPoints
GdipEnumerateMetafileSrcRectDestPointsI
GdipEnumerateMetafileSrcRectDestRect
GdipEnumerateMetafileSrcRectDestRectI
GdipFillClosedCurve
GdipFillClosedCurve2
GdipFillClosedCurve2I
GdipFillClosedCurveI
GdipFillEllipse
GdipFillEllipseI
GdipFillPath
GdipFillPie
GdipFillPieI
GdipFillPolygon
GdipFillPolygon2
GdipFillPolygon2I
GdipFillPolygonI
GdipFillRectangle
GdipFillRectangleI
GdipFillRectangles
GdipFillRectanglesI
GdipFillRegion
GdipFlattenPath
GdipFlush
GdipFree
GdipGetAdjustableArrowCapFillState
GdipGetAdjustableArrowCapHeight
GdipGetAdjustableArrowCapMiddleInset
GdipGetAdjustableArrowCapWidth
GdipGetAllPropertyItems
GdipGetBrushType
GdipGetCellAscent
GdipGetCellDescent
GdipGetClip
GdipGetClipBounds
GdipGetClipBoundsI
GdipGetCompositingMode
GdipGetCompositingQuality
GdipGetCustomLineCapBaseCap
GdipGetCustomLineCapBaseInset
GdipGetCustomLineCapStrokeCaps
GdipGetCustomLineCapStrokeJoin
GdipGetCustomLineCapType
GdipGetCustomLineCapWidthScale
GdipGetDC
GdipGetDpiX
GdipGetDpiY
GdipGetEmHeight
GdipGetEncoderParameterList
GdipGetEncoderParameterListSize
GdipGetFamily
GdipGetFamilyName
GdipGetFontCollectionFamilyCount
GdipGetFontCollectionFamilyList
GdipGetFontHeight
GdipGetFontHeightGivenDPI
GdipGetFontSize
GdipGetFontStyle
GdipGetFontUnit
GdipGetGenericFontFamilyMonospace
GdipGetGenericFontFamilySansSerif
GdipGetGenericFontFamilySerif
GdipGetHatchBackgroundColor
GdipGetHatchForegroundColor
GdipGetHatchStyle
GdipGetHemfFromMetafile
GdipGetImageAttributesAdjustedPalette
GdipGetImageBounds
GdipGetImageDecoders
GdipGetImageDecodersSize
GdipGetImageDimension
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGetImageFlags
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipGetImageHorizontalResolution
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageRawFormat
GdipGetImageThumbnail
GdipGetImageType
GdipGetImageVerticalResolution
GdipGetImageWidth
GdipGetInterpolationMode
GdipGetLineBlend
GdipGetLineBlendCount
GdipGetLineColors
GdipGetLineGammaCorrection
GdipGetLinePresetBlend
GdipGetLinePresetBlendCount
GdipGetLineRect
GdipGetLineRectI
GdipGetLineSpacing
GdipGetLineTransform
GdipGetLineWrapMode
GdipGetLogFontA
GdipGetLogFontW
GdipGetMatrixElements
GdipGetMetafileDownLevelRasterizationLimit
GdipGetMetafileHeaderFromEmf
GdipGetMetafileHeaderFromFile
GdipGetMetafileHeaderFromMetafile
GdipGetMetafileHeaderFromStream
GdipGetMetafileHeaderFromWmf
GdipGetNearestColor
GdipGetPageScale
GdipGetPageUnit
GdipGetPathData
GdipGetPathFillMode
GdipGetPathGradientBlend
GdipGetPathGradientBlendCount
GdipGetPathGradientCenterColor
GdipGetPathGradientCenterPoint
GdipGetPathGradientCenterPointI
GdipGetPathGradientFocusScales
GdipGetPathGradientGammaCorrection
GdipGetPathGradientPath
GdipGetPathGradientPointCount
GdipGetPathGradientPresetBlend
GdipGetPathGradientPresetBlendCount
GdipGetPathGradientRect
GdipGetPathGradientRectI
GdipGetPathGradientSurroundColorCount
GdipGetPathGradientSurroundColorsWithCount
GdipGetPathGradientTransform
GdipGetPathGradientWrapMode
GdipGetPathLastPoint
GdipGetPathPoints
GdipGetPathPointsI
GdipGetPathTypes
GdipGetPathWorldBounds
GdipGetPathWorldBoundsI
GdipGetPenBrushFill
GdipGetPenColor
GdipGetPenCompoundArray
GdipGetPenCompoundCount
GdipGetPenCustomEndCap
GdipGetPenCustomStartCap
GdipGetPenDashArray
GdipGetPenDashCap197819
GdipGetPenDashCount
GdipGetPenDashOffset
GdipGetPenDashStyle
GdipGetPenEndCap
GdipGetPenFillType
GdipGetPenLineJoin
GdipGetPenMiterLimit
GdipGetPenMode
GdipGetPenStartCap
GdipGetPenTransform
GdipGetPenUnit
GdipGetPenWidth
GdipGetPixelOffsetMode
GdipGetPointCount
GdipGetPropertyCount
GdipGetPropertyIdList
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipGetPropertySize
GdipGetRegionBounds
GdipGetRegionBoundsI
GdipGetRegionData
GdipGetRegionDataSize
GdipGetRegionHRgn
GdipGetRegionScans
GdipGetRegionScansCount
GdipGetRegionScansI
GdipGetRenderingOrigin
GdipGetSmoothingMode
GdipGetSolidFillColor
GdipGetStringFormatAlign
GdipGetStringFormatDigitSubstitution
GdipGetStringFormatFlags
GdipGetStringFormatHotkeyPrefix
GdipGetStringFormatLineAlign
GdipGetStringFormatMeasurableCharacterRangeCount
GdipGetStringFormatTabStopCount
GdipGetStringFormatTabStops
GdipGetStringFormatTrimming
GdipGetTextContrast
GdipGetTextRenderingHint
GdipGetTextureImage
GdipGetTextureTransform
GdipGetTextureWrapMode
GdipGetVisibleClipBounds
GdipGetVisibleClipBoundsI
GdipGetWorldTransform
GdipGraphicsClear
GdipImageForceValidation
GdipImageGetFrameCount
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageRotateFlip
GdipImageSelectActiveFrame
GdipInvertMatrix
GdipIsClipEmpty
GdipIsEmptyRegion
GdipIsEqualRegion
GdipIsInfiniteRegion
GdipIsMatrixEqual
GdipIsMatrixIdentity
GdipIsMatrixInvertible
GdipIsOutlineVisiblePathPoint
GdipIsOutlineVisiblePathPointI
GdipIsStyleAvailable
GdipIsVisibleClipEmpty
GdipIsVisiblePathPoint
GdipIsVisiblePathPointI
GdipIsVisiblePoint
GdipIsVisiblePointI
GdipIsVisibleRect
GdipIsVisibleRectI
GdipIsVisibleRegionPoint
GdipIsVisibleRegionPointI
GdipIsVisibleRegionRect
GdipIsVisibleRegionRectI
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipMeasureCharacterRanges
GdipMeasureDriverString
GdipMeasureString
GdipMultiplyLineTransform
GdipMultiplyMatrix
GdipMultiplyPathGradientTransform
GdipMultiplyPenTransform
GdipMultiplyTextureTransform
GdipMultiplyWorldTransform
GdipNewInstalledFontCollection
GdipNewPrivateFontCollection
GdipPathIterCopyData
GdipPathIterEnumerate
GdipPathIterGetCount
GdipPathIterGetSubpathCount
GdipPathIterHasCurve
GdipPathIterIsValid
GdipPathIterNextMarker
GdipPathIterNextMarkerPath
GdipPathIterNextPathType
GdipPathIterNextSubpath
GdipPathIterNextSubpathPath
GdipPathIterRewind
GdipPlayMetafileRecord
GdipPrivateAddFontFile
GdipPrivateAddMemoryFont
GdipRecordMetafile
GdipRecordMetafileFileName
GdipRecordMetafileFileNameI
GdipRecordMetafileI
GdipRecordMetafileStream
GdipRecordMetafileStreamI
GdipReleaseDC
GdipRemovePropertyItem
GdipResetClip
GdipResetImageAttributes
GdipResetLineTransform
GdipResetPageTransform
GdipResetPath
GdipResetPathGradientTransform
GdipResetPenTransform
GdipResetTextureTransform
GdipResetWorldTransform
GdipRestoreGraphics
GdipReversePath
GdipRotateLineTransform
GdipRotateMatrix
GdipRotatePathGradientTransform
GdipRotatePenTransform
GdipRotateTextureTransform
GdipRotateWorldTransform
GdipSaveAdd
GdipSaveAddImage
GdipSaveGraphics
GdipSaveImageToFile
GdipSaveImageToStream
GdipScaleLineTransform
GdipScaleMatrix
GdipScalePathGradientTransform
GdipScalePenTransform
GdipScaleTextureTransform
GdipScaleWorldTransform
GdipSetAdjustableArrowCapFillState
GdipSetAdjustableArrowCapHeight
GdipSetAdjustableArrowCapMiddleInset
GdipSetAdjustableArrowCapWidth
GdipSetClipGraphics
GdipSetClipHrgn
GdipSetClipPath
GdipSetClipRect
GdipSetClipRectI
GdipSetClipRegion
GdipSetCompositingMode
GdipSetCompositingQuality
GdipSetCustomLineCapBaseCap
GdipSetCustomLineCapBaseInset
GdipSetCustomLineCapStrokeCaps
GdipSetCustomLineCapStrokeJoin
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 44KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Shared Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 72KB - Virtual size: 70KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 36KB - Virtual size: 34KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Mypoco.exe.exe windows:4 windows x86 arch:x86
f60e700f8c5e71ce26e552dc6a9e4a9c
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
e:\Mypoco2008\Release\Mypoco.pdb
Imports
kernel32
FindResourceA
FindResourceExA
lstrlenW
lstrlenA
GetUserDefaultLCID
CloseHandle
WriteFile
CreateFileA
ReadFile
CreateDirectoryA
GetFileAttributesA
CreateDirectoryW
GetProcAddress
FreeLibrary
LoadLibraryW
GetPrivateProfileStringW
RaiseException
InitializeCriticalSection
DeleteCriticalSection
GetPrivateProfileIntW
WritePrivateProfileStringW
GetTempPathA
GetLocalTime
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetModuleFileNameA
GetModuleHandleA
GetTickCount
EnterCriticalSection
LoadResource
InterlockedIncrement
InterlockedDecrement
SetUnhandledExceptionFilter
DeleteFileA
SetEvent
Module32Next
Module32First
CreateToolhelp32Snapshot
LoadLibraryA
MoveFileExA
SetFilePointer
ReleaseMutex
GetCurrentProcessId
CreateMutexW
GetCommandLineW
LockResource
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
SizeofResource
GetLastError
WideCharToMultiByte
MultiByteToWideChar
LeaveCriticalSection
InterlockedExchange
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
Sleep
LCMapStringW
GetSystemInfo
SetLastError
GetCurrentThreadId
GetCurrentProcess
FlushInstructionCache
GetVersionExA
GetACP
GetLocaleInfoA
GetThreadLocale
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
LCMapStringA
GetOEMCP
GetCPInfo
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStdHandle
ExitProcess
HeapCreate
GetStartupInfoA
GetCommandLineA
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
VirtualQuery
VirtualProtect
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
GetProcessHeap
HeapSize
GlobalMemoryStatus
user32
SetWindowLongA
MessageBoxA
GetActiveWindow
SetTimer
PeekMessageA
DispatchMessageA
TranslateMessage
GetClassInfoExA
GetMessageA
CreateWindowExA
SendMessageTimeoutA
SetForegroundWindow
ShowWindow
FindWindowA
LoadCursorA
DestroyWindow
DefWindowProcA
TranslateAcceleratorA
RegisterClassExA
CallWindowProcA
PostMessageA
UnregisterClassA
PostQuitMessage
KillTimer
LoadAcceleratorsA
GetWindowLongA
advapi32
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegCreateKeyA
shell32
ShellExecuteA
SHGetSpecialFolderPathA
SHGetSpecialFolderPathW
CommandLineToArgvW
ole32
CoCreateInstance
CoInitialize
CoUninitialize
CoCreateGuid
CLSIDFromString
CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2
CoTaskMemRealloc
oleaut32
LoadRegTypeLi
SysStringLen
LoadTypeLi
VariantInit
OleCreatePropertyFrame
VariantCopy
SysAllocString
SysAllocStringLen
VariantClear
SysFreeString
quartz
AMGetErrorTextA
ws2_32
htons
recv
sendto
inet_addr
socket
inet_ntoa
ntohs
send
connect
bind
WSAStartup
recvfrom
WSASetLastError
WSAAsyncGetHostByName
WSAAsyncSelect
WSAGetLastError
select
accept
closesocket
htonl
iphlpapi
GetAdaptersInfo
Sections
.text Size: 196KB - Virtual size: 193KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 48KB - Virtual size: 47KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 168KB - Virtual size: 165KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
PocoIM.dll.dll regsvr32 windows:4 windows x86 arch:x86
fef86ab89a6c68b742d8e8728b114dd8
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
d:\2007Poco\Release\PocoIm.pdb
Imports
ws2_32
inet_ntoa
inet_addr
WSAAsyncGetHostByName
WSASetLastError
htonl
htons
ntohl
ntohs
socket
WSAStartup
WSACleanup
WSAAsyncSelect
gethostname
gethostbyname
WSAGetLastError
setsockopt
getsockopt
getsockname
getpeername
sendto
send
recvfrom
recv
listen
connect
shutdown
closesocket
bind
accept
kernel32
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
SetFilePointer
QueryPerformanceCounter
GetVersionExA
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
FileTimeToSystemTime
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
CreateDirectoryA
GetModuleFileNameA
WritePrivateProfileStringA
SetThreadLocale
GetThreadLocale
InterlockedExchange
MultiByteToWideChar
lstrlenW
GetLastError
lstrlenA
lstrcmpiA
IsDBCSLeadByte
FreeLibrary
LoadLibraryExA
GetModuleHandleA
GetPrivateProfileIntA
GetCurrentProcessId
GetTickCount
GetCurrentThreadId
IsBadReadPtr
IsBadCodePtr
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
GetStdHandle
WriteFile
HeapCreate
HeapDestroy
VirtualFree
ExitProcess
HeapSize
CreateFileA
CloseHandle
FlushFileBuffers
GetModuleFileNameW
Sleep
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetProcessHeap
GetCommandLineA
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
GetProcAddress
VirtualAlloc
VirtualProtect
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
HeapAlloc
HeapFree
user32
DestroyWindow
SetTimer
KillTimer
DefWindowProcA
CharNextA
UnregisterClassA
RegisterClassExA
CreateWindowExA
SetWindowLongA
GetWindowLongA
advapi32
RegCreateKeyExA
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
shell32
SHGetSpecialFolderPathA
ole32
CoTaskMemRealloc
CoTaskMemFree
CLSIDFromString
CoTaskMemAlloc
StringFromGUID2
CoCreateInstance
oleaut32
VarUI4FromStr
SysStringLen
SysAllocString
VariantCopy
VariantClear
VariantInit
LoadTypeLi
LoadRegTypeLi
SysFreeString
iphlpapi
GetIpAddrTable
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Sections
.text Size: 136KB - Virtual size: 132KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
PocoReader.dll.dll regsvr32 windows:4 windows x86 arch:x86
dc16eecebbbe59ebf2d9c59ea87663b5
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
D:\PocoZineOnline\PZPlayer\Release\PZPlayer.pdb
Imports
kernel32
GetTickCount
GetCurrentThreadId
InterlockedIncrement
InterlockedDecrement
IsDBCSLeadByte
GlobalUnlock
GlobalLock
lstrcmpA
SetLastError
GlobalFree
GlobalHandle
CreateDirectoryA
GetSystemTime
Sleep
CreateThread
GetTempFileNameA
GetTempPathA
CopyFileA
GetLocalTime
GetExitCodeThread
TerminateThread
WaitForSingleObject
FindClose
FindNextFileA
FindFirstFileA
GetSystemInfo
lstrcatA
CompareStringA
lstrcmpiW
WritePrivateProfileStringA
GetPrivateProfileStringA
SetStdHandle
FlushFileBuffers
DeleteFileA
IsBadReadPtr
GetStringTypeW
GetStringTypeA
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualFree
HeapCreate
TlsGetValue
TlsSetValue
TlsFree
TlsAlloc
GetCPInfo
GetOEMCP
ExitThread
GetCommandLineA
TerminateProcess
ExitProcess
VirtualQuery
VirtualAlloc
VirtualProtect
RtlUnwind
HeapSize
HeapReAlloc
SystemTimeToFileTime
SetFileTime
CreateEventA
SetEvent
ResetEvent
GetDiskFreeSpaceExA
GlobalMemoryStatus
FormatMessageA
LocalFree
HeapDestroy
CreateFileA
MulDiv
lstrcpynA
GlobalAlloc
LoadLibraryA
GetProcAddress
FreeLibrary
GetModuleFileNameA
GetModuleHandleA
lstrcpyA
lstrlenW
lstrcmpiA
lstrlenA
CloseHandle
HeapAlloc
GetProcessHeap
HeapFree
GetCurrentProcess
FlushInstructionCache
GetFileSize
SetEndOfFile
SetFilePointer
InterlockedExchange
WriteFile
ReadFile
GetLastError
FindResourceExA
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
IsBadCodePtr
user32
ShowWindow
SetTimer
KillTimer
SetWindowPos
MapDialogRect
GetDlgItem
SetWindowContextHelpId
GetDialogBaseUnits
ReleaseDC
GetDC
DestroyWindow
GetClassInfoExA
wsprintfA
SetWindowRgn
OffsetRect
SetWindowsHookExA
CallNextHookEx
UnhookWindowsHookEx
EqualRect
IntersectRect
IsDialogMessageA
CopyAcceleratorTableA
GetNextDlgTabItem
GetClassLongA
EndDialog
MapWindowPoints
GetWindowRect
SetRectEmpty
CreateCursor
UpdateWindow
GetCapture
SetCursor
ScreenToClient
GetCursorPos
GetDlgCtrlID
DrawFocusRect
IsWindowEnabled
GetWindow
UnionRect
PtInRect
PostMessageA
SendMessageA
LoadCursorA
IsWindow
UnregisterClassA
SetWindowTextA
MessageBoxA
DefWindowProcA
CharNextA
RegisterClassExA
DestroyCursor
PostThreadMessageA
CallWindowProcA
GetSysColor
ReleaseCapture
SetCapture
FillRect
GetClientRect
InvalidateRect
InvalidateRgn
GetDesktopWindow
EndPaint
BeginPaint
SetFocus
SetWindowLongA
GetWindowLongA
CreateWindowExA
IsChild
GetFocus
DestroyAcceleratorTable
CharLowerA
GetActiveWindow
EnumChildWindows
GetMessageA
TranslateMessage
DispatchMessageA
CreateDialogIndirectParamA
DialogBoxIndirectParamA
RegisterWindowMessageA
GetWindowTextLengthA
GetWindowTextA
CreateAcceleratorTableA
GetKeyState
SystemParametersInfoA
SendDlgItemMessageA
DrawTextA
GetParent
GetClassNameA
RedrawWindow
gdi32
GetTextMetricsA
GetTextExtentPointA
DeleteObject
RestoreDC
SetViewportOrgEx
SetWindowOrgEx
SetMapMode
SelectObject
CreateDCA
SetBkColor
CreateRectRgnIndirect
DeleteMetaFile
CloseMetaFile
SetWindowExtEx
CreateMetaFileA
CreateFontIndirectA
GetDeviceCaps
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
GetObjectA
GetStockObject
CreateSolidBrush
SetBkMode
SetTextColor
LPtoDP
SaveDC
Rectangle
advapi32
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyA
RegQueryValueA
RegQueryInfoKeyA
RegDeleteKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
shell32
CommandLineToArgvW
SHGetSpecialFolderPathA
SHGetFileInfoA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
ShellExecuteA
ole32
CoCreateGuid
CreateOleAdviseHolder
CreateDataAdviseHolder
CreateBindCtx
CoTaskMemRealloc
CoGetMalloc
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
CreateStreamOnHGlobal
OleLockRunning
CoTaskMemAlloc
StringFromGUID2
StringFromCLSID
oleaut32
SetErrorInfo
CreateErrorInfo
SysAllocStringLen
VarBstrCmp
RegisterTypeLi
UnRegisterTypeLi
DispCallFunc
OleCreatePropertyFrame
VariantChangeType
OleTranslateColor
LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
SysStringByteLen
VarUI4FromStr
SysAllocString
VariantClear
VariantInit
SysStringLen
SysFreeString
shlwapi
PathFileExistsA
PathIsDirectoryA
PathFindExtensionA
comctl32
_TrackMouseEvent
urlmon
CreateURLMoniker
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
ws2_32
ntohs
recv
send
connect
WSAGetLastError
WSAAsyncGetHostByName
socket
sendto
WSAStartup
WSAAsyncSelect
closesocket
htonl
WSASetLastError
htons
inet_addr
inet_ntoa
WSACancelAsyncRequest
accept
bind
shutdown
listen
recvfrom
WSASend
WSARecv
WSASendTo
WSARecvFrom
getpeername
getsockname
getsockopt
ntohl
setsockopt
iphlpapi
GetAdaptersInfo
GetIpAddrTable
wininet
FindNextUrlCacheEntryA
FindFirstUrlCacheEntryA
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer
GetVersionDword
Sections
.text Size: 440KB - Virtual size: 436KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.bss Size: - Virtual size: 4.0MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 72KB - Virtual size: 70KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reader_ Size: 4KB - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 40KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
PocoUI.dll.dll regsvr32 windows:4 windows x86 arch:x86
865d6f2fe46c268f2d9e1688c31cc867
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
d:\2007Poco\Release\CoPocoUI.pdb
Imports
winmm
timeSetEvent
timeKillEvent
PlaySoundA
kernel32
OpenFileMappingA
MapViewOfFile
OpenEventA
AreFileApisANSI
UnmapViewOfFile
GetSystemInfo
SystemTimeToFileTime
GetSystemTime
CompareFileTime
FindFirstFileW
FindNextFileW
SetCurrentDirectoryA
SetFileTime
CreateFileW
GetWindowsDirectoryW
SetFileAttributesW
RemoveDirectoryW
MoveFileW
CreateDirectoryW
DeleteFileW
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryW
SearchPathA
GetTempPathW
GetTempFileNameA
GetTempFileNameW
GetFullPathNameW
SearchPathW
GetStdHandle
FileTimeToDosDateTime
DosDateTimeToFileTime
LocalFileTimeToFileTime
VirtualAlloc
VirtualFree
QueryPerformanceCounter
WaitForMultipleObjects
CreateSemaphoreA
ReleaseSemaphore
TerminateThread
MapViewOfFileEx
CreateFileMappingA
FormatMessageW
GlobalMemoryStatus
CreateFileMappingW
GetFileAttributesExW
SetFileApisToOEM
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
VirtualProtect
VirtualQuery
ExitThread
GetCommandLineA
RtlUnwind
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapSize
ExitProcess
HeapDestroy
GetDriveTypeA
GetModuleFileNameW
SetThreadLocale
GetThreadLocale
TerminateProcess
OutputDebugStringA
RemoveDirectoryA
MoveFileA
GlobalSize
HeapFree
GetProcessHeap
HeapAlloc
GetTimeFormatA
GetDateFormatA
GetLocaleInfoA
GetFileSize
GetSystemDirectoryA
CreateProcessA
SetFileAttributesA
SetEndOfFile
SetFilePointer
ReadFile
LocalAlloc
FormatMessageA
LocalFree
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryA
GetWindowsDirectoryA
WinExec
lstrcatA
FreeLibrary
LoadLibraryExA
Sleep
CreateDirectoryA
lstrcmpA
ResetEvent
SetEvent
ResumeThread
CreateEventA
FreeResource
GetDiskFreeSpaceA
GetModuleHandleA
GetProcAddress
HeapCreate
GetCPInfo
GetACP
GetOEMCP
GetTimeZoneInformation
SetHandleCount
GetFileType
GetStartupInfoA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
SetStdHandle
GetSystemDefaultLangID
GetVersionExA
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
InterlockedCompareExchange
LCMapStringA
WriteFile
CreateFileA
MulDiv
lstrcpynA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersion
CompareStringA
lstrcmpiA
lstrlenW
CompareStringW
GetModuleFileNameA
GetCurrentProcessId
FindClose
CloseHandle
WaitForSingleObject
CreateThread
GetLogicalDrives
FileTimeToLocalFileTime
InterlockedIncrement
InterlockedDecrement
SetLastError
WideCharToMultiByte
GetCurrentThreadId
LockResource
LoadResource
FindResourceA
FlushInstructionCache
FindResourceExA
SizeofResource
GetTempPathA
CopyFileA
DeleteFileA
FindNextFileA
FindFirstFileA
WritePrivateProfileStringA
GetLocalTime
GetPrivateProfileIntA
GetPrivateProfileStringA
FileTimeToSystemTime
GetLastError
GetCurrentProcess
InterlockedExchange
LeaveCriticalSection
EnterCriticalSection
lstrcpyA
lstrlenA
MultiByteToWideChar
RaiseException
GetFileAttributesA
GetTickCount
IsProcessorFeaturePresent
user32
PeekMessageA
GetSysColorBrush
MessageBeep
IsMenu
SetMenu
LoadMenuA
TrackPopupMenuEx
CheckMenuItem
EndDialog
LoadBitmapA
SetClipboardData
EmptyClipboard
CloseClipboard
GetClipboardData
OpenClipboard
IsClipboardFormatAvailable
CreateDialogIndirectParamA
FlashWindow
RegisterClipboardFormatA
GetScrollInfo
DrawFrameControl
FrameRect
GetComboBoxInfo
GetAsyncKeyState
GetWindowRgn
SetClassLongA
GetForegroundWindow
TranslateMessage
EnableWindow
GetClassLongA
GetScrollPos
GetScrollRange
ScrollWindow
InvalidateRgn
CreateAcceleratorTableA
DestroyAcceleratorTable
WindowFromPoint
RegisterClassA
GetClassInfoA
LoadStringA
CopyIcon
GetIconInfo
RegisterWindowMessageA
SetScrollPos
SetScrollInfo
EnableMenuItem
GetCursor
DispatchMessageA
GetMessageA
GetKeyState
IsChild
GetActiveWindow
SetParent
IsIconic
IntersectRect
GetMessagePos
CreateIconIndirect
DrawStateA
GetMonitorInfoA
MonitorFromPoint
DrawEdge
DestroyMenu
FindWindowExA
CallNextHookEx
GetWindowThreadProcessId
SetWindowsHookExA
UnhookWindowsHookEx
CopyRect
SetLayeredWindowAttributes
GetDCEx
GetMenuStringA
WindowFromDC
ModifyMenuA
GetMenuItemID
GetSubMenu
GetMenuItemCount
SetMenuItemInfoA
GetMenuItemInfoA
LoadCursorW
DrawTextW
IsRectEmpty
GetDC
ScreenToClient
ExitWindowsEx
wsprintfA
DrawIconEx
ShowScrollBar
EnableScrollBar
SetScrollRange
SetPropA
RemovePropA
GetPropA
UnregisterClassA
GetSysColor
CharNextA
DrawFocusRect
SetFocus
CharUpperA
CharLowerW
CharLowerA
CharUpperW
FillRect
InflateRect
AnimateWindow
MapWindowPoints
CallWindowProcA
OffsetRect
GetWindowDC
IsWindowEnabled
DestroyCursor
CreatePopupMenu
CreateMenu
CreateWindowExA
DefWindowProcA
DestroyWindow
IsWindowVisible
SetActiveWindow
BringWindowToTop
ClientToScreen
DrawAnimatedRects
EnumChildWindows
FindWindowA
GetWindow
GetClientRect
MoveWindow
SetWindowPos
PostMessageA
PostQuitMessage
UnregisterHotKey
GetDoubleClickTime
DrawTextA
IsZoomed
AdjustWindowRectEx
GetDesktopWindow
RedrawWindow
LockWindowUpdate
CharPrevExA
AppendMenuA
CharPrevA
GetWindowRect
RegisterHotKey
SetWindowLongA
GetWindowLongA
DestroyIcon
ReleaseDC
SetForegroundWindow
GetCursorPos
LoadIconA
SystemParametersInfoA
MessageBoxA
SetRect
SetRectEmpty
GetClassNameA
SetCursor
UpdateWindow
SetTimer
KillTimer
SetWindowTextA
GetDlgItem
GetMenu
GetParent
RegisterClassExA
LoadImageA
LoadCursorA
GetClassInfoExA
GetFocus
EqualRect
InvalidateRect
GetWindowTextA
GetWindowTextLengthA
EndPaint
BeginPaint
SetCapture
ShowWindow
SetWindowRgn
GetSystemMetrics
SendMessageA
GetDlgCtrlID
PtInRect
ReleaseCapture
GetCapture
IsDialogMessageA
SetDlgItemTextA
IsWindow
TrackPopupMenu
gdi32
GetTextMetricsA
SetTextJustification
FrameRgn
CreatePolygonRgn
PtInRegion
CreateEllipticRgn
OffsetWindowOrgEx
SetWindowOrgEx
PatBlt
CreateDIBitmap
GetTextExtentPointA
SetRectRgn
CreateBitmapIndirect
IntersectClipRect
PlayEnhMetaFile
UnrealizeObject
GetBitmapBits
SetBitmapBits
CreateDCA
SetMapMode
SetROP2
CreateICW
TextOutA
RealizePalette
CreateBitmap
PathToRegion
EndPath
BeginPath
RoundRect
GetClipBox
CreateFontA
RestoreDC
Rectangle
GetStockObject
GetViewportOrgEx
CreateSolidBrush
StretchBlt
CreateDIBSection
CreateCompatibleDC
BitBlt
GetTextExtentPoint32A
ExtTextOutA
SetBkColor
DeleteDC
GetDIBColorTable
SetStretchBltMode
SetDIBColorTable
SetTextColor
SetBkMode
CreateRectRgnIndirect
CreateCompatibleBitmap
SaveDC
SelectClipRgn
SetBrushOrgEx
GetObjectType
GetDIBits
ExtCreateRegion
FillRgn
CreatePatternBrush
CreateRoundRectRgn
LineTo
MoveToEx
CreatePen
SetPixel
GetPixel
GetObjectW
DPtoLP
GetDeviceCaps
GetObjectA
CreateFontIndirectA
DeleteObject
OffsetRgn
CombineRgn
CreateRectRgn
SelectObject
SetViewportOrgEx
SetTextAlign
comdlg32
ChooseFontA
GetSaveFileNameA
GetOpenFileNameA
ChooseColorA
CommDlgExtendedError
advapi32
RegCloseKey
RegQueryValueExA
RegQueryValueA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
shell32
SHGetMalloc
SHGetSpecialFolderPathA
ShellExecuteA
SHGetFileInfoA
SHGetSpecialFolderLocation
SHGetDesktopFolder
Shell_NotifyIconA
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteExA
ole32
CoTaskMemFree
DoDragDrop
RegisterDragDrop
RevokeDragDrop
OleDuplicateData
ReleaseStgMedium
OleLockRunning
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
CreateStreamOnHGlobal
OleUninitialize
OleInitialize
CoCreateInstance
CoUninitialize
StringFromGUID2
GetHGlobalFromStream
CoCreateGuid
CoTaskMemRealloc
CoInitialize
oleaut32
VariantInit
VariantTimeToSystemTime
VarUdateFromDate
SystemTimeToVariantTime
SysStringByteLen
SysAllocStringByteLen
VariantClear
SysStringLen
VarCmp
VarBstrCat
VariantChangeType
LoadRegTypeLi
LoadTypeLi
SysAllocString
VariantCopy
SysFreeString
SysAllocStringLen
OleLoadPicture
shlwapi
PathFileExistsA
PathFindExtensionA
PathFindExtensionW
PathIsDirectoryA
comctl32
ord17
ImageList_ReplaceIcon
ImageList_Add
ImageList_Remove
ImageList_Draw
ImageList_GetImageInfo
ImageList_GetIcon
ImageList_AddMasked
ImageList_GetImageCount
ImageList_Create
ImageList_GetIconSize
ImageList_Destroy
_TrackMouseEvent
ImageList_LoadImageA
ImageList_DrawEx
InitCommonControlsEx
ImageList_DrawIndirect
ImageList_SetBkColor
ImageList_Replace
ImageList_SetImageCount
msimg32
GradientFill
TransparentBlt
AlphaBlend
gdiplus
GdipGetPropertyItemSize
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipSaveImageToStream
GdipDeleteFont
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdipDrawString
GdipSetStringFormatHotkeyPrefix
GdipSetStringFormatLineAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDeletePen
GdipCreatePen1
GdipDrawLineI
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipGetPropertyItem
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipDrawImageRectI
GdipCreateBitmapFromHBITMAP
GdipDeleteGraphics
GdiplusStartup
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipDrawImageI
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipSaveImageToFile
GdiplusShutdown
GdipFree
GdipCreateFromHDC
GdipSetInterpolationMode
GdipSetCompositingQuality
GdipImageSelectActiveFrame
GdipAlloc
GdipDrawImageRectRectI
GdipDisposeImage
GdipCloneImage
wininet
InternetCanonicalizeUrlA
InternetSetCookieA
FindCloseUrlCache
FindNextUrlCacheEntryA
FindFirstUrlCacheEntryA
GetUrlCacheEntryInfoA
InternetGetCookieA
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
netapi32
Netbios
ws2_32
accept
listen
WSAAsyncSelect
shutdown
getsockname
getpeername
inet_ntoa
ioctlsocket
WSAAsyncGetHostByName
gethostbyname
sendto
recvfrom
send
recv
WSACancelAsyncRequest
closesocket
bind
socket
WSACleanup
setsockopt
ntohl
select
connect
WSAStartup
ntohs
WSAGetLastError
WSASetLastError
htons
inet_addr
htonl
psapi
GetProcessMemoryInfo
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Sections
.text Size: 3.5MB - Virtual size: 3.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 484KB - Virtual size: 483KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 112KB - Virtual size: 149KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 164KB - Virtual size: 163KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
PocoUpload.dll.dll regsvr32 windows:4 windows x86 arch:x86
4bbf840e7bc5968aff734baadb0f3aee
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
d:\upaxtivex\PocoUploadActiveX_1221\PocoUpload\Release\PocoUpload.pdb
Imports
winmm
timeKillEvent
timeSetEvent
kernel32
VirtualFree
VirtualAlloc
CreateFileW
DeleteFileW
QueryPerformanceCounter
CreateDirectoryW
GlobalMemoryStatus
FindFirstFileW
MapViewOfFile
CreateFileMappingW
GetFileAttributesExW
lstrlenA
ReleaseSemaphore
CreateSemaphoreA
WaitForMultipleObjects
LocalFileTimeToFileTime
DosDateTimeToFileTime
FileTimeToDosDateTime
SearchPathW
GetFullPathNameW
GetTempFileNameW
GetTempPathW
SearchPathA
GetCurrentDirectoryW
SetCurrentDirectoryW
GetCurrentDirectoryA
GetFullPathNameA
MoveFileW
RemoveDirectoryW
SetFileAttributesW
GetWindowsDirectoryW
GetWindowsDirectoryA
SetFileTime
SetCurrentDirectoryA
RemoveDirectoryA
FindNextFileW
FileTimeToSystemTime
CompareFileTime
GetSystemTime
SystemTimeToFileTime
AreFileApisANSI
OpenEventA
OpenFileMappingA
FileTimeToLocalFileTime
FormatMessageW
SetFileApisToOEM
SetEnvironmentVariableA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
ResetEvent
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
GetTimeZoneInformation
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetCPInfo
GetStdHandle
ExitProcess
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
HeapCreate
GetCommandLineA
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
VirtualQuery
GetSystemInfo
VirtualProtect
RtlUnwind
GetLocaleInfoA
GetACP
HeapSize
HeapReAlloc
HeapDestroy
IsProcessorFeaturePresent
InterlockedCompareExchange
RaiseException
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
GetTempFileNameA
UnmapViewOfFile
CreateFileMappingA
MapViewOfFileEx
GetDateFormatA
MoveFileA
ResumeThread
Sleep
GetProcessHeap
HeapAlloc
HeapFree
OpenFile
GetCurrentProcess
GetCurrentThreadId
SetLastError
GlobalUnlock
GlobalLock
GlobalAlloc
CloseHandle
WriteFile
CreateFileA
GlobalFree
GlobalSize
GetTickCount
GetCurrentProcessId
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
InitializeCriticalSection
DeleteCriticalSection
SetEndOfFile
SetFilePointer
ReadFile
GetProcAddress
CreateEventA
GetDriveTypeA
FindNextChangeNotification
FindFirstChangeNotificationA
FindCloseChangeNotification
FormatMessageA
LocalFree
OutputDebugStringA
GetLocalTime
TerminateThread
CopyFileA
FindFirstFileA
FindNextFileA
FindClose
DeleteFileA
GetFileSize
WaitForSingleObject
lstrcpyA
CreateThread
SetEvent
WritePrivateProfileStringA
GetPrivateProfileStringA
GetTempPathA
GetFileAttributesA
CreateDirectoryA
SetFileAttributesA
lstrcpynA
GetVersionExA
GetSystemDirectoryA
lstrcmpA
LoadLibraryA
GlobalHandle
MulDiv
FindResourceExA
LockResource
CompareStringW
CompareStringA
InterlockedExchange
GetThreadLocale
SetThreadLocale
GetModuleHandleA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
FreeLibrary
InterlockedDecrement
InterlockedIncrement
IsDBCSLeadByte
lstrcmpiA
GetLastError
user32
CharPrevExA
SetRect
SetRectEmpty
SetWindowLongA
GetClientRect
ShowWindow
SetTimer
KillTimer
GetClassInfoExA
LoadCursorA
DestroyWindow
DrawTextA
GetWindowLongA
TrackMouseEvent
IsWindow
FillRect
GetDC
ReleaseDC
CallWindowProcA
SetLayeredWindowAttributes
IsWindowVisible
FindWindowExA
RegisterClassExA
CreateWindowExA
SetWindowPos
ClientToScreen
SetParent
LoadMenuA
GetSubMenu
IsRectEmpty
AppendMenuA
DefWindowProcA
SetMenuItemInfoA
DeleteMenu
MonitorFromPoint
GetMonitorInfoA
EnableMenuItem
GetDlgCtrlID
GetMessagePos
GetAsyncKeyState
wsprintfA
DialogBoxIndirectParamA
DrawIconEx
FrameRect
SetCursor
CreatePopupMenu
GetSystemMetrics
GetWindowRect
GetDesktopWindow
DestroyCursor
SystemParametersInfoA
CharNextA
CharLowerA
CharUpperA
CharUpperW
InvalidateRect
GetDialogBaseUnits
SendMessageA
BeginPaint
EndPaint
GetSysColor
MapDialogRect
SendDlgItemMessageA
GetWindow
IsChild
GetDlgItem
SetWindowContextHelpId
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
GetFocus
SetFocus
GetKeyState
GetParent
RegisterWindowMessageA
CreateDialogIndirectParamA
MoveWindow
ScreenToClient
InvalidateRgn
RedrawWindow
SetCapture
GetClassNameA
ReleaseCapture
DestroyAcceleratorTable
CreateAcceleratorTableA
EnumChildWindows
SetWindowRgn
OffsetRect
EqualRect
IntersectRect
PtInRect
UnionRect
GetNextDlgTabItem
IsDialogMessageA
CopyAcceleratorTableA
DrawStateA
EndDialog
PostMessageA
MessageBoxA
GetWindowDC
IsZoomed
AdjustWindowRectEx
TrackPopupMenu
DestroyMenu
InflateRect
GetCursorPos
UnregisterClassA
UpdateWindow
SetScrollInfo
LoadImageA
EnableWindow
GetActiveWindow
CopyRect
GetScrollPos
SetScrollPos
gdi32
GetObjectW
CreateEllipticRgn
ExcludeClipRect
RoundRect
GetDIBits
ExtCreateRegion
GetDIBColorTable
GetObjectType
GetClipBox
DPtoLP
SetROP2
SetBitmapBits
GetBitmapBits
CreateBitmapIndirect
CreatePen
MoveToEx
LineTo
SetDIBColorTable
CreateRoundRectRgn
FillRgn
SetStretchBltMode
SetBrushOrgEx
CreateDIBSection
StretchBlt
OffsetRgn
CreateICW
CreateRectRgn
ExtTextOutA
CreatePatternBrush
CreateMetaFileA
SetWindowExtEx
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
LPtoDP
SaveDC
SetMapMode
SetWindowOrgEx
SetViewportOrgEx
RestoreDC
CreateDCA
SetBkColor
Rectangle
GetDeviceCaps
GetTextMetricsA
GetTextExtentPointA
TextOutA
GetStockObject
CreateSolidBrush
DeleteDC
SelectObject
CreateFontIndirectA
GetObjectA
DeleteObject
GetTextExtentPoint32A
SetTextColor
SetBkMode
CreateDIBitmap
RealizePalette
SelectClipRgn
CombineRgn
CreateFontA
comdlg32
ChooseFontA
GetOpenFileNameA
GetSaveFileNameA
advapi32
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumKeyExA
RegOpenKeyA
RegQueryValueA
shell32
SHGetSpecialFolderPathA
SHGetSpecialFolderLocation
SHGetFileInfoA
ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHGetDesktopFolder
ole32
CoCreateGuid
OleSaveToStream
WriteClassStm
CreateDataAdviseHolder
CreateOleAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
OleLoadFromStream
StringFromCLSID
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning
OleUninitialize
OleInitialize
CoCreateInstance
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoInitialize
GetHGlobalFromStream
CreateStreamOnHGlobal
oleaut32
UnRegisterTypeLi
RegisterTypeLi
VarUI4FromStr
SysAllocStringLen
VariantInit
VariantClear
SysStringByteLen
LoadTypeLi
LoadRegTypeLi
OleTranslateColor
SysAllocStringByteLen
VariantChangeType
OleCreatePropertyFrame
OleLoadPicture
SysAllocString
SysFreeString
SysStringLen
OleCreateFontIndirect
VariantCopy
shlwapi
PathFindExtensionA
PathIsDirectoryA
PathFindExtensionW
comctl32
ImageList_Destroy
ImageList_SetBkColor
ImageList_Replace
ImageList_SetImageCount
ImageList_Remove
ImageList_Add
ImageList_Create
ImageList_GetImageCount
ImageList_Draw
_TrackMouseEvent
ImageList_GetImageInfo
msimg32
AlphaBlend
TransparentBlt
GradientFill
gdiplus
GdipGetPropertyItemSize
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetPropertyItem
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipSaveImageToFile
GdipDrawImageRectRectI
GdipCreateFromHDC
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipGetImageHeight
GdipGetImageWidth
GdipDeleteGraphics
GdipCloneImage
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipCreateBitmapFromHBITMAP
GdipSaveImageToStream
GdipDisposeImage
GdipAlloc
GdipFree
GdiplusShutdown
GdiplusStartup
GdipImageSelectActiveFrame
GdipSetCompositingQuality
GdipSetInterpolationMode
wininet
InternetGetCookieA
InternetSetCookieA
GetUrlCacheEntryInfoA
FindFirstUrlCacheEntryA
FindNextUrlCacheEntryA
FindCloseUrlCache
ws2_32
inet_addr
inet_ntoa
ntohs
recvfrom
sendto
getpeername
setsockopt
select
accept
WSASetLastError
shutdown
WSAGetLastError
gethostbyname
htonl
bind
WSACleanup
recv
socket
WSAAsyncSelect
WSAAsyncGetHostByName
WSAStartup
htons
connect
send
closesocket
psapi
GetProcessMemoryInfo
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Sections
.text Size: 630KB - Virtual size: 630KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 153KB - Virtual size: 153KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 27KB - Virtual size: 57KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 263KB - Virtual size: 263KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 55KB - Virtual size: 54KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Update.dll.dll regsvr32 windows:4 windows x86 arch:x86
d57aebaa828e280b05993ded6dc8a705
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
e:\Mypoco2008\Release\Update.pdb
Imports
kernel32
GlobalAlloc
GetCurrentThreadId
InterlockedIncrement
InterlockedDecrement
IsDBCSLeadByte
WriteFile
lstrcmpA
MulDiv
GetModuleFileNameA
GlobalUnlock
GlobalLock
SetLastError
FreeLibrary
LoadLibraryExA
GetModuleHandleA
GlobalFree
GlobalHandle
GetCommandLineW
CreateDirectoryW
GetModuleFileNameW
WritePrivateProfileStringW
SetThreadLocale
GetThreadLocale
lstrcpynA
CreateFileA
GetFileSize
DeleteFileA
CreateDirectoryA
GetFileAttributesA
GetSystemDirectoryA
MoveFileA
WritePrivateProfileStringA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetCurrentProcess
GetStringTypeW
GetStringTypeA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
Sleep
LCMapStringW
LCMapStringA
GetOEMCP
GetCPInfo
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStdHandle
ExitProcess
HeapCreate
GetCommandLineA
RtlUnwind
VirtualQuery
GetSystemInfo
VirtualProtect
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
GetProcAddress
InterlockedCompareExchange
GetProcessHeap
HeapSize
FlushInstructionCache
lstrcmpiA
lstrlenA
CloseHandle
FindResourceExA
FindResourceA
LoadResource
LockResource
InterlockedExchange
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetLastError
RaiseException
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
GetLocaleInfoA
GetACP
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SetFilePointer
SetEndOfFile
user32
SystemParametersInfoA
GetClientRect
MapWindowPoints
GetWindowRect
SetWindowPos
GetParent
DefWindowProcA
GetSysColor
MoveWindow
ClientToScreen
ScreenToClient
GetDC
ReleaseDC
InvalidateRect
InvalidateRgn
RedrawWindow
SetCapture
IsChild
GetWindowLongA
SetWindowLongA
CharNextA
GetWindow
GetWindowTextLengthA
LoadIconA
MessageBoxA
EnableWindow
KillTimer
SetTimer
ShowWindow
CreateDialogIndirectParamA
RegisterWindowMessageA
UnregisterClassA
GetWindowTextA
SetWindowTextA
CreateAcceleratorTableA
GetKeyState
SetWindowContextHelpId
SendDlgItemMessageA
MapDialogRect
CreateWindowExA
RegisterClassExA
LoadCursorA
GetClassInfoExA
IsWindow
SendMessageA
GetDesktopWindow
SetFocus
GetFocus
DestroyAcceleratorTable
BeginPaint
EndPaint
CallWindowProcA
DestroyWindow
FillRect
ReleaseCapture
GetClassNameA
GetDlgItem
gdi32
GetStockObject
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
SelectObject
DeleteObject
GetObjectA
advapi32
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
shell32
SHGetSpecialFolderPathA
SHGetSpecialFolderPathW
Shell_NotifyIconA
CommandLineToArgvW
ole32
CoTaskMemAlloc
OleLockRunning
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CoGetClassObject
CLSIDFromProgID
CoInitialize
CoUninitialize
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoCreateInstance
CLSIDFromString
oleaut32
SysStringLen
VariantClear
VariantInit
SysStringByteLen
VarUI4FromStr
LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
SysFreeString
SysAllocStringLen
SysAllocString
ws2_32
htonl
WSAAsyncSelect
WSAGetLastError
connect
htons
socket
ntohl
WSAAsyncGetHostByName
recv
send
closesocket
Exports
Exports
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Sections
.text Size: 160KB - Virtual size: 158KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 48KB - Virtual size: 45KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 12KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 16KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
logo.ico
-
poco_tools.exe.exe windows:4 windows x86 arch:x86
ebd871197c47ce071122a751f274b8ed
Code Sign
38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate
IssuerCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USNot Before15/06/2007, 00:00Not After14/06/2012, 23:59SubjectCN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate
IssuerCN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZANot Before04/12/2003, 00:00Not After03/12/2013, 23:59SubjectCN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate
IssuerOU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=USNot Before16/07/2004, 00:00Not After15/07/2014, 23:59SubjectCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USExtended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
75:44:ca:5f:e1:1b:91:0e:c3:dd:1c:a9:29:d7:29:40Certificate
IssuerCN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=USNot Before04/07/2007, 00:00Not After03/07/2008, 23:59SubjectCN=Guangzhou ShuLian Software Technology Ltd,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Technology,O=Guangzhou ShuLian Software Technology Ltd,L=guangzhou,ST=guangzhou,C=CNExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Signer
Actual PE DigestDigest AlgorithmPE Digest MatchesfalseHeaders
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
RaiseException
GetLastError
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
Sleep
GetModuleFileNameA
CreateDirectoryA
GetPrivateProfileStringA
CloseHandle
WriteFile
CreateFileA
GetTempFileNameA
GetTempPathA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
VirtualAlloc
GetProcAddress
GetModuleHandleA
GetCommandLineA
GetStartupInfoA
VirtualFree
HeapCreate
ExitProcess
GetStdHandle
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetOEMCP
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
LCMapStringA
LCMapStringW
RtlUnwind
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
user32
UnregisterClassA
shell32
ShellExecuteA
SHGetSpecialFolderPathA
ole32
CoInitialize
CoUninitialize
iphlpapi
GetAdaptersInfo
ws2_32
recv
WSAStartup
WSACleanup
send
connect
gethostbyname
socket
htonl
inet_addr
bind
htons
Sections
.text Size: 45KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
sound/folder.wav
-
sound/msgcome.wav
-
sound/online.wav
-
sound/system.wav
-
.txt
-
.txt.bak