b3c9148a6f59b9c0f22f05c6cbe5c184_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b3c9148a6f59b9c0f22f05c6cbe5c184_JaffaCakes118
Size

2.1MB
MD5

b3c9148a6f59b9c0f22f05c6cbe5c184
SHA1

ff57c323d46dcb87fa3de6aee492be2fb46c42c3
SHA256

86f5d1a9ba3e8c60589e439d1890eba93418717cd1c98ffd0b243e80ba113614
SHA512

c74e9b1e8b5315f734f1647bfe3c73dddb8366e3bcb5d48e9ccec1048d7015feebbfe3decf55825aa44d5046b59e57a970ac23d1a32ac3e5a66269d6baabf885
SSDEEP

49152:qVxyTlcqJxk1LTKDxUekaAJmEcFT7poijvvyRjmy:0YTRJxk1KNUzVAZ72iTvO

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/Keygen.exe	upx

Unsigned PE 18 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Keygen.exe
unpack002/out.upx
unpack001/setup.exe
unpack003/$PLUGINSDIR/InstallOptions.dll
unpack003/$PLUGINSDIR/NSISdlSmooth.dll
unpack003/bin/win32/ibrowse.dll
unpack003/bin/win32/uigetfiles.dll
unpack003/bin/win32/uigetfolder_win32.dll
unpack003/dcraw.exe
unpack003/imatest.exe
unpack003/jhead.exe
unpack003/md5.exe
unpack003/register.dll
unpack003/status.dll
unpack003/toolbox/matlab/iofun/private/imjpg8.dll
unpack003/toolbox/matlab/iofun/private/jpeg_depth.dll
unpack003/toolbox/matlab/iofun/private/rjpg8c.dll
unpack003/uninstall.exe

NSIS installer 2 IoCs

installer

resource	yara_rule
static1/unpack001/setup.exe	nsis_installer_1
static1/unpack003/uninstall.exe	nsis_installer_1

Files

b3c9148a6f59b9c0f22f05c6cbe5c184_JaffaCakes118
.rar
Keygen.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
setup.exe
.exe windows:4 windows x86 arch:x86

a3b0ee1fb29253dbfbd34b387e7a55c9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
ExitProcess
lstrcpynA
GetCommandLineA
GetWindowsDirectoryA
SetFileTime
GetUserDefaultLangID
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
GlobalAlloc
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrcpyA
lstrlenA
lstrcatA
GetSystemDirectoryA
CloseHandle
lstrcmpiA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
MulDiv
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

SystemParametersInfoA
RegisterClassA
EndDialog
ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
LoadCursorA
SetCursor
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
CreateWindowExA
OpenClipboard
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
IsWindow
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
CreateDialogParamA
EmptyClipboard
DestroyWindow
SetWindowLongA
LoadImageA
GetDC
EnableWindow
PeekMessageA
DispatchMessageA
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
GetDlgItem

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

9d433976e02d79532f0d635ee81d0b20

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MultiByteToWideChar
GetModuleHandleA
GetPrivateProfileIntA
GlobalAlloc
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
lstrcmpiA

user32

GetDlgCtrlID
GetClientRect
SetWindowRgn
LoadIconA
MapWindowPoints
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
PtInRect
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
LoadImageA

gdi32

SetTextColor
CreateCompatibleDC
GetObjectA
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 930B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/NSISdlSmooth.dll
.dll windows:4 windows x86 arch:x86

e5ebbea2e01f2e9b93bc24e25c02b68b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcmpiA
lstrcpynA
lstrlenA
lstrcatA
GlobalAlloc
GlobalFree
lstrcpyA
MulDiv
WriteFile
Sleep
GetTickCount
CreateFileA
CreateThread
WaitForSingleObject
DeleteFileA
CloseHandle

user32

GetWindowRect
DestroyWindow
SendMessageA
PeekMessageA
DispatchMessageA
TranslateMessage
SetDlgItemTextA
CharPrevA
CreateDialogParamA
SetWindowLongA
GetWindowLongA
EnableWindow
ShowWindow
IsWindowVisible
FindWindowExA
CallWindowProcA
ScreenToClient
SetWindowPos
wsprintfA
GetDlgItem

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

wsock32

gethostbyname
ioctlsocket
inet_ntoa
htons
socket
closesocket
shutdown
connect
__WSAFDIsSet
select
recv
WSAGetLastError
send
WSACleanup
WSAStartup

Exports

Exports

download
download_quiet

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
CC_SG_data_stripped_6-29-04.csv
Imatest_icon_32.ico
bin/Colorcharts_params.fig
bin/Colorcheck_params.fig
bin/DCRaw_params.fig
bin/Distortion_params.fig
bin/FigureMenuBar.fig
bin/FigureToolBar.fig
bin/Imatest_main.fig
bin/MTFplot.fig
bin/Q13_params.fig
bin/SFR_params.fig
bin/Star_params.fig
bin/Stepchart_addcharts.fig
bin/Uniformity_params.fig
bin/about_imatest.fig
bin/add_on_imatest.fig
bin/colorcharts.fig
bin/colorcharts_save.fig
bin/colorcharts_screensave.fig
bin/colorcheck_save.fig
bin/confirm_close.fig
bin/densitometer.fig
bin/distortion_save.fig
bin/gamutvision.fig
bin/gamutvision_HLsettings.fig
bin/gamutvision_axis3d.fig
bin/gamutvision_mon_prof.fig
bin/gamutvision_profile_folder.fig
bin/gamutvision_save.fig
bin/imatest.fig
bin/imatest_092205.fig
bin/imatest_more.fig
bin/imatest_renewal.fig
bin/manual_activation.fig
bin/maskfill.fig
bin/message_help.fig
bin/multi_step_params.fig
bin/multicharts.fig
bin/multicharts_params.fig
bin/multicharts_screensave.fig
bin/printest_params.fig
bin/printest_save.fig
bin/printestg_params.fig
bin/printestg_save.fig
bin/q13_save.fig
bin/readout.fig
bin/register_gamutvision.fig
bin/register_imatest.fig
bin/register_imatest_090204.fig
bin/roi_express.fig
bin/roi_selectcorners.fig
bin/roi_selection.fig
bin/roi_selectview.fig
bin/roi_selectview_050705.fig
bin/roi_selectview_102105.fig
bin/roi_try_again.fig
bin/save_image_generic.fig
bin/save_results_generic.fig
bin/save_screen_generic.fig
bin/sfr_multroi_save.fig
bin/sfr_save.fig
bin/testtarg_params.fig
bin/uniformity_plot1.fig
bin/uniformity_save.fig
bin/upgrade_imatest.fig
bin/win32/ibrowse.dll
.dll windows:1 windows x86 arch:x86

58ad87de43cf45deed9c4e79efc43265

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

BringWindowToTop
IsWindowVisible
ShowWindow
GetActiveWindow
MessageBoxA
wsprintfA

ole32

CLSIDFromString
CoCreateInstance
OleInitialize
OleUninitialize

advapi32

RegQueryValueA

kernel32

CreateProcessA
MultiByteToWideChar
CloseHandle
CreateEventA
CreateFileA
CreateMutexA
CreateThread
DeleteFileA
ExitProcess
ExitThread
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStdHandle
GetVersion
LoadLibraryA
ReleaseMutex
SetConsoleCtrlHandler
SetEvent
SetFilePointer
SetStdHandle
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteFile

oleaut32

VariantInit
SysFreeString
SysAllocString

libmex

mexAtExit
mexErrMsgTxt
mexPrintf

libmx

mxCalloc
mxCreateDoubleMatrix
mxFree
mxGetN
mxGetPr
mxGetString
mxIsChar

Exports

Exports

mexFunction

Sections

BEGTEXT
Size: 21KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 3KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 2KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/win32/uigetfiles.dll
.dll windows:4 windows x86 arch:x86

da4b43534a577a1a5d74798e0289db55

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libmx

mxGetN
mxGetPr
mxCreateCellMatrix
mxCreateDoubleMatrix
mxSetCell
mxCalloc
mxGetM
mxGetString
mxCreateString

libmex

mexWarnMsgTxt

comdlg32

GetOpenFileNameA

msvcrt

_splitpath
_chdir
strncpy
malloc
_initterm
_adjust_fdiv
sprintf
strchr
_makepath
free
_getcwd

kernel32

DisableThreadLibraryCalls

Exports

Exports

mexFunction

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 813B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 174B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/win32/uigetfolder_win32.dll
.dll windows:1 windows x86 arch:x86

92a32679ea7ee547462ab974bca72000

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shell32

SHBrowseForFolder
SHGetMalloc
SHGetPathFromIDList

libmx

mxCreateString
mxGetM
mxGetN
mxGetString
mxIsChar
mxCalloc

libmex

mexErrMsgTxt

kernel32

ExitProcess
GetEnvironmentStringsA
RtlUnwind

user32

GetActiveWindow
SendMessageA

crtdll

_fdopen
_open_osfhandle
fclose
malloc
_cexit
memset
printf
raise
setbuf
strcpy

Exports

Exports

_mexFunction

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 640B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84B - Virtual size: 84B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 232B - Virtual size: 232B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 996B - Virtual size: 996B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 180B - Virtual size: 180B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE

.edata
Size: 92B - Virtual size: 92B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
dcraw.exe
.exe windows:4 windows x86 arch:x86

87b31b92fa4ec463ca532c786f2ef91f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\imatest\matlab\dcraw\Release\dcraw.pdb

Imports

ws2_32

ntohl
htonl
ntohs

kernel32

GetStringTypeW
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
ExitProcess
HeapFree
HeapAlloc
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersionExA
RtlUnwind
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetLastError
ReadFile
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
SetFilePointer
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
WriteFile
CloseHandle
GetStringTypeA
MultiByteToWideChar
SetEnvironmentVariableW
WideCharToMultiByte
GetTimeZoneInformation
CreateFileA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
FlushFileBuffers
LoadLibraryA
InterlockedExchange
VirtualQuery
SetStdHandle
RaiseException
VirtualProtect
GetSystemInfo
HeapSize
GetLocaleInfoA
GetCPInfo
GetACP
GetOEMCP
SetEndOfFile
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetDriveTypeA
GetCurrentDirectoryA
GetFullPathNameA

Sections

.text
Size: 172KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 431KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
documentation.url
.url
images/Cchecker_example_200W.jpg
.jpg
images/Gamutvision_logo_80W.png
.png
images/Hunts_View_pale_560x400.jpg
.jpg
images/ISO-15739_crop.png
.png
images/Imatest_Ital_Logo_100W_high.png
.png
images/Imatest_Ital_Logo_84W.png
.png
images/Imatest_ital_logo_56W.png
.png
images/Imatest_ital_logo_66W.png
.png
images/Imatest_ital_logo_80W.png
.png
images/Imatest_welcome.bmp
images/Navajo_tree_pale_560x400.jpg
.jpg
images/Print_test_example.jpg
.jpg
images/Print_test_target.png
.png
images/Print_test_target_Adobe.tif
images/Print_test_target_WGRGB.tif
images/Print_test_target_sRGB.tif
images/Q13_example_200W.jpg
.jpg
images/QA-61_crop.png
.png
images/QA-62_crop.png
.png
images/SFR_example_200H.jpg
.jpg
images/ST-51_crop.png
.png
images/ST-52_crop.png
.png
images/Thumbs.db
images/downarrow.png
.png
imatest.exe
.exe windows:1 windows x86 arch:x86

de1995cb533f2f7a9cecbf3756757acd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libmmfile

mlfAllchild
mlxXyzchk
mlfEtime
mlfFft2
mlfFftshift
mlfFgetl
mlfFileparts
mlfFilesep
mlfFilter2
mlfFlipdim
mlfFliplr
mlfFlipud
mlfFullfile
mlfGca
mlfGcf
mlfGetappdata
mlfGetfield
mlfGrid
mlfHold
mlfIfft2
mlfIfftshift
mlfInterp1
mlfIsappdata
mlfIsfield
libmmfileInitialize
mlfIshold
mlfIspc
mlfIsstruct
mlfIsunix
mlfLinspace
mlfLog10
mlfLogspace
mlfMean
mlfNAxis
mlfNDeal
mlfNFminsearch
mlfNGraph2d_private_mwbypass
mlfNHist
mlfNHsv2rgb
mlfNMeshgrid
mlfNNdgrid
mlfNNewplot
libmmfileTerminate
mlfNOptimset
mlfNPolyfit
mlfNPolyval
mlfNRgb2hsv
mlfNView
mlfNargchk
mlfNargoutchk
mlfNow
mlfNum2str
mlfPol2cart
mlfPolyarea
mlfPwd
mlfRepmat
mlfRot90
mlfSortrows
mlfCart2pol
mlfSqueeze
mlfStd
mlfStr2double
mlfStr2num
mlfCell2mat
mlfTempname
mlfUsejava
mlfColstyle
mlfXychk
mlfConv
mlxColstyle
mlxFileparts
mlxFlipdim
mlxFminsearch
mlfDatestr
mlxGraphics_private_clo
mlxIsfield
mlxLog10
mlxMean
mlxNum2cell
mlxNum2str
mlxSqueeze
mlxStr2num

libmatlb

mclAnsVarargout
mlxReset
mlxReshape
mlxRound
mlxSize
mlxSort
mclInitialize
mlxSqrt
mlxStr2func
mlxStrcmp
mlxStrcmpi
mclInitializeCell
mlxStrncmpi
mlxStrrep
mclInitializeCellVector
mclInitializeCharVector
mclInitializeDouble
mlxUigetfile
mclInitializeDoubleVector
mlxUpper
mclInitializeLogical
mclInitializePersistent
mclInitializeString
mclArrayAssign1
mclIntArrayAssign1
mclIntArrayAssign2
mclIntArrayRef1
mclIntArrayRef2
mclLe
mclLeBool
mclArrayAssign2
mclLengthInt
mclArrayRef1
mclLoadConditional
mclLt
mclLtBool
mclArrayRef2
mclMinus
mclMpower
mclMrdivide
mclAssignAns
mclMtimes
mclNargin
mclNargout
mclNe
mclNeBool
mclNot
mclNotBool
mclOr
mclPlus
mclPrintAns
mclPrintArray
mclRdivide
mclAssignVarargoutCell
mclScalarToBool
mclSetCurrentLocalFunctionTable
mclCExecMexFunction
mclCallClearPendingExceptions
mclSwitchCompare
mclTimes
mclUminus
mclUplus
mclValidateError
mclValidateOutputError
mclValueVarargout
mclVarargin
mclVg
mlfAbs
mlfAcos
mclCleanupProtectedItems
mlfAll
mlfAny
mlfAssign
mlfAssignOutputs
mlfAtan
mlfAtan2
mlfBitand
mlfBitget
mlfBitor
mlfBitset
mlfBitshift
mlfCat
mlfCeil
mlfCell
mlfCellhcat
mlfChar
mclCopyArray
mlfClassName
mlfClear
mlfClock
mlfColon
mlfComplex
mlfComputer
mlfConv2
mlfCos
mclCopyInputArg
mlfCreateColonIndex
mlfCtranspose
mlfCumsum
mclCopyOutputArg
mlfDelete
mlfDiff
mlfDisp
mlfDos
mlfDouble
mlfDrawnow
mlfEnd
mlfEnterNewContext
mlfError
mlfExist
mlfExp
mlfFalse
mlfFclose
mlfFeval
mlfFft
mlfFgets
mlfFind
mlfFindobj
mlfFindstr
mlfFix
mlfFloor
mlfFopen
mlfFormat
mlfFscanf
mlfFtell
mlfFull
mlfGetVarargoutCellPtr
mlfHorzcat
mlfIfft
mlfIndexAssign
mlfIndexDelete
mlfIndexRef
mlfIndexVarargout
mlfIsa
mlfIschar
mlfIsempty
mlfIsequal
mlfIsfinite
mclCreateSimpleFunctionHandle
mlfIshandle
mlfIsletter
mlfIsnan
mlfIsnumeric
mlfIsreal
mlfIsspace
mlfIsstr
mclCreateString
mlfLasterr
mlfLength
mlfLog2
mlfLogicalScalar
mlfLower
mlfMax
mclCreateVararginCell
mlfMin
mlfMod
mlfNAxes
mlfNCd
mlfNContourc
mlfNDir
mlfNFeature
mlfNFigure
mlfNFprintf
mlfNGet
mlfNImage
mlfNLight
mclDestroyForLoopIterator_
mlfNLine
mlfNLoglog
mlfNPatch
mlfNPlot
mlfNPlot3
mlfNRand
mlfNSemilogy
mlfNSet
mlfNSurface
mlfNText
mlfNToc
mlfNUicontrol
mlfNWaitforbuttonpress
mlfNWarning
mlfNdims
mlfNorm
mlfOnes
mlfPause
mlfPermute
mlfPower
mlfProd
mlfRbbox
mlfReal
mclEnterTryCatchContext
mlfRem
mlfReset
mlfReshape
mlfRestorePreviousContext
mlfReturnValue
mlfRmappdata
mclEq
mlfRound
mlfSave
mlfScalar
mclEqBool
mlfSetappdata
mlfSign
mlfSin
mlfSize
mlfSort
mlfSparse
mlfSprintf
mlfSqrt
mlfSscanf
mlfStrcmp
mlfStrcmpi
mlfStrfind
mlfStrmatch
mlfStrncmp
mlfStrncmpi
mlfStrrep
mlfStruct
mlfSum
mlfTan
mclExitTryCatchContext
mlfTic
mlfTobool
mlfTranspose
mlfTrue
mclFeval
mlfUigetfile
mlfUint8
mlfUiputfile
mlfUpper
mlfVarargout
mlfVertcat
mlfZeros
mlf_times_transpose
mlxAnd
mclForIntEnd
mclForIntIntEnd
mclForIntStart
mlxColon
mclForNext
mlxCtranspose
mclForStart
mclGe
mclGeBool
mlxDouble
mlxEnd
mlxEq
mlxExist
mlxFix
mlxFopen
mlxGe
mlxGt
mclGetInf
mlxIsa
mlxIschar
mlxIsempty
mlxIsequal
mlxIshandle
mclAnd
mclGetNaN
mlxIsnumeric
mlxIsstr
mlxLe
mlxLength
mlxLower
mlxLt
mclGetSetjmpData
mlxMax
mlxMin
mlxMinus
mclGt
mlxMod
mlxMrdivide
mlxMtimes
mclGtBool
mlxNdims
mlxNe
mlxNot
mlxOr
mlxPlus
mclInitGlobal
mlxPower

libmx

mxDestroyArray

libmwservices

svDoubleScalarRdivide
svDoubleScalarRemW

libut

utFdlibm_exp
utFdlibm_floor
utFdlibm_pow
utDoubleScalarMin
utDoubleScalarMod

sgl

mclMainhg

libmwsglm

mlfJet
mlfDatachildren
mlfNClose
mlfNColorbar
mlfNColormap
mlfNErrordlg
mlfNGcbo
mlfNGinput
mlfNHgload
mlfNImfinfo
mlfNImformats
mlfNLegend
libmwsglmInitialize
mlfNMsgbox
mlfNPrint
mlfNQuestdlg
mlfFindall
mlfNUrlwrite
mlfNWarndlg
mlfNZoom
mlfGcbf
mlfRotate3d
mlfUiresume
mlfUiwait
libmwsglmTerminate
mlxColormap
mlxUiresume
mlxUiwait
mlfGray
mlfImwrite
mlfIofun_private_imftype

kernel32

ExitProcess
GetStartupInfoA
RtlUnwind

user32

MessageBoxA

crtdll

_exit
_fdopen
_flushall
_fmode_dll
__GetMainArgs
_open_osfhandle
_setjmp
_setmode
exit
fabs
fclose
longjmp
_cexit
raise
setbuf
signal
sprintf

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 29KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 578KB - Virtual size: 578KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
jhead.exe
.exe windows:4 windows x86 arch:x86

61e07ce1d0b931e917904e8114fd4e85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
TerminateProcess
GetCurrentProcess
GetLastError
MoveFileA
HeapFree
HeapAlloc
FindFirstFileA
FindNextFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
HeapReAlloc
GetCommandLineA
GetVersion
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
WideCharToMultiByte
GetTimeZoneInformation
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
ReadFile
CloseHandle
WriteFile
GetFileAttributesA
FlushFileBuffers
SetFilePointer
ExitProcess
GetModuleHandleA
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
RtlUnwind
SetStdHandle
CreateFileA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetCPInfo
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
LoadLibraryA
LCMapStringA
LCMapStringW
SetEndOfFile
GetDriveTypeA
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
DeleteFileA
GetFullPathNameA
GetCurrentDirectoryA
GetSystemTime
GetLocalTime

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
license.txt
md5.exe
.exe windows:4 windows x86 arch:x86

fd4964aa9365c98b842bc77e881fe9cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\projects\md5\Release\md5.pdb

Imports

kernel32

ExitProcess
GetModuleFileNameA
GetModuleHandleA
GetCommandLineA
GetVersionExA
GetLastError
ReadFile
GetProcAddress
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
HeapAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetACP
GetOEMCP
GetCPInfo
FindNextFileA
FindFirstFileA
FindClose
WriteFile
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapFree
SetFilePointer
CloseHandle
CreateFileA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetLocaleInfoA
HeapReAlloc
FlushFileBuffers
LoadLibraryA
SetStdHandle
HeapSize
SetEndOfFile
RtlUnwind

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
register.dll
.dll windows:4 windows x86 arch:x86

6936a2a25f7206689a5000fb14f10b63

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libmx

mxGetString
mxGetPr
mxCreateString
mxCreateDoubleMatrix

libmex

mexErrMsgTxt

advapi32

RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA

wsock32

htons
gethostbyname
ioctlsocket
socket
WSAStartup
closesocket
recv
send
connect

msvcp60

?_Xran@std@@YAXXZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??_7?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@6B@
?_Tidy@?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??0Init@ios_base@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??1ios_base@std@@UAE@XZ
??1?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
?str@?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??_7?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@6B@
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??0ios_base@std@@IAE@XZ
??_8?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@
??_8?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??1?$basic_filebuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Init@?$basic_filebuf@DU?$char_traits@D@std@@@std@@IAEXPAU_iobuf@@W4_Initfl@12@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?open@?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEPAV12@PBDH@Z
??_7?$basic_ofstream@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??_8?$basic_ofstream@DU?$char_traits@D@std@@@std@@7B@
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Xlen@std@@YAXXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

msvcrt

getenv
free
malloc
memmove
sprintf
time
ctime
__RTtypeid
?name@type_info@@QBEPBDXZ
_CIpow
_adjust_fdiv
_initterm
??1type_info@@UAE@XZ
_onexit
atoi
__CxxFrameHandler
fclose
_ftol
__dllonexit

kernel32

DisableThreadLibraryCalls

Exports

Exports

mexFunction

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
samples/Canon_EOS10D_Q13_ISO400_small.jpg
.jpg
samples/Canon_EOS10d_ColorCheck_lt_small.jpg
.jpg
samples/Edge_chart.png
.png
samples/Edge_chart_low.png
.png
samples/Thumbs.db
samples/canon_eos10d_sfr.jpg
.jpg
samples/canon_eos10d_vert_sfr.jpg
.jpg
samples/canon_eos1ds_sfr.jpg
.jpg
samples/canon_g5_sfr.jpg
.jpg
status.dll
.dll windows:4 windows x86 arch:x86

471293908909717722cd454d63921126

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libmx

mxCreateDoubleMatrix
mxGetScalar
mxGetString
mxGetPr

libmex

mexErrMsgTxt

advapi32

RegQueryValueExA
RegOpenKeyExA

msvcp60

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??1?$basic_filebuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??0Init@ios_base@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1?$basic_ifstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
?close@?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEPAV12@XZ
??1?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
?str@?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??_7?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@6B@
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??_8?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@
??_8?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??1ios_base@std@@UAE@XZ
??1?$basic_ofstream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Init@?$basic_filebuf@DU?$char_traits@D@std@@@std@@IAEXPAU_iobuf@@W4_Initfl@12@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??_7?$basic_ofstream@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??_8?$basic_ofstream@DU?$char_traits@D@std@@@std@@7B@
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?open@?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEPAV12@PBDH@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
??_7?$basic_ifstream@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??0ios_base@std@@IAE@XZ
??_8?$basic_ifstream@DU?$char_traits@D@std@@@std@@7B@
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Xlen@std@@YAXXZ
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Tidy@?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEXXZ
??_7?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@6B@
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z

msvcrt

ctime
_onexit
_adjust_fdiv
_initterm
atoi
fclose
__CxxFrameHandler
_ftol
getenv
_CIpow
?name@type_info@@QBEPBDXZ
__RTtypeid
__dllonexit
time
sprintf
malloc
free
??1type_info@@UAE@XZ

kernel32

DisableThreadLibraryCalls

Exports

Exports

mexFunction

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
toolbox/matlab/iofun/private/imjpg8.dll
.dll windows:4 windows x86 arch:x86

10339297cae2439bde43ca80c5a00367

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libmx

mxFree
mxIsChar
mxGetN
mxGetM
mxCalloc
mxGetString
mxCreateDoubleMatrix
mxCreateStructMatrix
mxCreateDoubleScalar
mxSetField
mxCreateCellMatrix
mxMalloc
mxCreateString
mxSetCell

libmex

mexPrintf
mexErrMsgTxt

msvcrt

fclose
longjmp
_setjmp3
_adjust_fdiv
_initterm
_ftol
free
malloc
getenv
sscanf
_iob
exit
sprintf
fopen
memcpy
fprintf
memset
fread

kernel32

DisableThreadLibraryCalls

Exports

Exports

mexFunction

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
toolbox/matlab/iofun/private/jpeg_depth.dll
.dll windows:4 windows x86 arch:x86

2086c1e9a712a718f77331bb5f3e9fc5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libmx

mxCreateDoubleScalar
mxIsChar
mxGetN
mxGetM
mxCalloc
mxGetString
mxCreateString
mxCreateDoubleMatrix

libmex

mexPrintf
mexErrMsgTxt

msvcrt

longjmp
exit
fread
_adjust_fdiv
_initterm
free
_ftol
sprintf
fopen
fclose
_setjmp3
malloc
sscanf
fprintf
_iob
getenv

kernel32

DisableThreadLibraryCalls

Exports

Exports

mexFunction

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
toolbox/matlab/iofun/private/rjpg8c.dll
.dll windows:4 windows x86 arch:x86

f7db357ef4a8527f3555ff1f37e4c7df

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libmx

mxFree
mxCreateNumericArray
mxGetData
mxIsChar
mxGetN
mxGetM
mxCalloc
mxGetString

libmex

mexWarnMsgTxt
mexErrMsgTxt

msvcrt

fread
fprintf
exit
_adjust_fdiv
_initterm
free
_ftol
fopen
fclose
_setjmp3
longjmp
memset
malloc
sscanf
_iob
sprintf
memcpy
getenv

kernel32

DisableThreadLibraryCalls

Exports

Exports

mexFunction

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninstall.exe
.exe windows:4 windows x86 arch:x86

a3b0ee1fb29253dbfbd34b387e7a55c9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
ExitProcess
lstrcpynA
GetCommandLineA
GetWindowsDirectoryA
SetFileTime
GetUserDefaultLangID
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
GlobalAlloc
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrcpyA
lstrlenA
lstrcatA
GetSystemDirectoryA
CloseHandle
lstrcmpiA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
MulDiv
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

SystemParametersInfoA
RegisterClassA
EndDialog
ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
LoadCursorA
SetCursor
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
CreateWindowExA
OpenClipboard
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
IsWindow
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
CreateDialogParamA
EmptyClipboard
DestroyWindow
SetWindowLongA
LoadImageA
GetDC
EnableWindow
PeekMessageA
DispatchMessageA
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
GetDlgItem

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
下载说明.htm
.html .js polyglot

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 24KB

UPX1 Size: 17KB - Virtual size: 20KB

.rsrc Size: 3KB - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 4KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 388B

.rsrc Size: 24KB - Virtual size: 22KB

a3b0ee1fb29253dbfbd34b387e7a55c9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 22KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 108KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 19KB - Virtual size: 20KB

9d433976e02d79532f0d635ee81d0b20

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 9KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 930B

e5ebbea2e01f2e9b93bc24e25c02b68b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

wsock32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 16KB

.rsrc Size: 512B - Virtual size: 256B

.reloc Size: 1024B - Virtual size: 776B

58ad87de43cf45deed9c4e79efc43265

Headers

File Characteristics

Imports

user32

ole32

advapi32

kernel32

oleaut32

libmex

libmx

UPX0
Size: - Virtual size: 24KB

UPX1
Size: 17KB - Virtual size: 20KB

.rsrc
Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 388B

.rsrc
Size: 24KB - Virtual size: 22KB

.text
Size: 22KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 108KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 19KB - Virtual size: 20KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 9KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 930B

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 16KB

.rsrc
Size: 512B - Virtual size: 256B

.reloc
Size: 1024B - Virtual size: 776B

BEGTEXT
Size: 21KB - Virtual size:

.tls
Size: 512B - Virtual size:

DGROUP
Size: 3KB - Virtual size:

.bss
Size: 2KB - Virtual size:

.idata
Size: 2KB - Virtual size:

.edata
Size: 512B - Virtual size:

.reloc
Size: 1KB - Virtual size:

.text
Size: 4KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 813B

.data
Size: 4KB - Virtual size: 388B

.reloc
Size: 4KB - Virtual size: 174B

.text
Size: 1KB - Virtual size: 1KB

.bss
Size: - Virtual size: 640B

.rdata
Size: 84B - Virtual size: 84B

.data
Size: 232B - Virtual size: 232B

.idata
Size: 996B - Virtual size: 996B

.rsrc
Size: 184B - Virtual size: 184B

.reloc
Size: 180B - Virtual size: 180B

.edata
Size: 92B - Virtual size: 92B

.text
Size: 172KB - Virtual size: 169KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 8KB - Virtual size: 431KB