b4b64b7d2086b3d4df67bb574c797991_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b4b64b7d2086b3d4df67bb574c797991_JaffaCakes118
Size

11.1MB
MD5

b4b64b7d2086b3d4df67bb574c797991
SHA1

5091a7a0893698e4e541a57b8475d6ace4d0a319
SHA256

16e727223cd23f1481ebc4944f1360e90971ed93f562e7a45aa036a213093585
SHA512

45b1b9a1c83382c9979f1af6f8f79b3ba5eeb067ab88d25d651bca3d3961dcc75dd2dfa38e535562eece2fc3cf7ddd3bb00acdaef22fbc2cb6a69a5a1f3c0f04
SSDEEP

196608:hWeCjSMphsVl8fqiIezLdWI1jueUchMSm6SDJtltBwDzz7/vhObA4UdGHXIyS8:srBgr8Ci1EIx52Sm6S9YzTvQbBUdG3IK

Score

3^/10

Malware Config

Signatures

Unsigned PE 44 IoCs

Checks for missing Authenticode signature.

resource
unpack001/api2096_dll_m.dll
unpack001/bluesoleil.exe
unpack001/bluesoleil_assistant.exe
unpack001/bluesoleilcs.exe
unpack001/bluesoleilcsps.dll
unpack001/bs2reschs.dll
unpack001/bs2rescht.dll
unpack001/bs2resdan.dll
unpack001/bs2resdut.dll
unpack001/bs2reseng.dll1
unpack001/bs2resfin.dll
unpack001/bs2resfra.dll
unpack001/bs2resger.dll
unpack001/bs2resita.dll
unpack001/bs2resjap.dll
unpack001/bs2reskor.dll
unpack001/bs2resnor.dll
unpack001/bs2respol.dll
unpack001/bs2respor.dll
unpack001/bs2resrus.dll
unpack001/bs2resspa.dll
unpack001/bs2resswe.dll
unpack001/bscdlg.dll
unpack001/bscommon.dll
unpack001/bsexecutemodule.exe
unpack001/bshelpcs.exe
unpack001/bshelpcsps.dll
unpack001/bslangindepres.dll
unpack001/bsmobilecsps.dll
unpack001/bsmobilesdk.dll
unpack001/bsprofilefunc.dll
unpack001/bssdk.dll
unpack001/bsshell.dll
unpack001/bstrace.dll
unpack001/bsvistacommon.dll
unpack001/btfunc.dll
unpack001/bttray.exe
unpack001/gdiplus.dll1
unpack001/htmprinthelper.dll
unpack001/msvcp60.dll
unpack001/outlookaddin.dll
unpack001/playerctrl.dll
unpack001/setup.dll
unpack001/versit.dll

Files

b4b64b7d2086b3d4df67bb574c797991_JaffaCakes118
.cab
_012863E488C84961B7AD392349E4BAF0
.html
_03079E30E29E42F4B77756D3A68A03FA
.html
_29E59E19027045AFBC141C1BD023207A
.html
_5B3C054D9449442A8D57D1DE759A3C73
_783730785E154A2AAF3562BDCE6CB758
.html
_790E1D9ACCE4457BA12CF24D4BA8EF46
.html
_D9B651CFE5464534BE2C2241220E0442
.html
api2096_dll_m.dll
.dll windows:4 windows x86 arch:x86

917440036cdef75e295c75d7cdd8d7da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

cfgmgr32

CM_Get_Parent
CM_Get_Device_IDA

mfc42

ord4622
ord3738
ord561
ord825
ord815
ord860
ord2614
ord535
ord823
ord4080
ord4424
ord540
ord5442
ord3789
ord665
ord5186
ord354
ord5710
ord4202
ord537
ord1997
ord800
ord1158
ord3831
ord3262
ord2818
ord6223
ord3079
ord3825
ord5465
ord3830
ord1255
ord1570
ord2976
ord3081
ord2985
ord3136
ord4274
ord4465
ord3259
ord3147
ord2982
ord3953
ord5714
ord5289
ord5307
ord4698
ord4079
ord2725
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord5194
ord533
ord798
ord1253
ord1243
ord6467
ord1578
ord600
ord826
ord269
ord1197
ord1116
ord342
ord1182
ord1577
ord1168
ord1575
ord1176

msvcrt

strrchr
isalpha
strtol
strncmp
__CxxFrameHandler
sprintf
_mbsicmp
mbstowcs
strstr
strncpy
memmove
memchr
_EH_prolog
__dllonexit
_onexit
free
_initterm
malloc
_adjust_fdiv
??1type_info@@UAE@XZ
_mbscmp
wcstombs

kernel32

ResetEvent
DeviceIoControl
GetPrivateProfileStringA
SetFileAttributesA
CreateFileA
Sleep
GetLogicalDrives
CloseHandle
GetDriveTypeA
CreateEventA
FlushFileBuffers
GetVersionExA
GetLastError
FreeLibrary
GetProcAddress
LoadLibraryA
GetTickCount
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameA
WaitForSingleObject
GetModuleHandleA
GetDiskFreeSpaceA
LocalFree
GetVolumeInformationA
LocalAlloc
GetDiskFreeSpaceExA

msvcp60

?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Xlen@std@@YAXXZ
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z

setupapi

SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList

Exports

Exports

ChangeAuthorizeKey
ChangeUserPassword
CheckAuthorizeKey
CloseUsbDisk
DiskFormat
GetApiMinorVersion
GetApiVersion
GetError
GetHideZoneDriveLetter
GetHideZoneLun
GetHideZoneSize
GetICType
GetPID
GetPrivateZoneLun
GetPrivateZoneSize
GetProductInfo
GetUDiskLetter
GetUDiskSerialNumber
GetUID
GetUsbDiskSize
GetVID
GetVendorInfo
GetVendorSerial
IsCdrom
IsHighSpeed
IsInHideZone
IsReadProtect
IsWriteProtect
LockUsbDisk
MountHideZoneAsDisk
OpenUsbDisk
OpenUsbDiskEx
ReadPrivateUserSector
SetDiskProtect
SetPID
SetProductInfo
SetUDiskSerialNumber
SetUsbDiskSize
SetVID
SetVendorInfo
UnLockUsbDisk
UnMountHideZoneAsDisk
UpdateISOFileOfCDROMDriver
VerifyUserPassword
WritePrivateUserSector

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
blueletmdm.cat1
blueletmdm.inf
bluesoleil.exe
.exe windows:4 windows x86 arch:x86

26aa6d3b9416c78e22c7b5dd8c79ec71

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

bscommon

Bscm_GetWindowLong
BsCm_GetCommonSettingFilePath
Bscm_SetWindowLong
BsCm_ShouldFilterCurDevCls
BsCm_PostMsg2Bttray
BsCm_DeleteDevices
BsCm_ShouldRefreshRmtSvcByThisLocSvcConn
BsCm_SyncSend2btShc
BsCm_UTF8ToLocalEx
BsCm_LimitStringCharacterCount
BsCm_GetLocalDeviceClass
BsCm_GetCustomVersion
BsCm_ShouldShowThisLocalServer
BsCm_IsSupportBoundBTHWLicenceReg
Bscm_IsAddinNeedAuthorized
BsCm_GetDefaultDevByServiceClass
BsCm_GetCurrPanShc
BsCm_ShouldShowThisRemoteService
BsCm_DelAllShortcutsBySvcClsForSpecialDevice
BsCm_ShouldShowDefaultConn
BsCm_GetConnectionNumByDevHdl
BsCm_IsMobileActive
BsCm_GetLangDepResLib
BsCm_GetCurrHFHSShc
BsCm_IsConnectingPANOnThisDevice
BsCm_GetRmtSvcDisplayName
BsCm_IsShortcutConnected
BsCm_GetLocSvcDisplayName
BsCm_GetDevTypeStrByDevCls
BsCm_BrowseFTPSvcFolderOf
BsCm_ConnectDefaultShcByDevhdl
BsCm_DestroyMobileSMSInfo
BsCm_SendSMS
BsCm_CreateMobileSMSInfo
BsCm_BrowseMobileFolderOf
BsCm_CreateShortCut
BsCm_IsPrinterInstalled
BsCm_IsSpecialIncomingConnectionExist
BsCm_GetLocSvcClsByRelevantRmtSvcCls
BsCm_GetComPortByShortcut
BsCm_StopServer
BsCm_GetPersonalSettingFilePath
BsCm_GetServiceClsNameStringID
BsCm_UTF8ToLocal
BsCm_GetInstallDir
BsCm_StartBttrayProc
BsCm_IsMobileDevice
BsCm_ShouldFilterCurProfile

bssdk

Btsdk_IsBluetoothReady
Btsdk_EndEnumRemoteDevice
Btsdk_IsDeviceConnected
Btsdk_GetRemoteDeviceClass
Btsdk_EnumRemoteDevice
Btsdk_StartEnumRemoteDevice
Btsdk_Hid_GetPlugFlag
Btsdk_GetRemoteDeviceAddress
Btsdk_StopDeviceDiscovery
Btsdk_GetServerAttributes
Btsdk_GetShortCutProperty
Btsdk_PAN_RegIndCbk
Btsdk_RegisterCallback
Btsdk_GetLocalDeviceAddress
Btsdk_GetLocalName
Btsdk_GetAllOutgoingConnections
Btsdk_GetAllIncomingConnections
Btsdk_StartNtService
Btsdk_IsNTServiceRunning
Btsdk_EndEnumLocalServer
Btsdk_EnumLocalServer
Btsdk_StartEnumLocalServer
Btsdk_GetServerStatus
Btsdk_StartDeviceDiscovery
Btsdk_IsMobileActive
Btsdk_IsLicensed
Btsdk_IsHardwareLicensed
Btsdk_IsSNLicensed
Btsdk_GetRemoteDeviceName
Btsdk_IsDevicePaired
Btsdk_GetConnectionProperty
Btsdk_GetShortCutByDeviceHandle
Btsdk_EnumRemoteService
Btsdk_EndEnumRemoteService
Btsdk_StartEnumRemoteService
Btsdk_GetRemoteDeviceParam
Btsdk_EndEnumConnection
Btsdk_EnumConnection
Btsdk_StartEnumConnection
Btsdk_BrowseRemoteServices
Btsdk_SetRemoteDeviceParam
Btsdk_AGAP_IsAudioConnExisted
Btsdk_UpdateRemoteDeviceName
Btsdk_UnPairDevice
Btsdk_GetShortCutByServiceHandle
Btsdk_GetRemoteDeviceProperty
Btsdk_IsWinXPorLater
Btsdk_SetLocalDeviceParam
Btsdk_IsServerConnected
Btsdk_Init
Btsdk_RegisterGetStatusInfoCB
Btsdk_SetStatusInfoFlag
Btsdk_Done
Btsdk_GetPrivateProfileString
Btsdk_GetPrivateProfileInt
Btsdk_GetLocalDeviceParam

bslangindepres

BsRes_GetResIcon
BsRes_GetResCursor

bstrace

?BsTrace_SetTraceSwitch@@YAHH@Z
?BsTrace_UserDef@@YAXKPBDZZ
??0CBsTraceFunc@@QAE@KPAD@Z
??1CBsTraceFunc@@QAE@XZ

bsprofilefunc

BsProfile_GetCurrAdapterIp

gdiplus

GdipSetPenStartCap
GdipDeletePen
GdipCreatePen2
GdipCreatePen1
GdipCreateSolidFill
GdipAlloc
GdipFree
GdipCloneBrush
GdipDeleteBrush
GdiplusShutdown
GdiplusStartup
GdipSetPenDashStyle
GdipSetPenDashArray
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawLineI
GdipDrawEllipseI
GdipFillEllipseI
GdipSetPenEndCap

mfc42

ord4424
ord3738
ord561
ord815
ord3953
ord2725
ord1151
ord6215
ord1168
ord6055
ord4078
ord1776
ord4407
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord4622
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord2446
ord2124
ord5277
ord4627
ord3742
ord818
ord567
ord4275
ord5261
ord1233
ord6453
ord6128
ord755
ord470
ord2971
ord5759
ord6192
ord5756
ord6186
ord4330
ord6189
ord6021
ord6172
ord5873
ord5789
ord5794
ord5678
ord5736
ord5579
ord5571
ord6061
ord5864
ord3596
ord640
ord6194
ord323
ord5148
ord6129
ord3756
ord3752
ord3571
ord1105
ord1640
ord5785
ord2379
ord3921
ord2438
ord6270
ord4220
ord2584
ord3654
ord1644
ord2864
ord4499
ord1842
ord4242
ord2723
ord2390
ord3059
ord5100
ord5103
ord4467
ord4303
ord3350
ord5012
ord975
ord5472
ord3403
ord2879
ord2878
ord4151
ord4077
ord5237
ord2649
ord1665
ord4436
ord4427
ord796
ord674
ord529
ord366
ord5252
ord4317
ord2455
ord6067
ord3482
ord6000
ord2117
ord4457
ord5282
ord6069
ord2818
ord4413
ord5030
ord5981
ord6199
ord2863
ord5787
ord5788
ord472
ord3693
ord3573
ord3706
ord540
ord1146
ord535
ord4160
ord5572
ord2915
ord860
ord2614
ord858
ord4278
ord6662
ord6874
ord6877
ord4277
ord6283
ord5856
ord4202
ord4204
ord941
ord926
ord939
ord5710
ord4129
ord6663
ord6927
ord940
ord924
ord6282
ord1270
ord1232
ord2152
ord3089
ord2380
ord3797
ord6197
ord3920
ord3755
ord4083
ord1920
ord3289
ord4299
ord1158
ord4080
ord3079
ord3825
ord3831
ord3830
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5714
ord5289
ord5307
ord4698
ord4079
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord823
ord1641
ord3626
ord3619
ord6383
ord5440
ord2107
ord6394
ord5450
ord2841
ord5875
ord537
ord800
ord2859
ord3663
ord2414
ord6157
ord825
ord3798
ord1576

msvcrt

__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_except_handler3
_exit
_onexit
__dllonexit
strtod
fprintf
longjmp
_setmbcp
_stricmp
_itoa
_iob
_XcptFilter
free
__CxxFrameHandler
memcpy
malloc
memset
_strdup
strcpy
strlen
sscanf
sprintf
_mbscmp
abs
strcat
sqrt
_ftol
sin
cos
fclose
fread
fopen
_setjmp3
__CxxLongjmpUnwind
rand
atoi
strtoul
abort
_CIpow
strncpy
_controlfp

kernel32

GetStartupInfoA
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
lstrcpynA
GetProcAddress
GetVersionExA
GetWindowsDirectoryA
LoadLibraryA
MulDiv
LoadLibraryExA
FreeLibrary
Sleep
GetTickCount
CreateFileA
WriteFile
CreateMutexA
OutputDebugStringA
CloseHandle
GetModuleHandleA
GetLastError

user32

IntersectRect
DeleteMenu
GetMenu
DrawMenuBar
GetIconInfo
CreateIconIndirect
FillRect
DestroyIcon
CopyIcon
GetSysColor
DestroyCursor
LoadImageA
SystemParametersInfoA
LoadAcceleratorsA
GetWindowPlacement
IsIconic
OffsetRect
DefWindowProcA
GetClassInfoA
SetRectEmpty
SetRect
PtInRect
WindowFromPoint
SetWindowRgn
SetMenuItemInfoA
GetMenuItemInfoA
GetSystemMetrics
GetParent
SetMenuDefaultItem
IsRectEmpty
CreatePopupMenu
SendMessageA
GetActiveWindow
ClientToScreen
EnableWindow
ShowScrollBar
KillTimer
SetTimer
UpdateWindow
GetClientRect
GrayStringA
DrawTextA
TabbedTextOutA
LoadCursorA
SetCursor
LoadStringA
GetCursorPos
SetWindowTextA
FindWindowA
PostMessageA
SetWindowPos
ShowWindow
SetForegroundWindow
InflateRect
IsWindow
InvalidateRect
ScreenToClient
ReleaseDC
GetDC
CopyRect
AppendMenuA
TranslateAcceleratorA
GetWindowRect

gdi32

CreateRoundRectRgn
CreateRectRgn
CombineRgn
OffsetRgn
FrameRgn
FillRgn
SelectClipRgn
GetClipBox
GetDCOrgEx
GetDeviceCaps
SetTextJustification
SetBkMode
SetBkColor
CreatePen
MoveToEx
SetTextColor
CreateBitmap
StretchBlt
GetObjectA
StrokePath
EndPath
BeginPath
PolyBezier
CreatePolygonRgn
CreateBrushIndirect
Escape
ExtTextOutA
TextOutA
RectVisible
LineTo
PtVisible
CreateCompatibleBitmap
CreateSolidBrush
CreateDIBSection
CreateCompatibleDC
SelectObject
BitBlt
SetDIBitsToDevice
CreateFontIndirectA
GetTextExtentPoint32A
GetTextMetricsA
DeleteObject
DeleteDC

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

shell32

ShellExecuteA

msvcp60

??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ

Sections

.text
Size: 364KB - Virtual size: 361KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
bluesoleil_assistant.exe
.exe windows:4 windows x86 arch:x86

7680d7d52bff3d0db831080da92f0ebc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
lstrcmpiA
OpenEventA
FreeLibrary
FlushFileBuffers
GetStringTypeW
GetStringTypeA
LCMapStringW
SetEvent
OutputDebugStringA
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
GetLastError
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
SetStdHandle
MultiByteToWideChar
LCMapStringA
CloseHandle

winspool.drv

DeletePrinter
ClosePrinter
OpenPrinterA

bssdk

Btsdk_Done
Btsdk_Init

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
bluesoleilcs.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 419KB - Virtual size: 1024KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 55KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 24KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 234KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bluesoleilcsps.dll
.dll regsvr32 windows:4 windows x86 arch:x86

6e8ae6c6b2e24cc3f0940768ccf3cb40

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
Sleep
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
IsBadWritePtr
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
UnhandledExceptionFilter
HeapAlloc
FatalAppExitA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteFile
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleHandleA
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
DeleteCriticalSection
GetStartupInfoA
RtlUnwind
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCurrentThread
SetHandleCount
GetStdHandle
GetFileType
SetEnvironmentVariableA

rpcrt4

NdrDllUnregisterProxy
NdrDllRegisterProxy
NdrCStdStubBuffer_Release
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrUserMarshalFree
NdrPointerFree
NdrUserMarshalBufferSize
NdrUserMarshalMarshall
NdrUserMarshalUnmarshall
NdrAllocate
NdrPointerUnmarshall
NdrPointerBufferSize
NdrPointerMarshall
NdrStubInitialize
NdrConformantArrayUnmarshall
NdrStubGetBuffer
NdrProxyInitialize
NdrConformantArrayBufferSize
NdrProxyGetBuffer
NdrConformantArrayMarshall
NdrProxySendReceive
NdrConvert
NdrProxyFreeBuffer
NdrClearOutParameters
NdrProxyErrorHandler
IUnknown_QueryInterface_Proxy
IUnknown_AddRef_Proxy
IUnknown_Release_Proxy
CStdStubBuffer_QueryInterface
CStdStubBuffer_AddRef
CStdStubBuffer_Connect
CStdStubBuffer_Disconnect
CStdStubBuffer_Invoke
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_CountRefs
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_DebugServerRelease
NdrOleAllocate
NdrOleFree
RpcRaiseException

oleaut32

BSTR_UserSize
BSTR_UserMarshal
BSTR_UserUnmarshal
BSTR_UserFree

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetProxyDllInfo

Sections

.orpc
Size: 392KB - Virtual size: 391KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bluetooth.ico
brcmusb.inf
bs2reschs.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2rescht.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resdan.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resdut.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2reseng.dll1
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resfin.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resfra.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resger.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resita.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resjap.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2reskor.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resnor.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2respol.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2respor.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resrus.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resspa.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bs2resswe.dll
.dll windows:4 windows x86 arch:x86

6c8408bb5d7d5a5b75b9314f94e68763

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bscdlg.dll
.dll windows:4 windows x86 arch:x86

2e93af3d3c10ca7eeac595a3af5a890b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

bssdk

Btsdk_CancelPairDevice
Btsdk_MallocMemory
Btsdk_IsDevicePaired
Btsdk_DunUpdateReg
Btsdk_DeinitCommObj
Btsdk_CommNumToSerialNum
Btsdk_PlugOutVComm
Btsdk_GetShortCutProperty
Btsdk_GetServerAttributes
Btsdk_GetRemoteDeviceName
Btsdk_RegisterCallback4ThirdParty
Btsdk_StartDeviceDiscovery
Btsdk_GetLocalDeviceParam
Btsdk_StartEnumRemoteDevice
Btsdk_SetLocalDeviceParam
Btsdk_EnumRemoteDevice
Btsdk_EndEnumRemoteDevice
Btsdk_StartEnumConnection
Btsdk_EnumConnection
Btsdk_EndEnumConnection
Btsdk_FTPSetRmtDir
Btsdk_FTPBrowseFolder
Btsdk_FTPGetFile
Btsdk_FTPGetDir
Btsdk_FTPDeleteFile
Btsdk_FTPDeleteDir
Btsdk_FTPPutFile
Btsdk_FTPPutDir
Btsdk_FTPCreateDir
Btsdk_ConnectEx
Btsdk_OPPPushObj
Btsdk_BIPPutImage
Btsdk_FTPGetRmtDir
Btsdk_FTPRegisterStatusCallback
Btsdk_FTPCancelTransfer
Btsdk_OPPCancelTransfer
Btsdk_BIPCancelTransfer
Btsdk_OPPRegisterStatusCallback
Btsdk_BIPRegisterStatusCallback
Btsdk_BrowseRemoteServices
Btsdk_StartEnumRemoteService
Btsdk_EnumRemoteService
Btsdk_EndEnumRemoteService
Btsdk_SetShortCutProperty
Btsdk_Activate
Btsdk_ConnectShortCutEx
Btsdk_BPPFilePush
Btsdk_BPPCancelTransfer
Btsdk_BPPRegisterStatusCallback
Btsdk_Disconnect
Btsdk_UsrCfmReqReply
Btsdk_PasskeyReqReply
Btsdk_GetRemoteDeviceClass
Btsdk_PinCodeReply
Btsdk_WritePrivateProfileString
Btsdk_GetEvaluateDays
Btsdk_WritePrivateProfileInt
Btsdk_StartUpdate
Btsdk_AVRCP_PassThroughReq
Btsdk_SetTrustedDevice
Btsdk_HFAP_CancelCall
Btsdk_HFAP_AnswerCall
Btsdk_GetConnectionProperty
Btsdk_RegQueryBinaryValue
Btsdk_IsPluginAuthorized
Btsdk_EncryptString
Btsdk_EnableExeAddin
Btsdk_RegQueryIntValue
Btsdk_RegQueryInfoKey
Btsdk_RegEnumKey
Btsdk_RegDeleteKey
Btsdk_RegOpenKey
Btsdk_RegQueryStringValue
Btsdk_RegCloseKey
Btsdk_RegisterAddinNotify
BsPA_GetSN
Btsdk_Is5MBLimit
Btsdk_IsLicensed
Btsdk_IsKeyVaild
Btsdk_UpdateDongle
Btsdk_GetLocalLMPInfo
Btsdk_AuthorizationResponse
Btsdk_FreeMemory
Btsdk_GetPrivateProfileString
Btsdk_IsBluetoothReady
Btsdk_GetLicenseKey
BsPA_GetBuyString
Btsdk_IsMobileActive
Btsdk_GetRemoteRSSI
Btsdk_IsDeviceConnected
Btsdk_RemoteDeviceFlowStatistic
Btsdk_GetRemoteDeviceRole
Btsdk_GetTrustedDevices
Btsdk_GetShortCutByConnectionHandle
Btsdk_AddServer
Btsdk_GetASerialNum
Btsdk_PlugInVComm
Btsdk_InitCommObj
Btsdk_RemoveServer
Btsdk_RegisterPANService
Btsdk_SetLocalName
Btsdk_GetLocalName
Btsdk_UpdateServerAttributes
Btsdk_IsComPortIdle
Btsdk_GetPrivateProfileStruct
Btsdk_GetClientPort
Btsdk_CanWriteLicenseKey
Btsdk_ReadLicenseKey
Btsdk_GetLocalDeviceAddress
Btsdk_WritePrivateProfileStruct
Btsdk_GetShortCutByServiceClass
Btsdk_StartEnumLocalServer
Btsdk_EnumLocalServer
Btsdk_EndEnumLocalServer
Btsdk_BIPCreateStorage
Btsdk_StopServer
Btsdk_StartServer
Btsdk_GetServerStatus
Btsdk_UnregisterA2DPSNKService
Btsdk_RegisterA2DPSNKService
Btsdk_SetServiceSecurityLevel
Btsdk_SetDiscoveryMode
Btsdk_GetDiscoveryMode
Btsdk_GetPrivateProfileInt
Btsdk_UpdateRemoteDeviceName
BsPA_WriteSNToRegistry
Btsdk_StopDeviceDiscovery
Btsdk_GetRemoteDeviceAddress

bslangindepres

BsRes_GetResIcon
BsRes_GetResBMP

shlwapi

PathFindFileNameA
PathFindExtensionA

bscommon

BsCm_FindModemNameByComPort
BsCm_IsMobileDUNActive
BsCm_GetRmtSvcIconIDEx
BsCm_GetLocSvcIconIDEx
BsCm_GetRmtSvcStatusString
BsCm_GetRmtSvcDesStrID
BsCm_GetLocSvcDesStrID
BsCm_GetPluginAndNotUsedComport
BsCm_ShouldShowThisLocalServer
BsCm_GetLocSvcStatusString
BsCm_LocalToUTF8
BsCm_SetLocalDeviceClass
BsCm_GetLocalDeviceClass
BsCm_GetSvcIconID
BsCm_StartUpSkySoleil
BsCm_ShutDownSkySoleil
BsCm_SupportUartDeviceFlag
BsCm_GetDeviceClsNameStringID
BsCm_GetDeviceIconID
BsCm_GetFTPFileDefaultIcon
BsCm_GetFTPFileSizeString
BsCm_GetFTPFileDescription
BsCm_GetFTPFileTimeString
BsCm_GetIVTProviderPath
BsCm_GetIVTMobilePath
BsCm_MapMobileErrorCode
BsCm_SyncSend2btShc
BsCm_GetImgProp
BsCm_FormatFTPFilePath
BsCm_IsMobileDevice
BsCm_IsMobileFTPActive
BsCm_CreateShortCut
Bscm_IsAddinNeedAuthorized
BsCm_SetDeviceModel
BsCm_IsMatchSymbianModelExist
BsCm_UTF8ToLocalEx
BsCm_AllocContactItemEx
BsCm_FreeContactItemEx
BsCm_GetCommonSettingFilePath
BsCm_IsMobileActive
Bscm_SetWindowLong
BsCm_RegisterWindowToBttray
BsCm_IsX64Platform
BsCm_GetCustomVersion
BsCm_CreateMobileSMSInfo
BsCm_SendSMS
BsCm_GetInstallDir
BsCm_ShouldShowDialerUI
BsCm_GetContactName
BsCm_GetSMSInfo
BsCm_DestroyMobileSMSInfo
BsCm_GetDeviceModel
BsCm_PostMsg2Bttray
BsCm_GetFTPFileData
BsCm_SendFilestoBtDevice
BsCm_GetPersonalSettingFilePath
BsCm_SendImagestoBtDevice
BsCm_GetImagePathInfo
BsCm_GetFilePathInfo
BsCm_GetShcHdlByObexProp
BsCm_GetComPortByShortcut
BsCm_UnregisterWindowToBttray
BsCm_IsDynamicLocSppSvc
BsCm_GetLocalSPPSvrComPort
Bscm_GetWindowLong
BsCm_GetServiceClsNameStringID
BsCm_UTF8ToLocal
BsCm_GetLocSvcDisplayName
BsCm_GetRmtSvcDisplayName
BsCm_GetLangDepResLib

rasapi32

RasGetEntryPropertiesA
RasSetEntryPropertiesA

bstrace

??0CBsTraceFunc@@QAE@KPAD@Z
?BsTrace_UserDef@@YAXKPBDZZ
??1CBsTraceFunc@@QAE@XZ

bsprofilefunc

BsProfile_GetA2dpQuality
BsProfile_SetA2dpQuality
BsProfile_GetCurrPanRole
BsProfile_DisConnectPanIfSettingChanged
BsProfile_GetNapAdapters
BsProfile_GetCurrNapAdaptLink
BsProfile_GetCurrPanSvcStatus
BsProfile_IsDhcpEnabled
BsProfile_GetDhcpAttribute
BsProfile_IsAutoConnPort
BsProfile_GetSNKAudioDevices
BsProfile_GetRegisteredSNKAudioDevice
BsProfile_BPP_GetMimeByFmt
BsProfile_BPP_GetSupportFmt
BsProfile_ConnectMobilePhone
BsProfile_AutoConnectMobilePhone
BsProfile_SetAutoConnPortAttr

iphlpapi

GetAdaptersInfo

ws2_32

ntohl
inet_addr

bsmobilesdk

MB_FtpGetDir
MB_FtpDeleteFile
MB_FtpDeleteDir
MB_FtpPutFile
MB_FtpPutDir
MB_FtpCreateDir
MB_RegStatusCallback
MB_FtpGetFile
MB_StartEnumContacts
MB_EnumContacts
MB_ParseContactDetails2
MB_EndEnumContacts
MB_StartEnumSupportedModels
MB_EndEnumSupportedModels
MB_FtpBrowseFolder
MB_FtpCancelTransfer
MB_EnumSupportedModels

winmm

mixerGetLineInfoA
mixerOpen
mixerGetNumDevs
mixerGetControlDetailsA
mixerGetLineControlsA
waveOutGetDevCapsA
waveOutMessage
mixerClose
mixerGetDevCapsA
mixerSetControlDetails

mfc42

ord561
ord3953
ord2818
ord537
ord858
ord540
ord823
ord2725
ord2528
ord324
ord6467
ord1105
ord326
ord4160
ord2514
ord641
ord795
ord656
ord1168
ord3452
ord2515
ord4129
ord3571
ord3626
ord3663
ord2414
ord2425
ord2864
ord609
ord6877
ord5710
ord3499
ord665
ord5856
ord6283
ord6282
ord5442
ord1979
ord3318
ord5186
ord354
ord2841
ord5450
ord6394
ord2107
ord5440
ord6383
ord2086
ord3301
ord3286
ord6602
ord6592
ord6055
ord4078
ord1776
ord4407
ord5241
ord2385
ord5163
ord6374
ord4353
ord5288
ord3798
ord4837
ord4439
ord2648
ord2054
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord4627
ord4431
ord6529
ord6488
ord6489
ord4259
ord6176
ord4715
ord5850
ord6568
ord5638
ord2642
ord3092
ord5265
ord4376
ord4853
ord4998
ord6052
ord1775
ord5280
ord4441
ord2055
ord4425
ord3597
ord2370
ord2302
ord4234
ord6334
ord6199
ord4710
ord5290
ord3402
ord3721
ord567
ord693
ord6215
ord3996
ord6907
ord3302
ord2582
ord4402
ord3370
ord3640
ord3998
ord686
ord384
ord2096
ord3910
ord6270
ord535
ord1085
ord2915
ord542
ord924
ord941
ord5683
ord1200
ord6453
ord5834
ord2448
ord2044
ord4220
ord2584
ord3654
ord2438
ord1644
ord1146
ord2862
ord6007
ord6111
ord5148
ord2301
ord6197
ord6380
ord922
ord4284
ord2379
ord5067
ord4635
ord4607
ord4716
ord4750
ord4608
ord5016
ord4375
ord4852
ord4834
ord3615
ord355
ord4229
ord2575
ord4396
ord3574
ord5875
ord3089
ord4476
ord3610
ord5953
ord939
ord926
ord2393
ord5981
ord4299
ord4224
ord809
ord2614
ord556
ord4275
ord1088
ord2122
ord3874
ord3797
ord6358
ord6880
ord5572
ord3619
ord1641
ord2860
ord2859
ord1907
ord5161
ord5162
ord5160
ord4905
ord4742
ord4948
ord4377
ord5287
ord4835
ord768
ord489
ord4258
ord4976
ord4358
ord6028
ord4854
ord6601
ord6485
ord4243
ord4694
ord2089
ord6762
ord3293
ord6696
ord3873
ord4809
ord3098
ord2882
ord2076
ord6379
ord6378
ord3567
ord602
ord5637
ord1008
ord6669
ord616
ord3093
ord6905
ord6662
ord2863
ord2411
ord2023
ord4218
ord2578
ord4398
ord3582
ord6515
ord6743
ord3176
ord353
ord3317
ord3475
ord765
ord3698
ord3876
ord6385
ord3097
ord1908
ord1690
ord771
ord497
ord2764
ord496
ord860
ord815
ord800
ord3738
ord4424
ord4622
ord4080
ord3079
ord3825
ord3831
ord3830
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5714
ord5289
ord5307
ord4698
ord4079
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord269
ord826
ord600
ord1578
ord1255
ord1253
ord1570
ord1197
ord1243
ord342
ord1182
ord1577
ord1575
ord1176
ord1116
ord825

msvcrt

_adjust_fdiv
_initterm
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_except_handler3
_onexit
__dllonexit
_mbstok
memcmp
wcscmp
wcscpy
wcscat
_ftol
wcslen
atoi
strcmp
__CxxFrameHandler
strcat
strcpy
_mbsicmp
sprintf
memset
_mbscmp
free
malloc
strlen
_mbsrchr
memcpy
_mbschr
_mbsnbcpy
strstr
_mbsstr
sscanf
_itoa

kernel32

DeleteFileA
FreeLibrary
OpenMutexA
GetWindowsDirectoryA
CreateEventA
SetEvent
GetTickCount
Sleep
WideCharToMultiByte
MultiByteToWideChar
WriteFile
ReadFile
GetFileSize
CreateFileA
GetVersionExA
InterlockedExchange
LocalFree
LocalAlloc
GetProcAddress
WaitForSingleObject
CloseHandle
lstrcpyA
GlobalFree
LoadLibraryA
GlobalAlloc
WinExec
lstrcatA
GetFileAttributesA
CreateProcessA
OpenProcess
GetCurrentProcessId
GetLastError
GetCurrentProcess
GetLocalTime
lstrlenA
TerminateThread

user32

GetSysColor
MessageBeep
SetCursor
LoadCursorA
ReleaseCapture
CopyIcon
PtInRect
InflateRect
GetDC
ReleaseDC
InvalidateRect
RedrawWindow
SetCapture
LoadStringW
ExitWindowsEx
SetDlgItemTextA
GetWindowInfo
SetFocus
GetSystemMenu
GetWindow
SystemParametersInfoA
IsWindowVisible
SetWindowTextA
GetForegroundWindow
SetWindowPos
GetWindowThreadProcessId
AttachThreadInput
SendMessageA
SetForegroundWindow
GetWindowRect
GetFocus
IsWindow
MessageBoxA
PostMessageA
FindWindowA
RegisterWindowMessageA
EnumWindows
GetWindowTextA
LoadStringA
GetParent
EndDialog
DestroyWindow
OffsetRect
SetActiveWindow
SetTimer
LoadIconA
ScreenToClient
ClientToScreen
GetClientRect
GetMenuItemCount
EnableMenuItem
AppendMenuA
CreatePopupMenu
GetCursorPos
LoadImageA
EnableWindow
KillTimer
GetWindowDC
GetDlgItem
DestroyIcon

gdi32

GetObjectA
CreateFontIndirectA
GetStockObject
DeleteObject
GetTextExtentPoint32A

comdlg32

GetOpenFileNameA

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
LookupAccountSidA
FreeSid
RegOpenKeyExA
RegQueryValueA
RegCloseKey
RegEnumKeyExA
RegQueryValueExA

shell32

SHGetPathFromIDListA
SHGetMalloc
ExtractIconA
SHGetFolderPathA
ShellExecuteA
SHGetSpecialFolderLocation
ExtractIconExA
SHBrowseForFolderA

comctl32

ImageList_Remove
ImageList_SetImageCount
ImageList_ReplaceIcon

urlmon

URLDownloadToCacheFileA

psapi

EnumProcesses
EnumProcessModules
GetModuleBaseNameA

gdiplus

GdipAlloc
GdipGetImageHeight
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipSaveImageToFile
GdipFree
GdipDrawImageRectI
GdipDeleteGraphics
GdipCreateFromHDC
GdipCloneImage
GdipDisposeImage
GdipLoadImageFromFileICM
GdiplusShutdown
GdiplusStartup
GdipLoadImageFromFile
GdipGetImageWidth

Exports

Exports

BscDlg_AuthorizationReqInd
BscDlg_ConnDlgFinish
BscDlg_ConnDlgRefresh
BscDlg_ConnDlgStart
BscDlg_ConnectMobilePhoneEx
BscDlg_InitializeOnlinePayment
BscDlg_OBEXAuthenticationReqInd
BscDlg_PinCodeReqInd
BscDlg_SendFilesToRmtDev
BscDlg_SendImagesToRmtDev
BscDlg_SendPrintFilesToRmtDev
BscDlg_ShowAVRCPControlPanel
BscDlg_ShowAboutDlg
BscDlg_ShowActivateDlg
BscDlg_ShowAddSppSvcProp
BscDlg_ShowAnswerCallDlg
BscDlg_ShowFTPFileProp
BscDlg_ShowFileSelectDialog
BscDlg_ShowImageSelectDialog
BscDlg_ShowInterfaceConfigDlg
BscDlg_ShowLifeUpdateDlg
BscDlg_ShowLocDevProp
BscDlg_ShowLocSvcProp
BscDlg_ShowNotifyInfoDlg
BscDlg_ShowPairNotifyDlg
BscDlg_ShowPrintFileSelectDialog
BscDlg_ShowRegisterDlg
BscDlg_ShowRestartDlg
BscDlg_ShowRmtDevProp
BscDlg_ShowRmtDevWizard
BscDlg_ShowRmtSvcProp
BscDlg_ShowSvcStatus
BscDlg_ShowTransSendWizard
BscDlg_StartContactEditor
BscDlg_StartDialWizard
BscDlg_StartSMSEditor
Bscdlg_ShowAddinManagerDlg

Sections

.text
Size: 352KB - Virtual size: 351KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bscommon.dll
.dll windows:4 windows x86 arch:x86

b9cf25250deb00a4a14109eb1a6ee8df

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CompareFileTime
DeleteFileA
FindClose
FindNextFileA
CreateEventA
LoadLibraryA
lstrcmpA
GetWindowsDirectoryA
GetSystemDirectoryA
HeapFree
GetProcessHeap
HeapAlloc
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileStructA
WritePrivateProfileStructA
GetCurrentProcess
CreateDirectoryA
CreateFileA
GetModuleHandleA
GetProcAddress
FindFirstFileA
CreateThread
WaitForSingleObject
GetVersionExA
FileTimeToSystemTime
GetDateFormatA
GetTimeFormatA
CloseHandle
OpenFileMappingA
CreateFileMappingA
GetLastError
MapViewOfFile
UnmapViewOfFile
OpenMutexA
CreateProcessA
Sleep
IsBadReadPtr
FreeLibrary
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
CreateSemaphoreA
SetFileAttributesA
GetFileAttributesA
GetPrivateProfileIntA

user32

MessageBoxA
LoadStringA
FindWindowA
PostMessageA
GetDesktopWindow
SetWindowPos
GetWindowLongA
SetWindowLongA
SetForegroundWindow
IsWindow

shlwapi

StrToIntA
PathFileExistsA

bssdk

Btsdk_IsMobileActive
Btsdk_GetDefaultShortCut
Btsdk_SetRemoteServiceParam
Btsdk_PostMessageToCtrlCenter
Btsdk_RegOpenKey
Btsdk_RegQueryInfoKey
Btsdk_RegEnumKey
Btsdk_RegQueryIntValue
Btsdk_RegQueryBinaryValue
Btsdk_IsPluginAuthorized
Btsdk_RegCloseKey
Btsdk_GetPrivateProfileSection
Btsdk_SetLocalDeviceClass
Btsdk_AGAP_IsAudioConnExisted
Btsdk_GetRemoteDeviceClass
Btsdk_StartEnumConnection
Btsdk_EnumConnection
Btsdk_EndEnumConnection
Btsdk_GetShortCutByName
Btsdk_DeinitCommObj
Btsdk_CommNumToSerialNum
Btsdk_PlugOutVComm
Btsdk_GetShortCutByServiceClass
Btsdk_WritePrivateProfileString
Btsdk_GetRemoteDeviceParam
Btsdk_StartEnumRemoteService
Btsdk_EnumRemoteService
Btsdk_GetShortCutByServiceHandle
Btsdk_EndEnumRemoteService
Btsdk_GetShortCutByDeviceHandle
Btsdk_GetRemoteDeviceProperty
Btsdk_GetPrivateProfileStruct
Btsdk_GetLocalDeviceClass
Btsdk_IsDevicePaired
Btsdk_SetShortCutProperty
Btsdk_GetAllShortCuts
Btsdk_CreateShortCutEx
Btsdk_DeleteShortCut
Btsdk_EndEnumRemoteDevice
Btsdk_EnumRemoteDevice
Btsdk_StartEnumRemoteDevice
Btsdk_WritePrivateProfileInt
Btsdk_WritePrivateProfileStruct
Btsdk_GetServerStatus
Btsdk_GetRemoteDeviceAddress
Btsdk_IsDeviceConnected
Btsdk_IsBluetoothReady
Btsdk_MallocMemory
Btsdk_FreeMemory
Btsdk_GetServerAttributes
Btsdk_GetPrivateProfileString
Btsdk_GetPrivateProfileInt
Btsdk_GetShortCutProperty
Btsdk_GetRemoteDeviceName
Btsdk_GetRemoteDeviceHandle
Btsdk_GetRemoteServiceAttributes
Btsdk_EndEnumLocalServer
Btsdk_EnumLocalServer
Btsdk_StartEnumLocalServer
Btsdk_GetConnectionProperty
Btsdk_GetAllIncomingConnections

shell32

ord196
ord195
ShellExecuteA
SHGetSpecialFolderPathA
SHGetFolderPathA
ord152
ord25
SHGetFileInfoA

bstrace

?BsTrace_UserDef@@YAXKPBDZZ
??0CBsTraceFunc@@QAE@KPAD@Z
??1CBsTraceFunc@@QAE@XZ

ole32

CoCreateInstance
CoUninitialize
CoInitialize

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegEnumKeyA
CheckTokenMembership
FreeSid
EqualSid
LookupAccountSidA
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
RegOpenKeyA

winspool.drv

EnumPrintersA
EnumJobsA
EnumPortsA
SetJobA
ClosePrinter
DeletePrinter
OpenPrinterA
SetPrinterA
GetPrinterA

gdiplus

GdipGetImageEncodersSize
GdipGetImageEncoders
GdipGetImageRawFormat
GdiplusShutdown
GdiplusStartup
GdipAlloc
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipFree
GdipDisposeImage
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImageThumbnail
GdipSaveImageToFile

bsmobilesdk

MB_EndEnumSymbianModels
MB_StartEnumSymbianModels
MB_EnumSymbianModels

msvcrt

_onexit
??2@YAPAXI@Z
memcpy
sprintf
memset
strcat
__dllonexit
_adjust_fdiv
_initterm
strlen
strcpy
_itoa
_mbslwr
fwrite
strncat
islower
toupper
_mbschr
_mbsstr
atoi
_stat
localtime
fopen
_filelength
fclose
strstr
__CxxFrameHandler
memcmp
wcscmp
_mbscmp
_mbsrchr
_mbsrev
malloc
free
_mbsicmp
_mbsnbcpy
_mbsnbcat
??3@YAXPAX@Z

Exports

Exports

BsCm_AllocContactItemEx
BsCm_BrowseFTPSvcFolderOf
BsCm_BrowseMobileFolderOf
BsCm_ChangeMsgFiter
BsCm_ConnectDefaultShcByDevhdl
BsCm_CreateAppConnName
BsCm_CreateMobileSMSInfo
BsCm_CreateShortCut
BsCm_CreateThumbFile
BsCm_CreateVistaSend2btShc
BsCm_DelAllShortcutsBySvcClsForSpecialDevice
BsCm_DeleteAllBTPrinter
BsCm_DeleteAllBTPrinterNew
BsCm_DeleteDeviceModel
BsCm_DeleteDevices
BsCm_DeleteMyPrinterByBDAddr
BsCm_DeleteShortCut
BsCm_DestroyMobileSMSInfo
BsCm_DialPhone
BsCm_DisconnectMobilePhone
BsCm_DoCancelAllPrintJob
BsCm_DoCancelAllPrintJobNew
BsCm_ExistSameSvcClsConnection
BsCm_FindModemNameByComPort
BsCm_FormatFTPFilePath
BsCm_FreeContactItemEx
BsCm_GetAbsoluteFTPSvcPidlOf
BsCm_GetAbsoluteMobileFolderPidlOf
BsCm_GetAttType
BsCm_GetAttachmentProp
BsCm_GetAttachmentType
BsCm_GetBtAddrByShcParam
BsCm_GetCOMServiceDir
BsCm_GetComPortByShortcut
BsCm_GetCommonSettingFilePath
BsCm_GetConnectionNumByDevHdl
BsCm_GetContactName
BsCm_GetCurrHFHSShc
BsCm_GetCurrPanShc
BsCm_GetCustomVersion
BsCm_GetDefaultDevByServiceClass
BsCm_GetDevMajorClsNameID
BsCm_GetDevMinorClsNameID
BsCm_GetDevTypeStrByDevCls
BsCm_GetDeviceClsNameStringID
BsCm_GetDeviceIconID
BsCm_GetDeviceIconIndex
BsCm_GetDeviceIconInfoCount
BsCm_GetDeviceModel
BsCm_GetEncoderClsid
BsCm_GetFTPFileData
BsCm_GetFTPFileDefaultIcon
BsCm_GetFTPFileDescription
BsCm_GetFTPFileSizeString
BsCm_GetFTPFileTimeString
BsCm_GetFilePathInfo
BsCm_GetHSHFSLCConnHdl
BsCm_GetIVTMobilePath
BsCm_GetIVTProviderPath
BsCm_GetIconIndexByID
BsCm_GetImagePathInfo
BsCm_GetImgEncode
BsCm_GetImgEncodeEx
BsCm_GetImgProp
BsCm_GetInstallDir
BsCm_GetLangDepResLib
BsCm_GetLocDevIconIDEx
BsCm_GetLocDevStatusString
BsCm_GetLocSvcClsByRelevantRmtSvcCls
BsCm_GetLocSvcDesStrID
BsCm_GetLocSvcDisplayName
BsCm_GetLocSvcHdlBySvcCls
BsCm_GetLocSvcIconIDEx
BsCm_GetLocSvcStatusString
BsCm_GetLocalDeviceClass
BsCm_GetLocalSPPSvrComPort
BsCm_GetMyPrinterInfo
BsCm_GetPersonalSettingFilePath
BsCm_GetPluginAndNotUsedComport
BsCm_GetRmoteDeviniPath
BsCm_GetRmtDevDisplayName
BsCm_GetRmtDevIconIDEx
BsCm_GetRmtDevStatusString
BsCm_GetRmtSvcClsByRelevantLocSvcCls
BsCm_GetRmtSvcDesStrID
BsCm_GetRmtSvcDisplayName
BsCm_GetRmtSvcIconIDEx
BsCm_GetRmtSvcStatusString
BsCm_GetSMSInfo
BsCm_GetServiceClass
BsCm_GetServiceClsNameStringID
BsCm_GetShcHdlByObexProp
BsCm_GetShortcutsByComPort
BsCm_GetSvcIconID
BsCm_GetSvcIconIndex
BsCm_GetSvcIconInfoCount
BsCm_InstallANewPrinter
BsCm_IsAddedDevice
BsCm_IsBTPort
BsCm_IsBTPortNew
BsCm_IsBtPortBusy
BsCm_IsBtPortBusyNew
BsCm_IsComportBeenUsed
BsCm_IsConnectingPANOnThisDevice
BsCm_IsDefaultDevice
BsCm_IsDefaultShortcut
BsCm_IsDynamicLocSppSvc
BsCm_IsInstalledService
BsCm_IsMatchSymbianModelExist
BsCm_IsMobileActive
BsCm_IsMobileDUNActive
BsCm_IsMobileDevice
BsCm_IsMobileFTPActive
BsCm_IsPrinterBusy
BsCm_IsPrinterBusyNew
BsCm_IsPrinterInstalled
BsCm_IsShcEnabled
BsCm_IsShortcutConnected
BsCm_IsSpecialIncomingConnectionExist
BsCm_IsSupportBoundBTHWLicenceReg
BsCm_IsWindowsVistaAbove
BsCm_IsX64Platform
BsCm_LimitStringCharacterCount
BsCm_LocalToUTF8
BsCm_LocalToUTF8Ex
BsCm_MapMobileErrorCode
BsCm_OpenBsuiDll
BsCm_OpenBsuiExe
BsCm_ParseDeviceAddressFromString
BsCm_PostMsg2Bttray
BsCm_RegisterWindowToBttray
BsCm_SendFilestoBtDevice
BsCm_SendImagestoBtDevice
BsCm_SendMsg2Bttray
BsCm_SendSMS
BsCm_SetDefaultShortCut
BsCm_SetDeviceModel
BsCm_SetLocalDeviceClass
BsCm_SetSelectedService
BsCm_SetTrayWindowToTop
BsCm_ShouldFilterCurDevCls
BsCm_ShouldFilterCurProfile
BsCm_ShouldRefreshRmtSvcByThisLocSvcConn
BsCm_ShouldRefreshThisRmtSvcByLocSvcConn
BsCm_ShouldShowDefaultConn
BsCm_ShouldShowDialerUI
BsCm_ShouldShowThisLocalServer
BsCm_ShouldShowThisLocalServerEx
BsCm_ShouldShowThisRemoteService
BsCm_ShouldShowThisRemoteServiceEx
BsCm_ShowFTPFileProperty
BsCm_ShutDownSkySoleil
BsCm_StartBttrayProc
BsCm_StartUpSkySoleil
BsCm_StopServer
BsCm_SupportUartDeviceFlag
BsCm_SyncSend2btShc
BsCm_SyncSend2btShcForMultiUser
BsCm_UTF8ToLocal
BsCm_UTF8ToLocalEx
BsCm_UnregisterWindowToBttray
BsCm_UseMobileConnection
BsCm_WriteMyPrinterInfo
Bscm_GetWindowLong
Bscm_IsAddinNeedAuthorized
Bscm_SHAlloc
Bscm_SHFree
Bscm_SetWindowLong

Sections

.text
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bscs.ini
bsexecutemodule.exe
.exe windows:4 windows x86 arch:x86

885da96b6f92da05c97f8a7bda0311a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
HeapReAlloc
lstrcmpA
HeapAlloc
GetStringTypeW
GetStringTypeA
LCMapStringW
OutputDebugStringA
OpenFileMappingA
MapViewOfFile
CloseHandle
UnmapViewOfFile
LoadLibraryA
GetProcAddress
VirtualAlloc
FreeLibrary
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
MultiByteToWideChar
LCMapStringA

user32

GetDesktopWindow

shell32

ord18
ShellExecuteExA
ShellExecuteA

bscommon

BsCm_CreateVistaSend2btShc
Bscm_SHFree
BsCm_GetInstallDir

bssdk

Btsdk_GetPrivateProfileString
Btsdk_Done
Btsdk_Init
Btsdk_IsServerConnected

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bshelpcs.exe
.exe windows:4 windows x86 arch:x86

a978b226bd6eb32e3088d97ef8194a70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetSystemDirectoryA
ReadFile
WaitForSingleObject
CreateFileA
GetFileSize
GetStartupInfoA
ReleaseSemaphore
CreateSemaphoreA
OpenProcess
GetCurrentThread
GetCurrentProcess
lstrcatA
lstrcpyA
LoadLibraryA
GetProcAddress
IsDBCSLeadByte
lstrcpynA
LoadLibraryExA
GetLastError
FindResourceA
LoadResource
SizeofResource
FreeLibrary
WideCharToMultiByte
GetModuleHandleA
GetShortPathNameA
MultiByteToWideChar
lstrlenW
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
GetModuleFileNameA
lstrlenA
GetCommandLineA
lstrcmpiA
OpenMutexA
CloseHandle
CreateMutexA
GetCurrentThreadId
WriteFile

oleaut32

RegisterTypeLi
SysStringLen
LoadTypeLi
SysAllocString
SysFreeString
VarUI4FromStr

setupapi

SetupDiBuildDriverInfoList
SetupDiSetDeviceInstallParamsA
SetupDiGetDeviceInstallParamsA
SetupDiSetSelectedDevice
SetupDiSetDeviceRegistryPropertyA
SetupDiRegisterDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiCallClassInstaller
SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiCreateDeviceInfoA
SetupDiCreateDeviceInfoList
SetupDiGetINFClassA

shlwapi

PathFindExtensionA
PathRemoveFileSpecA

user32

PostThreadMessageA
LoadStringA
MessageBoxA
CharNextA
GetMessageA
DispatchMessageA

advapi32

CreateServiceA
RegisterEventSourceA
ReportEventA
DeregisterEventSource
OpenSCManagerA
OpenServiceA
CloseServiceHandle
SetServiceStatus
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegDeleteValueA
DeleteService
ControlService
StartServiceCtrlDispatcherA
RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegEnumKeyExA
RegQueryInfoKeyA
RegEnumValueA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CopySid
GetLengthSid
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
OpenProcessToken
OpenThreadToken
GetTokenInformation
LookupAccountSidA
StartServiceA
QueryServiceStatus
RegisterServiceCtrlHandlerA

ole32

CoUninitialize
CoInitializeSecurity
CoInitializeEx
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoRegisterClassObject
CoRevokeClassObject
CoCreateInstance
StringFromGUID2

msvcrt

??3@YAXPAX@Z
memmove
fopen
fread
fclose
ctime
time
srand
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
?terminate@@YAXXZ
_except_handler3
_onexit
__dllonexit
_mbsnbcpy
_mbsnbicmp
atoi
strlen
strcpy
_mbsicmp
strcat
memcmp
memset
realloc
malloc
free
??2@YAPAXI@Z
rand
memcpy
puts
vsprintf
__CxxFrameHandler

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
bshelpcsps.dll
.dll regsvr32 windows:4 windows x86 arch:x86

0ed7acae1e2d744757b73a4abc434196

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
Sleep
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
RtlUnwind
LoadLibraryA
GetProcAddress
IsBadWritePtr
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCurrentThread
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
HeapAlloc
UnhandledExceptionFilter
GetCPInfo
SetEnvironmentVariableA

rpcrt4

NdrDllUnregisterProxy
NdrDllRegisterProxy
NdrCStdStubBuffer_Release
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrOleAllocate
NdrOleFree
IUnknown_AddRef_Proxy
IUnknown_Release_Proxy
CStdStubBuffer_QueryInterface
CStdStubBuffer_AddRef
CStdStubBuffer_Connect
CStdStubBuffer_Disconnect
CStdStubBuffer_Invoke
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_CountRefs
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_DebugServerRelease
IUnknown_QueryInterface_Proxy

oleaut32

BSTR_UserSize
BSTR_UserMarshal
BSTR_UserUnmarshal
BSTR_UserFree

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetProxyDllInfo

Sections

.orpc
Size: 4KB - Virtual size: 259B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bslangindepres.dll
.dll windows:4 windows x86 arch:x86

81c7f8f614129d8b2c499edcf2eaa35d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

user32

LoadBitmapA
LoadIconA
LoadCursorA

msvcrt

_onexit
__dllonexit
_adjust_fdiv
malloc
free
_initterm

Exports

Exports

BsRes_GetResBMP
BsRes_GetResCursor
BsRes_GetResIcon

Sections

.text
Size: 4KB - Virtual size: 616B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 541B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17.1MB - Virtual size: 17.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bsmobilecsps.dll
.dll regsvr32 windows:4 windows x86 arch:x86

a25a64ca235f714487cd77f2acd952ac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls

rpcrt4

CStdStubBuffer_DebugServerRelease
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_CountRefs
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_Invoke
CStdStubBuffer_Disconnect
NdrDllUnregisterProxy
CStdStubBuffer_AddRef
CStdStubBuffer_QueryInterface
IUnknown_Release_Proxy
IUnknown_AddRef_Proxy
IUnknown_QueryInterface_Proxy
NdrOleFree
NdrOleAllocate
NdrDllRegisterProxy
NdrCStdStubBuffer_Release
NdrDllCanUnloadNow
NdrDllGetClassObject
CStdStubBuffer_Connect

oleaut32

BSTR_UserSize
BSTR_UserMarshal
BSTR_UserUnmarshal
BSTR_UserFree

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetProxyDllInfo

Sections

.text
Size: 4KB - Virtual size: 450B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 4KB - Virtual size: 192B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 494B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bsmobilesdk.dll
.dll windows:4 windows x86 arch:x86

52110b8ec01a91b6e697a6f1d6747d76

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
ReleaseSemaphore
CreateThread
CreateEventA
TerminateThread
CreateSemaphoreA
SetEvent
WaitForSingleObject
InterlockedIncrement
InterlockedDecrement
Sleep
OutputDebugStringA
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
GetUserDefaultLCID
GetLastError
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
lstrlenW
LocalFree
RtlUnwind
GetCommandLineA
GetVersion
RaiseException
HeapFree
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapAlloc
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
SetFilePointer
IsBadReadPtr
IsBadCodePtr
UnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
SetStdHandle
SetConsoleCtrlHandler
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
FlushFileBuffers
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA

bstrace

?BsTrace_UserDef@@YAXKPBDZZ

ole32

CoCreateInstance
CoInitializeEx
CoUninitialize

oleaut32

SysFreeString
CreateErrorInfo
VariantChangeType
SetErrorInfo
GetErrorInfo
VariantClear
SysAllocString
VariantInit

Exports

Exports

MB_AsyncMsgDisable
MB_AsyncMsgEnable
MB_AutoModelMatching
MB_BackupContacts
MB_ConnectSock
MB_ConstructContact
MB_DeleteContactsCache
MB_DeleteSMSCache
MB_DiscSockConnection
MB_EndEnumContacts
MB_EndEnumHFModels
MB_EndEnumSMS
MB_EndEnumSupportedModels
MB_EndEnumSymbianModels
MB_EnumContacts
MB_EnumHFModels
MB_EnumSMS
MB_EnumSupportedModels
MB_EnumSymbianModels
MB_FtpBrowseFolder
MB_FtpCancelTransfer
MB_FtpCreateDir
MB_FtpDeleteDir
MB_FtpDeleteFile
MB_FtpGetDir
MB_FtpGetFile
MB_FtpPutDir
MB_FtpPutFile
MB_GetContactItemInfo
MB_GetContacts
MB_GetPortNumber
MB_GetRecoverableInfo
MB_GetSMS
MB_GetSupportedSections
MB_GetVersion
MB_InitialPlugDB
MB_IsServerConnected
MB_IsSockConnExist
MB_IsSupportAsyncMsg
MB_ParseContactDetails2
MB_ReadAsyncMsg
MB_RecoverContacts
MB_RegStatusCallback
MB_RegisterCallback
MB_SendSMS
MB_SetContacts
MB_SetSMS
MB_SetTraceSwitch
MB_StartEnumContacts
MB_StartEnumHFModels
MB_StartEnumSMS
MB_StartEnumSupportedModels
MB_StartEnumSymbianModels
MB_StartListContacts
MB_StartListSMS
MB_TestATCmds
MB_UnInitialPlugDB
MB_UnregisterCallback

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bsprofilefunc.dll
.dll windows:4 windows x86 arch:x86

4d0013d53c3b289ca757d56fbf1744f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

OutputDebugStringA
GetCurrentProcessId
DisableThreadLibraryCalls
MultiByteToWideChar
GetWindowsDirectoryA
FreeLibrary
GetSystemDirectoryA
CreateThread
CreateEventA
WaitForSingleObject
lstrlenA
Sleep
GetProcessHeap
HeapAlloc
HeapFree
GetLastError
GetTempPathA
CloseHandle
CreateFileA
WriteFile
LoadLibraryA
GetProcAddress
WideCharToMultiByte
SetEvent

user32

SetForegroundWindow
GetDesktopWindow
LoadStringA
wsprintfA

advapi32

RegOpenKeyExA
RegQueryValueExW
RegEnumKeyA
RegOpenKeyA
RegEnumKeyExA
RegQueryValueExA
RegCloseKey
RegSetValueExA

bscommon

BsCm_IsConnectingPANOnThisDevice
BsCm_IsMatchSymbianModelExist
BsCm_GetLangDepResLib
BsCm_CreateShortCut
BsCm_UseMobileConnection
BsCm_SetDeviceModel
BsCm_IsShortcutConnected
BsCm_GetCommonSettingFilePath
BsCm_IsX64Platform
BsCm_InstallANewPrinter
BsCm_UTF8ToLocal
BsCm_GetIVTMobilePath
BsCm_GetComPortByShortcut
BsCm_FindModemNameByComPort
BsCm_PostMsg2Bttray
BsCm_GetCOMServiceDir
BsCm_IsMobileDUNActive
BsCm_GetPersonalSettingFilePath
BsCm_IsWindowsVistaAbove
BsCm_GetInstallDir
BsCm_GetSvcIconID
BsCm_LimitStringCharacterCount
BsCm_ExistSameSvcClsConnection
BsCm_GetServiceClass
BsCm_GetRmtSvcDisplayName
BsCm_DeleteShortCut
BsCm_GetShortcutsByComPort
BsCm_GetIVTProviderPath

bslangindepres

BsRes_GetResIcon

bssdk

Btsdk_BrowseRemoteServices
Btsdk_AGAP_AudioConnTrans
Btsdk_AGAP_NetworkEvent
Btsdk_ConnectShortCut
Btsdk_SetRemoteDeviceParam
Btsdk_GetRemoteDeviceParam
Btsdk_PairDevice
Btsdk_GetShortCutByServiceHandle
Btsdk_GetRemoteServiceAttributes
Btsdk_PAN_IsNapAdapter
Btsdk_EndEnumRemoteService
Btsdk_GetShortCutByConnectionHandle
Btsdk_GetPrivateProfileStruct
Btsdk_UpdateRemoteDeviceName
Btsdk_DeleteRemoteDeviceByHandle
Btsdk_DeinitCommObj
Btsdk_CommNumToSerialNum
Btsdk_GetShortCutByDeviceHandle
Btsdk_AGAP_IsAudioConnExisted
Btsdk_IsBluetoothReady
Btsdk_IsCurrentUserProcess
Btsdk_WritePrivateProfileStruct
Btsdk_VDIInstallDev
Btsdk_IsDevicePaired
Btsdk_GetServerStatus
Btsdk_GetRemoteDeviceName
Btsdk_SetShortCutProperty
Btsdk_ConnectShortCutEx
Btsdk_GetShortCutProperty
Btsdk_GetShortCutByServiceClass
Btsdk_GetPrivateProfileString
Btsdk_WritePrivateProfileString
Btsdk_GetPrivateProfileInt
Btsdk_A2DP_SRCReconfigureStream
Btsdk_GetServerAttributes
Btsdk_EndEnumLocalServer
Btsdk_EnumLocalServer
Btsdk_StartEnumLocalServer
Btsdk_EndEnumConnection
Btsdk_Disconnect
Btsdk_EnumConnection
Btsdk_StartEnumConnection
Btsdk_EndEnumRemoteDevice
Btsdk_FreeMemory
Btsdk_EnumRemoteService
Btsdk_StartEnumRemoteService
Btsdk_BPPGetReferencedObjectsRsp
Btsdk_MallocMemory
Btsdk_PlugOutVComm
Btsdk_VDIDelModem
Btsdk_WrapSetOpenCompleteEvent
Btsdk_InitCommObj
Btsdk_PlugInVComm
Btsdk_GetASerialNum
Btsdk_DisconnectShortCut
Btsdk_DunUpdateReg
Btsdk_HCRPPGet1284ID
Btsdk_SetSecurityMode
Btsdk_GetSecurityMode
Btsdk_GetRemoteDeviceAddress

ws2_32

inet_addr

bstrace

??0CBsTraceFunc@@QAE@KPAD@Z
??1CBsTraceFunc@@QAE@XZ
?BsTrace_UserDef@@YAXKPBDZZ

iphlpapi

GetAdaptersInfo

rasapi32

RasDeleteEntryA
RasGetEntryPropertiesA
RasEnumEntriesA
RasSetEntryPropertiesA
RasValidateEntryNameA
RasEnumConnectionsA
RasGetEntryDialParamsA
RasDialA
RasHangUpA

setupapi

SetupDiGetINFClassA
SetupDiCreateDeviceInfoList
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInstallParamsA
SetupDiCallClassInstaller
SetupDiSetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiSetSelectedDevice
SetupDiRegisterDeviceInfo
SetupDiSetDeviceInstallParamsA
SetupDiBuildDriverInfoList
SetupDiOpenDevRegKey
SetupDiCreateDeviceInfoA

rasdlg

RasDialDlgA

winmm

waveOutGetDevCapsA
waveOutGetNumDevs
waveInMessage
waveInGetDevCapsA
waveInGetNumDevs
waveOutMessage

winspool.drv

OpenPrinterW
XcvDataW
ClosePrinter
GetPrinterA
SetPrinterA
OpenPrinterA

bsmobilesdk

MB_ConnectSock
MB_AutoModelMatching

msvcrt

_strupr
_strnicmp
_adjust_fdiv
_initterm
_onexit
__dllonexit
_mbsicmp
_mbsnbicmp
_except_handler3
wcscpy
wcsstr
_mbsnbcpy
_snprintf
_mbsnbcmp
_mbsupr
wcslen
strcmp
_itoa
_mbscmp
atoi
_mbslwr
_mbsstr
_mbsrchr
fopen
fseek
ftell
malloc
fread
free
fclose
_mbschr
strstr
memcpy
strlen
strcpy
sprintf
__CxxFrameHandler
??2@YAPAXI@Z
memset
strcat
??3@YAXPAX@Z

Exports

Exports

BsProfile_AppInDisc
BsProfile_AppOutConnect
BsProfile_AppOutDisc
BsProfile_AutoConnectMobilePhone
BsProfile_BPP_GetMimeByFmt
BsProfile_BPP_GetRefObjRsp
BsProfile_BPP_GetSendDocRsp
BsProfile_BPP_GetSupportFmt
BsProfile_BPP_SaveRefObj
BsProfile_ConnectMobilePhone
BsProfile_DeleteRmtDevice
BsProfile_DisConnectPanIfSettingChanged
BsProfile_DiscA2dpAppConn
BsProfile_DiscAllPanAppOutConn
BsProfile_DiscAvrcpAppConn
BsProfile_ExistPanAppConn
BsProfile_GetA2dpQuality
BsProfile_GetCurrAdapterIp
BsProfile_GetCurrNapAdaptLink
BsProfile_GetCurrPanRole
BsProfile_GetCurrPanSvcStatus
BsProfile_GetDhcpAttribute
BsProfile_GetNapAdapters
BsProfile_GetRegisteredSNKAudioDevice
BsProfile_GetSNKAudioDevices
BsProfile_HCRP_AddAndSetPrintPort
BsProfile_HCRP_AddPort
BsProfile_HCRP_SetPrintPort
BsProfile_HangUpAllRasConnection
BsProfile_IsAutoConnPort
BsProfile_IsClntIdle
BsProfile_IsDhcpEnabled
BsProfile_MuteOffAudioDevice
BsProfile_MuteOnAudioDevice
BsProfile_PostAppOutConnect
BsProfile_PostAppOutDisc
BsProfile_PreAppOutConnect
BsProfile_PreAppOutDisc
BsProfile_RecordCurrAudioDevice
BsProfile_RestoreRecordedDefaultAudioDevice
BsProfile_SetA2dpQuality
BsProfile_SetAutoConnPortAttr
BsProfile_SetDefaultAudioDevice
VDI_AddDUNModem
VDI_AddFAXModem
VDI_AddSerialPort
VDI_DelModem
VDI_DelSerialPort

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bssdk.dll
.dll windows:4 windows x86 arch:x86

9d6a83e427ee6fd3c3650c7403bbd9ee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

OpenProcess
GetCurrentProcessId
OutputDebugStringA
Process32Next
Process32First
CreateToolhelp32Snapshot
Sleep
CreateFileA
CreateDirectoryA
GetVersionExA
CreateThread
CreateEventA
TerminateThread
SetEvent
TerminateProcess
CreateSemaphoreA
ReleaseSemaphore
MultiByteToWideChar
lstrcpynA
lstrlenW
WideCharToMultiByte
GetCurrentProcess
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
VirtualQuery
LocalFree
lstrlenA
CloseHandle
InterlockedDecrement
WaitForSingleObject
InterlockedIncrement
GetLastError

shell32

SHGetFolderPathA

bstrace

??1CBsTraceFunc@@QAE@XZ
?BsTrace_UserDef@@YAXKPBDZZ
??0CBsTraceFunc@@QAE@KPAD@Z

ole32

CoInitializeEx
CoCreateInstance
CoUninitialize

oleaut32

SysAllocStringLen
SysFreeString
VariantInit
CreateErrorInfo
VariantChangeType
SetErrorInfo
GetErrorInfo
VariantClear
SysAllocString

msvcrt

??1type_info@@UAE@XZ
_itoa
_adjust_fdiv
_initterm
_onexit
memcmp
sprintf
_except_handler3
_mbsstr
strcmp
strcat
_purecall
??2@YAPAXI@Z
__CxxFrameHandler
memcpy
strncpy
memset
strlen
malloc
free
strcpy
strtol
_mbslen
wcslen
_CxxThrowException
__dllonexit

Exports

Exports

BsPA_GetBuyString
BsPA_GetSN
BsPA_WriteSNToRegistry
Btsdk_A2DPRegVaudioCbk
Btsdk_A2DPVAUDIO_Start
Btsdk_A2DP_SRCReconfigureStream
Btsdk_AGAP_3WayCallingHandler
Btsdk_AGAP_APPRegCbk
Btsdk_AGAP_APPRegCbk4ThirdParty
Btsdk_AGAP_AcceptHeldIncomingCall
Btsdk_AGAP_AnswerCall
Btsdk_AGAP_AudioConnTrans
Btsdk_AGAP_CancelCall
Btsdk_AGAP_ChangeInbandRingSetting
Btsdk_AGAP_CurrentCallRsp
Btsdk_AGAP_CurrentCallSync
Btsdk_AGAP_DialRsp
Btsdk_AGAP_GetAGState
Btsdk_AGAP_HoldIncomingCall
Btsdk_AGAP_IsAudioConnExisted
Btsdk_AGAP_ManufacturerIDRsp
Btsdk_AGAP_ModelIDRsp
Btsdk_AGAP_NetworkEvent
Btsdk_AGAP_NetworkOperatorRsp
Btsdk_AGAP_OriginateCall
Btsdk_AGAP_RejectHeldIncomingCall
Btsdk_AGAP_SendBatteryChargeIndicator
Btsdk_AGAP_SendErrorMessage
Btsdk_AGAP_SetCurIndicatorVal
Btsdk_AGAP_SetDialHandlerFlag
Btsdk_AGAP_SetMicVol
Btsdk_AGAP_SetSpkVol
Btsdk_AGAP_SubscriberNumberRsp
Btsdk_AGAP_VoiceRecognitionReq
Btsdk_AGAP_VoiceTagPhoneNumRsp
Btsdk_AVRCP_PassThroughReq
Btsdk_AVRCP_RegIndCbk
Btsdk_AVRCP_RegIndCbk4ThirdParty
Btsdk_AVRCP_RegPassThrCmdCbk
Btsdk_AVRCP_RegPassThrCmdCbk4ThirdParty
Btsdk_AcceptConnectionRequest
Btsdk_AcceptSyncConnectionRequest
Btsdk_Activate
Btsdk_ActivateEx
Btsdk_AddRemoteDevice
Btsdk_AddServer
Btsdk_AuthorizationResponse
Btsdk_BIPAddCapabilities
Btsdk_BIPCancelTransfer
Btsdk_BIPConnectObjSvr
Btsdk_BIPCreateStorage
Btsdk_BIPDeleteImage
Btsdk_BIPGetCapabilities
Btsdk_BIPGetImage
Btsdk_BIPGetImageList
Btsdk_BIPGetImageProperties
Btsdk_BIPGetLinkedAttachment
Btsdk_BIPGetLinkedThumbnail
Btsdk_BIPGetMonitoringImage
Btsdk_BIPGetPartialImage
Btsdk_BIPGetStatus
Btsdk_BIPPutImage
Btsdk_BIPPutLinkedAttachment
Btsdk_BIPPutLinkedThumbnail
Btsdk_BIPRegisterImageRoutines
Btsdk_BIPRegisterImgSvrCallback
Btsdk_BIPRegisterStatusCallback
Btsdk_BIPRemoteDisplay
Btsdk_BIPStartArchive
Btsdk_BIPStartPrint
Btsdk_BIPWriteFile
Btsdk_BPPCancelJob
Btsdk_BPPCancelJobRsp
Btsdk_BPPCancelTransfer
Btsdk_BPPConnectPBRService
Btsdk_BPPConnectRefJobChnl
Btsdk_BPPConnectStatusService
Btsdk_BPPCreateJob
Btsdk_BPPCreateJobRsp
Btsdk_BPPFilePush
Btsdk_BPPGetEvent
Btsdk_BPPGetEventRsp
Btsdk_BPPGetJobAttributesRsp
Btsdk_BPPGetMargins
Btsdk_BPPGetMarginsRsp
Btsdk_BPPGetPrinterAttributes
Btsdk_BPPGetPrinterAttributesRsp
Btsdk_BPPGetRUI
Btsdk_BPPGetRUIRsp
Btsdk_BPPGetReferencdObjects
Btsdk_BPPGetReferencedObjectsRsp
Btsdk_BPPRegisterStatusCallback
Btsdk_BPPRegisterSvrCallback
Btsdk_BPPSendDocumentRsp
Btsdk_BPPSendReference
Btsdk_BPPSendReferenceRsp
Btsdk_BPPUnregisterService
Btsdk_BroadcastMessage
Btsdk_BrowseRemoteServices
Btsdk_BrowseRemoteServicesEx
Btsdk_CanWriteLicenseKey
Btsdk_CancelPairDevice
Btsdk_CancelUpdateRemoteDeviceName
Btsdk_ChangeConnectionPacketType
Btsdk_CommNumToSerialNum
Btsdk_Connect
Btsdk_ConnectAppExtSPPService
Btsdk_ConnectEx
Btsdk_ConnectShortCut
Btsdk_ConnectShortCutEx
Btsdk_CreateShortCut
Btsdk_CreateShortCutEx
Btsdk_DeEnumAVDriver
Btsdk_DeEnumSCODriver
Btsdk_DecryptString
Btsdk_DeinitCommObj
Btsdk_DeleteRemoteDeviceByHandle
Btsdk_DeleteShortCut
Btsdk_DeleteUnpairedDevicesByClass
Btsdk_Disconnect
Btsdk_DisconnectShortCut
Btsdk_Done
Btsdk_DunUpdateReg
Btsdk_EnableExeAddin
Btsdk_EncryptString
Btsdk_EndEnumConnection
Btsdk_EndEnumLocalServer
Btsdk_EndEnumRemoteDevice
Btsdk_EndEnumRemoteService
Btsdk_EnterUnlockCode
Btsdk_EnumAVDriver
Btsdk_EnumConnection
Btsdk_EnumLocalServer
Btsdk_EnumRemoteDevice
Btsdk_EnumRemoteService
Btsdk_EnumSCODriver
Btsdk_FTPBackDir
Btsdk_FTPBrowseFolder
Btsdk_FTPCancelTransfer
Btsdk_FTPCreateDir
Btsdk_FTPDeleteDir
Btsdk_FTPDeleteFile
Btsdk_FTPGetDir
Btsdk_FTPGetFile
Btsdk_FTPGetRmtDir
Btsdk_FTPPutDir
Btsdk_FTPPutFile
Btsdk_FTPRegisterDealReceiveFileCB
Btsdk_FTPRegisterDealReceiveFileCB4ThirdParty
Btsdk_FTPRegisterStatusCallback
Btsdk_FTPRegisterStatusCallback4ThirdParty
Btsdk_FTPSetRmtDir
Btsdk_FindComPort
Btsdk_FreeMemory
Btsdk_GetACLHandle
Btsdk_GetASerialNum
Btsdk_GetActivationInformation
Btsdk_GetAllIncomingConnections
Btsdk_GetAllOutgoingConnections
Btsdk_GetAllShortCuts
Btsdk_GetAvailableExtSPPCOMPort
Btsdk_GetClientPort
Btsdk_GetConnectionProperty
Btsdk_GetDefaultShortCut
Btsdk_GetDiscoveryMode
Btsdk_GetEvaluateDays
Btsdk_GetFixedPinCode
Btsdk_GetInquiredDevices
Btsdk_GetLicenseKey
Btsdk_GetLocalDeviceAddress
Btsdk_GetLocalDeviceClass
Btsdk_GetLocalDeviceParam
Btsdk_GetLocalLMPInfo
Btsdk_GetLocalName
Btsdk_GetLocalServerExtAttrSize
Btsdk_GetLocalServers
Btsdk_GetPairedDevices
Btsdk_GetPrivateProfileInt
Btsdk_GetPrivateProfileSection
Btsdk_GetPrivateProfileString
Btsdk_GetPrivateProfileStruct
Btsdk_GetProcessAccountType
Btsdk_GetRemoteDeviceAddress
Btsdk_GetRemoteDeviceClass
Btsdk_GetRemoteDeviceHandle
Btsdk_GetRemoteDeviceName
Btsdk_GetRemoteDeviceParam
Btsdk_GetRemoteDeviceProperty
Btsdk_GetRemoteDeviceRole
Btsdk_GetRemoteLMPInfo
Btsdk_GetRemoteLinkKey
Btsdk_GetRemoteLinkQuality
Btsdk_GetRemoteRSSI
Btsdk_GetRemoteServiceAttributes
Btsdk_GetRemoteServiceExtAttrSize
Btsdk_GetRemoteServiceName
Btsdk_GetRemoteServiceParam
Btsdk_GetRemoteServices
Btsdk_GetRemoteServicesEx
Btsdk_GetSecurityMode
Btsdk_GetServerAttributes
Btsdk_GetServerPort
Btsdk_GetServerStatus
Btsdk_GetServiceSecurityLevel
Btsdk_GetShortCutByConnectionHandle
Btsdk_GetShortCutByDeviceClass
Btsdk_GetShortCutByDeviceHandle
Btsdk_GetShortCutByName
Btsdk_GetShortCutByServiceClass
Btsdk_GetShortCutByServiceHandle
Btsdk_GetShortCutProperty
Btsdk_GetStackDbgFlags
Btsdk_GetStoredDevicesByClass
Btsdk_GetSupervisionTimeout
Btsdk_GetTraceSwitch
Btsdk_GetTrustedDevices
Btsdk_HCRPPGet1284ID
Btsdk_HCRPP_ClntWriteData
Btsdk_HCRPP_GetSvrLPTStatus
Btsdk_HFAP_3WayCallingHandler
Btsdk_HFAP_APPRegCbk
Btsdk_HFAP_APPRegCbk4ThirdParty
Btsdk_HFAP_AcceptHeldIncomingCall
Btsdk_HFAP_AnswerCall
Btsdk_HFAP_AudioConnTrans
Btsdk_HFAP_CancelCall
Btsdk_HFAP_Dial
Btsdk_HFAP_DisableNREC
Btsdk_HFAP_GetCurrHFState
Btsdk_HFAP_GetCurrentCalls
Btsdk_HFAP_GetManufacturerID
Btsdk_HFAP_GetModelID
Btsdk_HFAP_GetResponseHoldStatus
Btsdk_HFAP_GetSubscriberNumber
Btsdk_HFAP_HoldIncomingCall
Btsdk_HFAP_LastNumRedial
Btsdk_HFAP_MemNumDial
Btsdk_HFAP_NetworkOperatorReq
Btsdk_HFAP_RejectHeldIncomingCall
Btsdk_HFAP_SetExtendedErrors
Btsdk_HFAP_SetMicVol
Btsdk_HFAP_SetSpkVol
Btsdk_HFAP_SetWaveInDevice
Btsdk_HFAP_SetWaveOutDevice
Btsdk_HFAP_TxDTMF
Btsdk_HFAP_VoiceRecognitionReq
Btsdk_HFAP_VoiceTagPhoneNumReq
Btsdk_HFP_ExtendCmd
Btsdk_HFSwrap_BoundClnt
Btsdk_HFSwrap_ResultCodeInd
Btsdk_HFSwrap_Unbound
Btsdk_Hid_ClntDisableAutoConnect
Btsdk_Hid_ClntUnPluggedDev
Btsdk_Hid_GetPlugFlag
Btsdk_Hid_GetSubClass
Btsdk_IOCapReqReject
Btsdk_IOCapReqReply
Btsdk_Init
Btsdk_InitBlueSoleilSession
Btsdk_InitCommObj
Btsdk_Is5MBLimit
Btsdk_IsBluetoothHardwareExisted
Btsdk_IsBluetoothReady
Btsdk_IsBsHelpCsConnected
Btsdk_IsComPortIdle
Btsdk_IsCurrentUserProcess
Btsdk_IsDeviceConnected
Btsdk_IsDevicePaired
Btsdk_IsDeviceTrusted
Btsdk_IsHardwareLicensed
Btsdk_IsKeyVaild
Btsdk_IsLicensed
Btsdk_IsMobileActive
Btsdk_IsNTServiceRunning
Btsdk_IsPluginAuthorized
Btsdk_IsSDKInitialized
Btsdk_IsSNLicensed
Btsdk_IsServerConnected
Btsdk_IsWinXPorLater
Btsdk_LinkKeyReply
Btsdk_MallocMemory
Btsdk_OPPCancelTransfer
Btsdk_OPPExchangeObj
Btsdk_OPPPullObj
Btsdk_OPPPushObj
Btsdk_OPPRegisterDealReceiveFileCB
Btsdk_OPPRegisterDealReceiveFileCB4ThirdParty
Btsdk_OPPRegisterStatusCallback
Btsdk_OPPRegisterStatusCallback4ThirdParty
Btsdk_PAN_IsNapAdapter
Btsdk_PAN_RegIndCbk
Btsdk_PAN_RegIndCbk4ThirdParty
Btsdk_PairDevice
Btsdk_PasskeyReqReply
Btsdk_PinCodeReply
Btsdk_PlugInVComm
Btsdk_PlugInVcommByRecord
Btsdk_PlugOutVComm
Btsdk_PluginBuy
Btsdk_PostMessageToCtrlCenter
Btsdk_ReConnectBsHelpCS
Btsdk_ReadLicense
Btsdk_ReadLicenseKey
Btsdk_ReadStoredLinkKey
Btsdk_RecoverRemoteDeviceLinkKey
Btsdk_RefreshRemoteServiceAttributes
Btsdk_RegCloseKey
Btsdk_RegCloseKeyForX64Reg
Btsdk_RegCreateKey
Btsdk_RegCreateKeyForX64Reg
Btsdk_RegDeleteKey
Btsdk_RegDeleteKeyForX64Reg
Btsdk_RegDeleteValue
Btsdk_RegDeleteValueForX64Reg
Btsdk_RegEnumKey
Btsdk_RegEnumKeyForX64Reg
Btsdk_RegOpenKey
Btsdk_RegOpenKeyForX64Reg
Btsdk_RegQueryBinaryValue
Btsdk_RegQueryBinaryValueForX64Reg
Btsdk_RegQueryInfoKey
Btsdk_RegQueryInfoKeyForX64Reg
Btsdk_RegQueryIntValue
Btsdk_RegQueryIntValueForX64Reg
Btsdk_RegQueryStringValue
Btsdk_RegQueryStringValueForX64Reg
Btsdk_RegSetBinaryValue
Btsdk_RegSetBinaryValueForX64Reg
Btsdk_RegSetIntValue
Btsdk_RegSetIntValueForX64Reg
Btsdk_RegSetStringValue
Btsdk_RegSetStringValueForX64Reg
Btsdk_RegisterA2DPSNKService
Btsdk_RegisterA2DPSRCService
Btsdk_RegisterAVRCPTGService
Btsdk_RegisterAddinNotify
Btsdk_RegisterAppExtSPPService
Btsdk_RegisterCallback
Btsdk_RegisterCallback4ThirdParty
Btsdk_RegisterCallbackEx
Btsdk_RegisterFTPService
Btsdk_RegisterGetStatusInfoCB
Btsdk_RegisterGetStatusInfoCB4ThirdParty
Btsdk_RegisterHCRPPService
Btsdk_RegisterHFPService
Btsdk_RegisterImagingService
Btsdk_RegisterOPPService
Btsdk_RegisterPANService
Btsdk_RegisterPrinterService
Btsdk_RegisterRUIService
Btsdk_RegisterRefObjService
Btsdk_RegisterSPPService
Btsdk_RejectConnectionRequest
Btsdk_RemOOBDataReqReply
Btsdk_RemoteDeviceFlowStatistic
Btsdk_RemoveServer
Btsdk_SCO_Start
Btsdk_SCO_Stop
Btsdk_SearchAppExtSPPService
Btsdk_SendDataToHostController
Btsdk_SetAuthorizationMethod
Btsdk_SetDefaultMode
Btsdk_SetDiscoveryMode
Btsdk_SetFixedPinCode
Btsdk_SetHFPCBKFlag
Btsdk_SetHlpStatusInfoFlag
Btsdk_SetLocEir
Btsdk_SetLocalDeviceClass
Btsdk_SetLocalDeviceParam
Btsdk_SetLocalName
Btsdk_SetRemoteDeviceName
Btsdk_SetRemoteDeviceParam
Btsdk_SetRemoteServiceParam
Btsdk_SetSaveFileRootDir
Btsdk_SetSecurityMode
Btsdk_SetServiceSecurityLevel
Btsdk_SetShortCutProperty
Btsdk_SetStackDbgFlags
Btsdk_SetStatusInfoFlag
Btsdk_SetSupervisionTimeout
Btsdk_SetTrustedDevice
Btsdk_ShowTipStartUpdate
Btsdk_StartBluetooth
Btsdk_StartDeviceDiscovery
Btsdk_StartEnumConnection
Btsdk_StartEnumLocalServer
Btsdk_StartEnumRemoteDevice
Btsdk_StartEnumRemoteService
Btsdk_StartNtService
Btsdk_StartPeriodicDeviceDiscovery
Btsdk_StartServer
Btsdk_StartUpdate
Btsdk_StopBluetooth
Btsdk_StopComServer
Btsdk_StopDeviceDiscovery
Btsdk_StopPeriodicDeviceDiscovery
Btsdk_StopServer
Btsdk_ThirdPartyAddinInit
Btsdk_UnPairDevice
Btsdk_UnregisterA2DPSNKService
Btsdk_UnregisterA2DPSRCService
Btsdk_UnregisterAVRCPTGService
Btsdk_UnregisterAppExtSPPService
Btsdk_UnregisterFTPService
Btsdk_UnregisterHCRPPService
Btsdk_UnregisterHFPService
Btsdk_UnregisterImagingService
Btsdk_UnregisterOPPService
Btsdk_UnregisterPANService
Btsdk_UnregisterSPPService
Btsdk_UpdateActivationID
Btsdk_UpdateDongle
Btsdk_UpdateRemoteDeviceName
Btsdk_UpdateServerAttributes
Btsdk_UsrCfmReqReply
Btsdk_VDIDelModem
Btsdk_VDIDelSerialPort
Btsdk_VDIInstallDev
Btsdk_VendorCommand
Btsdk_WrapResetAllOpenCompleteEvent
Btsdk_WrapSetCallback
Btsdk_WrapSetOpenCompleteEvent
Btsdk_WritePrivateProfileInt
Btsdk_WritePrivateProfileSection
Btsdk_WritePrivateProfileString
Btsdk_WritePrivateProfileStruct
Btsdk_WriteStoredLinkKey

Sections

.text
Size: 168KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bsshell.dll
.dll regsvr32 windows:4 windows x86 arch:x86

daef3c83beb61220e9124226e6b20d55

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathFindFileNameA
PathFileExistsA
PathFileExistsW

shell32

ord16
ord18
ord17
ord256
ord21
ord72
ord73
ord152
SHGetSpecialFolderPathW
SHGetSpecialFolderPathA
DragQueryFileA
SHGetFileInfoA
ShellExecuteA
SHGetFolderPathA
SHGetPathFromIDListA
SHBrowseForFolderA
SHChangeNotify
ord153
ord25
ord155
SHGetDesktopFolder

bssdk

Btsdk_EndEnumConnection
Btsdk_GetShortCutProperty
Btsdk_StartEnumRemoteService
Btsdk_EnumRemoteService
Btsdk_EndEnumRemoteService
Btsdk_GetShortCutByDeviceHandle
Btsdk_GetLocalDeviceClass
Btsdk_GetLocalDeviceAddress
Btsdk_GetRemoteDeviceAddress
Btsdk_GetRemoteDeviceName
Btsdk_IsDevicePaired
Btsdk_StartEnumRemoteDevice
Btsdk_EnumRemoteDevice
Btsdk_EndEnumRemoteDevice
Btsdk_IsCurrentUserProcess
Btsdk_GetServerAttributes
Btsdk_Disconnect
Btsdk_GetShortCutByServiceHandle
Btsdk_GetRemoteDeviceClass
Btsdk_EnumConnection
Btsdk_BrowseRemoteServices
Btsdk_UpdateRemoteDeviceName
Btsdk_StartDeviceDiscovery
Btsdk_IsNTServiceRunning
Btsdk_IsLicensed
Btsdk_IsBluetoothReady
Btsdk_IsHardwareLicensed
Btsdk_IsSNLicensed
Btsdk_GetPrivateProfileInt
Btsdk_IsMobileActive
Btsdk_GetRemoteDeviceParam
Btsdk_SetRemoteDeviceParam
Btsdk_StartEnumLocalServer
Btsdk_EnumLocalServer
Btsdk_EndEnumLocalServer
Btsdk_GetLocalDeviceParam
Btsdk_SetLocalDeviceParam
Btsdk_IsServerConnected
Btsdk_IsBsHelpCsConnected
Btsdk_StartEnumConnection
Btsdk_SetStatusInfoFlag
Btsdk_Hid_GetPlugFlag
Btsdk_GetPrivateProfileString
Btsdk_StartNtService
Btsdk_GetConnectionProperty
Btsdk_GetAllIncomingConnections
Btsdk_GetServerStatus
Btsdk_WritePrivateProfileInt
Btsdk_WritePrivateProfileString
Btsdk_FTPBrowseFolder
Btsdk_FTPSetRmtDir
Btsdk_ConnectEx
Btsdk_FTPGetRmtDir
Btsdk_Is5MBLimit
Btsdk_GetLocalName
Btsdk_GetShortCutByServiceClass
Btsdk_AGAP_GetAGState
Btsdk_AGAP_IsAudioConnExisted
Btsdk_Init
Btsdk_Done
Btsdk_RegisterCallback
Btsdk_RegisterGetStatusInfoCB
Btsdk_GetAllOutgoingConnections
Btsdk_StopDeviceDiscovery

bscommon

BsCm_CreateShortCut
BsCm_GetIconIndexByID
BsCm_GetLocSvcIconIDEx
BsCm_DelAllShortcutsBySvcClsForSpecialDevice
BsCm_GetLocSvcStatusString
BsCm_GetFTPFileSizeString
BsCm_DisconnectMobilePhone
BsCm_CreateMobileSMSInfo
BsCm_SendSMS
BsCm_DestroyMobileSMSInfo
BsCm_GetDeviceModel
BsCm_GetContactName
BsCm_FormatFTPFilePath
BsCm_MapMobileErrorCode
BsCm_IsMobileFTPActive
BsCm_GetFTPFileDefaultIcon
BsCm_SendFilestoBtDevice
BsCm_ShouldShowDialerUI
BsCm_IsPrinterInstalled
BsCm_GetLocSvcDisplayName
BsCm_GetDefaultDevByServiceClass
BsCm_GetConnectionNumByDevHdl
BsCm_ShouldShowDefaultConn
BsCm_GetCurrHFHSShc
BsCm_GetCurrPanShc
BsCm_GetDeviceIconIndex
BsCm_GetSvcIconIndex
BsCm_GetAbsoluteMobileFolderPidlOf
BsCm_GetPersonalSettingFilePath
BsCm_ConnectDefaultShcByDevhdl
BsCm_AllocContactItemEx
BsCm_FreeContactItemEx
BsCm_DialPhone
BsCm_IsShortcutConnected
BsCm_GetAbsoluteFTPSvcPidlOf
BsCm_StopServer
BsCm_ShowFTPFileProperty
BsCm_DeleteDevices
BsCm_GetSvcIconID
BsCm_ShouldRefreshThisRmtSvcByLocSvcConn
BsCm_GetLocSvcClsByRelevantRmtSvcCls
BsCm_IsSpecialIncomingConnectionExist
BsCm_GetDeviceIconID
BsCm_UTF8ToLocalEx
BsCm_GetComPortByShortcut
BsCm_IsDefaultDevice
BsCm_ShouldShowThisRemoteServiceEx
BsCm_ShouldShowThisLocalServerEx
BsCm_ShouldRefreshRmtSvcByThisLocSvcConn
BsCm_GetRmtSvcClsByRelevantLocSvcCls
BsCm_ShouldFilterCurDevCls
BsCm_GetInstallDir
BsCm_IsWindowsVistaAbove
BsCm_OpenBsuiDll
BsCm_OpenBsuiExe
BsCm_PostMsg2Bttray
Bscm_IsAddinNeedAuthorized
BsCm_GetCustomVersion
BsCm_IsSupportBoundBTHWLicenceReg
BsCm_ShouldShowThisRemoteService
BsCm_IsMobileDevice
BsCm_ShouldShowThisLocalServer
BsCm_GetDevTypeStrByDevCls
BsCm_GetLocSvcDesStrID
BsCm_GetRmtSvcDesStrID
BsCm_GetFTPFileTimeString
BsCm_GetFTPFileDescription
BsCm_GetServiceClsNameStringID
BsCm_IsMobileActive
BsCm_StartBttrayProc
Bscm_SHFree
Bscm_SHAlloc
BsCm_GetLangDepResLib
BsCm_GetCommonSettingFilePath
Bscm_GetWindowLong
Bscm_SetWindowLong

bslangindepres

BsRes_GetResBMP

bstrace

?BsTrace_SetTraceSwitch@@YAHH@Z
?BsTrace_UserDef@@YAXKPBDZZ
??0CBsTraceFunc@@QAE@KPAD@Z
??1CBsTraceFunc@@QAE@XZ

bsmobilesdk

MB_IsServerConnected
MB_EnumContacts
MB_FtpBrowseFolder
MB_EndEnumSMS
MB_EnumSMS
MB_StartEnumSMS
MB_StartEnumContacts
MB_ParseContactDetails2
MB_InitialPlugDB
MB_GetSMS
MB_UnregisterCallback
MB_StartListContacts
MB_RegisterCallback
MB_StartListSMS
MB_BackupContacts
MB_GetSupportedSections
MB_RecoverContacts
MB_GetRecoverableInfo
MB_SetContacts
MB_ConstructContact
MB_SetSMS
MB_IsSockConnExist
MB_EndEnumContacts

kernel32

LocalFree
GetVersionExA
GetExitCodeThread
TerminateThread
UnmapViewOfFile
MapViewOfFile
GetCurrentProcess
DuplicateHandle
CopyFileA
GetSystemTime
FindNextFileA
CreateToolhelp32Snapshot
Process32First
OpenProcess
IsBadReadPtr
SetLastError
GetLastError
GetModuleHandleA
GetExitCodeProcess
GetProcAddress
GetFileAttributesW
GetVersion
OutputDebugStringA
LoadLibraryW
GetModuleFileNameW
DisableThreadLibraryCalls
FreeLibrary
GetPrivateProfileIntA
GetModuleFileNameA
GetPrivateProfileStringA
lstrlenA
DeleteFileA
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
InterlockedIncrement
EnterCriticalSection
InterlockedDecrement
lstrlenW
GetShortPathNameA
WideCharToMultiByte
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
HeapDestroy
LoadLibraryA
lstrcpyA
lstrcatA
CloseHandle
CreateThread
Sleep
GetTempPathA
ExitThread
GetCurrentProcessId
WaitForSingleObject
CreateEventA
SetEvent
ExitProcess
IsBadWritePtr
lstrcpynW
GlobalUnlock
GlobalLock
SystemTimeToFileTime
GetLocalTime
RemoveDirectoryA
SetFileAttributesA
GetFileAttributesA
FindClose
FindFirstFileA
CreateDirectoryA
GlobalAlloc
GetLongPathNameW
GetLongPathNameA
CompareFileTime
Process32Next
TerminateProcess
GetModuleHandleW

user32

CreateMenu
RegisterClipboardFormatA
SetCursor
LoadCursorA
GetMenuItemCount
SetForegroundWindow
FindWindowA
GetClipboardFormatNameA
TrackPopupMenu
InSendMessage
CreatePopupMenu
DispatchMessageA
TranslateMessage
GetMessageA
CreateDialogParamA
LoadIconA
InsertMenuItemA
PostMessageA
MessageBoxA
CharNextA
LoadStringA
CreateWindowExA
SendMessageA
KillTimer
SetTimer
CallWindowProcA
GetWindowInfo
SetWindowPos
ShowWindow
DestroyWindow
IsWindow
PostQuitMessage
SetMenuItemInfoA
GetMenuItemInfoA
GetParent
EnumChildWindows
GetClassNameA
GetWindowThreadProcessId
SendMessageTimeoutA
EnumWindows
DefWindowProcA
SetWindowTextA
LoadStringW
RegisterClassA
RegisterWindowMessageA

advapi32

RegCloseKey
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyExA
RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegEnumValueA

ole32

CoUninitialize
CoCreateInstance
CoInitializeEx
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
OleUninitialize
OleRun
CoInitialize
OleGetClipboard
ReleaseStgMedium
OleFlushClipboard
OleSetClipboard
OleInitialize
DoDragDrop

oleaut32

LoadTypeLi
SysFreeString
SysAllocString
VariantInit
CreateErrorInfo
VariantChangeType
SetErrorInfo
GetErrorInfo
RegisterTypeLi
VariantClear
VarUI4FromStr

msvcrt

sprintf
_mbsrev
_mbscmp
strcmp
wcscat
wcscpy
wcslen
wcsrchr
_mbstok
_mbschr
_mbsstr
fclose
fwrite
fopen
_mbsicmp
realloc
malloc
free
_purecall
strlen
_mbsrchr
strcat
strcpy
memset
memcmp
??2@YAPAXI@Z
memcpy
_except_handler3
__CxxFrameHandler
wcsncpy
__dllonexit
_onexit
?terminate@@YAXXZ
_initterm
_adjust_fdiv
fread
_wcsicmp
_CxxThrowException
??1type_info@@UAE@XZ

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 380KB - Virtual size: 378KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bstrace.dll
.dll windows:4 windows x86 arch:x86

a90baedebd1ce4c918f16af18b243886

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
DisableThreadLibraryCalls
GetCurrentThreadId
GetLocalTime
GetCurrentProcessId
SetEvent
ReleaseSemaphore
WaitForSingleObject
GetExitCodeThread
WriteFile
SetEndOfFile
SetFilePointer
GetFileSize
OutputDebugStringA
CreateThread
CreateEventA
CreateSemaphoreA
CreateFileA
CloseHandle
CreateDirectoryA
lstrcmpiA
GetPrivateProfileIntA
FreeLibrary
GetProcAddress
LoadLibraryA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetModuleFileNameA

shell32

SHGetSpecialFolderPathA

msvcrt

sprintf
__dllonexit
strcpy
strlen
strcat
memset
??2@YAPAXI@Z
__CxxFrameHandler
vsprintf
_onexit
??3@YAXPAX@Z
free
malloc
memcpy
_initterm
_adjust_fdiv

Exports

Exports

??0CBsTraceFunc@@QAE@KPAD@Z
??1CBsTraceFunc@@QAE@XZ
?BsTrace_Data@@YAXKEKPAE@Z
?BsTrace_Func@@YAXKPADK@Z
?BsTrace_GetOutputFlag@@YAKXZ
?BsTrace_GetTraceLogFileName@@YAXPADK@Z
?BsTrace_GetTraceMemberFlag@@YAKXZ
?BsTrace_GetTraceModuleFlag@@YAKXZ
?BsTrace_GetTraceSwitch@@YAHXZ
?BsTrace_SetOutputFlag@@YAXK@Z
?BsTrace_SetTraceLogFileName@@YAXPAD@Z
?BsTrace_SetTraceMemberFlag@@YAXK@Z
?BsTrace_SetTraceModuleFlag@@YAXK@Z
?BsTrace_SetTraceSwitch@@YAHH@Z
?BsTrace_UserDef@@YAXKPBDZZ

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 770B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bsvistacommon.dll
.dll windows:4 windows x86 arch:x86

539e77708edd6bc6f74caa26161653dd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyW
lstrlenW
lstrcmpW
GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
RaiseException
GetLastError
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
WriteFile
SetUnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSection
RtlUnwind
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA

ole32

PropVariantClear
CoCreateInstance
CoTaskMemFree

Exports

Exports

EndEnumAudioEndpoints
EnumAudioEndpointId
EnumAudioEndpointName
GetAudioEndpointDeviceIdByName
GetAudioEndpointDeviceNameById
GetDefaultAudioEndpointId
GetDefaultAudioEndpointName
GetVolumeLevel
GetVolumeRange
SetDefaultAudioEndpointById
SetDefaultAudioEndpointByName
SetVolumeLevel
SetVolumeMute
StartEnumAudioEndpoints

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
btcusb.cat
btcusb.cat1
btcusb.dll
.dll windows:4 windows x86 arch:x86

304f0533cd83259d9a30ab3ec3d23490

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:f9:db:d9:2e:7c:94:6c:6b:44:cb:b0:b3:ed:05:5a
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

02/09/2008, 00:00

Not After

20/09/2011, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

af:e2:e9:c1:ea:8a:30:fe:1d:bb:6d:c1:90:fe:84:cb:7a:47:67:48
Signer

Actual PE Digest

af:e2:e9:c1:ea:8a:30:fe:1d:bb:6d:c1:90:fe:84:cb:7a:47:67:48

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

srand
time
rand
_adjust_fdiv
_initterm
_onexit
__dllonexit
sscanf
memcmp
memcpy
memmove
fopen
fprintf
fclose
sprintf
vsprintf
strlen
strcat
malloc
free
fread

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

kernel32

GetModuleHandleA
GetCurrentProcess
GetCommandLineA
GetWindowsDirectoryA
CreateThread
SetThreadPriority
GetLastError
GetOverlappedResult
GetPrivateProfileStringA
ResetEvent
CreateFileA
CreateEventA
DeviceIoControl
Sleep
SetEvent
CloseHandle
WaitForSingleObject
GetLocalTime
WaitForMultipleObjects
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
FreeLibrary
OutputDebugStringA
GetProcAddress

advapi32

RegQueryValueExA
RegOpenKeyA

Exports

Exports

CloseCommPort
ConfigCommPort
GetUsbDevHdl
OpenCommPort
RegisterAddRcvData
RegisterHandleRcvData
RegisterRcvScoDataInd
SendDataToInt
StartUSBSco
StopUSBSco

Sections

.text
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 894B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
btcusb.inf
btcusb.sys
.sys windows:5 windows x86 arch:x86

d8fa3ebf808b14e5c2bae0d4ce41c28e

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:f9:db:d9:2e:7c:94:6c:6b:44:cb:b0:b3:ed:05:5a
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

02/09/2008, 00:00

Not After

20/09/2011, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

fd:3f:33:79:4a:84:84:63:67:78:01:f8:51:29:1d:cd:af:ab:09:26
Signer

Actual PE Digest

fd:3f:33:79:4a:84:84:63:67:78:01:f8:51:29:1d:cd:af:ab:09:26

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\WinDriversInternal\srcstore\200901031635\src\btusb\btcusbsys\objfre_wxp_x86\i386\btcusb.pdb

Imports

ntoskrnl.exe

IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
ExFreePool
ExAllocatePoolWithTag
KeWaitForSingleObject
InterlockedDecrement
IoCancelIrp
KeClearEvent
KeSetEvent
KeBugCheckEx
IoIsWdmVersionAvailable
RtlFreeUnicodeString
KeInitializeSpinLock
IoDeleteDevice
IoCreateDevice
RtlInitUnicodeString
swprintf
ZwClose
ZwSetValueKey
ZwCreateKey
InterlockedIncrement
ZwQueryValueKey
ZwOpenKey
IoFreeIrp
IofCompleteRequest
InterlockedExchange
InterlockedCompareExchange
KeCancelTimer
IoCreateSymbolicLink
IoSetDeviceInterfaceState
IoDetachDevice
IoDeleteSymbolicLink
KeSetTimerEx
PoRequestPowerIrp
IoAllocateIrp
IoFreeWorkItem
IoQueueWorkItem
IoAllocateWorkItem
KeInitializeTimerEx
KeInitializeDpc
PoSetPowerState
IoAttachDeviceToDeviceStack
PoStartNextPowerIrp
PoCallDriver
IoReleaseCancelSpinLock
ObReferenceObjectByHandle
ObfDereferenceObject
IoInvalidateDeviceRelations
wcslen
IoBuildSynchronousFsdRequest
IoGetAttachedDeviceReference
ObfReferenceObject
IoRegisterDeviceInterface

hal

KeGetCurrentIrql
KfAcquireSpinLock
KfReleaseSpinLock

usbd.sys

USBD_ParseConfigurationDescriptorEx
USBD_CreateConfigurationRequestEx

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 419B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
btcusb.sys1
.sys windows:5 windows x86 arch:x86

d8fa3ebf808b14e5c2bae0d4ce41c28e

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:f9:db:d9:2e:7c:94:6c:6b:44:cb:b0:b3:ed:05:5a
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

02/09/2008, 00:00

Not After

20/09/2011, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

fd:3f:33:79:4a:84:84:63:67:78:01:f8:51:29:1d:cd:af:ab:09:26
Signer

Actual PE Digest

fd:3f:33:79:4a:84:84:63:67:78:01:f8:51:29:1d:cd:af:ab:09:26

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\WinDriversInternal\srcstore\200901031635\src\btusb\btcusbsys\objfre_wxp_x86\i386\btcusb.pdb

Imports

ntoskrnl.exe

IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
ExFreePool
ExAllocatePoolWithTag
KeWaitForSingleObject
InterlockedDecrement
IoCancelIrp
KeClearEvent
KeSetEvent
KeBugCheckEx
IoIsWdmVersionAvailable
RtlFreeUnicodeString
KeInitializeSpinLock
IoDeleteDevice
IoCreateDevice
RtlInitUnicodeString
swprintf
ZwClose
ZwSetValueKey
ZwCreateKey
InterlockedIncrement
ZwQueryValueKey
ZwOpenKey
IoFreeIrp
IofCompleteRequest
InterlockedExchange
InterlockedCompareExchange
KeCancelTimer
IoCreateSymbolicLink
IoSetDeviceInterfaceState
IoDetachDevice
IoDeleteSymbolicLink
KeSetTimerEx
PoRequestPowerIrp
IoAllocateIrp
IoFreeWorkItem
IoQueueWorkItem
IoAllocateWorkItem
KeInitializeTimerEx
KeInitializeDpc
PoSetPowerState
IoAttachDeviceToDeviceStack
PoStartNextPowerIrp
PoCallDriver
IoReleaseCancelSpinLock
ObReferenceObjectByHandle
ObfDereferenceObject
IoInvalidateDeviceRelations
wcslen
IoBuildSynchronousFsdRequest
IoGetAttachedDeviceReference
ObfReferenceObject
IoRegisterDeviceInterface

hal

KeGetCurrentIrql
KfAcquireSpinLock
KfReleaseSpinLock

usbd.sys

USBD_ParseConfigurationDescriptorEx
USBD_CreateConfigurationRequestEx

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 419B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
btfunc.dll
.dll windows:4 windows x86 arch:x86

b94056e35c30aa884534c9315f7702bc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

bssdk

Btsdk_SetLocalName
Btsdk_GetRemoteDeviceProperty
Btsdk_EndEnumRemoteDevice
Btsdk_FreeMemory
Btsdk_EnumRemoteService
Btsdk_StartEnumRemoteService
Btsdk_GetRemoteRSSI
Btsdk_GetRemoteLMPInfo
Btsdk_RemoteDeviceFlowStatistic
Btsdk_IsDevicePaired
Btsdk_GetRemoteDeviceClass
Btsdk_UpdateRemoteDeviceName
Btsdk_GetRemoteDeviceName
Btsdk_IsDeviceConnected
Btsdk_AddRemoteDevice
Btsdk_LinkKeyReply
Btsdk_PairDevice
Btsdk_SetFixedPinCode
Btsdk_GetRemoteLinkKey
Btsdk_UnPairDevice
Btsdk_AGAP_AudioConnTrans
Btsdk_Disconnect
Btsdk_OPPPullObj
Btsdk_GetPrivateProfileString
Btsdk_OPPPushObj
Btsdk_ConnectShortCutEx
Btsdk_GetRemoteServiceAttributes
Btsdk_GetRemoteServices
Btsdk_GetShortCutProperty
Btsdk_GetShortCutByServiceClass
Btsdk_GetShortCutByServiceHandle
Btsdk_GetShortCutByConnectionHandle
Btsdk_VendorCommand
Btsdk_GetPairedDevices
Btsdk_GetRemoteDeviceAddress
Btsdk_EnumRemoteDevice
Btsdk_StartEnumRemoteDevice
Btsdk_StartDeviceDiscovery
Btsdk_StopDeviceDiscovery
Btsdk_RegisterCallback4ThirdParty
Btsdk_BrowseRemoteServicesEx
Btsdk_BrowseRemoteServices
Btsdk_SetLocalDeviceClass
Btsdk_IsComPortIdle
Btsdk_GetAvailableExtSPPCOMPort
Btsdk_StopServer
Btsdk_SearchAppExtSPPService
Btsdk_WrapSetOpenCompleteEvent
Btsdk_ConnectAppExtSPPService
Btsdk_CancelUpdateRemoteDeviceName
Btsdk_AVRCP_RegPassThrCmdCbk4ThirdParty
Btsdk_AVRCP_RegIndCbk4ThirdParty
Btsdk_PAN_RegIndCbk4ThirdParty
Btsdk_AGAP_APPRegCbk4ThirdParty
Btsdk_SetHFPCBKFlag
Btsdk_GetSecurityMode
Btsdk_GetDiscoveryMode
Btsdk_GetAllShortCuts
Btsdk_EndEnumLocalServer
Btsdk_SetServiceSecurityLevel
Btsdk_EnumLocalServer
Btsdk_StartEnumLocalServer
Btsdk_SetSecurityMode
Btsdk_SetDiscoveryMode
Btsdk_StopBluetooth
Btsdk_SendDataToHostController
Btsdk_StartServer
Btsdk_GetServerStatus
Btsdk_GetClientPort
Btsdk_GetConnectionProperty
Btsdk_GetDefaultShortCut
Btsdk_SetShortCutProperty
Btsdk_GetShortCutByDeviceHandle
Btsdk_AGAP_IsAudioConnExisted
Btsdk_HFP_ExtendCmd
Btsdk_AGAP_DialRsp
Btsdk_AGAP_OriginateCall
Btsdk_AGAP_NetworkEvent
Btsdk_AGAP_CancelCall
Btsdk_AGAP_AnswerCall
Btsdk_EndEnumConnection
Btsdk_EnumConnection
Btsdk_StartEnumConnection
Btsdk_PinCodeReply
Btsdk_OPPCancelTransfer
Btsdk_GetLocalName
Btsdk_GetLocalDeviceAddress
Btsdk_GetLocalDeviceClass
Btsdk_GetLocalLMPInfo
Btsdk_IsServerConnected
Btsdk_IsBluetoothReady
Btsdk_IsNTServiceRunning
Btsdk_Done
Btsdk_Init
Btsdk_RegisterGetStatusInfoCB4ThirdParty
Btsdk_SetStatusInfoFlag
Btsdk_RegisterAppExtSPPService
Btsdk_StartBluetooth

bstrace

??0CBsTraceFunc@@QAE@KPAD@Z
??1CBsTraceFunc@@QAE@XZ
?BsTrace_SetTraceSwitch@@YAHH@Z
?BsTrace_UserDef@@YAXKPBDZZ

bscommon

BsCm_GetDevTypeStrByDevCls
BsCm_CreateShortCut
BsCm_IsShortcutConnected
BsCm_GetComPortByShortcut
BsCm_GetPersonalSettingFilePath
BsCm_PostMsg2Bttray
BsCm_UTF8ToLocal
BsCm_GetCommonSettingFilePath
BsCm_UTF8ToLocalEx

bsprofilefunc

BsProfile_PreAppOutConnect
BsProfile_PreAppOutDisc

mfc42

ord825
ord1176
ord1575
ord1168
ord1577
ord1182
ord342
ord1243
ord1197
ord1570
ord1253
ord1255
ord6467
ord1578
ord600
ord823
ord1116
ord269
ord826

msvcrt

memcpy
strlen
memcmp
memset
_mbsicmp
_onexit
__dllonexit
??1type_info@@UAE@XZ
_adjust_fdiv
_initterm
__CxxFrameHandler
strcpy
malloc
free

kernel32

LocalAlloc
LocalFree
SetEvent
CreateEventA
WaitForSingleObject
CloseHandle
Sleep

Exports

Exports

BT_BrowseServices
BT_CancelInquiry
BT_CheckFeature
BT_ConnectSPPExService
BT_ConnectService
BT_DisconnectSPPExService
BT_DisconnectService
BT_EnumConnections
BT_GetAppVersion
BT_GetBtSpecVersion
BT_GetConfiguration
BT_GetConnectInfo
BT_GetDefaultAudioDeviceInfo
BT_GetDeviceClassDescription
BT_GetLocalDeviceInfo
BT_GetRemoteDeviceInfo
BT_GetVersion
BT_InitializeLibrary
BT_InquireDevices
BT_IsBlueSoleilStarted
BT_IsBluetoothReady
BT_OPPCancelTransfer
BT_PairDevice
BT_RegisterCallback
BT_SearchSPPExServices
BT_SendProfileCommand
BT_SendVendorHCICommand
BT_SetConfiguration
BT_SetDefaultAudioDeviceInfo
BT_SetLocalDeviceInfo
BT_SetRemoteDeviceInfo
BT_StartBluetooth
BT_StartSPPExService
BT_StartService
BT_StopBluetooth
BT_StopSPPExService
BT_StopService
BT_UninitializeLibrary
BT_UnpairDevice
BT_UnregisterCallback

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
btinstall.dll
.dll windows:5 windows x86 arch:x86

97fb4a04444767debaf170f384f33570

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:f9:db:d9:2e:7c:94:6c:6b:44:cb:b0:b3:ed:05:5a
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

02/09/2008, 00:00

Not After

20/09/2011, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5d:ec:91:12:df:4c:4b:d8:1a:90:89:80:39:3a:03:fc:bf:d1:3d:e1
Signer

Actual PE Digest

5d:ec:91:12:df:4c:4b:d8:1a:90:89:80:39:3a:03:fc:bf:d1:3d:e1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

setupapi

SetupDiGetClassInstallParamsA
SetupDiSetClassInstallParamsA
SetupDiSetDeviceRegistryPropertyA
SetupDiGetDeviceInstallParamsA
SetupDiSetDeviceInstallParamsA

kernel32

GetProcessHeap
HeapAlloc
HeapFree
DisableThreadLibraryCalls
LocalFree
lstrlenA

user32

GetDlgItemTextA
SetWindowLongA
GetWindowLongA

comctl32

CreatePropertySheetPageA

Exports

Exports

BTUSBInstaller

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
btinstall.dll3
.dll windows:5 windows x86 arch:x86

97fb4a04444767debaf170f384f33570

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:f9:db:d9:2e:7c:94:6c:6b:44:cb:b0:b3:ed:05:5a
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

02/09/2008, 00:00

Not After

20/09/2011, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5d:ec:91:12:df:4c:4b:d8:1a:90:89:80:39:3a:03:fc:bf:d1:3d:e1
Signer

Actual PE Digest

5d:ec:91:12:df:4c:4b:d8:1a:90:89:80:39:3a:03:fc:bf:d1:3d:e1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

setupapi

SetupDiGetClassInstallParamsA
SetupDiSetClassInstallParamsA
SetupDiSetDeviceRegistryPropertyA
SetupDiGetDeviceInstallParamsA
SetupDiSetDeviceInstallParamsA

kernel32

GetProcessHeap
HeapAlloc
HeapFree
DisableThreadLibraryCalls
LocalFree
lstrlenA

user32

GetDlgItemTextA
SetWindowLongA
GetWindowLongA

comctl32

CreatePropertySheetPageA

Exports

Exports

BTUSBInstaller

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bttl.ini
bttray.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 59KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 22KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 177KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
difxapi.dll
.dll windows:6 windows x86 arch:x86

43bb2705fa3b23553d1200db84a10b3f

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

61:07:51:c7:00:00:00:00:00:0e
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/04/2006, 19:56

Not After

04/07/2007, 20:06

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

79:ad:16:a1:4a:a0:a5:ad:4c:73:58:f4:07:13:2e:65
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

09/05/2001, 23:19

Not After

09/05/2021, 23:28

Subject

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:15:08:27:00:00:00:00:00:0c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

25/01/2006, 23:22

Not After

25/01/2017, 23:32

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

04:56:4a:cd:84:bd:2c:6b:23:05:9c:6d:5f:c2:89:8a:a3:3e:80:9c
Signer

Actual PE Digest

04:56:4a:cd:84:bd:2c:6b:23:05:9c:6d:5f:c2:89:8a:a3:3e:80:9c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

DIFXAPI.pdb

Imports

ntdll

RtlUnwind
RtlNtStatusToDosError
VerSetConditionMask

kernel32

VerifyVersionInfoW
GetVersionExW
lstrlenW
FreeLibrary
GetProcAddress
LoadLibraryW
DeleteFileW
SetFileAttributesW
GetEnvironmentVariableW
CompareStringW
GetFileAttributesW
MoveFileExW
GetTempFileNameW
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetFileSize
CreateFileW
GetSystemWindowsDirectoryW
MultiByteToWideChar
WideCharToMultiByte
GetFullPathNameW
CopyFileW
LocalFree
RemoveDirectoryW
FindClose
FindNextFileW
lstrcmpW
FindFirstFileW
CreateDirectoryW
LocalReAlloc
LocalAlloc
GetProcessHeap
ReleaseMutex
GetSystemDirectoryW
DeviceIoControl
WaitForSingleObject
CreateMutexW
GetSystemTimeAsFileTime
Sleep
RaiseException
GetVersionExA
HeapSize
GetCommandLineA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
UnhandledExceptionFilter
GetModuleHandleA
GetLastError
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetCurrentThreadId
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
WriteFile
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
LoadLibraryA
SetFilePointer
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
CreateFileA
GetThreadLocale
WaitForMultipleObjects
InterlockedCompareExchange
SetEvent
CreateEventW
SetEndOfFile
SetLastError
InterlockedExchange
InterlockedDecrement
lstrcmpiW
InterlockedIncrement
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
HeapFree
HeapReAlloc
EnterCriticalSection
HeapAlloc
LeaveCriticalSection
HeapDestroy
GetModuleHandleW
DeleteCriticalSection
GetModuleFileNameA
OutputDebugStringA
HeapCreate
InitializeCriticalSection
ExitProcess

user32

UnregisterClassA
CharLowerW
CharPrevW

setupapi

CM_Query_And_Remove_SubTreeW
SetupDiSetDeviceRegistryPropertyW
SetupQueueCopyIndirectW
SetupDiCallClassInstaller
SetupDiBuildDriverInfoList
SetupDiSetDeviceInstallParamsW
SetupDiGetDeviceInstallParamsW
SetupDiSetSelectedDevice
SetupDiOpenDeviceInfoW
SetupDiOpenDevRegKey
SetupDiGetDeviceInstanceIdW
SetupDiCreateDeviceInfoList
SetupDiGetDriverInfoDetailW
SetupDiGetSelectedDriverW
SetupDiSetClassInstallParamsW
SetupDiClassNameFromGuidW
CM_Get_Device_ID_ListW
CM_Get_Device_ID_List_SizeW
CM_Locate_DevNodeW
CM_Get_DevNode_Status
CM_Setup_DevNode
SetupDiGetDeviceRegistryPropertyW
SetupGetTargetPathW
SetupInstallFilesFromInfSectionW
SetupPromptReboot
SetupInstallFromInfSectionW
SetupInstallServicesFromInfSectionW
SetupDiGetActualSectionToInstallW
SetupCopyOEMInfW
SetupFindNextLine
SetupFindNextMatchLineW
SetupOpenInfFileW
SetupOpenFileQueue
SetupCommitFileQueueW
SetupQueueCopyW
SetupCloseFileQueue
SetupGetLineCountW
SetupCloseInfFile
SetupTermDefaultQueueCallback
SetupGetFieldCount
CM_Enumerate_Classes
SetupDiEnumDeviceInfo
SetupDefaultQueueCallbackW
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiOpenClassRegKey
CM_Get_Device_IDW
SetupGetStringFieldW
SetupFindFirstLineW
pSetupGetGlobalFlags
pSetupSetGlobalFlags
SetupGetIntField
SetupOpenAppendInfFileW
SetupInitDefaultQueueCallbackEx

advapi32

FreeSid
CheckTokenMembership
AllocateAndInitializeSid
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW
RegQueryValueExW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
AddAccessAllowedAce
InitializeAcl
GetLengthSid
SetEntriesInAclW
QueryServiceStatus
DeleteService
ControlService
CloseServiceHandle
OpenServiceW
OpenSCManagerW
StartServiceW
RegCloseKey

ole32

StringFromCLSID
CoTaskMemFree
CoInitialize
CoUninitialize
CoCreateInstance

wintrust

CryptCATAdminCalcHashFromFileHandle
WinVerifyTrust

crypt32

CertFreeCertificateContext
CertGetCTLContextProperty
CryptQueryObject
CertFreeCTLContext

Exports

Exports

DIFXAPISetLogCallbackA
DIFXAPISetLogCallbackW
DriverPackageGetPathA
DriverPackageGetPathW
DriverPackageInstallA
DriverPackageInstallW
DriverPackagePreinstallA
DriverPackagePreinstallW
DriverPackageUninstallA
DriverPackageUninstallW
SetDifxLogCallbackA
SetDifxLogCallbackW

Sections

.text
Size: 280KB - Virtual size: 279KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
gdiplus.dll1
.dll windows:5 windows x86 arch:x86

7d265bc0350ed04fb2dffec878eb283e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

MicrosoftWindowsGdiPlus-1.0.2600.2180-gdiplus.pdb

Imports

kernel32

CreateSemaphoreA
InterlockedDecrement
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
InterlockedExchange
GetCurrentThreadId
InitializeCriticalSection
DeleteCriticalSection
DisableThreadLibraryCalls
QueryPerformanceCounter
GetTickCount
RaiseException
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
CloseHandle
WriteFile
CreateFileA
WaitForSingleObject
SetEvent
lstrcmpiA
CreateThread
CreateEventA
WideCharToMultiByte
MultiByteToWideChar
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCPInfo
VirtualQuery
RtlUnwind
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ExitProcess
GetCommandLineA
GetSystemInfo
HeapReAlloc
HeapFree
VirtualAlloc
IsValidLocale
ConvertDefaultLocale
GetLocaleInfoW
GetModuleFileNameW
GetModuleFileNameA
FindResourceA
LoadResource
LockResource
GetProfileIntA
GetProfileStringA
lstrcmpiW
IsDBCSLeadByteEx
LocalReAlloc
MulDiv
SetLastError
LocalAlloc
LocalFree
GetFileTime
SearchPathW
SearchPathA
GetOEMCP
InterlockedIncrement
LoadLibraryW
GetSystemDirectoryA
CreateFileMappingW
ReleaseSemaphore
GetProfileSectionA
CreateFileW
SetEndOfFile
SetFilePointer
ReadFile
UnlockFile
GetFileInformationByHandle
LockFile
FlushFileBuffers
GetLastError
VirtualFree
GlobalAlloc
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GlobalLock
GlobalSize
GlobalUnlock
GlobalFree
HeapCreate
GetModuleHandleA
GetSystemDirectoryW
GetWindowsDirectoryA
FreeLibrary
HeapDestroy
LoadLibraryA
GetVersionExA
GetACP
GetModuleHandleW
GetProcAddress
GetSystemDefaultLCID

user32

MsgWaitForMultipleObjects
LoadBitmapW
LoadBitmapA
wsprintfW
ReleaseDC
GetDC
wsprintfA
GetSysColor
UnregisterClassA
DestroyWindow
GetSystemMetrics
DefWindowProcA
CreateWindowExA
RegisterWindowMessageA
RegisterClassA
DispatchMessageA
TranslateMessage
PeekMessageA
GetClientRect
GetDesktopWindow
GetWindowRect
WindowFromDC
ClientToScreen
wvsprintfA
CreateIconIndirect
GetIconInfo
GetDCEx
GetWindowLongA
GetClassLongA
SystemParametersInfoA

gdi32

GetDIBColorTable
FillRgn
SetMiterLimit
CreateSolidBrush
StrokePath
GetGraphicsMode
SetPolyFillMode
FillPath
StrokeAndFillPath
PolyPolyline
GetNearestPaletteIndex
ExtTextOutA
GetTextCharsetInfo
TranslateCharsetInfo
PolylineTo
Polyline
LineTo
GetCurrentPositionEx
ArcTo
SetArcDirection
SelectClipPath
GetPath
CloseFigure
AbortPath
FlattenPath
WidenPath
BeginPath
Ellipse
AngleArc
PolyBezierTo
PolyBezier
RoundRect
PolyDraw
Pie
Chord
Arc
EndPath
OffsetClipRgn
GetRgnBox
CombineRgn
SetPaletteEntries
ResizePalette
ExcludeClipRect
MoveToEx
PlayEnhMetaFile
GetWinMetaFileBits
PlgBlt
BitBlt
OffsetViewportOrgEx
StretchBlt
ScaleViewportExtEx
ScaleWindowExtEx
CombineTransform
SetMapperFlags
CreatePen
CreateDIBitmap
CreatePatternBrush
ExtSelectClipRgn
GetBkMode
GetTextAlign
ModifyWorldTransform
ExtCreateRegion
CreateCompatibleBitmap
GetNearestColor
SetStretchBltMode
StretchDIBits
SetTextAlign
SetTextJustification
PolyPolygon
PlayMetaFileRecord
ExtCreatePen
GetWorldTransform
GetROP2
SetROP2
Rectangle
Polygon
IntersectClipRect
SetBrushOrgEx
GetClipRgn
SelectClipRgn
GetBkColor
GetTextColor
CreatePenIndirect
GetObjectW
DPtoLP
CreateDIBPatternBrushPt
ExtTextOutW
SetBitmapBits
SetDIBColorTable
CreateEnhMetaFileW
GdiComment
GetMetaFileW
GetMetaFileA
SaveDC
SetWindowOrgEx
SetViewportOrgEx
SetGraphicsMode
SetWorldTransform
GetEnhMetaFileW
GetEnhMetaFileA
GetEnhMetaFileBits
CopyEnhMetaFileA
CopyMetaFileA
DeleteMetaFile
GetEnhMetaFileHeader
SetMetaFileBitsEx
SetEnhMetaFileBits
CreateEnhMetaFileA
SetMapMode
SetViewportExtEx
SetWindowExtEx
PlayMetaFile
CloseEnhMetaFile
DeleteEnhMetaFile
SetMetaRgn
GetMetaFileBitsEx
EnumMetaFile
EnumEnhMetaFile
PlayEnhMetaFileRecord
RestoreDC
GetStockObject
CreateBitmap
SetTextColor
SetBkColor
SetBkMode
CreatePalette
GetSystemPaletteEntries
GetSystemPaletteUse
GetDeviceCaps
ExtEscape
GetObjectType
GetPixel
DeleteObject
SelectPalette
GetTextFaceA
GetTextMetricsA
GetTextFaceW
GetTextMetricsW
EnumFontFamiliesExA
EnumFontFamiliesExW
SelectObject
CreateFontIndirectW
CreateFontIndirectA
GetRegionData
DeleteDC
CreateDCA
CreateICA
CreateRectRgn
GetRandomRgn
LPtoDP
GetWindowExtEx
GetViewportExtEx
GetWindowOrgEx
GetViewportOrgEx
GetMapMode
SetICMMode
Escape
GetDCOrgEx
GetObjectA
GetCurrentObject
GetDIBits
CreateCompatibleDC
CreateDIBSection
RealizePalette
GetPaletteEntries
GdiFlush
PatBlt
CreateBrushIndirect
SetDIBits

ole32

CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal

advapi32

RegOpenKeyW
RegOpenKeyA
RegCloseKey
RegEnumValueW
RegQueryInfoKeyA
RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExA
RegQueryValueExW
RegEnumKeyExA
RegEnumKeyExW
RegCreateKeyExA
RegSetValueExW
RegSetValueExA
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyExW
RegEnumValueA

Exports

Exports

GdipAddPathArc
GdipAddPathArcI
GdipAddPathBezier
GdipAddPathBezierI
GdipAddPathBeziers
GdipAddPathBeziersI
GdipAddPathClosedCurve
GdipAddPathClosedCurve2
GdipAddPathClosedCurve2I
GdipAddPathClosedCurveI
GdipAddPathCurve
GdipAddPathCurve2
GdipAddPathCurve2I
GdipAddPathCurve3
GdipAddPathCurve3I
GdipAddPathCurveI
GdipAddPathEllipse
GdipAddPathEllipseI
GdipAddPathLine
GdipAddPathLine2
GdipAddPathLine2I
GdipAddPathLineI
GdipAddPathPath
GdipAddPathPie
GdipAddPathPieI
GdipAddPathPolygon
GdipAddPathPolygonI
GdipAddPathRectangle
GdipAddPathRectangleI
GdipAddPathRectangles
GdipAddPathRectanglesI
GdipAddPathString
GdipAddPathStringI
GdipAlloc
GdipBeginContainer
GdipBeginContainer2
GdipBeginContainerI
GdipBitmapGetPixel
GdipBitmapLockBits
GdipBitmapSetPixel
GdipBitmapSetResolution
GdipBitmapUnlockBits
GdipClearPathMarkers
GdipCloneBitmapArea
GdipCloneBitmapAreaI
GdipCloneBrush
GdipCloneCustomLineCap
GdipCloneFont
GdipCloneFontFamily
GdipCloneImage
GdipCloneImageAttributes
GdipCloneMatrix
GdipClonePath
GdipClonePen
GdipCloneRegion
GdipCloneStringFormat
GdipClosePathFigure
GdipClosePathFigures
GdipCombineRegionPath
GdipCombineRegionRect
GdipCombineRegionRectI
GdipCombineRegionRegion
GdipComment
GdipCreateAdjustableArrowCap
GdipCreateBitmapFromDirectDrawSurface
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromGraphics
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromHICON
GdipCreateBitmapFromResource
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateCachedBitmap
GdipCreateCustomLineCap
GdipCreateFont
GdipCreateFontFamilyFromName
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCreateFontFromLogfontW
GdipCreateFromHDC
GdipCreateFromHDC2
GdipCreateFromHWND
GdipCreateFromHWNDICM
GdipCreateHBITMAPFromBitmap
GdipCreateHICONFromBitmap
GdipCreateHalftonePalette
GdipCreateHatchBrush
GdipCreateImageAttributes
GdipCreateLineBrush
GdipCreateLineBrushFromRect
GdipCreateLineBrushFromRectI
GdipCreateLineBrushFromRectWithAngle
GdipCreateLineBrushFromRectWithAngleI
GdipCreateLineBrushI
GdipCreateMatrix
GdipCreateMatrix2
GdipCreateMatrix3
GdipCreateMatrix3I
GdipCreateMetafileFromEmf
GdipCreateMetafileFromFile
GdipCreateMetafileFromStream
GdipCreateMetafileFromWmf
GdipCreateMetafileFromWmfFile
GdipCreatePath
GdipCreatePath2
GdipCreatePath2I
GdipCreatePathGradient
GdipCreatePathGradientFromPath
GdipCreatePathGradientI
GdipCreatePathIter
GdipCreatePen1
GdipCreatePen2
GdipCreateRegion
GdipCreateRegionHrgn
GdipCreateRegionPath
GdipCreateRegionRect
GdipCreateRegionRectI
GdipCreateRegionRgnData
GdipCreateSolidFill
GdipCreateStreamOnFile
GdipCreateStringFormat
GdipCreateTexture
GdipCreateTexture2
GdipCreateTexture2I
GdipCreateTextureIA
GdipCreateTextureIAI
GdipDeleteBrush
GdipDeleteCachedBitmap
GdipDeleteCustomLineCap
GdipDeleteFont
GdipDeleteFontFamily
GdipDeleteGraphics
GdipDeleteMatrix
GdipDeletePath
GdipDeletePathIter
GdipDeletePen
GdipDeletePrivateFontCollection
GdipDeleteRegion
GdipDeleteStringFormat
GdipDisposeImage
GdipDisposeImageAttributes
GdipDrawArc
GdipDrawArcI
GdipDrawBezier
GdipDrawBezierI
GdipDrawBeziers
GdipDrawBeziersI
GdipDrawCachedBitmap
GdipDrawClosedCurve
GdipDrawClosedCurve2
GdipDrawClosedCurve2I
GdipDrawClosedCurveI
GdipDrawCurve
GdipDrawCurve2
GdipDrawCurve2I
GdipDrawCurve3
GdipDrawCurve3I
GdipDrawCurveI
GdipDrawDriverString
GdipDrawEllipse
GdipDrawEllipseI
GdipDrawImage
GdipDrawImageI
GdipDrawImagePointRect
GdipDrawImagePointRectI
GdipDrawImagePoints
GdipDrawImagePointsI
GdipDrawImagePointsRect
GdipDrawImagePointsRectI
GdipDrawImageRect
GdipDrawImageRectI
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipDrawLine
GdipDrawLineI
GdipDrawLines
GdipDrawLinesI
GdipDrawPath
GdipDrawPie
GdipDrawPieI
GdipDrawPolygon
GdipDrawPolygonI
GdipDrawRectangle
GdipDrawRectangleI
GdipDrawRectangles
GdipDrawRectanglesI
GdipDrawString
GdipEmfToWmfBits
GdipEndContainer
GdipEnumerateMetafileDestPoint
GdipEnumerateMetafileDestPointI
GdipEnumerateMetafileDestPoints
GdipEnumerateMetafileDestPointsI
GdipEnumerateMetafileDestRect
GdipEnumerateMetafileDestRectI
GdipEnumerateMetafileSrcRectDestPoint
GdipEnumerateMetafileSrcRectDestPointI
GdipEnumerateMetafileSrcRectDestPoints
GdipEnumerateMetafileSrcRectDestPointsI
GdipEnumerateMetafileSrcRectDestRect
GdipEnumerateMetafileSrcRectDestRectI
GdipFillClosedCurve
GdipFillClosedCurve2
GdipFillClosedCurve2I
GdipFillClosedCurveI
GdipFillEllipse
GdipFillEllipseI
GdipFillPath
GdipFillPie
GdipFillPieI
GdipFillPolygon
GdipFillPolygon2
GdipFillPolygon2I
GdipFillPolygonI
GdipFillRectangle
GdipFillRectangleI
GdipFillRectangles
GdipFillRectanglesI
GdipFillRegion
GdipFlattenPath
GdipFlush
GdipFree
GdipGetAdjustableArrowCapFillState
GdipGetAdjustableArrowCapHeight
GdipGetAdjustableArrowCapMiddleInset
GdipGetAdjustableArrowCapWidth
GdipGetAllPropertyItems
GdipGetBrushType
GdipGetCellAscent
GdipGetCellDescent
GdipGetClip
GdipGetClipBounds
GdipGetClipBoundsI
GdipGetCompositingMode
GdipGetCompositingQuality
GdipGetCustomLineCapBaseCap
GdipGetCustomLineCapBaseInset
GdipGetCustomLineCapStrokeCaps
GdipGetCustomLineCapStrokeJoin
GdipGetCustomLineCapType
GdipGetCustomLineCapWidthScale
GdipGetDC
GdipGetDpiX
GdipGetDpiY
GdipGetEmHeight
GdipGetEncoderParameterList
GdipGetEncoderParameterListSize
GdipGetFamily
GdipGetFamilyName
GdipGetFontCollectionFamilyCount
GdipGetFontCollectionFamilyList
GdipGetFontHeight
GdipGetFontHeightGivenDPI
GdipGetFontSize
GdipGetFontStyle
GdipGetFontUnit
GdipGetGenericFontFamilyMonospace
GdipGetGenericFontFamilySansSerif
GdipGetGenericFontFamilySerif
GdipGetHatchBackgroundColor
GdipGetHatchForegroundColor
GdipGetHatchStyle
GdipGetHemfFromMetafile
GdipGetImageAttributesAdjustedPalette
GdipGetImageBounds
GdipGetImageDecoders
GdipGetImageDecodersSize
GdipGetImageDimension
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGetImageFlags
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipGetImageHorizontalResolution
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageRawFormat
GdipGetImageThumbnail
GdipGetImageType
GdipGetImageVerticalResolution
GdipGetImageWidth
GdipGetInterpolationMode
GdipGetLineBlend
GdipGetLineBlendCount
GdipGetLineColors
GdipGetLineGammaCorrection
GdipGetLinePresetBlend
GdipGetLinePresetBlendCount
GdipGetLineRect
GdipGetLineRectI
GdipGetLineSpacing
GdipGetLineTransform
GdipGetLineWrapMode
GdipGetLogFontA
GdipGetLogFontW
GdipGetMatrixElements
GdipGetMetafileDownLevelRasterizationLimit
GdipGetMetafileHeaderFromEmf
GdipGetMetafileHeaderFromFile
GdipGetMetafileHeaderFromMetafile
GdipGetMetafileHeaderFromStream
GdipGetMetafileHeaderFromWmf
GdipGetNearestColor
GdipGetPageScale
GdipGetPageUnit
GdipGetPathData
GdipGetPathFillMode
GdipGetPathGradientBlend
GdipGetPathGradientBlendCount
GdipGetPathGradientCenterColor
GdipGetPathGradientCenterPoint
GdipGetPathGradientCenterPointI
GdipGetPathGradientFocusScales
GdipGetPathGradientGammaCorrection
GdipGetPathGradientPath
GdipGetPathGradientPointCount
GdipGetPathGradientPresetBlend
GdipGetPathGradientPresetBlendCount
GdipGetPathGradientRect
GdipGetPathGradientRectI
GdipGetPathGradientSurroundColorCount
GdipGetPathGradientSurroundColorsWithCount
GdipGetPathGradientTransform
GdipGetPathGradientWrapMode
GdipGetPathLastPoint
GdipGetPathPoints
GdipGetPathPointsI
GdipGetPathTypes
GdipGetPathWorldBounds
GdipGetPathWorldBoundsI
GdipGetPenBrushFill
GdipGetPenColor
GdipGetPenCompoundArray
GdipGetPenCompoundCount
GdipGetPenCustomEndCap
GdipGetPenCustomStartCap
GdipGetPenDashArray
GdipGetPenDashCap197819
GdipGetPenDashCount
GdipGetPenDashOffset
GdipGetPenDashStyle
GdipGetPenEndCap
GdipGetPenFillType
GdipGetPenLineJoin
GdipGetPenMiterLimit
GdipGetPenMode
GdipGetPenStartCap
GdipGetPenTransform
GdipGetPenUnit
GdipGetPenWidth
GdipGetPixelOffsetMode
GdipGetPointCount
GdipGetPropertyCount
GdipGetPropertyIdList
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipGetPropertySize
GdipGetRegionBounds
GdipGetRegionBoundsI
GdipGetRegionData
GdipGetRegionDataSize
GdipGetRegionHRgn
GdipGetRegionScans
GdipGetRegionScansCount
GdipGetRegionScansI
GdipGetRenderingOrigin
GdipGetSmoothingMode
GdipGetSolidFillColor
GdipGetStringFormatAlign
GdipGetStringFormatDigitSubstitution
GdipGetStringFormatFlags
GdipGetStringFormatHotkeyPrefix
GdipGetStringFormatLineAlign
GdipGetStringFormatMeasurableCharacterRangeCount
GdipGetStringFormatTabStopCount
GdipGetStringFormatTabStops
GdipGetStringFormatTrimming
GdipGetTextContrast
GdipGetTextRenderingHint
GdipGetTextureImage
GdipGetTextureTransform
GdipGetTextureWrapMode
GdipGetVisibleClipBounds
GdipGetVisibleClipBoundsI
GdipGetWorldTransform
GdipGraphicsClear
GdipImageForceValidation
GdipImageGetFrameCount
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageRotateFlip
GdipImageSelectActiveFrame
GdipInvertMatrix
GdipIsClipEmpty
GdipIsEmptyRegion
GdipIsEqualRegion
GdipIsInfiniteRegion
GdipIsMatrixEqual
GdipIsMatrixIdentity
GdipIsMatrixInvertible
GdipIsOutlineVisiblePathPoint
GdipIsOutlineVisiblePathPointI
GdipIsStyleAvailable
GdipIsVisibleClipEmpty
GdipIsVisiblePathPoint
GdipIsVisiblePathPointI
GdipIsVisiblePoint
GdipIsVisiblePointI
GdipIsVisibleRect
GdipIsVisibleRectI
GdipIsVisibleRegionPoint
GdipIsVisibleRegionPointI
GdipIsVisibleRegionRect
GdipIsVisibleRegionRectI
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipMeasureCharacterRanges
GdipMeasureDriverString
GdipMeasureString
GdipMultiplyLineTransform
GdipMultiplyMatrix
GdipMultiplyPathGradientTransform
GdipMultiplyPenTransform
GdipMultiplyTextureTransform
GdipMultiplyWorldTransform
GdipNewInstalledFontCollection
GdipNewPrivateFontCollection
GdipPathIterCopyData
GdipPathIterEnumerate
GdipPathIterGetCount
GdipPathIterGetSubpathCount
GdipPathIterHasCurve
GdipPathIterIsValid
GdipPathIterNextMarker
GdipPathIterNextMarkerPath
GdipPathIterNextPathType
GdipPathIterNextSubpath
GdipPathIterNextSubpathPath
GdipPathIterRewind
GdipPlayMetafileRecord
GdipPrivateAddFontFile
GdipPrivateAddMemoryFont
GdipRecordMetafile
GdipRecordMetafileFileName
GdipRecordMetafileFileNameI
GdipRecordMetafileI
GdipRecordMetafileStream
GdipRecordMetafileStreamI
GdipReleaseDC
GdipRemovePropertyItem
GdipResetClip
GdipResetImageAttributes
GdipResetLineTransform
GdipResetPageTransform
GdipResetPath
GdipResetPathGradientTransform
GdipResetPenTransform
GdipResetTextureTransform
GdipResetWorldTransform
GdipRestoreGraphics
GdipReversePath
GdipRotateLineTransform
GdipRotateMatrix
GdipRotatePathGradientTransform
GdipRotatePenTransform
GdipRotateTextureTransform
GdipRotateWorldTransform
GdipSaveAdd
GdipSaveAddImage
GdipSaveGraphics
GdipSaveImageToFile
GdipSaveImageToStream
GdipScaleLineTransform
GdipScaleMatrix
GdipScalePathGradientTransform
GdipScalePenTransform
GdipScaleTextureTransform
GdipScaleWorldTransform
GdipSetAdjustableArrowCapFillState
GdipSetAdjustableArrowCapHeight
GdipSetAdjustableArrowCapMiddleInset
GdipSetAdjustableArrowCapWidth
GdipSetClipGraphics
GdipSetClipHrgn
GdipSetClipPath
GdipSetClipRect
GdipSetClipRectI
GdipSetClipRegion
GdipSetCompositingMode
GdipSetCompositingQuality
GdipSetCustomLineCapBaseCap
GdipSetCustomLineCapBaseInset
GdipSetCustomLineCapStrokeCaps
GdipSetCustomLineCapStrokeJoin

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
htmprinthelper.dll
.dll windows:4 windows x86 arch:x86

4493ae4de24b2fde85610eb608c48f17

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

versit

cleanVObject
Parse_MIME
vObjectUStringZValue
fakeCString
deleteStr
isAPropertyOf
vObjectStringZValue
initPropIterator
moreIteration
nextVObject
vObjectName

bstrace

??1CBsTraceFunc@@QAE@XZ
?BsTrace_UserDef@@YAXKPBDZZ
??0CBsTraceFunc@@QAE@KPAD@Z

bscommon

BsCm_PostMsg2Bttray
BsCm_GetInstallDir

bssdk

Btsdk_FreeMemory
Btsdk_ConnectEx
Btsdk_BPPGetReferencdObjects

bsprofilefunc

BsProfile_BPP_SaveRefObj

mfc42

ord858
ord6283
ord6662
ord2763
ord6648
ord6282
ord2393
ord6663
ord4278
ord2764
ord6877
ord537
ord2614
ord5710
ord6779
ord4202
ord3663
ord823
ord941
ord2818
ord535
ord5683
ord926
ord6930
ord6927
ord4129
ord5440
ord6383
ord5450
ord6394
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord4079
ord4698
ord5307
ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord825
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord815
ord3953
ord1134
ord2725
ord6467
ord1949
ord4275
ord2688
ord6055
ord4078
ord1776
ord4407
ord2385
ord5163
ord6374
ord860
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord4627
ord818
ord567
ord3005
ord2135
ord6442
ord2864
ord1233
ord1238
ord465
ord466
ord924
ord6929
ord5572
ord2915
ord1168
ord2841
ord2107
ord538
ord665
ord1979
ord5442
ord3318
ord5186
ord354
ord6385
ord800
ord269
ord826
ord600
ord1578
ord1255
ord540
ord1253
ord1570
ord1197
ord1243
ord342
ord1182
ord1577
ord1575
ord1176
ord1116
ord2976
ord4353

msvcrt

__dllonexit
_onexit
_initterm
_adjust_fdiv
_mbstok
atoi
_mbsnbcmp
fwrite
printf
fgets
_filelength
fread
malloc
free
_mbscmp
strstr
isdigit
__CxxFrameHandler
fopen
fprintf
fclose
_strnicmp
_stricmp
??1type_info@@UAE@XZ

kernel32

GetTempFileNameA
LocalAlloc
LocalFree
GetLastError
lstrlenA
lstrcmpiA
CreateDirectoryA
MultiByteToWideChar
GetTempPathA
WideCharToMultiByte

user32

FindWindowA
SendMessageA
EnableWindow
SetForegroundWindow
LoadCursorA
wsprintfA

ole32

CoInitialize

oleaut32

VariantClear

Exports

Exports

IEShellClose
IEShellPageSetup
IEShellPrint
XHtmlExtent

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ivt_bcsp.dll
.dll windows:4 windows x86 arch:x86

ef1321f7ce18acdedddd48053bf882de

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

78:18:84:c3:28:8b:e6:d6:cc:6f:2b:17:05:4d:4c:0c
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

20/09/2006, 00:00

Not After

19/09/2008, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8f:70:28:e0:53:e9:40:5a:a0:16:fc:0c:bb:15:61:90:0e:e1:4f:23
Signer

Actual PE Digest

8f:70:28:e0:53:e9:40:5a:a0:16:fc:0c:bb:15:61:90:0e:e1:4f:23

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateMutexA
WaitForSingleObject
ReleaseMutex
CloseHandle
SetEvent
CreateEventA
CreateThread
Sleep
GetLastError
GetTickCount
WideCharToMultiByte
GetACP
MultiByteToWideChar
GetLocalTime
SetCommState
GetCommState
ClearCommError
GetOverlappedResult
WriteFile
SetThreadPriority
SetCommTimeouts
PurgeComm
SetupComm
SetCommMask
CreateFileA
WaitCommEvent
ReadFile
DisableThreadLibraryCalls

msvcrt

free
strncpy
vsprintf
sprintf
_initterm
_adjust_fdiv
__dllonexit
_onexit
malloc

winmm

timeKillEvent
timeSetEvent

Exports

Exports

CloseCommPort
ConfigCommPort
OpenCommPort
RegisterAddRcvData
RegisterHandleRcvData
SendDataToInt
SetDefaultCommSettings

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ivt_com.dll
.dll windows:4 windows x86 arch:x86

7ea55c3794721c159d806e976a79322b

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

78:18:84:c3:28:8b:e6:d6:cc:6f:2b:17:05:4d:4c:0c
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

20/09/2006, 00:00

Not After

19/09/2008, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:e3:69:e9:45:88:73:ac:4a:83:5c:29:f5:f0:d5:93:48:d9:11:0b
Signer

Actual PE Digest

0e:e3:69:e9:45:88:73:ac:4a:83:5c:29:f5:f0:d5:93:48:d9:11:0b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
SetThreadPriority
CloseHandle
CreateThread
EscapeCommFunction
SetCommTimeouts
PurgeComm
SetupComm
SetCommMask
CreateFileA
CreateEventA
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
SetEvent
SetCommState
GetCommState
CancelIo
GetLastError
WaitForMultipleObjects
WaitCommEvent
GetOverlappedResult
ReadFile
ClearCommError
WriteFile

msvcrt

free
_initterm
_adjust_fdiv
__dllonexit
_onexit
malloc

Exports

Exports

CloseCommPort
ConfigCommPort
OpenCommPort
RegisterAddRcvData
RegisterHandleRcvData
SendDataToInt
SetDefaultCommSettings

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 530B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ivtmessagelog.xsl1
ivtmobile.ini1
ivtprovider.ini1
msvcp60.dll
.dll windows:4 windows x86 arch:x86

1b1839992700df52b049b87961a724e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

memmove
__CxxFrameHandler
free
localeconv
_Gettnames
_Getdays
_Getmonths
__mb_cur_max
atan2
cos
exp
ldexp
log
pow
sin
sqrt
??2@YAPAXI@Z
strtoul
_errno
strtol
sprintf
strcspn
fclose
fwrite
fputc
ungetc
fgetc
fgetpos
fseek
fsetpos
setvbuf
memchr
memset
ungetwc
fgetwc
_Strftime
fopen
_iob
setlocale
malloc
realloc
__crtCompareStringA
__lc_collate_cp
_unlock
__lc_handle
_lock
__setlc_active
__unguarded_readlc_active
__crtLCMapStringA
__lc_codepage
towlower
towupper
strcmp
_pctype
_isctype
_ftol
strtod
??1type_info@@UAE@XZ
_except_handler3
?terminate@@YAXXZ
__dllonexit
_onexit
_initterm
_adjust_fdiv
memcmp
memcpy
strlen
_CxxThrowException
wcslen
??4exception@@QAEAAV0@ABV0@@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
fflush
?what@exception@@UBEPBDXZ
fputwc

kernel32

DisableThreadLibraryCalls
MultiByteToWideChar
DeleteCriticalSection
InterlockedExchange
LeaveCriticalSection
Sleep
EnterCriticalSection
InitializeCriticalSection
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte

Exports

Exports

??0?$_Complex_base@M@std@@QAE@ABM0@Z
??0?$_Complex_base@N@std@@QAE@ABN0@Z
??0?$_Complex_base@O@std@@QAE@ABO0@Z
??0?$_Mpunct@D@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$_Mpunct@D@std@@QAE@I_N@Z
??0?$_Mpunct@G@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$_Mpunct@G@std@@QAE@I_N@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PBDH@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PBDH@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBDH@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@IDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDIABV?$allocator@D@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@IIABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG0ABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGIABV?$allocator@G@1@@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@DDH@std@@QAE@I@Z
??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@GDH@std@@QAE@I@Z
??0?$collate@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@D@std@@QAE@I@Z
??0?$collate@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@G@std@@QAE@I@Z
??0?$complex@M@std@@QAE@ABM0@Z
??0?$complex@M@std@@QAE@ABV?$complex@N@1@@Z
??0?$complex@M@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@N@std@@QAE@ABN0@Z
??0?$complex@N@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@N@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@O@std@@QAE@ABO0@Z
??0?$complex@O@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@O@std@@QAE@ABV?$complex@N@1@@Z
??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@D@std@@QAE@PBF_NI@Z
??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@G@std@@QAE@I@Z
??0?$messages@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@D@std@@QAE@I@Z
??0?$messages@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@G@std@@QAE@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$moneypunct@D$00@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@D$00@std@@QAE@I@Z
??0?$moneypunct@D$0A@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@D$0A@@std@@QAE@I@Z
??0?$moneypunct@G$00@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@G$00@std@@QAE@I@Z
??0?$moneypunct@G$0A@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@G$0A@@std@@QAE@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$numpunct@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$numpunct@D@std@@QAE@I@Z
??0?$numpunct@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$numpunct@G@std@@QAE@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0Init@ios_base@std@@QAE@XZ
??0_Locinfo@std@@QAE@ABV01@@Z
??0_Locinfo@std@@QAE@HPBD@Z
??0_Locinfo@std@@QAE@PBD@Z
??0_Lockit@std@@QAE@XZ
??0_Timevec@std@@QAE@ABV01@@Z
??0_Timevec@std@@QAE@PAX@Z
??0_Winit@std@@QAE@XZ
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0__non_rtti_object@std@@QAE@PBD@Z
??0bad_alloc@std@@QAE@ABV01@@Z
??0bad_alloc@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_exception@std@@QAE@ABV01@@Z
??0bad_exception@std@@QAE@PBD@Z
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0codecvt_base@std@@QAE@I@Z
??0ctype_base@std@@QAE@I@Z
??0domain_error@std@@QAE@ABV01@@Z
??0domain_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0facet@locale@std@@IAE@I@Z
??0ios_base@std@@IAE@XZ
??0ios_base@std@@QAE@ABV01@@Z
??0length_error@std@@QAE@ABV01@@Z
??0length_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0locale@std@@AAE@PAV_Locimp@01@@Z
??0locale@std@@QAE@ABV01@0H@Z
??0locale@std@@QAE@ABV01@@Z
??0locale@std@@QAE@ABV01@PBDH@Z
??0locale@std@@QAE@PBDH@Z
??0locale@std@@QAE@W4_Uninitialized@1@@Z
??0locale@std@@QAE@XZ
??0logic_error@std@@QAE@ABV01@@Z
??0logic_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0messages_base@std@@QAE@I@Z
??0money_base@std@@QAE@I@Z
??0ostrstream@std@@QAE@PADHH@Z
??0out_of_range@std@@QAE@ABV01@@Z
??0out_of_range@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0overflow_error@std@@QAE@ABV01@@Z
??0overflow_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0range_error@std@@QAE@ABV01@@Z
??0range_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0runtime_error@std@@QAE@ABV01@@Z
??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0strstream@std@@QAE@PADHH@Z
??0time_base@std@@QAE@I@Z
??0underflow_error@std@@QAE@ABV01@@Z
??0underflow_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??1?$_Mpunct@D@std@@UAE@XZ
??1?$_Mpunct@G@std@@UAE@XZ
??1?$basic_filebuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_filebuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_fstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_fstream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ifstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ifstream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$basic_ofstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ofstream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??1?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$codecvt@DDH@std@@UAE@XZ
??1?$codecvt@GDH@std@@UAE@XZ
??1?$collate@D@std@@UAE@XZ
??1?$collate@G@std@@UAE@XZ
??1?$ctype@D@std@@UAE@XZ
??1?$ctype@G@std@@UAE@XZ
??1?$messages@D@std@@UAE@XZ
??1?$messages@G@std@@UAE@XZ
??1?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$moneypunct@D$00@std@@UAE@XZ
??1?$moneypunct@D$0A@@std@@UAE@XZ
??1?$moneypunct@G$00@std@@UAE@XZ
??1?$moneypunct@G$0A@@std@@UAE@XZ
??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$numpunct@D@std@@UAE@XZ
??1?$numpunct@G@std@@UAE@XZ
??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1Init@ios_base@std@@QAE@XZ
??1_Locinfo@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??1_Timevec@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_alloc@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_exception@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1codecvt_base@std@@UAE@XZ
??1ctype_base@std@@UAE@XZ
??1domain_error@std@@UAE@XZ
??1facet@locale@std@@UAE@XZ
??1ios_base@std@@UAE@XZ
??1istrstream@std@@UAE@XZ
??1length_error@std@@UAE@XZ
??1locale@std@@QAE@XZ
??1logic_error@std@@UAE@XZ
??1messages_base@std@@UAE@XZ
??1money_base@std@@UAE@XZ
??1ostrstream@std@@UAE@XZ
??1out_of_range@std@@UAE@XZ
??1overflow_error@std@@UAE@XZ
??1range_error@std@@UAE@XZ
??1runtime_error@std@@UAE@XZ
??1strstream@std@@UAE@XZ
??1strstreambuf@std@@UAE@XZ
??1time_base@std@@UAE@XZ
??1underflow_error@std@@UAE@XZ
??4?$_Complex_base@M@std@@QAEAAV01@ABV01@@Z
??4?$_Complex_base@N@std@@QAEAAV01@ABV01@@Z
??4?$_Complex_base@O@std@@QAEAAV01@ABV01@@Z
??4?$_Ctr@M@std@@QAEAAV01@ABV01@@Z
??4?$_Ctr@N@std@@QAEAAV01@ABV01@@Z
??4?$_Ctr@O@std@@QAEAAV01@ABV01@@Z
??4?$allocator@X@std@@QAEAAV01@ABV01@@Z
??4?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_fstream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ios@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ios@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@G@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??4?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$char_traits@D@std@@QAEAAU01@ABU01@@Z
??4?$char_traits@G@std@@QAEAAU01@ABU01@@Z
??4?$complex@M@std@@QAEAAV01@ABM@Z
??4?$complex@M@std@@QAEAAV01@ABV01@@Z
??4?$complex@N@std@@QAEAAV01@ABN@Z
??4?$complex@N@std@@QAEAAV01@ABV01@@Z
??4?$complex@O@std@@QAEAAV01@ABO@Z
??4?$complex@O@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@C@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@D@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@E@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@F@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@G@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@H@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@I@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@J@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@K@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@M@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@N@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@O@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@_N@std@@QAEAAV01@ABV01@@Z
??4Init@ios_base@std@@QAEAAV012@ABV012@@Z
??4_Locinfo@std@@QAEAAV01@ABV01@@Z
??4_Lockit@std@@QAEAAV01@ABV01@@Z
??4_Num_base@std@@QAEAAU01@ABU01@@Z
??4_Num_float_base@std@@QAEAAU01@ABU01@@Z
??4_Num_int_base@std@@QAEAAU01@ABU01@@Z
??4_Timevec@std@@QAEAAV01@ABV01@@Z
??4_Winit@std@@QAEAAV01@ABV01@@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_alloc@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_exception@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4domain_error@std@@QAEAAV01@ABV01@@Z
??4id@locale@std@@QAEAAV012@ABV012@@Z
??4ios_base@std@@QAEAAV01@ABV01@@Z
??4length_error@std@@QAEAAV01@ABV01@@Z
??4locale@std@@QAEAAV01@ABV01@@Z
??4logic_error@std@@QAEAAV01@ABV01@@Z
??4out_of_range@std@@QAEAAV01@ABV01@@Z
??4overflow_error@std@@QAEAAV01@ABV01@@Z
??4range_error@std@@QAEAAV01@ABV01@@Z
??4runtime_error@std@@QAEAAV01@ABV01@@Z
??4underflow_error@std@@QAEAAV01@ABV01@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAC@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAD@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAE@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@M@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@N@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@O@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAC@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAD@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAE@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAG@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@M@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@N@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@O@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@PAF@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@PAG@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@M@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@N@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@O@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@C@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@D@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@E@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBC@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBE@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@M@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@N@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@O@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@G@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@PBF@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@PBG@Z
??7ios_base@std@@QBE_NXZ
??8locale@std@@QBE_NABV01@@Z
??8std@@YA_NABMABV?$complex@M@0@@Z
??8std@@YA_NABNABV?$complex@N@0@@Z
??8std@@YA_NABOABV?$complex@O@0@@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??8std@@YA_NABV?$complex@M@0@0@Z
??8std@@YA_NABV?$complex@M@0@ABM@Z
??8std@@YA_NABV?$complex@N@0@0@Z
??8std@@YA_NABV?$complex@N@0@ABN@Z
??8std@@YA_NABV?$complex@O@0@0@Z
??8std@@YA_NABV?$complex@O@0@ABO@Z
??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??8std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??9locale@std@@QBE_NABV01@@Z
??9std@@YA_NABMABV?$complex@M@0@@Z
??9std@@YA_NABNABV?$complex@N@0@@Z
??9std@@YA_NABOABV?$complex@O@0@@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??9std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??9std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??9std@@YA_NABV?$complex@M@0@0@Z
??9std@@YA_NABV?$complex@M@0@ABM@Z

Sections

.text
Size: 168KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 192KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
outlookaddin.dll
.dll regsvr32 windows:4 windows x86 arch:x86

8b1719a85241e4377b72a72b70c863cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateThread
FindFirstFileA
FindClose
FindNextFileA
InterlockedIncrement
InterlockedDecrement
DeleteFileA
CloseHandle
DisableThreadLibraryCalls
HeapAlloc
GetVersion
GetTempPathA
WideCharToMultiByte
MultiByteToWideChar
GetTimeZoneInformation
GetLastError
lstrlenA
LocalFree
GetSystemInfo
GetCurrentProcess
FlushInstructionCache
lstrlenW
FreeLibrary
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
HeapCreate
Sleep
GetVersionExA

user32

LoadStringA
MessageBoxA

shell32

SHGetSpecialFolderPathA

oleaut32

CreateErrorInfo
VariantChangeType
SetErrorInfo
GetErrorInfo
VariantTimeToSystemTime
SysFreeString
VariantClear
SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysStringLen
VariantCopy
VariantInit
LoadRegTypeLi
DispCallFunc

versit

writeVObjectToFile
cleanVObject
initPropIterator
fakeCString
FinishParse
nextVObjectInList
moreIteration
nextVObject
isAPropertyOf
vObjectStringZValue
vObjectName
vObjectUStringZValue
addProp
addPropValue
newVObject
deleteVObject
Parse_MIME
deleteStr

bscommon

BsCm_GetLangDepResLib
BsCm_SyncSend2btShc
BsCm_ParseDeviceAddressFromString
BsCm_SendFilestoBtDevice
BsCm_GetPersonalSettingFilePath
BsCm_GetBtAddrByShcParam

bssdk

Btsdk_SetStatusInfoFlag
Btsdk_RegisterGetStatusInfoCB
Btsdk_IsServerConnected
Btsdk_GetPrivateProfileString
Btsdk_GetRemoteDeviceHandle
Btsdk_FreeMemory
Btsdk_WritePrivateProfileString
Btsdk_UpdateServerAttributes
Btsdk_EndEnumLocalServer
Btsdk_EnumLocalServer
Btsdk_StartEnumLocalServer
Btsdk_IsBluetoothReady
Btsdk_Done
Btsdk_Init

bstrace

??1CBsTraceFunc@@QAE@XZ
?BsTrace_UserDef@@YAXKPBDZZ
?BsTrace_SetTraceSwitch@@YAHH@Z
??0CBsTraceFunc@@QAE@KPAD@Z

atl

ord32
ord30
ord10
ord11
ord23
ord16
ord21
ord15
ord18
ord57
ord58

msvcrt

??1type_info@@UAE@XZ
?terminate@@YAXXZ
_except_handler3
_onexit
__dllonexit
_adjust_fdiv
_initterm
_CxxThrowException
wcslen
fseek
_splitpath
_mbsicmp
strstr
__RTDynamicCast
realloc
remove
_chdir
_mktemp
atoi
strncmp
_filelength
fread
free
fwrite
fclose
__CxxFrameHandler
malloc
fopen
strlen
memcpy
_mbsstr
strcmp
time
srand
rand
sprintf
_mbscmp
??2@YAPAXI@Z
memset
strcpy
strcat
memcmp
_purecall
??3@YAXPAX@Z
_stricmp
isdigit
_strnicmp

mfc42

ord3425
ord3054
ord3227
ord3408
ord3758
ord3880
ord2915
ord537
ord6672
ord836
ord5933
ord665
ord3318
ord353
ord1200
ord922
ord6663
ord6283
ord6662
ord2763
ord6282
ord1979
ord6385
ord6010
ord5442
ord860
ord2919
ord2818
ord3337
ord6874
ord4278
ord551
ord2764
ord6648
ord6877
ord4129
ord5710
ord2614
ord6779
ord541
ord801
ord4033
ord6143
ord5861
ord540
ord858
ord535
ord5608
ord1572
ord3613
ord3126
ord350
ord3676
ord3130
ord5651
ord6383
ord5440
ord6394
ord924
ord5450
ord3663
ord2393
ord2464
ord839
ord433
ord2141
ord5575
ord800
ord1656
ord434

ole32

CoUninitialize
CoReleaseMarshalData
CoUnmarshalInterface
CreateStreamOnHGlobal
CoMarshalInterface
CoInitializeEx

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
playerctrl.dll
.dll windows:4 windows x86 arch:x86

d4ca321a3e022272b0db56872b286544

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ole32

CoInitializeEx
CoCreateInstance
CoUninitialize

msvcrt

??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
??2@YAPAXI@Z
__CxxFrameHandler
strncpy
??3@YAXPAX@Z

mfc42

ord1116
ord1176
ord1575
ord1168
ord1577
ord1182
ord342
ord1243
ord1197
ord1570
ord1253
ord1255
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord3953
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord815
ord269
ord826
ord600
ord1578
ord6467

user32

PostMessageA
FindWindowA

kernel32

LocalAlloc
LocalFree

Exports

Exports

BT_AVRCP_Control_Command
ControlConfigure
ControllerDescription

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 578B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
setup.dll
.dll windows:4 windows x86 arch:x86

181bd6b0f537a7b24432b4f2bffb9df6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

setupapi

SetupDiEnumDeviceInfo
SetupDiOpenDevRegKey
SetupDiGetClassDevsA
SetupDiGetDeviceInstallParamsA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiCreateDeviceInfoList
SetupDiCreateDeviceInfoA
SetupDiRegisterDeviceInfo
SetupDiSetDeviceRegistryPropertyA
SetupCopyOEMInfA
SetupDiGetINFClassA
SetupDiSetClassInstallParamsA

shlwapi

SHDeleteKeyA
PathFileExistsA
PathRemoveFileSpecA

winmm

waveOutMessage
waveInGetNumDevs
waveInGetDevCapsA
waveOutGetNumDevs
waveOutGetDevCapsA
waveInMessage

shell32

SHFileOperationA
ShellExecuteExA
SHGetSpecialFolderPathA
ShellExecuteA
SHGetFolderPathA

rasapi32

RasDeleteEntryA
RasGetEntryPropertiesA
RasEnumEntriesA

msi

ord121
ord124
ord17
ord144
ord8
ord73
ord103

netapi32

NetUserEnum
NetApiBufferFree

mfc42

ord5302
ord4079
ord4698
ord5307
ord5289
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord815
ord3953
ord5714
ord2725
ord5300
ord3346
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord2817
ord1168
ord6467
ord4204
ord860
ord3811
ord4202
ord2764
ord2614
ord5572
ord3181
ord858
ord535
ord4160
ord823
ord825
ord356
ord2770
ord2781
ord4058
ord3178
ord1980
ord668
ord540
ord2818
ord2915
ord537
ord5710
ord800
ord941
ord924
ord269
ord826
ord600
ord1578
ord1255
ord1253
ord1570
ord1197
ord1243
ord342
ord1182
ord1577
ord1575
ord1176
ord2396
ord1116

msvcrt

fputs
fflush
printf
_access
strncpy
_stricmp
strtok
malloc
free
fopen
fclose
strrchr
_mbsicmp
_mbsupr
vsprintf
_strnicmp
_mbsstr
atoi
_itoa
memset
__CxxFrameHandler
_mbscmp
sprintf
_mbsnbicmp
strcmp
strcpy
strlen
strcat
_except_handler3
memcpy
rename
memcmp
swprintf
wcslen
__dllonexit
_onexit
_initterm
_adjust_fdiv
??1type_info@@UAE@XZ
strstr

kernel32

CreateThread
SetEvent
LocalAlloc
GetPrivateProfileIntA
HeapFree
CloseHandle
HeapAlloc
GetProcessHeap
GetLastError
GetCurrentProcess
lstrlenA
SetLastError
WritePrivateProfileStringA
GetCurrentDirectoryA
GetPrivateProfileStringA
FreeLibrary
GetProcAddress
OutputDebugStringA
GetVersion
CreateProcessA
Sleep
RemoveDirectoryA
DeleteFileA
SetFileAttributesA
GetFileAttributesA
CreateMutexA
GetVersionExA
CreateDirectoryA
MultiByteToWideChar
WideCharToMultiByte
GetWindowsDirectoryA
WaitForSingleObject
UnmapViewOfFile
MapViewOfFile
OpenFileMappingA
CreateFileMappingA
CreateFileA
CopyFileA
SetEnvironmentVariableA
GetEnvironmentVariableA
lstrcpyA
GetPrivateProfileSectionNamesA
lstrcatA
OpenMutexA
WinExec
LocalFree
FormatMessageA
GetLocalTime
WritePrivateProfileSectionA
GetPrivateProfileSectionA
GetModuleHandleA
LoadLibraryA
DeviceIoControl
CreateEventA

user32

FindWindowExA
GetDlgItem
GetClassNameA
GetClassLongA
GetSystemMetrics
wsprintfA
RegisterDeviceNotificationA
PeekMessageA
DispatchMessageA
MsgWaitForMultipleObjects
UnregisterDeviceNotification
DestroyWindow
EnumChildWindows
UnregisterClassA
CreateWindowExA
SetWindowLongA
ShowWindow
LoadIconA
LoadCursorA
RegisterClassExA
DefWindowProcA
PostQuitMessage
PostThreadMessageA
LoadStringA
GetWindowLongA
MessageBoxA
FindWindowA
GetDesktopWindow
SendDlgItemMessageA
SendMessageA
PostMessageA

winspool.drv

AddMonitorA
DeleteMonitorA
ClosePrinter
XcvDataW
OpenPrinterA

advapi32

GetTokenInformation
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyA
StartServiceA
QueryServiceStatus
ChangeServiceConfigA
ControlService
CloseServiceHandle
OpenServiceA
OpenSCManagerA
RegSetValueA
RegDeleteValueA
RegDeleteKeyA
DeleteService
OpenProcessToken
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
IsValidSid
RegCloseKey
RegCreateKeyExA
RegEnumKeyExA
RegSetValueExA
CreateServiceA
RegQueryInfoKeyA
RegOpenKeyA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

Exports

Exports

BatchInstallMdm2K
BatchInstallVComm2K
CopyLanguageFile
DeleteSpecialFile
DisableDriverSign
EnableDriverSign
GenerateSoundMapperRegKey
GetCommPortsList
GetDriverSignLevel
GetMdmnameOnComIdx
InstallBTNic
InstallBlueletAudio
InstallHidDevice
InstallHidNtService
InstallInfFile
InstallLMP3CodecP
InstallSocketCard
InstallVCommMgr
InstallWin2kDrivers
IsBSSRuning
ManuallyDelBssFileAndReg
ManuallyDelISHidenFolder
MsiAttemptQuitBlueSoleil
MsiCheckISEngineVersion
MsiCheckOldBSVersion
MsiCheckRebootFlag
MsiCopyCustomFiles
MsiInstall3rdPartyPackages
MsiInstallBTDrivers
MsiInstallHIDService
MsiInstallTransendMenuContext
MsiIsMobileEvaluate
MsiRemoveBTDrivers
MsiRemoveBtFiles
MsiRemoveSystem32Files
MsiSetFailed
MsiSetSuccess
MsiSetVistaOsProperty
MsiShowUninstallWeb
MsiStartBlueSoleil
MsiTerminateMonitorProc
MsiUninstallBSOldVersion
MsiUninstallValidate
MsiWriteIMIniValue
MsiWriteResult4Founder
RemoveAllBlueletDev
RemoveBlueletAudio
RemoveBlueletMdm
SetupDeEnumAV
SetupDeEnumPAN
SetupDeEnumSCO
SetupDeEnumVComm
SetupEnumAndWaitAV
SetupEnumAndWaitSCO
SetupEnumPAN
SetupEnumVComm
UnInstallHidNtService
UnInstallUsbDriver
UpdateUsbDriver2K
WriteLog

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
vcomm.cat1
vcomm.inf
vcomm.sys
.sys windows:5 windows x86 arch:x86

71e8a15b29ad2814b05a3cf8ac254bfa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

78:18:84:c3:28:8b:e6:d6:cc:6f:2b:17:05:4d:4c:0c
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

20/09/2006, 00:00

Not After

19/09/2008, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

82:35:ce:72:f6:33:29:33:b4:5c:68:26:24:cc:ff:4b:70:3b:65:81
Signer

Actual PE Digest

82:35:ce:72:f6:33:29:33:b4:5c:68:26:24:cc:ff:4b:70:3b:65:81

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

J:\WinDriversInternal\srcstore\200801211924\src\btcom\btcomdrv_V2\objfre_wxp_x86\i386\VComm.pdb

Imports

ntoskrnl.exe

RtlInitUnicodeString
ExAllocatePoolWithTag
IoOpenDeviceRegistryKey
ZwSetValueKey
ZwCreateKey
IoInitializeRemoveLockEx
IoDetachDevice
IoDeleteSymbolicLink
IoAttachDeviceToDeviceStack
IoFreeWorkItem
IoCreateSymbolicLink
IoDeleteDevice
IoAllocateWorkItem
ZwQueryValueKey
swprintf
IofCompleteRequest
IofCallDriver
KeSetEvent
KeWaitForSingleObject
KeInitializeEvent
IoReleaseRemoveLockEx
InterlockedIncrement
IoAcquireRemoveLockEx
InterlockedDecrement
IoReleaseCancelSpinLock
IoAcquireCancelSpinLock
KeRemoveEntryDeviceQueue
ExFreePool
IoCreateDevice
IoFreeIrp
IoAllocateIrp
IoQueueWorkItem
RtlDeleteRegistryValue
IoReleaseRemoveLockAndWaitEx
InterlockedExchange
PoCallDriver
PoStartNextPowerIrp
ZwClose

hal

KfReleaseSpinLock
KfAcquireSpinLock

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

PAGE
Size: 1024B - Virtual size: 989B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 384B - Virtual size: 342B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
vcomm.sys1
.sys windows:5 windows x86 arch:x86

71e8a15b29ad2814b05a3cf8ac254bfa

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

78:18:84:c3:28:8b:e6:d6:cc:6f:2b:17:05:4d:4c:0c
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

20/09/2006, 00:00

Not After

19/09/2008, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

82:35:ce:72:f6:33:29:33:b4:5c:68:26:24:cc:ff:4b:70:3b:65:81
Signer

Actual PE Digest

82:35:ce:72:f6:33:29:33:b4:5c:68:26:24:cc:ff:4b:70:3b:65:81

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

J:\WinDriversInternal\srcstore\200801211924\src\btcom\btcomdrv_V2\objfre_wxp_x86\i386\VComm.pdb

Imports

ntoskrnl.exe

RtlInitUnicodeString
ExAllocatePoolWithTag
IoOpenDeviceRegistryKey
ZwSetValueKey
ZwCreateKey
IoInitializeRemoveLockEx
IoDetachDevice
IoDeleteSymbolicLink
IoAttachDeviceToDeviceStack
IoFreeWorkItem
IoCreateSymbolicLink
IoDeleteDevice
IoAllocateWorkItem
ZwQueryValueKey
swprintf
IofCompleteRequest
IofCallDriver
KeSetEvent
KeWaitForSingleObject
KeInitializeEvent
IoReleaseRemoveLockEx
InterlockedIncrement
IoAcquireRemoveLockEx
InterlockedDecrement
IoReleaseCancelSpinLock
IoAcquireCancelSpinLock
KeRemoveEntryDeviceQueue
ExFreePool
IoCreateDevice
IoFreeIrp
IoAllocateIrp
IoQueueWorkItem
RtlDeleteRegistryValue
IoReleaseRemoveLockAndWaitEx
InterlockedExchange
PoCallDriver
PoStartNextPowerIrp
ZwClose

hal

KfReleaseSpinLock
KfAcquireSpinLock

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

PAGE
Size: 1024B - Virtual size: 989B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 384B - Virtual size: 342B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
vcommmgr.cat
vcommmgr.cat2
vcommmgr.inf
vcommmgr.sys
.sys windows:5 windows x86 arch:x86

2ec8c289f82523576fd098067aed9193

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:f9:db:d9:2e:7c:94:6c:6b:44:cb:b0:b3:ed:05:5a
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

02/09/2008, 00:00

Not After

20/09/2011, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a4:b7:ff:54:c2:e1:b5:cc:00:8b:5c:b1:d4:e2:f4:bf:10:bb:87:84
Signer

Actual PE Digest

a4:b7:ff:54:c2:e1:b5:cc:00:8b:5c:b1:d4:e2:f4:bf:10:bb:87:84

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\WinDriversInternal\srcstore\200901080216\src\btcom\btcommgr_V2\objfre_wxp_x86\i386\VCommMgr.pdb

Imports

ntoskrnl.exe

IoDeleteDevice
IoCreateSymbolicLink
IoCreateDevice
IoAttachDeviceToDeviceStack
IoInitializeRemoveLockEx
KeWaitForSingleObject
IoDetachDevice
IoDeleteSymbolicLink
KeDelayExecutionThread
KeSetEvent
KeInitializeSpinLock
RtlInitUnicodeString
IofCompleteRequest
IofCallDriver
IoReleaseRemoveLockEx
KeRemoveEntryDeviceQueue
IoReleaseCancelSpinLock
ExfInterlockedInsertTailList
ExFreePool
ExAllocatePoolWithTag
ExfInterlockedRemoveHeadList
InterlockedIncrement
InterlockedDecrement
ObfDereferenceObject
KeCancelTimer
IoFreeWorkItem
IoQueueWorkItem
IoAllocateWorkItem
KeSetTimerEx
KeInitializeDpc
KeInitializeTimer
ObReferenceObjectByHandle
IoStartPacket
IoAcquireRemoveLockEx
IoReleaseRemoveLockAndWaitEx
ObfReferenceObject
IoStartNextPacket
InterlockedExchange
IoAcquireCancelSpinLock
KeSetTimer
RtlExtendedIntegerMultiply
PoCallDriver
PoStartNextPowerIrp
IoIsWdmVersionAvailable
IoFreeIrp
KeInsertQueueDpc
ZwClose
ZwQueryValueKey
IoOpenDeviceRegistryKey
IoInvalidateDeviceRelations
IoBuildSynchronousFsdRequest
IoGetAttachedDeviceReference
swprintf
wcslen
PoSetPowerState
PoRequestPowerIrp
IoAllocateIrp
KeInitializeEvent

hal

KfReleaseSpinLock
KeGetCurrentIrql
KfLowerIrql
KfRaiseIrql
KfAcquireSpinLock

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 423B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 384B - Virtual size: 381B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
vcommmgr.sys1
.sys windows:5 windows x86 arch:x86

2ec8c289f82523576fd098067aed9193

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:f9:db:d9:2e:7c:94:6c:6b:44:cb:b0:b3:ed:05:5a
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

02/09/2008, 00:00

Not After

20/09/2011, 23:59

Subject

CN=IVT SOFTWARE TECHNOLOGY Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IVT SOFTWARE TECHNOLOGY Inc.,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a4:b7:ff:54:c2:e1:b5:cc:00:8b:5c:b1:d4:e2:f4:bf:10:bb:87:84
Signer

Actual PE Digest

a4:b7:ff:54:c2:e1:b5:cc:00:8b:5c:b1:d4:e2:f4:bf:10:bb:87:84

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\WinDriversInternal\srcstore\200901080216\src\btcom\btcommgr_V2\objfre_wxp_x86\i386\VCommMgr.pdb

Imports

ntoskrnl.exe

IoDeleteDevice
IoCreateSymbolicLink
IoCreateDevice
IoAttachDeviceToDeviceStack
IoInitializeRemoveLockEx
KeWaitForSingleObject
IoDetachDevice
IoDeleteSymbolicLink
KeDelayExecutionThread
KeSetEvent
KeInitializeSpinLock
RtlInitUnicodeString
IofCompleteRequest
IofCallDriver
IoReleaseRemoveLockEx
KeRemoveEntryDeviceQueue
IoReleaseCancelSpinLock
ExfInterlockedInsertTailList
ExFreePool
ExAllocatePoolWithTag
ExfInterlockedRemoveHeadList
InterlockedIncrement
InterlockedDecrement
ObfDereferenceObject
KeCancelTimer
IoFreeWorkItem
IoQueueWorkItem
IoAllocateWorkItem
KeSetTimerEx
KeInitializeDpc
KeInitializeTimer
ObReferenceObjectByHandle
IoStartPacket
IoAcquireRemoveLockEx
IoReleaseRemoveLockAndWaitEx
ObfReferenceObject
IoStartNextPacket
InterlockedExchange
IoAcquireCancelSpinLock
KeSetTimer
RtlExtendedIntegerMultiply
PoCallDriver
PoStartNextPowerIrp
IoIsWdmVersionAvailable
IoFreeIrp
KeInsertQueueDpc
ZwClose
ZwQueryValueKey
IoOpenDeviceRegistryKey
IoInvalidateDeviceRelations
IoBuildSynchronousFsdRequest
IoGetAttachedDeviceReference
swprintf
wcslen
PoSetPowerState
PoRequestPowerIrp
IoAllocateIrp
KeInitializeEvent

hal

KfReleaseSpinLock
KeGetCurrentIrql
KfLowerIrql
KfRaiseIrql
KfAcquireSpinLock

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 423B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 384B - Virtual size: 381B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
versit.dll
.dll windows:4 windows x86 arch:x86

fbb011baa2a7e37a920e05f8c26e080b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapAlloc
HeapFree
HeapReAlloc
GetCommandLineA
GetVersion
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
FatalAppExitA
RtlUnwind
GetLastError
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
CloseHandle
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteFile
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
InterlockedDecrement
InterlockedIncrement
FlushFileBuffers
CreateFileA
ReadFile
UnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
Sleep
SetEndOfFile
LCMapStringA
LCMapStringW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

CopyProperty
FinishParse
FreevCardBuff
GetProperty
Parse_MIME
Parse_MIME_FromFile
Parse_MIME_FromFileName
addGroup
addList
addProp
addPropSizedValue
addPropSizedValue_
addPropValue
addProp_
addVObjectProp
cleanStrTbl
cleanVObject
cleanVObjects
deleteStr
deleteVObject
dupStr
fakeCString
fakeUnicode
getMsgBdCntFromFile
initPropIterator
initVObjectIterator
isAPropertyOf
lookupProp
lookupProp_
lookupStr
moreIteration
newVObject
newVObject_
nextVObject
nextVObjectInList
printVObjectToFile
printVObjectsToFile
putMsgBdCntToFile
registerMimeErrorHandler
setVObjectAnyValue
setVObjectIntegerValue
setVObjectLongValue
setVObjectName
setVObjectStringZValue
setVObjectStringZValue_
setVObjectUStringZValue
setVObjectUStringZValue_
setVObjectVObjectValue
setValueWithSize
setValueWithSize_
uStrLen
unUseStr
vCardClose
vCardParse
vObjectAnyValue
vObjectIntegerValue
vObjectLongValue
vObjectName
vObjectStringZValue
vObjectUStringZValue
vObjectVObjectValue
vObjectValueType
vcsAddAAlarm
vcsAddDAlarm
vcsAddEvent
vcsAddMAlarm
vcsAddPAlarm
vcsAddTodo
vcsCreateVCal
writeMemVObject
writeMemVObjects
writeProperty
writeVObjectToFile
writeVObjectsToFile

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

917440036cdef75e295c75d7cdd8d7da

Headers

File Characteristics

Imports

cfgmgr32

mfc42

msvcrt

kernel32

msvcp60

setupapi

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 37KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

26aa6d3b9416c78e22c7b5dd8c79ec71

Headers

File Characteristics

Imports

bscommon

bssdk

bslangindepres

bstrace

bsprofilefunc

gdiplus

mfc42

msvcrt

kernel32

user32

gdi32

advapi32

shell32

msvcp60

Sections

.text Size: 364KB - Virtual size: 361KB

.rdata Size: 48KB - Virtual size: 45KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 4KB - Virtual size: 16B

7680d7d52bff3d0db831080da92f0ebc

Headers

File Characteristics

Imports

kernel32

winspool.drv

bssdk

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 4KB - Virtual size: 680B

Headers

File Characteristics

Sections

Size: 419KB - Virtual size: 1024KB

Size: 55KB - Virtual size: 160KB

Size: 24KB - Virtual size: 96KB

.rsrc Size: 92KB - Virtual size: 96KB

Size: 512B - Virtual size: 4KB

.data Size: 234KB - Virtual size: 236KB

.adata Size: - Virtual size: 4KB

6e8ae6c6b2e24cc3f0940768ccf3cb40

Headers

File Characteristics

Imports

kernel32

rpcrt4

oleaut32

Exports

Exports

Sections

.orpc Size: 392KB - Virtual size: 391KB

.text Size: 40KB - Virtual size: 36KB

.text
Size: 40KB - Virtual size: 37KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 364KB - Virtual size: 361KB

.rdata
Size: 48KB - Virtual size: 45KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 4KB - Virtual size: 16B

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 4KB - Virtual size: 680B

.rsrc
Size: 92KB - Virtual size: 96KB

.data
Size: 234KB - Virtual size: 236KB

.adata
Size: - Virtual size: 4KB

.orpc
Size: 392KB - Virtual size: 391KB

.text
Size: 40KB - Virtual size: 36KB

.rdata
Size: 36KB - Virtual size: 33KB

.data
Size: 16KB - Virtual size: 14KB

.rsrc
Size: 12KB - Virtual size: 10KB

.reloc
Size: 40KB - Virtual size: 37KB

.text
Size: 4KB - Virtual size: 46B

.rdata
Size: 4KB - Virtual size: 134B

.rsrc
Size: 48KB - Virtual size: 45KB

.reloc
Size: 4KB - Virtual size: 24B

.text
Size: 4KB - Virtual size: 46B

.rdata
Size: 4KB - Virtual size: 134B

.rsrc
Size: 48KB - Virtual size: 46KB

.reloc
Size: 4KB - Virtual size: 24B

.text
Size: 4KB - Virtual size: 46B

.rdata
Size: 4KB - Virtual size: 134B

.rsrc
Size: 84KB - Virtual size: 81KB

.reloc
Size: 4KB - Virtual size: 24B

.text
Size: 4KB - Virtual size: 46B

.rdata
Size: 4KB - Virtual size: 134B

.rsrc
Size: 88KB - Virtual size: 87KB

.reloc
Size: 4KB - Virtual size: 24B

.text
Size: 4KB - Virtual size: 46B

.rdata
Size: 4KB - Virtual size: 134B

.rsrc
Size: 80KB - Virtual size: 78KB

.reloc
Size: 4KB - Virtual size: 24B

.text
Size: 4KB - Virtual size: 46B

.rdata
Size: 4KB - Virtual size: 134B

.rsrc
Size: 84KB - Virtual size: 80KB

.reloc
Size: 4KB - Virtual size: 24B