d:\Jenkins\SAS Redistributable\workspace\src\Binary\Release\SdAppServices_x64.pdb
Overview
overview
3Static
static
3virus.zip
windows7-x64
1virus.zip
windows10-1703-x64
1virus.zip
windows10-2004-x64
1virus.zip
windows11-21h2-x64
1SdAppServices_x64.dll
windows7-x64
1SdAppServices_x64.dll
windows10-1703-x64
1SdAppServices_x64.dll
windows10-2004-x64
1SdAppServices_x64.dll
windows11-21h2-x64
1Setup.exe
windows7-x64
1Setup.exe
windows10-1703-x64
1Setup.exe
windows10-2004-x64
1Setup.exe
windows11-21h2-x64
1Static task
static1
Behavioral task
behavioral1
Sample
virus.zip
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
virus.zip
Resource
win10-20240404-en
Behavioral task
behavioral3
Sample
virus.zip
Resource
win10v2004-20240802-en
Behavioral task
behavioral4
Sample
virus.zip
Resource
win11-20240802-en
Behavioral task
behavioral5
Sample
SdAppServices_x64.dll
Resource
win7-20240708-en
Behavioral task
behavioral6
Sample
SdAppServices_x64.dll
Resource
win10-20240404-en
Behavioral task
behavioral7
Sample
SdAppServices_x64.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral8
Sample
SdAppServices_x64.dll
Resource
win11-20240802-en
Behavioral task
behavioral9
Sample
Setup.exe
Resource
win7-20240704-en
Behavioral task
behavioral10
Sample
Setup.exe
Resource
win10-20240611-en
Behavioral task
behavioral11
Sample
Setup.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral12
Sample
Setup.exe
Resource
win11-20240802-en
General
-
Target
virus.zip
-
Size
2.3MB
-
MD5
22dd141467569bb904289fb363ca4500
-
SHA1
0316b91c3387e24d09b05689a3cbc00c77590d2d
-
SHA256
ac4abe6d602e440a75ec934f732057a1ae5dd246f7b4804c242ff5b6b027f527
-
SHA512
59e9ce5d2932e85ed60650bb77a3a38bb77c64d1a7c4252ec9ee2994a721d41ddea270fd9d0fcfea7b63ee0ac04a1a9d058d0c952fb2c0a919b98766d677ac96
-
SSDEEP
49152:NtRDkuSS3RJu5f61AnKO17epvG6T5vIZbL7ZuMeH2nLvaMa0JdYAb:PRgufOy1AnB6T5ikgLCMh/YAb
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/SdAppServices_x64.dll
Files
-
virus.zip.zip
-
SdAppServices_x64.dll.dll windows:6 windows x64 arch:x64
15027fcca928a02026d128c2183b3129
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
version
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
kernel32
GetLastError
GetTickCount
GlobalFree
AddAtomA
Sleep
WaitForMultipleObjects
VerSetConditionMask
VerifyVersionInfoW
LoadLibraryW
GetProcAddress
QueryPerformanceCounter
QueryPerformanceFrequency
SetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
ReadFile
GetCurrentDirectoryW
CreateProcessA
SetHandleInformation
CreatePipe
GetCurrentProcessId
ResetEvent
SetEvent
CreateEventW
FreeLibraryAndExitThread
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
ReleaseMutex
WaitForSingleObject
GetComputerNameW
CreateMutexW
lstrlenA
lstrcmpA
GetComputerNameA
FileTimeToSystemTime
FindClose
FindFirstFileW
LocalFree
LocalAlloc
GetModuleFileNameW
GetModuleHandleExA
CreateDirectoryW
SetFilePointerEx
ReadConsoleW
DeleteFileW
GetConsoleMode
GetConsoleCP
WriteFile
HeapFree
ExitProcess
SetEndOfFile
HeapReAlloc
HeapAlloc
GetModuleHandleExW
ExitThread
CreateThread
FlushFileBuffers
GetTimeZoneInformation
GetStdHandle
GetACP
CloseHandle
GetFileAttributesA
MoveFileExW
GetFullPathNameW
HeapSize
WriteConsoleW
GetModuleFileNameA
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
GetProcessHeap
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
GetCPInfo
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetModuleHandleW
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetCurrentThreadId
RtlPcToFileHeader
RaiseException
InterlockedPushEntrySList
InterlockedFlushSList
RtlUnwindEx
FreeLibrary
LoadLibraryExW
CreateFileW
GetDriveTypeW
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
user32
GetLastInputInfo
DispatchMessageW
TranslateMessage
CallMsgFilterW
PostQuitMessage
PeekMessageW
MsgWaitForMultipleObjects
EnableWindow
advapi32
RegQueryValueExW
GetNamedSecurityInfoW
CryptGenRandom
CryptAcquireContextA
CryptEncrypt
CryptDecrypt
CryptSetKeyParam
CryptImportKey
CryptAcquireContextW
CryptReleaseContext
CryptDestroyKey
RegSetValueExW
RegCreateKeyExW
RegCloseKey
CreateWellKnownSid
RegOpenKeyExW
SetSecurityDescriptorSacl
GetSecurityDescriptorSacl
ConvertStringSecurityDescriptorToSecurityDescriptorW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
IsValidSid
LookupAccountNameA
SetNamedSecurityInfoW
SetEntriesInAclW
shell32
ShellExecuteExW
SHFileOperationW
ShellExecuteW
SHGetFolderPathW
ole32
CoCreateInstance
CoUninitialize
CoInitializeEx
CoSetProxyBlanket
oleaut32
VariantChangeType
VariantClear
VariantInit
SysFreeString
SysAllocString
shlwapi
PathAppendW
PathRemoveFileSpecW
PathFileExistsW
iphlpapi
GetAdaptersInfo
crypt32
CryptStringToBinaryW
CryptBinaryToStringW
winhttp
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpQueryHeaders
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpAddRequestHeaders
WinHttpSetOption
WinHttpGetProxyForUrl
WinHttpOpenRequest
WinHttpConnect
WinHttpSetTimeouts
WinHttpOpen
WinHttpGetIEProxyConfigForCurrentUser
WinHttpCreateUrl
WinHttpCloseHandle
WinHttpCrackUrl
Exports
Exports
sas_AAAA
sas_AAAB
sas_AAAC
sas_AAAD
sas_AAAE
Sections
.text Size: 938KB - Virtual size: 937KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 338KB - Virtual size: 337KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 27KB - Virtual size: 39KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 42KB - Virtual size: 42KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.gfids Size: 1024B - Virtual size: 732B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 9B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Setup.exe.exe windows:6 windows x64 arch:x64
7f95589388d51e82edf11ba184ed6b39
Code Sign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before29/04/2021, 00:00Not After28/04/2036, 23:59SubjectCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before14/07/2023, 00:00Not After13/10/2034, 23:59SubjectCN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
02:92:61:fa:48:6b:16:10:71:3a:4c:b9:ec:7e:6c:42Certificate
IssuerCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USNot Before01/03/2022, 00:00Not After23/04/2025, 23:59SubjectCN=STARDOCK SYSTEMS\, INC.,O=STARDOCK SYSTEMS\, INC.,L=Plymouth,ST=Michigan,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
8c:d3:a3:2e:cb:52:c9:b2:0d:88:24:28:39:da:81:00:3f:66:c7:7fSigner
Actual PE Digest8c:d3:a3:2e:cb:52:c9:b2:0d:88:24:28:39:da:81:00:3f:66:c7:7fDigest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\jeffb\Dropbox\_LocalMachines\Windows\Object Desktop\Object Dock\Debug\ObjectDock.pdb
Imports
oleaut32
VariantClear
VariantInit
SysFreeString
SysAllocString
winmm
PlaySoundW
version
GetFileVersionInfoW
GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
VerQueryValueW
shlwapi
PathFileExistsW
PathFindExtensionW
PathIsDirectoryW
StrStrIW
PathCanonicalizeW
PathUnquoteSpacesW
PathMakeSystemFolderW
ColorRGBToHLS
ColorHLSToRGB
PathRemoveArgsW
SHAutoComplete
PathRelativePathToW
ord172
ord174
ord219
ord16
userenv
DestroyEnvironmentBlock
CreateEnvironmentBlock
crypt32
CryptVerifyMessageSignature
CertGetNameStringW
CertFreeCertificateContext
uxtheme
CloseThemeData
OpenThemeData
msimg32
AlphaBlend
imagehlp
ImageGetCertificateData
ImageGetCertificateHeader
propsys
PropVariantToBSTR
comctl32
ImageList_GetIconSize
ImageList_DrawEx
InitCommonControlsEx
ord17
ImageList_ReplaceIcon
ImageList_Add
ImageList_Destroy
ImageList_Create
ImageList_Draw
kernel32
GetPrivateProfileSectionW
GetPrivateProfileSectionNamesW
ReadFile
WriteFile
OutputDebugStringW
CreateMutexW
GetCurrentProcess
CreateThread
GetCurrentThread
GetCurrentThreadId
TerminateThread
SuspendThread
ResumeThread
CreateProcessW
SetPriorityClass
OpenProcess
GetSystemTime
GetTickCount
GetVersionExW
SetProcessWorkingSetSize
GetModuleFileNameA
LoadResource
LockResource
SizeofResource
FindResourceW
GlobalAlloc
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalFree
LocalFree
GlobalDeleteAtom
GlobalAddAtomW
GlobalFindAtomW
IsBadReadPtr
GetComputerNameW
K32EnumProcessModules
K32GetModuleFileNameExW
HeapAlloc
HeapReAlloc
HeapFree
GetProcessHeap
SetThreadPriority
ExpandEnvironmentStringsW
WaitForSingleObject
GetSystemInfo
GetDriveTypeW
QueryPerformanceCounter
ExitThread
GetWindowsDirectoryW
SetLastError
GetCurrentProcessId
SearchPathW
GetLocalTime
GetPrivateProfileStringW
FindFirstChangeNotificationW
FindNextChangeNotification
GetLogicalDriveStringsW
WaitForMultipleObjects
GetExitCodeThread
WritePrivateProfileSectionW
GetPrivateProfileStructW
WritePrivateProfileStructW
GetModuleHandleExA
MultiByteToWideChar
IsBadCodePtr
lstrcpynW
FlushInstructionCache
VirtualAlloc
VirtualProtect
VirtualFree
QueryPerformanceFrequency
Wow64DisableWow64FsRedirection
Wow64RevertWow64FsRedirection
GetPackageId
GetPackageFamilyName
GetPackagePath
GetPackagePathByFullName
GetApplicationUserModelId
PackageFullNameFromId
GetPackagesByPackageFamily
lstrcpyW
WideCharToMultiByte
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
SetFilePointer
LoadLibraryExW
EnumResourceNamesW
GetTempPathW
OpenEventW
CreateRemoteThread
VirtualAllocEx
WriteProcessMemory
VirtualFreeEx
GetPrivateProfileIntW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
RtlPcToFileHeader
RtlUnwindEx
GetCPInfo
GetStringTypeW
LCMapStringEx
DecodePointer
EncodePointer
InitializeCriticalSectionEx
InitializeSListHead
GetSystemTimeAsFileTime
GetStartupInfoW
VirtualQuery
RaiseException
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
Sleep
GetLastError
GetFileSize
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
CreateDirectoryW
GetModuleHandleW
LoadLibraryW
GetProcAddress
GetModuleFileNameW
FreeLibrary
CloseHandle
CreateFileW
GetModuleHandleExW
GetStdHandle
GetFileType
WriteConsoleW
HeapSize
WritePrivateProfileStringW
HeapValidate
ExitProcess
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapQueryInformation
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
GetFileSizeEx
SetFilePointerEx
GetDateFormatW
user32
GetMessagePos
GetMessageTime
SendMessageTimeoutW
GetWindowPlacement
GetSystemMenu
EnableMenuItem
AppendMenuW
GetWindowModuleFileNameW
GetWindowRgn
keybd_event
GetMenuDefaultItem
AllowSetForegroundWindow
CallWindowProcA
IsWindowEnabled
GetDoubleClickTime
CheckMenuRadioItem
DrawTextExW
RegisterClassExA
DrawMenuBar
DrawEdge
CopyIcon
GetMenuStringW
LookupIconIdFromDirectory
CreateIconFromResource
SetClassLongPtrW
GetWindowLongW
PtInRect
EqualRect
IsRectEmpty
OffsetRect
InflateRect
CopyRect
SetRect
FillRect
GetSysColorBrush
GetSysColor
ClientToScreen
GetCursor
SetCursor
ShowCursor
RemovePropW
GetPropW
GetClassLongPtrW
GetAncestor
SetWindowRgn
GetWindowDC
GetForegroundWindow
UpdateWindow
DrawTextW
GetMenuItemInfoW
GetMenuItemCount
GetMenuItemID
CheckMenuItem
CreatePopupMenu
LoadMenuW
GetSystemMetrics
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetAsyncKeyState
GetKeyState
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
IsZoomed
IsIconic
IsWindowVisible
SetWindowPos
UpdateLayeredWindow
DestroyWindow
CreateWindowExW
RegisterClassExW
PostQuitMessage
AttachThreadInput
PostThreadMessageW
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
RegisterWindowMessageW
wsprintfW
wvsprintfW
LoadStringW
LoadImageW
DestroyCursor
EnumChildWindows
IntersectRect
GetMenu
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetLayeredWindowAttributes
GetCapture
DragDetect
SetMenuItemInfoW
TrackPopupMenu
RemoveMenu
ModifyMenuW
InsertMenuW
GetSubMenu
SetWindowLongW
RegisterClipboardFormatW
GetIconInfo
SystemParametersInfoW
EnumDisplayDevicesW
IsDialogMessageW
DrawIconEx
LoadCursorW
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetWindowThreadProcessId
GetClassNameW
DestroyMenu
EnumWindows
DeregisterShellHookWindow
RegisterShellHookWindow
FindWindowExW
ValidateRect
FindWindowW
SetPropW
GetWindowLongPtrW
GetDC
ReleaseDC
MonitorFromPoint
SendMessageW
PostMessageW
DefWindowProcW
CallWindowProcW
IsWindow
ShowWindow
MoveWindow
CreateDialogParamW
DialogBoxParamW
EndDialog
GetDlgItem
SetFocus
EnableWindow
DrawIcon
SetForegroundWindow
BeginPaint
EndPaint
InvalidateRect
RedrawWindow
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
GetClientRect
GetWindowRect
MessageBoxW
GetCursorPos
ScreenToClient
WindowFromPoint
SetWindowLongPtrW
GetParent
LoadIconW
DestroyIcon
gdi32
SaveDC
SetGraphicsMode
GetTextExtentPoint32W
CreateFontIndirectW
Polyline
RestoreDC
GetTextColor
ModifyWorldTransform
DPtoLP
SetWindowOrgEx
CreateCompatibleBitmap
CreateCompatibleDC
Rectangle
CreatePatternBrush
CreatePen
OffsetViewportOrgEx
EnumFontFamiliesExW
CreateSolidBrush
StretchBlt
SetDIBits
GetDIBits
SetViewportOrgEx
TextOutW
MoveToEx
GetObjectW
CreateDIBSection
GetTextMetricsW
SetTextColor
SetStretchBltMode
SetBkMode
SetBkColor
SelectObject
OffsetRgn
LineTo
CombineRgn
BitBlt
DeleteObject
GetDeviceCaps
GetRgnBox
GetCurrentObject
ExtCreateRegion
DeleteDC
CreateRectRgn
GetStockObject
comdlg32
GetOpenFileNameW
ChooseColorW
advapi32
OpenProcessToken
RegDeleteValueW
RegCreateKeyW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
GetUserNameW
LookupPrivilegeValueW
GetTokenInformation
AdjustTokenPrivileges
shell32
SHGetPropertyStoreForWindow
DragFinish
ShellExecuteW
SHFileOperationW
SHGetSpecialFolderPathW
CommandLineToArgvW
SHAppBarMessage
ShellExecuteExW
SHGetFileInfoW
SHGetDesktopFolder
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHQueryRecycleBinW
SHEmptyRecycleBinW
SHBrowseForFolderW
Shell_NotifyIconW
DragQueryFileW
ole32
CoInitializeEx
StringFromGUID2
CoLockObjectExternal
CoDisconnectObject
ReleaseStgMedium
DoDragDrop
CoMarshalInterThreadInterfaceInStream
RegisterDragDrop
CoInitialize
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
StgCreateDocfile
CoGetInterfaceAndReleaseStream
CoTaskMemFree
RevokeDragDrop
OleCreate
OleSetContainedObject
PropVariantClear
CLSIDFromString
OleInitialize
gdiplus
GdipSetImageAttributesGamma
GdipTranslateWorldTransform
GdipScaleWorldTransform
GdipRotateWorldTransform
GdipDrawPath
GdipFillPath
GdipCreateFont
GdipDeleteFont
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipSetPenLineCap197819
GdipDrawLine
GdipGetTextRenderingHint
GdipResetWorldTransform
GdipFillRectangleI
GdipDrawString
GdipMeasureString
GdipFillRectangle
GdipDeleteBrush
GdipResetClip
GdipSetClipRectI
GdipDrawImageRectRectI
GdipDrawImageI
GdipImageRotateFlip
GdipDrawLineI
GdipSetInterpolationMode
GdipReleaseDC
GdipGetDC
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCloneBitmapAreaI
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipSaveImageToFile
GdipDisposeImage
GdipCloneImage
GdipDeletePen
GdipCreatePen1
GdipFree
GdipAlloc
GdipCloneBrush
GdipCreateSolidFill
GdipAddPathStringI
GdipDeletePath
GdipCreatePath
GdiplusShutdown
GdiplusStartup
GdipSetCompositingMode
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipSetSmoothingMode
GdipGetImageEncoders
GdipGraphicsClear
GdipGetImageEncodersSize
Exports
Exports
DockletBrowseForImage
DockletDefaultConfigDialog
DockletDoAttentionAnimation
DockletDoClickAnimation
DockletGetLabel
DockletGetRect
DockletGetRelativeFolder
DockletGetRootFolder
DockletIsVisible
DockletLoadGDIPlusImage
DockletLockMouseEffect
DockletQueryDockAlign
DockletQueryDockEdge
DockletRemoveSelf
DockletSetDockAlign
DockletSetDockEdge
DockletSetImage
DockletSetImageFile
DockletSetImageOverlay
DockletSetLabel
DotNetCallback
EntryPt
Sections
.text Size: 2.1MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 695KB - Virtual size: 695KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 87KB - Virtual size: 87KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 500B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ