bffcaaf5a6765ef0546b52d63de5601c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bffcaaf5a6765ef0546b52d63de5601c_JaffaCakes118
Size

5.3MB
MD5

bffcaaf5a6765ef0546b52d63de5601c
SHA1

4f2d223b6dbd5308ab517ca2d61e934c76a1c446
SHA256

bbcfe3154cd73b5f4ee7e74d9e4d8b4a30308cd57936519d60d11ecda2679996
SHA512

39f9ee9b40d3258475bea7c3fd0a30d7a98759ddf024d33154bb4ca3747b5e0a7c88eefe3a294b49bfecc51108b39910715f6246a4f29170b88e362668234fe1
SSDEEP

98304:BZtwsc+a0orrAsbevYeIeLzMZf8RlGDVfU9ucHwi3ZK/QOk3BwXrG+kpTGOTGB9:JK0NsOLAx8wVfAD3ZK4Ok3BwCViEy

Score

3^/10

Malware Config

Signatures

Unsigned PE 14 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PCHand Screen Recorder/Codes/Merge.exe
unpack001/PCHand Screen Recorder/Codes/avcodec.dll
unpack001/PCHand Screen Recorder/Codes/avdevice.dll
unpack001/PCHand Screen Recorder/Codes/avformat.dll
unpack001/PCHand Screen Recorder/Codes/avutil.dll
unpack001/PCHand Screen Recorder/Codes/pthreadGC2.dll
unpack001/PCHand Screen Recorder/Codes/swscale.dll
unpack001/PCHand Screen Recorder/Codes/xvidcore.dll
unpack001/PCHand Screen Recorder/Gdiplus.dll
unpack001/PCHand Screen Recorder/LogFile.dll
unpack001/PCHand Screen Recorder/Mouse.dll
unpack001/PCHand Screen Recorder/MultiLanguage.dll
unpack001/PCHand Screen Recorder/ScreenRecorder.exe
unpack001/PCHand Screen Recorder/common.dll

Files

bffcaaf5a6765ef0546b52d63de5601c_JaffaCakes118
.rar
PCHand Screen Recorder/Codes/Merge.exe
.exe windows:4 windows x86 arch:x86

bd8bc0e641e11310ac3da50047d5edc8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

avutil

av_d2q
av_fifo_free
av_fifo_init
av_fifo_read
av_fifo_realloc
av_fifo_size
av_fifo_write
av_free
av_freep
av_log
av_log_set_callback
av_log_set_level
av_malloc
av_mallocz
av_realloc
av_rescale
av_rescale_q
av_strdup
av_strlcat
av_strlcpy
av_strstart
av_sub_q

avcodec

audio_resample
audio_resample_close
audio_resample_init
av_bitstream_filter_filter
av_bitstream_filter_init
av_bitstream_filter_next
av_codec_next
av_fast_realloc
av_find_opt
av_free_static
av_get_int
av_get_pict_type_char
av_get_string
av_opt_show
av_parse_video_frame_rate
av_parse_video_frame_size
av_parser_change
av_picture_copy
av_picture_crop
av_picture_pad
av_resample_compensate
av_set_string
avcodec_alloc_context
avcodec_alloc_context2
avcodec_build
avcodec_close
avcodec_decode_audio2
avcodec_decode_subtitle
avcodec_decode_video
avcodec_encode_audio
avcodec_encode_subtitle
avcodec_encode_video
avcodec_find_decoder
avcodec_find_decoder_by_name
avcodec_find_encoder
avcodec_find_encoder_by_name
avcodec_get_context_defaults2
avcodec_get_frame_defaults
avcodec_get_pix_fmt
avcodec_open
avcodec_pix_fmt_string
avcodec_register_all
avcodec_thread_init
avpicture_alloc
avpicture_deinterlace
avpicture_fill
avpicture_get_size

avformat

av_alloc_format_context
av_close_input_file
av_codec_get_id
av_codec_get_tag
av_destruct_packet
av_filename_number_test
av_find_input_format
av_find_stream_info
av_gettime
av_guess_codec
av_iformat_next
av_init_packet
av_interleaved_write_frame
av_new_stream
av_oformat_next
av_open_input_file
av_pkt_dump_log
av_protocol_next
av_read_frame
av_register_all
av_seek_frame
av_set_parameters
av_write_header
av_write_trailer
avf_sdp_create
dump_format
ffm_nopts
guess_format
parse_date
url_exist
url_fclose
url_fopen
url_fsize
url_ftell
url_set_interrupt_cb
ffm_nopts

avdevice

avdevice_register_all

swscale

sws_freeContext
sws_getContext
sws_scale

kernel32

DeleteCriticalSection
EnterCriticalSection
ExitProcess
GetCurrentProcess
GetModuleHandleA
GetProcAddress
GetProcessTimes
InitializeCriticalSection
InterlockedExchange
LeaveCriticalSection
SetUnhandledExceptionFilter
Sleep

msvcrt

_getch
_kbhit
__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_filbuf
_iob
_onexit
_setmode
abort
atexit
atof
atoi
exit
fclose
fflush
fopen
fprintf
fputc
fputs
fread
fseek
ftell
fwrite
localtime
log
malloc
memcpy
memset
perror
printf
putchar
puts
signal
sscanf
strchr
strcmp
strcpy
strlen
strtod
strtol
time
toupper
vfprintf

Sections

.text
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PCHand Screen Recorder/Codes/avcodec.dll
.dll windows:4 windows x86 arch:x86

c918b414039e20804a8e750c72057d1e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

pthreadgc2

pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_init
pthread_cond_signal
pthread_cond_wait
pthread_create
pthread_join
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_unlock
pthread_num_processors_np

xvidcore

xvid_encore
xvid_global
xvid_plugin_2pass2
xvid_plugin_lumimasking
xvid_plugin_single

avutil

av_crc
av_crc_get_table
av_crc_init
av_d2q
av_div_q
av_evaluate_lls
av_free
av_freep
av_init_lls
av_init_random
av_log
av_log_get_level
av_malloc
av_mallocz
av_random_generate_untempered_numbers
av_realloc
av_reduce
av_rescale_q
av_solve_lls
av_update_lls
av_vlog
ff_gcd
ff_log2_tab
ff_sqrt_tab
lzo1x_decode
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab
ff_sqrt_tab

kernel32

DeleteCriticalSection
EnterCriticalSection
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedExchange
LeaveCriticalSection
Sleep

msvcrt

_close
_open
_strdup
_tempnam
_unlink
_write
__dllonexit
__mb_cur_max
_assert
_errno
_iob
_isctype
_pctype
abort
acos
asin
atan
atoi
calloc
ceil
cos
cosh
exit
exp
fclose
fflush
floor
fopen
fprintf
fread
free
frexp
fseek
ftell
fwrite
ldexp
log
log10
malloc
memcpy
memmove
memset
perror
pow
qsort
realloc
rename
sin
sinh
sprintf
sqrt
sscanf
strcat
strchr
strcmp
strcpy
strcspn
strlen
strncpy
strpbrk
strstr
strtod
strtok
strtol
tan
tanh
tolower
toupper
vfprintf

Exports

Exports

AACQuantize
AACQuantizeEnd
AACQuantizeInit
ABR_iteration_loop
ATHformula
AddVbrFrame
AnalyzeSamples
AudioSpecificConfig2
AudioSpecificConfigFromBitfile
BitAllocation
BitSearch
BitrateIndex
BpbTable
CBR_iteration_loop
CRC_writeheader
CalcAvgEnrg
CalcBits
CheckVbrTag
ClearDownQFragData
ClearFragmentInfo
ClearFrameInfo
ClearHuffmanSet
ClearHuffmanTrees
ClearPBInstance
ClearPPInstance
ClearTmpBuffers
CloseBitStream
ConfigurePP
CopyBackExtraFrags
CopyPredInfo
CreateBlockMapping
DCT4_32
DCtab_chrom
DCtab_lum
DPCMTokenizeBlock
DST4_32
D_ACELP_decode_2t
D_ACELP_decode_4t
D_ACELP_phase_dispersion
D_DTX_activity_update
D_DTX_exe
D_DTX_exit
D_DTX_init
D_DTX_reset
D_DTX_rx_handler
D_GAIN_adaptive_codebook_excitation
D_GAIN_adaptive_control
D_GAIN_decode
D_GAIN_find_voice_factor
D_GAIN_init
D_GAIN_lag_concealment
D_GAIN_lag_concealment_init
D_GAIN_pitch_sharpening
D_IF_conversion
D_IF_exit
D_IF_homing_frame_test
D_IF_homing_frame_test_first
D_IF_init
D_IF_mms_conversion
D_IF_reset
D_LPC_a_weight
D_LPC_int_isp_find
D_LPC_isf_2s3s_decode
D_LPC_isf_2s5s_decode
D_LPC_isf_extrapolation
D_LPC_isf_isp_conversion
D_LPC_isf_noise_d
D_LPC_isp_a_conversion
D_MAIN_close
D_MAIN_decode
D_MAIN_init
D_MAIN_reset
D_ROM_cdown_unusable
D_ROM_cdown_usable
D_ROM_cos
D_ROM_dico1_isf
D_ROM_dico1_isf_noise
D_ROM_dico21_isf
D_ROM_dico21_isf_36b
D_ROM_dico22_isf
D_ROM_dico22_isf_36b
D_ROM_dico23_isf
D_ROM_dico23_isf_36b
D_ROM_dico24_isf
D_ROM_dico25_isf
D_ROM_dico2_isf
D_ROM_dico2_isf_noise
D_ROM_dico3_isf_noise
D_ROM_dico4_isf_noise
D_ROM_dico5_isf_noise
D_ROM_fir_6k_7k
D_ROM_fir_7k
D_ROM_fir_down
D_ROM_fir_up
D_ROM_hp_gain
D_ROM_inter4_2
D_ROM_interpol_frac
D_ROM_isf
D_ROM_isp
D_ROM_isqrt
D_ROM_log2
D_ROM_mean_isf
D_ROM_mean_isf_noise
D_ROM_pdown_unusable
D_ROM_pdown_usable
D_ROM_ph_imp_low
D_ROM_ph_imp_mid
D_ROM_pow2
D_ROM_qua_gain6b
D_ROM_qua_gain7b
D_UTIL_bp_6k_7k
D_UTIL_dec_synthesis
D_UTIL_dot_product12
D_UTIL_hp400_12k8
D_UTIL_interpol
D_UTIL_inverse_sqrt
D_UTIL_l_extract
D_UTIL_log2
D_UTIL_mpy_32
D_UTIL_mpy_32_16
D_UTIL_norm_l
D_UTIL_norm_s
D_UTIL_normalised_inverse_sqrt
D_UTIL_pow2
D_UTIL_preemph
D_UTIL_random
D_UTIL_saturate
D_UTIL_signal_down_scale
D_UTIL_signal_up_scale
Decoder3GPP
DecoderMMS
Decoder_Interface_exit
Decoder_Interface_init
Decoder_Interface_reset
ETSIDecoder_Interface_Decode
ETSIVADxEncoder_Interface_Encode
E_ACELP_2t
E_ACELP_4t
E_ACELP_Gain2_Q_init
E_ACELP_codebook_target_update
E_ACELP_gains_quantise
E_ACELP_xh_corr
E_ACELP_xy1_corr
E_ACELP_xy2_corr
E_DTX_buffer
E_DTX_exe
E_DTX_exit
E_DTX_init
E_DTX_pitch_tone_detection
E_DTX_reset
E_DTX_tx_handler
E_DTX_vad
E_DTX_vad_exit
E_DTX_vad_init
E_DTX_vad_reset
E_GAIN_adaptive_codebook_excitation
E_GAIN_clip_init
E_GAIN_clip_isf_test
E_GAIN_clip_pit_test
E_GAIN_clip_test
E_GAIN_closed_loop_search
E_GAIN_f_pitch_sharpening
E_GAIN_lp_decim2
E_GAIN_olag_median
E_GAIN_open_loop_search
E_GAIN_pitch_sharpening
E_GAIN_voice_factor
E_IF_exit
E_IF_homing_coding
E_IF_homing_frame_test
E_IF_init
E_LPC_a_isp_conversion
E_LPC_a_weight
E_LPC_f_int_isp_find
E_LPC_f_isp_a_conversion
E_LPC_int_isp_find
E_LPC_isf_2s3s_quantise
E_LPC_isf_2s5s_decode
E_LPC_isf_2s5s_quantise
E_LPC_isf_isp_conversion
E_LPC_isf_sub_vq
E_LPC_isp_a_conversion
E_LPC_isp_isf_conversion
E_LPC_lag_wind
E_LPC_lev_dur
E_MAIN_close
E_MAIN_encode
E_MAIN_init
E_MAIN_reset
E_ROM_cdown_unusable
E_ROM_cdown_usable
E_ROM_corrweight
E_ROM_cos
E_ROM_dico1_isf
E_ROM_dico1_isf_noise
E_ROM_dico21_isf
E_ROM_dico21_isf_36b
E_ROM_dico22_isf
E_ROM_dico22_isf_36b
E_ROM_dico23_isf
E_ROM_dico23_isf_36b
E_ROM_dico24_isf
E_ROM_dico25_isf
E_ROM_dico2_isf
E_ROM_dico2_isf_noise
E_ROM_dico3_isf_noise
E_ROM_dico4_isf_noise
E_ROM_dico5_isf_noise
E_ROM_en_adjust
E_ROM_f_interpol_frac
E_ROM_f_mean_isf
E_ROM_fir_6k_7k
E_ROM_fir_down
E_ROM_fir_ipol
E_ROM_fir_up
E_ROM_grid
E_ROM_hamming_cos
E_ROM_hp_gain
E_ROM_inter4_1
E_ROM_inter4_2
E_ROM_interpol_frac
E_ROM_isf
E_ROM_isp
E_ROM_isqrt
E_ROM_lag_window
E_ROM_log2
E_ROM_mean_isf
E_ROM_mean_isf_noise
E_ROM_pdown_unusable
E_ROM_pdown_usable
E_ROM_pow2
E_ROM_qua_gain6b
E_ROM_qua_gain7b
E_ROM_tipos
E_UTIL_autocorr
E_UTIL_convolve
E_UTIL_decim_12k8
E_UTIL_deemph
E_UTIL_dot_product12
E_UTIL_enc_synthesis
E_UTIL_f_convolve
E_UTIL_f_preemph
E_UTIL_hp50_12k8
E_UTIL_l_extract
E_UTIL_log2_32
E_UTIL_mpy_32_16
E_UTIL_norm_l
E_UTIL_norm_s
E_UTIL_normalised_inverse_sqrt
E_UTIL_pow2
E_UTIL_preemph
E_UTIL_random
E_UTIL_residu
E_UTIL_saturate
E_UTIL_saturate_31
E_UTIL_signal_down_scale
E_UTIL_signal_up_scale
E_UTIL_synthesis
EncodeData
Encoder_Interface_exit
ExitMP3
ExpandToken
ExtraBitLengths_VP31
FilterBank
FilterBankEnd
FilterBankInit
FindNearestBitrate
FrArrayUnpackMode
FrequencyCounts_VP3
GASpecificConfig
GP3D_IF_decode
GP3Decoder_Interface_Decode
GP3E_IF_encode
GP3VADxEncoder_Interface_Encode
GP3block_size
GetAlbumGain
GetChannelInfo
GetEstimatedBpb
GetFOURMVExhaustiveSearch
GetFrameType
GetMBInterError
GetMBIntraError
GetMBMVExhaustiveSearch
GetMBMVInterError
GetMaxPredSfb
GetSRIndex
GetTitleGain
GetVbrTag
Gsm_Coder
Gsm_Decoder
Gsm_LPC_Analysis
Gsm_Long_Term_Predictor
Gsm_Long_Term_Synthesis_Filtering
Gsm_Preprocess
Gsm_RPE_Decoding
Gsm_RPE_Encoding
Gsm_Short_Term_Analysis_Filter
Gsm_Short_Term_Synthesis_Filter
HuffmanEnd
HuffmanInit
IDct1
IDct10__c
IDct10__mmx
IDct3__mmx
IDctSlow__c
IDctSlow__mmx
IF2D_IF_decode
IF2Decoder_Interface_Decode
IF2E_IF_encode
IF2VADxEncoder_Interface_Encode
IF2block_size
IFilterBank
InitFragmentInfo
InitFrameDetails
InitFrameInfo
InitGainAnalysis
InitHuffmanSet
InitHuffmanTrees
InitMP3
InitMotionCompensation
InitPBInstance
InitPPInstance
InitQTables
InitTmpBuffers
InitVbrTag
InitializeFragCoordinates
KfBpbTable
L3psycho_anal_ns
L3psycho_anal_vbr
LTP_flag_update
LoadAndDecode
LoopFilter
LtpEncode
LtpEnd
LtpInit
LtpReconstruct
LtpUpdate
MPV_common_defaults
MPV_common_end
MPV_common_init
MPV_common_init_mmx
MPV_decode_defaults
MPV_decode_mb
MPV_encode_end
MPV_encode_init
MPV_encode_picture
MPV_frame_end
MPV_frame_start
MSEncode
MSReconstruct
MVChangeFactorTable
MaxBitrate
MaxBitresSize
MaxPredSfb
MinBitrate
ModeBitLengths
ModeBitPatterns
ModeSchemes
MvBits
MvBits2
MvPattern
MvPattern2
MvThreshTable
NeAACDecAudioSpecificConfig
NeAACDecClose
NeAACDecDecode
NeAACDecDecode2
NeAACDecGetCapabilities
NeAACDecGetCurrentConfiguration
NeAACDecGetErrorMessage
NeAACDecInit
NeAACDecInit2
NeAACDecOpen
NeAACDecPostSeekReset
NeAACDecSetConfiguration
NoiselessBitCount
OC_DCT_TOKEN_EXTRA_BITS
OC_FRAME_FOR_MODE
OC_FZIG_ZAG
OC_IZIG_ZAG
OC_MB_MAP
OC_MB_MAP_IDXS
OC_MB_MAP_NIDXS
OC_SET_CHROMA_MVS_TABLE
OpenBitStream
OutputBits
PInitFrameInfo
PackAndWriteDFArray
PickIntra
PickModes
PostProcess
PredCalcPrediction
PredInit
PriorKeyFrameWeight
PutBit
PutVbrTag
QuadDecodeDisplayFragments
ReadFilterTables
ReadHuffmanTrees
ReconRefFrames
RegulateQ
ResetSampleFrequency
ResidueBlockFactor
ResidueErrorThresh
ResvAdjust
ResvFrameBegin
ResvFrameEnd
ResvMaxBits
ScanYUVInit
SetFrameType
SetupLoopFilter
SmpFrqIndex
SortBookNumbers
SortForGrouping
Speech_Decode_Frame
Speech_Decode_Frame_exit
Speech_Decode_Frame_init
Speech_Decode_Frame_reset
Speech_Encode_Frame_exit
TH_VP31_QUANT_INFO
TnsDecodeFilterOnly
TnsEncode
TnsEncodeFilterOnly
TnsInit
TransformQuantizeBlock
UpRegulateDataStream
UpdateFragQIndex
UpdateMusicCRC
UpdateQ
UpdateQC
UpdateUMVBorder
VADxEncoder_Interface_init
VADxSpeech_Encode_Frame
VADxSpeech_Encode_Frame_init
VADxSpeech_Encode_Frame_reset
VBR_encode_frame
VBR_new_iteration_loop
VBR_old_iteration_loop
WriteBitstream
WriteFrameHeader
WriteHuffmanTrees
WriteQTables
WriteScalefactors
YUVAnalyseFrame
_analysis_output
_analysis_output_always
_best
_book_maptype1_quantvals
_book_unquantize
_dist_code
_fht_3DN
_float32_pack
_float32_unpack
_floor_P
_ilog
_length_code
_make_words
_mapping_P
_residue_P
_tr_align
_tr_flush_block
_tr_init
_tr_stored_block
_tr_tally
_ve_envelope_clear
_ve_envelope_init
_ve_envelope_mark
_ve_envelope_search
_ve_envelope_shift
_vi_gpsy_free
_vi_psy_free
_vorbis_apply_window
_vorbis_block_alloc
_vorbis_block_ripcord
_vorbis_window_get
_vp_ampmax_decay
_vp_couple
_vp_global_free
_vp_global_look
_vp_noise_normalize
_vp_noise_normalize_sort
_vp_noisemask
_vp_offset_and_mix
_vp_psy_clear
_vp_psy_init
_vp_quantize_couple_memo
_vp_quantize_couple_sort
_vp_remove_floor
_vp_tonemask
a52_bit_allocate
a52_bitstream_get_bh
a52_bitstream_get_bh_2
a52_bitstream_set_ptr
a52_block
a52_downmix
a52_downmix_coeff
a52_downmix_init
a52_dynrng
a52_frame
a52_free

Sections

.text
Size: 4.8MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 982KB - Virtual size: 982KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/Codes/avdevice.dll
.dll windows:4 windows x86 arch:x86

5c45e3570e388fed8aa465c4efbfd97e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

avutil

av_free
av_log
av_malloc
av_mallocz

avformat

av_new_packet
av_new_stream
av_register_input_format
av_set_pts_info

kernel32

CloseHandle
CreateEventA
CreateMutexA
GetModuleHandleA
GetProcAddress
ReleaseMutex
ResetEvent
SetEvent
WaitForSingleObject

msvcrt

__dllonexit
_errno
atoi
fflush
free
malloc
memcpy

user32

DestroyWindow
GetWindowLongA
SendMessageA
SetWindowLongA

avicap32

capCreateCaptureWindowA

Exports

Exports

avdevice_register_all
vfwcap_demuxer

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 112B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/Codes/avformat.dll
.dll windows:4 windows x86 arch:x86

e39c6f902e294922e1473096ca5ef96c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

avutil

av_adler32_update
av_aes_crypt
av_aes_init
av_aes_size
av_base64_decode
av_base64_encode
av_crc
av_crc_get_table
av_d2q
av_dbl2ext
av_dbl2int
av_div_q
av_ext2dbl
av_fifo_drain
av_fifo_free
av_fifo_generic_read
av_fifo_init
av_fifo_read
av_fifo_realloc
av_fifo_size
av_fifo_write
av_free
av_freep
av_int2dbl
av_int2flt
av_log
av_malloc
av_mallocz
av_md5_final
av_md5_init
av_md5_size
av_md5_update
av_mul_q
av_realloc
av_reduce
av_rescale
av_rescale_q
av_rescale_rnd
av_strdup
av_stristart
av_strlcat
av_strlcatf
av_strlcpy
av_strstart
av_tree_find
av_tree_insert
av_tree_node_size
ff_des_encdec
ff_gcd
ff_log2_tab
ff_rc4_enc
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
ff_log2_tab
av_md5_size
av_aes_size
av_tree_node_size

avcodec

av_fast_realloc
av_get_bits_per_sample
av_get_bits_per_sample_format
av_opt_set_defaults
av_parse_video_frame_rate
av_parse_video_frame_size
av_parser_close
av_parser_init
av_parser_parse
av_xiphlacing
avcodec_alloc_context
avcodec_close
avcodec_decode_audio2
avcodec_decode_video
avcodec_find_decoder
avcodec_find_encoder
avcodec_get_chroma_sub_sample
avcodec_init
avcodec_open
avcodec_pix_fmt_to_codec_tag
avcodec_register_all
avcodec_set_dimensions
avcodec_string
avpicture_get_size
ff_ac3_parse_header
ff_find_start_code
ff_frame_rate_tab
ff_mpa_bitrate_tab
ff_mpa_decode_header
ff_mpa_freq_tab
ff_mpeg4audio_sample_rates
ff_mpegaudio_decode_header
ff_split_xiph_headers
ff_frame_rate_tab
ff_frame_rate_tab
ff_mpeg4audio_sample_rates
ff_mpeg4audio_sample_rates
ff_mpeg4audio_sample_rates
ff_mpeg4audio_sample_rates
ff_mpa_freq_tab
ff_mpa_freq_tab
ff_mpa_freq_tab
ff_mpa_bitrate_tab
ff_mpa_bitrate_tab
ff_mpa_bitrate_tab

kernel32

DeleteCriticalSection
EnterCriticalSection
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
InitializeCriticalSection
InterlockedExchange
LeaveCriticalSection
Sleep

msvcrt

_close
_open
_read
_setmode
_write
__dllonexit
__mb_cur_max
_assert
_atoi64
_errno
_isctype
_lseeki64
_pctype
_stricmp
abort
atoi
fflush
fprintf
fputc
free
fwrite
getenv
gmtime
localtime
malloc
memchr
memcpy
memmove
memset
mktime
sscanf
strchr
strcmp
strcpy
strerror
strlen
strncmp
strncpy
strrchr
strstr
strtol
time
toupper

avifil32

AVIFileExit
AVIFileGetStream
AVIFileInfoA
AVIFileInit
AVIFileOpenA
AVIFileRelease
AVIStreamInfoA
AVIStreamRead
AVIStreamReadFormat
AVIStreamRelease

ws2_32

WSACleanup
WSAGetLastError
WSAStartup
__WSAFDIsSet
bind
closesocket
connect
gethostbyname
gethostname
getsockname
getsockopt
htonl
htons
inet_ntoa
ioctlsocket
ntohl
ntohs
recv
recvfrom
select
send
sendto
setsockopt
socket

Exports

Exports

RTPFirstDynamicPayloadHandler
__dynarray_add
a4v_muxer
aac_demuxer
ac3_demuxer
ac3_muxer
adler32
adler32_combine
adts_muxer
aiff_demuxer
aiff_muxer
amr_demuxer
amr_muxer
apc_demuxer
ape_demuxer
asf_demuxer
asf_muxer
asf_stream_muxer
au_demuxer
au_muxer
av_add_index_entry
av_alloc_format_context
av_alloc_put_byte
av_close_input_file
av_close_input_stream
av_codec_get_id
av_codec_get_tag
av_destruct_packet
av_destruct_packet_nofree
av_dup_packet
av_filename_number_test
av_find_default_stream_index
av_find_input_format
av_find_stream_info
av_gen_search
av_get_frame_filename
av_get_packet
av_gettime
av_guess_codec
av_guess_image2_codec
av_hex_dump
av_hex_dump_log
av_iformat_next
av_index_search_timestamp
av_init_packet
av_interleave_packet_per_dts
av_interleaved_write_frame
av_new_packet
av_new_program
av_new_stream
av_oformat_next
av_open_input_file
av_open_input_stream
av_pkt_dump
av_pkt_dump_log
av_probe_input_format
av_program_add_stream_index
av_protocol_next
av_read_frame
av_read_packet
av_read_pause
av_read_play
av_register_all
av_register_input_format
av_register_output_format
av_register_rtp_dynamic_payload_handlers
av_seek_frame
av_seek_frame_binary
av_set_parameters
av_set_program_name
av_set_pts_info
av_update_cur_dts
av_url_read_fpause
av_url_read_fseek
av_url_read_pause
av_url_read_seek
av_write_frame
av_write_header
av_write_trailer
avf_sdp_create
avi_demuxer
avi_muxer
avisynth_demuxer
avm2_muxer
avs_demuxer
bethsoftvid_demuxer
brktimegm
c93_demuxer
codec_bmp_tags
codec_get_id
codec_get_tag
codec_movaudio_tags
codec_movvideo_tags
codec_wav_tags
crc32
crc32_combine
crc_muxer
daud_demuxer
dsicin_demuxer
dts_demuxer
dump_format
dv_assemble_frame
dv_delete_mux
dv_demuxer
dv_get_packet
dv_init_demux
dv_init_mux
dv_muxer
dv_offset_reset
dv_produce_packet
dxa_demuxer
ea_cdata_demuxer
ea_demuxer
end_tag
ff_asfcrypt_dec
ff_avc_find_startcode
ff_avc_parse_nal_units
ff_codec_movsubtitle_tags
ff_crc04C11DB7_update
ff_get_v
ff_h264_dynamic_handler
ff_isom_write_avcc
ff_lsb2full
ff_mkv_codec_tags
ff_mkv_mime_tags
ff_mov_iso639_to_lang
ff_mov_lang_to_iso639
ff_mp4_obj_type
ff_nut_add_sp
ff_nut_dispositions
ff_nut_reset_ts
ff_nut_sp_pos_cmp
ff_nut_sp_pts_cmp
ff_nut_subtitle_tags
ff_parse_specific_params
ff_reduce_index
ff_rm_parse_packet
ff_rm_read_mdpr_codecdata
ff_rm_retrieve_cache
ff_rtp_codec_id
ff_rtp_enc_name
ff_rtp_send_aac
ff_rtp_send_data
ff_rtp_send_h264
ff_rtp_send_mpegvideo
ff_socket_nonblock
ffm_demuxer
ffm_muxer
ffm_nopts
file_protocol
find_info_tag
first_iformat
first_oformat
first_protocol
flac_codec
flac_demuxer
flac_muxer
flic_demuxer
flv_demuxer
flv_muxer
fourxm_demuxer
framecrc_muxer
get_be16
get_be24
get_be32
get_be64
get_buffer
get_byte
get_checksum
get_crc_table
get_le16
get_le24
get_le32
get_le64
get_partial_buffer
get_strz
get_wav_header
gif_demuxer
gif_muxer
guess_format
guess_stream_format
gxf_demuxer
gxf_muxer
h261_demuxer
h261_muxer
h263_demuxer
h263_muxer
h264_demuxer
h264_muxer
http_protocol
idcin_demuxer
iff_demuxer
image2_demuxer
image2_muxer
image2pipe_demuxer
image2pipe_muxer
inet_aton
inflate
inflateCopy
inflateEnd
inflateGetHeader
inflateInit2_
inflateInit_
inflatePrime
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
inflate_copyright
inflate_fast
inflate_table
ingenient_demuxer
init_checksum
init_put_byte
ipmovie_demuxer
ipod_muxer
lmlm4_demuxer
m4v_demuxer
m4v_muxer
match_ext
matroska_audio_muxer
matroska_demuxer
matroska_muxer
mjpeg_demuxer
mjpeg_muxer
mktimegm
mm_demuxer
mmf_demuxer
mmf_muxer
mov_demuxer
mov_muxer
mp2_muxer
mp3_demuxer
mp3_muxer
mp4_muxer
mpc8_demuxer
mpc_demuxer
mpeg1system_muxer
mpeg1vcd_muxer
mpeg1video_muxer
mpeg2dvd_muxer
mpeg2svcd_muxer
mpeg2video_muxer
mpeg2vob_muxer
mpegps_demuxer
mpegts_demuxer
mpegts_muxer
mpegts_parse_close
mpegts_parse_open
mpegts_parse_packet
mpegtsraw_demuxer
mpegvideo_demuxer
mpjpeg_muxer
msnwc_tcp_demuxer
mtv_demuxer
mxf_demuxer
nsv_demuxer
null_muxer
nut_demuxer
nut_muxer
nuv_demuxer
ogg_demuxer
ogg_interleave_per_granule
ogg_muxer
ogm_audio_codec
ogm_old_codec
ogm_text_codec
ogm_video_codec
old_flac_codec
parse_date
parse_frame_rate
parse_image_size
pcm_alaw_demuxer
pcm_alaw_muxer
pcm_mulaw_demuxer
pcm_mulaw_muxer
pcm_read_seek
pcm_s16be_demuxer
pcm_s16be_muxer
pcm_s16le_demuxer
pcm_s16le_muxer
pcm_s8_demuxer
pcm_s8_muxer
pcm_u16be_demuxer
pcm_u16be_muxer
pcm_u16le_demuxer
pcm_u16le_muxer
pcm_u8_demuxer
pcm_u8_muxer
pipe_protocol
psp_muxer
put_be16
put_be24
put_be32
put_be64
put_bmp_header
put_buffer
put_byte
put_flush_packet
put_le16
put_le24
put_le32
put_le64
put_strz
put_tag
put_wav_header
pva_demuxer
rawvideo_demuxer
rawvideo_muxer
redir_demuxer
register_protocol
resolve_host
rl2_demuxer
rm_demuxer
rm_muxer
roq_demuxer
roq_muxer
rpl_demuxer
rtp_check_and_send_back_rr
rtp_get_codec_info
rtp_get_file_handles
rtp_get_local_port
rtp_get_payload_type
rtp_muxer
rtp_parse_close
rtp_parse_open
rtp_parse_packet
rtp_protocol
rtp_set_remote_url
rtsp_default_protocols
rtsp_demuxer
rtsp_next_attr_and_value
rtsp_parse_line
sdp_demuxer
segafilm_demuxer
shorten_demuxer
siff_demuxer
smacker_demuxer
small_strptime
sol_demuxer
speex_codec
start_tag
str_demuxer
swf_demuxer
swf_muxer
tcp_protocol
tg2_muxer
tgp_muxer
theora_codec
thp_demuxer
tiertexseq_demuxer
tta_demuxer
txd_demuxer
udp_get_file_handle
udp_get_local_port
udp_protocol
udp_set_remote_url
uncompress
url_close
url_close_buf
url_close_dyn_buf
url_exist
url_fclose
url_fdopen
url_feof
url_ferror
url_fget_max_packet_size
url_fgetc
url_fgets
url_fileno
url_filesize
url_fopen
url_fprintf
url_fseek
url_fsize
url_fskip
url_ftell
url_get_filename
url_get_max_packet_size
url_interrupt_cb
url_open
url_open_buf
url_open_dyn_buf
url_open_dyn_packet_buf
url_read
url_resetbuf
url_seek
url_set_interrupt_cb
url_setbufsize
url_split
url_write
vc1_demuxer
vc1t_demuxer
vmd_demuxer
voc_codec_tags
voc_demuxer
voc_get_packet
voc_magic
voc_muxer
vorbis_codec
vorbis_comment
wav_codec_get_id
wav_demuxer
wav_muxer
wc3_demuxer
wsaud_demuxer
wsvqa_demuxer
wv_demuxer
yuv4mpegpipe_demuxer
yuv4mpegpipe_muxer
zError
z_errmsg
zcalloc
zcfree
zlibCompileFlags
zlibVersion

Sections

.text
Size: 515KB - Virtual size: 514KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/Codes/avutil.dll
.dll windows:4 windows x86 arch:x86

992b69c582c34030072b7a8cd2843c32

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedExchange
LeaveCriticalSection
Sleep

msvcrt

__dllonexit
_errno
_iob
fflush
fprintf
free
frexp
ldexp
log
malloc
memcpy
memset
realloc
strchr
strlen
toupper
vfprintf

Exports

Exports

av_add_q
av_adler32_update
av_aes_crypt
av_aes_init
av_aes_size
av_base64_decode
av_base64_encode
av_crc
av_crc_get_table
av_crc_init
av_d2q
av_dbl2ext
av_dbl2int
av_div_q
av_evaluate_lls
av_ext2dbl
av_fifo_drain
av_fifo_free
av_fifo_generic_read
av_fifo_generic_write
av_fifo_init
av_fifo_read
av_fifo_realloc
av_fifo_size
av_fifo_write
av_flt2int
av_free
av_freep
av_init_lls
av_init_random
av_int2dbl
av_int2flt
av_log
av_log_default_callback
av_log_get_level
av_log_level
av_log_set_callback
av_log_set_level
av_malloc
av_mallocz
av_md5_final
av_md5_init
av_md5_size
av_md5_sum
av_md5_update
av_mul_q
av_random_generate_untempered_numbers
av_realloc
av_reduce
av_rescale
av_rescale_q
av_rescale_rnd
av_sha1_final
av_sha1_init
av_sha1_size
av_sha1_update
av_solve_lls
av_strdup
av_stristart
av_strlcat
av_strlcatf
av_strlcpy
av_strstart
av_sub_q
av_tree_destroy
av_tree_find
av_tree_insert
av_tree_node_size
av_update_lls
av_vlog
ff_des_encdec
ff_gcd
ff_log2_tab
ff_rc4_enc
ff_sqrt_tab
lzo1x_decode

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/Codes/pthreadGC2.dll
.dll windows:4 windows x86 arch:x86

b534dc0ca0a3786d3093d30e4a577324

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetLastError
GetProcAddress
GetProcessAffinityMask
GetThreadContext
GetThreadPriority
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
LeaveCriticalSection
LoadLibraryA
OpenProcess
ReleaseSemaphore
ResetEvent
ResumeThread
SetEvent
SetLastError
SetThreadContext
SetThreadPriority
Sleep
SuspendThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
WaitForMultipleObjects
WaitForSingleObject

msvcrt

__dllonexit
_beginthreadex
_endthreadex
_errno
_ftime
_setjmp
calloc
exit
fflush
free
longjmp
malloc
memcpy
memset

wsock32

WSAGetLastError
WSASetLastError

Exports

Exports

pthreadCancelableTimedWait
pthreadCancelableWait
pthread_attr_destroy
pthread_attr_getdetachstate
pthread_attr_getinheritsched
pthread_attr_getschedparam
pthread_attr_getschedpolicy
pthread_attr_getscope
pthread_attr_getstackaddr
pthread_attr_getstacksize
pthread_attr_init
pthread_attr_setdetachstate
pthread_attr_setinheritsched
pthread_attr_setschedparam
pthread_attr_setschedpolicy
pthread_attr_setscope
pthread_attr_setstackaddr
pthread_attr_setstacksize
pthread_barrier_destroy
pthread_barrier_init
pthread_barrier_wait
pthread_barrierattr_destroy
pthread_barrierattr_getpshared
pthread_barrierattr_init
pthread_barrierattr_setpshared
pthread_cancel
pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_init
pthread_cond_signal
pthread_cond_timedwait
pthread_cond_wait
pthread_condattr_destroy
pthread_condattr_getpshared
pthread_condattr_init
pthread_condattr_setpshared
pthread_create
pthread_delay_np
pthread_detach
pthread_equal
pthread_exit
pthread_getconcurrency
pthread_getschedparam
pthread_getspecific
pthread_getw32threadhandle_np
pthread_join
pthread_key_create
pthread_key_delete
pthread_kill
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_timedlock
pthread_mutex_trylock
pthread_mutex_unlock
pthread_mutexattr_destroy
pthread_mutexattr_getkind_np
pthread_mutexattr_getpshared
pthread_mutexattr_gettype
pthread_mutexattr_init
pthread_mutexattr_setkind_np
pthread_mutexattr_setpshared
pthread_mutexattr_settype
pthread_num_processors_np
pthread_once
pthread_rwlock_destroy
pthread_rwlock_init
pthread_rwlock_rdlock
pthread_rwlock_timedrdlock
pthread_rwlock_timedwrlock
pthread_rwlock_tryrdlock
pthread_rwlock_trywrlock
pthread_rwlock_unlock
pthread_rwlock_wrlock
pthread_rwlockattr_destroy
pthread_rwlockattr_getpshared
pthread_rwlockattr_init
pthread_rwlockattr_setpshared
pthread_self
pthread_setcancelstate
pthread_setcanceltype
pthread_setconcurrency
pthread_setschedparam
pthread_setspecific
pthread_spin_destroy
pthread_spin_init
pthread_spin_lock
pthread_spin_trylock
pthread_spin_unlock
pthread_testcancel
pthread_timechange_handler_np
pthread_win32_process_attach_np
pthread_win32_process_detach_np
pthread_win32_test_features_np
pthread_win32_thread_attach_np
pthread_win32_thread_detach_np
ptw32_get_exception_services_code
ptw32_pop_cleanup
ptw32_push_cleanup
sched_get_priority_max
sched_get_priority_min
sched_getscheduler
sched_setscheduler
sched_yield
sem_close
sem_destroy
sem_getvalue
sem_init
sem_open
sem_post
sem_post_multiple
sem_timedwait
sem_trywait
sem_unlink
sem_wait

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 368B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stab
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_DISCARDABLE

.stabstr
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_MEM_DISCARDABLE
PCHand Screen Recorder/Codes/swscale.dll
.dll windows:4 windows x86 arch:x86

4e404d529fb415e5e1a29e1ff94df66a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

avutil

av_free
av_log
av_malloc
av_mallocz

kernel32

GetModuleHandleA
GetProcAddress

msvcrt

__dllonexit
_errno
ceil
cos
exp
fflush
floor
free
malloc
memcpy
memset
pow
sin

Exports

Exports

Inverse_Table_6_9
dither_2x2_4
dither_2x2_8
dither_8x8_220
dither_8x8_32
dither_8x8_73
ff_M24A
ff_M24B
ff_M24C
ff_bgr2UCoeff
ff_bgr2UVOffset
ff_bgr2VCoeff
ff_bgr2YCoeff
ff_bgr2YOffset
ff_dither4
ff_dither8
ff_w1111
in_asm_used_var_warning_killer
interleaveBytes
interleaveBytes_3DNOW
interleaveBytes_C
interleaveBytes_MMX
interleaveBytes_MMX2
palette8tobgr15
palette8tobgr16
palette8tobgr24
palette8tobgr32
palette8torgb15
palette8torgb16
palette8torgb24
palette8torgb32
planar2x
rgb15to16
rgb15to24
rgb15to32
rgb15tobgr15
rgb15tobgr16
rgb15tobgr24
rgb15tobgr32
rgb16to15
rgb16to24
rgb16to32
rgb16tobgr15
rgb16tobgr16
rgb16tobgr24
rgb16tobgr32
rgb24to15
rgb24to16
rgb24to32
rgb24tobgr15
rgb24tobgr16
rgb24tobgr24
rgb24tobgr32
rgb24toyv12
rgb32to15
rgb32to16
rgb32to24
rgb32tobgr15
rgb32tobgr16
rgb32tobgr24
rgb32tobgr32
rgb8tobgr8
sws_addVec
sws_cloneVec
sws_convVec
sws_dcVec
sws_format_name
sws_freeContext
sws_freeFilter
sws_freeVec
sws_getCachedContext
sws_getColorspaceDetails
sws_getConstVec
sws_getContext
sws_getDefaultFilter
sws_getGaussianVec
sws_getIdentityVec
sws_normalizeVec
sws_printVec
sws_rgb2rgb_init
sws_scale
sws_scaleVec
sws_scale_ordered
sws_setColorspaceDetails
sws_shiftVec
sws_subVec
vu9_to_vu12
yuv2rgb_c_init_tables
yuv2rgb_get_func_ptr
yuv422ptoyuy2
yuy2toyv12
yv12touyvy
yv12toyuy2
yvu9_to_yuy2

Sections

.text
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/Codes/xvidcore.dll
.dll windows:4 windows x86 arch:x86

108e0368c52a336c6ea4af0628bb7fd3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateThread
GetCurrentProcess
GetProcessAffinityMask
Sleep
WaitForSingleObject

msvcrt

__dllonexit
_errno
_setjmp
fclose
fflush
fgetc
fopen
fprintf
free
fwrite
longjmp
malloc
memcpy
memset
printf
rand
realloc
setbuf
signal
sprintf
srand
sscanf
strerror
strlen
vsprintf

Exports

Exports

xvid_decore
xvid_encore
xvid_global
xvid_plugin_2pass1
xvid_plugin_2pass2
xvid_plugin_dump
xvid_plugin_lumimasking
xvid_plugin_psnr
xvid_plugin_single
xvid_plugin_ssim

Sections

.text
Size: 584KB - Virtual size: 584KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 460KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 321B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stab
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_MEM_DISCARDABLE

.stabstr
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_MEM_DISCARDABLE
PCHand Screen Recorder/Config.ini
PCHand Screen Recorder/Gdiplus.dll
.dll windows:5 windows x86 arch:x86

68a82f89c3fde2fdb45bbeddb19a9697

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

microsoftwindowsgdiplus-1.0.2600.5512-gdiplus.pdb

Imports

advapi32

RegOpenKeyW
RegOpenKeyA
RegCloseKey
RegEnumValueW
RegQueryInfoKeyA
RegOpenKeyExA
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExA
RegQueryValueExW
RegEnumKeyExA
RegEnumKeyExW
RegCreateKeyExA
RegSetValueExW
RegSetValueExA
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyExW
RegEnumValueA

gdi32

GetDIBColorTable
FillRgn
SetMiterLimit
CreateSolidBrush
StrokePath
GetGraphicsMode
SetPolyFillMode
FillPath
StrokeAndFillPath
PolyPolyline
GetNearestPaletteIndex
ExtTextOutA
GetTextCharsetInfo
TranslateCharsetInfo
PolylineTo
Polyline
LineTo
GetCurrentPositionEx
ArcTo
SetArcDirection
SelectClipPath
GetPath
CloseFigure
AbortPath
FlattenPath
WidenPath
BeginPath
Ellipse
AngleArc
PolyBezierTo
PolyBezier
RoundRect
PolyDraw
Pie
Chord
Arc
EndPath
OffsetClipRgn
GetRgnBox
CombineRgn
SetPaletteEntries
ResizePalette
ExcludeClipRect
MoveToEx
PlayEnhMetaFile
GetWinMetaFileBits
PlgBlt
BitBlt
OffsetViewportOrgEx
StretchBlt
ScaleViewportExtEx
ScaleWindowExtEx
CombineTransform
SetMapperFlags
CreatePen
CreateDIBitmap
CreatePatternBrush
ExtSelectClipRgn
GetBkMode
GetTextAlign
ModifyWorldTransform
ExtCreateRegion
CreateCompatibleBitmap
GetNearestColor
SetStretchBltMode
StretchDIBits
SetTextAlign
SetTextJustification
PolyPolygon
PlayMetaFileRecord
ExtCreatePen
GetWorldTransform
GetROP2
SetROP2
Rectangle
Polygon
IntersectClipRect
SetBrushOrgEx
GetClipRgn
SelectClipRgn
GetBkColor
GetTextColor
CreatePenIndirect
GetObjectW
DPtoLP
CreateDIBPatternBrushPt
ExtTextOutW
SetBitmapBits
SetDIBColorTable
CreateEnhMetaFileW
GdiComment
GetMetaFileW
GetMetaFileA
SaveDC
SetWindowOrgEx
SetViewportOrgEx
SetGraphicsMode
SetWorldTransform
GetEnhMetaFileW
GetEnhMetaFileA
GetEnhMetaFileBits
CopyEnhMetaFileA
CopyMetaFileA
DeleteMetaFile
GetEnhMetaFileHeader
SetMetaFileBitsEx
SetEnhMetaFileBits
CreateEnhMetaFileA
SetMapMode
SetViewportExtEx
SetWindowExtEx
PlayMetaFile
CloseEnhMetaFile
DeleteEnhMetaFile
SetMetaRgn
GetMetaFileBitsEx
EnumMetaFile
EnumEnhMetaFile
PlayEnhMetaFileRecord
RestoreDC
GetStockObject
CreateBitmap
SetTextColor
SetBkColor
SetBkMode
CreatePalette
GetSystemPaletteEntries
GetSystemPaletteUse
GetDeviceCaps
ExtEscape
GetObjectType
GetPixel
DeleteObject
SelectPalette
GetTextFaceA
GetTextMetricsA
GetTextFaceW
GetTextMetricsW
EnumFontFamiliesExA
EnumFontFamiliesExW
SelectObject
CreateFontIndirectW
CreateFontIndirectA
GetRegionData
DeleteDC
CreateDCA
CreateICA
CreateRectRgn
GetRandomRgn
LPtoDP
GetWindowExtEx
GetViewportExtEx
GetWindowOrgEx
GetViewportOrgEx
GetMapMode
SetICMMode
Escape
GetDCOrgEx
GetObjectA
GetCurrentObject
GetDIBits
CreateCompatibleDC
CreateDIBSection
RealizePalette
GetPaletteEntries
GdiFlush
PatBlt
CreateBrushIndirect
SetDIBits

kernel32

CreateSemaphoreA
InterlockedDecrement
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
InterlockedExchange
GetCurrentThreadId
InitializeCriticalSection
DeleteCriticalSection
DisableThreadLibraryCalls
QueryPerformanceCounter
GetTickCount
RaiseException
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
CloseHandle
WriteFile
CreateFileA
WaitForSingleObject
SetEvent
lstrcmpiA
CreateThread
CreateEventA
WideCharToMultiByte
MultiByteToWideChar
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCPInfo
VirtualQuery
RtlUnwind
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ExitProcess
GetCommandLineA
GetSystemInfo
HeapReAlloc
HeapFree
VirtualAlloc
IsValidLocale
ConvertDefaultLocale
GetLocaleInfoW
GetModuleFileNameW
GetModuleFileNameA
FindResourceA
LoadResource
LockResource
GetProfileIntA
GetProfileStringA
lstrcmpiW
IsDBCSLeadByteEx
LocalReAlloc
MulDiv
SetLastError
LocalAlloc
LocalFree
GetFileTime
SearchPathW
SearchPathA
GetOEMCP
InterlockedIncrement
LoadLibraryW
GetSystemDirectoryA
CreateFileMappingW
ReleaseSemaphore
GetProfileSectionA
CreateFileW
SetEndOfFile
SetFilePointer
ReadFile
UnlockFile
GetFileInformationByHandle
LockFile
FlushFileBuffers
GetLastError
VirtualFree
GlobalAlloc
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GlobalLock
GlobalSize
GlobalUnlock
GlobalFree
HeapCreate
GetModuleHandleA
GetSystemDirectoryW
GetWindowsDirectoryA
FreeLibrary
HeapDestroy
LoadLibraryA
GetVersionExA
GetACP
GetModuleHandleW
GetProcAddress
GetSystemDefaultLCID

ole32

CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal

user32

MsgWaitForMultipleObjects
LoadBitmapW
LoadBitmapA
wsprintfW
ReleaseDC
GetDC
wsprintfA
GetSysColor
UnregisterClassA
DestroyWindow
GetSystemMetrics
DefWindowProcA
CreateWindowExA
RegisterWindowMessageA
RegisterClassA
DispatchMessageA
TranslateMessage
PeekMessageA
GetClientRect
GetDesktopWindow
GetWindowRect
WindowFromDC
ClientToScreen
wvsprintfA
CreateIconIndirect
GetIconInfo
GetDCEx
GetWindowLongA
GetClassLongA
SystemParametersInfoA

Exports

Exports

GdipAddPathArc
GdipAddPathArcI
GdipAddPathBezier
GdipAddPathBezierI
GdipAddPathBeziers
GdipAddPathBeziersI
GdipAddPathClosedCurve
GdipAddPathClosedCurve2
GdipAddPathClosedCurve2I
GdipAddPathClosedCurveI
GdipAddPathCurve
GdipAddPathCurve2
GdipAddPathCurve2I
GdipAddPathCurve3
GdipAddPathCurve3I
GdipAddPathCurveI
GdipAddPathEllipse
GdipAddPathEllipseI
GdipAddPathLine
GdipAddPathLine2
GdipAddPathLine2I
GdipAddPathLineI
GdipAddPathPath
GdipAddPathPie
GdipAddPathPieI
GdipAddPathPolygon
GdipAddPathPolygonI
GdipAddPathRectangle
GdipAddPathRectangleI
GdipAddPathRectangles
GdipAddPathRectanglesI
GdipAddPathString
GdipAddPathStringI
GdipAlloc
GdipBeginContainer
GdipBeginContainer2
GdipBeginContainerI
GdipBitmapGetPixel
GdipBitmapLockBits
GdipBitmapSetPixel
GdipBitmapSetResolution
GdipBitmapUnlockBits
GdipClearPathMarkers
GdipCloneBitmapArea
GdipCloneBitmapAreaI
GdipCloneBrush
GdipCloneCustomLineCap
GdipCloneFont
GdipCloneFontFamily
GdipCloneImage
GdipCloneImageAttributes
GdipCloneMatrix
GdipClonePath
GdipClonePen
GdipCloneRegion
GdipCloneStringFormat
GdipClosePathFigure
GdipClosePathFigures
GdipCombineRegionPath
GdipCombineRegionRect
GdipCombineRegionRectI
GdipCombineRegionRegion
GdipComment
GdipCreateAdjustableArrowCap
GdipCreateBitmapFromDirectDrawSurface
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromGraphics
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromHICON
GdipCreateBitmapFromResource
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateCachedBitmap
GdipCreateCustomLineCap
GdipCreateFont
GdipCreateFontFamilyFromName
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCreateFontFromLogfontW
GdipCreateFromHDC
GdipCreateFromHDC2
GdipCreateFromHWND
GdipCreateFromHWNDICM
GdipCreateHBITMAPFromBitmap
GdipCreateHICONFromBitmap
GdipCreateHalftonePalette
GdipCreateHatchBrush
GdipCreateImageAttributes
GdipCreateLineBrush
GdipCreateLineBrushFromRect
GdipCreateLineBrushFromRectI
GdipCreateLineBrushFromRectWithAngle
GdipCreateLineBrushFromRectWithAngleI
GdipCreateLineBrushI
GdipCreateMatrix
GdipCreateMatrix2
GdipCreateMatrix3
GdipCreateMatrix3I
GdipCreateMetafileFromEmf
GdipCreateMetafileFromFile
GdipCreateMetafileFromStream
GdipCreateMetafileFromWmf
GdipCreateMetafileFromWmfFile
GdipCreatePath
GdipCreatePath2
GdipCreatePath2I
GdipCreatePathGradient
GdipCreatePathGradientFromPath
GdipCreatePathGradientI
GdipCreatePathIter
GdipCreatePen1
GdipCreatePen2
GdipCreateRegion
GdipCreateRegionHrgn
GdipCreateRegionPath
GdipCreateRegionRect
GdipCreateRegionRectI
GdipCreateRegionRgnData
GdipCreateSolidFill
GdipCreateStreamOnFile
GdipCreateStringFormat
GdipCreateTexture
GdipCreateTexture2
GdipCreateTexture2I
GdipCreateTextureIA
GdipCreateTextureIAI
GdipDeleteBrush
GdipDeleteCachedBitmap
GdipDeleteCustomLineCap
GdipDeleteFont
GdipDeleteFontFamily
GdipDeleteGraphics
GdipDeleteMatrix
GdipDeletePath
GdipDeletePathIter
GdipDeletePen
GdipDeletePrivateFontCollection
GdipDeleteRegion
GdipDeleteStringFormat
GdipDisposeImage
GdipDisposeImageAttributes
GdipDrawArc
GdipDrawArcI
GdipDrawBezier
GdipDrawBezierI
GdipDrawBeziers
GdipDrawBeziersI
GdipDrawCachedBitmap
GdipDrawClosedCurve
GdipDrawClosedCurve2
GdipDrawClosedCurve2I
GdipDrawClosedCurveI
GdipDrawCurve
GdipDrawCurve2
GdipDrawCurve2I
GdipDrawCurve3
GdipDrawCurve3I
GdipDrawCurveI
GdipDrawDriverString
GdipDrawEllipse
GdipDrawEllipseI
GdipDrawImage
GdipDrawImageI
GdipDrawImagePointRect
GdipDrawImagePointRectI
GdipDrawImagePoints
GdipDrawImagePointsI
GdipDrawImagePointsRect
GdipDrawImagePointsRectI
GdipDrawImageRect
GdipDrawImageRectI
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipDrawLine
GdipDrawLineI
GdipDrawLines
GdipDrawLinesI
GdipDrawPath
GdipDrawPie
GdipDrawPieI
GdipDrawPolygon
GdipDrawPolygonI
GdipDrawRectangle
GdipDrawRectangleI
GdipDrawRectangles
GdipDrawRectanglesI
GdipDrawString
GdipEmfToWmfBits
GdipEndContainer
GdipEnumerateMetafileDestPoint
GdipEnumerateMetafileDestPointI
GdipEnumerateMetafileDestPoints
GdipEnumerateMetafileDestPointsI
GdipEnumerateMetafileDestRect
GdipEnumerateMetafileDestRectI
GdipEnumerateMetafileSrcRectDestPoint
GdipEnumerateMetafileSrcRectDestPointI
GdipEnumerateMetafileSrcRectDestPoints
GdipEnumerateMetafileSrcRectDestPointsI
GdipEnumerateMetafileSrcRectDestRect
GdipEnumerateMetafileSrcRectDestRectI
GdipFillClosedCurve
GdipFillClosedCurve2
GdipFillClosedCurve2I
GdipFillClosedCurveI
GdipFillEllipse
GdipFillEllipseI
GdipFillPath
GdipFillPie
GdipFillPieI
GdipFillPolygon
GdipFillPolygon2
GdipFillPolygon2I
GdipFillPolygonI
GdipFillRectangle
GdipFillRectangleI
GdipFillRectangles
GdipFillRectanglesI
GdipFillRegion
GdipFlattenPath
GdipFlush
GdipFree
GdipGetAdjustableArrowCapFillState
GdipGetAdjustableArrowCapHeight
GdipGetAdjustableArrowCapMiddleInset
GdipGetAdjustableArrowCapWidth
GdipGetAllPropertyItems
GdipGetBrushType
GdipGetCellAscent
GdipGetCellDescent
GdipGetClip
GdipGetClipBounds
GdipGetClipBoundsI
GdipGetCompositingMode
GdipGetCompositingQuality
GdipGetCustomLineCapBaseCap
GdipGetCustomLineCapBaseInset
GdipGetCustomLineCapStrokeCaps
GdipGetCustomLineCapStrokeJoin
GdipGetCustomLineCapType
GdipGetCustomLineCapWidthScale
GdipGetDC
GdipGetDpiX
GdipGetDpiY
GdipGetEmHeight
GdipGetEncoderParameterList
GdipGetEncoderParameterListSize
GdipGetFamily
GdipGetFamilyName
GdipGetFontCollectionFamilyCount
GdipGetFontCollectionFamilyList
GdipGetFontHeight
GdipGetFontHeightGivenDPI
GdipGetFontSize
GdipGetFontStyle
GdipGetFontUnit
GdipGetGenericFontFamilyMonospace
GdipGetGenericFontFamilySansSerif
GdipGetGenericFontFamilySerif
GdipGetHatchBackgroundColor
GdipGetHatchForegroundColor
GdipGetHatchStyle
GdipGetHemfFromMetafile
GdipGetImageAttributesAdjustedPalette
GdipGetImageBounds
GdipGetImageDecoders
GdipGetImageDecodersSize
GdipGetImageDimension
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGetImageFlags
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipGetImageHorizontalResolution
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageRawFormat
GdipGetImageThumbnail
GdipGetImageType
GdipGetImageVerticalResolution
GdipGetImageWidth
GdipGetInterpolationMode
GdipGetLineBlend
GdipGetLineBlendCount
GdipGetLineColors
GdipGetLineGammaCorrection
GdipGetLinePresetBlend
GdipGetLinePresetBlendCount
GdipGetLineRect
GdipGetLineRectI
GdipGetLineSpacing
GdipGetLineTransform
GdipGetLineWrapMode
GdipGetLogFontA
GdipGetLogFontW
GdipGetMatrixElements
GdipGetMetafileDownLevelRasterizationLimit
GdipGetMetafileHeaderFromEmf
GdipGetMetafileHeaderFromFile
GdipGetMetafileHeaderFromMetafile
GdipGetMetafileHeaderFromStream
GdipGetMetafileHeaderFromWmf
GdipGetNearestColor
GdipGetPageScale
GdipGetPageUnit
GdipGetPathData
GdipGetPathFillMode
GdipGetPathGradientBlend
GdipGetPathGradientBlendCount
GdipGetPathGradientCenterColor
GdipGetPathGradientCenterPoint
GdipGetPathGradientCenterPointI
GdipGetPathGradientFocusScales
GdipGetPathGradientGammaCorrection
GdipGetPathGradientPath
GdipGetPathGradientPointCount
GdipGetPathGradientPresetBlend
GdipGetPathGradientPresetBlendCount
GdipGetPathGradientRect
GdipGetPathGradientRectI
GdipGetPathGradientSurroundColorCount
GdipGetPathGradientSurroundColorsWithCount
GdipGetPathGradientTransform
GdipGetPathGradientWrapMode
GdipGetPathLastPoint
GdipGetPathPoints
GdipGetPathPointsI
GdipGetPathTypes
GdipGetPathWorldBounds
GdipGetPathWorldBoundsI
GdipGetPenBrushFill
GdipGetPenColor
GdipGetPenCompoundArray
GdipGetPenCompoundCount
GdipGetPenCustomEndCap
GdipGetPenCustomStartCap
GdipGetPenDashArray
GdipGetPenDashCap197819
GdipGetPenDashCount
GdipGetPenDashOffset
GdipGetPenDashStyle
GdipGetPenEndCap
GdipGetPenFillType
GdipGetPenLineJoin
GdipGetPenMiterLimit
GdipGetPenMode
GdipGetPenStartCap
GdipGetPenTransform
GdipGetPenUnit
GdipGetPenWidth
GdipGetPixelOffsetMode
GdipGetPointCount
GdipGetPropertyCount
GdipGetPropertyIdList
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipGetPropertySize
GdipGetRegionBounds
GdipGetRegionBoundsI
GdipGetRegionData
GdipGetRegionDataSize
GdipGetRegionHRgn
GdipGetRegionScans
GdipGetRegionScansCount
GdipGetRegionScansI
GdipGetRenderingOrigin
GdipGetSmoothingMode
GdipGetSolidFillColor
GdipGetStringFormatAlign
GdipGetStringFormatDigitSubstitution
GdipGetStringFormatFlags
GdipGetStringFormatHotkeyPrefix
GdipGetStringFormatLineAlign
GdipGetStringFormatMeasurableCharacterRangeCount
GdipGetStringFormatTabStopCount
GdipGetStringFormatTabStops
GdipGetStringFormatTrimming
GdipGetTextContrast
GdipGetTextRenderingHint
GdipGetTextureImage
GdipGetTextureTransform
GdipGetTextureWrapMode
GdipGetVisibleClipBounds
GdipGetVisibleClipBoundsI
GdipGetWorldTransform
GdipGraphicsClear
GdipImageForceValidation
GdipImageGetFrameCount
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageRotateFlip
GdipImageSelectActiveFrame
GdipInvertMatrix
GdipIsClipEmpty
GdipIsEmptyRegion
GdipIsEqualRegion
GdipIsInfiniteRegion
GdipIsMatrixEqual
GdipIsMatrixIdentity
GdipIsMatrixInvertible
GdipIsOutlineVisiblePathPoint
GdipIsOutlineVisiblePathPointI
GdipIsStyleAvailable
GdipIsVisibleClipEmpty
GdipIsVisiblePathPoint
GdipIsVisiblePathPointI
GdipIsVisiblePoint
GdipIsVisiblePointI
GdipIsVisibleRect
GdipIsVisibleRectI
GdipIsVisibleRegionPoint
GdipIsVisibleRegionPointI
GdipIsVisibleRegionRect
GdipIsVisibleRegionRectI
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipMeasureCharacterRanges
GdipMeasureDriverString
GdipMeasureString
GdipMultiplyLineTransform
GdipMultiplyMatrix
GdipMultiplyPathGradientTransform
GdipMultiplyPenTransform
GdipMultiplyTextureTransform
GdipMultiplyWorldTransform
GdipNewInstalledFontCollection
GdipNewPrivateFontCollection
GdipPathIterCopyData
GdipPathIterEnumerate
GdipPathIterGetCount
GdipPathIterGetSubpathCount
GdipPathIterHasCurve
GdipPathIterIsValid
GdipPathIterNextMarker
GdipPathIterNextMarkerPath
GdipPathIterNextPathType
GdipPathIterNextSubpath
GdipPathIterNextSubpathPath
GdipPathIterRewind
GdipPlayMetafileRecord
GdipPrivateAddFontFile
GdipPrivateAddMemoryFont
GdipRecordMetafile
GdipRecordMetafileFileName
GdipRecordMetafileFileNameI
GdipRecordMetafileI
GdipRecordMetafileStream
GdipRecordMetafileStreamI
GdipReleaseDC
GdipRemovePropertyItem
GdipResetClip
GdipResetImageAttributes
GdipResetLineTransform
GdipResetPageTransform
GdipResetPath
GdipResetPathGradientTransform
GdipResetPenTransform
GdipResetTextureTransform
GdipResetWorldTransform
GdipRestoreGraphics
GdipReversePath
GdipRotateLineTransform
GdipRotateMatrix
GdipRotatePathGradientTransform
GdipRotatePenTransform
GdipRotateTextureTransform
GdipRotateWorldTransform
GdipSaveAdd
GdipSaveAddImage
GdipSaveGraphics
GdipSaveImageToFile
GdipSaveImageToStream
GdipScaleLineTransform
GdipScaleMatrix
GdipScalePathGradientTransform
GdipScalePenTransform
GdipScaleTextureTransform
GdipScaleWorldTransform
GdipSetAdjustableArrowCapFillState
GdipSetAdjustableArrowCapHeight
GdipSetAdjustableArrowCapMiddleInset
GdipSetAdjustableArrowCapWidth
GdipSetClipGraphics
GdipSetClipHrgn
GdipSetClipPath
GdipSetClipRect
GdipSetClipRectI
GdipSetClipRegion
GdipSetCompositingMode
GdipSetCompositingQuality
GdipSetCustomLineCapBaseCap
GdipSetCustomLineCapBaseInset
GdipSetCustomLineCapStrokeCaps
GdipSetCustomLineCapStrokeJoin

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/Help.chm
.chm
PCHand Screen Recorder/Languages/ENG.xml
.xml
PCHand Screen Recorder/LogFile.dll
.dll windows:5 windows x86 arch:x86

acbbb5d810a1ed5922b1e3d7e3f8bcef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\FourSeas\Component\Project\LogFile\Bin\LogFile.pdb

Imports

kernel32

DeleteCriticalSection
CloseHandle
EnterCriticalSection
LeaveCriticalSection
WriteFile
SetFilePointer
DeleteFileW
ReadFile
GetFileSize
InitializeCriticalSection
FlushFileBuffers
GlobalMemoryStatus
GetNativeSystemInfo
GetVersionExW
GetUserDefaultLangID
CompareStringW
CompareStringA
GetModuleFileNameW
CreateDirectoryW
CreateFileW
MultiByteToWideChar
RtlUnwind
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCommandLineA
HeapAlloc
RaiseException
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
Sleep
HeapSize
ExitProcess
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeFormatA
GetDateFormatA
WideCharToMultiByte
GetTimeZoneInformation
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
VirtualAlloc
HeapReAlloc
LoadLibraryA
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetEnvironmentVariableA

user32

wsprintfW
GetSystemMetrics

advapi32

RegQueryValueExW
RegCloseKey
RegOpenKeyExW

Exports

Exports

FSLogA
FSLogW

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/Mouse.dll
.dll windows:5 windows x86 arch:x86

2e7ce04eb6ee4695d19db8055575b76b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetCurrentThreadId
GetCommandLineA
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
HeapFree
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
WriteFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize

user32

SetWindowsHookExA
SendMessageA
UnhookWindowsHookEx

Exports

Exports

?SetHook@@YAHPAUHWND__@@@Z
?UninstallMyHook@@YAXPAUHWND__@@@Z

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MySec
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/MultiLanguage.dll
.dll windows:5 windows x86 arch:x86

d5af6634443b3ef7ad2ba0a837f19719

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\FourSeas\Component\Project\MultiLanguage\Release\MultiLanguage.pdb

Imports

kernel32

TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
HeapAlloc
HeapFree
RtlUnwind
Sleep
ExitProcess
RaiseException
HeapSize
HeapReAlloc
VirtualAlloc
GetACP
IsValidCodePage
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
GetOEMCP
GetCPInfo
GetModuleHandleW
CreateFileA
GetCurrentProcess
FlushFileBuffers
SetFilePointer
WriteFile
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetVersionExA
InterlockedIncrement
FormatMessageA
GlobalFlags
WritePrivateProfileStringA
SetErrorMode
TlsFree
GlobalFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalUnlock
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalFree
LocalAlloc
InterlockedDecrement
GetModuleFileNameW
GetCurrentProcessId
GetLastError
SetLastError
GlobalAddAtomA
CloseHandle
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
LoadLibraryA
CompareStringA
FindResourceA
LoadResource
LockResource
SizeofResource
InterlockedExchange
GlobalLock
lstrcmpA
GlobalAlloc
FreeLibrary
GetModuleHandleA
GetProcAddress
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
FindClose
FindNextFileA
FindFirstFileA
lstrcatA
lstrcpyA
GetEnvironmentStringsW
GetModuleFileNameA

user32

DestroyMenu
LoadCursorA
GetSysColorBrush
ShowWindow
RegisterWindowMessageA
LoadIconA
WinHelpA
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
IsWindow
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessagePos
MapWindowPoints
SetMenu
SetForegroundWindow
GetClientRect
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
CopyRect
DefWindowProcA
CallWindowProcA
GetMenu
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
GetMenuItemID
GetSubMenu
PostQuitMessage
PostMessageA
CheckMenuItem
EnableMenuItem
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
GetWindowTextA
SetWindowTextA
GetSysColor
GetMessageTime
GetMenuState
ModifyMenuA
SendMessageA
GetParent
GetFocus
LoadBitmapA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ValidateRect
GetCursorPos
PeekMessageA
GetKeyState
IsWindowVisible
GetActiveWindow
DispatchMessageA
TranslateMessage
GetMessageA
CallNextHookEx
SetWindowsHookExA
SetCursor
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetMenuItemCount
UnregisterClassA
UnhookWindowsHookEx
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA

gdi32

GetStockObject
GetDeviceCaps
DeleteDC
ScaleViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
CreateBitmap
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
DeleteObject
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
SaveDC

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shlwapi

PathFindFileNameA
PathFindExtensionA

ole32

CoUninitialize
CoInitialize
CoCreateInstance

oleaut32

SysAllocString
VariantInit
VariantClear
VariantChangeType

Exports

Exports

MLClose
MLGetLangCount
MLGetLangName
MLGetText
MLInit
MLLoadLanguage
MLLoadLanguageByName

Sections

.text
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/ScreenRecorder.exe
.exe windows:5 windows x86 arch:x86

38e17fcb82acee2262c25b3bfcf6cf82

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\Setup\PCHand ProductLine\PCHand Screen Recorder\V1.5\Source\Bin\Release\ScreenRecorder.pdb

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

logfile

ord2

winmm

PlaySoundA
mmioDescend
mmioCreateChunk
mmioOpenA
mmioRead
mmioWrite
mmioClose
mmioAscend
waveInUnprepareHeader
timeGetTime
waveInClose
waveInStop
waveInReset
waveInStart
waveInOpen
waveInAddBuffer
waveInPrepareHeader
waveInGetErrorTextA
waveInGetDevCapsA
waveInGetNumDevs

avifil32

AVIStreamOpenFromFileA
AVIStreamWrite
AVIStreamSetFormat
AVIMakeCompressedStream
AVIFileCreateStreamA
AVIFileExit
AVISaveOptionsFree
AVISaveVW
AVIFileInit
AVIFileOpenA
AVIFileGetStream
AVIFileRelease
CreateEditableStream
AVIStreamRelease
AVIStreamStart
AVIStreamInfoA
AVIStreamReadFormat

msvfw32

ord2

msacm32

acmFormatSuggest
acmFormatChooseA
acmMetrics
acmFormatTagDetailsA

multilanguage

ord1
ord6
ord2
ord5

mouse

?UninstallMyHook@@YAXPAUHWND__@@@Z
?SetHook@@YAHPAUHWND__@@@Z

kernel32

VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
ExitThread
HeapSize
SetStdHandle
GetFileType
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
IsValidCodePage
VirtualFree
HeapCreate
GetStdHandle
LCMapStringA
LCMapStringW
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
CompareStringW
GetConsoleCP
GetConsoleMode
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetTimeFormatA
ExitProcess
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
FindResourceExA
VirtualProtect
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
SetErrorMode
GetTempFileNameA
SearchPathA
GetProfileIntA
GetTickCount
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentDirectoryA
GetFileSize
GetFileAttributesA
GetOEMCP
GetCPInfo
GlobalFlags
FileTimeToSystemTime
GetThreadLocale
RaiseException
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GetModuleHandleW
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedExchange
lstrcmpA
CreateEventA
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
InterlockedDecrement
GetModuleFileNameW
GetCurrentProcessId
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
GetModuleHandleA
GetVersionExA
SetLastError
GlobalSize
FormatMessageA
LocalFree
lstrlenW
ExpandEnvironmentStringsA
CopyFileA
CreateFileA
CreateThread
TerminateProcess
ReadFile
CreateProcessA
GetStartupInfoA
CreatePipe
CopyFileExA
FindClose
FindFirstFileA
DeleteFileA
CloseHandle
GetLastError
CreateMutexA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetProcAddress
FreeLibrary
LoadLibraryA
GetTempPathA
Sleep
GlobalReAlloc
MulDiv
FreeResource
MultiByteToWideChar
lstrlenA
GlobalFree
GlobalHandle
GlobalUnlock
WinExec
OpenFile
GetWindowsDirectoryA
GlobalAlloc
GlobalLock
lstrcpyA
FindResourceA
LoadResource
LockResource
SizeofResource
GetModuleFileNameA
WideCharToMultiByte
RtlUnwind
GetCommandLineA
GetDateFormatA
CreateDirectoryA

user32

CreateMenu
CharNextA
EnumChildWindows
LockWindowUpdate
SetClassLongA
SetParent
CreatePopupMenu
CreateAcceleratorTableA
LoadAcceleratorsA
DestroyAcceleratorTable
GetKeyboardState
GetKeyboardLayout
ToAsciiEx
CopyAcceleratorTableA
PostThreadMessageA
WaitMessage
IsMenu
UpdateLayeredWindow
EnableScrollBar
UnionRect
RegisterClipboardFormatA
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
CharUpperA
GetAsyncKeyState
NotifyWinEvent
GetSystemMenu
DeleteMenu
GetMenuItemInfoA
ShowOwnedPopups
DrawFrameControl
DrawEdge
DrawStateA
SetWindowContextHelpId
MapDialogRect
MessageBeep
IsZoomed
PostQuitMessage
DrawIconEx
GetNextDlgGroupItem
IsRectEmpty
DrawFocusRect
MapVirtualKeyA
GetKeyNameTextA
DestroyIcon
SetRectEmpty
GetMessageA
TranslateMessage
ValidateRect
GetWindowThreadProcessId
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
EnableMenuItem
CheckMenuItem
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
MoveWindow
IsDialogMessageA
CheckDlgButton
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyCursor
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
ShowScrollBar
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
SetWindowLongA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetScrollPos
SetScrollPos
GetWindow
SetFocus
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
RemoveMenu
FrameRect
CopyImage
TrackPopupMenu
DestroyMenu
SetTimer
ModifyMenuA
GetSubMenu
LoadMenuA
IsWindowVisible
BringWindowToTop
SetForegroundWindow
KillTimer
GetIconInfo
PostMessageA
DrawIcon
IsIconic
wsprintfA
WindowFromPoint
RegisterHotKey
UnregisterHotKey
LoadIconA
EndPaint
BeginPaint
GetCursorPos
ShowWindow
SetCursorPos
SetWindowPos
GetSystemMetrics
GetWindowDC
GetWindowRect
SetCapture
LoadCursorA
SetCursor
SubtractRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
DefFrameProcA
MapVirtualKeyExA
IsCharLowerA
IsClipboardFormatAvailable
CharUpperBuffA
UnpackDDElParam
ReuseDDElParam
PtInRect
ReleaseCapture
UpdateWindow
InvalidateRect
LoadBitmapA
CopyRect
RedrawWindow
GetParent
OffsetRect
GetWindowRgn
SetWindowRgn
InsertMenuItemA
TranslateAcceleratorA
GetUpdateRect
GetDoubleClickTime
CopyIcon
GetMenuDefaultItem
SetMenuDefaultItem
UnhookWindowsHookEx
InvalidateRgn
GetWindowLongA
GetFocus
InflateRect
GetSysColor
GetSysColorBrush
FillRect
SetRect
ReleaseDC
GetDesktopWindow
GetDC
LoadImageA
EnableWindow
GetClientRect
SetDlgItemTextA
GetDlgItem
SetWindowTextA
SendMessageA
MessageBoxA
ScrollWindow
UnregisterClassA

gdi32

Polyline
OffsetRgn
PatBlt
CreateFontIndirectA
Ellipse
SetBkMode
TextOutA
CopyMetaFileA
GetDCOrgEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
CreateBitmap
SelectPalette
GetObjectType
CreateHatchBrush
GetPixel
CreateRectRgnIndirect
SetRectRgn
GetStockObject
DPtoLP
CreateRoundRectRgn
GetTextExtentPoint32A
CreateEllipticRgn
CreatePolygonRgn
GetBkColor
SetROP2
Polygon
GetTextMetricsA
GetNearestPaletteIndex
GetSystemPaletteEntries
SetDIBColorTable
SetPixel
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetRgnBox
RoundRect
ExtFloodFill
SetPaletteEntries
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
LPtoDP
EnumFontFamiliesExA
SetPixelV
GetTextFaceA
GetWindowExtEx
GetViewportExtEx
GetTextColor
Rectangle
CreatePen
CreateFontA
SelectClipRgn
StretchBlt
CreateRectRgn
GetPaletteEntries
RealizePalette
CreatePalette
GetDIBits
DeleteDC
DeleteObject
CombineRgn
ExtCreateRegion
BitBlt
SelectObject
Escape
ExtTextOutA
RectVisible
PtVisible
CreateDIBSection
CreateCompatibleBitmap
GetDeviceCaps
CreateCompatibleDC
GetObjectA
GetMapMode
CreateSolidBrush
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetPolyFillMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegFlushKey
RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegEnumKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA

shell32

SHGetFileInfoA
ShellExecuteA
Shell_NotifyIconA
SHAppBarMessage
SHGetMalloc
SHGetPathFromIDListA
DragQueryFileA
DragFinish
SHGetSpecialFolderPathA
SHBrowseForFolderA

comctl32

ImageList_GetIconSize
InitCommonControlsEx

shlwapi

PathIsDirectoryA
PathFindExtensionA
PathFindFileNameA
PathRemoveFileSpecW
PathStripToRootA
PathFileExistsA
PathIsUNCA

oledlg

ord8

ole32

CoGetClassObject
CoInitializeEx
CoCreateInstance
CoUninitialize
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CreateStreamOnHGlobal
CoRegisterMessageFilter
CoRevokeClassObject
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleLockRunning
OleGetClipboard
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleDuplicateData
StgOpenStorageOnILockBytes

oleaut32

SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString
SysStringLen
SysFreeString
OleLoadPicturePath

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

gdiplus

GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImageWidth
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdiplusStartup
GdiplusShutdown
GdipGetImageGraphicsContext
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipCreateBitmapFromStream
GdipFree
GdipCloneImage
GdipDrawImageI

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 275KB - Virtual size: 274KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 154KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/Skins/Audio.bmp
PCHand Screen Recorder/Skins/Help.bmp
PCHand Screen Recorder/Skins/Option.bmp
PCHand Screen Recorder/Skins/Output.bmp
PCHand Screen Recorder/Skins/Pause.bmp
PCHand Screen Recorder/Skins/Select Area.bmp
PCHand Screen Recorder/Skins/ShowStatus.bmp
PCHand Screen Recorder/Skins/Start.bmp
PCHand Screen Recorder/Skins/Stop.bmp
PCHand Screen Recorder/Skins/Video.bmp
PCHand Screen Recorder/Skins/childpage.bmp
PCHand Screen Recorder/Skins/close.bmp
PCHand Screen Recorder/Skins/main.bmp
PCHand Screen Recorder/Skins/mini.bmp
PCHand Screen Recorder/Skins/showstatus_pause.bmp
PCHand Screen Recorder/Skins/showstatus_start.bmp
PCHand Screen Recorder/Skins/showstatus_stop.bmp
PCHand Screen Recorder/common.dll
.dll windows:5 windows x86 arch:x86

0415432fba1e6a47409fccfaf3cd56c1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString
SysReAllocStringLen
SysAllocStringLen
GetErrorInfo
SysFreeString
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayCreate
VariantChangeType
VariantCopy
VariantClear
VariantInit

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegFlushKey
RegCreateKeyExW
RegCloseKey

user32

GetKeyboardType
LoadStringW
MessageBoxA
CharNextW
CreateWindowExW
WindowFromPoint
WaitMessage
UpdateWindow
UnregisterClassW
UnhookWindowsHookEx
TranslateMessage
TranslateMDISysAccel
TrackPopupMenu
SystemParametersInfoW
ShowWindow
ShowScrollBar
ShowOwnedPopups
SetWindowsHookExW
SetWindowPos
SetWindowPlacement
SetWindowLongW
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRect
SetPropW
SetParent
SetMenuItemInfoW
SetMenu
SetForegroundWindow
SetFocus
SetCursor
SetClipboardData
SetClassLongW
SetCapture
SetActiveWindow
SendMessageA
SendMessageW
ScrollWindow
ScreenToClient
RemovePropW
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterClipboardFormatW
RegisterClassW
RedrawWindow
PostQuitMessage
PostMessageW
PeekMessageA
PeekMessageW
OpenClipboard
OffsetRect
MsgWaitForMultipleObjectsEx
MsgWaitForMultipleObjects
MessageBoxW
MessageBeep
MapWindowPoints
MapVirtualKeyW
LoadStringW
LoadKeyboardLayoutW
LoadIconW
LoadCursorW
LoadBitmapW
KillTimer
IsZoomed
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsWindow
IsIconic
IsDialogMessageA
IsDialogMessageW
IsChild
InvalidateRect
IntersectRect
InsertMenuItemW
InsertMenuW
InflateRect
GetWindowThreadProcessId
GetWindowTextW
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
GetTopWindow
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropW
GetParent
GetWindow
GetMessagePos
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenu
GetLastActivePopup
GetKeyboardState
GetKeyboardLayoutNameW
GetKeyboardLayoutList
GetKeyboardLayout
GetKeyState
GetKeyNameTextW
GetIconInfo
GetForegroundWindow
GetFocus
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetCursor
GetClipboardData
GetClientRect
GetClassLongW
GetClassInfoW
GetCapture
GetActiveWindow
FrameRect
FindWindowExW
FindWindowW
FillRect
EnumWindows
EnumThreadWindows
EnumChildWindows
EndPaint
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextExW
DrawTextW
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawEdge
DispatchMessageA
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DeleteMenu
DefWindowProcW
DefMDIChildProcW
DefFrameProcW
CreatePopupMenu
CreateMenu
CreateIcon
CloseClipboard
ClientToScreen
CheckMenuItem
CharUpperBuffW
CharToOemW
CharNextW
CharLowerBuffW
CharLowerW
CallWindowProcW
CallNextHookEx
BeginPaint
AdjustWindowRectEx
ActivateKeyboardLayout

kernel32

GetACP
Sleep
VirtualFree
VirtualAlloc
GetSystemInfo
GetVersion
GetCurrentThreadId
VirtualQuery
WideCharToMultiByte
MultiByteToWideChar
lstrlenW
lstrcpynW
LoadLibraryExW
GetThreadLocale
GetStartupInfoA
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
GetLocaleInfoW
GetCommandLineW
FreeLibrary
FindFirstFileW
FindClose
ExitProcess
ExitThread
CreateThread
CompareStringW
WriteFile
UnhandledExceptionFilter
RtlUnwind
RaiseException
GetStdHandle
CloseHandle
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
LocalFree
LocalAlloc
lstrcpyW
WriteFile
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjectsEx
VirtualQueryEx
VirtualQuery
VirtualAlloc
SwitchToThread
SizeofResource
SignalObjectAndWait
SetThreadLocale
SetLastError
SetFilePointer
SetEvent
SetErrorMode
SetEndOfFile
ResumeThread
ResetEvent
ReadFile
MultiByteToWideChar
MulDiv
LockResource
LoadResource
LoadLibraryW
LeaveCriticalSection
InitializeCriticalSection
GlobalUnlock
GlobalLock
GlobalFree
GlobalFindAtomW
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetVersionExW
GetVersion
GetTickCount
GetThreadLocale
GetStdHandle
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
GetLocaleInfoW
GetLocalTime
GetLastError
GetFullPathNameW
GetFileAttributesExW
GetExitCodeThread
GetDiskFreeSpaceW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCPInfo
FreeResource
InterlockedIncrement
InterlockedExchangeAdd
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
FreeLibrary
FormatMessageW
FindResourceW
FileTimeToLocalFileTime
FileTimeToDosDateTime
EnumCalendarInfoA
EnterCriticalSection
DeleteCriticalSection
CreateThread
CreateFileW
CreateEventW
CompareStringW
CloseHandle
Sleep

msimg32

AlphaBlend

gdi32

UnrealizeObject
StretchBlt
SetWindowOrgEx
SetWinMetaFileBits
SetViewportOrgEx
SetTextColor
SetStretchBltMode
SetROP2
SetPixel
SetEnhMetaFileBits
SetDIBColorTable
SetBrushOrgEx
SetBkMode
SetBkColor
SelectPalette
SelectObject
SaveDC
RestoreDC
Rectangle
RectVisible
RealizePalette
PlayEnhMetaFile
PatBlt
MoveToEx
MaskBlt
LineTo
IntersectClipRect
GetWindowOrgEx
GetWinMetaFileBits
GetTextMetricsW
GetTextExtentPointW
GetTextExtentPoint32W
GetSystemPaletteEntries
GetStockObject
GetRgnBox
GetPixel
GetPaletteEntries
GetObjectW
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileBits
GetDeviceCaps
GetDIBits
GetDIBColorTable
GetDCOrgEx
GetCurrentPositionEx
GetClipBox
GetBrushOrgEx
GetBitmapBits
FrameRgn
ExcludeClipRect
DeleteObject
DeleteEnhMetaFile
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePenIndirect
CreatePalette
CreateHalftonePalette
CreateFontIndirectW
CreateDIBitmap
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap
CopyEnhMetaFileW
BitBlt

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

ole32

OleInitialize
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitialize

comctl32

InitializeFlatSB
FlatSB_SetScrollProp
FlatSB_SetScrollPos
FlatSB_SetScrollInfo
FlatSB_GetScrollPos
FlatSB_GetScrollInfo
_TrackMouseEvent
ImageList_SetIconSize
ImageList_GetIconSize
ImageList_Write
ImageList_Read
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
ImageList_EndDrag
ImageList_BeginDrag
ImageList_Remove
ImageList_DrawEx
ImageList_Draw
ImageList_GetBkColor
ImageList_SetBkColor
ImageList_Add
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create

Exports

Exports

CheckExeUpdate

Sections

.text
Size: 462KB - Virtual size: 461KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 20KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 78B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PCHand Screen Recorder/注册信息.txt

Sharing

General

Malware Config

Signatures

Files

bd8bc0e641e11310ac3da50047d5edc8

Headers

File Characteristics

Imports

avutil

avcodec

avformat

avdevice

swscale

kernel32

msvcrt

Sections

.text Size: 60KB - Virtual size: 60KB

.data Size: 512B - Virtual size: 244B

.rdata Size: 14KB - Virtual size: 14KB

.bss Size: - Virtual size: 6KB

.idata Size: 5KB - Virtual size: 5KB

c918b414039e20804a8e750c72057d1e

Headers

File Characteristics

Imports

pthreadgc2

xvidcore

avutil

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 4.8MB - Virtual size: 4.8MB

.data Size: 1.0MB - Virtual size: 1.0MB

.rdata Size: 982KB - Virtual size: 982KB

.rodata Size: 1024B - Virtual size: 880B

.bss Size: - Virtual size: 1.2MB

.edata Size: 78KB - Virtual size: 78KB

.idata Size: 13KB - Virtual size: 12KB

.reloc Size: 98KB - Virtual size: 97KB

5c45e3570e388fed8aa465c4efbfd97e

Headers

File Characteristics

Imports

avutil

avformat

kernel32

msvcrt

user32

avicap32

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 84B

.rdata Size: 1KB - Virtual size: 1KB

.bss Size: - Virtual size: 112B

.edata Size: 512B - Virtual size: 110B

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 340B

e39c6f902e294922e1473096ca5ef96c

Headers

File Characteristics

Imports

avutil

avcodec

kernel32

msvcrt

avifil32

ws2_32

Exports

Exports

Sections

.text Size: 515KB - Virtual size: 514KB

.data Size: 11KB - Virtual size: 11KB

.rdata Size: 97KB - Virtual size: 97KB

.bss Size: - Virtual size: 2KB

.edata Size: 10KB - Virtual size: 10KB

.text
Size: 60KB - Virtual size: 60KB

.data
Size: 512B - Virtual size: 244B

.rdata
Size: 14KB - Virtual size: 14KB

.bss
Size: - Virtual size: 6KB

.idata
Size: 5KB - Virtual size: 5KB

.text
Size: 4.8MB - Virtual size: 4.8MB

.data
Size: 1.0MB - Virtual size: 1.0MB

.rdata
Size: 982KB - Virtual size: 982KB

.rodata
Size: 1024B - Virtual size: 880B

.bss
Size: - Virtual size: 1.2MB

.edata
Size: 78KB - Virtual size: 78KB

.idata
Size: 13KB - Virtual size: 12KB

.reloc
Size: 98KB - Virtual size: 97KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 84B

.rdata
Size: 1KB - Virtual size: 1KB

.bss
Size: - Virtual size: 112B

.edata
Size: 512B - Virtual size: 110B

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 340B

.text
Size: 515KB - Virtual size: 514KB

.data
Size: 11KB - Virtual size: 11KB

.rdata
Size: 97KB - Virtual size: 97KB

.bss
Size: - Virtual size: 2KB

.edata
Size: 10KB - Virtual size: 10KB

.idata
Size: 6KB - Virtual size: 5KB

.reloc
Size: 9KB - Virtual size: 9KB

.text
Size: 46KB - Virtual size: 46KB

.data
Size: 512B - Virtual size: 116B

.rdata
Size: 4KB - Virtual size: 3KB

.bss
Size: - Virtual size: 16KB

.edata
Size: 2KB - Virtual size: 1KB

.idata
Size: 1024B - Virtual size: 752B

.reloc
Size: 1024B - Virtual size: 908B

.text
Size: 25KB - Virtual size: 24KB

.data
Size: 512B - Virtual size: 64B

.rdata
Size: 512B - Virtual size: 112B

.bss
Size: - Virtual size: 368B

.edata
Size: 4KB - Virtual size: 3KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 704B

.stab
Size: 4KB - Virtual size: 3KB

.stabstr
Size: 22KB - Virtual size: 21KB

.text
Size: 135KB - Virtual size: 135KB

.data
Size: 512B - Virtual size: 36B

.rdata
Size: 9KB - Virtual size: 8KB

.bss
Size: - Virtual size: 1KB

.edata
Size: 2KB - Virtual size: 2KB

.idata
Size: 1024B - Virtual size: 600B

.reloc
Size: 5KB - Virtual size: 4KB

.text
Size: 584KB - Virtual size: 584KB

.data
Size: 1024B - Virtual size: 912B

.rdata
Size: 30KB - Virtual size: 29KB

.rodata
Size: 12KB - Virtual size: 12KB

.bss
Size: - Virtual size: 460KB

.edata
Size: 512B - Virtual size: 321B