c7983463f151721a25a333aa32597e31_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c7983463f151721a25a333aa32597e31_JaffaCakes118
Size

3.5MB
MD5

c7983463f151721a25a333aa32597e31
SHA1

f0925921a0943f5c6b8071c66e8aa4b1838623b8
SHA256

352651e448af23a15b5580b89ce40144c19dff7a43de2b8daeb9d1f90eb3a895
SHA512

fdbc12effc42d71e4ea65c350da45659a49b9ecd0047f57b2b56eedddd7e8d57e6b922938b7c90f367a331ac3d9697282229a43f2cef27d43fe6653da12e0a85
SSDEEP

98304:F9KMSVx5TWwbjmOdXJ6+lU8i3VQOo01U+KHP8pon:F9i5SUTdZ6+lNiqU1U+urn

Score

3^/10

Malware Config

Signatures

Unsigned PE 17 IoCs

Checks for missing Authenticode signature.

resource
c7983463f151721a25a333aa32597e31_JaffaCakes118
unpack001/$PLUGINSDIR/sqlzidongbeifen.exe
unpack002/$PLUGINSDIR/InstallOptions.dll
unpack002/dbmssocn.dll
unpack002/dbnetlib.dll
unpack002/dbnmpntw.dll
unpack002/libjcc.dll
unpack002/libjsybheap.dll
unpack002/mssqlbak.dll
unpack002/mssqlbak.exe
unpack002/ntwdblib.dll
unpack002/pbdwe90.dll
unpack002/pbmss90.dll
unpack002/pbvm90.dll
unpack002/uninst.exe
unpack003/$PLUGINSDIR/KillProcDLL.dll
unpack002/xt_toolbar.dll

NSIS installer 6 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/$PLUGINSDIR/sqlzidongbeifen.exe	nsis_installer_1
static1/unpack001/$PLUGINSDIR/sqlzidongbeifen.exe	nsis_installer_2
static1/unpack002/uninst.exe	nsis_installer_1
static1/unpack002/uninst.exe	nsis_installer_2

Files

c7983463f151721a25a333aa32597e31_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd1742eadfc6df18ded3c26ae64ad610

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
CloseHandle
GetWindowsDirectoryA
GetTempPathA
GetCommandLineA
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
ExitProcess

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/sqlzidongbeifen.exe
.exe windows:4 windows x86 arch:x86

dfb06052e74b26a42b0e490bd1c07959

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
MulDiv
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetAsyncKeyState
IsDlgButtonChecked
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
RegisterClassA
OpenClipboard
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
wvsprintfA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
ShowWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
EmptyClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
SetForegroundWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 280KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

0b51ce6ce6bf8d5c68b3ea9f3ac1bf2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
GetPrivateProfileIntA
GlobalLock
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalAlloc

user32

MapWindowPoints
GetDlgCtrlID
CloseClipboard
GetClipboardData
OpenClipboard
PtInRect
SetWindowRgn
LoadIconA
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
MessageBoxA
CallWindowProcA
PostMessageA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
GetClientRect

gdi32

SetTextColor
CreateCompatibleDC
GetObjectA
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject

shell32

SHBrowseForFolderA
SHGetDesktopFolder
SHGetPathFromIDListA
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
dbmssocn.dll
.dll windows:4 windows x86 arch:x86

0308deee9f67f74385166e56fb5d1431

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

WideCharToMultiByte
GetLastError
ReadFile
FreeLibrary
FormatMessageA
GetSystemDefaultLangID
LoadLibraryA
MultiByteToWideChar
GetVersionExA
IsDBCSLeadByte

msvcrt

sprintf
memcpy
atoi
strlen
getenv
strcpy
memset

wsock32

connect
WSAGetLastError
recv
setsockopt
send
closesocket
select
getsockname
WSAStartup
bind
socket
gethostbyname
ioctlsocket
htons
inet_ntoa

Exports

Exports

ConnectionCheckForData
ConnectionClose
ConnectionError
ConnectionErrorW
ConnectionMode
ConnectionObjectSize
ConnectionOpen
ConnectionOpenW
ConnectionRead
ConnectionServerEnum
ConnectionServerEnumW
ConnectionStatus
ConnectionTransact
ConnectionVer
ConnectionWrite
ConnectionWriteOOB

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 234B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
dbnetlib.dll
.dll windows:5 windows x86 arch:x86

ad360252cbae41f069ad9fdc23286b74

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

dbnetlib.pdb

Imports

msvcrt

getenv
strstr
sprintf
_ftime
malloc
strchr
strtok
isdigit
wcsstr
_wcsupr
memmove
calloc
atoi
_strupr
toupper
_strlwr
strncpy
_initterm
_adjust_fdiv
_stricmp
free
_snprintf

kernel32

DeleteCriticalSection
GetTickCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
SetErrorMode
CreateEventA
CreateThread
CloseHandle
ResetEvent
Sleep
WaitForSingleObject
SetEvent
LocalAlloc
GetCurrentThreadId
InterlockedIncrement
EnterCriticalSection
GetLastError
FreeLibrary
GetProcAddress
LoadLibraryA
IsBadCodePtr
lstrcpynA
ExpandEnvironmentStringsA
GetFullPathNameA
GetDriveTypeA
SearchPathA
lstrlenA
OutputDebugStringA
GetModuleFileNameA
InitializeCriticalSection
GetComputerNameA
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
LeaveCriticalSection
InterlockedDecrement

advapi32

RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueExA
RegQueryInfoKeyA
RegEnumValueA

wsock32

connect
socket
bind
sendto
inet_ntoa
htons
htonl
select
send
WSASetLastError
recv
ioctlsocket
gethostbyname
gethostbyaddr
setsockopt
recvfrom
WSAGetLastError
closesocket
WSAStartup
getsockname

Exports

Exports

CloseEnumServers
ConnectionCheckForData
ConnectionClose
ConnectionError
ConnectionErrorW
ConnectionFlushCache
ConnectionGetSvrUser
ConnectionMode
ConnectionObjectSize
ConnectionOpen
ConnectionOpenW
ConnectionOption
ConnectionRead
ConnectionServerEnum
ConnectionServerEnumW
ConnectionSqlVer
ConnectionStatus
ConnectionTransact
ConnectionVer
ConnectionWrite
ConnectionWriteOOB
GenClientContext
GetNextEnumeration
InitEnumServers
InitSSPIPackage
InitSession
TermSSPIPackage
TermSession

Sections

.text
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdbid
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
dbnmpntw.dll
.dll windows:5 windows x86 arch:x86

55dad475c99479340c2fa22b29dc46e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

DBnmpntw.pdb

Imports

msvcrt

_adjust_fdiv
malloc
_initterm
free
_stricmp
getenv
_snprintf
_wcsicmp
_wgetenv
_snwprintf
wcstombs
wcslen
wcscpy

kernel32

WaitForSingleObjectEx
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetComputerNameA
GetComputerNameW
ResetEvent
CancelIo
CreateEventA
CreateFileW
GetVersionExA
ExitThread
SetEvent
GetLastError
ReadFile
WaitForSingleObject
SetLastError
PeekNamedPipe
WriteFile
TransactNamedPipe
GetOverlappedResult
FreeLibrary
GetProcAddress
LoadLibraryA
Sleep
CloseHandle
MultiByteToWideChar
CreateThread
SetNamedPipeHandleState
CreateFileA
WideCharToMultiByte

Exports

Exports

ConnectionCheckForData
ConnectionClose
ConnectionError
ConnectionErrorW
ConnectionMode
ConnectionObjectSize
ConnectionOpen
ConnectionOpenW
ConnectionRead
ConnectionServerEnum
ConnectionServerEnumW
ConnectionStatus
ConnectionTransact
ConnectionVer
ConnectionWrite
ConnectionWriteOOB

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 594B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ini/backup.ini
ini/backupset.ini
libjcc.dll
.dll windows:4 windows x86 arch:x86

98596f3e5d37e9c19b26b7b51d9ef9fd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

htonl
ntohl
ntohs
WSAGetLastError
closesocket
connect
WSAStartup
setsockopt
recv
__WSAFDIsSet
select
socket
send
htons
gethostbyname
ioctlsocket

kernel32

GetTickCount
DisableThreadLibraryCalls
SetThreadPriority
CloseHandle
CreateEventA
TlsAlloc
TlsSetValue
Sleep
SetEvent
WaitForSingleObject
TlsGetValue
GetProcAddress
GetLastError
ResetEvent
DeleteCriticalSection
VirtualFree
VirtualAlloc
GetCurrentThreadId
InitializeCriticalSection
GetSystemInfo
EnterCriticalSection
LeaveCriticalSection
LoadLibraryA
SetErrorMode

msvcrt

_stricmp
_ftol
vsprintf
strrchr
_adjust_fdiv
_initterm
fread
fclose
memmove
printf
realloc
free
_endthreadex
_beginthreadex
malloc
fputc
abort
strtok
memcmp
sprintf
strlen
strcmp
tolower
memset
strncmp
strstr
time
memcpy
strcpy
_strnicmp
sscanf
strchr
vfprintf
strncpy
toupper
strcat
atoi
_errno
__p__pctype
_isctype
__p___mb_cur_max
__p__iob
fputs
fprintf
perror
fopen
getenv
fflush

Exports

Exports

JagAny_endValue
JagAny_getValue
JagAny_putValue
JagAny_tc
JagBCD_BinaryToString
JagBCD_StringToBinary
JagCSIIOP_dup_csi_sec_mech_list
JagCSI_GSSUP_ExportName
JagCSI_GSSUP_ImportName
JagCSI_GSSUP_get
JagCSI_GSSUP_put
JagCSI_Get_ITTPrincipalName
JagCSI_SASContextBody_getStream
JagCSI_SASContextBody_putStream
JagClient_FuncLookup
JagClient_LoadLibrary
JagCodesetConvert
JagCosTS_getReceiver
JagCosTS_getSender
JagCosTS_pack_PropCtx
JagCosTS_setCosTSInternalRef
JagCosTS_setReceiver
JagCosTS_setSender
JagCosTS_unpack_PropCtx
JagGetQOP
JagGetSupportedAssertedIdentities
JagHash
JagHashTable_fast_get
JagHashTable_fast_put
JagHashTable_fast_remove
JagHashTable_get
JagHashTable_getByValue
JagHashTable_getKeyValPairs
JagHashTable_put
JagHashTable_remove
JagHashTable_removeAllByValue
JagHashTable_size
JagHashV
JagIIOPStream_asParent
JagIIOPStream_decodeIOR
JagIIOPStream_encodeIOR
JagIIOPStream_endMessage
JagIIOPStream_endPutEncapsulation
JagIIOPStream_getBuffer
JagIIOPStream_getByteOrder
JagIIOPStream_getEndian
JagIIOPStream_getGIOPVersion
JagIIOPStream_getIIOPVersion
JagIIOPStream_getIfFragmented
JagIIOPStream_getJavaBuffer
JagIIOPStream_getJavaInput
JagIIOPStream_getLocateReply
JagIIOPStream_getLocateRequest
JagIIOPStream_getMessage
JagIIOPStream_getRequest
JagIIOPStream_getRequestId
JagIIOPStream_getResponseServiceContextList
JagIIOPStream_getServiceContextList
JagIIOPStream_getTxnContext
JagIIOPStream_initLogFile
JagIIOPStream_initMaxSize
JagIIOPStream_insertServiceContext
JagIIOPStream_isOTSClient
JagIIOPStream_isSharedTxn
JagIIOPStream_isTransactional
JagIIOPStream_isValidGIOPHeader
JagIIOPStream_newBuffer
JagIIOPStream_putByteOrder
JagIIOPStream_putEncapsulation
JagIIOPStream_putJavaOutput
JagIIOPStream_putLocateReply
JagIIOPStream_putLocateRequest
JagIIOPStream_putMessageError
JagIIOPStream_putReplySystemException
JagIIOPStream_putRequest
JagIIOPStream_putServiceContextList
JagIIOPStream_regetServiceContextList
JagIIOPStream_resetOffset
JagIIOPStream_setAsParent
JagIIOPStream_setBuffer
JagIIOPStream_setEndian
JagIIOPStream_setIIOPVersion
JagIIOPStream_setOTSClient
JagIIOPStream_setSharedTxn
JagIIOPStream_setTransactional
JagIIOPStream_toWString
JagIIOPStream_unsetTransactional
JagMemory__alloc
JagMemory__free
JagMemory_checkOff
JagMemory_checkOn
JagMemory_dump
JagMemory_log
JagMemory_setParent
JagMemory_size
JagMemory_traceOff
JagMemory_traceOn
JagORB_async
JagORB_getInstance
JagORB_getTransactionCurrent
JagORB_getTxnControlRef
JagORB_init
JagORB_initErrFunc
JagORB_initLogFile
JagORB_isClient
JagORB_isExPseudoJava
JagORB_isLocal
JagORB_isPseudo
JagORB_isPseudoJava
JagORB_lock
JagORB_log
JagORB_logServer
JagORB_object_to_string
JagORB_setTxnControlRef
JagORB_setenv
JagORB_string_to_object
JagORB_unlock
JagObjectRef_dup
JagObjectRef_isa
JagObjectRef_narrow
JagObjectRef_str
JagPseudoCompByteArrayToStream
JagPseudoCompJStringToString
JagPseudoCompPrepareException
JagPseudoCompStreamToByteArray
JagPseudoCompStringToJString
JagPseudoCompThrowException
JagPseudoJava_attach
JagPseudoJava_checkForException
JagPseudoJava_detach
JagPseudoJava_getJNIEnv
JagPseudoJava_getObjectRef
JagPseudoJava_setJNIEnv
JagPseudoJava_setReplyFunction
JagPseudo_createMethodTable
JagPseudo_fillMethodTable
JagPseudo_getMethod
JagPseudo_getMethodTable
JagPseudo_getObjectInstance
JagPseudo_getObjectRef
JagPseudo_setReplyFunction
JagQOPComparedToCipher
JagQOPCompatible
JagQOPToString
JagStream_JagPseudoGetBuffer
JagStream_JagPseudoGetOffset
JagStream_JagPseudoResetOffset
JagStream_getAny
JagStream_getReplyAsync
JagStream_getTypeCode
JagStream_getUnionDisc
JagStream_invoke
JagStream_local
JagStream_putAny
JagStream_putTypeCode
JagStream_putUnionDisc
JagStream_setInvoke
JagString_alloc
JagString_dup
JagTypeCode_bounds
JagTypeCode_eq
JagTypeCode_id
JagTypeCode_kind
JagTypeCode_labels
JagTypeCode_length
JagTypeCode_max
JagTypeCode_member
JagTypeCode_name
JagTypeCode_switch
JagTypeCode_type
JavaPseudoComp_JNILockMutex
JavaPseudoComp_JNIUnLockMutex
JavaPseudoComp_getMethodId
JavaPseudoComp_getSkeleton
Java_com_sybase_CORBA_PseudoCppProfile_deleteObjectRef
Java_com_sybase_CORBA_PseudoCppProfile_dupObjectRef
Java_com_sybase_CORBA_PseudoCppProfile_invoke
Java_com_sybase_CORBA_PseudoCppProfile_newObjectRef
SybHeap_adopt
SybHeap_alloc
SybHeap_allocPerm
SybHeap_calloc
SybHeap_check
SybHeap_checkAll
SybHeap_checkOff
SybHeap_checkOn
SybHeap_debugOff
SybHeap_debugOn
SybHeap_dump
SybHeap_error
SybHeap_exception
SybHeap_free
SybHeap_freeIfParent
SybHeap_init
SybHeap_initByte
SybHeap_log
SybHeap_malloc
SybHeap_parent
SybHeap_realloc
SybHeap_setCheckInterval
SybHeap_showBufferMaximumBytes
SybHeap_showFullPath
SybHeap_size
SybHeap_totalSizeVM
SybHeap_traceOff
SybHeap_traceOn
_Java_com_sybase_CORBA_PseudoCppProfile_setJVMVersion@12
__sybase_DLL_info@0
default_JagORB
delete_JagHashTable
delete_JagObjectRef
jag_client_dbg_stop
lookupCharset
lookupCharsetID
new_JagAny
new_JagHTTPSocket
new_JagHashTable
new_JagHashTableEx
new_JagIIOPSocket
new_JagIIOPStream
new_JagORB
new_JagObjectRef
new_JagPseudoStream
new_JagStream
new_JagStreamEx
new_JagTypeCode

Sections

.text
Size: 190KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libjsybheap.dll
.dll windows:4 windows x86 arch:x86

cd185ae96e493c13224d6c93f6fa483f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

strcmp
getenv
sscanf
memcpy
memset
strlen
fputs
_initterm
malloc
_adjust_fdiv
__dllonexit
_onexit
sprintf
abort
_iob
fputc
fflush
memcmp
vsprintf
free

kernel32

DisableThreadLibraryCalls
VirtualFree
VirtualAlloc
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection

Exports

Exports

Syb_Heap__alloc
Syb_Heap_adopt
Syb_Heap_alloc
Syb_Heap_allocFromPool
Syb_Heap_allocPool
Syb_Heap_calloc
Syb_Heap_check
Syb_Heap_checkAll
Syb_Heap_checkOff
Syb_Heap_checkOn
Syb_Heap_debugOff
Syb_Heap_debugOn
Syb_Heap_dump
Syb_Heap_error
Syb_Heap_exception
Syb_Heap_free
Syb_Heap_freeIfParent
Syb_Heap_freePool
Syb_Heap_init
Syb_Heap_initByte
Syb_Heap_log
Syb_Heap_malloc
Syb_Heap_parent
Syb_Heap_poolSize
Syb_Heap_print
Syb_Heap_realloc
Syb_Heap_setCheckInterval
Syb_Heap_setChunkSize
Syb_Heap_showBufferMaximumBytes
Syb_Heap_showFullPath
Syb_Heap_showSuffixMaximumBytes
Syb_Heap_size
Syb_Heap_totalSize
Syb_Heap_totalSizeVM
Syb_Heap_traceOff
Syb_Heap_traceOn
Syb_Heap_userData

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mssqlbak.dll
.dll windows:1 windows x86 arch:x86

a31bc3202e532dc3b6c16da7cb4382a8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CharUpperBuffA
MessageBoxA

kernel32

CloseHandle
CreateEventA
CreateFileA
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExitProcess
ExitThread
FreeEnvironmentStringsA
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetFileType
GetLastError
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStdHandle
GetVersion
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
SetConsoleCtrlHandler
SetEnvironmentVariableA
SetEnvironmentVariableW
SetEvent
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

pbvm90

ord5237
ord2406
ord2498
ord2274
ord2604
ord2609
ord2481
ord2513
ord2640
ord2463
ord2504
ord2519
ord2529
ord2524
ord2650
ord2081
ord2490
ord2279
ord2441
ord2634
ord2624
ord5073
ord5540
ord5164
ord2386
ord2653
ord2452
ord2546
ord2673
ord2408
ord2407
ord2469
ord2057
ord2497
ord2473
ord2495
ord2474
ord2496
ord2582
ord2416
ord2427
ord2594
ord2539
ord2540
ord2536
ord2520
ord2526
ord2412
ord5861
ord5118
ord2632
ord2426
ord5119
ord2451
ord2487
ord2417
ord2599
ord2611
ord2488
ord2505
ord2405
ord2486
ord2458
ord2578
ord5236
ord2384
ord2646
ord5245
ord2644
ord2645
ord2484
ord2455
ord2295
ord2456
ord2492
ord2479
ord2639
ord2638
ord2480
ord2050
ord2461
ord2462
ord2404
ord2453
ord2454
ord5151
ord2012
ord2468
ord2448
ord2459
ord2183
ord2515
ord2865
ord2043
ord2864

Exports

Exports

_DllMain@12
__fn_10_32770_0@8
__fn_10_32770_1@8
__fn_11_32769_19@8
__fn_12_32769_19@8
__fn_13_32770_0@8
__fn_13_32770_1@8
__fn_13_32770_54@8
__fn_13_32789_50@8
__fn_13_32798_50@8
__fn_14_32770_0@8
__fn_14_32770_1@8
__fn_14_32770_21@8
__fn_14_32770_22@8
__fn_14_32770_23@8
__fn_14_32770_24@8
__fn_14_32770_25@8
__fn_15_32770_0@8
__fn_15_32770_19@8
__fn_15_32770_1@8
__fn_15_32770_21@8
__fn_15_32770_22@8
__fn_15_32770_23@8
__fn_15_32770_24@8
__fn_15_32770_25@8
__fn_15_32770_26@8
__fn_15_32770_27@8
__fn_15_32770_28@8
__fn_15_32770_29@8
__fn_15_32770_30@8
__fn_15_32770_31@8
__fn_15_32770_32@8
__fn_15_32770_33@8
__fn_15_32770_34@8
__fn_15_32770_35@8
__fn_15_32770_36@8
__fn_15_32770_37@8
__fn_15_32770_38@8
__fn_15_32770_39@8
__fn_15_32770_40@8
__fn_15_32770_41@8
__fn_15_32770_42@8
__fn_15_32770_43@8
__fn_15_32770_44@8
__fn_15_32770_45@8
__fn_15_32770_46@8
__fn_15_32770_47@8
__fn_15_32770_48@8
__fn_15_32770_49@8
__fn_15_32770_50@8
__fn_15_32770_51@8
__fn_15_32770_52@8
__fn_15_32770_53@8
__fn_15_32770_54@8
__fn_15_32770_55@8
__fn_15_32770_56@8
__fn_15_32770_57@8
__fn_15_32770_58@8
__fn_15_32770_59@8
__fn_15_32770_60@8
__fn_15_32770_61@8
__fn_15_32770_62@8
__fn_15_32770_63@8
__fn_15_32770_64@8
__fn_15_32770_65@8
__fn_15_32770_66@8
__fn_15_32770_67@8
__fn_15_32770_68@8
__fn_15_32770_69@8
__fn_15_32770_70@8
__fn_15_32770_71@8
__fn_15_32770_72@8
__fn_15_32770_73@8
__fn_15_32770_74@8
__fn_15_32770_75@8
__fn_15_32770_76@8
__fn_15_32770_77@8
__fn_15_32770_78@8
__fn_15_32770_79@8
__fn_15_32770_80@8
__fn_15_32770_81@8
__fn_15_32770_82@8
__fn_15_32770_83@8
__fn_15_32770_84@8
__fn_15_32770_85@8
__fn_15_32770_86@8
__fn_15_32770_87@8
__fn_15_32770_88@8
__fn_15_32770_89@8
__fn_15_32770_90@8
__fn_15_32770_91@8
__fn_15_32770_92@8
__fn_15_32770_93@8
__fn_15_32770_94@8
__fn_15_32770_95@8
__fn_15_32770_96@8
__fn_15_32770_97@8
__fn_16_32769_19@8
__fn_17_32769_19@8
__fn_1_32770_0@8
__fn_1_32770_1@8
__fn_1_32770_21@8
__fn_1_32770_27@8
__fn_1_32770_28@8
__fn_1_32770_29@8
__fn_1_32770_30@8
__fn_1_32770_31@8
__fn_1_32770_32@8
__fn_1_32770_33@8
__fn_1_32770_34@8
__fn_1_32770_35@8
__fn_2_32769_19@8
__fn_3_32770_0@8
__fn_3_32770_135@8
__fn_3_32770_136@8
__fn_3_32770_137@8
__fn_3_32770_138@8
__fn_3_32770_139@8
__fn_3_32770_140@8
__fn_3_32770_141@8
__fn_3_32770_142@8
__fn_3_32770_143@8
__fn_3_32770_144@8
__fn_3_32770_145@8
__fn_3_32770_146@8
__fn_3_32770_147@8
__fn_3_32770_148@8
__fn_3_32770_149@8
__fn_3_32770_150@8
__fn_3_32770_151@8
__fn_3_32770_152@8
__fn_3_32770_153@8
__fn_3_32770_154@8
__fn_3_32770_155@8
__fn_3_32770_1@8
__fn_3_32770_39@8
__fn_3_32770_40@8
__fn_3_32770_54@8
__fn_3_32770_65@8
__fn_3_32814_1@8
__fn_6_32770_0@8
__fn_6_32770_1@8
__fn_6_32770_45@8
__fn_6_32786_0@8
__fn_6_32786_1@8
__fn_6_32786_37@8
__fn_6_32787_0@8
__fn_6_32787_1@8
__fn_6_32787_37@8
__fn_6_32788_0@8
__fn_6_32788_1@8
__fn_6_32789_0@8
__fn_6_32789_1@8
__fn_6_32789_37@8
__fn_7_32770_0@8
__fn_7_32770_135@8
__fn_7_32770_136@8
__fn_7_32770_137@8
__fn_7_32770_138@8
__fn_7_32770_1@8
__fn_7_32770_54@8
__fn_7_32789_50@8
__fn_7_32793_50@8
__fn_7_32795_0@8
__fn_7_32795_1@8
__fn_7_32799_0@8
__fn_7_32799_1@8
__fn_7_32806_50@8
__fn_7_32820_0@8
__fn_7_32820_1@8
__fn_7_32821_50@8
__fn_7_32830_50@8
__fn_7_32831_50@8
__fn_7_32836_50@8
__fn_7_32842_50@8
__fn_7_32851_50@8
__fn_7_32852_50@8
__fn_7_32853_50@8
__fn_7_32854_50@8
__fn_7_32858_50@8
__fn_7_32860_0@8
__fn_7_32860_1@8
__fn_7_32862_50@8
__fn_7_32863_50@8
__fn_7_32872_50@8
__fn_8_32769_19@8
__fn_9_32770_0@8
__fn_9_32770_135@8
__fn_9_32770_1@8
__fn_9_32770_54@8
__fn_9_32798_50@8
__fn_9_32804_50@8
__fn_9_32808_50@8
__fn_9_32809_50@8
_getVtableInfo_f_date_month_days@12
_getVtableInfo_f_findwindowname@12
_getVtableInfo_f_getchweekday@12
_getVtableInfo_f_splite@12
_getVtableInfo_f_string_split@12
_getVtableInfo_f_string_str_count@12
_getVtableInfo_m_taskbar@12
_getVtableInfo_mssqlbak@12
_getVtableInfo_nvo_get_mssqllist@12
_getVtableInfo_pfc_selectdirwindow@12
_getVtableInfo_w_main@12
_getVtableInfo_w_parsetup@12
_getVtableInfo_w_restore1@12
_getVtableInfo_w_restore@12
_getVtableInfo_w_syspwd@12

Sections

AUTO
Size: 567KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 75KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 5KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 6KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
mssqlbak.exe
.exe windows:1 windows x86 arch:x86

699035716eff0f4cbc45b97c4ff099a5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharUpperBuffA

kernel32

CloseHandle
CreateEventA
CreateFileA
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExitProcess
ExitThread
FreeEnvironmentStringsA
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetFileType
GetLastError
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStdHandle
GetVersion
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
SetConsoleCtrlHandler
SetEnvironmentVariableA
SetEnvironmentVariableW
SetEvent
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

pbvm90

ord137

Sections

AUTO
Size: 16KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 3KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 4KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
mssqlbak.exe.manifest
ntwdblib.dll
.dll windows:4 windows x86 arch:x86

6844cfb6e32d89a609393587b4609cb4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_BIND

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InitializeCriticalSection
HeapCreate
GetVersionExA
LeaveCriticalSection
EnterCriticalSection
FreeLibrary
TlsAlloc
GetLastError
GetComputerNameA
IsDBCSLeadByte
GetLocaleInfoA
GetLocaleInfoW
Sleep
GlobalFix
DeleteCriticalSection
GetConsoleCP
GetEnvironmentVariableA
HeapAlloc
LoadLibraryA
lstrcatA
GetFileSize
MapViewOfFile
CreateFileMappingA
CreateFileA
CloseHandle
UnmapViewOfFile
ReadFile
WriteFile
SetFilePointer
OpenFileMappingA
GetCurrentProcessId
GetCurrentThreadId
TlsSetValue
GlobalUnfix
HeapFree
HeapReAlloc
GetVersionExW
TlsGetValue
GetProcAddress
TlsFree
DeviceIoControl
GetDiskFreeSpaceA
GlobalMemoryStatus
QueryPerformanceCounter
SetErrorMode
HeapDestroy
SetLastError

advapi32

RegQueryValueExA
RegEnumValueA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegSetValueExA
AllocateLocallyUniqueId

msvcrt

atoi
atol
atof
strncat
time
vsprintf
fflush
_iob
putchar
_errno
_except_handler3
strncmp
memmove
memchr
tolower
_ultoa
_stricmp
_itoa
_getpid
_gcvt
_ltoa
_strnicmp
modf
strncpy
__mb_cur_max
_isctype
_pctype
_ftol
_abnormal_termination
_local_unwind2
sprintf
malloc
free
_assert

user32

LoadStringA
OemToCharA
CharToOemA
CharToOemW
wsprintfA

netapi32

Netbios

Exports

Exports

SQLDebug
abort_xact
bcpDefaultPrefix
bcp_batch
bcp_bind
bcp_colfmt
bcp_collen
bcp_colptr
bcp_columns
bcp_control
bcp_done
bcp_exec
bcp_init
bcp_moretext
bcp_readfmt
bcp_sendrow
bcp_setl
bcp_writefmt
build_xact_string
close_commit
commit_xact
dbadata
dbadlen
dbaltbind
dbaltcolid
dbaltlen
dbaltop
dbalttype
dbaltutype
dbanullbind
dbbcmd
dbbind
dbbylist
dbcancel
dbcanquery
dbchange
dbclose
dbclrbuf
dbclropt
dbcmd
dbcmdrow
dbcolbrowse
dbcolinfo
dbcollen
dbcolname
dbcolntype
dbcolsource
dbcoltype
dbcolutype
dbconnectionread
dbconvert
dbcount
dbcurcmd
dbcurrow
dbcursor
dbcursorbind
dbcursorclose
dbcursorcolinfo
dbcursorfetch
dbcursorfetchex
dbcursorinfo
dbcursorinfoex
dbcursoropen
dbdata
dbdataready
dbdatecrack
dbdatlen
dbdead
dbenlisttrans
dbenlistxatrans
dberrhandle
dbexit
dbfcmd
dbfirstrow
dbfreebuf
dbfreelogin
dbfreequal
dbgetchar
dbgetmaxprocs
dbgetoff
dbgetpacket
dbgetrow
dbgettime
dbgetuserdata
dbhasretstat
dbinit
dbisavail
dbiscount
dbisopt
dblastrow
dblocklib
dblogin
dbmorecmds
dbmoretext
dbmsghandle
dbname
dbnextrow
dbnullbind
dbnumalts
dbnumcols
dbnumcompute
dbnumorders
dbnumrets
dbopen
dbordercol
dbprhead
dbprocerrhandle
dbprocinfo
dbprocmsghandle
dbprrow
dbprtype
dbqual
dbreadpage
dbreadtext
dbresults
dbretdata
dbretlen
dbretname
dbretstatus
dbrettype
dbrows
dbrowtype
dbrpcexec
dbrpcinit
dbrpcparam
dbrpcsend
dbrpwclr
dbrpwset
dbserverenum
dbsetavail
dbsetlname
dbsetlogintime
dbsetlpacket
dbsetmaxprocs
dbsetnull
dbsetopt
dbsettime
dbsetuserdata
dbsqlexec
dbsqlok
dbsqlsend
dbstrcpy
dbstrlen
dbtabbrowse
dbtabcount
dbtabname
dbtabsource
dbtsnewlen
dbtsnewval
dbtsput
dbtxptr
dbtxtimestamp
dbtxtsnewval
dbtxtsput
dbunlocklib
dbupdatetext
dbuse
dbvarylen
dbwillconvert
dbwinexit
dbwritepage
dbwritetext
open_commit
remove_xact
start_xact
stat_xact

Sections

.text
Size: 216KB - Virtual size: 215KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pbdwe90.dll
.dll windows:4 windows x86 arch:x86

9798a64cf49f5c0685e7495494887d11

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

pbvm90

ord2011
ord2420
ord3604
ord2117
ord3600
ord2333
ord2150
ord2288
ord2129
ord2048
ord3603
ord2599
ord2597
ord2595
ord2423
ord2098
ord2099
ord2167
ord2202
ord2501
ord2120
ord2082
ord2562
ord2574
ord2563
ord2573
ord2087
ord2603
ord2255
ord2244
ord2151
ord2152
ord2149
ord2132
ord2852
ord2287
ord2422
ord2584
ord3210
ord3598
ord2119
ord2121
ord3589
ord3590
ord3597
ord5733
ord9118
ord9131
ord5721
ord5632
ord5839
ord5838
ord10033
ord10043
ord10053
ord10023
ord10055
ord10054
ord10056
ord10057
ord5252
ord5577
ord5194
ord5716
ord2201
ord5392
ord5441
ord5421
ord5526
ord5772
ord5350
ord5442
ord5042
ord5005
ord9115
ord5810
ord5603
ord2576
ord3602
ord5626
ord5877
ord5172
ord5070
ord5071
ord2004
ord3531
ord5615
ord5868
ord5876
ord5867
ord5010
ord5012
ord5008
ord12066
ord5325
ord5170
ord5609
ord5614
ord5026
ord5122
ord5366
ord5345
ord5437
ord5513
ord5396
ord5460
ord5031
ord5734
ord11000
ord419
ord2500
ord2909
ord2165
ord2049
ord2143
ord2136
ord2046
ord2468
ord2405
ord2407
ord2490
ord2279
ord2341
ord2140
ord2756
ord2252
ord2045
ord2251
ord2414
ord2183
ord2060
ord2159
ord5155
ord2318
ord453
ord2299
ord2298
ord2301
ord2302
ord2300
ord2296
ord2307
ord2567
ord2229
ord5299
ord5673
ord5669
ord5665
ord5298
ord5019
ord5300
ord5015
ord5286
ord5018
ord5021
ord5287
ord5020
ord5288
ord5017
ord5778
ord13013
ord5789
ord5787
ord2415
ord2411
ord2487
ord5788
ord2412
ord2860
ord5752
ord2061
ord2910
ord5553
ord5551
ord5554
ord5126
ord5129
ord2578
ord2012
ord5549
ord5538
ord5550
ord5804
ord5183
ord5187
ord5059
ord5004
ord5621
ord5611
ord5610
ord5612
ord5606
ord5599
ord5596
ord5575
ord5574
ord5564
ord5571
ord5576
ord5562
ord5260
ord5875
ord5259
ord5002
ord5251
ord5198
ord5821
ord5843
ord5820
ord5845
ord5837
ord5814
ord5144
ord5806
ord5819
ord5844
ord5860
ord5836
ord5835
ord5840
ord5425
ord5371
ord5458
ord5423
ord5283
ord5285
ord5668
ord5284
ord5667
ord5038
ord5176
ord5027
ord5043
ord5794
ord5032
ord5045
ord9129
ord5391
ord5557
ord5115
ord5125
ord5116
ord5262
ord5261
ord5605
ord5607
ord5604
ord5622
ord5623
ord5140
ord5274
ord11020
ord12062
ord12063
ord5009
ord2906
ord5360
ord5372
ord5373
ord5753
ord5445
ord5047
ord5048
ord5435
ord5013
ord5078
ord3502
ord3503
ord5717
ord5258
ord5257
ord10003
ord2295
ord2363
ord5079
ord5760
ord2361
ord2362
ord2153
ord5770
ord5174
ord5547
ord5530
ord5531
ord5532
ord5559
ord5556
ord2050
ord5133
ord5120
ord5074
ord5072
ord5540
ord5118
ord5119
ord5173
ord5552
ord5777
ord5307
ord5795
ord5305
ord5618
ord5150
ord5616
ord5165
ord5188
ord5181
ord5182
ord5003
ord5186
ord5184
ord5369
ord5349
ord5378
ord5341
ord5377
ord5355
ord5344
ord5030
ord5040
ord5039
ord13016
ord2320
ord5786
ord5347
ord5353
ord5171
ord5555
ord5528
ord5142
ord5067
ord5306
ord5065
ord5062
ord5063
ord5123
ord5436
ord5351
ord5383
ord5346
ord5370
ord5374
ord5037
ord5169
ord5195
ord5164
ord5130
ord5131
ord5056
ord5054
ord5158
ord2373
ord5053
ord5152
ord5783
ord5790
ord5791
ord5024
ord3929
ord3520
ord3527
ord3536
ord3574
ord3573
ord3575
ord5402
ord5066
ord5782
ord5529
ord5361
ord5057
ord5417
ord5401
ord3586
ord3537
ord3521
ord3596
ord3528
ord3585
ord3583
ord3584
ord3532
ord3588
ord5076
ord5075
ord5077
ord5064
ord13015
ord2226
ord5124
ord5866
ord5073
ord5159
ord5141
ord5343
ord5352
ord5265
ord5153
ord5143
ord5069
ord5068
ord5151
ord5162
ord5869
ord5014
ord250
ord5016

msvcrt

_strlwr
_strnicmp
_memicmp
_stricmp
_strupr
_adjust_fdiv
malloc
_initterm
free
__lconv_init
_onexit
__dllonexit
??1type_info@@UAE@XZ
islower
isupper
modf
_fcvt
_errno
time
srand
__CxxLongjmpUnwind
tolower
wcslen
toupper
strpbrk
getenv
fopen
fclose
strtol
wcstombs
_mbsupr
wcscmp
strtoul
_itoa
strncat
sprintf
_CxxThrowException
_mbsstr
strstr
_CIpow
_CIfmod
_CIasin
_CIacos
ceil
floor
rand
frexp
ldexp
_mbslwr
_ismbcdigit
isdigit
_mbsbtype
atol
_mbscat
strncmp
_ftol
_mbscmp
_mbschr
strchr
_ismbbtrail
_ismbcalnum
isalnum
_ismbcalpha
isalpha
atoi
strncpy
_mbsrchr
strrchr
mbstowcs
memmove
_mbscpy
atof
_ismbcspace
isspace
__CxxFrameHandler
_purecall
longjmp
_mbsicmp
_setjmp3

kernel32

GetVersionExA
GetModuleHandleA
GetFileAttributesA
SetEnvironmentVariableA
GlobalLock
IsDBCSLeadByte
InterlockedIncrement
InterlockedDecrement
lstrcmpiA
GetProfileStringA
GetVersion
GlobalFree
GlobalAlloc
GlobalUnlock
FreeResource
lstrcpyA
MultiByteToWideChar
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetCPInfo
DebugBreak
GetEnvironmentVariableA
GetCurrentThreadId
WriteFile
ReadFile
SetFilePointer
SetEndOfFile
CreateFileA
FormatMessageA
WritePrivateProfileStringA
GetTickCount
lstrcmpA
GetTempFileNameA
GetLastError
GetModuleFileNameA
CopyFileA
GetACP
CreateProcessA
Sleep
GetExitCodeProcess
CloseHandle
GlobalReAlloc
AddAtomA
GetTempPathA
LockResource
GetProcAddress
GlobalSize
GetProfileIntA
FindResourceA
LoadResource
GetPrivateProfileIntA
LoadLibraryA
MulDiv
GetPrivateProfileStringA
FreeLibrary

user32

CheckDlgButton
PostThreadMessageA
DispatchMessageA
TranslateMessage
PeekMessageA
FillRect
DrawFocusRect
WinHelpA
GetDoubleClickTime
GetClassInfoA
IsDialogMessageA
CreateDialogParamA
IsWindowEnabled
EnableMenuItem
GetSystemMenu
TrackMouseEvent
EnumChildWindows
SubtractRect
OffsetRect
InvertRect
LoadImageA
LoadIconA
SetParent
FrameRect
ShowScrollBar
ScrollDC
GetScrollRange
SetScrollInfo
GetScrollPos
GetScrollInfo
GetDlgItemInt
CharNextA
CheckRadioButton
DrawMenuBar
RegisterClipboardFormatA
SetRect
MapWindowPoints
GetDesktopWindow
RegisterClassA
UnregisterClassA
ScrollWindow
IntersectRect
IsClipboardFormatAvailable
GetClipboardData
CreateWindowExA
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetFocus
CharUpperBuffA
CharLowerBuffA
GetClassLongA
DefWindowProcA
GetUpdateRgn
ValidateRgn
GetUpdateRect
BeginPaint
EndPaint
UnionRect
IsRectEmpty
SetRectEmpty
GetWindow
GetWindowTextA
KillTimer
GetMessageTime
CharLowerA
ShowCursor
CharUpperA
SetWindowTextA
IsDlgButtonChecked
ReleaseCapture
SetCapture
DrawTextExA
GetCursorPos
ScreenToClient
GetClientRect
SetCursor
SendDlgItemMessageA
MessageBeep
LoadCursorA
EnableWindow
DestroyCursor
InflateRect
GetClassNameA
GetWindowRect
SetWindowPos
ClientToScreen
MoveWindow
GetSystemMetrics
DrawTextA
PtInRect
PostMessageA
CopyRect
GetParent
GetKeyState
IsWindowVisible
CallWindowProcA
SetScrollRange
SetDlgItemInt
SetDlgItemTextA
LoadStringA
ShowWindow
UpdateWindow
ReleaseDC
InvalidateRect
DialogBoxParamA
LoadBitmapA
GetSysColor
wsprintfA
EndDialog
RemovePropA
SetFocus
SetScrollPos
GetDlgItem
SetPropA
SendMessageA
IsWindow
SetTimer
DestroyWindow
GetWindowLongA
MessageBoxA
GetPropA
GetDC
GetDlgItemTextA
GetWindowTextLengthA
SetWindowLongA

gdi32

DeleteObject
CreateSolidBrush
DeleteDC
BitBlt
GetObjectA
SelectObject
CreateCompatibleDC
RectInRegion
Rectangle
CreatePen
SetBkMode
LineTo
MoveToEx
GetStockObject
PatBlt
GetTextMetricsA
GetDeviceCaps
SetTextColor
SelectClipRgn
GetRgnBox
CombineRgn
CreateCompatibleBitmap
GdiSetBatchLimit
CreateRectRgn
RealizePalette
SelectPalette
DeleteEnhMetaFile
GetWinMetaFileBits
GetEnhMetaFileHeader
GetTextExtentPointA
SetROP2
GetTextFaceA
Ellipse
RoundRect
CloseMetaFile
CreateRectRgnIndirect
SetWindowExtEx
DPtoLP
SetMapMode
CreateMetaFileA
CloseEnhMetaFile
CreateEnhMetaFileA
GetBkColor
StretchBlt
CreatePatternBrush
Escape
Polygon
EndDoc
AbortDoc
EndPage
StartPage
RestoreDC
StartDocA
SetAbortProc
ResetDCA
SaveDC
CreateDCA
PaintRgn
CreateHatchBrush
SetTextCharacterExtra
CreateBrushIndirect
ExtSelectClipRgn
ExcludeClipRect
TranslateCharsetInfo
SetStretchBltMode
StretchDIBits
GetDIBColorTable
GetTextColor
TextOutA
CreateFontIndirectA
SetTextAlign
SetViewportOrgEx
PtInRegion
CreatePolygonRgn
InvertRgn
LPtoDP
GetCharWidthA
Polyline
SetBkColor

comdlg32

CommDlgExtendedError
GetSaveFileNameA

winspool.drv

AddPrinterDriverA
DocumentPropertiesA
DeviceCapabilitiesA
OpenPrinterA
ClosePrinter
GetPrinterDriverDirectoryA
AddPrinterA
EnumPrintProcessorsA

ole32

StgCreateDocfile
ProgIDFromCLSID
OleIsRunning
OleRun
CoGetMalloc
StgIsStorageFile
StgOpenStorage

oleaut32

VariantClear
VariantInit
SysFreeString
SysAllocString

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

msvcirt

??1ofstream@@UAE@XZ
??_Dofstream@@QAEXXZ
??0ofstream@@QAE@XZ
?openprot@filebuf@@2HB
?open@ofstream@@QAEXPBDHH@Z
??6ostream@@QAEAAV0@PBD@Z
?close@ofstream@@QAEXXZ
??1ios@@UAE@XZ

Exports

Exports

BGR_Clipboard
BGR_CopyGraph
BGR_CopyGraphAcrossStorage
BGR_CreateGraph
BGR_CreateSampleData
BGR_CreateSeries
BGR_CreateTestData
BGR_DeleteCategory
BGR_DeleteCategoryObData
BGR_DeleteItem
BGR_DestroyExpressionAnchor
BGR_DestroyGraph
BGR_DestroySeries
BGR_DumpStorage
BGR_EnableChildWindowProc
BGR_FindCategory
BGR_FindCategoryObData
BGR_ForceNoCoprocessor
BGR_FreePropertyPages
BGR_Get3D
BGR_Get3DObjects
BGR_GetAxisAutoScale
BGR_GetAxisDropLines
BGR_GetAxisFrame
BGR_GetAxisLabel
BGR_GetAxisLabelEveryN
BGR_GetAxisMajorDivs
BGR_GetAxisMajorGridLine
BGR_GetAxisMajorTic
BGR_GetAxisMaxVal
BGR_GetAxisMaxValDateTime
BGR_GetAxisMaxValString
BGR_GetAxisMinVal
BGR_GetAxisMinValDateTime
BGR_GetAxisMinValString
BGR_GetAxisMinorDivs
BGR_GetAxisMinorGridLine
BGR_GetAxisMinorTic
BGR_GetAxisOriginLine
BGR_GetAxisPrimaryLine
BGR_GetAxisRoundTo
BGR_GetAxisRoundToUnit
BGR_GetAxisScaleType
BGR_GetAxisSecondaryLine
BGR_GetAxisShadeBackEdge
BGR_GetAxisValueType
BGR_GetAxisValues
BGR_GetBkColor
BGR_GetBorder
BGR_GetCategoryCount
BGR_GetCategoryDataType
BGR_GetCategoryLabel
BGR_GetCategorySort
BGR_GetClickedObject
BGR_GetClickedObjectTypeName
BGR_GetColor
BGR_GetDepth
BGR_GetDisplayAttributes
BGR_GetElevation
BGR_GetExpressionAnchor
BGR_GetExpressionComputeColumnNumber
BGR_GetFill
BGR_GetFontHeight
BGR_GetGap
BGR_GetGraphType
BGR_GetItemBitmapEnum
BGR_GetItemBkColor
BGR_GetItemColor
BGR_GetItemCount
BGR_GetItemDateTime
BGR_GetItemFill
BGR_GetItemLineColor
BGR_GetItemLineType
BGR_GetItemLineTypeEx
BGR_GetItemNumber
BGR_GetItemPieExplodePercent
BGR_GetItemShadeColor
BGR_GetItemString
BGR_GetLastGraph
BGR_GetLegend
BGR_GetOverlap
BGR_GetPainterObject
BGR_GetPerspective
BGR_GetPropertyPages
BGR_GetRotation
BGR_GetSeriesBitmapEnum
BGR_GetSeriesBkColor
BGR_GetSeriesByName
BGR_GetSeriesBySequence
BGR_GetSeriesColor
BGR_GetSeriesCount
BGR_GetSeriesDataType
BGR_GetSeriesFill
BGR_GetSeriesLineColor
BGR_GetSeriesLineType
BGR_GetSeriesLineTypeEx
BGR_GetSeriesName
BGR_GetSeriesOverlay
BGR_GetSeriesShadeColor
BGR_GetSeriesSort
BGR_GetShadeColor
BGR_GetStacked
BGR_GetTitle
BGR_GetValueDataType
BGR_GetXisString
BGR_Graph3DDlg
BGR_GraphAXDlg
BGR_GraphDefDlg
BGR_GraphGalleryDlg
BGR_GraphTextDlg
BGR_Import
BGR_Init
BGR_InsertCategory
BGR_InsertCategoryObData
BGR_InsertItem
BGR_InsertItemDouble
BGR_InsertItemObData
BGR_InvertPainterObject
BGR_ItemIsNull
BGR_ReCreateGraph
BGR_ReleaseExpressionAnchor
BGR_Reset
BGR_ResetItemColors
BGR_SaveAs
BGR_Set3D
BGR_Set3DObjects
BGR_SetAllBkColors
BGR_SetAllColors
BGR_SetAllowDataTypeChange
BGR_SetAxisAutoScale
BGR_SetAxisDropLines
BGR_SetAxisFrame
BGR_SetAxisLabel
BGR_SetAxisLabelEveryN
BGR_SetAxisMajorDivs
BGR_SetAxisMajorGridLine
BGR_SetAxisMajorTic
BGR_SetAxisMaxVal
BGR_SetAxisMaxValDateTime
BGR_SetAxisMinMaxVal
BGR_SetAxisMinMaxValDateTime
BGR_SetAxisMinMaxValString
BGR_SetAxisMinVal
BGR_SetAxisMinValDateTime
BGR_SetAxisMinorDivs
BGR_SetAxisMinorGridLine
BGR_SetAxisMinorTic
BGR_SetAxisOriginLine
BGR_SetAxisPrimaryLine
BGR_SetAxisRoundTo
BGR_SetAxisRoundToUnit
BGR_SetAxisScaleType
BGR_SetAxisSecondaryLine
BGR_SetAxisShadeBackEdge
BGR_SetAxisValueType
BGR_SetAxisValues
BGR_SetBkColor
BGR_SetBorder
BGR_SetCategoryDataType
BGR_SetCategoryLabel
BGR_SetCategorySort
BGR_SetColor
BGR_SetDepth
BGR_SetDisplayAttributes
BGR_SetElevation
BGR_SetExpressionAnchor
BGR_SetExpressionAnchorEx
BGR_SetFill
BGR_SetFontHeight
BGR_SetGap
BGR_SetGraphType
BGR_SetItem
BGR_SetItemBitmapEnum
BGR_SetItemBkColor
BGR_SetItemColor
BGR_SetItemDouble
BGR_SetItemFill
BGR_SetItemLineColor
BGR_SetItemLineType
BGR_SetItemLineTypeEx
BGR_SetItemNull
BGR_SetItemObData
BGR_SetItemPieExplodePercent
BGR_SetItemShadeColor
BGR_SetLegend
BGR_SetNullDataPlotOption
BGR_SetOverlap
BGR_SetPerspective
BGR_SetRotation
BGR_SetSeriesBitmapEnum
BGR_SetSeriesBkColor
BGR_SetSeriesColor
BGR_SetSeriesDataType
BGR_SetSeriesFill
BGR_SetSeriesLabel
BGR_SetSeriesLineColor
BGR_SetSeriesLineType
BGR_SetSeriesLineTypeEx
BGR_SetSeriesName
BGR_SetSeriesOverlay
BGR_SetSeriesShadeColor
BGR_SetSeriesSort
BGR_SetShadeColor
BGR_SetStacked
BGR_SetTitle
BGR_SetValueDataType
BGR_SetXisString
BGR_ShowGraph
BGR_ShowGraphDirect
BGR_TextSampleWindowProc
BGR_UpdateGraph
BGR_ValidItemDataType
CreateExportDataList
CreateImportDataList
CreateXMLTemplate
DS_Destroy
DS_SetNotifyFunc
DW_AcceptText
DW_CanUndo
DW_Clear
DW_ClearValues
DW_Copy
DW_CreateFrom_RS
DW_CrosstabDialog
DW_Cut
DW_DBCancel
DW_DBErrorCode
DW_DBErrorMessage
DW_DeleteRow
DW_DeletedCount
DW_Describe
DW_Filter
DW_FilteredCount
DW_Find
DW_FindGroupChange
DW_FindRequired
DW_GenerateHTMLForm
DW_GenerateResultSet
DW_GenerateResultSet_RS
DW_GetBandAtPointer
DW_GetBorderStyle
DW_GetChanges
DW_GetChild
DW_GetClickedColumn
DW_GetClickedRow
DW_GetColumn
DW_GetColumnName
DW_GetFormat
DW_GetFullState
DW_GetItemDate
DW_GetItemDateTime
DW_GetItemDecimal
DW_GetItemFormattedString
DW_GetItemNumber
DW_GetItemStatus
DW_GetItemString
DW_GetItemTime
DW_GetItemUnformattedString
DW_GetMessageText
DW_GetNextModified
DW_GetObjectAtPointer
DW_GetRow
DW_GetRowFromId
DW_GetRowId
DW_GetSQLPreview
DW_GetSQLSelect
DW_GetSelectedRow
DW_GetStateStatus
DW_GetText
DW_GetTrans
DW_GetUpdateStatus
DW_GetValidate
DW_GetValue
DW_GroupCalc
DW_ImportClipboard
DW_ImportDlgProc
DW_ImportFile
DW_ImportString
DW_InsertRow
DW_IsSelected
DW_LineCount
DW_ModifiedCount
DW_Modify
DW_OleActivate
DW_PSXcritDlgProc
DW_Paste
DW_Position
DW_Print
DW_PrintCancel
DW_Print_Filename_Proc
DW_ReplaceText
DW_ReselectRow
DW_Reset
DW_ResetTransObject
DW_ResetUpdate
DW_Retrieve
DW_RowCount
DW_RowsCopy
DW_RowsDiscard
DW_RowsMove
DW_SaveAs
DW_SaveAsAscii
DW_Scroll
DW_ScrollNextPage
DW_ScrollNextRow
DW_ScrollPriorPage
DW_ScrollPriorRow
DW_ScrollToRow
DW_SelectRow
DW_SelectText
DW_SelectedLength
DW_SelectedLine
DW_SelectedStart
DW_SelectedText
DW_SetBorderStyle
DW_SetChanges
DW_SetColumn
DW_SetDetailHeight
DW_SetFilter
DW_SetFormat
DW_SetFullState
DW_SetHTMLAction
DW_SetItem
DW_SetItemStatus
DW_SetPosition
DW_SetRow
DW_SetSQLPreview
DW_SetSQLSelect
DW_SetSort
DW_SetTabOrder
DW_SetText
DW_SetTrans
DW_SetTransObject
DW_SetValidate
DW_SetValue
DW_ShareData
DW_ShareDataOff
DW_Sort
DW_SortDlgProc
DW_SubClassArgEditProc
DW_SyntaxFromSQL
DW_TextLine
DW_Undo
DW_Update
DW_ole_control_notify
GraphWindowProc
PBBGraphAXDlgProc
PBBGraphDefDlgProc
PBBGraphTextDlgProc
PBStgCreateDocfile
PBStgOpenStorage
WEP
dwCanChangeQryMode
dwClearOriginalValues
dwClientToObject
dwCompile
dwControlFlags
dwControlInfo
dwControlStyle
dwControlStyleDlgProc
dwCreateObjectStorage
dwCreateWindow
dwCreateWindowEx
dwCrosstabBuildModel
dwCrosstabDLG
dwCrosstabDef
dwCrosstabDefDynamic
dwCrosstabDlgProc
dwCrosstabModifyDynamic
dwCrosstabModifyStatic
dwCrosstabSortCmp
dwDBCancel
dwDefaultArgs
dwDefaultArgsFree
dwDeleteCrosstabSourceList
dwDescribe
dwDestroyObjectStorage
dwDragObjectCreate
dwDragObjectDestroy
dwExprDialog
dwExprValidate
dwFilterDlgProc
dwFind
dwFindGroupChange
dwFindRequired
dwFitColumn
dwFree
dwFreeBlob
dwGenJSFile
dwGenTableName
dwGenerateHTMLForm
dwGetBandUnderMouse
dwGetColumnFormat
dwGetColumnFormatLength
dwGetColumnNumber
dwGetColumnType
dwGetColumnValidation
dwGetColumnValidationLength
dwGetColumnValue
dwGetColumnValueLength
dwGetCurrentCol
dwGetCurrentRowCol
dwGetCurrentText
dwGetCurrentTextLength
dwGetDBError
dwGetDBErrorLength
dwGetDBdatabase
dwGetDBdatabaseLength
dwGetDBdatabasepass
dwGetDBdatabasepassLength
dwGetDBlogid
dwGetDBlogidLength
dwGetDBlogpass
dwGetDBlogpassLength
dwGetDBparm
dwGetDBparmLength
dwGetDBserver
dwGetDBserverLength
dwGetDBuserid
dwGetDBuseridLength
dwGetDBvendor
dwGetDBvendorLength
dwGetExceedPageMessage
dwGetItemDateTime
dwGetItemDecimal
dwGetItemDouble
dwGetItemLength
dwGetItemLengthLong
dwGetItemStatus
dwGetItemString
dwGetItemStringLong
dwGetItemType
dwGetMessageText
dwGetNextModifiedRow
dwGetNotifyArgs
dwGetObjectUnderMouse
dwGetProgram
dwGetProperty
dwGetPropertyItem
dwGetRowColUnderPoint
dwGraphSaveAsPdf
dwGraphSortCmp
dwGroupCalc
dwInfoBegin
dwInfoBitmap
dwInfoBlob
dwInfoButton
dwInfoColumn
dwInfoCompute
dwInfoCrosstab
dwInfoDataWindow
dwInfoEnd
dwInfoFunctions
dwInfoGetDWWidth
dwInfoGetFirstColumn
dwInfoGetFirstObject
dwInfoGetNextColumn
dwInfoGetNextObject
dwInfoGetObjectType
dwInfoGraph
dwInfoGroupBox
dwInfoLine
dwInfoOle
dwInfoOval
dwInfoParseStmt
dwInfoProcessType
dwInfoRect
dwInfoRegionFirst
dwInfoRegionNext
dwInfoReport
dwInfoResourceNames
dwInfoRoundRect
dwInfoSetPSRFileName
dwInfoSparse
dwInfoTable
dwInfoTableExtract
dwInfoText
dwInfoVerifyCompute
dwInfoVerifyFilter
dwInfoVerifyStmt
dwInvokeCriteriaUpdate
dwInvokeMethod
dwIsPointOutsideEditCol
dwLBSortCmp
dwLoadDW
dwLoadData
dwLoadDataOle
dwLoadDataProg
dwLoadDataStorage
dwLoadFile
dwLoadLibrary
dwLoadMemory
dwLoadStorage
dwMessageBoxDlgProc
dwMetaFile
dwModify
dwModifyExprDlgProc
dwOleActivateItem
dwOleDeactivate
dwOleGetControlInfo

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 271KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pbmss90.dll
.dll regsvr32 windows:4 windows x86 arch:x86

431a7249710495af97317169bd47d2c1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

pbvm90

ord11040
ord10003
ord5126
ord5872
ord5521
ord5040
ord5523
ord5524
ord5400
ord5522
ord5529
ord5347
ord5164
ord12014
ord5373
ord5355
ord5344
ord5376
ord5438
ord5416
ord5056
ord5053
ord5057
ord5054
ord5062
ord5063
ord5340
ord5528
ord5153
ord2862
ord5042
ord5159
ord5031
ord5371
ord5037
ord5030
ord5032
ord5043
ord5039
ord5151
ord5162
ord5405
ord5408
ord5143
ord13016
ord5407
ord5439
ord12011
ord12010
ord5514
ord5377
ord13013

msvcrt

_stricmp
_mbscat
_mbsicmp
_strnicmp
_strupr
_onexit
atol
_adjust_fdiv
__dllonexit
_initterm
free
malloc
islower
toupper
__lconv_init
tolower
_mbstok
isupper
_purecall
_mbsrchr
strtok
_ltoa
memmove
strrchr
atoi
sprintf
_itoa
_ismbbtrail
_mbsstr
atof
_mbschr
strchr
strstr
localeconv
_ismbcdigit
strncpy
_mbscmp
isdigit
_mbsupr
_memicmp
_mbscpy

kernel32

LocalAlloc
InterlockedIncrement
GetCPInfo
InterlockedDecrement
lstrcmpiA
LocalFree
GetCurrentProcess
GetTickCount
IsDBCSLeadByte

user32

KillTimer
DispatchMessageA
SetTimer
TranslateMessage
GetMessageA
MessageBoxA
SetFocus
SetDlgItemTextA
EnableWindow
GetWindowTextLengthA
SetCursor
LoadCursorA
GetDlgItemTextA
EndDialog
SendDlgItemMessageA
GetParent
EnableMenuItem
InsertMenuA
CharUpperA
UpdateWindow
InvalidateRect
SetWindowTextA
GetWindowTextA
GetWindowLongA
GetDlgItem
wsprintfA
SendMessageA
LoadStringA

ntwdblib

ord48
ord66
ord76
ord33
ord93
ord71
ord53
ord9
ord67
ord18
ord146
ord14
ord74
ord17
ord58
ord145
ord55
ord142
ord16
ord25
ord11
ord77
ord64
ord78
ord29
ord36
ord159
ord23
ord20
ord141
ord97
ord88
ord89
ord153
ord143
ord144
ord24
ord86
ord85
ord129
ord124
ord137
ord126
ord130
ord127
ord125
ord133
ord132
ord131
ord165
ord31
ord51
ord43
ord161
ord72
ord21
ord12

Exports

Exports

DllRegisterServer
DllUnregisterServer
MSS_ChangeGroupBoxProc
MSS_ChangePasswordBoxProc
MSS_ColumnBoxProc
MSS_CommandBoxProc
MSS_DatabaseProc
MSS_FKListHashString
MSS_GroupBoxProc
MSS_LoginBoxProc
MSS_LoginProc
MSS_NewGroupBoxProc
MSS_NewLoginBoxProc
MSS_NewUserBoxProc
MSS_SecurityBoxProc
MSS_UserBoxProc
PB_DB_Rout
ProfileControlInfo
WEP
_dbwinErrorHandler
_dbwinMessageHandler

Sections

.text
Size: 159KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pbvm90.dll
.dll windows:4 windows x86 arch:x86

488a02bfb552cd3f3de7ad4be6b3e52c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libjcc

JagORB_log
JagORB_async
default_JagORB
JagStream_getReplyAsync
JagBCD_StringToBinary
JagBCD_BinaryToString
JagORB_object_to_string
JagObjectRef_str
JagObjectRef_dup
JagObjectRef_isa
JagORB_init
JagString_dup
new_JagObjectRef
JagMemory_dump
JagMemory_traceOff
JagString_alloc
JagMemory_checkOff
JagMemory_checkOn
JagMemory_traceOn
JagMemory_setParent
JagMemory_log
JagObjectRef_narrow
new_JagORB
delete_JagObjectRef
JagMemory__free
JagORB_string_to_object
new_JagStream
JagMemory_size
JagMemory__alloc

msvcrt

??1type_info@@UAE@XZ
_adjust_fdiv
_initterm
fflush
vsprintf
__mb_cur_max
_onexit
__dllonexit
_ismbclower
_ismbcupper
_tempnam
free
_splitpath
printf
__lconv_init
?terminate@@YAXXZ
setlocale
_isctype
_pctype
malloc
_iob
_strdup
strcspn
toupper
_strnset
_memicmp
_getcwd
_strlwr
_strnicmp
_strupr
fputs
signal
fprintf
_mbscpy
_mbsbtype
_errno
wcstombs
_mbscat
_mbscmp
longjmp
_setjmp3
_i64toa
_beginthreadex
_endthreadex
getc
_strcmpi
putc
fread
ftell
fseek
fwrite
setvbuf
strlen
strcpy
__CxxFrameHandler
_CxxThrowException
rand
_CIfmod
ceil
_CIasin
_CIacos
memcpy
strcmp
memset
srand
strncat
wcsncpy
memchr
_atoi64
islower
isupper
_mbspbrk
strpbrk
wcscpy
strtod
remove
abort
_ltoa
strtol
fscanf
fgets
_mbsspn
strspn
sscanf
strtoul
isxdigit
fopen
fclose
_mbstok
strtok
fputc
_mbscspn
qsort
_stricmp
_getsystime
localtime
_ismbbtrail
_ismbcalnum
isalnum
_ismbcalpha
isalpha
atof
memmove
_ultoa
_mbsupr
ldiv
_CIpow
_ismbcdigit
isdigit
_ismbcspace
atol
sprintf
exit
modf
floor
strncmp
time
_mbsstr
strstr
_mbslwr
wcslen
isspace
strncpy
tolower
strrchr
_mbsrchr
_mbschr
atoi
_wcsicmp
getenv
_purecall
_mbsicmp
strchr
_except_handler3
_itoa
mbstowcs
_ftol

kernel32

WaitForMultipleObjects
OpenSemaphoreA
OpenEventA
OpenMutexA
ResumeThread
GetSystemDefaultLangID
GetLocalTime
GetTickCount
SetCurrentDirectoryA
VirtualFree
GlobalMemoryStatus
VirtualAlloc
ConnectNamedPipe
CreateNamedPipeA
WaitNamedPipeA
GetOverlappedResult
SleepEx
GetComputerNameA
CreateSemaphoreA
ReleaseSemaphore
FormatMessageA
CreateEventA
ResetEvent
SetEvent
GetThreadTimes
GetProcessTimes
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
GetModuleFileNameA
WideCharToMultiByte
MultiByteToWideChar
lstrcpyA
ReleaseMutex
CreateMutexA
CloseHandle
WaitForSingleObject
GetCurrentThreadId
GetProcAddress
GetModuleHandleA
InterlockedIncrement
InterlockedDecrement
GetUserDefaultLCID
FreeLibrary
LoadLibraryA
IsBadWritePtr
_lclose
_lwrite
_llseek
MulDiv
GlobalSize
GlobalLock
GlobalFree
GlobalUnlock
_hread
GlobalAlloc
GlobalReAlloc
LoadLibraryExA
lstrcatA
CreateFileA
GetTempFileNameA
GetTempPathA
lstrcpyW
lstrlenW
IsBadReadPtr
lstrcmpiA
FreeResource
LockResource
LoadResource
FindResourceA
SizeofResource
GetVersion
QueryPerformanceFrequency
GetCurrentDirectoryA
AddAtomA
DeleteAtom
GetVersionExA
lstrlenA
GlobalHandle
GetProfileStringA
GetPrivateProfileStringA
_lread
FatalAppExitA
GetProfileIntA
GetStringTypeExA
FindFirstFileA
FindClose
IsDBCSLeadByte
QueryPerformanceCounter
SetHandleCount
GetPrivateProfileIntA
WritePrivateProfileStringA
WriteProfileStringA
LocalFree
LocalUnlock
LocalLock
LocalAlloc
GetFileAttributesA
CreateDirectoryA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GlobalFlags
GetStdHandle
SetConsoleCtrlHandler
AllocConsole
Sleep
WriteFile
DebugBreak
GlobalGetAtomNameA
GetCurrentThread
GetLogicalDrives
FindNextFileA
DeleteFileA
GetLastError
GetFullPathNameA
SearchPathA
lstrcmpA
CreateProcessA
GetFileSize
SetFilePointer
ReadFile
SetEndOfFile
SwitchToThread
InterlockedExchange
GetCurrentProcess
GetCurrentProcessId
GetCPInfo
RemoveDirectoryA
CopyFileA
MoveFileA
GetSystemInfo
GlobalDeleteAtom
GlobalAddAtomA

user32

ModifyMenuA
TranslateMDISysAccel
TranslateAcceleratorA
DrawTextExA
InsertMenuItemA
TrackPopupMenu
CreateAcceleratorTableA
GetMenuStringA
CopyImage
PostThreadMessageA
DrawIconEx
CopyIcon
LoadMenuA
DeleteMenu
DefMDIChildProcA
DefFrameProcA
DestroyAcceleratorTable
GetClassLongA
SetForegroundWindow
GetClipboardData
IsClipboardFormatAvailable
CharLowerBuffA
UnpackDDElParam
PackDDElParam
DlgDirSelectExA
DlgDirSelectComboBoxExA
GetTabbedTextExtentA
SetCursorPos
GetIconInfo
GetCursor
FreeDDElParam
WaitMessage
SetKeyboardState
GetKeyboardState
MsgWaitForMultipleObjects
GetAsyncKeyState
GetSystemMenu
EnableMenuItem
GetDlgCtrlID
CreateMenu
CreatePopupMenu
AppendMenuA
IsIconic
ChildWindowFromPoint
ClientToScreen
DestroyMenu
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
FindWindowA
CharLowerA
LoadCursorFromFileA
CreateCursor
CreateIconIndirect
wvsprintfA
WindowFromPoint
EqualRect
GetDCEx
MapDialogRect
GetMessageA
PostQuitMessage
IsChild
CreateDialogIndirectParamA
GetCursorPos
GetSysColorBrush
GetMenuState
CheckMenuItem
IsZoomed
CharUpperA
GetKeyboardLayoutList
ActivateKeyboardLayout
LoadIconA
DestroyCursor
EnumChildWindows
GetScrollPos
ReleaseCapture
SetCapture
GetKeyState
SetTimer
GetScrollInfo
GetScrollRange
ScrollWindow
KillTimer
IntersectRect
UnionRect
SetScrollInfo
SetScrollRange
SetScrollPos
MoveWindow
RedrawWindow
GetCapture
IsWindowEnabled
OffsetRect
GetWindowThreadProcessId
IsWindowVisible
MapWindowPoints
GetClassInfoA
CreateWindowExA
SetClassLongA
MessageBeep
UnregisterClassA
BringWindowToTop
InflateRect
FrameRect
InvertRect
GetWindowTextLengthA
SetWindowTextA
SetWindowWord
GetWindowWord
GetWindowLongA
BeginPaint
EndPaint
FillRect
DefWindowProcA
RegisterClassA
CreateIcon
DrawIcon
DrawFocusRect
ShowCursor
InvalidateRect
RegisterWindowMessageA
GetSystemMetrics
DestroyIcon
CheckRadioButton
GetWindowTextA
OemToCharA
CharPrevA
GetDialogBaseUnits
IsDlgButtonChecked
CheckDlgButton
GetFocus
GetDlgItemTextA
SendDlgItemMessageA
SetDlgItemTextA
EnableWindow
GetMenuItemCount
GetSubMenu
GetMessagePos
GetMenuItemInfoA
SetMenuItemInfoA
SetParent
SystemParametersInfoA
DrawTextA
RemoveMenu
GetWindow
GetClassNameA
GetMenu
SetMenu
DrawMenuBar
InsertMenuA
SetRect
LoadBitmapA
UpdateWindow
PeekMessageA
TranslateMessage
DispatchMessageA
WinHelpA
DialogBoxParamA
GetSysColor
GetPropA
CallWindowProcA
IsRectEmpty
GetActiveWindow
GetWindowDC
SetRectEmpty
SetWindowLongA
RemovePropA
ScreenToClient
PtInRect
CopyRect
GetClientRect
IsWindow
PostMessageA
GetParent
RegisterClipboardFormatA
SendMessageA
LoadCursorA
SetCursor
ShowWindow
SetWindowPos
GetDesktopWindow
CreateDialogParamA
GetWindowRect
DestroyWindow
GetDlgItem
SetFocus
EndDialog
GetDC
ReleaseDC
CharUpperBuffA
wsprintfA
LoadImageA
LoadStringA
MessageBoxA
SetPropA
CharNextA

gdi32

GetTextMetricsA
GetBkColor
CreateCompatibleBitmap
Rectangle
CreateSolidBrush
DeleteMetaFile
ExtTextOutA
EnumMetaFile
GetBitmapBits
SetDIBits
CreateBitmap
SetBrushOrgEx
UnrealizeObject
GetTextExtentPoint32A
PlayMetaFile
RestoreDC
SetViewportOrgEx
SaveDC
SetStretchBltMode
CreateDIBitmap
GetStockObject
SetBkMode
PatBlt
CreatePatternBrush
CloseMetaFile
SetWindowExtEx
SetWindowOrgEx
CreateMetaFileA
CreatePen
GetDIBits
FillRgn
CombineRgn
CreateRectRgn
SetViewportExtEx
GetObjectA
SetDIBitsToDevice
LPtoDP
BitBlt
CreateRectRgnIndirect
SetROP2
CreateFontIndirectA
MoveToEx
DeleteObject
CreateBrushIndirect
StartPage
StartDocA
SetAbortProc
EndDoc
EndPage
AbortDoc
TextOutA
Escape
GetTextFaceA
SetBitmapDimensionEx
CreateDCA
EnumFontsA
CreateFontA
RealizePalette
SelectPalette
SetWorldTransform
SetGraphicsMode
GetNearestColor
SetPixel
RoundRect
Ellipse
GetMapMode
DPtoLP
CreateBitmapIndirect
CreatePalette
GetSystemPaletteEntries
PlayMetaFileRecord
GetClipRgn
SetMetaFileBitsEx
GetMetaFileA
CreateHatchBrush
SetTextJustification
GetObjectType
SetTextAlign
GetTextAlign
FrameRgn
SetMapMode
GetDeviceCaps
CreateCompatibleDC
SelectObject
StretchBlt
SetTextColor
SetBkColor
DeleteDC
GetTextColor
GetDIBColorTable
Polyline
StretchDIBits
SelectClipRgn
GetTextExtentPointA
LineTo

comdlg32

ChooseFontA
PrintDlgA
GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError
ChooseColorA

winspool.drv

OpenPrinterA
EnumPrintersA
ClosePrinter
DocumentPropertiesA

ole32

StringFromCLSID
OleCreateLinkToFile
CoUninitialize
CoCreateInstance
CoTaskMemFree
CLSIDFromProgID
CoInitialize
OleGetIconOfClass
CoFreeUnusedLibraries
OleQueryLinkFromData
OleGetClipboard
OleQueryCreateFromData
CLSIDFromString
CoGetMalloc
CreateGenericComposite
OleCreateLink
OleMetafilePictFromIconAndLabel
CreateFileMoniker
OleDoAutoConvert
ReleaseStgMedium
OleCreateFromData
OleCreateLinkFromData
StgOpenStorageOnILockBytes
OleSetContainedObject
GetClassFile
CreateItemMoniker
OleRun
StgIsStorageILockBytes
CreateILockBytesOnHGlobal
GetHGlobalFromILockBytes
StgCreateDocfileOnILockBytes
OleSave
WriteClassStg
OleGetAutoConvert
OleLoad
OleCreateDefaultHandler
CoGetClassObject
OleRegEnumFormatEtc
OleSetMenuDescriptor
CoCreateGuid
CoRevokeClassObject
CoRegisterClassObject
DoDragDrop
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
GetRunningObjectTable
OleDuplicateData
OleIsRunning
StgCreateDocfile
CreateBindCtx
OleLockRunning
CoIsOle1Class
OleDraw
OleConvertOLESTREAMToIStorage
CoBuildVersion
IsAccelerator
OleInitialize
OleSetClipboard
OleUninitialize
OleFlushClipboard
OleCreate
MkParseDisplayName
ProgIDFromCLSID
StgOpenStorage
OleCreateFromFile
StgIsStorageFile
CoRegisterMessageFilter
OleGetIconOfFile

olepro32

ord250

oleaut32

SafeArrayUnaccessData
QueryPathOfRegTypeLi
SysAllocStringLen
SafeArrayGetElement
GetActiveObject
SafeArrayGetLBound
VarDateFromR8
SafeArrayGetDim
SafeArrayGetUBound
SetErrorInfo
SafeArrayPutElement
SafeArrayCreate
VariantCopy
SysFreeString
VariantInit
VariantClear
SysStringByteLen
SysAllocStringByteLen
SafeArrayAccessData
LoadTypeLi
VariantChangeType
CreateTypeLi
CreateErrorInfo
LoadRegTypeLi
SysAllocString
SysStringLen
GetErrorInfo

advapi32

RegEnumKeyExA
RegDeleteKeyA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegOpenKeyA
GetUserNameA
SetSecurityDescriptorDacl
RegEnumValueA
RevertToSelf
ImpersonateNamedPipeClient
InitializeSecurityDescriptor
RegDeleteValueA
RegFlushKey
DeregisterEventSource
RegisterEventSourceA
ReportEventA
RegEnumKeyA
RegSetValueA
RegCreateKeyA
RegQueryValueExA
RegOpenKeyExA

shell32

ExtractIconExA
SHGetPathFromIDListA
ExtractIconA
SHGetMalloc
SHBrowseForFolderA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

oledlg

ord4
ord9
ord5
ord1

imm32

ImmGetCompositionStringA
ImmSetConversionStatus
ImmGetConversionStatus
ImmSetOpenStatus
ImmSimulateHotKey
ImmGetOpenStatus
ImmGetContext
ImmReleaseContext
ImmSetCompositionFontA

wsock32

listen
accept
bind
shutdown
select
setsockopt
gethostbyname
__WSAFDIsSet
closesocket
htons
send
recv
ioctlsocket
ntohl
socket
WSAGetLastError
connect
WSACleanup
WSAStartup
getservbyname
htonl

comctl32

_TrackMouseEvent

msvcirt

?openprot@filebuf@@2HB
?flush@ostream@@QAEAAV1@XZ
??0ofstream@@QAE@PBDHH@Z
??6ostream@@QAEAAV0@E@Z
??6ostream@@QAEAAV0@K@Z
??6ostream@@QAEAAV0@PBD@Z
??1ios@@UAE@XZ
??1ofstream@@UAE@XZ

Exports

Exports

?emit_message@@YGXPAUjpeg_common_struct@@H@Z
?error_exit@@YGXPAUjpeg_common_struct@@@Z
?fill_input_buffer@@YGHPAUjpeg_decompress_struct@@@Z
?format_message@@YGXPAUjpeg_common_struct@@PAD@Z
?init_source@@YGXPAUjpeg_decompress_struct@@@Z
?output_message@@YGXPAUjpeg_common_struct@@@Z
?reset_error_mgr@@YGXPAUjpeg_common_struct@@@Z
?resync_to_restart@@YGHPAUjpeg_decompress_struct@@H@Z
?skip_input_data@@YGXPAUjpeg_decompress_struct@@J@Z
?term_source@@YGXPAUjpeg_decompress_struct@@@Z
AbsoluteDecimal
AddDecimal
ArrayBounds_getLowerbound
ArrayBounds_getUpperbound
ChangeSignDecimal
ClassDef_FindMatchingFunction
ClassDef_GetAncestor
ClassDef_GetIsAutoinstantiate
ClassDef_GetNestedClass
ClassDef_GetNestedClassList
ClassDef_GetNumNstClasses
ClassDef_GetNumScripts
ClassDef_GetNumVariables
ClassDef_GetRoutine
ClassDef_GetRoutineList
ClassDef_GetVariable
ClassDef_GetVariableList
ClassDef_GetWithInClass
ClassDefinitionObject_destroyObject
CompareDecimal
ConvAsciiToDecimal
ConvDecToDouble
ConvDecToFloat
ConvDecToInt
ConvDecToLong
ConvDecToLonglong
ConvDecToUns
ConvDecToUnsLong
ConvDecimalToAscii
ConvDoubleToDecimal
ConvDoubleToDecimalRound
ConvFloatToDecimal
ConvIntToDecimal
ConvLongToDecimal
ConvLonglongToDecimal
ConvUnsLongToDecimal
ConvUnsToDecimal
CopyDateTimeToPSH_TIME
CopyDateToPSH_TIME
CopyDecimalToPSH_DEC
CopyTimeToPSH_TIME
CreateBlob
CreateBlobFromBytes
CreateBlobFromLPTSTR
CreateBlobWithSize
CreateDateFromLPTSTR
CreateDateFromPSH_TIME
CreateDateFromString
CreateDateTimeFromLPTSTR
CreateDateTimeFromPSH_TIME
CreateDateTimeFromString
CreateDebugLog
CreateDecimal
CreateDecimalFromDouble
CreateDecimalFromLPTSTR
CreateDecimalFromLong
CreateDecimalFromPSH_DEC
CreateDynamicVector
CreateDynamicVectorFromArray
CreateDynamicVectorWithSize
CreateEnumUnknown
CreateFileType
CreateList
CreateListFromArray
CreateLogManager
CreateNTEventLog
CreatePBIArgument
CreatePBIArray
CreatePBIArrayBounds
CreatePBIArrayBoundsList
CreatePBIArrayOfObject
CreatePBIArrayRuntime
CreatePBIBlob
CreatePBIBlobRuntime
CreatePBIClassDef
CreatePBIClassDefList
CreatePBIContextRuntime
CreatePBIDate
CreatePBIDateRuntime
CreatePBIDateTime
CreatePBIDateTimeRuntime
CreatePBIDateToday
CreatePBIDecimal
CreatePBIDecimalRuntime
CreatePBIException
CreatePBIGeneratorRegistry
CreatePBIInstanceByID
CreatePBIInstanceByName
CreatePBIInstanceRuntime
CreatePBIScriptDef
CreatePBIScriptDefList
CreatePBISession
CreatePBISessionRuntime
CreatePBIString
CreatePBIStringList
CreatePBITime
CreatePBITimeNow
CreatePBITimeRuntime
CreatePBITypeDef
CreatePBIUnboundedArray
CreatePBIUnboundedArrayOfObject
CreatePBIValue
CreatePBIValueRuntime
CreatePBIVariableDefList
CreateString
CreateStringBuffer
CreateStringBufferFromLPTSTR
CreateStringDictionary
CreateStringDictionaryWithFlags
CreateStringDictionaryWithSize
CreateTimeFromLPTSTR
CreateTimeFromPSH_TIME
CreateTimeFromString
CreateUlongDictionary
CreateUlongDictionaryWithFlags
CreateUlongDictionaryWithSize
DBGVW_AddINT
DBGVW_AddLPTSTR
DBGVW_DlgProc
DBGVW_Remove
DBGVW_Show
DBI_AddSyntaxLine
DBI_AlterForeignKeySyntax
DBI_AlterPrimaryKeySyntax
DBI_AttrInfo
DBI_BindSelectBuffer
DBI_BuildComboList
DBI_BuildRPCAlias
DBI_CanIdentifySystemProcs
DBI_Cancel
DBI_CleanUpColumnList
DBI_ComboList
DBI_Command_Tran
DBI_Commit
DBI_Connect
DBI_CreateForeignKeySyntax
DBI_CreateNoLogPKeySyntax
DBI_CreatePrimaryKeySyntax
DBI_CtrlChars2Text
DBI_CursorConnect
DBI_DBHandle
DBI_DWCursorConnect
DBI_DataTypeListString
DBI_DatabaseInfo
DBI_DatabaseLoad
DBI_DateString
DBI_DecimalString
DBI_DeleteDir
DBI_DeleteProcDir
DBI_DeleteSyntaxList
DBI_DelimitReservedWord
DBI_Describe
DBI_DescribeExtra
DBI_DescribeInput
DBI_DescribeOutput
DBI_DialogBoxCenter
DBI_DialogConnect
DBI_Disconnect
DBI_DoCompare
DBI_DoCompareFirst
DBI_DoCompareFirstWithSkip
DBI_DoubleString
DBI_DoubleTheQuotes
DBI_DummyConnect
DBI_DynamicBind
DBI_EditStyleHash
DBI_EditStyleInfo
DBI_EditUpdate
DBI_EndSyntax
DBI_ErrorSQL
DBI_ExecPlan
DBI_Execute
DBI_FetchFirst
DBI_FetchLast
DBI_FetchNext
DBI_FetchPrev
DBI_FetchRandom
DBI_FetchRelative
DBI_FillBlanks
DBI_FindComboListString
DBI_FindComboString
DBI_FinishLine
DBI_FormatHash
DBI_FreeColBlkList
DBI_FreeDBInterface
DBI_FreeMem
DBI_FreeParmList
DBI_FreePrepList
DBI_FreeValidHash
DBI_FreeWhereList
DBI_GetBlobConnect
DBI_GetColumnExpression
DBI_GetDriverObjects
DBI_GetForeignKYOptions
DBI_GetIdentityValue
DBI_GetNextResultSet
DBI_GetPBTypeString
DBI_GetParm
DBI_GetSelectInfo
DBI_GetSelectItems
DBI_GetTimestamp
DBI_IsConnFromServer
DBI_LibraryName
DBI_LoadDBInterface
DBI_LoadString
DBI_LogIn
DBI_LookForKeyWord
DBI_MPowerFetchNext
DBI_MatchCombo
DBI_MatchString
DBI_NewDBParm
DBI_NumericString
DBI_OuterJoinSyntax
DBI_OuterJoinSyntax_ANSI
DBI_PBC_DialogBox
DBI_PBC_DialogBoxParam
DBI_PBC_ShowWindow
DBI_PBToArgs
DBI_PBToSQL
DBI_Parse
DBI_ParseBasicSelect
DBI_ParseColList
DBI_ParseColSubset
DBI_ParseFrom
DBI_ParseIdentifier
DBI_ParseKeyWords
DBI_ParseParms
DBI_ParseWhere
DBI_Prepare
DBI_PrepareWithParms
DBI_PrimaryKeyReferences
DBI_ProcDescribe
DBI_ProcInfo
DBI_ProcPrepare
DBI_ProcText
DBI_PubProcList
DBI_PubProcRPCSyntax
DBI_RPC_DoCall
DBI_ReadBlob
DBI_RegisterVendor
DBI_ReleaseInputParms
DBI_ReplaceDbParm
DBI_RollBack
DBI_Rows
DBI_RuntimeExecute
DBI_RuntimeFetchNext
DBI_SQLCacheBegin
DBI_SQLCacheDiscardEntry
DBI_SQLCacheEnd
DBI_SQLCacheFlushEntries
DBI_SQLCacheMakeSQLStatementAvailable
DBI_SQLCacheRegisterDescribe
DBI_SQLCacheRegisterSQLStatement
DBI_SQLCacheRequestDescribe
DBI_SQLCacheRequestSqlStatement
DBI_SQLCacheSetSelectCacheSize
DBI_SQLCacheStatistics
DBI_SearchReplace
DBI_SquishSyntax
DBI_StartSyntax
DBI_StartTran
DBI_Step
DBI_SystemDatabaseLoad
DBI_TableExplode
DBI_TableLoad
DBI_TerminateSQL
DBI_Text2CtrlChars
DBI_ThreadSafeEnabled
DBI_UnRegisterVendor
DBI_UniqueKey
DBI_ValidHash
DBI_ViewText
DBI_WriteBlob
DBI_YesTrue1
DPBApplicationNameGet
DPBApplicationNameSet
DPBConnectStringGet
DPBConnectStringSet
DPBConnectToRemote
DPBCreateConnectObject
DPBCreateInstance
DPBCreateInstanceFromProxy
DPBDestroyConnectObject
DPBDisconnectRemote
DPBDriverErrorCodeGet
DPBDriverErrorStrGet
DPBDriverNameGet
DPBDriverNameSet
DPBGetConnectionInfo
DPBGetSessionInfo
DPBLocationNameGet
DPBLocationNameSet
DPBLookup
DPBORB_Create
DPBORB_Destroy
DPBORB_Init
DPBORB_ObjectToString
DPBORB_ResolveInitialReferences
DPBORB_StringToObject
DPBOptionsGet
DPBOptionsSet
DPBPasswordGet
DPBPasswordSet
DPBRemoteServerStopListen
DPBRemoteServerStopUserConnection
DPBTraceGet
DPBTraceSet
DPBUserIDGet
DPBUserIDSet
DP_ApplyDDLSyntax
DP_ArgdProc
DP_BlocksToText
DP_BuildCreateBlks
DP_BuildCreateSyntax
DP_BuildDropSyntax
DP_BuildNdxBlks
DP_BuildNdxSyntax
DP_BuildPrimaryKeyBlks
DP_BuildPrimaryKeySyntax
DP_BuildTablename
DP_CheckKeytype
DP_CreateTable
DP_DestroyBindBuffer
DP_DestroyColumnList
DP_DestroyCreateBlks
DP_DestroyDPBlob
DP_DestroyDPBlobList
DP_DestroyDPinfo
DP_DestroyDPtable
DP_DestroySyntax
DP_ExecuteError
DP_ExecuteSelect
DP_MatchPBtype
DP_MatchTypeName
DP_Parsecname
DP_Parsetname
DP_RTCancelPipe
DP_RTClosePipe
DP_RTCreatePipe
DP_RTRepairPipe
DP_RTRunPipe
DP_SetBlobs
DP_SetDefaultBind
DP_SetDefaultText
DP_TableStatus
DP_TextToBlocks
DP_TransferData
DP_dwCloseError
DP_dwCreate
DP_dwDestroy
DP_genSQLData
DP_getKeyDef
DP_getTblDef
DP_setKeys
DecimalPrecision
DivideDecimal
DivideDecimalAndRound
DivideDecimalAndTruncate
DllCanUnloadNow
DllGetClassObject
DrawPsppObject
EnumerationDefinition_EnumUpperBound
EnumerationDefinition_GetEnumeration
EnumerationDefinition_GetEnumerationList
EnumerationItemDefinition_getName
EnumerationItemDefinition_getValue
FNX_DataWindowDescribe
FNX_DataWindowGetBandAtPointer
FNX_DataWindowGetChild
FNX_DataWindowGetCurrentColumn
FNX_DataWindowGetCurrentRow
FNX_DataWindowGetItemDateTime
FNX_DataWindowGetItemNumber
FNX_DataWindowGetItemString
FNX_DataWindowGetObjectAtPointer
FNX_DataWindowGetRowCount
FNX_DataWindowSaveAs
FNX_DataWindowSelectRow
FNX_DataWindowSetAllEvents
FNX_DataWindowSetCurrentColumn
FNX_DataWindowSetCurrentRow
FNX_IsPowerObject
FNX_ObjectClassName
FNX_ObjectIUnknown
FNX_RteGetCharFormat
FNX_RteGetCurrentBand
FNX_RteGetLine
FNX_RteGetSelection
FNX_RteLineCount
FNX_RteLineLength
FNX_RteSetCurrentBand
FNX_RteSetSelection
FN_BeginTrace
FN_CheckBoxWnd
FN_CloseTrace
FN_CommandButtonWnd
FN_ConvertUnits
FN_CtlColor
FN_CtlCreate
FN_CtlCreateAll
FN_CtlFree
FN_CtlFreeAll
FN_CtlRecreate
FN_CtlResCreate
FN_CtlResFree
FN_DWGetHandle
FN_DataStoreWnd
FN_DataWindowChange
FN_DataWindowWnd
FN_DisableEventTrace
FN_DrawLine
FN_DrawRectangle
FN_DropDownEditWnd
FN_DropDownListWnd
FN_DropDownMainWnd
FN_DumpTrace
FN_EditMaskWnd
FN_EnableEventTrace
FN_EndTrace
FN_EvtTimerWnd
FN_FieldGetAppString
FN_FieldGetCtl
FN_FieldGetDS
FN_FieldGetDW
FN_FieldGetMN
FN_FieldGetUO
FN_FieldGetWN
FN_FieldItemUpdate
FN_FieldUpdate
FN_FileDlgHook
FN_FileGetHandle
FN_FormatData
FN_GetApplicationObInst
FN_GetDataStoreHWNDUsage
FN_GetExeInstance
FN_GraphWnd
FN_GroupBoxWnd
FN_HScrollBarWnd
FN_HelpWnd
FN_Init
FN_LibraryEntryList
FN_ListBoxWnd
FN_ListViewCompare
FN_ListViewCompare2
FN_ListViewDeleteItem
FN_ListViewGetDispInfo
FN_ListViewWnd
FN_LookupEventDecl
FN_MDIClientWnd
FN_MailIsAvailable
FN_MailWithAttachment
FN_MenuBarCreate
FN_MinimumVersion
FN_MultiLineEditWnd
FN_NormalizeWindowSize
FN_OleControlWnd
FN_OpenTrace
FN_OwnerDraw
FN_OwnerInit
FN_PictureWnd
FN_PipelineNotify
FN_PluginPollLoop
FN_PluginStart
FN_PluginStop
FN_PostedRoutine
FN_RadioButtonWnd
FN_ResCreateBitmap
FN_ResCreateBitmap3D
FN_ResCreateBitmapFromIcon
FN_ResDestroy
FN_ResGetBitmapID
FN_ResGetBitmapName
FN_ResGetBitmapTable
FN_ResGetColor
FN_ResGetCursorID
FN_ResGetCursorTable
FN_ResGetIconID
FN_ResGetIconTable
FN_RichTextEditWnd
FN_RtActive
FN_RtActiveWnd
FN_RtBroadcast
FN_RtHandle
FN_RtMenuInfo
FN_RtRespCnt
FN_RtSuspend
FN_RtSuspended
FN_RtTerminate
FN_RtWndAccel
FN_RtWndInfo

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 263KB - Virtual size: 370KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 443KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pic/Apps.ico
pic/Cmm.ico
pic/Fontsd.ico
pic/PAGESETU.BMP
pic/Script.ico
pic/Systemd.ico
pic/TIME.BMP
pic/Thumbs.db
pic/email.bmp
uninst.exe
.exe windows:4 windows x86 arch:x86

dfb06052e74b26a42b0e490bd1c07959

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
MulDiv
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetAsyncKeyState
IsDlgButtonChecked
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
RegisterClassA
OpenClipboard
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
wvsprintfA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
ShowWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
EmptyClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
SetForegroundWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 280KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/KillProcDLL.dll
.dll windows:4 windows x86 arch:x86

153027ec3b10bcea606b777657dd3402

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersionExA
TerminateProcess
OpenProcess
LoadLibraryA
CloseHandle
GetProcAddress
FreeLibrary
GlobalFree
lstrcpyA
DisableThreadLibraryCalls

msvcrt

strcmp
_strupr
toupper
strlen
free
_initterm
malloc
_adjust_fdiv
strcpy
_itoa

Exports

Exports

KillProc

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
xt_toolbar.dll
.dll windows:1 windows x86 arch:x86

ce9553555bf46f06b36a2bff16ca2437

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CharUpperBuffA
MessageBoxA

kernel32

CloseHandle
CreateEventA
CreateFileA
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExitProcess
ExitThread
FreeEnvironmentStringsA
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetFileType
GetLastError
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStdHandle
GetVersion
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
SetConsoleCtrlHandler
SetEnvironmentVariableA
SetEnvironmentVariableW
SetEvent
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

pbvm90

ord5237
ord2453
ord2513
ord2579
ord2426
ord2514
ord5164
ord2480
ord2295
ord2611
ord2386
ord2490
ord2279
ord2050
ord2484
ord2488
ord2454
ord2486
ord2634
ord2515
ord2479
ord2405
ord5236
ord2384
ord2468
ord2448
ord2412
ord2653
ord2599
ord2639
ord2638
ord2546
ord2404
ord2456
ord2646
ord5245
ord2644
ord2645
ord2461
ord2469
ord2057
ord2497
ord2473
ord2495
ord2474
ord2496
ord2416
ord2582
ord2462
ord5151
ord2407
ord2459
ord2012
ord2458
ord2578
ord2183
ord2865
ord2043
ord2864

Exports

Exports

_DllMain@12
__fn_18_32770_0@8
__fn_18_32770_1@8
__fn_18_32770_65@8
__fn_19_32770_0@8
__fn_19_32770_1@8
__fn_19_32786_0@8
__fn_19_32786_1@8
__fn_19_32787_0@8
__fn_19_32787_1@8
__fn_19_32787_37@8
__fn_19_32788_0@8
__fn_19_32788_1@8
__fn_19_32788_37@8
__fn_19_32789_0@8
__fn_19_32789_1@8
__fn_19_32789_37@8
__fn_19_32790_0@8
__fn_19_32790_1@8
__fn_19_32790_37@8
__fn_19_32791_0@8
__fn_19_32791_1@8
__fn_19_32791_37@8
__fn_20_32770_0@8
__fn_20_32770_19@8
__fn_20_32770_1@8
__fn_20_32770_20@8
__fn_20_32770_21@8
__fn_20_32770_22@8
__fn_20_32770_23@8
__fn_20_32770_24@8
__fn_20_32770_25@8
__fn_20_32770_26@8
__fn_20_32770_27@8
__fn_20_32770_28@8
__fn_20_32770_29@8
__fn_20_32770_30@8
__fn_20_32770_31@8
__fn_20_32770_32@8
__fn_20_32770_33@8
__fn_20_32770_34@8
__fn_20_32770_35@8
__fn_20_32770_36@8
__fn_21_32770_0@8
__fn_21_32770_1@8
__fn_22_32770_0@8
__fn_22_32770_100@8
__fn_22_32770_101@8
__fn_22_32770_102@8
__fn_22_32770_103@8
__fn_22_32770_104@8
__fn_22_32770_105@8
__fn_22_32770_106@8
__fn_22_32770_107@8
__fn_22_32770_108@8
__fn_22_32770_1@8
__fn_22_32770_50@8
__fn_22_32770_51@8
__fn_22_32770_65@8
__fn_22_32770_66@8
__fn_22_32770_67@8
__fn_22_32770_68@8
__fn_22_32770_69@8
__fn_22_32770_70@8
__fn_22_32770_71@8
__fn_22_32770_72@8
__fn_22_32770_73@8
__fn_22_32770_74@8
__fn_22_32770_75@8
__fn_22_32770_76@8
__fn_22_32770_77@8
__fn_22_32770_78@8
__fn_22_32770_79@8
__fn_22_32770_80@8
__fn_22_32770_81@8
__fn_22_32770_82@8
__fn_22_32770_83@8
__fn_22_32770_84@8
__fn_22_32770_85@8
__fn_22_32770_86@8
__fn_22_32770_87@8
__fn_22_32770_88@8
__fn_22_32770_89@8
__fn_22_32770_90@8
__fn_22_32770_91@8
__fn_22_32770_92@8
__fn_22_32770_93@8
__fn_22_32770_94@8
__fn_22_32770_95@8
__fn_22_32770_96@8
__fn_22_32770_97@8
__fn_22_32770_98@8
__fn_22_32770_99@8
__fn_22_32787_1@8
__fn_22_32790_1@8
__fn_23_32770_0@8
__fn_23_32770_100@8
__fn_23_32770_101@8
__fn_23_32770_102@8
__fn_23_32770_103@8
__fn_23_32770_104@8
__fn_23_32770_105@8
__fn_23_32770_1@8
__fn_23_32770_50@8
__fn_23_32770_51@8
__fn_23_32770_65@8
__fn_23_32770_66@8
__fn_23_32770_67@8
__fn_23_32770_68@8
__fn_23_32770_69@8
__fn_23_32770_70@8
__fn_23_32770_71@8
__fn_23_32770_72@8
__fn_23_32770_73@8
__fn_23_32770_74@8
__fn_23_32770_75@8
__fn_23_32770_76@8
__fn_23_32770_77@8
__fn_23_32770_78@8
__fn_23_32770_79@8
__fn_23_32770_80@8
__fn_23_32770_81@8
__fn_23_32770_82@8
__fn_23_32770_83@8
__fn_23_32770_84@8
__fn_23_32770_85@8
__fn_23_32770_86@8
__fn_23_32770_87@8
__fn_23_32770_88@8
__fn_23_32770_89@8
__fn_23_32770_90@8
__fn_23_32770_91@8
__fn_23_32770_92@8
__fn_23_32770_93@8
__fn_23_32770_94@8
__fn_23_32770_95@8
__fn_23_32770_96@8
__fn_23_32770_97@8
__fn_23_32770_98@8
__fn_23_32770_99@8
__fn_24_32770_0@8
__fn_24_32770_135@8
__fn_24_32770_1@8
__fn_24_32770_54@8
__fn_24_32789_1@8
__fn_4_32770_0@8
__fn_4_32770_1@8
__fn_4_32770_50@8
__fn_4_32770_65@8
__fn_4_32770_66@8
__fn_4_32770_67@8
__fn_4_32770_68@8
__fn_4_32770_69@8
__fn_4_32770_70@8
__fn_4_32770_71@8
__fn_4_32770_72@8
__fn_4_32770_73@8
__fn_4_32770_74@8
__fn_4_32770_75@8
__fn_4_32770_76@8
__fn_4_32770_77@8
__fn_4_32770_78@8
__fn_4_32787_1@8
__fn_4_32790_1@8
__fn_5_32770_0@8
__fn_5_32770_1@8
_getVtableInfo_m_bb2@12
_getVtableInfo_nvo_tooltips@12
_getVtableInfo_uo_angle@12
_getVtableInfo_uo_toolbar@12
_getVtableInfo_uo_toolbar_button@12
_getVtableInfo_uo_toolbar_icon@12
_getVtableInfo_uo_toolbar_menuseperator@12
_getVtableInfo_uo_toolbar_space@12
_getVtableInfo_w_xt_toolbar_test@12

Sections

AUTO
Size: 306KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 47KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 5KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 5KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
yitesoft.url
ʹ˵.txt

Sharing

General

Malware Config

Signatures

Files

dd1742eadfc6df18ded3c26ae64ad610

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 151KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 125KB - Virtual size: 124KB

dfb06052e74b26a42b0e490bd1c07959

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 3KB - Virtual size: 252KB

.ndata Size: - Virtual size: 280KB

.rsrc Size: 125KB - Virtual size: 124KB

0b51ce6ce6bf8d5c68b3ea9f3ac1bf2c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1KB - Virtual size: 1KB

0308deee9f67f74385166e56fb5d1431

Headers

File Characteristics

Imports

kernel32

msvcrt

wsock32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 768B

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 234B

ad360252cbae41f069ad9fdc23286b74

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 151KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 125KB - Virtual size: 124KB

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 3KB - Virtual size: 252KB

.ndata
Size: - Virtual size: 280KB

.rsrc
Size: 125KB - Virtual size: 124KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 768B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 234B

.text
Size: 80KB - Virtual size: 78KB

.data
Size: 8KB - Virtual size: 4KB

.sdbid
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1016B

.reloc
Size: 8KB - Virtual size: 6KB

.text
Size: 12KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 164B

.rsrc
Size: 4KB - Virtual size: 1008B

.reloc
Size: 4KB - Virtual size: 594B

.text
Size: 190KB - Virtual size: 189KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 113KB - Virtual size: 265KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 836B

.reloc
Size: 13KB - Virtual size: 12KB

.text
Size: 21KB - Virtual size: 20KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 6KB - Virtual size: 8KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 288B

.reloc
Size: 1KB - Virtual size: 1KB

AUTO
Size: 567KB - Virtual size:

.idata
Size: 2KB - Virtual size: