c7a2af73f4d0e1f3b5085f2aa536bc7f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c7a2af73f4d0e1f3b5085f2aa536bc7f_JaffaCakes118
Size

7.7MB
MD5

c7a2af73f4d0e1f3b5085f2aa536bc7f
SHA1

3f0452fd6babbea5b56aa95aeebd509fa82aed6e
SHA256

635b5bb9beaac1efa15f9c7a51fb66c72b9899589af498267771dae5853ec54e
SHA512

5f0ea1aa93ab105ea474682d08918da7c208232d9c1c0b327b633eed62033f35237c508ad649fa2b967e08f57fe851fb8f6efa1c8833124a2bb2d47c752dc1b0
SSDEEP

196608:OS30G+de+3ngcgtk2P0HolYdydvF11nfe9L:ObG+p3g7kI0HzyF1luL

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/nsDui.dll
unpack001/Suzip.sfx

NSIS installer 2 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2

Files

c7a2af73f4d0e1f3b5085f2aa536bc7f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

38:33:47:c5:02:94:66:ab:7c:1d:9b:4b:84:d3:93:80:22:90:59:7b:de:0b:b3:a3:e7:31:ea:c6:aa:66:57:94
Signer

Actual PE Digest

38:33:47:c5:02:94:66:ab:7c:1d:9b:4b:84:d3:93:80:22:90:59:7b:de:0b:b3:a3:e7:31:ea:c6:aa:66:57:94

Digest Algorithm

sha256

PE Digest Matches

true

a5:14:0f:46:3e:81:5c:9d:a9:a0:20:5e:dc:b8:56:31:10:d5:d0:2f
Signer

Actual PE Digest

a5:14:0f:46:3e:81:5c:9d:a9:a0:20:5e:dc:b8:56:31:10:d5:d0:2f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$APPDATA/SuZip/SkinTemp/0.jpg
.png
$APPDATA/SuZip/SuW.exe
.exe windows:5 windows x86 arch:x86

ab25387f907e7ddda8a04c312d3a63d2

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

de:07:c5:9d:db:b6:4d:d0:a3:a7:c3:f8:8f:39:f0:c0:f0:41:bc:87:98:93:2a:85:31:e0:16:d3:32:ed:0a:fc
Signer

Actual PE Digest

de:07:c5:9d:db:b6:4d:d0:a3:a7:c3:f8:8f:39:f0:c0:f0:41:bc:87:98:93:2a:85:31:e0:16:d3:32:ed:0a:fc

Digest Algorithm

sha256

PE Digest Matches

true

14:8e:74:91:35:43:63:73:22:6b:39:c5:3d:97:9c:2e:e2:aa:a8:00
Signer

Actual PE Digest

14:8e:74:91:35:43:63:73:22:6b:39:c5:3d:97:9c:2e:e2:aa:a8:00

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\SuW.pdb

Imports

duilib

?SetMinInfo@CPaintManagerUI@DuiLib@@QAEXHH@Z
?SetMaxInfo@CPaintManagerUI@DuiLib@@QAEXHH@Z
??8CDuiString@DuiLib@@QBE_NPB_W@Z
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@UtagPOINT@@@Z
?GetHWND@CWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
?Close@CWindowWnd@DuiLib@@QAEXI@Z
??BCDuiString@DuiLib@@QBEPB_WXZ
?GetSuperClassName@CWindowWnd@DuiLib@@MBEPB_WXZ
?GetClassStyle@WindowImplBase@DuiLib@@UBEIXZ
?InitResource@WindowImplBase@DuiLib@@UAEXXZ
?OnClick@WindowImplBase@DuiLib@@MAEXAAUtagTNotifyUI@2@@Z
?IsInStaticControl@WindowImplBase@DuiLib@@MAEHPAVCControlUI@2@@Z
?GetManagerName@WindowImplBase@DuiLib@@MAEPB_WXZ
?OnClose@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnDestroy@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcActivate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcCalcSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcPaint@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcHitTest@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnGetMinMaxInfo@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseWheel@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseHover@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnChar@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSysCommand@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnCreate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKeyDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKillFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSetFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonUp@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseMove@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?SetFont@CLabelUI@DuiLib@@QAEXH@Z
?GetStyle@WindowImplBase@DuiLib@@UAEJXZ
?GetMessageMap@WindowImplBase@DuiLib@@MBEPBUDUI_MSGMAP@2@XZ
?MessageHandler@WindowImplBase@DuiLib@@UAEJIIJAA_N@Z
?CreateControl@WindowImplBase@DuiLib@@UAEPAVCControlUI@2@PB_W@Z
?QueryControlText@WindowImplBase@DuiLib@@UAEPB_WPB_W0@Z
?GetInstance@CPaintManagerUI@DuiLib@@SAPAUHINSTANCE__@@XZ
?SetInitSize@CPaintManagerUI@DuiLib@@QAEXHH@Z
?ShowWindow@CWindowWnd@DuiLib@@QAEX_N0@Z
?GetWebBrowser2@CWebBrowserUI@DuiLib@@QAEPAUIWebBrowser2@@XZ
?GetCurSel@CTabLayoutUI@DuiLib@@QBEHXZ
?SetWebBrowserEventHandler@CWebBrowserUI@DuiLib@@QAEXPAVCWebBrowserEventHandler@2@@Z
?NavigateUrl@CWebBrowserUI@DuiLib@@QAEXPB_W@Z
?OnFinalMessage@WindowImplBase@DuiLib@@UAEXPAUHWND__@@@Z
?Create@CWindowWnd@DuiLib@@QAEPAUHWND__@@PAU3@PB_WKKHHHHPAUHMENU__@@@Z
?MessageLoop@CPaintManagerUI@DuiLib@@SAXXZ
??0WindowImplBase@DuiLib@@QAE@XZ
??0CDuiString@DuiLib@@QAE@XZ
??4CDuiString@DuiLib@@QAEABV01@PB_W@Z
?Format@CDuiString@DuiLib@@QAAHPB_WZZ
??0CDuiString@DuiLib@@QAE@ABV01@@Z
??HCDuiString@DuiLib@@QBE?AV01@ABV01@@Z
??HCDuiString@DuiLib@@QBE?AV01@PB_W@Z
?HandleMessage@WindowImplBase@DuiLib@@UAEJIIJ@Z
??MCDuiString@DuiLib@@QBE_NPB_W@Z
?InitWindow@WindowImplBase@DuiLib@@UAEXXZ
?GetClientSize@CPaintManagerUI@DuiLib@@QBE?AUtagSIZE@@XZ
?IsSelected@COptionUI@DuiLib@@QBE_NXZ
?AddFont@CPaintManagerUI@DuiLib@@QAEPAUHFONT__@@HPB_WH_N111@Z
?SetCaptionRect@CPaintManagerUI@DuiLib@@QAEXAAUtagRECT@@@Z
?SetInstance@CPaintManagerUI@DuiLib@@SAXPAUHINSTANCE__@@@Z
?SetBkImage@CControlUI@DuiLib@@QAEXPB_W@Z
?GetFontInfo@CPaintManagerUI@DuiLib@@QAEPAUtagTFontInfo@2@H@Z
?GetFont@CLabelUI@DuiLib@@QBEHXZ
?SetTextColor@CLabelUI@DuiLib@@QAEXK@Z
?AddImage@CPaintManagerUI@DuiLib@@QAEPBUtagTImageInfo@2@PB_WPAUHBITMAP__@@HH_N2@Z
?RemoveImage@CPaintManagerUI@DuiLib@@QAEXPB_W_N@Z
??0CDuiString@DuiLib@@QAE@PB_WH@Z
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PB_W@Z
??1CDuiString@DuiLib@@QAE@XZ
??1WindowImplBase@DuiLib@@UAE@XZ
?HandleCustomMessage@WindowImplBase@DuiLib@@UAEJIIJAAH@Z

kernel32

FreeResource
SystemTimeToFileTime
Sleep
VirtualQuery
VirtualProtect
VirtualAlloc
InterlockedCompareExchange
GetCurrentThreadId
ResumeThread
FlushInstructionCache
GetThreadContext
SetThreadContext
SuspendThread
SetLastError
EncodePointer
CreateThread
OpenProcess
GetTickCount
GetCurrentThread
GetSystemDirectoryW
GetSystemInfo
GetVersionExW
GetCurrentProcess
GetModuleHandleA
GetProcAddress
LoadLibraryW
GetModuleHandleW
GetLastError
DeleteFileW
CreateDirectoryW
SetEnvironmentVariableA
CompareStringW
GetProcessHeap
SetEndOfFile
CreateFileW
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
HeapReAlloc
LCMapStringW
GlobalUnlock
GlobalLock
GlobalAlloc
LoadResource
SizeofResource
WaitForSingleObject
GetModuleFileNameA
SetUnhandledExceptionFilter
FlushFileBuffers
GetStringTypeW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
CreateFileA
HeapCreate
GetLocaleInfoW
InterlockedExchange
GetConsoleScreenBufferInfo
GetConsoleMode
GetConsoleCP
WriteFile
ReadFile
GetFileType
SetHandleCount
SetFilePointer
InitializeCriticalSectionAndSpinCount
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedIncrement
GetCPInfo
HeapSize
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
InterlockedDecrement
RtlUnwind
RaiseException
SetConsoleTextAttribute
WriteConsoleW
GetStdHandle
FindResourceW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetCurrentProcessId
CloseHandle
GetStartupInfoW
HeapSetInformation
GetTimeZoneInformation
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
ExitProcess
OutputDebugStringW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FindClose
FindFirstFileW
GetVersion
FreeLibrary
CreateMutexW
LocalFree
FormatMessageW
GetTempFileNameW
GetTempPathW
GetLongPathNameW
GetModuleFileNameW
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
MoveFileExW
GetFileAttributesW
GetLocalTime
DecodePointer

user32

wsprintfW
GetDC
SetForegroundWindow
TrackMouseEvent
GetCursorPos
KillTimer
ScreenToClient
SetFocus
GetWindowRect
SendMessageW
ClientToScreen
CallWindowProcW
GetWindow
GetClassNameW
LoadImageW
ShowWindow
SetWindowLongW
PostQuitMessage
IsIconic
FindWindowW
PostMessageW
GetForegroundWindow
GetWindowThreadProcessId
SetWindowPos
SystemParametersInfoW
GetSystemMetrics
AttachThreadInput
SetTimer

gdi32

SelectObject
GetTextExtentPoint32W
DeleteDC
CreateFontW

shell32

ShellExecuteW
SHGetSpecialFolderPathW
SHGetFolderPathW
CommandLineToArgvW
SHGetPathFromIDListA
SHGetSpecialFolderLocation

ole32

OleInitialize
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
CoInitialize

oleaut32

SysFreeString
SysAllocString

gdiplus

GdipDrawImageI
GdipBitmapGetPixel
GdipBitmapSetPixel
GdipCreateHBITMAPFromBitmap
GdipDeleteGraphics
GdipLoadImageFromFile
GdipCreateBitmapFromFile
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipDisposeImage
GdipCreateBitmapFromScan0
GdipCloneImage
GdipLoadImageFromStream
GdipFree
GdipAlloc

dbghelp

MiniDumpWriteDump

wininet

HttpQueryInfoW
InternetQueryOptionW
InternetSetOptionW
InternetCheckConnectionW

operation

FreeOperation
GetOperation
SetBCrash

iserver

ICommu_Post
IReg_Decrypt
IFile_Encrypt
IFile_Decrypt
IData_Free

urlmon

URLDownloadToFileW

shlwapi

PathFileExistsW
SHSetValueW
SHGetValueW

advapi32

RegOpenKeyExW
RegCreateKeyExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegQueryValueExW
RegCloseKey

Sections

.text
Size: 341KB - Virtual size: 341KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$APPDATA/SuZip/sk/0.zip
.zip
Main_dlg.xml
Renewals.xml
about.xml
.xml
cancelDlg.xml
.xml
close.xml
.xml
comboxDlg.xml
.xml
compressDlg.xml
duibenchmarkDlg.xml
.xml
errorDlg.xml
.xml
extractDlg.xml
.xml
fileattr.xml
.xml
item.xml
.xml
main.xml
.xml
main_frame/add.png
.png
main_frame/bottom_toolbar_bkimg.png
.png
main_frame/brocast.png
.png
main_frame/change_skin.png
.png
main_frame/delete.png
.png
main_frame/desktop.png
.png
main_frame/extract.png
.png
main_frame/icon_view.png
.png
main_frame/info.png
.png
main_frame/list_view.png
.png
main_frame/logo.png
.png
main_frame/main_menu.png
.png
main_frame/max_size.png
.png
main_frame/min_size.png
.png
main_frame/top_toolbar_bkimg.png
.png
main_frame/up.png
.png
main_frame/vip.png
.png
main_menu/LOGO1.png
.png
main_menu/gif_check.gif
.gif
main_menu/lab_check.png
.png
main_menu/lab_false.png
.png
main_menu/lab_logo.png
.png
main_menu/menu_about.png
.png
main_menu/menu_change_self_extract.png
.png
main_menu/menu_check.png
.png
main_menu/menu_expand.png
.png
main_menu/menu_extract.png
.png
main_menu/menu_help.png
.png
main_menu/menu_open.png
.png
main_menu/menu_set.png
.png
main_menu/menu_update.png
.png
main_menu/recent_open.png
.png
main_menu/seviceclose.png
.png
main_menu/seviceopen.png
.png
menu.xml
.xml
msg.xml
.xml
mybrowser.xml
.xml
newfolder.xml
.xml
notes.xml
.xml
option.xml
overwriteDlg.xml
.xml
overwriteDlg1.xml
.xml
password.xml
.xml
passwordDlg.xml
.xml
preview.xml
.xml
processDlg.xml
.xml
public/LOGO2.png
.png
public/addpassword.png
.png
public/bkg.png
.png
public/bkg1.png
.png
public/browser.png
.png
public/browser2.png
.png
public/btnOk.png
.png
public/btnOk1.png
.png
public/btncancel.png
.png
public/btnclose1.png
.png
public/btnclose2.png
.png
public/cancel.png
.png
public/changeDir.png
.png
public/checkbox_notselect.png
.png
public/checkbox_select.png
.png
public/compress_Dir.png
.png
public/compress_format.png
.png
public/compress_size.png
.png
public/danwei.png
.png
public/inputbox.png
.png
public/lab_gzip.png
.png
public/lab_original.png
.png
public/modiypassword.png
.png
public/more1.png
.png
public/more2.png
.png
public/note.png
.png
public/overwrite.png
.png
public/progress.png
.png
public/redio_noselect.png
.png
public/redio_select.png
.png
public/renewals.png
.png
public/scrollbar.png
.png
public/self_extract.png
.png
public/tree_bar_close.png
.png
public/vip.png
.png
rmenu.xml
.xml
selfDlg.xml
.xml
selfsets.xml
.xml
setpassword.xml
.xml
skin.xml
.xml
skin/VIP.png
.png
skin/change_failed.png
.png
skin/change_success.png
.png
skin/changing/01.png
.png
skin/changing/02.png
.png
skin/changing/03.png
.png
skin/changing/04.png
.png
skin/changing/05.png
.png
skin/changing/06.png
.png
skin/changing/07.png
.png
skin/changing/08.png
.png
skin/loading/01.png
.png
skin/loading/02.png
.png
skin/loading/03.png
.png
skin/loading/04.png
.png
skin/loading/05.png
.png
skin/loading/06.png
.png
skin/loading/07.png
.png
skin/loading/08.png
.png
skin/selected.png
.png
tab_main.xml
upgrade.xml
.xml
vip.xml
.xml
vip/btn_reload.png
.png
vip/btn_vip_cls.png
.png
vip/gif_loading.gif
.gif
vip/lab_vip_ico.png
.png
vip/lab_vip_unlink.png
.png
$PLUGINSDIR/IServer.dll
.dll windows:5 windows x86 arch:x86

b6b685dca582e8c198898070725aee86

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

55:38:fb:c8:a5:eb:38:12:f5:42:00:29:2b:c0:66:d0:91:9b:3b:61:20:fc:c2:ce:45:8b:f1:15:04:a4:2d:de
Signer

Actual PE Digest

55:38:fb:c8:a5:eb:38:12:f5:42:00:29:2b:c0:66:d0:91:9b:3b:61:20:fc:c2:ce:45:8b:f1:15:04:a4:2d:de

Digest Algorithm

sha256

PE Digest Matches

true

d8:68:33:1e:02:4c:84:34:58:34:3d:d6:32:d6:3f:12:43:8d:cb:48
Signer

Actual PE Digest

d8:68:33:1e:02:4c:84:34:58:34:3d:d6:32:d6:3f:12:43:8d:cb:48

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\IServer.pdb

Imports

kernel32

SystemTimeToFileTime
IsBadReadPtr
GetFullPathNameA
EnterCriticalSection
CompareStringW
SetConsoleMode
ReadConsoleInputA
GetTimeZoneInformation
GetFileInformationByHandle
CreateThread
ExitThread
FindFirstFileExA
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
DeleteFileW
LeaveCriticalSection
GetVersionExW
OutputDebugStringA
CreateFileW
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryW
FreeLibrary
GetSystemDirectoryA
CreateFileA
GetLastError
DeviceIoControl
CloseHandle
GetModuleFileNameW
MultiByteToWideChar
WideCharToMultiByte
GetTickCount
GetModuleHandleW
GetProcAddress
GetCurrentProcess
FlushConsoleInputBuffer
GlobalMemoryStatus
GetModuleHandleA
ExpandEnvironmentStringsA
LoadLibraryA
WaitForMultipleObjects
PeekNamedPipe
WaitForSingleObject
FormatMessageA
VerSetConditionMask
VerifyVersionInfoA
SleepEx
GetConsoleScreenBufferInfo
InterlockedIncrement
InterlockedDecrement
Sleep
InterlockedExchange
EncodePointer
DecodePointer
InterlockedCompareExchange
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapFree
GetCurrentThreadId
GetCommandLineA
LCMapStringW
GetCPInfo
HeapAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
HeapCreate
HeapDestroy
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
ExitProcess
WriteFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
SetFilePointer
GetStringTypeW
HeapSize
GetLocaleInfoW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
HeapReAlloc
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetConsoleCtrlHandler
WriteConsoleW
SetStdHandle
SetEndOfFile
GetProcessHeap
GetVersion
LocalFree
FormatMessageW
GetTempFileNameW
GetTempPathW
GetLongPathNameW
GetCommandLineW
OutputDebugStringW
FindClose
FindFirstFileW
MoveFileExW
GetFileAttributesW
CreateDirectoryW
GetCurrentDirectoryW
GetDriveTypeW
GetLocalTime
SetConsoleTextAttribute
SetEnvironmentVariableA

user32

wsprintfW
MessageBoxA
GetProcessWindowStation
GetUserObjectInformationW

advapi32

RegOpenKeyExW
RegEnumKeyExW
RegQueryValueExW
RegCloseKey
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegQueryValueExA
RegOpenKeyExA
RegSetValueExW
RegSetKeySecurity
RegCreateKeyExW
DeregisterEventSource
ReportEventA
RegisterEventSourceA

shell32

CommandLineToArgvW
SHGetFolderPathW
SHChangeNotify

ole32

CoInitializeEx
CoCreateInstance

wsock32

WSACleanup
WSAStartup
gethostname

iphlpapi

GetAdaptersInfo

shlwapi

SHSetValueW
SHDeleteKeyW
SHDeleteValueW

ws2_32

closesocket
getpeername
socket
htons
bind
ntohs
getsockname
setsockopt
WSAIoctl
send
recv
connect
freeaddrinfo
select
WSAGetLastError
__WSAFDIsSet
WSASetLastError
getaddrinfo
sendto
recvfrom
accept
shutdown
ioctlsocket
listen
getsockopt

wldap32

ord32
ord200
ord79
ord30
ord26
ord50
ord33
ord301
ord27
ord41
ord46
ord60
ord143
ord211
ord22
ord35

Exports

Exports

IAdProgramFile_MD5Matched
IAdProgramFile_MD5Value
IAssociateWithExtension_Rundll32
ICheckGpedit
ICheckRootDisk
ICom_AssociateWithExtension
ICom_IsAssociatedWithExtension
ICom_UnAssociateWithExtension
ICom_UnAssociateWithExtensionAll
ICommu_Post
IData_Free
IData_Rc4
IFile_Decrypt
IFile_Encrypt
IGetInstallTime
IGetSystemInstallTime
IMD5Hash
IReg_Decrypt
IReg_Encrypt
IRundll_Test
IText_Encrypt
IUnAssociateWithExtensionAll_Rundll32
SetRegAdInfo_Rundll32
UnInstSvc_Rundll32

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/Operation.dll
.dll windows:5 windows x86 arch:x86

650ad7e03dfaba3161bb9ea459345761

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

87:19:4e:0c:46:7d:39:0e:77:a7:f8:82:b3:d6:4e:6d:db:b4:70:03:b2:4a:af:db:17:02:24:19:32:b6:ed:b9
Signer

Actual PE Digest

87:19:4e:0c:46:7d:39:0e:77:a7:f8:82:b3:d6:4e:6d:db:b4:70:03:b2:4a:af:db:17:02:24:19:32:b6:ed:b9

Digest Algorithm

sha256

PE Digest Matches

true

1f:29:90:31:f7:a6:b7:90:cc:6f:a2:98:c1:e3:34:dd:ad:6f:65:57
Signer

Actual PE Digest

1f:29:90:31:f7:a6:b7:90:cc:6f:a2:98:c1:e3:34:dd:ad:6f:65:57

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\Operation.pdb

Imports

kernel32

Process32NextW
GetCurrentThreadId
GetModuleHandleA
GetVersion
GetFileType
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
LoadLibraryA
QueryPerformanceCounter
FlushConsoleInputBuffer
Process32FirstW
GetStringTypeW
IsValidLocale
CreateToolhelp32Snapshot
OutputDebugStringA
DeviceIoControl
GlobalMemoryStatusEx
CreateFileW
GetSystemDirectoryA
GetVersionExW
LoadLibraryW
FreeLibrary
CreateFileA
GetProcAddress
GetModuleHandleW
GetCurrentProcess
WideCharToMultiByte
MultiByteToWideChar
WTSGetActiveConsoleSessionId
SetUnhandledExceptionFilter
GetShortPathNameA
LeaveCriticalSection
EnterCriticalSection
GetTickCount
DeleteCriticalSection
InitializeCriticalSection
CloseHandle
GetPrivateProfileStringW
GetModuleFileNameW
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
SetStdHandle
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetLocaleInfoW
FlushFileBuffers
ReadFile
SetFilePointer
GetConsoleCP
GetLastError
GetComputerNameA
SetEndOfFile
WriteFile
HeapDestroy
HeapCreate
GetProcessHeap
SetEnvironmentVariableA
GetStartupInfoW
InitializeCriticalSectionAndSpinCount
InterlockedIncrement
InterlockedDecrement
Sleep
InterlockedExchange
EncodePointer
DecodePointer
InterlockedCompareExchange
OutputDebugStringW
FindClose
SetHandleCount
GetLocalTime
SetLastError
LocalFree
FormatMessageW
GetTempFileNameW
GetTempPathW
GetLongPathNameW
GetCommandLineW
MoveFileExW
GetFileAttributesW
CreateDirectoryW
WriteConsoleW
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
TerminateProcess
GetSystemTimeAsFileTime
GetFileAttributesA
CreateDirectoryA
DeleteFileA
ExitThread
ResumeThread
CreateThread
HeapFree
HeapReAlloc
GetCommandLineA
ExitProcess
SetConsoleCtrlHandler
HeapAlloc
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
RaiseException
RtlUnwind
LCMapStringW
GetCPInfo
CompareStringW
DeleteFileW
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
HeapSize
FindFirstFileW

user32

wsprintfW
MessageBoxA
GetUserObjectInformationW
GetProcessWindowStation

advapi32

GetUserNameA
RegSetValueExW
RegCreateKeyExW
RegisterEventSourceA
ReportEventA
DeregisterEventSource
RegEnumKeyExW
RevertToSelf
ImpersonateLoggedOnUser
GetUserNameW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
CommandLineToArgvW
SHGetFolderPathW

wininet

InternetCloseHandle
HttpOpenRequestA
HttpSendRequestA
InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetConnectA

wtsapi32

WTSQueryUserToken
WTSFreeMemory
WTSEnumerateSessionsW

userenv

LoadUserProfileW

iphlpapi

GetAdaptersInfo

ole32

CoCreateGuid

Exports

Exports

FreeOperation
GetOperation
IRundll32_CustomStat
IRundll32_SaveDiskIdToReg
SetBCrash

Sections

.text
Size: 755KB - Virtual size: 755KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 219KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/nsDui.dll
.dll windows:5 windows x86 arch:x86

e01258017c12f14df83d013f3763df94

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
HeapDestroy
HeapCreate
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapSize
GetStartupInfoW
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
IsProcessorFeaturePresent
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetLocaleInfoW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
MoveFileW
DeleteFileW
GetCPInfo
LCMapStringW
RtlUnwind
HeapAlloc
GetCommandLineA
GetCurrentThreadId
HeapFree
GetSystemTimeAsFileTime
WaitForSingleObject
TerminateProcess
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
WriteConsoleW
GetStdHandle
FindNextFileW
CopyFileW
GetCommandLineW
GetLongPathNameW
GetTempPathW
GetTempFileNameW
FindFirstFileW
FindClose
GetLogicalDriveStringsW
QueryDosDeviceW
DecodePointer
EncodePointer
DeleteCriticalSection
InterlockedExchange
SetStdHandle
HeapReAlloc
SetEndOfFile
GetProcessHeap
GetLocalTime
lstrcpynW
lstrcmpiW
lstrcpyW
InterlockedDecrement
InterlockedIncrement
WriteFile
SetFileTime
GetFileAttributesW
CreateDirectoryW
LocalFileTimeToFileTime
SetFilePointer
FormatMessageW
LocalFree
OutputDebugStringW
MulDiv
FindResourceW
LoadResource
FreeResource
SizeofResource
LockResource
GlobalLock
GlobalUnlock
WideCharToMultiByte
CreateFileW
GetFileSize
ReadFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
lstrlenW
GetTickCount
GetCurrentDirectoryW
GetModuleFileNameW
LoadLibraryW
GetACP
MultiByteToWideChar
Sleep
Process32NextW
Process32FirstW
ExitProcess
CreateToolhelp32Snapshot
GetCurrentProcessId
MoveFileExW
SetLastError
GetCurrentProcess
GetCurrentThread
OpenProcess
GetModuleHandleW
GetProcAddress
GetLastError
CreateMutexA
CloseHandle
SystemTimeToFileTime
lstrcpynA
GlobalAlloc
GlobalFree
lstrcpyA
RaiseException
InterlockedCompareExchange

user32

EqualRect
GetWindowTextW
GetWindowTextLengthW
CallWindowProcW
FindWindowW
SetForegroundWindow
SendMessageW
GetMessageW
TranslateMessage
DispatchMessageW
SetWindowLongW
FindWindowExW
OffsetRect
InflateRect
UnionRect
SetCursor
LoadCursorW
CharNextW
ReleaseDC
DestroyWindow
GetDC
GetClientRect
SetWindowPos
GetWindowLongW
GetKeyState
GetSysColor
ReleaseCapture
ShowWindow
GetCursorPos
CreateWindowExW
GetMonitorInfoW
MonitorFromWindow
MapWindowPoints
GetWindowRect
IntersectRect
IsWindowVisible
IsWindow
IsRectEmpty
GetUpdateRect
EndPaint
BeginPaint
SetFocus
GetWindow
GetActiveWindow
IsIconic
ScreenToClient
InvalidateRect
GetGUIThreadInfo
CreateAcceleratorTableW
InvalidateRgn
wsprintfA
PostMessageW
IsZoomed
GetFocus
SetTimer
KillTimer
SetCapture
PtInRect
ShowCaret
GetParent
LoadImageW
SetWindowRgn
MessageBoxW
wsprintfW
DefWindowProcW
DrawTextA
SetWindowTextW
GetKeyboardLayout
MapVirtualKeyExW
GetKeyNameTextW
PostQuitMessage
CreatePopupMenu
AppendMenuW
EnableMenuItem
TrackPopupMenu
DestroyMenu
GetCaretBlinkTime
ClientToScreen
GetCaretPos
SetCaretPos
IsWindowEnabled
HideCaret
CreateCaret
SetRect
CharPrevW
DrawTextW
FillRect
GetWindowRgn
MoveWindow
UpdateLayeredWindow
GetMenu
AdjustWindowRectEx
SetPropW
GetPropW
GetClassInfoExW
RegisterClassExW
RegisterClassW
EnableWindow

gdi32

TextOutW
SetBkMode
SetTextColor
RoundRect
CreatePenIndirect
MoveToEx
LineTo
CreateSolidBrush
SetStretchBltMode
StretchBlt
CombineRgn
GetClipBox
CreateRectRgnIndirect
ExtSelectClipRgn
SelectClipRgn
GetTextExtentPoint32W
PtInRegion
CreateDIBSection
CreateRoundRectRgn
CreateDIBitmap
GetEnhMetaFileHeader
GetDeviceCaps
CreateCompatibleBitmap
PlayEnhMetaFile
AddFontMemResourceEx
GetTextMetricsW
CreateCompatibleDC
SelectObject
SaveDC
BitBlt
RestoreDC
Rectangle
SetWindowOrgEx
CreateEnhMetaFileW
CloseEnhMetaFile
DeleteObject
RemoveFontMemResourceEx
DeleteDC
GetStockObject
GetObjectW
CreateFontIndirectW
CreatePen
GetCharABCWidthsW
GdiFlush
GetObjectA
GetBitmapBits
SetBitmapBits
GetTextExtentPointA
CreatePatternBrush
CreateRectRgn
SetBkColor

advapi32

RevertToSelf
ImpersonateLoggedOnUser
GetUserNameW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
OpenThreadToken
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExW

shell32

CommandLineToArgvW
DragQueryFileW
SHGetFolderPathW
ShellExecuteW
SHGetPathFromIDListA
SHBrowseForFolderW
SHGetFileInfoW

ole32

CLSIDFromString
OleLockRunning
CreateStreamOnHGlobal
CLSIDFromProgID
ReleaseStgMedium
RegisterDragDrop
OleDuplicateData
CoCreateInstance
DoDragDrop

oleaut32

SysAllocString
VariantClear
SysFreeString
VariantInit

comctl32

InitCommonControlsEx
_TrackMouseEvent
ord17

gdiplus

GdiplusShutdown
GdipSetSmoothingMode
GdipDeleteGraphics
GdipImageSelectActiveFrame
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipGetImageWidth
GdipGetImageHeight
GdipTranslateWorldTransform
GdipRotateWorldTransform
GdipDrawImageRectI
GdipCloneImage
GdipDisposeImage
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipSetTextRenderingHint
GdipDeleteBrush
GdipSetInterpolationMode
GdipStringFormatGetGenericTypographic
GdipCloneStringFormat
GdipSetStringFormatTrimming
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipMeasureString
GdipDrawString
GdipDeleteStringFormat
GdipDeleteFont
GdipCreatePen1
GdipSetPenMode
GdipDrawRectangleI
GdipDeletePen
GdipCreateSolidFill
GdipFree
GdipCloneBrush
GdipAlloc
GdipCreateFromHDC
GdipFillRectangleI
GdiplusStartup

imm32

ImmReleaseContext
ImmGetContext
ImmSetCompositionWindow

wtsapi32

WTSFreeMemory
WTSEnumerateSessionsW
WTSQueryUserToken

userenv

LoadUserProfileW

ws2_32

gethostname
WSAStartup
gethostbyname

psapi

GetProcessImageFileNameW

Exports

Exports

BindNSIS
BindSubNSIS
BindWmCallbackNSIS
CtrlSetAttr
DateToTimeb
DelUntilReboot
ExitDUISetup
ExitSubDlg
FindControl
GetCallerFileName
GetChannel
GetChecked
GetCurPage
GetInstallDir
GetSystemInstallTime
GetText
GetValidInstallPath
ITerminateProcess
InitUninstall
InstBindNSIS
InstPage
InstallDirAutoCompletion
InstallDirCanCreate
InstallDirIsValid
KillByDirectory
MoveFileToTempDir
NewDUISetup
NewSubDlg
NextPage
PrePage
QueryCurrentUserRegByCurAccount
ReSize
SelectInstallDir
SetChecked
SetEnabled
SetText
SetVisible
ShowPage
ShowSubDlg
WriteCurrentUserRegByCurAccount

Sections

.text
Size: 791KB - Virtual size: 790KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/skin.zip
.zip
btn_cancel.png
.png
btn_close.png
.png
btn_green.png
.png
btn_green1.png
.png
btn_install.png
.png
btn_selfdefine_down.png
.png
btn_selfdefine_up.png
.png
btn_use.png
.png
btn_white.png
.png
checkbox.png
.png
checkbox_chk.png
.png
edit_input.png
.png
install.xml
.xml
install_bg.png
.png
lab_check_white.png
.png
lab_check_yellow.png
.png
lab_logo.png
.png
lab_logo_center.png
.png
lab_logo_title.png
.png
opt_normal.png
.png
opt_sel.png
.png
progress_install_bk.png
.png
progress_uninstall_bk.png
.png
scroll.png
.png
uninstall.xml
.xml
DuiLib.dll
.dll windows:5 windows x86 arch:x86

babc06123ddd37277878e53df48687c9

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:f2:56:ee:69:c2:b7:75:13:b8:a8:c7:83:d6:a7:ad:e5:4e:e1:a0:c8:f2:50:9f:56:8c:8a:23:33:bf:99:03
Signer

Actual PE Digest

20:f2:56:ee:69:c2:b7:75:13:b8:a8:c7:83:d6:a7:ad:e5:4e:e1:a0:c8:f2:50:9f:56:8c:8a:23:33:bf:99:03

Digest Algorithm

sha256

PE Digest Matches

true

0d:de:67:ba:cf:22:8b:9b:35:a4:45:a3:ef:1d:e6:34:92:d8:4f:65
Signer

Actual PE Digest

0d:de:67:ba:cf:22:8b:9b:35:a4:45:a3:ef:1d:e6:34:92:d8:4f:65

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\DuiLib.pdb

Imports

kernel32

IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetConsoleMode
GetConsoleCP
FatalAppExitA
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
DeleteCriticalSection
GetStartupInfoW
GetFileType
SetHandleCount
InitializeCriticalSectionAndSpinCount
LCMapStringW
HeapSize
Sleep
GetStringTypeW
HeapDestroy
HeapCreate
GetLocaleInfoW
SetConsoleCtrlHandler
IsValidCodePage
GetOEMCP
GetCPInfo
IsProcessorFeaturePresent
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThread
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetCommandLineA
GetCurrentThreadId
HeapReAlloc
HeapAlloc
HeapFree
EncodePointer
DecodePointer
RaiseException
RtlUnwind
FreeLibrary
InterlockedExchange
FlushFileBuffers
SetStdHandle
CreateFileA
WriteConsoleW
SetEndOfFile
GetProcessHeap
InterlockedIncrement
InterlockedDecrement
GetLocalTime
GlobalAlloc
GlobalLock
GlobalUnlock
GetFileSize
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetTickCount
GetModuleHandleW
SetCurrentDirectoryW
GetModuleFileNameW
GetACP
ExitProcess
WriteFile
SetFileTime
GetFileAttributesW
CreateDirectoryW
WideCharToMultiByte
MultiByteToWideChar
LocalFileTimeToFileTime
GetCurrentDirectoryW
SystemTimeToFileTime
ReadFile
CloseHandle
CreateFileW
SetFilePointer
GetLastError
FormatMessageW
lstrcpynW
LocalFree
VerSetConditionMask
VerifyVersionInfoW
GetCurrentProcessId
OpenProcess
LoadLibraryW
GetProcAddress
DisableThreadLibraryCalls
OutputDebugStringW
FindResourceW
LoadResource
FreeResource
SizeofResource
LockResource
lstrcmpiW
lstrlenW
lstrcpyW
MulDiv
GetStdHandle

user32

GetGUIThreadInfo
ClientToScreen
GetCaretBlinkTime
CreateAcceleratorTableW
InvalidateRgn
SetRect
CharPrevW
SendMessageA
SetCapture
KillTimer
SetTimer
GetActiveWindow
GetUpdateRect
IsWindowVisible
GetCursorPos
ReleaseCapture
GetSysColor
GetKeyState
IsRectEmpty
GetMenu
AdjustWindowRectEx
SetPropW
IsWindowEnabled
EqualRect
GetWindowTextLengthW
GetWindowTextW
CreateCaret
HideCaret
DrawTextA
wsprintfA
IntersectRect
CharNextW
SetFocus
ShowWindow
EnableWindow
ShowCaret
GetCaretPos
DestroyMenu
TrackPopupMenu
EnableMenuItem
GetPropW
CallWindowProcW
AppendMenuW
RegisterClassW
SendMessageW
IsWindow
EndPaint
SetCaretPos
DrawTextW
FillRect
BeginPaint
InvalidateRect
GetClientRect
DefWindowProcW
GetKeyNameTextW
MapVirtualKeyExW
GetKeyboardLayout
SetCursor
LoadCursorW
SetWindowTextW
SetWindowPos
GetParent
GetFocus
PtInRect
InflateRect
SetWindowLongW
GetWindowLongW
MoveWindow
SetForegroundWindow
GetMonitorInfoW
MonitorFromWindow
MapWindowPoints
GetWindowRect
SetWindowRgn
IsIconic
PostMessageW
ReleaseDC
GetDC
MessageBoxW
MonitorFromPoint
LoadIconW
LoadStringW
RegisterClassExW
CreateWindowExW
GetWindow
DestroyWindow
UpdateLayeredWindow
GetWindowRgn
GetSystemMetrics
LoadImageW
GetMessageW
TranslateMessage
wsprintfW
IsZoomed
ScreenToClient
OffsetRect
CreatePopupMenu
GetClassInfoExW
DispatchMessageW
PostQuitMessage
UnionRect

gdi32

StretchBlt
RestoreDC
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectW
GetBitmapBits
DeleteObject
SelectObject
GetTextExtentPointA
SetBkMode
SetTextColor
SetBkColor
CreateSolidBrush
CreateRoundRectRgn
GetDeviceCaps
CreateDIBSection
PtInRegion
CreateRectRgn
CreatePen
CreateFontIndirectW
GetStockObject
RemoveFontMemResourceEx
CloseEnhMetaFile
SetStretchBltMode
SetWindowOrgEx
Rectangle
BitBlt
GetTextMetricsW
AddFontMemResourceEx
PlayEnhMetaFile
GetEnhMetaFileHeader
CreateDIBitmap
SelectClipRgn
ExtSelectClipRgn
CreateRectRgnIndirect
GetClipBox
CombineRgn
LineTo
MoveToEx
CreatePenIndirect
RoundRect
TextOutW
GetCharABCWidthsW
GdiFlush
GetObjectA
CreatePatternBrush
SaveDC
SetBitmapBits
CreateEnhMetaFileW
DeleteDC
GetTextExtentPoint32W

shell32

DragQueryFileW
Shell_NotifyIconW

ole32

CLSIDFromString
CLSIDFromProgID
OleLockRunning
CreateStreamOnHGlobal
RegisterDragDrop
DoDragDrop
OleDuplicateData
ReleaseStgMedium
CoCreateInstance

oleaut32

CreateErrorInfo
SetErrorInfo
VariantChangeType
VariantInit
VariantClear
SysFreeString
SysAllocString
GetErrorInfo

comctl32

ord17
InitCommonControlsEx
_TrackMouseEvent

gdiplus

GdipCloneImage
GdipDisposeImage
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipSetTextRenderingHint
GdipSetSmoothingMode
GdipSetInterpolationMode
GdipStringFormatGetGenericTypographic
GdipCloneStringFormat
GdipSetStringFormatTrimming
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipMeasureString
GdipDrawString
GdipDeleteStringFormat
GdipDeleteFont
GdipCreatePen1
GdipSetPenMode
GdipDrawRectangleI
GdipDeletePen
GdipCreateSolidFill
GdipFree
GdipCloneBrush
GdipAlloc
GdipFillRectangleI
GdipDeleteBrush
GdiplusShutdown
GdiplusStartup
GdipTranslateWorldTransform
GdipRotateWorldTransform
GdipCreateFromHDC
GdipDrawImageRectI
GdipImageSelectActiveFrame
GdipDeleteGraphics
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipGetImageWidth
GdipGetImageHeight
GdipSetStringFormatLineAlign

imm32

ImmReleaseContext
ImmGetContext
ImmSetCompositionWindow

ws2_32

WSAStartup
gethostname
gethostbyname

shlwapi

StrChrW

Exports

Exports

??0CActiveXUI@DuiLib@@QAE@ABV01@@Z
??0CActiveXUI@DuiLib@@QAE@XZ
??0CAnimationData@DuiLib@@QAE@HHHH@Z
??0CAnimationTabLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CAnimationTabLayoutUI@DuiLib@@QAE@XZ
??0CButtonUI@DuiLib@@QAE@ABV01@@Z
??0CButtonUI@DuiLib@@QAE@XZ
??0CCheckBoxUI@DuiLib@@QAE@ABV01@@Z
??0CCheckBoxUI@DuiLib@@QAE@XZ
??0CChildLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CChildLayoutUI@DuiLib@@QAE@XZ
??0CColorPaletteUI@DuiLib@@QAE@ABV01@@Z
??0CColorPaletteUI@DuiLib@@QAE@XZ
??0CComboBoxUI@DuiLib@@QAE@ABV01@@Z
??0CComboBoxUI@DuiLib@@QAE@XZ
??0CComboUI@DuiLib@@QAE@ABV01@@Z
??0CComboUI@DuiLib@@QAE@XZ
??0CContainerUI@DuiLib@@QAE@ABV01@@Z
??0CContainerUI@DuiLib@@QAE@XZ
??0CControlFactory@DuiLib@@AAE@XZ
??0CControlFactory@DuiLib@@QAE@ABV01@@Z
??0CControlUI@DuiLib@@QAE@ABV01@@Z
??0CControlUI@DuiLib@@QAE@XZ
??0CDPI@DuiLib@@QAE@XZ
??0CDateTimeUI@DuiLib@@QAE@ABV01@@Z
??0CDateTimeUI@DuiLib@@QAE@XZ
??0CDelegateBase@DuiLib@@QAE@ABV01@@Z
??0CDelegateBase@DuiLib@@QAE@PAX0@Z
??0CDialogBuilder@DuiLib@@QAE@XZ
??0CDragSourceHelper@DuiLib@@QAE@ABV01@@Z
??0CDragSourceHelper@DuiLib@@QAE@XZ
??0CDuiPoint@DuiLib@@QAE@ABUtagPOINT@@@Z
??0CDuiPoint@DuiLib@@QAE@HH@Z
??0CDuiPoint@DuiLib@@QAE@J@Z
??0CDuiPoint@DuiLib@@QAE@XZ
??0CDuiRect@DuiLib@@QAE@ABUtagRECT@@@Z
??0CDuiRect@DuiLib@@QAE@HHHH@Z
??0CDuiRect@DuiLib@@QAE@XZ
??0CDuiSize@DuiLib@@QAE@ABUtagSIZE@@@Z
??0CDuiSize@DuiLib@@QAE@HH@Z
??0CDuiSize@DuiLib@@QAE@UtagRECT@@@Z
??0CDuiSize@DuiLib@@QAE@XZ
??0CDuiString@DuiLib@@QAE@ABV01@@Z
??0CDuiString@DuiLib@@QAE@PB_WH@Z
??0CDuiString@DuiLib@@QAE@XZ
??0CDuiString@DuiLib@@QAE@_W@Z
??0CEditUI@DuiLib@@QAE@ABV01@@Z
??0CEditUI@DuiLib@@QAE@XZ
??0CEnumFormatEtc@DuiLib@@QAE@ABV01@@Z
??0CEnumFormatEtc@DuiLib@@QAE@ABV?$vector@PAUtagFORMATETC@@V?$allocator@PAUtagFORMATETC@@@std@@@std@@@Z
??0CEnumFormatEtc@DuiLib@@QAE@ABV?$vector@UtagFORMATETC@@V?$allocator@UtagFORMATETC@@@std@@@std@@@Z
??0CEventSource@DuiLib@@QAE@ABV01@@Z
??0CEventSource@DuiLib@@QAE@XZ
??0CFadeButtonUI@DuiLib@@QAE@ABV01@@Z
??0CFadeButtonUI@DuiLib@@QAE@XZ
??0CFlashUI@DuiLib@@QAE@ABV01@@Z
??0CFlashUI@DuiLib@@QAE@XZ
??0CGifAnimUI@DuiLib@@QAE@ABV01@@Z
??0CGifAnimUI@DuiLib@@QAE@XZ
??0CGroupBoxUI@DuiLib@@QAE@ABV01@@Z
??0CGroupBoxUI@DuiLib@@QAE@XZ
??0CHorizontalLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CHorizontalLayoutUI@DuiLib@@QAE@XZ
??0CHotKeyUI@DuiLib@@QAE@ABV01@@Z
??0CHotKeyUI@DuiLib@@QAE@XZ
??0CHotKeyWnd@DuiLib@@QAE@ABV01@@Z
??0CHotKeyWnd@DuiLib@@QAE@XZ
??0CIDataObject@DuiLib@@QAE@ABV01@@Z
??0CIDataObject@DuiLib@@QAE@PAVCIDropSource@1@@Z
??0CIDropSource@DuiLib@@QAE@ABV01@@Z
??0CIDropSource@DuiLib@@QAE@XZ
??0CIDropTarget@DuiLib@@QAE@ABV01@@Z
??0CIDropTarget@DuiLib@@QAE@PAUHWND__@@@Z
??0CIPAddressExUI@DuiLib@@QAE@ABV01@@Z
??0CIPAddressExUI@DuiLib@@QAE@XZ
??0CIPAddressUI@DuiLib@@QAE@ABV01@@Z
??0CIPAddressUI@DuiLib@@QAE@XZ
??0CLabelUI@DuiLib@@QAE@ABV01@@Z
??0CLabelUI@DuiLib@@QAE@XZ
??0CListBodyUI@DuiLib@@QAE@ABV01@@Z
??0CListBodyUI@DuiLib@@QAE@PAVCListUI@1@@Z
??0CListContainerElementUI@DuiLib@@QAE@ABV01@@Z
??0CListContainerElementUI@DuiLib@@QAE@XZ
??0CListContainerHeaderItemUI@DuiLib@@QAE@ABV01@@Z
??0CListContainerHeaderItemUI@DuiLib@@QAE@XZ
??0CListElementUI@DuiLib@@QAE@ABV01@@Z
??0CListElementUI@DuiLib@@QAE@XZ
??0CListExUI@DuiLib@@QAE@ABV01@@Z
??0CListExUI@DuiLib@@QAE@XZ
??0CListHeaderItemUI@DuiLib@@QAE@ABV01@@Z
??0CListHeaderItemUI@DuiLib@@QAE@XZ
??0CListHeaderUI@DuiLib@@QAE@ABV01@@Z
??0CListHeaderUI@DuiLib@@QAE@XZ
??0CListLabelElementUI@DuiLib@@QAE@ABV01@@Z
??0CListLabelElementUI@DuiLib@@QAE@XZ
??0CListTextElementUI@DuiLib@@QAE@ABV01@@Z
??0CListTextElementUI@DuiLib@@QAE@XZ
??0CListTextExtElementUI@DuiLib@@QAE@ABV01@@Z
??0CListTextExtElementUI@DuiLib@@QAE@XZ
??0CListUI@DuiLib@@QAE@ABV01@@Z
??0CListUI@DuiLib@@QAE@XZ
??0CMarkup@DuiLib@@QAE@PB_W@Z
??0CMarkupNode@DuiLib@@AAE@PAVCMarkup@1@H@Z
??0CMarkupNode@DuiLib@@AAE@XZ
??0CMenuElementUI@DuiLib@@QAE@ABV01@@Z
??0CMenuElementUI@DuiLib@@QAE@XZ
??0CMenuUI@DuiLib@@QAE@ABV01@@Z
??0CMenuUI@DuiLib@@QAE@XZ
??0CMenuWnd@DuiLib@@QAE@ABV01@@Z
??0CMenuWnd@DuiLib@@QAE@XZ
??0CNotifyPump@DuiLib@@QAE@ABV01@@Z
??0CNotifyPump@DuiLib@@QAE@XZ
??0COptionUI@DuiLib@@QAE@ABV01@@Z
??0COptionUI@DuiLib@@QAE@XZ
??0CPaintManagerUI@DuiLib@@QAE@ABV01@@Z
??0CPaintManagerUI@DuiLib@@QAE@XZ
??0CProgressUI@DuiLib@@QAE@ABV01@@Z
??0CProgressUI@DuiLib@@QAE@XZ
??0CResourceManager@DuiLib@@AAE@XZ
??0CResourceManager@DuiLib@@QAE@ABV01@@Z
??0CRichEditUI@DuiLib@@QAE@ABV01@@Z
??0CRichEditUI@DuiLib@@QAE@XZ
??0CRollTextUI@DuiLib@@QAE@ABV01@@Z
??0CRollTextUI@DuiLib@@QAE@XZ
??0CScrollBarUI@DuiLib@@QAE@ABV01@@Z
??0CScrollBarUI@DuiLib@@QAE@XZ
??0CShadowUI@DuiLib@@QAE@ABV01@@Z
??0CShadowUI@DuiLib@@QAE@XZ
??0CSliderUI@DuiLib@@QAE@ABV01@@Z
??0CSliderUI@DuiLib@@QAE@XZ
??0CStdPtrArray@DuiLib@@QAE@ABV01@@Z
??0CStdPtrArray@DuiLib@@QAE@H@Z
??0CStdStringPtrMap@DuiLib@@QAE@H@Z
??0CStdValArray@DuiLib@@QAE@HH@Z
??0CTabLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CTabLayoutUI@DuiLib@@QAE@XZ
??0CTextUI@DuiLib@@QAE@ABV01@@Z
??0CTextUI@DuiLib@@QAE@XZ
??0CTileLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CTileLayoutUI@DuiLib@@QAE@XZ
??0CTrayIcon@DuiLib@@QAE@XZ
??0CTreeNodeUI@DuiLib@@QAE@ABV01@@Z
??0CTreeNodeUI@DuiLib@@QAE@PAV01@@Z
??0CTreeViewUI@DuiLib@@QAE@ABV01@@Z
??0CTreeViewUI@DuiLib@@QAE@XZ
??0CUIAnimation@DuiLib@@QAE@ABV01@@Z
??0CUIAnimation@DuiLib@@QAE@PAVCControlUI@1@@Z
??0CVerticalLayoutUI@DuiLib@@QAE@ABV01@@Z
??0CVerticalLayoutUI@DuiLib@@QAE@XZ
??0CWaitCursor@DuiLib@@QAE@XZ
??0CWebBrowserUI@DuiLib@@QAE@ABV01@@Z
??0CWebBrowserUI@DuiLib@@QAE@XZ
??0CWindowWnd@DuiLib@@QAE@ABV01@@Z
??0CWindowWnd@DuiLib@@QAE@XZ
??0IQueryControlText@DuiLib@@QAE@ABV01@@Z
??0IQueryControlText@DuiLib@@QAE@XZ
??0IUIAnimation@DuiLib@@QAE@ABV01@@Z
??0IUIAnimation@DuiLib@@QAE@XZ
??0MenuObserverImpl@DuiLib@@QAE@ABV01@@Z
??0MenuObserverImpl@DuiLib@@QAE@XZ
??0MenuReceiverImpl@DuiLib@@QAE@ABV01@@Z
??0MenuReceiverImpl@DuiLib@@QAE@XZ
??0STRINGorID@DuiLib@@QAE@I@Z
??0STRINGorID@DuiLib@@QAE@PB_W@Z
??0WindowImplBase@DuiLib@@QAE@ABV01@@Z
??0WindowImplBase@DuiLib@@QAE@XZ
??0tagTDrawInfo@DuiLib@@QAE@ABU01@@Z
??0tagTDrawInfo@DuiLib@@QAE@XZ
??0tagTFontInfo@DuiLib@@QAE@ABU01@@Z
??0tagTFontInfo@DuiLib@@QAE@XZ
??0tagTImageInfo@DuiLib@@QAE@ABU01@@Z
??0tagTImageInfo@DuiLib@@QAE@XZ
??0tagTResInfo@DuiLib@@QAE@ABU01@@Z
??0tagTResInfo@DuiLib@@QAE@XZ
??1CActiveXUI@DuiLib@@UAE@XZ
??1CAnimationTabLayoutUI@DuiLib@@UAE@XZ
??1CButtonUI@DuiLib@@UAE@XZ
??1CCheckBoxUI@DuiLib@@UAE@XZ
??1CChildLayoutUI@DuiLib@@UAE@XZ
??1CColorPaletteUI@DuiLib@@UAE@XZ
??1CComboBoxUI@DuiLib@@UAE@XZ
??1CComboUI@DuiLib@@UAE@XZ
??1CContainerUI@DuiLib@@UAE@XZ
??1CControlFactory@DuiLib@@EAE@XZ
??1CControlUI@DuiLib@@UAE@XZ
??1CDateTimeUI@DuiLib@@UAE@XZ
??1CDelegateBase@DuiLib@@UAE@XZ
??1CDialogBuilder@DuiLib@@QAE@XZ
??1CDragSourceHelper@DuiLib@@UAE@XZ
??1CDuiString@DuiLib@@QAE@XZ
??1CEditUI@DuiLib@@UAE@XZ
??1CEnumFormatEtc@DuiLib@@QAE@XZ
??1CEventSource@DuiLib@@QAE@XZ
??1CFadeButtonUI@DuiLib@@UAE@XZ
??1CFlashUI@DuiLib@@UAE@XZ
??1CGifAnimUI@DuiLib@@UAE@XZ
??1CGroupBoxUI@DuiLib@@UAE@XZ
??1CHorizontalLayoutUI@DuiLib@@UAE@XZ
??1CHotKeyUI@DuiLib@@UAE@XZ
??1CIDataObject@DuiLib@@QAE@XZ
??1CIDropTarget@DuiLib@@UAE@XZ
??1CIPAddressExUI@DuiLib@@UAE@XZ
??1CIPAddressUI@DuiLib@@UAE@XZ
??1CLabelUI@DuiLib@@UAE@XZ
??1CListBodyUI@DuiLib@@UAE@XZ
??1CListContainerElementUI@DuiLib@@UAE@XZ
??1CListContainerHeaderItemUI@DuiLib@@UAE@XZ
??1CListElementUI@DuiLib@@UAE@XZ
??1CListExUI@DuiLib@@UAE@XZ
??1CListHeaderItemUI@DuiLib@@UAE@XZ
??1CListHeaderUI@DuiLib@@UAE@XZ
??1CListLabelElementUI@DuiLib@@UAE@XZ
??1CListTextElementUI@DuiLib@@UAE@XZ
??1CListTextExtElementUI@DuiLib@@UAE@XZ
??1CListUI@DuiLib@@UAE@XZ
??1CMarkup@DuiLib@@QAE@XZ
??1CMenuElementUI@DuiLib@@UAE@XZ
??1CMenuUI@DuiLib@@UAE@XZ
??1CMenuWnd@DuiLib@@QAE@XZ
??1CNotifyPump@DuiLib@@QAE@XZ
??1COptionUI@DuiLib@@UAE@XZ
??1CPaintManagerUI@DuiLib@@UAE@XZ
??1CProgressUI@DuiLib@@UAE@XZ
??1CRenderClip@DuiLib@@QAE@XZ
??1CResourceManager@DuiLib@@AAE@XZ
??1CRichEditUI@DuiLib@@UAE@XZ
??1CRollTextUI@DuiLib@@UAE@XZ
??1CScrollBarUI@DuiLib@@UAE@XZ
??1CShadowUI@DuiLib@@UAE@XZ
??1CSliderUI@DuiLib@@UAE@XZ
??1CStdPtrArray@DuiLib@@QAE@XZ
??1CStdStringPtrMap@DuiLib@@QAE@XZ
??1CStdValArray@DuiLib@@QAE@XZ
??1CTabLayoutUI@DuiLib@@UAE@XZ
??1CTextUI@DuiLib@@UAE@XZ
??1CTileLayoutUI@DuiLib@@UAE@XZ
??1CTrayIcon@DuiLib@@QAE@XZ
??1CTreeNodeUI@DuiLib@@UAE@XZ
??1CTreeViewUI@DuiLib@@UAE@XZ
??1CUIAnimation@DuiLib@@UAE@XZ
??1CVerticalLayoutUI@DuiLib@@UAE@XZ
??1CWaitCursor@DuiLib@@QAE@XZ
??1CWebBrowserUI@DuiLib@@UAE@XZ
??1IUIAnimation@DuiLib@@UAE@XZ
??1MenuObserverImpl@DuiLib@@QAE@XZ
??1MenuReceiverImpl@DuiLib@@QAE@XZ
??1WindowImplBase@DuiLib@@UAE@XZ
??1tagTDrawInfo@DuiLib@@QAE@XZ
??1tagTFontInfo@DuiLib@@QAE@XZ
??1tagTImageInfo@DuiLib@@QAE@XZ
??1tagTResInfo@DuiLib@@QAE@XZ
??4CActiveXUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CAnimationData@DuiLib@@QAEAAV01@ABV01@@Z
??4CAnimationTabLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CButtonUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CCheckBoxUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CChildLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CColorPaletteUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CComboBoxUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CComboUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CContainerUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CControlFactory@DuiLib@@QAEAAV01@ABV01@@Z
??4CControlUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CDPI@DuiLib@@QAEAAV01@ABV01@@Z
??4CDateTimeUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CDelegateBase@DuiLib@@QAEAAV01@ABV01@@Z
??4CDialogBuilder@DuiLib@@QAEAAV01@ABV01@@Z
??4CDragSourceHelper@DuiLib@@QAEAAV01@ABV01@@Z
??4CDuiPoint@DuiLib@@QAEAAV01@ABV01@@Z
??4CDuiRect@DuiLib@@QAEAAV01@ABV01@@Z
??4CDuiSize@DuiLib@@QAEAAV01@ABV01@@Z
??4CDuiString@DuiLib@@QAEABV01@ABV01@@Z
??4CDuiString@DuiLib@@QAEABV01@PBD@Z
??4CDuiString@DuiLib@@QAEABV01@PB_W@Z
??4CDuiString@DuiLib@@QAEABV01@_W@Z
??4CEditUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CEnumFormatEtc@DuiLib@@QAEAAV01@ABV01@@Z
??4CEventSource@DuiLib@@QAEAAV01@ABV01@@Z
??4CFadeButtonUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CFlashUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CGifAnimUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CGroupBoxUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CHorizontalLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CHotKeyUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CHotKeyWnd@DuiLib@@QAEAAV01@ABV01@@Z
??4CIDataObject@DuiLib@@QAEAAV01@ABV01@@Z
??4CIDropSource@DuiLib@@QAEAAV01@ABV01@@Z
??4CIDropTarget@DuiLib@@QAEAAV01@ABV01@@Z
??4CIPAddressExUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CIPAddressUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CLabelUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListBodyUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListContainerElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListContainerHeaderItemUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListExUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListHeaderItemUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListHeaderUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListLabelElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListTextElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListTextExtElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CListUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CMarkup@DuiLib@@QAEAAV01@ABV01@@Z
??4CMarkupNode@DuiLib@@QAEAAV01@ABV01@@Z
??4CMenuElementUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CMenuUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CMenuWnd@DuiLib@@QAEAAV01@ABV01@@Z
??4CNotifyPump@DuiLib@@QAEAAV01@ABV01@@Z
??4COptionUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CPaintManagerUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CProgressUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CRenderClip@DuiLib@@QAEAAV01@ABV01@@Z
??4CRenderEngine@DuiLib@@QAEAAV01@ABV01@@Z
??4CResourceManager@DuiLib@@QAEAAV01@ABV01@@Z
??4CRichEditUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CRollTextUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CScrollBarUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CShadowUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CSliderUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CStdPtrArray@DuiLib@@QAEAAV01@ABV01@@Z
??4CStdStringPtrMap@DuiLib@@QAEAAV01@ABV01@@Z
??4CStdValArray@DuiLib@@QAEAAV01@ABV01@@Z
??4CTabLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTextUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTileLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTrayIcon@DuiLib@@QAEAAV01@ABV01@@Z
??4CTreeNodeUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CTreeViewUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CUIAnimation@DuiLib@@QAEAAV01@ABV01@@Z
??4CVerticalLayoutUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CWaitCursor@DuiLib@@QAEAAV01@ABV01@@Z
??4CWebBrowserUI@DuiLib@@QAEAAV01@ABV01@@Z
??4CWindowWnd@DuiLib@@QAEAAV01@ABV01@@Z
??4IQueryControlText@DuiLib@@QAEAAV01@ABV01@@Z
??4IUIAnimation@DuiLib@@QAEAAV01@ABV01@@Z
??4MenuObserverImpl@DuiLib@@QAEAAV01@ABV01@@Z
??4MenuReceiverImpl@DuiLib@@QAEAAV01@ABV01@@Z
??4STRINGorID@DuiLib@@QAEAAV01@ABV01@@Z
??4WindowImplBase@DuiLib@@QAEAAV01@ABV01@@Z
??4tagTCFMoveUI@DuiLib@@QAEAAU01@ABU01@@Z
??4tagTDrawInfo@DuiLib@@QAEAAU01@ABU01@@Z
??4tagTEventUI@DuiLib@@QAEAAU01@ABU01@@Z
??4tagTFontInfo@DuiLib@@QAEAAU01@ABU01@@Z
??4tagTImageInfo@DuiLib@@QAEAAU01@ABU01@@Z
??4tagTPercentInfo@DuiLib@@QAEAAU01@ABU01@@Z
??4tagTResInfo@DuiLib@@QAEAAU01@ABU01@@Z
??8CDuiString@DuiLib@@QBE_NPB_W@Z
??9CDuiString@DuiLib@@QBE_NPB_W@Z
??ACDuiString@DuiLib@@QBE_WH@Z
??ACStdPtrArray@DuiLib@@QBEPAXH@Z
??ACStdStringPtrMap@DuiLib@@QBEPB_WH@Z
??ACStdValArray@DuiLib@@QBEPAXH@Z
??BCDuiString@DuiLib@@QBEPB_WXZ
??BCEventSource@DuiLib@@QAE_NXZ
??BCWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
??HCDuiString@DuiLib@@QBE?AV01@ABV01@@Z
??HCDuiString@DuiLib@@QBE?AV01@PB_W@Z
??MCDuiString@DuiLib@@QBE_NPB_W@Z
??NCDuiString@DuiLib@@QBE_NPB_W@Z
??OCDuiString@DuiLib@@QBE_NPB_W@Z
??PCDuiString@DuiLib@@QBE_NPB_W@Z
??RCDelegateBase@DuiLib@@QAE_NPAX@Z
??RCEventSource@DuiLib@@QAE_NPAX@Z
??YCDuiString@DuiLib@@QAEABV01@ABV01@@Z
??YCDuiString@DuiLib@@QAEABV01@PBD@Z
??YCDuiString@DuiLib@@QAEABV01@PB_W@Z
??YCDuiString@DuiLib@@QAEABV01@_W@Z
??YCEventSource@DuiLib@@QAEXABVCDelegateBase@1@@Z
??YCEventSource@DuiLib@@QAEXP6A_NPAX@Z@Z
??ZCEventSource@DuiLib@@QAEXABVCDelegateBase@1@@Z
??ZCEventSource@DuiLib@@QAEXP6A_NPAX@Z@Z
??_7CActiveXUI@DuiLib@@6BCControlUI@1@@
??_7CActiveXUI@DuiLib@@6BIMessageFilterUI@1@@
??_7CAnimationTabLayoutUI@DuiLib@@6B@
??_7CAnimationTabLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CAnimationTabLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CButtonUI@DuiLib@@6B@
??_7CCheckBoxUI@DuiLib@@6B@
??_7CChildLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CChildLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CColorPaletteUI@DuiLib@@6B@
??_7CComboBoxUI@DuiLib@@6B@
??_7CComboBoxUI@DuiLib@@6BCControlUI@1@@
??_7CComboBoxUI@DuiLib@@6BIContainerUI@1@@
??_7CComboUI@DuiLib@@6B@
??_7CComboUI@DuiLib@@6BCControlUI@1@@
??_7CComboUI@DuiLib@@6BIContainerUI@1@@
??_7CContainerUI@DuiLib@@6BCControlUI@1@@
??_7CContainerUI@DuiLib@@6BIContainerUI@1@@
??_7CControlFactory@DuiLib@@6B@
??_7CControlUI@DuiLib@@6B@
??_7CDateTimeUI@DuiLib@@6B@
??_7CDelegateBase@DuiLib@@6B@
??_7CDragSourceHelper@DuiLib@@6B@
??_7CEditUI@DuiLib@@6B@
??_7CEnumFormatEtc@DuiLib@@6B@
??_7CFadeButtonUI@DuiLib@@6BCButtonUI@1@@
??_7CFadeButtonUI@DuiLib@@6BCUIAnimation@1@@
??_7CFlashUI@DuiLib@@6BCControlUI@1@@
??_7CFlashUI@DuiLib@@6BIMessageFilterUI@1@@
??_7CFlashUI@DuiLib@@6BITranslateAccelerator@1@@
??_7CFlashUI@DuiLib@@6B_IShockwaveFlashEvents@@@
??_7CGifAnimUI@DuiLib@@6B@
??_7CGroupBoxUI@DuiLib@@6BCControlUI@1@@
??_7CGroupBoxUI@DuiLib@@6BIContainerUI@1@@
??_7CHorizontalLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CHorizontalLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CHotKeyUI@DuiLib@@6B@
??_7CHotKeyWnd@DuiLib@@6B@
??_7CIDataObject@DuiLib@@6B@
??_7CIDropSource@DuiLib@@6B@
??_7CIDropTarget@DuiLib@@6B@
??_7CIPAddressExUI@DuiLib@@6B@
??_7CIPAddressUI@DuiLib@@6B@
??_7CLabelUI@DuiLib@@6B@
??_7CListBodyUI@DuiLib@@6BCControlUI@1@@
??_7CListBodyUI@DuiLib@@6BIContainerUI@1@@
??_7CListContainerElementUI@DuiLib@@6B@
??_7CListContainerElementUI@DuiLib@@6BCControlUI@1@@
??_7CListContainerElementUI@DuiLib@@6BIContainerUI@1@@
??_7CListContainerHeaderItemUI@DuiLib@@6BCControlUI@1@@
??_7CListContainerHeaderItemUI@DuiLib@@6BIContainerUI@1@@
??_7CListElementUI@DuiLib@@6BCControlUI@1@@
??_7CListElementUI@DuiLib@@6BIListItemUI@1@@
??_7CListExUI@DuiLib@@6BCControlUI@1@@
??_7CListExUI@DuiLib@@6BCListUI@1@@
??_7CListExUI@DuiLib@@6BIContainerUI@1@@
??_7CListExUI@DuiLib@@6BINotifyUI@1@@
??_7CListHeaderItemUI@DuiLib@@6BCControlUI@1@@
??_7CListHeaderItemUI@DuiLib@@6BIContainerUI@1@@
??_7CListHeaderUI@DuiLib@@6BCControlUI@1@@
??_7CListHeaderUI@DuiLib@@6BIContainerUI@1@@
??_7CListLabelElementUI@DuiLib@@6BCControlUI@1@@
??_7CListLabelElementUI@DuiLib@@6BIListItemUI@1@@
??_7CListTextElementUI@DuiLib@@6BCControlUI@1@@
??_7CListTextElementUI@DuiLib@@6BIListItemUI@1@@
??_7CListTextExtElementUI@DuiLib@@6BCControlUI@1@@
??_7CListTextExtElementUI@DuiLib@@6BIListItemUI@1@@
??_7CListUI@DuiLib@@6B@
??_7CListUI@DuiLib@@6BCControlUI@1@@
??_7CListUI@DuiLib@@6BIContainerUI@1@@
??_7CMenuElementUI@DuiLib@@6B@
??_7CMenuElementUI@DuiLib@@6BCControlUI@1@@
??_7CMenuElementUI@DuiLib@@6BIContainerUI@1@@
??_7CMenuUI@DuiLib@@6B@
??_7CMenuUI@DuiLib@@6BCControlUI@1@@
??_7CMenuUI@DuiLib@@6BIContainerUI@1@@
??_7CMenuWnd@DuiLib@@6BCWindowWnd@1@@
??_7CMenuWnd@DuiLib@@6BIDialogBuilderCallback@1@@
??_7CMenuWnd@DuiLib@@6BINotifyUI@1@@
??_7CMenuWnd@DuiLib@@6BMenuReceiverImpl@1@@
??_7CNotifyPump@DuiLib@@6B@
??_7COptionUI@DuiLib@@6B@
??_7CPaintManagerUI@DuiLib@@6B@
??_7CProgressUI@DuiLib@@6B@
??_7CRichEditUI@DuiLib@@6B@
??_7CRichEditUI@DuiLib@@6BCControlUI@1@@
??_7CRichEditUI@DuiLib@@6BIContainerUI@1@@
??_7CRollTextUI@DuiLib@@6B@
??_7CScrollBarUI@DuiLib@@6B@
??_7CShadowUI@DuiLib@@6B@
??_7CSliderUI@DuiLib@@6B@
??_7CTabLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CTabLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CTextUI@DuiLib@@6B@
??_7CTileLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CTileLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CTreeNodeUI@DuiLib@@6B@
??_7CTreeNodeUI@DuiLib@@6BCControlUI@1@@
??_7CTreeNodeUI@DuiLib@@6BIContainerUI@1@@
??_7CTreeViewUI@DuiLib@@6BCControlUI@1@@
??_7CTreeViewUI@DuiLib@@6BCListUI@1@@
??_7CTreeViewUI@DuiLib@@6BIContainerUI@1@@
??_7CTreeViewUI@DuiLib@@6BINotifyUI@1@@
??_7CUIAnimation@DuiLib@@6B@
??_7CVerticalLayoutUI@DuiLib@@6BCControlUI@1@@
??_7CVerticalLayoutUI@DuiLib@@6BIContainerUI@1@@
??_7CWebBrowserUI@DuiLib@@6BCControlUI@1@@
??_7CWebBrowserUI@DuiLib@@6BIDispatch@@@
??_7CWebBrowserUI@DuiLib@@6BIDocHostUIHandler@@@
??_7CWebBrowserUI@DuiLib@@6BIInternetSecurityManager@@@
??_7CWebBrowserUI@DuiLib@@6BIMessageFilterUI@1@@
??_7CWebBrowserUI@DuiLib@@6BIOleCommandTarget@@@
??_7CWebBrowserUI@DuiLib@@6BIServiceProvider@@@
??_7CWebBrowserUI@DuiLib@@6BITranslateAccelerator@1@@
??_7CWindowWnd@DuiLib@@6B@
??_7IQueryControlText@DuiLib@@6B@
??_7IUIAnimation@DuiLib@@6B@
??_7MenuObserverImpl@DuiLib@@6B@
??_7MenuReceiverImpl@DuiLib@@6B@
??_7WindowImplBase@DuiLib@@6BCNotifyPump@1@@
??_7WindowImplBase@DuiLib@@6BCWindowWnd@1@@
??_7WindowImplBase@DuiLib@@6BIDialogBuilderCallback@1@@
??_7WindowImplBase@DuiLib@@6BIMessageFilterUI@1@@
??_7WindowImplBase@DuiLib@@6BINotifyUI@1@@
??_7WindowImplBase@DuiLib@@6BIQueryControlText@1@@
??_B?1??GetGlobalContextMenuObserver@CMenuWnd@DuiLib@@SAAAVMenuObserverImpl@2@XZ@51
??_B?1??GetInstance@CResourceManager@DuiLib@@SAPAV12@XZ@51
??_FCIDropTarget@DuiLib@@QAEXXZ
??_FCMarkup@DuiLib@@QAEXXZ

Sections

.text
Size: 888KB - Virtual size: 887KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 303KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IServer.dll
.dll windows:5 windows x86 arch:x86

b6b685dca582e8c198898070725aee86

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

55:38:fb:c8:a5:eb:38:12:f5:42:00:29:2b:c0:66:d0:91:9b:3b:61:20:fc:c2:ce:45:8b:f1:15:04:a4:2d:de
Signer

Actual PE Digest

55:38:fb:c8:a5:eb:38:12:f5:42:00:29:2b:c0:66:d0:91:9b:3b:61:20:fc:c2:ce:45:8b:f1:15:04:a4:2d:de

Digest Algorithm

sha256

PE Digest Matches

true

d8:68:33:1e:02:4c:84:34:58:34:3d:d6:32:d6:3f:12:43:8d:cb:48
Signer

Actual PE Digest

d8:68:33:1e:02:4c:84:34:58:34:3d:d6:32:d6:3f:12:43:8d:cb:48

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\IServer.pdb

Imports

kernel32

SystemTimeToFileTime
IsBadReadPtr
GetFullPathNameA
EnterCriticalSection
CompareStringW
SetConsoleMode
ReadConsoleInputA
GetTimeZoneInformation
GetFileInformationByHandle
CreateThread
ExitThread
FindFirstFileExA
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
DeleteFileW
LeaveCriticalSection
GetVersionExW
OutputDebugStringA
CreateFileW
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryW
FreeLibrary
GetSystemDirectoryA
CreateFileA
GetLastError
DeviceIoControl
CloseHandle
GetModuleFileNameW
MultiByteToWideChar
WideCharToMultiByte
GetTickCount
GetModuleHandleW
GetProcAddress
GetCurrentProcess
FlushConsoleInputBuffer
GlobalMemoryStatus
GetModuleHandleA
ExpandEnvironmentStringsA
LoadLibraryA
WaitForMultipleObjects
PeekNamedPipe
WaitForSingleObject
FormatMessageA
VerSetConditionMask
VerifyVersionInfoA
SleepEx
GetConsoleScreenBufferInfo
InterlockedIncrement
InterlockedDecrement
Sleep
InterlockedExchange
EncodePointer
DecodePointer
InterlockedCompareExchange
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapFree
GetCurrentThreadId
GetCommandLineA
LCMapStringW
GetCPInfo
HeapAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
HeapCreate
HeapDestroy
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
ExitProcess
WriteFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
SetFilePointer
GetStringTypeW
HeapSize
GetLocaleInfoW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
HeapReAlloc
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetConsoleCtrlHandler
WriteConsoleW
SetStdHandle
SetEndOfFile
GetProcessHeap
GetVersion
LocalFree
FormatMessageW
GetTempFileNameW
GetTempPathW
GetLongPathNameW
GetCommandLineW
OutputDebugStringW
FindClose
FindFirstFileW
MoveFileExW
GetFileAttributesW
CreateDirectoryW
GetCurrentDirectoryW
GetDriveTypeW
GetLocalTime
SetConsoleTextAttribute
SetEnvironmentVariableA

user32

wsprintfW
MessageBoxA
GetProcessWindowStation
GetUserObjectInformationW

advapi32

RegOpenKeyExW
RegEnumKeyExW
RegQueryValueExW
RegCloseKey
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegQueryValueExA
RegOpenKeyExA
RegSetValueExW
RegSetKeySecurity
RegCreateKeyExW
DeregisterEventSource
ReportEventA
RegisterEventSourceA

shell32

CommandLineToArgvW
SHGetFolderPathW
SHChangeNotify

ole32

CoInitializeEx
CoCreateInstance

wsock32

WSACleanup
WSAStartup
gethostname

iphlpapi

GetAdaptersInfo

shlwapi

SHSetValueW
SHDeleteKeyW
SHDeleteValueW

ws2_32

closesocket
getpeername
socket
htons
bind
ntohs
getsockname
setsockopt
WSAIoctl
send
recv
connect
freeaddrinfo
select
WSAGetLastError
__WSAFDIsSet
WSASetLastError
getaddrinfo
sendto
recvfrom
accept
shutdown
ioctlsocket
listen
getsockopt

wldap32

ord32
ord200
ord79
ord30
ord26
ord50
ord33
ord301
ord27
ord41
ord46
ord60
ord143
ord211
ord22
ord35

Exports

Exports

IAdProgramFile_MD5Matched
IAdProgramFile_MD5Value
IAssociateWithExtension_Rundll32
ICheckGpedit
ICheckRootDisk
ICom_AssociateWithExtension
ICom_IsAssociatedWithExtension
ICom_UnAssociateWithExtension
ICom_UnAssociateWithExtensionAll
ICommu_Post
IData_Free
IData_Rc4
IFile_Decrypt
IFile_Encrypt
IGetInstallTime
IGetSystemInstallTime
IMD5Hash
IReg_Decrypt
IReg_Encrypt
IRundll_Test
IText_Encrypt
IUnAssociateWithExtensionAll_Rundll32
SetRegAdInfo_Rundll32
UnInstSvc_Rundll32

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Lang/zh-cn.txt
Operation.dll
.dll windows:5 windows x86 arch:x86

650ad7e03dfaba3161bb9ea459345761

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

87:19:4e:0c:46:7d:39:0e:77:a7:f8:82:b3:d6:4e:6d:db:b4:70:03:b2:4a:af:db:17:02:24:19:32:b6:ed:b9
Signer

Actual PE Digest

87:19:4e:0c:46:7d:39:0e:77:a7:f8:82:b3:d6:4e:6d:db:b4:70:03:b2:4a:af:db:17:02:24:19:32:b6:ed:b9

Digest Algorithm

sha256

PE Digest Matches

true

1f:29:90:31:f7:a6:b7:90:cc:6f:a2:98:c1:e3:34:dd:ad:6f:65:57
Signer

Actual PE Digest

1f:29:90:31:f7:a6:b7:90:cc:6f:a2:98:c1:e3:34:dd:ad:6f:65:57

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\Operation.pdb

Imports

kernel32

Process32NextW
GetCurrentThreadId
GetModuleHandleA
GetVersion
GetFileType
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
LoadLibraryA
QueryPerformanceCounter
FlushConsoleInputBuffer
Process32FirstW
GetStringTypeW
IsValidLocale
CreateToolhelp32Snapshot
OutputDebugStringA
DeviceIoControl
GlobalMemoryStatusEx
CreateFileW
GetSystemDirectoryA
GetVersionExW
LoadLibraryW
FreeLibrary
CreateFileA
GetProcAddress
GetModuleHandleW
GetCurrentProcess
WideCharToMultiByte
MultiByteToWideChar
WTSGetActiveConsoleSessionId
SetUnhandledExceptionFilter
GetShortPathNameA
LeaveCriticalSection
EnterCriticalSection
GetTickCount
DeleteCriticalSection
InitializeCriticalSection
CloseHandle
GetPrivateProfileStringW
GetModuleFileNameW
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
SetStdHandle
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetLocaleInfoW
FlushFileBuffers
ReadFile
SetFilePointer
GetConsoleCP
GetLastError
GetComputerNameA
SetEndOfFile
WriteFile
HeapDestroy
HeapCreate
GetProcessHeap
SetEnvironmentVariableA
GetStartupInfoW
InitializeCriticalSectionAndSpinCount
InterlockedIncrement
InterlockedDecrement
Sleep
InterlockedExchange
EncodePointer
DecodePointer
InterlockedCompareExchange
OutputDebugStringW
FindClose
SetHandleCount
GetLocalTime
SetLastError
LocalFree
FormatMessageW
GetTempFileNameW
GetTempPathW
GetLongPathNameW
GetCommandLineW
MoveFileExW
GetFileAttributesW
CreateDirectoryW
WriteConsoleW
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
TerminateProcess
GetSystemTimeAsFileTime
GetFileAttributesA
CreateDirectoryA
DeleteFileA
ExitThread
ResumeThread
CreateThread
HeapFree
HeapReAlloc
GetCommandLineA
ExitProcess
SetConsoleCtrlHandler
HeapAlloc
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
RaiseException
RtlUnwind
LCMapStringW
GetCPInfo
CompareStringW
DeleteFileW
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
HeapSize
FindFirstFileW

user32

wsprintfW
MessageBoxA
GetUserObjectInformationW
GetProcessWindowStation

advapi32

GetUserNameA
RegSetValueExW
RegCreateKeyExW
RegisterEventSourceA
ReportEventA
DeregisterEventSource
RegEnumKeyExW
RevertToSelf
ImpersonateLoggedOnUser
GetUserNameW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
CommandLineToArgvW
SHGetFolderPathW

wininet

InternetCloseHandle
HttpOpenRequestA
HttpSendRequestA
InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetConnectA

wtsapi32

WTSQueryUserToken
WTSFreeMemory
WTSEnumerateSessionsW

userenv

LoadUserProfileW

iphlpapi

GetAdaptersInfo

ole32

CoCreateGuid

Exports

Exports

FreeOperation
GetOperation
IRundll32_CustomStat
IRundll32_SaveDiskIdToReg
SetBCrash

Sections

.text
Size: 755KB - Virtual size: 755KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 219KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SuG.exe
.exe windows:5 windows x86 arch:x86

ba204f5e98e3dd1f638c6fa22511b99c

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f3:87:e7:4a:a0:59:7d:61:0a:35:49:4d:8b:ec:9d:58:d3:f2:7f:13:bd:03:b2:a1:4b:a6:69:d6:22:21:7f:18
Signer

Actual PE Digest

f3:87:e7:4a:a0:59:7d:61:0a:35:49:4d:8b:ec:9d:58:d3:f2:7f:13:bd:03:b2:a1:4b:a6:69:d6:22:21:7f:18

Digest Algorithm

sha256

PE Digest Matches

true

27:83:4a:1a:38:58:82:8d:bd:ff:54:63:e1:7f:00:14:ec:71:a5:8e
Signer

Actual PE Digest

27:83:4a:1a:38:58:82:8d:bd:ff:54:63:e1:7f:00:14:ec:71:a5:8e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\SuG.pdb

Imports

comctl32

ord17

kernel32

FreeEnvironmentStringsW
GetModuleFileNameA
GetFileAttributesA
GetLocaleInfoW
HeapSize
IsValidCodePage
GetOEMCP
GetACP
HeapDestroy
HeapCreate
FlushFileBuffers
GetConsoleMode
GetConsoleCP
FatalAppExitA
ExitProcess
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsDebuggerPresent
GetEnvironmentStringsW
QueryPerformanceCounter
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
SetConsoleCtrlHandler
SetStdHandle
CreateFileA
GetExitCodeProcess
CreateProcessA
GetProcessHeap
CompareStringW
SetEnvironmentVariableA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCPInfo
LCMapStringW
GetStartupInfoW
HeapSetInformation
GetCommandLineA
CreateThread
ExitThread
HeapAlloc
HeapReAlloc
HeapFree
RaiseException
RtlUnwind
FillConsoleOutputCharacterW
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
WriteConsoleW
CopyFileW
GetLocalTime
GetLogicalDrives
GetEnvironmentVariableW
CreateMutexW
SetEnvironmentVariableW
GetVersion
GetLongPathNameW
GetShortPathNameW
QueryDosDeviceW
OutputDebugStringA
DecodePointer
EncodePointer
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
DeleteFileW
MoveFileW
WaitForSingleObject
MoveFileExW
InitializeCriticalSection
Sleep
lstrlenW
GetCurrentThreadId
GetLastError
lstrcatW
WideCharToMultiByte
GetTickCount
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
CompareFileTime
GetFileAttributesW
OutputDebugStringW
GetDiskFreeSpaceExW
SetEvent
lstrcpyW
GetModuleHandleW
GlobalUnlock
GlobalLock
GlobalAlloc
CreateEventW
CloseHandle
WaitForMultipleObjects
LoadLibraryA
ExpandEnvironmentStringsA
GetSystemTimeAsFileTime
FileTimeToDosDateTime
DosDateTimeToFileTime
GlobalMemoryStatus
GetProcessAffinityMask
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDiskFreeSpaceW
GetVolumeInformationW
SetEndOfFile
DeviceIoControl
SetFilePointer
GetFileSize
GetLogicalDriveStringsW
FindFirstChangeNotificationW
FindCloseChangeNotification
FindNextFileW
FindFirstFileW
FindClose
GetCurrentProcessId
GetCurrentDirectoryW
SetCurrentDirectoryW
SetLastError
RemoveDirectoryW
SetFileAttributesW
SetFileTime
GetSystemDirectoryW
GetWindowsDirectoryW
FormatMessageW
LocalFree
LoadLibraryExW
InterlockedCompareExchange
ReleaseSemaphore
CreateSemaphoreW
ResetEvent
VirtualFree
VirtualAlloc
GetFileInformationByHandle
GetStdHandle
ReadFile
GetCommandLineW
CreateFileMappingW
LoadLibraryW
FreeLibrary
GetVersionExW
GetFileSizeEx
GetModuleFileNameW
MultiByteToWideChar
lstrlenA
GlobalFree
CreateFileW
WriteFile
GetTempPathW
GetTempFileNameW
CreateDirectoryW
GetSystemDefaultLangID
GetUserDefaultLangID
AreFileApisANSI
GetDriveTypeW
IsProcessorFeaturePresent
GetSystemInfo
GetModuleHandleA
GetProcAddress
GetProcessTimes
OpenEventW
UnmapViewOfFile
MapViewOfFile
OpenFileMappingW
SetProcessAffinityMask
GetCurrentProcess
SetPriorityClass

user32

SetTimer
MoveWindow
GetDlgItem
KillTimer
MessageBoxW
PostMessageW
GetKeyState
GetFocus
ScreenToClient
SetDlgItemTextW
SetWindowTextW
LoadIconW
CloseClipboard
SetClipboardData
EmptyClipboard
SendMessageW
GetParent
SetCursor
LoadCursorW
CharUpperW
IsRectEmpty
ReleaseDC
GetDC
GetCursorPos
DestroyIcon
DrawIconEx
ReleaseCapture
LoadStringW
GetWindowTextLengthW
GetWindowTextW
GetDialogBaseUnits
SystemParametersInfoW
MapDialogRect
CreateDialogParamW
DialogBoxParamW
CreateWindowExW
CallWindowProcW
IsZoomed
InvalidateRect
UpdateWindow
GetClientRect
UnregisterHotKey
GetWindow
ShowWindow
EnableWindow
IsWindow
GetMessageW
PostQuitMessage
TranslateMessage
DispatchMessageW
GetSystemMetrics
GetWindowRect
SetWindowPos
RegisterHotKey
GetWindowLongW
SetWindowLongW
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
SetFocus
OpenClipboard
EndDialog

gdi32

CreateDCW
GetObjectW
GetStockObject
SelectPalette
RealizePalette
CreateFontIndirectW
DeleteObject
DeleteDC
BitBlt
SelectObject
CreateCompatibleBitmap
GetDeviceCaps
CreateCompatibleDC
GetDIBits

comdlg32

GetSaveFileNameW
CommDlgExtendedError
GetOpenFileNameW

advapi32

OpenProcessToken
GetUserNameW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
GetTokenInformation
RegOpenKeyExA
RegQueryValueExW
RegSetValueExW
RegDeleteValueW
RegEnumKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegCreateKeyExW
RegOpenKeyW
RegQueryValueExA
RegCloseKey
GetFileSecurityW
SetFileSecurityW
AdjustTokenPrivileges
LookupPrivilegeValueW

shell32

ShellExecuteW
CommandLineToArgvW
SHGetFolderPathW
SHBrowseForFolderW
SHGetPathFromIDListW
DragQueryFileW
DragFinish
SHFileOperationW
SHGetSpecialFolderLocation
SHGetMalloc
Shell_NotifyIconW
SHGetPathFromIDListA
SHGetFileInfoW

ole32

CreateStreamOnHGlobal
StgCreateDocfile
CoCreateInstance
CoUninitialize
OleInitialize
CoInitialize

oleaut32

VariantCopy
VariantClear
SysAllocStringLen
SysStringLen
SysStringByteLen
SysAllocString

gdiplus

GdipLoadImageFromStreamICM
GdipFree
GdipDisposeImage
GdipCloneImage
GdipLoadImageFromStream
GdipSaveImageToStream
GdipGetImageEncodersSize
GdipGetImageEncoders
GdiplusStartup
GdipAlloc
GdiplusShutdown

shlwapi

PathRemoveFileSpecW
PathRenameExtensionW
PathStripPathW
PathFileExistsW
PathFindFileNameW
PathRemoveExtensionW

duilib

?SetText@CListTextElementUI@DuiLib@@QAEXHPB_W@Z
??HCDuiString@DuiLib@@QBE?AV01@PB_W@Z
?Empty@CDuiString@DuiLib@@QAEXXZ
??YCDuiString@DuiLib@@QAEABV01@PB_W@Z
??YCDuiString@DuiLib@@QAEABV01@ABV01@@Z
?IsEmpty@CDuiString@DuiLib@@QBE_NXZ
?SetNextTabControl@CPaintManagerUI@DuiLib@@QAE_N_N@Z
??4CDuiString@DuiLib@@QAEABV01@ABV01@@Z
?SetSelAll@CEditUI@DuiLib@@QAEXXZ
?SetIcon@CWindowWnd@DuiLib@@QAEXI@Z
??0CDuiString@DuiLib@@QAE@XZ
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@UtagPOINT@@@Z
?GetBkColor@CControlUI@DuiLib@@QBEKXZ
?SetBkColor@CControlUI@DuiLib@@QAEXK@Z
??9CDuiString@DuiLib@@QBE_NPB_W@Z
?GetFocus@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@XZ
??0CDuiString@DuiLib@@QAE@ABV01@@Z
??4CDuiString@DuiLib@@QAEABV01@PB_W@Z
?SetDisabledBkColor@CButtonUI@DuiLib@@QAEXK@Z
?SetPasswordChar@CEditUI@DuiLib@@QAEX_W@Z
?CenterWindow@CWindowWnd@DuiLib@@QAEXXZ
?GetCurSel@CTabLayoutUI@DuiLib@@QBEHXZ
?ShowWindow@CWindowWnd@DuiLib@@QAEX_N0@Z
?ShowModal@CWindowWnd@DuiLib@@QAEIH@Z
??8CDuiString@DuiLib@@QBE_NPB_W@Z
?GetMessageMap@WindowImplBase@DuiLib@@MBEPBUDUI_MSGMAP@2@XZ
?HandleCustomMessage@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSysCommand@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnClick@WindowImplBase@DuiLib@@MAEXAAUtagTNotifyUI@2@@Z
??1CLabelUI@DuiLib@@UAE@XZ
??1CHorizontalLayoutUI@DuiLib@@UAE@XZ
?SetAutoCalcWidth@CLabelUI@DuiLib@@UAEX_N@Z
?GetAutoCalcWidth@CLabelUI@DuiLib@@UBE_NXZ
?PaintText@CLabelUI@DuiLib@@UAEXPAUHDC__@@@Z
?DoPaint@CControlUI@DuiLib@@UAE_NPAUHDC__@@ABUtagRECT@@PAV12@@Z
?EstimateSize@CLabelUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?SetAttribute@CLabelUI@DuiLib@@UAEXPB_W0@Z
?DoEvent@CLabelUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?SetEnabled@CControlUI@DuiLib@@UAEX_N@Z
?SetVisible@CControlUI@DuiLib@@UAEX_N@Z
?SetText@CLabelUI@DuiLib@@UAEXPB_W@Z
?GetControlFlags@CLabelUI@DuiLib@@UBEIXZ
?GetInterface@CLabelUI@DuiLib@@UAEPAXPB_W@Z
?GetClass@CLabelUI@DuiLib@@UBEPB_WXZ
?ProcessScrollBar@CContainerUI@DuiLib@@MAEXUtagRECT@@HH@Z
?SetFloatPos@CContainerUI@DuiLib@@MAEXH@Z
?GetHorizontalScrollBar@CContainerUI@DuiLib@@UBEPAVCScrollBarUI@2@XZ
?GetVerticalScrollBar@CContainerUI@DuiLib@@UBEPAVCScrollBarUI@2@XZ
?EnableScrollBar@CContainerUI@DuiLib@@UAEX_N0@Z
?EndRight@CContainerUI@DuiLib@@UAEXXZ
?HomeLeft@CContainerUI@DuiLib@@UAEXXZ
?PageRight@CContainerUI@DuiLib@@UAEXXZ
?PageLeft@CContainerUI@DuiLib@@UAEXXZ
?LineRight@CContainerUI@DuiLib@@UAEXXZ
?LineLeft@CContainerUI@DuiLib@@UAEXXZ
?EndDown@CContainerUI@DuiLib@@UAEXXZ
?HomeUp@CContainerUI@DuiLib@@UAEXXZ
?PageDown@CContainerUI@DuiLib@@UAEXXZ
?PageUp@CContainerUI@DuiLib@@UAEXXZ
?LineDown@CContainerUI@DuiLib@@UAEXXZ
?LineUp@CContainerUI@DuiLib@@UAEXXZ
?GetScrollStepSize@CContainerUI@DuiLib@@UBEHXZ
?SetScrollStepSize@CContainerUI@DuiLib@@UAEXH@Z
?SetScrollPos@CContainerUI@DuiLib@@UAEXUtagSIZE@@_N@Z
?GetScrollRange@CContainerUI@DuiLib@@UBE?AUtagSIZE@@XZ
?GetScrollPos@CContainerUI@DuiLib@@UBE?AUtagSIZE@@XZ
?FindSelectable@CContainerUI@DuiLib@@UBEHH_N@Z
?SetMouseChildEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?IsMouseChildEnabled@CContainerUI@DuiLib@@UBE_NXZ
?SetDelayedDestroy@CContainerUI@DuiLib@@UAEX_N@Z
?IsDelayedDestroy@CContainerUI@DuiLib@@UBE_NXZ
?SetAutoDestroy@CContainerUI@DuiLib@@UAEX_N@Z
?IsAutoDestroy@CContainerUI@DuiLib@@UBE_NXZ
?SetChildVAlign@CContainerUI@DuiLib@@UAEXI@Z
?DoEvent@CListTextElementUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?SetChildAlign@CContainerUI@DuiLib@@UAEXI@Z
?GetChildAlign@CContainerUI@DuiLib@@UBEIXZ
??0CListTextElementUI@DuiLib@@QAE@XZ
?GetChildPadding@CContainerUI@DuiLib@@UBEHXZ
?SetInset@CContainerUI@DuiLib@@UAEXUtagRECT@@@Z
?GetInset@CContainerUI@DuiLib@@UBE?AUtagRECT@@XZ
?DoPostPaint@CHorizontalLayoutUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CContainerUI@DuiLib@@UAE_NPAUHDC__@@ABUtagRECT@@PAVCControlUI@2@@Z
?EstimateSize@CControlUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?SetAttribute@CHorizontalLayoutUI@DuiLib@@UAEXPB_W0@Z
?DoEvent@CHorizontalLayoutUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?FindControl@CContainerUI@DuiLib@@UAEPAVCControlUI@2@P6GPAV32@PAV32@PAX@Z1I@Z
?SetMouseEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?SetEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?SetInternVisible@CContainerUI@DuiLib@@UAEX_N@Z
?SetVisible@CContainerUI@DuiLib@@UAEX_N@Z
?Move@CContainerUI@DuiLib@@UAEXUtagSIZE@@_N@Z
?SetPos@CHorizontalLayoutUI@DuiLib@@UAEXUtagRECT@@_N@Z
?GetClientPos@CContainerUI@DuiLib@@UBE?AUtagRECT@@XZ
?SetManager@CContainerUI@DuiLib@@UAEXPAVCPaintManagerUI@2@PAVCControlUI@2@_N@Z
?Activate@CControlUI@DuiLib@@UAE_NXZ
?GetControlFlags@CHorizontalLayoutUI@DuiLib@@UBEIXZ
?GetInterface@CHorizontalLayoutUI@DuiLib@@UAEPAXPB_W@Z
?GetClass@CHorizontalLayoutUI@DuiLib@@UBEPB_WXZ
??0CHorizontalLayoutUI@DuiLib@@QAE@XZ
??0CLabelUI@DuiLib@@QAE@XZ
?FindSubControlByName@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PAV32@PB_W@Z
?GetData@CDuiString@DuiLib@@QBEPB_WXZ
??1CListLabelElementUI@DuiLib@@UAE@XZ
?DoPostPaint@CControlUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?PaintBorder@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintText@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintForeImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintForeColor@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintStatusImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintBkImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintBkColor@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?DoPaint@CListLabelElementUI@DuiLib@@UAE_NPAUHDC__@@ABUtagRECT@@PAVCControlUI@2@@Z
?Paint@CControlUI@DuiLib@@UAE_NPAUHDC__@@ABUtagRECT@@PAV12@@Z
?EstimateSize@CListLabelElementUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?SetAttribute@CListElementUI@DuiLib@@UAEXPB_W0@Z
?DoEvent@CListLabelElementUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?Event@CControlUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?DoInit@CControlUI@DuiLib@@UAEXXZ
?Init@CControlUI@DuiLib@@UAEXXZ
?FindControl@CControlUI@DuiLib@@UAEPAV12@P6GPAV12@PAV12@PAX@Z1I@Z
?SetFloat@CControlUI@DuiLib@@UAEX_N@Z
?IsFloat@CControlUI@DuiLib@@UBE_NXZ
?SetFocus@CControlUI@DuiLib@@UAEXXZ
?IsFocused@CControlUI@DuiLib@@UBE_NXZ
?SetKeyboardEnabled@CControlUI@DuiLib@@UAEX_N@Z
?IsKeyboardEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetMouseEnabled@CControlUI@DuiLib@@UAEX_N@Z
?IsMouseEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetEnabled@CListElementUI@DuiLib@@UAEX_N@Z
?IsEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetInternVisible@CControlUI@DuiLib@@UAEX_N@Z
?SetVisible@CListElementUI@DuiLib@@UAEX_N@Z
?IsVisible@CControlUI@DuiLib@@UBE_NXZ
?SetTag@CControlUI@DuiLib@@UAEXI@Z
?GetTag@CControlUI@DuiLib@@UBEIXZ
?SetUserData@CControlUI@DuiLib@@UAEXPB_W@Z
?GetUserData@CControlUI@DuiLib@@UAEABVCDuiString@2@XZ
?SetContextMenuUsed@CControlUI@DuiLib@@UAEX_N@Z
?IsContextMenuUsed@CControlUI@DuiLib@@UBE_NXZ
?SetShortcut@CControlUI@DuiLib@@UAEX_W@Z
?GetShortcut@CControlUI@DuiLib@@UBE_WXZ
?SetCursor@CControlUI@DuiLib@@UAEXG@Z
?GetCursor@CControlUI@DuiLib@@UAEGXZ
?GetToolTipWidth@CControlUI@DuiLib@@UAEHXZ
?SetToolTipWidth@CControlUI@DuiLib@@UAEXH@Z
?SetToolTip@CControlUI@DuiLib@@UAEXPB_W@Z
?GetToolTip@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?GetFloatAlign@CControlUI@DuiLib@@UBEIXZ
?SetFloatAlign@CControlUI@DuiLib@@UAEXI@Z
?SetFloatPercent@CControlUI@DuiLib@@UAEXUtagTPercentInfo@2@@Z
?GetFloatPercent@CControlUI@DuiLib@@UBE?AUtagTPercentInfo@2@XZ
?SetMaxHeight@CControlUI@DuiLib@@UAEXH@Z
?GetMaxHeight@CControlUI@DuiLib@@UBEHXZ
?SetMinHeight@CControlUI@DuiLib@@UAEXH@Z
?GetClass@CListTextElementUI@DuiLib@@UBEPB_WXZ
?GetInterface@CListTextElementUI@DuiLib@@UAEPAXPB_W@Z
?SetChildPadding@CContainerUI@DuiLib@@UAEXH@Z
?GetControlFlags@CListTextElementUI@DuiLib@@UBEIXZ
?EstimateSize@CListTextElementUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
??1CListTextElementUI@DuiLib@@UAE@XZ
?SetMaxValue@CProgressUI@DuiLib@@QAEXH@Z
?SetMinValue@CProgressUI@DuiLib@@QAEXH@Z
?SetValue@CProgressUI@DuiLib@@QAEXH@Z
?SetResourceZip@CPaintManagerUI@DuiLib@@SAXPB_W_N0@Z
?SetResourcePath@CPaintManagerUI@DuiLib@@SAXPB_W@Z
?GetInstancePath@CPaintManagerUI@DuiLib@@SA?AVCDuiString@2@XZ
?SetInstance@CPaintManagerUI@DuiLib@@SAXPAUHINSTANCE__@@@Z
??1CControlUI@DuiLib@@UAE@XZ
??0CControlUI@DuiLib@@QAE@XZ
?GetControlFlags@CControlUI@DuiLib@@UBEIXZ
?DoEvent@CControlUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?GetInterface@CControlUI@DuiLib@@UAEPAXPB_W@Z
?SetAttribute@CControlUI@DuiLib@@UAEXPB_W0@Z
?GetChildVAlign@CContainerUI@DuiLib@@UBEIXZ
?GetMinHeight@CControlUI@DuiLib@@UBEHXZ
?SetMaxWidth@CControlUI@DuiLib@@UAEXH@Z
?GetMaxWidth@CControlUI@DuiLib@@UBEHXZ
?SetMinWidth@CControlUI@DuiLib@@UAEXH@Z
?GetMinWidth@CControlUI@DuiLib@@UBEHXZ
?SetFixedHeight@CControlUI@DuiLib@@UAEXH@Z
?GetFixedHeight@CControlUI@DuiLib@@UBEHXZ
?SetFixedWidth@CControlUI@DuiLib@@UAEXH@Z
?GetFixedWidth@CControlUI@DuiLib@@UBEHXZ
?SetFixedXY@CControlUI@DuiLib@@UAEXUtagSIZE@@@Z
?GetFixedXY@CControlUI@DuiLib@@UBE?AUtagSIZE@@XZ
?SetPadding@CControlUI@DuiLib@@UAEXUtagRECT@@@Z
?GetPadding@CControlUI@DuiLib@@UBE?AUtagRECT@@XZ
?GetY@CControlUI@DuiLib@@UBEHXZ
?GetX@CControlUI@DuiLib@@UBEHXZ
?GetHeight@CControlUI@DuiLib@@UBEHXZ
?GetWidth@CControlUI@DuiLib@@UBEHXZ
?Move@CControlUI@DuiLib@@UAEXUtagSIZE@@_N@Z
?SetPos@CControlUI@DuiLib@@UAEXUtagRECT@@_N@Z
?GetPos@CControlUI@DuiLib@@UBEABUtagRECT@@XZ
?GetClientPos@CControlUI@DuiLib@@UBE?AUtagRECT@@XZ
?GetRelativePos@CControlUI@DuiLib@@UBE?AUtagRECT@@XZ
?SetDropEnable@CControlUI@DuiLib@@UAEX_N@Z
?IsDropEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetDragEnable@CControlUI@DuiLib@@UAEX_N@Z
?IsDragEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetResourceText@CControlUI@DuiLib@@UAEX_N@Z
?IsResourceText@CControlUI@DuiLib@@UBE_NXZ
?SetText@CControlUI@DuiLib@@UAEXPB_W@Z
?GetText@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?GetParent@CControlUI@DuiLib@@UBEPAV12@XZ
?SetManager@CControlUI@DuiLib@@UAEXPAVCPaintManagerUI@2@PAV12@_N@Z
?GetManager@CControlUI@DuiLib@@UBEPAVCPaintManagerUI@2@XZ
?Activate@CListElementUI@DuiLib@@UAE_NXZ
?GetControlFlags@CListElementUI@DuiLib@@UBEIXZ
?GetInterface@CListLabelElementUI@DuiLib@@UAEPAXPB_W@Z
?GetClass@CListLabelElementUI@DuiLib@@UBEPB_WXZ
?SetName@CControlUI@DuiLib@@UAEXPB_W@Z
?GetName@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
??0CListLabelElementUI@DuiLib@@QAE@XZ
??BCWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
?HandleMessage@CWindowWnd@DuiLib@@MAEJIIJ@Z
?IsCaptured@CPaintManagerUI@DuiLib@@QAE_NXZ
?ReleaseCapture@CPaintManagerUI@DuiLib@@QAEXXZ
?GetHWND@CWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
?Create@CWindowWnd@DuiLib@@QAEPAUHWND__@@PAU3@PB_WKKHHHHPAUHMENU__@@@Z
?messageMap@WindowImplBase@DuiLib@@1UDUI_MSGMAP@2@B
??0WindowImplBase@DuiLib@@QAE@XZ
?GetSuperClassName@CWindowWnd@DuiLib@@MBEPB_WXZ
?GetClassStyle@WindowImplBase@DuiLib@@UBEIXZ
?HandleMessage@WindowImplBase@DuiLib@@UAEJIIJ@Z
?InitResource@WindowImplBase@DuiLib@@UAEXXZ
?IsInStaticControl@WindowImplBase@DuiLib@@MAEHPAVCControlUI@2@@Z
?IsAllowDrop@WindowImplBase@DuiLib@@MAE_NXZ
?GetSkinType@WindowImplBase@DuiLib@@MAE?AVCDuiString@2@XZ
?GetManagerName@WindowImplBase@DuiLib@@MAEPB_WXZ
?ResponseDefaultKeyEvent@WindowImplBase@DuiLib@@MAEJI@Z
?OnClose@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnDestroy@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcActivate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcCalcSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcPaint@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcHitTest@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnGetMinMaxInfo@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseWheel@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseHover@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnChar@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnCreate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKeyDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKillFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSetFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonUp@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseMove@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?GetStyle@WindowImplBase@DuiLib@@UAEJXZ
?MessageHandler@WindowImplBase@DuiLib@@UAEJIIJAA_N@Z
?CreateControl@WindowImplBase@DuiLib@@UAEPAVCControlUI@2@PB_W@Z
?QueryControlText@WindowImplBase@DuiLib@@UAEPB_WPB_W0@Z
??1WindowImplBase@DuiLib@@UAE@XZ
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PB_W@Z
?OnFinalMessage@WindowImplBase@DuiLib@@UAEXPAUHWND__@@@Z
??0CDuiString@DuiLib@@QAE@PB_WH@Z
?CompareNoCase@CDuiString@DuiLib@@QBEHPB_W@Z
??1CDuiString@DuiLib@@QAE@XZ
?Close@CWindowWnd@DuiLib@@QAEXI@Z
?MakeLower@CDuiString@DuiLib@@QAEXXZ
?Notify@WindowImplBase@DuiLib@@UAEXAAUtagTNotifyUI@2@@Z
?SetBkImage@CControlUI@DuiLib@@QAEXPB_W@Z
?SetFocus@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@@Z
?SetPasswordMode@CEditUI@DuiLib@@QAEX_N@Z
?IsSelected@COptionUI@DuiLib@@QBE_NXZ
?Compare@CDuiString@DuiLib@@QBEHPB_W@Z
??BCDuiString@DuiLib@@QBEPB_WXZ
?SendMessageW@CWindowWnd@DuiLib@@QAEJIIJ@Z
?TranslateMessage@CPaintManagerUI@DuiLib@@SA_NQAUtagMSG@@@Z
?SendNotify@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@PB_WIJ_N@Z

dbghelp

MiniDumpWriteDump

operation

GetOperation
SetBCrash
FreeOperation

iserver

IMD5Hash
IReg_Decrypt
IData_Free
ICom_IsAssociatedWithExtension

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 233KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SuU.exe
.exe windows:5 windows x86 arch:x86

cc8651260261c92303316b3f73d08dc3

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

52:c6:f4:ba:ae:76:d6:a2:05:cd:12:52:bc:b5:3c:09:27:94:89:af:da:f0:c7:71:8a:58:a0:3a:f1:c6:17:74
Signer

Actual PE Digest

52:c6:f4:ba:ae:76:d6:a2:05:cd:12:52:bc:b5:3c:09:27:94:89:af:da:f0:c7:71:8a:58:a0:3a:f1:c6:17:74

Digest Algorithm

sha256

PE Digest Matches

true

84:73:01:ef:37:e0:cc:51:7f:01:a9:9f:e0:18:2d:9d:25:d1:e7:57
Signer

Actual PE Digest

84:73:01:ef:37:e0:cc:51:7f:01:a9:9f:e0:18:2d:9d:25:d1:e7:57

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\SuU.pdb

Imports

duilib

?OnClick@WindowImplBase@DuiLib@@MAEXAAUtagTNotifyUI@2@@Z
?IsInStaticControl@WindowImplBase@DuiLib@@MAEHPAVCControlUI@2@@Z
?ResponseDefaultKeyEvent@WindowImplBase@DuiLib@@MAEJI@Z
?OnClose@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnDestroy@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcActivate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcCalcSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcPaint@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcHitTest@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnGetMinMaxInfo@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseWheel@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseHover@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnChar@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSysCommand@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnCreate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKeyDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKillFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSetFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonUp@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?GetSuperClassName@CWindowWnd@DuiLib@@MBEPB_WXZ
?HandleCustomMessage@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?GetStyle@WindowImplBase@DuiLib@@UAEJXZ
?GetMessageMap@WindowImplBase@DuiLib@@MBEPBUDUI_MSGMAP@2@XZ
?Notify@WindowImplBase@DuiLib@@UAEXAAUtagTNotifyUI@2@@Z
?OnFinalMessage@WindowImplBase@DuiLib@@UAEXPAUHWND__@@@Z
?CreateControl@WindowImplBase@DuiLib@@UAEPAVCControlUI@2@PB_W@Z
?QueryControlText@WindowImplBase@DuiLib@@UAEPB_WPB_W0@Z
??0CDuiString@DuiLib@@QAE@PB_WH@Z
??1CPaintManagerUI@DuiLib@@UAE@XZ
??HCDuiString@DuiLib@@QBE?AV01@ABV01@@Z
??HCDuiString@DuiLib@@QBE?AV01@PB_W@Z
?LoadResource@CResourceManager@DuiLib@@QAEHVSTRINGorID@2@PB_W@Z
??4CDuiString@DuiLib@@QAEABV01@PB_W@Z
??0CDuiString@DuiLib@@QAE@XZ
?Format@CDuiString@DuiLib@@QAAHPB_WZZ
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PB_W@Z
?SetIcon@CWindowWnd@DuiLib@@QAEXI@Z
?SetValue@CProgressUI@DuiLib@@QAEXH@Z
?Close@CWindowWnd@DuiLib@@QAEXI@Z
??0CWindowWnd@DuiLib@@QAE@XZ
??0CPaintManagerUI@DuiLib@@QAE@XZ
??1CStdStringPtrMap@DuiLib@@QAE@XZ
?GetMessageMap@CNotifyPump@DuiLib@@MBEPBUDUI_MSGMAP@2@XZ
??0CStdStringPtrMap@DuiLib@@QAE@H@Z
??0CResourceManager@DuiLib@@AAE@XZ
??MCDuiString@DuiLib@@QBE_NPB_W@Z
??1CDuiString@DuiLib@@QAE@XZ
?HandleMessage@WindowImplBase@DuiLib@@UAEJIIJ@Z
?Create@CWindowWnd@DuiLib@@QAEPAUHWND__@@PAU3@PB_WKKHHHHPAUHMENU__@@@Z
?MessageHandler@WindowImplBase@DuiLib@@UAEJIIJAA_N@Z
?GetClassStyle@WindowImplBase@DuiLib@@UBEIXZ
?CenterWindow@CWindowWnd@DuiLib@@QAEXXZ
??BCDuiString@DuiLib@@QBEPB_WXZ
??0CDuiString@DuiLib@@QAE@ABV01@@Z
?GetHWND@CWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
?SetInstance@CPaintManagerUI@DuiLib@@SAXPAUHINSTANCE__@@@Z
?SetResourcePath@CPaintManagerUI@DuiLib@@SAXPB_W@Z
?SetResourceZip@CPaintManagerUI@DuiLib@@SAXPB_W_N0@Z
?ShowWindow@CWindowWnd@DuiLib@@QAEX_N0@Z
?OnMouseMove@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?MessageLoop@CPaintManagerUI@DuiLib@@SAXXZ

kernel32

ReadFile
SetFilePointer
TlsFree
TlsAlloc
WriteFile
SetFileTime
ResetEvent
SetWaitableTimer
CreateWaitableTimerW
GetDiskFreeSpaceExW
GetTempFileNameW
CancelWaitableTimer
WaitForMultipleObjects
CreateDirectoryW
GetLongPathNameW
GetCurrentProcessId
CreateThread
RemoveDirectoryW
FindClose
FindNextFileW
FindFirstFileW
GetFileAttributesW
DeviceIoControl
CreateFileA
HeapFree
HeapAlloc
GetProcessHeap
LoadLibraryA
GetFileType
DuplicateHandle
GetCurrentProcess
DosDateTimeToFileTime
TlsSetValue
GetFileSize
SetConsoleMode
ReadConsoleInputA
GetFileInformationByHandle
FindFirstFileExA
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
InterlockedCompareExchange
lstrlenA
WideCharToMultiByte
SetEndOfFile
GetModuleFileNameW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetTempPathW
GetVersionExW
VerSetConditionMask
VerifyVersionInfoW
GetModuleHandleW
GetProcAddress
GetSystemInfo
GetSystemDirectoryW
GetVolumeInformationW
CreateFileW
GetFileSizeEx
SetFileAttributesW
DeleteFileW
MoveFileExW
CopyFileW
CreateProcessW
GetExitCodeProcess
SetEvent
GetCommandLineW
CreateEventW
GetLastError
WaitForSingleObject
Sleep
GetTickCount
ExitProcess
CloseHandle
FlushConsoleInputBuffer
GlobalMemoryStatus
GetModuleHandleA
ExpandEnvironmentStringsA
PeekNamedPipe
FormatMessageA
VerifyVersionInfoA
SleepEx
SetEnvironmentVariableA
CompareStringW
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
HeapReAlloc
GetStringTypeW
GetFullPathNameA
IsValidCodePage
SystemTimeToFileTime
lstrlenW
IsBadReadPtr
MultiByteToWideChar
IsBadWritePtr
GetOEMCP
GetACP
SetConsoleCtrlHandler
FlushFileBuffers
GetConsoleMode
GetConsoleCP
QueryPerformanceCounter
HeapCreate
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetLocaleInfoW
HeapSize
TlsGetValue
IsProcessorFeaturePresent
GetCPInfo
LCMapStringW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentThreadId
ExitThread
GetStartupInfoW
HeapSetInformation
GetSystemTimeAsFileTime
GetTimeZoneInformation
RtlUnwind
RaiseException
TerminateProcess
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
WriteConsoleW
GetStdHandle
GetLocalTime
GetDriveTypeW
OutputDebugStringW
FormatMessageW
LocalFree
CreateMutexW
LoadLibraryW
FreeLibrary
GetVersion
SetLastError
DecodePointer
EncodePointer
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
OutputDebugStringA
GetCurrentDirectoryW

user32

FindWindowA
SetWindowPos
PostMessageW
GetClientRect
MessageBoxA
PostQuitMessage
SetForegroundWindow
PostThreadMessageW
GetProcessWindowStation
GetMessageW
GetUserObjectInformationW
SystemParametersInfoW

advapi32

RegisterEventSourceA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegOpenKeyExW
RegQueryValueExW
RevertToSelf
ImpersonateLoggedOnUser
GetUserNameW
RegSetValueExW
RegCreateKeyExW
DeregisterEventSource
ReportEventA
RegCloseKey

shell32

ShellExecuteExW
SHGetFolderPathW
CommandLineToArgvW
SHGetSpecialFolderPathW
SHFileOperationW

shlwapi

PathGetDriveNumberW
StrStrIW
PathIsDirectoryW
PathIsRelativeW
PathFileExistsW
PathIsRootW
PathAddBackslashW

wtsapi32

WTSQueryUserToken
WTSFreeMemory
WTSEnumerateSessionsW

userenv

LoadUserProfileW

iserver

IFile_Encrypt
IFile_Decrypt
IData_Free
ICommu_Post

ws2_32

getsockopt
getpeername
closesocket
socket
connect
htons
listen
accept
bind
freeaddrinfo
setsockopt
sendto
recvfrom
ntohs
getsockname
WSAIoctl
send
recv
select
WSAGetLastError
__WSAFDIsSet
WSASetLastError
WSAStartup
WSACleanup
gethostname
shutdown
ioctlsocket
getaddrinfo

wldap32

ord211
ord60
ord50
ord26
ord30
ord200
ord32
ord35
ord79
ord33
ord301
ord27
ord41
ord46
ord22
ord143

netapi32

NetWkstaGetInfo
NetApiBufferFree

wininet

InternetOpenW
HttpQueryInfoW
FtpGetFileSize
HttpSendRequestExW
InternetSetOptionW
InternetSetStatusCallbackW
FtpCommandW
InternetWriteFile
FtpOpenFileW
HttpEndRequestW
InternetReadFile
InternetReadFileExA
InternetConnectW
InternetSetOptionA
HttpOpenRequestW
InternetGetLastResponseInfoW
InternetCloseHandle
InternetQueryOptionW
InternetCrackUrlW

urlmon

ObtainUserAgentString

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 348KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SuW.exe
.exe windows:5 windows x86 arch:x86

ab25387f907e7ddda8a04c312d3a63d2

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

de:07:c5:9d:db:b6:4d:d0:a3:a7:c3:f8:8f:39:f0:c0:f0:41:bc:87:98:93:2a:85:31:e0:16:d3:32:ed:0a:fc
Signer

Actual PE Digest

de:07:c5:9d:db:b6:4d:d0:a3:a7:c3:f8:8f:39:f0:c0:f0:41:bc:87:98:93:2a:85:31:e0:16:d3:32:ed:0a:fc

Digest Algorithm

sha256

PE Digest Matches

true

14:8e:74:91:35:43:63:73:22:6b:39:c5:3d:97:9c:2e:e2:aa:a8:00
Signer

Actual PE Digest

14:8e:74:91:35:43:63:73:22:6b:39:c5:3d:97:9c:2e:e2:aa:a8:00

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\SuW.pdb

Imports

duilib

?SetMinInfo@CPaintManagerUI@DuiLib@@QAEXHH@Z
?SetMaxInfo@CPaintManagerUI@DuiLib@@QAEXHH@Z
??8CDuiString@DuiLib@@QBE_NPB_W@Z
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@UtagPOINT@@@Z
?GetHWND@CWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
?Close@CWindowWnd@DuiLib@@QAEXI@Z
??BCDuiString@DuiLib@@QBEPB_WXZ
?GetSuperClassName@CWindowWnd@DuiLib@@MBEPB_WXZ
?GetClassStyle@WindowImplBase@DuiLib@@UBEIXZ
?InitResource@WindowImplBase@DuiLib@@UAEXXZ
?OnClick@WindowImplBase@DuiLib@@MAEXAAUtagTNotifyUI@2@@Z
?IsInStaticControl@WindowImplBase@DuiLib@@MAEHPAVCControlUI@2@@Z
?GetManagerName@WindowImplBase@DuiLib@@MAEPB_WXZ
?OnClose@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnDestroy@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcActivate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcCalcSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcPaint@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcHitTest@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnGetMinMaxInfo@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseWheel@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseHover@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnChar@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSysCommand@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnCreate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKeyDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKillFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSetFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonUp@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseMove@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?SetFont@CLabelUI@DuiLib@@QAEXH@Z
?GetStyle@WindowImplBase@DuiLib@@UAEJXZ
?GetMessageMap@WindowImplBase@DuiLib@@MBEPBUDUI_MSGMAP@2@XZ
?MessageHandler@WindowImplBase@DuiLib@@UAEJIIJAA_N@Z
?CreateControl@WindowImplBase@DuiLib@@UAEPAVCControlUI@2@PB_W@Z
?QueryControlText@WindowImplBase@DuiLib@@UAEPB_WPB_W0@Z
?GetInstance@CPaintManagerUI@DuiLib@@SAPAUHINSTANCE__@@XZ
?SetInitSize@CPaintManagerUI@DuiLib@@QAEXHH@Z
?ShowWindow@CWindowWnd@DuiLib@@QAEX_N0@Z
?GetWebBrowser2@CWebBrowserUI@DuiLib@@QAEPAUIWebBrowser2@@XZ
?GetCurSel@CTabLayoutUI@DuiLib@@QBEHXZ
?SetWebBrowserEventHandler@CWebBrowserUI@DuiLib@@QAEXPAVCWebBrowserEventHandler@2@@Z
?NavigateUrl@CWebBrowserUI@DuiLib@@QAEXPB_W@Z
?OnFinalMessage@WindowImplBase@DuiLib@@UAEXPAUHWND__@@@Z
?Create@CWindowWnd@DuiLib@@QAEPAUHWND__@@PAU3@PB_WKKHHHHPAUHMENU__@@@Z
?MessageLoop@CPaintManagerUI@DuiLib@@SAXXZ
??0WindowImplBase@DuiLib@@QAE@XZ
??0CDuiString@DuiLib@@QAE@XZ
??4CDuiString@DuiLib@@QAEABV01@PB_W@Z
?Format@CDuiString@DuiLib@@QAAHPB_WZZ
??0CDuiString@DuiLib@@QAE@ABV01@@Z
??HCDuiString@DuiLib@@QBE?AV01@ABV01@@Z
??HCDuiString@DuiLib@@QBE?AV01@PB_W@Z
?HandleMessage@WindowImplBase@DuiLib@@UAEJIIJ@Z
??MCDuiString@DuiLib@@QBE_NPB_W@Z
?InitWindow@WindowImplBase@DuiLib@@UAEXXZ
?GetClientSize@CPaintManagerUI@DuiLib@@QBE?AUtagSIZE@@XZ
?IsSelected@COptionUI@DuiLib@@QBE_NXZ
?AddFont@CPaintManagerUI@DuiLib@@QAEPAUHFONT__@@HPB_WH_N111@Z
?SetCaptionRect@CPaintManagerUI@DuiLib@@QAEXAAUtagRECT@@@Z
?SetInstance@CPaintManagerUI@DuiLib@@SAXPAUHINSTANCE__@@@Z
?SetBkImage@CControlUI@DuiLib@@QAEXPB_W@Z
?GetFontInfo@CPaintManagerUI@DuiLib@@QAEPAUtagTFontInfo@2@H@Z
?GetFont@CLabelUI@DuiLib@@QBEHXZ
?SetTextColor@CLabelUI@DuiLib@@QAEXK@Z
?AddImage@CPaintManagerUI@DuiLib@@QAEPBUtagTImageInfo@2@PB_WPAUHBITMAP__@@HH_N2@Z
?RemoveImage@CPaintManagerUI@DuiLib@@QAEXPB_W_N@Z
??0CDuiString@DuiLib@@QAE@PB_WH@Z
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PB_W@Z
??1CDuiString@DuiLib@@QAE@XZ
??1WindowImplBase@DuiLib@@UAE@XZ
?HandleCustomMessage@WindowImplBase@DuiLib@@UAEJIIJAAH@Z

kernel32

FreeResource
SystemTimeToFileTime
Sleep
VirtualQuery
VirtualProtect
VirtualAlloc
InterlockedCompareExchange
GetCurrentThreadId
ResumeThread
FlushInstructionCache
GetThreadContext
SetThreadContext
SuspendThread
SetLastError
EncodePointer
CreateThread
OpenProcess
GetTickCount
GetCurrentThread
GetSystemDirectoryW
GetSystemInfo
GetVersionExW
GetCurrentProcess
GetModuleHandleA
GetProcAddress
LoadLibraryW
GetModuleHandleW
GetLastError
DeleteFileW
CreateDirectoryW
SetEnvironmentVariableA
CompareStringW
GetProcessHeap
SetEndOfFile
CreateFileW
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
HeapReAlloc
LCMapStringW
GlobalUnlock
GlobalLock
GlobalAlloc
LoadResource
SizeofResource
WaitForSingleObject
GetModuleFileNameA
SetUnhandledExceptionFilter
FlushFileBuffers
GetStringTypeW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
CreateFileA
HeapCreate
GetLocaleInfoW
InterlockedExchange
GetConsoleScreenBufferInfo
GetConsoleMode
GetConsoleCP
WriteFile
ReadFile
GetFileType
SetHandleCount
SetFilePointer
InitializeCriticalSectionAndSpinCount
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedIncrement
GetCPInfo
HeapSize
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
InterlockedDecrement
RtlUnwind
RaiseException
SetConsoleTextAttribute
WriteConsoleW
GetStdHandle
FindResourceW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetCurrentProcessId
CloseHandle
GetStartupInfoW
HeapSetInformation
GetTimeZoneInformation
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
ExitProcess
OutputDebugStringW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FindClose
FindFirstFileW
GetVersion
FreeLibrary
CreateMutexW
LocalFree
FormatMessageW
GetTempFileNameW
GetTempPathW
GetLongPathNameW
GetModuleFileNameW
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
MoveFileExW
GetFileAttributesW
GetLocalTime
DecodePointer

user32

wsprintfW
GetDC
SetForegroundWindow
TrackMouseEvent
GetCursorPos
KillTimer
ScreenToClient
SetFocus
GetWindowRect
SendMessageW
ClientToScreen
CallWindowProcW
GetWindow
GetClassNameW
LoadImageW
ShowWindow
SetWindowLongW
PostQuitMessage
IsIconic
FindWindowW
PostMessageW
GetForegroundWindow
GetWindowThreadProcessId
SetWindowPos
SystemParametersInfoW
GetSystemMetrics
AttachThreadInput
SetTimer

gdi32

SelectObject
GetTextExtentPoint32W
DeleteDC
CreateFontW

shell32

ShellExecuteW
SHGetSpecialFolderPathW
SHGetFolderPathW
CommandLineToArgvW
SHGetPathFromIDListA
SHGetSpecialFolderLocation

ole32

OleInitialize
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
CoInitialize

oleaut32

SysFreeString
SysAllocString

gdiplus

GdipDrawImageI
GdipBitmapGetPixel
GdipBitmapSetPixel
GdipCreateHBITMAPFromBitmap
GdipDeleteGraphics
GdipLoadImageFromFile
GdipCreateBitmapFromFile
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipDisposeImage
GdipCreateBitmapFromScan0
GdipCloneImage
GdipLoadImageFromStream
GdipFree
GdipAlloc

dbghelp

MiniDumpWriteDump

wininet

HttpQueryInfoW
InternetQueryOptionW
InternetSetOptionW
InternetCheckConnectionW

operation

FreeOperation
GetOperation
SetBCrash

iserver

ICommu_Post
IReg_Decrypt
IFile_Encrypt
IFile_Decrypt
IData_Free

urlmon

URLDownloadToFileW

shlwapi

PathFileExistsW
SHSetValueW
SHGetValueW

advapi32

RegOpenKeyExW
RegCreateKeyExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegQueryValueExW
RegCloseKey

Sections

.text
Size: 341KB - Virtual size: 341KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Suzip.exe
.exe windows:5 windows x86 arch:x86

5c717bbda5c93d9bb1641efee6486b62

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

9b:11:31:e1:36:58:f9:85:78:ed:68:9b:b2:08:43:55:c2:72:61:92:46:fa:3a:f8:5d:c4:d6:6e:01:54:99:11
Signer

Actual PE Digest

9b:11:31:e1:36:58:f9:85:78:ed:68:9b:b2:08:43:55:c2:72:61:92:46:fa:3a:f8:5d:c4:d6:6e:01:54:99:11

Digest Algorithm

sha256

PE Digest Matches

true

d1:e9:f0:56:c8:3d:24:3f:0d:a7:7d:43:9c:43:23:c5:0a:6c:58:b8
Signer

Actual PE Digest

d1:e9:f0:56:c8:3d:24:3f:0d:a7:7d:43:9c:43:23:c5:0a:6c:58:b8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\suzip\trunk\Bin\Win32-Release\Suzip.pdb

Imports

comctl32

ord17
PropertySheetW
InitCommonControlsEx
CreateToolbarEx
ImageList_AddMasked
ImageList_Destroy
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_Create

mpr

WNetAddConnection2W
WNetGetResourceInformationW
WNetGetResourceParentW
WNetEnumResourceW
WNetCloseEnum
WNetOpenEnumW

urlmon

URLDownloadToFileW

kernel32

QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetTimeZoneInformation
SetConsoleCtrlHandler
GetLocaleInfoW
GetStringTypeW
IsValidCodePage
GetOEMCP
GetACP
HeapDestroy
HeapCreate
FlushFileBuffers
GetConsoleMode
GetConsoleCP
FatalAppExitA
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
HeapSize
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
CompareStringW
GetCPInfo
LCMapStringW
GetStartupInfoW
HeapSetInformation
GetUserDefaultLCID
GetLocaleInfoA
OpenProcess
WaitForMultipleObjects
GlobalFree
GlobalSize
lstrcpynW
GetCommandLineA
FindNextFileA
FindFirstFileExA
HeapReAlloc
GetDateFormatA
GetTimeFormatA
ExitThread
RaiseException
RtlUnwind
CreateThread
TerminateThread
GetModuleFileNameA
SetUnhandledExceptionFilter
TerminateProcess
FillConsoleOutputCharacterW
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
WriteConsoleW
GetLocalTime
GetLogicalDrives
GetEnvironmentVariableW
CreateMutexW
SetEnvironmentVariableW
GetVersion
GetLongPathNameW
GetShortPathNameW
QueryDosDeviceW
DecodePointer
EncodePointer
InterlockedExchange
lstrlenA
lstrcatW
ExitProcess
GetTempFileNameW
GetLogicalDriveStringsW
InitializeCriticalSection
GlobalMemoryStatusEx
EnumSystemLocalesA
IsValidLocale
GetFileAttributesA
SetStdHandle
GetExitCodeProcess
CreateProcessA
SetEnvironmentVariableA
FreeLibrary
SetPriorityClass
GetSystemDirectoryA
CreateFileA
FormatMessageW
GetCurrentProcessId
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
CreateEventW
ExpandEnvironmentStringsW
GetProcAddress
LoadLibraryW
GetModuleHandleW
GetCurrentProcess
GetModuleHandleA
GetVersionExW
GetSystemInfo
MulDiv
GetSystemDirectoryW
GetCurrentThread
MoveFileExW
OutputDebugStringA
IsBadReadPtr
InterlockedIncrement
InterlockedDecrement
GlobalUnlock
GlobalLock
MapViewOfFile
CreateFileMappingW
OpenFileMappingW
CloseHandle
UnmapViewOfFile
GetCurrentThreadId
GetLastError
GlobalAlloc
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
DeleteCriticalSection
lstrlenW
WaitForSingleObject
CreateProcessW
Sleep
SetEvent
OpenEventW
GetTempPathW
lstrcpyW
DeleteFileW
OutputDebugStringW
CreateDirectoryW
FindNextChangeNotification
GetCompressedFileSizeW
GetFileInformationByHandle
CompareFileTime
CopyFileW
MultiByteToWideChar
WideCharToMultiByte
GetTickCount
DeviceIoControl
SuspendThread
SetThreadContext
GetThreadContext
FlushInstructionCache
ResumeThread
InterlockedCompareExchange
VirtualProtect
VirtualQuery
ExpandEnvironmentStringsA
LoadLibraryA
GetCommandLineW
AreFileApisANSI
GetSystemTimeAsFileTime
FileTimeToDosDateTime
DosDateTimeToFileTime
GlobalMemoryStatus
GetProcessAffinityMask
HeapAlloc
GetProcessHeap
HeapFree
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalReAlloc
GetDiskFreeSpaceW
GetDriveTypeW
GetVolumeInformationW
SetEndOfFile
SetFilePointer
GetFileSize
FindFirstChangeNotificationW
FindCloseChangeNotification
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
GetCurrentDirectoryW
SetCurrentDirectoryW
SetLastError
RemoveDirectoryW
SetFileAttributesW
SetFileTime
GetWindowsDirectoryW
MoveFileW
LocalFree
LoadLibraryExW
ReleaseSemaphore
CreateSemaphoreW
ResetEvent
VirtualFree
VirtualAlloc
WriteFile
GetStdHandle
ReadFile
GetSystemDefaultLangID
GetUserDefaultLangID
CreateFileW

user32

InvalidateRect
IsZoomed
ClientToScreen
IsIconic
ReleaseCapture
PostMessageW
KillTimer
SetWindowTextW
IsWindowEnabled
GetCursorPos
UpdateWindow
UnregisterHotKey
SetTimer
GetClassNameW
WindowFromPoint
CallWindowProcW
ScreenToClient
GetParent
MoveWindow
TrackPopupMenu
GetScrollBarInfo
GetKeyState
MapVirtualKeyW
SetWindowRgn
GetMessagePos
RegisterClipboardFormatW
SetCapture
ChildWindowFromPointEx
EndDialog
GetWindowTextW
TrackPopupMenuEx
AppendMenuW
GetClipboardData
GetWindow
ShowWindow
EnableWindow
GetMessageW
PostQuitMessage
TranslateMessage
DispatchMessageW
DefWindowProcW
IsWindow
DestroyWindow
LoadCursorW
GetClassNameA
CharUpperW
RegisterClassExW
CreateWindowExW
GetWindowLongW
wsprintfW
SetWindowLongW
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SendMessageW
RegisterHotKey
SetDlgItemTextW
GetDlgItem
GetFocus
CheckRadioButton
IsDlgButtonChecked
CheckDlgButton
LoadIconW
SetCursor
IsClipboardFormatAvailable
GetMenuItemInfoW
SetMenuItemInfoW
InsertMenuItemW
LoadStringW
GetWindowTextLengthW
GetDialogBaseUnits
SystemParametersInfoW
MapDialogRect
CreateDialogParamW
DialogBoxParamW
RegisterClassW
GetClassInfoW
GetCapture
GetWindowPlacement
TrackMouseEvent
GetSubMenu
DrawMenuBar
GetMenu
CheckMenuItem
CheckMenuRadioItem
RemoveMenu
EnableMenuItem
DrawIconEx
DestroyIcon
GetSystemMetrics
GetWindowRect
SetWindowPos
GetClientRect
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
SetFocus
MessageBoxW
CreatePopupMenu
DestroyMenu
LoadBitmapW
GetMenuItemCount

gdi32

GetTextExtentPoint32W
CreateRectRgn
CombineRgn
CreateSolidBrush
DeleteObject
SelectObject

comdlg32

GetOpenFileNameW
CommDlgExtendedError

advapi32

RegQueryValueExW
RegOpenKeyExW
RegSetKeySecurity
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CloseServiceHandle
QueryServiceStatus
OpenServiceA
OpenSCManagerW
RegCreateKeyW
RegOpenKeyExA
RegQueryValueExA
GetFileSecurityW
SetFileSecurityW
LookupAccountNameW
LsaClose
LsaOpenPolicy
LsaAddAccountRights
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
LookupPrivilegeValueW
AdjustTokenPrivileges
GetUserNameW
RegEnumKeyExW
OpenProcessToken
GetTokenInformation
ControlService
StartServiceW
RegCloseKey

shell32

SHGetDesktopFolder
SHGetDataFromIDListW
SHBrowseForFolderW
SHGetPathFromIDListW
ExtractIconW
SHChangeNotify
SHBindToParent
SHGetFileInfoW
ShellExecuteW
SHGetSpecialFolderPathW
SHGetMalloc
SHGetSpecialFolderLocation
DragFinish
DragQueryFileW
ord75
SHFileOperationW
DragQueryFileA
ShellExecuteExW
SHGetPathFromIDListA
CommandLineToArgvW
SHGetFolderPathW
ExtractIconExW

ole32

CoInitialize
RegisterDragDrop
ReleaseStgMedium
CoInitializeEx
CoCreateInstance
CoUninitialize
RevokeDragDrop
OleInitialize
OleUninitialize
DoDragDrop
CoTaskMemFree
CoTaskMemAlloc
OleRun

oleaut32

SysAllocString
SysFreeString
VariantClear
VariantCopy
SysStringLen
SysStringByteLen
SafeArrayPutElement
VariantInit
SafeArrayCreate
SysAllocStringLen
GetErrorInfo
VariantChangeType
SetErrorInfo
CreateErrorInfo

dbghelp

MiniDumpWriteDump

shlwapi

SHDeleteKeyW
PathRemoveFileSpecW
PathFileExistsW
SHSetValueW
SHGetValueW
SHDeleteValueW
PathCombineW
PathStripPathW
PathFindFileNameW

duilib

?ShowUI@CWebBrowserUI@DuiLib@@UAGJKPAUIOleInPlaceActiveObject@@PAUIOleCommandTarget@@PAUIOleInPlaceFrame@@PAUIOleInPlaceUIWindow@@@Z
?GetHostInfo@CWebBrowserUI@DuiLib@@UAGJPAU_DOCHOSTUIINFO@@@Z
?ShowContextMenu@CWebBrowserUI@DuiLib@@UAGJKPAUtagPOINT@@PAUIUnknown@@PAUIDispatch@@@Z
?Release@CWebBrowserUI@DuiLib@@UAGKXZ
?AddRef@CWebBrowserUI@DuiLib@@UAGKXZ
?QueryInterface@CWebBrowserUI@DuiLib@@UAGJABU_GUID@@PAPAX@Z
?MessageHandler@CActiveXUI@DuiLib@@UAEJIIJAA_N@Z
?Download@CWebBrowserUI@DuiLib@@UAGJPAUIMoniker@@PAUIBindCtx@@KJPAU_tagBINDINFO@@PB_W3I@Z
?DoCreateControl@CWebBrowserUI@DuiLib@@UAE_NXZ
?ReleaseControl@CWebBrowserUI@DuiLib@@MAEXXZ
?SetMFC@CActiveXUI@DuiLib@@UAEX_N@Z
?IsMFC@CActiveXUI@DuiLib@@UBE_NXZ
?SetDelayCreate@CActiveXUI@DuiLib@@UAEX_N@Z
?IsDelayCreate@CActiveXUI@DuiLib@@UBE_NXZ
?DoPaint@CActiveXUI@DuiLib@@UAE_NPAUHDC__@@ABUtagRECT@@PAVCControlUI@2@@Z
?SetAttribute@CWebBrowserUI@DuiLib@@MAEXPB_W0@Z
?SetInternVisible@CActiveXUI@DuiLib@@UAEX_N@Z
?SetVisible@CActiveXUI@DuiLib@@UAEX_N@Z
?Move@CActiveXUI@DuiLib@@UAEXUtagSIZE@@_N@Z
?SetPos@CActiveXUI@DuiLib@@UAEXUtagRECT@@_N@Z
??0CWebBrowserUI@DuiLib@@QAE@XZ
??1CListLabelElementUI@DuiLib@@UAE@XZ
?EstimateSize@CListLabelElementUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?DoEvent@CListLabelElementUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?GetControlFlags@CListElementUI@DuiLib@@UBEIXZ
?GetInterface@CListLabelElementUI@DuiLib@@UAEPAXPB_W@Z
?GetClass@CListLabelElementUI@DuiLib@@UBEPB_WXZ
??0CListLabelElementUI@DuiLib@@QAE@XZ
?GetObjectW@CDelegateBase@DuiLib@@IAEPAXXZ
??0CDelegateBase@DuiLib@@QAE@ABV01@@Z
??0CDelegateBase@DuiLib@@QAE@PAX0@Z
?FindSubControl@CContainerUI@DuiLib@@QAEPAVCControlUI@2@PB_W@Z
?GetPaintDC@CPaintManagerUI@DuiLib@@QBEPAUHDC__@@XZ
?SetFont@CLabelUI@DuiLib@@QAEXH@Z
?GetFont@CLabelUI@DuiLib@@QBEHXZ
?GetFont@CPaintManagerUI@DuiLib@@QAEPAUHFONT__@@H@Z
??1CLabelUI@DuiLib@@UAE@XZ
??1CMenuElementUI@DuiLib@@UAE@XZ
?SetAutoCalcWidth@CLabelUI@DuiLib@@UAEX_N@Z
?GetAutoCalcWidth@CLabelUI@DuiLib@@UBE_NXZ
?PaintText@CLabelUI@DuiLib@@UAEXPAUHDC__@@@Z
?EstimateSize@CLabelUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?SetAttribute@CLabelUI@DuiLib@@UAEXPB_W0@Z
?DoEvent@CLabelUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?SetText@CLabelUI@DuiLib@@UAEXPB_W@Z
?GetControlFlags@CLabelUI@DuiLib@@UBEIXZ
?GetInterface@CLabelUI@DuiLib@@UAEPAXPB_W@Z
?GetClass@CLabelUI@DuiLib@@UBEPB_WXZ
?DrawItemBk@CListContainerElementUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?ProcessScrollBar@CContainerUI@DuiLib@@MAEXUtagRECT@@HH@Z
?SetFloatPos@CContainerUI@DuiLib@@MAEXH@Z
?GetHorizontalScrollBar@CContainerUI@DuiLib@@UBEPAVCScrollBarUI@2@XZ
?GetVerticalScrollBar@CContainerUI@DuiLib@@UBEPAVCScrollBarUI@2@XZ
?EnableScrollBar@CContainerUI@DuiLib@@UAEX_N0@Z
?EndRight@CContainerUI@DuiLib@@UAEXXZ
?HomeLeft@CContainerUI@DuiLib@@UAEXXZ
?PageRight@CContainerUI@DuiLib@@UAEXXZ
?PageLeft@CContainerUI@DuiLib@@UAEXXZ
?LineRight@CContainerUI@DuiLib@@UAEXXZ
?LineLeft@CContainerUI@DuiLib@@UAEXXZ
?EndDown@CContainerUI@DuiLib@@UAEXXZ
?HomeUp@CContainerUI@DuiLib@@UAEXXZ
?PageDown@CContainerUI@DuiLib@@UAEXXZ
?PageUp@CContainerUI@DuiLib@@UAEXXZ
?LineDown@CContainerUI@DuiLib@@UAEXXZ
?LineUp@CContainerUI@DuiLib@@UAEXXZ
?GetScrollStepSize@CContainerUI@DuiLib@@UBEHXZ
?SetScrollStepSize@CContainerUI@DuiLib@@UAEXH@Z
?SetScrollPos@CContainerUI@DuiLib@@UAEXUtagSIZE@@_N@Z
?GetScrollRange@CContainerUI@DuiLib@@UBE?AUtagSIZE@@XZ
?GetScrollPos@CContainerUI@DuiLib@@UBE?AUtagSIZE@@XZ
?FindSelectable@CContainerUI@DuiLib@@UBEHH_N@Z
?SetMouseChildEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?IsMouseChildEnabled@CContainerUI@DuiLib@@UBE_NXZ
?SetDelayedDestroy@CContainerUI@DuiLib@@UAEX_N@Z
?IsDelayedDestroy@CContainerUI@DuiLib@@UBE_NXZ
?SetAutoDestroy@CContainerUI@DuiLib@@UAEX_N@Z
?IsAutoDestroy@CContainerUI@DuiLib@@UBE_NXZ
?SetChildVAlign@CContainerUI@DuiLib@@UAEXI@Z
?GetChildVAlign@CContainerUI@DuiLib@@UBEIXZ
?SetChildAlign@CContainerUI@DuiLib@@UAEXI@Z
?GetChildAlign@CContainerUI@DuiLib@@UBEIXZ
?SetChildPadding@CContainerUI@DuiLib@@UAEXH@Z
?GetChildPadding@CContainerUI@DuiLib@@UBEHXZ
?SetInset@CContainerUI@DuiLib@@UAEXUtagRECT@@@Z
?GetInset@CContainerUI@DuiLib@@UBE?AUtagRECT@@XZ
?DoPostPaint@CHorizontalLayoutUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?DoPaint@CMenuElementUI@DuiLib@@UAE_NPAUHDC__@@ABUtagRECT@@PAVCControlUI@2@@Z
?EstimateSize@CMenuElementUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?SetAttribute@CMenuElementUI@DuiLib@@UAEXPB_W0@Z
?DoEvent@CMenuElementUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?FindControl@CContainerUI@DuiLib@@UAEPAVCControlUI@2@P6GPAV32@PAV32@PAX@Z1I@Z
?SetMouseEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?SetEnabled@CListContainerElementUI@DuiLib@@UAEX_N@Z
?SetInternVisible@CContainerUI@DuiLib@@UAEX_N@Z
?SetVisible@CListContainerElementUI@DuiLib@@UAEX_N@Z
?Move@CContainerUI@DuiLib@@UAEXUtagSIZE@@_N@Z
?SetPos@CListContainerElementUI@DuiLib@@UAEXUtagRECT@@_N@Z
?GetClientPos@CContainerUI@DuiLib@@UBE?AUtagRECT@@XZ
?SetManager@CContainerUI@DuiLib@@UAEXPAVCPaintManagerUI@2@PAVCControlUI@2@_N@Z
?Activate@CListContainerElementUI@DuiLib@@UAE_NXZ
?OnDocWindowActivate@CWebBrowserUI@DuiLib@@UAGJH@Z
?GetInterface@CMenuElementUI@DuiLib@@UAEPAXPB_W@Z
?GetClass@CMenuElementUI@DuiLib@@UBEPB_WXZ
?GetGlobalContextMenuObserver@CMenuWnd@DuiLib@@SAAAVMenuObserverImpl@2@XZ
?SetMenuItemInfoW@CMenuWnd@DuiLib@@SAPAUMenuItemInfo@2@PB_W_N@Z
?HideUI@CWebBrowserUI@DuiLib@@UAGJXZ
??0CLabelUI@DuiLib@@QAE@XZ
?SetShowExplandIcon@CMenuElementUI@DuiLib@@QAEX_N@Z
?SetLineType@CMenuElementUI@DuiLib@@QAEXXZ
?ResizeMenu@CMenuWnd@DuiLib@@QAEXXZ
?DeletePtr@CPaintManagerUI@DuiLib@@QAEXPAX@Z
??0CDuiPoint@DuiLib@@QAE@XZ
?CreateMenu@CMenuWnd@DuiLib@@SAPAV12@PAVCMenuElementUI@2@VSTRINGorID@2@UtagPOINT@@PAVCPaintManagerUI@2@PAVCStdStringPtrMap@2@K@Z
?GetMenuUI@CMenuWnd@DuiLib@@QAEPAVCMenuUI@2@XZ
?PostMessageW@CWindowWnd@DuiLib@@QAEJIIJ@Z
?SetTextColor@CLabelUI@DuiLib@@QAEXK@Z
??YCDuiString@DuiLib@@QAEABV01@PB_W@Z
??YCEventSource@DuiLib@@QAEXABVCDelegateBase@1@@Z
??1CDelegateBase@DuiLib@@UAE@XZ
??0CStdStringPtrMap@DuiLib@@QAE@H@Z
??1CStdStringPtrMap@DuiLib@@QAE@XZ
?SetInstance@CPaintManagerUI@DuiLib@@SAXPAUHINSTANCE__@@@Z
?MessageLoop@CPaintManagerUI@DuiLib@@SAXXZ
?SetMinValue@CProgressUI@DuiLib@@QAEXH@Z
?SetMaxValue@CProgressUI@DuiLib@@QAEXH@Z
?FindSubControlByName@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PAV32@PB_W@Z
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@UtagPOINT@@@Z
??4CDuiString@DuiLib@@QAEABV01@PBD@Z
?GetBkImage@CControlUI@DuiLib@@QAEPB_WXZ
?GetHWND@CWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
?Find@CDuiString@DuiLib@@QBEHPB_WH@Z
?SetResourceZip@CPaintManagerUI@DuiLib@@SAXPB_W_N0@Z
?ReloadSkin@CPaintManagerUI@DuiLib@@SAXXZ
?InitWindow@WindowImplBase@DuiLib@@UAEXXZ
?SetValue@CProgressUI@DuiLib@@QAEXH@Z
?MessageHandler@CPaintManagerUI@DuiLib@@QAE_NIIJAAJ@Z
?Init@CPaintManagerUI@DuiLib@@QAEXPAUHWND__@@PB_W@Z
??0CDialogBuilder@DuiLib@@QAE@XZ
??0STRINGorID@DuiLib@@QAE@PB_W@Z
?Create@CDialogBuilder@DuiLib@@QAEPAVCControlUI@2@VSTRINGorID@2@PB_WPAVIDialogBuilderCallback@2@PAVCPaintManagerUI@2@PAV32@@Z
?AttachDialog@CPaintManagerUI@DuiLib@@QAE_NPAVCControlUI@2@@Z
?AddNotifier@CPaintManagerUI@DuiLib@@QAE_NPAVINotifyUI@2@@Z
??1CDialogBuilder@DuiLib@@QAE@XZ
?GetInitSize@CPaintManagerUI@DuiLib@@QAE?AUtagSIZE@@XZ
??0CWindowWnd@DuiLib@@QAE@XZ
??0CPaintManagerUI@DuiLib@@QAE@XZ
??1CPaintManagerUI@DuiLib@@UAE@XZ
?CenterWindow@CWindowWnd@DuiLib@@QAEXXZ
??BCWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
?HandleMessage@CWindowWnd@DuiLib@@MAEJIIJ@Z
?TranslateMessage@CPaintManagerUI@DuiLib@@SA_NQAUtagMSG@@@Z
?SendMessageW@CWindowWnd@DuiLib@@QAEJIIJ@Z
?Compare@CDuiString@DuiLib@@QBEHPB_W@Z
?SetPasswordMode@CEditUI@DuiLib@@QAEX_N@Z
?GetInstancePath@CPaintManagerUI@DuiLib@@SA?AVCDuiString@2@XZ
?IsSelected@COptionUI@DuiLib@@QBE_NXZ
?SetBkImage@CControlUI@DuiLib@@QAEXPB_W@Z
?Format@CDuiString@DuiLib@@QAAHPB_WZZ
?MakeLower@CDuiString@DuiLib@@QAEXXZ
?CompareNoCase@CDuiString@DuiLib@@QBEHPB_W@Z
?messageMap@WindowImplBase@DuiLib@@1UDUI_MSGMAP@2@B
??1CListTextElementUI@DuiLib@@UAE@XZ
?DoPaint@CListLabelElementUI@DuiLib@@UAE_NPAUHDC__@@ABUtagRECT@@PAVCControlUI@2@@Z
?EstimateSize@CListTextElementUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?SetAttribute@CListElementUI@DuiLib@@UAEXPB_W0@Z
?DoEvent@CListTextElementUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?SetEnabled@CListElementUI@DuiLib@@UAEX_N@Z
?SetVisible@CListElementUI@DuiLib@@UAEX_N@Z
?Activate@CListElementUI@DuiLib@@UAE_NXZ
?GetControlFlags@CListTextElementUI@DuiLib@@UBEIXZ
?GetInterface@CListTextElementUI@DuiLib@@UAEPAXPB_W@Z
?GetClass@CListTextElementUI@DuiLib@@UBEPB_WXZ
??0CListTextElementUI@DuiLib@@QAE@XZ
?SetText@CListTextElementUI@DuiLib@@QAEXHPB_W@Z
?GetLength@CDuiString@DuiLib@@QBEHXZ
??4CDuiString@DuiLib@@QAEABV01@PB_W@Z
?CreateControl@WindowImplBase@DuiLib@@UAEPAVCControlUI@2@PB_W@Z
?Notify@WindowImplBase@DuiLib@@UAEXAAUtagTNotifyUI@2@@Z
?GetSkinType@WindowImplBase@DuiLib@@MAE?AVCDuiString@2@XZ
??0CDuiString@DuiLib@@QAE@ABV01@@Z
??4CDuiString@DuiLib@@QAEABV01@ABV01@@Z
?SetAttribute@CControlUI@DuiLib@@UAEXPB_W0@Z
?DoPaint@CControlUI@DuiLib@@UAE_NPAUHDC__@@ABUtagRECT@@PAV12@@Z
?IsEmpty@CDuiString@DuiLib@@QBE_NXZ
??BCDuiString@DuiLib@@QBEPB_WXZ
?GetInterface@CControlUI@DuiLib@@UAEPAXPB_W@Z
?DoPostPaint@CControlUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?PaintBorder@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintText@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintForeImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintForeColor@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintStatusImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintBkImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintBkColor@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?Paint@CControlUI@DuiLib@@UAE_NPAUHDC__@@ABUtagRECT@@PAV12@@Z
?EstimateSize@CControlUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?DoEvent@CControlUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?Event@CControlUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?DoInit@CControlUI@DuiLib@@UAEXXZ
?Init@CControlUI@DuiLib@@UAEXXZ
?FindControl@CControlUI@DuiLib@@UAEPAV12@P6GPAV12@PAV12@PAX@Z1I@Z
?SetFloat@CControlUI@DuiLib@@UAEX_N@Z
?IsFloat@CControlUI@DuiLib@@UBE_NXZ
?SetFocus@CControlUI@DuiLib@@UAEXXZ
?IsFocused@CControlUI@DuiLib@@UBE_NXZ
?SetKeyboardEnabled@CControlUI@DuiLib@@UAEX_N@Z
?IsKeyboardEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetMouseEnabled@CControlUI@DuiLib@@UAEX_N@Z
?IsMouseEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetEnabled@CControlUI@DuiLib@@UAEX_N@Z
?IsEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetInternVisible@CControlUI@DuiLib@@UAEX_N@Z
?SetVisible@CControlUI@DuiLib@@UAEX_N@Z
?UpdateUI@CWebBrowserUI@DuiLib@@UAGJXZ
??0CMenuElementUI@DuiLib@@QAE@XZ
?EnableModeless@CWebBrowserUI@DuiLib@@UAGJH@Z
?OnFrameWindowActivate@CWebBrowserUI@DuiLib@@UAGJH@Z
?ResizeBorder@CWebBrowserUI@DuiLib@@UAGJPBUtagRECT@@PAUIOleInPlaceUIWindow@@H@Z
?TranslateAcceleratorW@CWebBrowserUI@DuiLib@@UAGJPAUtagMSG@@PBU_GUID@@K@Z
?GetOptionKeyPath@CWebBrowserUI@DuiLib@@UAGJPAPA_WK@Z
?GetDropTarget@CWebBrowserUI@DuiLib@@UAGJPAUIDropTarget@@PAPAU3@@Z
?TranslateUrl@CWebBrowserUI@DuiLib@@UAGJKPA_WPAPA_W@Z
?FilterDataObject@CWebBrowserUI@DuiLib@@UAGJPAUIDataObject@@PAPAU3@@Z
?QueryService@CWebBrowserUI@DuiLib@@UAGJABU_GUID@@0PAPAX@Z
?QueryStatus@CWebBrowserUI@DuiLib@@UAGJPBU_GUID@@KQAU_tagOLECMD@@PAU_tagOLECMDTEXT@@@Z
?Exec@CWebBrowserUI@DuiLib@@UAGJPBU_GUID@@KKPAUtagVARIANT@@1@Z
?GetTypeInfoCount@CWebBrowserUI@DuiLib@@UAGJPAI@Z
?GetTypeInfo@CWebBrowserUI@DuiLib@@UAGJIKPAPAUITypeInfo@@@Z
?TranslateAcceleratorW@CWebBrowserUI@DuiLib@@UAEJPAUtagMSG@@@Z
?SetSecuritySite@CWebBrowserUI@DuiLib@@UAGJPAUIInternetSecurityMgrSite@@@Z
?GetSecuritySite@CWebBrowserUI@DuiLib@@UAGJPAPAUIInternetSecurityMgrSite@@@Z
?MapUrlToZone@CWebBrowserUI@DuiLib@@UAGJPB_WPAKK@Z
?GetSecurityId@CWebBrowserUI@DuiLib@@UAGJPB_WPAEPAKK@Z
?ProcessUrlAction@CWebBrowserUI@DuiLib@@UAGJPB_WKPAEK1KKK@Z
?QueryCustomPolicy@CWebBrowserUI@DuiLib@@UAGJPB_WABU_GUID@@PAPAEPAKPAEKK@Z
?SetZoneMapping@CWebBrowserUI@DuiLib@@UAGJKPB_WK@Z
?GetZoneMappings@CWebBrowserUI@DuiLib@@UAGJKPAPAUIEnumString@@K@Z
??1CWebBrowserUI@DuiLib@@UAE@XZ
?GetInterface@CActiveXUI@DuiLib@@UAEPAXPB_W@Z
?Invoke@CWebBrowserUI@DuiLib@@UAGJJABU_GUID@@KGPAUtagDISPPARAMS@@PAUtagVARIANT@@PAUtagEXCEPINFO@@PAI@Z
?Refresh@CWebBrowserUI@DuiLib@@QAEXXZ
?SetObjectOffset@CActiveXUI@DuiLib@@QAEXHHHH@Z
?NavigateUrl@CWebBrowserUI@DuiLib@@QAEXPB_W@Z
?SetWebBrowserEventHandler@CWebBrowserUI@DuiLib@@QAEXPAVCWebBrowserEventHandler@2@@Z
?GetWebBrowser2@CWebBrowserUI@DuiLib@@QAEPAUIWebBrowser2@@XZ
?GetControlFlags@CListContainerElementUI@DuiLib@@UBEIXZ
?IsVisible@CControlUI@DuiLib@@UBE_NXZ
?SetTag@CControlUI@DuiLib@@UAEXI@Z
?GetTag@CControlUI@DuiLib@@UBEIXZ
?SetUserData@CControlUI@DuiLib@@UAEXPB_W@Z
?GetUserData@CControlUI@DuiLib@@UAEABVCDuiString@2@XZ
?SetContextMenuUsed@CControlUI@DuiLib@@UAEX_N@Z
?IsContextMenuUsed@CControlUI@DuiLib@@UBE_NXZ
?SetShortcut@CControlUI@DuiLib@@UAEX_W@Z
?GetShortcut@CControlUI@DuiLib@@UBE_WXZ
?SetCursor@CControlUI@DuiLib@@UAEXG@Z
?GetCursor@CControlUI@DuiLib@@UAEGXZ
?GetToolTipWidth@CControlUI@DuiLib@@UAEHXZ
?SetToolTipWidth@CControlUI@DuiLib@@UAEXH@Z
?SetToolTip@CControlUI@DuiLib@@UAEXPB_W@Z
?GetToolTip@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?GetFloatAlign@CControlUI@DuiLib@@UBEIXZ
?SetFloatAlign@CControlUI@DuiLib@@UAEXI@Z
?SetFloatPercent@CControlUI@DuiLib@@UAEXUtagTPercentInfo@2@@Z
?GetFloatPercent@CControlUI@DuiLib@@UBE?AUtagTPercentInfo@2@XZ
?SetMaxHeight@CControlUI@DuiLib@@UAEXH@Z
?GetMaxHeight@CControlUI@DuiLib@@UBEHXZ
?SetMinHeight@CControlUI@DuiLib@@UAEXH@Z
?GetMinHeight@CControlUI@DuiLib@@UBEHXZ
?SetMaxWidth@CControlUI@DuiLib@@UAEXH@Z
?GetMaxWidth@CControlUI@DuiLib@@UBEHXZ
?SetMinWidth@CControlUI@DuiLib@@UAEXH@Z
?GetMinWidth@CControlUI@DuiLib@@UBEHXZ
?SetFixedHeight@CControlUI@DuiLib@@UAEXH@Z
?GetFixedHeight@CControlUI@DuiLib@@UBEHXZ
?SetFixedWidth@CControlUI@DuiLib@@UAEXH@Z
?GetFixedWidth@CControlUI@DuiLib@@UBEHXZ
?SetFixedXY@CControlUI@DuiLib@@UAEXUtagSIZE@@@Z
?GetFixedXY@CControlUI@DuiLib@@UBE?AUtagSIZE@@XZ
?SetPadding@CControlUI@DuiLib@@UAEXUtagRECT@@@Z
?GetPadding@CControlUI@DuiLib@@UBE?AUtagRECT@@XZ
?GetY@CControlUI@DuiLib@@UBEHXZ
?GetX@CControlUI@DuiLib@@UBEHXZ
?GetHeight@CControlUI@DuiLib@@UBEHXZ
?GetWidth@CControlUI@DuiLib@@UBEHXZ
?Move@CControlUI@DuiLib@@UAEXUtagSIZE@@_N@Z
?SetPos@CControlUI@DuiLib@@UAEXUtagRECT@@_N@Z
?GetPos@CControlUI@DuiLib@@UBEABUtagRECT@@XZ
?GetClientPos@CControlUI@DuiLib@@UBE?AUtagRECT@@XZ
?GetRelativePos@CControlUI@DuiLib@@UBE?AUtagRECT@@XZ
?SetDropEnable@CControlUI@DuiLib@@UAEX_N@Z
?IsDropEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetDragEnable@CControlUI@DuiLib@@UAEX_N@Z
?IsDragEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetResourceText@CControlUI@DuiLib@@UAEX_N@Z
?IsResourceText@CControlUI@DuiLib@@UBE_NXZ
?SetText@CControlUI@DuiLib@@UAEXPB_W@Z
?GetText@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?GetParent@CControlUI@DuiLib@@UBEPAV12@XZ
?SetManager@CControlUI@DuiLib@@UAEXPAVCPaintManagerUI@2@PAV12@_N@Z
?GetManager@CControlUI@DuiLib@@UBEPAVCPaintManagerUI@2@XZ
?Activate@CControlUI@DuiLib@@UAE_NXZ
?GetControlFlags@CControlUI@DuiLib@@UBEIXZ
??0WindowImplBase@DuiLib@@QAE@XZ
?GetSuperClassName@CWindowWnd@DuiLib@@MBEPB_WXZ
?GetClassStyle@WindowImplBase@DuiLib@@UBEIXZ
?OnFinalMessage@WindowImplBase@DuiLib@@UAEXPAUHWND__@@@Z
?InitResource@WindowImplBase@DuiLib@@UAEXXZ
?OnClick@WindowImplBase@DuiLib@@MAEXAAUtagTNotifyUI@2@@Z
?IsInStaticControl@WindowImplBase@DuiLib@@MAEHPAVCControlUI@2@@Z
?IsAllowDrop@WindowImplBase@DuiLib@@MAE_NXZ
?GetManagerName@WindowImplBase@DuiLib@@MAEPB_WXZ
?ResponseDefaultKeyEvent@WindowImplBase@DuiLib@@MAEJI@Z
?OnClose@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnDestroy@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcActivate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcCalcSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcPaint@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcHitTest@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnGetMinMaxInfo@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseWheel@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseHover@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnChar@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSysCommand@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnCreate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKeyDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKillFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSetFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonUp@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseMove@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?HandleCustomMessage@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?GetStyle@WindowImplBase@DuiLib@@UAEJXZ
?GetMessageMap@WindowImplBase@DuiLib@@MBEPBUDUI_MSGMAP@2@XZ
?QueryControlText@WindowImplBase@DuiLib@@UAEPB_WPB_W0@Z
??1WindowImplBase@DuiLib@@UAE@XZ
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PB_W@Z
?SetIcon@CWindowWnd@DuiLib@@QAEXI@Z
??8CDuiString@DuiLib@@QBE_NPB_W@Z
?SetFocus@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@@Z
?SetNextTabControl@CPaintManagerUI@DuiLib@@QAE_N_N@Z
?ReleaseCapture@CPaintManagerUI@DuiLib@@QAEXXZ
?IsCaptured@CPaintManagerUI@DuiLib@@QAE_NXZ
?HandleMessage@WindowImplBase@DuiLib@@UAEJIIJ@Z
?SendNotify@CPaintManagerUI@DuiLib@@QAEXPAVCControlUI@2@PB_WIJ_N@Z
??1CDuiString@DuiLib@@QAE@XZ
?GetFocus@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@XZ
?MessageHandler@WindowImplBase@DuiLib@@UAEJIIJAA_N@Z
?ShowModal@CWindowWnd@DuiLib@@QAEIH@Z
?ShowWindow@CWindowWnd@DuiLib@@QAEX_N0@Z
?Create@CWindowWnd@DuiLib@@QAEPAUHWND__@@PAU3@PB_WKKHHHHPAUHMENU__@@@Z
??0CDuiString@DuiLib@@QAE@PB_WH@Z
?Close@CWindowWnd@DuiLib@@QAEXI@Z
?GetData@CDuiString@DuiLib@@QBEPB_WXZ
??1CControlUI@DuiLib@@UAE@XZ
??0CDuiString@DuiLib@@QAE@XZ
??0CControlUI@DuiLib@@QAE@XZ
?GetName@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?SetName@CControlUI@DuiLib@@UAEXPB_W@Z

iserver

ICheckRootDisk
IAdProgramFile_MD5Matched
IMD5Hash
IReg_Encrypt
IReg_Decrypt
IData_Free
ICheckGpedit
ICommu_Post
ICom_AssociateWithExtension
ICom_UnAssociateWithExtensionAll
ICom_UnAssociateWithExtension
ICom_IsAssociatedWithExtension
IGetSystemInstallTime
IText_Encrypt
IGetInstallTime

operation

GetOperation
SetBCrash
FreeOperation

wsock32

inet_addr
gethostbyname
gethostname
WSAStartup
WSACleanup

iphlpapi

GetAdaptersInfo

uxtheme

SetWindowTheme

wininet

DeleteUrlCacheEntryW
InternetGetConnectedState
InternetCheckConnectionW
InternetSetOptionW
InternetQueryOptionW
HttpQueryInfoW

psapi

GetProcessImageFileNameW

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 308KB - Virtual size: 307KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 378KB - Virtual size: 377KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Suzip.sfx
.exe windows:5 windows x86 arch:x86

9aaa77370a92874ce86421f0bbadbf76

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\Suzip.pdb

Imports

kernel32

CreateSemaphoreW
GetCommandLineW
InitializeCriticalSection
ReleaseSemaphore
ResetEvent
lstrcatW
GetVersionExW
VirtualFree
VirtualAlloc
WideCharToMultiByte
MultiByteToWideChar
FileTimeToLocalFileTime
FileTimeToSystemTime
SetEndOfFile
SetFilePointer
GetFileSize
GetModuleHandleA
GetLogicalDriveStringsW
FindFirstChangeNotificationW
FindCloseChangeNotification
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
GetCurrentProcessId
GetTempPathW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetLastError
CreateDirectoryW
GetProcAddress
RemoveDirectoryW
SetFileAttributesW
CreateFileW
SetFileTime
GetSystemDirectoryW
GetWindowsDirectoryW
FormatMessageW
LocalFree
GetModuleFileNameW
LoadLibraryW
LoadLibraryExW
FreeLibrary
DeleteFileW
MoveFileW
WaitForSingleObject
WriteFile
GetFileInformationByHandle
GetStdHandle
ReadFile
GetCurrentProcess
SetPriorityClass
WaitForMultipleObjects
GetTickCount
CloseHandle
DeleteCriticalSection
CreateEventW
Sleep
LeaveCriticalSection
EnterCriticalSection
GlobalAlloc
GlobalLock
GlobalUnlock
GetModuleHandleW
lstrcpyW
SetEvent
GetDiskFreeSpaceExW
GetLastError
CompareFileTime
GetCurrentThreadId
InterlockedCompareExchange
lstrlenW
SetEnvironmentVariableA
CompareStringW
GetProcessHeap
CreateProcessA
GetExitCodeProcess
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
InterlockedExchange
SetConsoleCtrlHandler
GetStringTypeW
LCMapStringW
GetFileAttributesA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
FatalAppExitA
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
OutputDebugStringW
OutputDebugStringA
GetLocalTime
CopyFileW
MoveFileExW
GetShortPathNameW
GetLongPathNameW
GetDriveTypeW
GetVersion
SetEnvironmentVariableW
CreateMutexW
GetTempFileNameW
GetEnvironmentVariableW
GetLogicalDrives
WriteConsoleW
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
SetConsoleCursorPosition
FillConsoleOutputCharacterW
QueryDosDeviceW
CreateFileA
SetUnhandledExceptionFilter
GetModuleFileNameA
ExitProcess
GetACP
MulDiv
LockResource
SizeofResource
FreeResource
LoadResource
FindResourceW
OpenProcess
VerifyVersionInfoW
VerSetConditionMask
SystemTimeToFileTime
LocalFileTimeToFileTime
InterlockedIncrement
InterlockedDecrement
lstrcmpiW
lstrcpynW
RtlUnwind
DecodePointer
EncodePointer
RaiseException
HeapFree
HeapReAlloc
HeapAlloc
ExitThread
CreateThread
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThread
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetLocaleInfoW
HeapSize
IsProcessorFeaturePresent
GetCPInfo
GetOEMCP
IsValidCodePage
HeapCreate
HeapDestroy
FreeEnvironmentStringsW
GetEnvironmentStringsW

user32

MonitorFromWindow
SetWindowRgn
wsprintfW
DefWindowProcW
LoadImageW
RegisterClassW
RegisterClassExW
GetClassInfoExW
GetPropW
SetPropW
AdjustWindowRectEx
GetMenu
CharNextW
ReleaseDC
DestroyWindow
GetDC
GetSysColor
ReleaseCapture
PtInRect
GetCursorPos
MapWindowPoints
IntersectRect
IsWindowVisible
UnionRect
IsRectEmpty
GetUpdateRect
EndPaint
BeginPaint
GetActiveWindow
SetCapture
InflateRect
GetMonitorInfoW
UpdateLayeredWindow
GetWindowRgn
FillRect
DrawTextW
CharPrevW
SetRect
CreateCaret
HideCaret
ShowCaret
SetCaretPos
GetCaretPos
ClientToScreen
GetCaretBlinkTime
DestroyMenu
IsIconic
EnableMenuItem
AppendMenuW
CreatePopupMenu
IsWindowEnabled
GetKeyNameTextW
MapVirtualKeyExW
GetKeyboardLayout
DrawTextA
wsprintfA
InvalidateRgn
CreateAcceleratorTableW
GetGUIThreadInfo
EqualRect
OffsetRect
EndDialog
RegisterHotKey
GetWindowLongW
SetWindowLongW
MonitorFromPoint
IsZoomed
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
CharUpperW
GetWindowTextW
GetWindowTextLengthW
LoadStringW
CallWindowProcW
CreateWindowExW
DialogBoxParamW
CreateDialogParamW
MapDialogRect
SystemParametersInfoW
GetDialogBaseUnits
CharPrevExA
DrawIconEx
DestroyIcon
LoadCursorW
SetCursor
GetParent
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
KillTimer
LoadIconW
SetTimer
GetWindow
ShowWindow
EnableWindow
IsWindow
GetMessageW
PostQuitMessage
TranslateMessage
DispatchMessageW
UnregisterHotKey
ScreenToClient
GetDlgItem
SetWindowTextW
GetSystemMetrics
GetWindowRect
SetWindowPos
GetClientRect
MessageBoxW
GetFocus
GetKeyState
InvalidateRect
MoveWindow
SendMessageW
PostMessageW
SetFocus
TrackPopupMenu

gdi32

BitBlt
SaveDC
SelectObject
CreateCompatibleDC
GetTextMetricsW
AddFontMemResourceEx
PlayEnhMetaFile
CreateCompatibleBitmap
GetDeviceCaps
GetEnhMetaFileHeader
CreateDIBitmap
CreateSolidBrush
CreatePatternBrush
SetTextColor
SetBkMode
CreateDIBSection
PtInRegion
RestoreDC
DeleteObject
ExtSelectClipRgn
CreateRectRgnIndirect
GetClipBox
CombineRgn
StretchBlt
SetStretchBltMode
LineTo
MoveToEx
CreatePenIndirect
RoundRect
TextOutW
GetTextExtentPoint32W
GetCharABCWidthsW
SetBkColor
GdiFlush
GetObjectA
GetBitmapBits
SetBitmapBits
GetTextExtentPointA
SelectClipRgn
Rectangle
SetWindowOrgEx
CreateEnhMetaFileW
CloseEnhMetaFile
RemoveFontMemResourceEx
DeleteDC
GetStockObject
GetObjectW
CreateFontIndirectW
CreateRectRgn
CreateRoundRectRgn
CreatePen

comdlg32

GetOpenFileNameW
CommDlgExtendedError

shell32

DragQueryFileW
DragFinish
SHGetSpecialFolderLocation
SHGetMalloc
Shell_NotifyIconW
ShellExecuteW
SHGetFileInfoW
SHGetFolderPathW
SHBrowseForFolderW
SHGetPathFromIDListA
SHGetPathFromIDListW
CommandLineToArgvW

ole32

OleInitialize
CoUninitialize
CoInitialize
CLSIDFromProgID
OleLockRunning
CLSIDFromString
CreateStreamOnHGlobal
ReleaseStgMedium
RegisterDragDrop
OleDuplicateData
DoDragDrop
CoCreateInstance

oleaut32

CreateErrorInfo
SetErrorInfo
VariantChangeType
GetErrorInfo
SysFreeString
SysAllocString
SysAllocStringLen
VariantClear
VariantCopy
SysStringLen
VariantInit

dbghelp

MiniDumpWriteDump

shlwapi

StrChrW
PathFileExistsW

gdiplus

GdipAlloc
GdipCreateFontFamilyFromName
GdiplusStartup
GdipImageSelectActiveFrame
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipFree
GdiplusShutdown
GdipDeleteGraphics
GdipDeleteBrush
GdipFillRectangleI
GdipCreateFromHDC
GdipCloneBrush
GdipCreateSolidFill
GdipDeletePen
GdipDrawRectangleI
GdipSetPenMode
GdipCreatePen1
GdipDeleteFont
GdipDeleteStringFormat
GdipDrawString
GdipMeasureString
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipSetStringFormatFlags
GdipSetStringFormatTrimming
GdipCloneStringFormat
GdipStringFormatGetGenericTypographic
GdipSetInterpolationMode
GdipSetSmoothingMode
GdipSetTextRenderingHint
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipDisposeImage
GdipCloneImage
GdipDrawImageRectI
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipGetImageHeight
GdipGetImageWidth
GdipGetPropertyItem
GdipGetPropertyItemSize

ws2_32

WSAStartup
gethostname
gethostbyname

advapi32

SetSecurityDescriptorDacl
RegQueryValueExW
RegOpenKeyExW
GetUserNameW
InitializeSecurityDescriptor
RegCloseKey
OpenProcessToken
GetTokenInformation

comctl32

_TrackMouseEvent
ord17
InitCommonControlsEx

imm32

ImmSetCompositionWindow
ImmGetContext
ImmReleaseContext

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SuzipChecker.exe
.exe windows:5 windows x86 arch:x86

25c724239d9330323ae8c9f1fbeb3055

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

27/04/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

Issuer

CN=COMODO Time Stamping CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

30/05/2020, 10:48

Subject

CN=Sectigo SHA-1 Time Stamping Signer,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:c7:b0:6c:86:69:e8:19:99:9b:34:e5:b5:6f:8d:0b:1c:c8:d5:6f:be:0e:71:fb:fe:ca:a0:ab:82:24:15:d8
Signer

Actual PE Digest

d3:c7:b0:6c:86:69:e8:19:99:9b:34:e5:b5:6f:8d:0b:1c:c8:d5:6f:be:0e:71:fb:fe:ca:a0:ab:82:24:15:d8

Digest Algorithm

sha256

PE Digest Matches

true

21:90:8f:5b:5a:7a:a3:29:20:c5:56:65:59:8a:d1:77:36:1e:d5:b7
Signer

Actual PE Digest

21:90:8f:5b:5a:7a:a3:29:20:c5:56:65:59:8a:d1:77:36:1e:d5:b7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\SuzipChecker.pdb

Imports

kernel32

GetCurrentProcessId
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CreateMutexW
SetConsoleMode
ReadConsoleInputA
GetFileInformationByHandle
ExitThread
FindFirstFileExA
CreateEventW
FileTimeToLocalFileTime
FileTimeToSystemTime
InterlockedCompareExchange
OpenMutexW
GetModuleFileNameA
GetProcAddress
LoadLibraryW
GetCurrentProcess
OpenProcess
SystemTimeToFileTime
CreateFileMappingW
CreateDirectoryW
WaitForSingleObject
ResetEvent
GetDriveTypeA
ReleaseMutex
GetTickCount
GetCurrentThreadId
UnmapViewOfFile
CloseHandle
MapViewOfFile
Sleep
GetLastError
SetConsoleCtrlHandler
FlushConsoleInputBuffer
GlobalMemoryStatus
GetModuleHandleA
ExpandEnvironmentStringsA
LoadLibraryA
WaitForMultipleObjects
PeekNamedPipe
FormatMessageA
VerSetConditionMask
VerifyVersionInfoA
SleepEx
SetEnvironmentVariableA
CompareStringW
GetProcessHeap
SetEndOfFile
CreateFileW
SetStdHandle
HeapReAlloc
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
IsValidCodePage
GetOEMCP
GetACP
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetLocaleInfoW
TlsFree
TlsSetValue
TlsGetValue
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
EncodePointer
DecodePointer
CopyFileW
MoveFileExW
GetFileAttributesW
SetLastError
OutputDebugStringW
FindClose
FindFirstFileW
GetVersion
FreeLibrary
GetModuleHandleW
LocalFree
FormatMessageW
GetTempFileNameW
GetTempPathW
GetLongPathNameW
GetModuleFileNameW
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
QueryDosDeviceW
GetLogicalDriveStringsW
GetLocalTime
GetCurrentDirectoryW
GetDriveTypeW
FindNextFileW
GetStdHandle
WriteConsoleW
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
TerminateProcess
CreateFileA
SetUnhandledExceptionFilter
TerminateThread
CreateThread
HeapFree
GetSystemTimeAsFileTime
GetTimeZoneInformation
HeapSetInformation
GetStartupInfoW
RaiseException
RtlUnwind
HeapAlloc
LCMapStringW
GetCPInfo
DeleteFileW
RemoveDirectoryW
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
HeapCreate
ExitProcess
WriteFile
GetConsoleCP
GetConsoleMode
SetFilePointer
ReadFile
FlushFileBuffers
HeapSize
TlsAlloc
GetFullPathNameA

user32

GetProcessWindowStation
MessageBoxA
GetUserObjectInformationW
MessageBoxW

advapi32

ImpersonateLoggedOnUser
GetUserNameW
RegisterServiceCtrlHandlerExW
SetServiceStatus
StartServiceCtrlDispatcherW
DeleteService
ControlService
OpenServiceW
CreateServiceW
StartServiceW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
ReportEventA
RegisterEventSourceA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCloseKey
LookupPrivilegeValueW
CreateProcessAsUserW
SetTokenInformation
GetTokenInformation
DuplicateTokenEx
OpenProcessToken
RegisterEventSourceW
ReportEventW
DeregisterEventSource
OpenSCManagerW
OpenServiceA
QueryServiceStatus
CloseServiceHandle
RevertToSelf

shell32

SHGetPathFromIDListA
SHGetFolderPathW
SHGetSpecialFolderLocation
CommandLineToArgvW

dbghelp

MiniDumpWriteDump

operation

SetBCrash
GetOperation

wtsapi32

WTSEnumerateSessionsW
WTSFreeMemory
WTSQueryUserToken

userenv

CreateEnvironmentBlock
LoadUserProfileW
DestroyEnvironmentBlock

wininet

InternetCheckConnectionW

iserver

IReg_Decrypt
ICom_IsAssociatedWithExtension
ICommu_Post
IFile_Encrypt
IData_Free
IFile_Decrypt
IAdProgramFile_MD5Value

ws2_32

setsockopt
WSAIoctl
send
getsockname
select
WSAGetLastError
__WSAFDIsSet
WSASetLastError
WSAStartup
WSACleanup
ntohs
bind
htons
getsockopt
getpeername
closesocket
recvfrom
recv
sendto
socket
connect
getaddrinfo
freeaddrinfo
accept
listen
shutdown
gethostname
ioctlsocket

wldap32

ord46
ord41
ord27
ord22
ord211
ord143
ord60
ord301
ord33
ord79
ord35
ord32
ord200
ord50
ord30
ord26

psapi

GetProcessImageFileNameW

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 322KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SuzipShell32.dll
.dll regsvr32 windows:5 windows x86 arch:x86

8b749b4ffe0614484a4552d80abcead2

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

fe:72:7b:87:3d:e6:d7:f5:bc:3f:d4:0e:39:7a:18:a4:66:f5:41:1a:4f:95:d6:dc:4e:4d:d9:50:be:be:a6:21
Signer

Actual PE Digest

fe:72:7b:87:3d:e6:d7:f5:bc:3f:d4:0e:39:7a:18:a4:66:f5:41:1a:4f:95:d6:dc:4e:4d:d9:50:be:be:a6:21

Digest Algorithm

sha256

PE Digest Matches

true

b2:70:b1:4f:d6:5f:98:aa:cc:dd:cc:90:11:5e:39:e7:73:cf:b7:ad
Signer

Actual PE Digest

b2:70:b1:4f:d6:5f:98:aa:cc:dd:cc:90:11:5e:39:e7:73:cf:b7:ad

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

InitCommonControlsEx

kernel32

GetProcAddress
GetModuleHandleW
GetLastError
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
WaitForSingleObject
CreateEventW
WaitForMultipleObjects
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
OpenFileMappingW
GetUserDefaultLangID
GetSystemDefaultLangID
InitializeCriticalSection
GetTickCount
MultiByteToWideChar
WideCharToMultiByte
LoadLibraryW
GetModuleFileNameW
LocalFree
FormatMessageW
CreateFileW
CreateDirectoryW
DeleteFileW
GetCurrentDirectoryW
GetTempPathW
SetLastError
GetCurrentProcessId
GetCurrentThreadId
FindClose
FindFirstFileW
GetModuleHandleA
GetFileAttributesW
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
CreateProcessW
lstrlenW
MoveFileExW
GetVersionExW
InterlockedDecrement
InterlockedIncrement
CloseHandle
GetProcessHeap
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
HeapReAlloc
GetStringTypeW
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
HeapSize
IsValidCodePage
GetOEMCP
GetACP
GlobalLock
GlobalUnlock
MoveFileW
Process32FirstW
OpenProcess
Process32NextW
TerminateProcess
CreateToolhelp32Snapshot
Module32FirstW
Module32NextW
VirtualAllocEx
WriteProcessMemory
FreeLibrary
Sleep
CreateRemoteThread
GetCurrentProcess
GetLocaleInfoW
FlushFileBuffers
GetConsoleMode
GetConsoleCP
ExitProcess
GetStartupInfoW
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
TlsFree
TlsSetValue
TlsGetValue
InterlockedExchange
EncodePointer
DecodePointer
GetLongPathNameW
GetTempFileNameW
GetCommandLineW
OutputDebugStringW
GetLocalTime
GetStdHandle
WriteConsoleW
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
HeapFree
RaiseException
RtlUnwind
HeapAlloc
GetCommandLineA
LCMapStringW
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapCreate
HeapDestroy
TlsAlloc
InterlockedCompareExchange

user32

MessageBoxA
LoadStringW
InsertMenuItemW
CharUpperW
LoadBitmapW
DestroyMenu
CreatePopupMenu
MessageBoxW

gdi32

DeleteObject

advapi32

RegEnumKeyExW
LookupPrivilegeValueW
OpenProcessToken
AdjustTokenPrivileges
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegDeleteKeyW

shell32

SHGetPathFromIDListW
CommandLineToArgvW
SHGetFolderPathW
DragFinish
DragQueryFileW

ole32

ReleaseStgMedium

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
ExitShellModule_Rundll32
ReadDataFromMem
WriteDataToMem

Sections

.text
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SuzipShell64.dll
.dll regsvr32 windows:5 windows x64 arch:x64

95ef95019b4705d9cf65d96a39fb6eb5

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

52:1d:1f:d8:91:3d:b7:61:39:0c:04:68:96:36:5f:2b:e1:94:32:ed:e0:11:0e:24:05:80:06:ef:87:08:b3:80
Signer

Actual PE Digest

52:1d:1f:d8:91:3d:b7:61:39:0c:04:68:96:36:5f:2b:e1:94:32:ed:e0:11:0e:24:05:80:06:ef:87:08:b3:80

Digest Algorithm

sha256

PE Digest Matches

true

e0:ae:89:c4:5d:7c:fb:44:eb:4a:6a:36:d8:c2:d9:9c:97:a0:09:15
Signer

Actual PE Digest

e0:ae:89:c4:5d:7c:fb:44:eb:4a:6a:36:d8:c2:d9:9c:97:a0:09:15

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

comctl32

InitCommonControlsEx

kernel32

CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
WaitForSingleObject
CreateEventW
WaitForMultipleObjects
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
OpenFileMappingW
GetUserDefaultLangID
GetSystemDefaultLangID
InitializeCriticalSection
GetTickCount
MultiByteToWideChar
WideCharToMultiByte
LoadLibraryW
GetModuleFileNameW
LocalFree
FormatMessageW
CreateFileW
CreateDirectoryW
DeleteFileW
GetCurrentDirectoryW
SetLastError
GetCurrentProcessId
GetCurrentThreadId
FindClose
FindFirstFileW
GetModuleHandleA
GetFileAttributesW
GetLastError
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
CreateProcessW
lstrlenW
MoveFileExW
CloseHandle
GetCurrentProcess
CreateRemoteThread
Sleep
GetProcessHeap
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
HeapReAlloc
GetStringTypeW
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
HeapSize
IsValidCodePage
GetOEMCP
GetACP
GetLocaleInfoW
GetModuleHandleW
GetProcAddress
GlobalLock
GlobalUnlock
MoveFileW
Process32FirstW
OpenProcess
Process32NextW
TerminateProcess
CreateToolhelp32Snapshot
Module32FirstW
Module32NextW
VirtualAllocEx
WriteProcessMemory
FreeLibrary
FlushFileBuffers
GetConsoleMode
GetConsoleCP
ExitProcess
GetStartupInfoW
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
FlsAlloc
FlsFree
FlsGetValue
HeapDestroy
EncodePointer
DecodePointer
GetLongPathNameW
GetVersion
GetCommandLineW
OutputDebugStringW
GetLocalTime
WriteConsoleW
GetConsoleScreenBufferInfo
GetStdHandle
SetConsoleTextAttribute
HeapFree
RaiseException
RtlPcToFileHeader
RtlLookupFunctionEntry
RtlUnwindEx
HeapAlloc
FlsSetValue
GetCommandLineA
LCMapStringW
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
HeapSetInformation
HeapCreate

user32

MessageBoxA
MessageBoxW
LoadStringW
InsertMenuItemW
CharUpperW
LoadBitmapW
DestroyMenu
CreatePopupMenu

gdi32

DeleteObject

advapi32

AdjustTokenPrivileges
OpenProcessToken
RegDeleteKeyW
RegEnumKeyExW
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
RegCloseKey
LookupPrivilegeValueW

shell32

SHGetFolderPathW
DragQueryFileW
DragFinish
SHGetPathFromIDListW

ole32

ReleaseStgMedium

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
ExitShellModule_Rundll32
ReadDataFromMem
WriteDataToMem

Sections

.text
Size: 304KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
compressor.dll
.dll windows:5 windows x86 arch:x86

7cbc3fd5353b13dd88e1b4ed57728718

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

fc:0f:65:1f:49:79:12:9a:8c:bf:29:fd:fb:59:d4:9a:07:48:db:fe:0f:63:9e:d3:72:c0:36:8f:83:7e:c6:7b
Signer

Actual PE Digest

fc:0f:65:1f:49:79:12:9a:8c:bf:29:fd:fb:59:d4:9a:07:48:db:fe:0f:63:9e:d3:72:c0:36:8f:83:7e:c6:7b

Digest Algorithm

sha256

PE Digest Matches

true

b1:c8:06:e7:c0:aa:82:31:be:03:9a:f7:6b:50:14:21:f5:8a:63:37
Signer

Actual PE Digest

b1:c8:06:e7:c0:aa:82:31:be:03:9a:f7:6b:50:14:21:f5:8a:63:37

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\compressor.pdb

Imports

kernel32

QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
WaitForMultipleObjects
VirtualAlloc
VirtualFree
GetProcAddress
GetModuleHandleW
GetVersionExW
InterlockedIncrement
CloseHandle
WaitForSingleObject
CreateEventW
SetEvent
ResetEvent
CreateSemaphoreW
ReleaseSemaphore
InitializeCriticalSection
LocalFileTimeToFileTime
FileTimeToLocalFileTime
CompareFileTime
GetWindowsDirectoryW
GetSystemDirectoryW
SetFileTime
CreateFileW
SetFileAttributesW
RemoveDirectoryW
MoveFileW
CreateDirectoryW
DeleteFileW
SetCurrentDirectoryW
GetCurrentDirectoryW
LeaveCriticalSection
SetLastError
FindClose
FindFirstFileW
FindNextFileW
GetModuleHandleA
GetFileAttributesW
FindCloseChangeNotification
FindFirstChangeNotificationW
GetLogicalDriveStringsW
GetFileSize
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
GetProcessAffinityMask
GetCurrentProcess
GetSystemInfo
GlobalMemoryStatus
DosDateTimeToFileTime
FileTimeToDosDateTime
GetSystemTimeAsFileTime
CompareStringW
GetProcessHeap
CreateFileA
SetStdHandle
WriteConsoleW
FlushFileBuffers
GetConsoleMode
GetConsoleCP
DeleteFileA
GetTimeZoneInformation
GetFileAttributesA
EnterCriticalSection
DeleteCriticalSection
WideCharToMultiByte
MultiByteToWideChar
GetTempPathW
GetLastError
RtlUnwind
DecodePointer
EncodePointer
RaiseException
HeapAlloc
HeapFree
HeapReAlloc
ExitThread
CreateThread
GetCommandLineA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedDecrement
GetCurrentThread
GetStdHandle
GetModuleFileNameW
GetLocaleInfoW
Sleep
HeapSize
ExitProcess
IsProcessorFeaturePresent
HeapCreate
HeapDestroy
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
FatalAppExitA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetConsoleCtrlHandler
LoadLibraryW
FreeLibrary
InterlockedExchange
LCMapStringW
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
TerminateThread
OutputDebugStringA
OpenMutexA
GetLocalTime
FileTimeToSystemTime
FindFirstFileA
CreateDirectoryA
LoadLibraryA
SetFileAttributesA
SystemTimeToFileTime
VerifyVersionInfoW
VerSetConditionMask
GetVersion
SetCurrentDirectoryA
SetEnvironmentVariableA

user32

CharUpperW
CharPrevExA
wsprintfW

oleaut32

SysAllocStringByteLen
SysAllocStringLen
VariantClear
SysStringLen
SysFreeString
SysAllocString
VariantCopy

shlwapi

PathAppendA

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

advapi32

RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA

shell32

SHGetFolderPathA

Exports

Exports

CreateDecoder
CreateEncoder
CreateObject
GetHandlerProperty
GetHandlerProperty2
GetHashers
GetIsArc
GetMethodProperty
GetNumberOfFormats
GetNumberOfMethods
SetCaseSensitive
SetCodecs
SetLargePageMode

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 344KB - Virtual size: 343KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninst.exe
.exe windows:5 windows x86 arch:x86

1ee6bd7ca45b5b230568fafee613882a

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13/04/2011, 10:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

Issuer

CN=GlobalSign Timestamping CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

24/05/2016, 00:00

Not After

24/06/2027, 00:00

Subject

CN=GlobalSign TSA for MS Authenticode - G2,O=GMO GlobalSign Pte Ltd,C=SG

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

04/06/2018, 00:00

Not After

04/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/06/2018, 00:00

Not After

05/06/2019, 23:59

Subject

CN=Xingning Suya Network Technology Co.\, Ltd.,OU=IT,O=Xingning Suya Network Technology Co.\, Ltd.,L=meizhou,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

19/02/2018, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign TSA for Advanced - G2

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:31:89:c6:50:04
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

29/03/2029, 10:00

Subject

CN=GlobalSign Timestamping CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:06:11:00:1b:31:9b:58:8b:16:d2:fc:08:3a:2c:e3:fe:78:c2:f1:dc:01:a1:f1:55:3b:83:d4:5e:7f:54:db
Signer

Actual PE Digest

47:06:11:00:1b:31:9b:58:8b:16:d2:fc:08:3a:2c:e3:fe:78:c2:f1:dc:01:a1:f1:55:3b:83:d4:5e:7f:54:db

Digest Algorithm

sha256

PE Digest Matches

true

55:bf:be:d9:d0:ec:0e:75:be:31:f5:b0:e5:c8:9b:19:01:39:a5:82
Signer

Actual PE Digest

55:bf:be:d9:d0:ec:0e:75:be:31:f5:b0:e5:c8:9b:19:01:39:a5:82

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\suzip\trunk\Bin\Win32-Release\uninst.pdb

Imports

kernel32

DeleteFileA
ExitThread
ResumeThread
CreateThread
CreateDirectoryA
ReadConsoleInputA
SetConsoleMode
InterlockedCompareExchange
GetVersionExW
GetVersion
GetModuleHandleW
GetLastError
SetLastError
CloseHandle
GetCurrentProcess
CreateMutexW
LocalFree
FormatMessageW
GetTempFileNameW
GetTickCount
GetTempPathW
GetLongPathNameW
GetModuleFileNameW
GetCommandLineW
CopyFileW
GetFileAttributesW
CreateDirectoryW
GetLogicalDriveStringsW
FindClose
FindNextFileW
FindFirstFileW
OutputDebugStringW
OutputDebugStringA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
MultiByteToWideChar
WideCharToMultiByte
QueryDosDeviceW
GetLocalTime
GetStdHandle
WriteConsoleW
GetConsoleScreenBufferInfo
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
TerminateProcess
OpenProcess
EncodePointer
DecodePointer
HeapSetInformation
GetStartupInfoW
RaiseException
HeapFree
HeapAlloc
RtlUnwind
MoveFileW
RemoveDirectoryW
InterlockedDecrement
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapSize
ExitProcess
WriteFile
GetLocaleInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
HeapCreate
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetStringTypeW
LCMapStringW
GetFileAttributesA
HeapReAlloc
SetConsoleCtrlHandler
InterlockedExchange
SetStdHandle
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
CreateFileW
SetEndOfFile
GetProcessHeap
CompareStringW
SetEnvironmentVariableA
WTSGetActiveConsoleSessionId
GetShortPathNameA
GetComputerNameA
DeviceIoControl
CreateFileA
GetSystemDirectoryA
GlobalMemoryStatusEx
GetPrivateProfileStringW
GetModuleHandleA
GlobalMemoryStatus
LoadLibraryA
FlushConsoleInputBuffer
GetCurrentProcessId
Sleep
WaitForSingleObject
CreateProcessW
MoveFileExW
FreeLibrary
DeleteFileW
GetProcAddress
SetConsoleTextAttribute
LoadLibraryW

user32

wsprintfW
GetUserObjectInformationW
GetProcessWindowStation
MessageBoxW
MessageBoxA

advapi32

RegCloseKey
DeregisterEventSource
ReportEventA
RegisterEventSourceA
ImpersonateLoggedOnUser
RevertToSelf
RegCreateKeyExW
RegEnumKeyExW
RegSetValueExW
RegOpenKeyExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
GetUserNameA
GetUserNameW
RegQueryValueExW

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
CommandLineToArgvW
ShellExecuteW
ShellExecuteExW
SHGetSpecialFolderPathW
SHGetFolderPathW

shlwapi

SHDeleteKeyW

psapi

GetProcessImageFileNameW

wininet

InternetReadFile
InternetOpenUrlA
InternetOpenA
HttpSendRequestA
InternetCloseHandle
InternetConnectA
HttpOpenRequestA

wtsapi32

WTSFreeMemory
WTSEnumerateSessionsW
WTSQueryUserToken

userenv

LoadUserProfileW

iphlpapi

GetAdaptersInfo

ole32

CoCreateGuid

Sections

.text
Size: 687KB - Virtual size: 686KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 222KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fa974366048f9c551ef45714595665e

Code Sign

04:00:00:00:00:01:2f:4e:e1:52:d7Certificate

Key Usages

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14Certificate

Extended Key Usages

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09Certificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3aCertificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:31:89:c6:50:04Certificate

Key Usages

38:33:47:c5:02:94:66:ab:7c:1d:9b:4b:84:d3:93:80:22:90:59:7b:de:0b:b3:a3:e7:31:ea:c6:aa:66:57:94Signer

a5:14:0f:46:3e:81:5c:9d:a9:a0:20:5e:dc:b8:56:31:10:d5:d0:2fSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 64KB

.rsrc Size: 173KB - Virtual size: 172KB

ab25387f907e7ddda8a04c312d3a63d2

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4bCertificate

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19Certificate

Extended Key Usages

Key Usages

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49Certificate

Extended Key Usages

Key Usages

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09Certificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

04:00:00:00:00:01:31:89:c6:50:04
Certificate

38:33:47:c5:02:94:66:ab:7c:1d:9b:4b:84:d3:93:80:22:90:59:7b:de:0b:b3:a3:e7:31:ea:c6:aa:66:57:94
Signer

a5:14:0f:46:3e:81:5c:9d:a9:a0:20:5e:dc:b8:56:31:10:d5:d0:2f
Signer

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 64KB

.rsrc
Size: 173KB - Virtual size: 172KB

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

62:5c:4d:90:8c:d5:42:fb:ab:2e:a5:73:3f:f1:54:19
Certificate

2b:73:db:74:63:11:4c:5a:5b:32:4a:f2:30:57:72:49
Certificate

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

de:07:c5:9d:db:b6:4d:d0:a3:a7:c3:f8:8f:39:f0:c0:f0:41:bc:87:98:93:2a:85:31:e0:16:d3:32:ed:0a:fc
Signer

14:8e:74:91:35:43:63:73:22:6b:39:c5:3d:97:9c:2e:e2:aa:a8:00
Signer

.text
Size: 341KB - Virtual size: 341KB

.rdata
Size: 69KB - Virtual size: 69KB

.data
Size: 8KB - Virtual size: 21KB

.rsrc
Size: 164KB - Virtual size: 163KB

.reloc
Size: 30KB - Virtual size: 29KB

04:00:00:00:00:01:2f:4e:e1:52:d7
Certificate

11:21:d6:99:a7:64:97:3e:f1:f8:42:7e:e9:19:cc:53:41:14
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

73:fe:de:65:17:5d:a4:ae:71:c4:76:04:a7:59:ac:e9
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

35:fa:65:bd:47:82:b0:03:16:61:d2:00:5d:ee:76:09
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

0c:a7:cf:5d:07:07:24:ac:89:e7:9a:3a
Certificate

04:00:00:00:00:01:31:89:c6:50:04
Certificate

55:38:fb:c8:a5:eb:38:12:f5:42:00:29:2b:c0:66:d0:91:9b:3b:61:20:fc:c2:ce:45:8b:f1:15:04:a4:2d:de
Signer

d8:68:33:1e:02:4c:84:34:58:34:3d:d6:32:d6:3f:12:43:8d:cb:48
Signer