project[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

project.zip
Size

15.9MB
MD5

5d00c857b6d88260d095dc1820919149
SHA1

9d5cba0db62cdbae2bf4028739cff06b89554852
SHA256

c68fd8ec9249cc2ee53c1ee523087ddf19974b45e3dd69603b1bbadeec50d87f
SHA512

44dfa7d9320223f0a46210d780c0c3161c2506f08ec82d4db4f82abe904ba99a8a3028d6fd71bd529abf428e67b8d4141de5d211588330f52396c58f547ebe15
SSDEEP

393216:uF4py1ZBh0aLCQp7eVChU4uWgSBW+n5irsxYwPn:uF4s1ZX3j7HCLU5irsxJn

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/project/subtools/qgif.dll
unpack001/project/subtools/qico.dll
unpack001/project/subtools/qwindowsvistastyle.dll

Files

project.zip
.zip
project/amd_ags_x64.dll
.dll windows:6 windows x64 arch:x64

c5dc7b0af3a2ba439f5e8afbc27503e4

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:89:b3:bc:eb:44:09:89:0a:32:d7:19:76:b1:32:a4
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

07/10/2021, 00:00

Not After

09/10/2024, 23:59

Subject

CN=Valve Corp.,O=Valve Corp.,L=Bellevue,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

a4:92:6b:bc:54:f5:44:d4:e9:7e:4d:86:00:8e:47:2d:0e:0c:9b:ae:03:c7:45:d3:1a:8e:0b:3d:28:a8:a7:41
Signer

Actual PE Digest

a4:92:6b:bc:54:f5:44:d4:e9:7e:4d:86:00:8e:47:2d:0e:0c:9b:ae:03:c7:45:d3:1a:8e:0b:3d:28:a8:a7:41

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
GetModuleHandleA
LoadLibraryA
FreeLibrary
GetProcAddress
LoadLibraryW
SetEnvironmentVariableW
WriteConsoleW
CreateFileW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RtlPcToFileHeader
RaiseException
RtlUnwindEx
InterlockedFlushSList
GetLastError
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapAlloc
HeapFree
GetStdHandle
GetFileType
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
LCMapStringW
GetProcessHeap
GetStringTypeW
SetStdHandle
HeapSize
HeapReAlloc
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
CloseHandle

user32

EnumDisplayDevicesA

Exports

Exports

agsCheckDriverVersion
agsDeInitialize
agsDriverExtensionsDX11_BeginUAVOverlap
agsDriverExtensionsDX11_CreateBuffer
agsDriverExtensionsDX11_CreateDevice
agsDriverExtensionsDX11_CreateFromDevice
agsDriverExtensionsDX11_CreateTexture1D
agsDriverExtensionsDX11_CreateTexture2D
agsDriverExtensionsDX11_CreateTexture3D
agsDriverExtensionsDX11_Destroy
agsDriverExtensionsDX11_DestroyDevice
agsDriverExtensionsDX11_EndUAVOverlap
agsDriverExtensionsDX11_GetMaxClipRects
agsDriverExtensionsDX11_IASetPrimitiveTopology
agsDriverExtensionsDX11_MultiDrawIndexedInstancedIndirect
agsDriverExtensionsDX11_MultiDrawIndexedInstancedIndirectCountIndirect
agsDriverExtensionsDX11_MultiDrawInstancedIndirect
agsDriverExtensionsDX11_MultiDrawInstancedIndirectCountIndirect
agsDriverExtensionsDX11_NotifyResourceBeginAllAccess
agsDriverExtensionsDX11_NotifyResourceEndAllAccess
agsDriverExtensionsDX11_NotifyResourceEndWrites
agsDriverExtensionsDX11_NumPendingAsyncCompileJobs
agsDriverExtensionsDX11_SetClipRects
agsDriverExtensionsDX11_SetDepthBounds
agsDriverExtensionsDX11_SetDiskShaderCacheEnabled
agsDriverExtensionsDX11_SetMaxAsyncCompileThreadCount
agsDriverExtensionsDX11_SetViewBroadcastMasks
agsDriverExtensionsDX11_WriteBreadcrumb
agsDriverExtensionsDX12_CreateDevice
agsDriverExtensionsDX12_CreateFromDevice
agsDriverExtensionsDX12_Destroy
agsDriverExtensionsDX12_DestroyDevice
agsDriverExtensionsDX12_PopMarker
agsDriverExtensionsDX12_PushMarker
agsDriverExtensionsDX12_SetMarker
agsGetVersionNumber
agsInitialize
agsSetDisplayMode

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gehcont
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
project/myproject.exe
.exe windows:6 windows x64 arch:x64

07361a3a7f515bf56ca93120b2aca73b

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

12:1c:77:48:63:e3:ba:8e:7b:8b:f7:55:97:87:47:ae
Certificate

Issuer

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Not Before

06/09/2022, 00:00

Not After

05/09/2025, 23:59

Subject

CN=BLACKBIRD SECURE BROWSING LTD,O=BLACKBIRD SECURE BROWSING LTD,ST=London,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

27:12:33:18:21:1d:62:b5:bd:ff:68:8c:a5:06:d5:30:b1:fb:4a:3d:eb:75:98:2c:0f:d5:8e:dc:81:27:a3:80
Signer

Actual PE Digest

27:12:33:18:21:1d:62:b5:bd:ff:68:8c:a5:06:d5:30:b1:fb:4a:3d:eb:75:98:2c:0f:d5:8e:dc:81:27:a3:80

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

WriteFile
WriteConsoleW
WerSetFlags
WerGetFlags
WaitForMultipleObjects
WaitForSingleObject
VirtualQuery
VirtualFree
VirtualAlloc
TlsAlloc
SwitchToThread
SuspendThread
SetWaitableTimer
SetThreadPriority
SetProcessPriorityBoost
SetEvent
SetErrorMode
SetConsoleCtrlHandler
RtlVirtualUnwind
RtlLookupFunctionEntry
ResumeThread
RaiseFailFastException
PostQueuedCompletionStatus
LoadLibraryW
LoadLibraryExW
SetThreadContext
GetThreadContext
GetSystemInfo
GetSystemDirectoryA
GetStdHandle
GetQueuedCompletionStatusEx
GetProcessAffinityMask
GetProcAddress
GetErrorMode
GetEnvironmentStringsW
GetCurrentThreadId
GetConsoleMode
FreeEnvironmentStringsW
ExitProcess
DuplicateHandle
CreateWaitableTimerExW
CreateWaitableTimerA
CreateThread
CreateIoCompletionPort
CreateFileA
CreateEventA
CloseHandle
AddVectoredExceptionHandler
AddVectoredContinueHandler

Sections

.text
Size: 23.0MB - Virtual size: 23.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28.4MB - Virtual size: 28.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.6MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 639KB - Virtual size: 639KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 391KB - Virtual size: 391KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.symtab
Size: 512B - Virtual size: 4B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
project/p4lib.dll
.dll windows:6 windows x64 arch:x64

cb397906a98fcf9429c35ae884b67df0

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:89:b3:bc:eb:44:09:89:0a:32:d7:19:76:b1:32:a4
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

07/10/2021, 00:00

Not After

09/10/2024, 23:59

Subject

CN=Valve Corp.,O=Valve Corp.,L=Bellevue,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

d3:fd:4c:90:3a:5d:2c:de:d7:ef:2a:83:2e:17:c8:06:b8:0b:54:c8:52:67:e7:6c:c7:29:3c:c4:84:28:ab:0c
Signer

Actual PE Digest

d3:fd:4c:90:3a:5d:2c:de:d7:ef:2a:83:2e:17:c8:06:b8:0b:54:c8:52:67:e7:6c:c7:29:3c:c4:84:28:ab:0c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\buildworker\csgo_rel_win64\build\_build_\p4lib\_vpc_p4lib\default\win64\_msvc_\Retail\p4lib.pdb

Imports

tier0

V_qsort_s
g_pMemAlloc
GetDefaultMiniDumpTypeFlags
Plat_ExitProcess
Plat_FatalErrorFunc
InvokeMiniDumpHandler
Plat_DebugPrint
Plat_IsInDebugSession
Warning
Plat_GetModuleProcAddress
V_stricmp_fast
CommandLine
??0CUtlBuffer@@QEAA@HHH@Z
Plat_LoadModule
Plat_IsRunningOnCustomerMachine
Plat_InstallControlCHandler
Plat_UnloadModule

kernel32

CreateFileW
SetFilePointerEx
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetFileType
GetStdHandle
GetProcessHeap
GetLastError
TlsSetValue
InitializeCriticalSectionAndSpinCount
TlsAlloc
GetProcAddress
FreeLibrary
TlsGetValue
TlsFree
LoadLibraryExW
CloseHandle
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
LCMapStringW
RtlUnwindEx
WriteConsoleW
InterlockedFlushSList
SetLastError
EncodePointer
RaiseException
RtlPcToFileHeader
GetCurrentProcess
TerminateProcess
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree

Exports

Exports

BinaryProperties_GetValue
CreateInterface

Sections

.text
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
project/subtools/qgif.dll
.dll windows:6 windows x64 arch:x64

a754c73b59af28a51a8b1bd13076fcf9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\dev\thirdparty\lgpl\qt_source2\valve\qtbase\plugins\imageformats\qgif.pdb

Imports

qt5gui

?width@QImage@@QEBAHXZ
?qt_metacall@QImageIOPlugin@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QImageIOPlugin@@UEAAPEAXPEBD@Z
?staticMetaObject@QImageIOPlugin@@2UQMetaObject@@B
?name@QImageIOHandler@@UEBA?AVQByteArray@@XZ
?jumpToNextImage@QImageIOHandler@@UEAA_NXZ
?jumpToImage@QImageIOHandler@@UEAA_NH@Z
?currentImageRect@QImageIOHandler@@UEBA?AVQRect@@XZ
?bytesPerLine@QImage@@QEBAHXZ
?constScanLine@QImage@@QEBAPEBEH@Z
?scanLine@QImage@@QEAAPEAEH@Z
?sizeInBytes@QImage@@QEBA_JXZ
?constBits@QImage@@QEBAPEBEXZ
?bits@QImage@@QEAAPEAEXZ
?height@QImage@@QEBAHXZ
?setDevice@QImageIOHandler@@QEAAXPEAVQIODevice@@@Z
?detach@QImage@@QEAAXXZ
?isNull@QImage@@QEBA_NXZ
??4QImage@@QEAAAEAV0@$$QEAV0@@Z
??4QImage@@QEAAAEAV0@AEBV0@@Z
??1QImage@@UEAA@XZ
??0QImage@@QEAA@HHW4Format@0@@Z
??0QImage@@QEAA@XZ
?setFormat@QImageIOHandler@@QEBAXAEBVQByteArray@@@Z
?device@QImageIOHandler@@QEBAPEAVQIODevice@@XZ
??1QImageIOHandler@@UEAA@XZ
??0QImageIOHandler@@QEAA@XZ
??1QImageIOPlugin@@UEAA@XZ
??0QImageIOPlugin@@QEAA@PEAVQObject@@@Z
?setFormat@QImageIOHandler@@QEAAXAEBVQByteArray@@@Z

qt5core

?getAndRef@ExternalRefCountData@QtSharedPointer@@SAPEAU12@PEBVQObject@@@Z
?isReadable@QIODevice@@QEBA_NXZ
?dynamicMetaObject@QObjectData@@QEBAPEAUQMetaObject@@XZ
??0QVariant@@QEAA@$$QEAV0@@Z
??0QVariant@@QEAA@AEBVQSize@@@Z
??0QVariant@@QEAA@_N@Z
??1QVariant@@QEAA@XZ
??0QVariant@@QEAA@XZ
?peek@QIODevice@@QEAA_JPEAD_J@Z
?read@QIODevice@@QEAA?AVQByteArray@@_J@Z
??1QString@@QEAA@XZ
??0QString@@QEAA@XZ
?remove@QByteArray@@QEAAAEAV1@HH@Z
?append@QByteArray@@QEAAAEAV1@AEBV1@@Z
?constData@QByteArray@@QEBAPEBDXZ
??4QByteArray@@QEAAAEAV0@$$QEAV0@@Z
??1QByteArray@@QEAA@XZ
??0QByteArray@@QEAA@PEBDH@Z
??0QByteArray@@QEAA@XZ
?sharedNull@QArrayData@@SAPEAU1@XZ
?deallocate@QArrayData@@SAXPEAU1@_K1@Z
?allocate@QArrayData@@SAPEAU1@_K00V?$QFlags@W4AllocationOption@QArrayData@@@@@Z
?warning@QMessageLogger@@QEBAXPEBDZZ
??0QMessageLogger@@QEAA@PEBDH0@Z
?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?event@QObject@@UEAA_NPEAVQEvent@@@Z
?disconnectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?connectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?qstrcmp@@YAHAEBVQByteArray@@PEBD@Z

kernel32

RtlLookupFunctionEntry
WriteConsoleW
CreateFileW
SetFilePointerEx
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
SetStdHandle
HeapSize
GetStringTypeW
GetFileType
GetStdHandle
GetProcessHeap
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
HeapReAlloc
HeapAlloc
HeapFree
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
RaiseException
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
GetLastError
InterlockedFlushSList
RtlUnwindEx
InitializeSListHead
GetSystemTimeAsFileTime
GetModuleHandleA
GetProcAddress
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId

Exports

Exports

qt_plugin_instance
qt_plugin_query_metadata

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtmetad
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
project/subtools/qico.dll
.dll windows:6 windows x64 arch:x64

d3e4f51dae4dd1005640f8cc96ca20fd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\dev\thirdparty\lgpl\qt_source2\valve\qtbase\plugins\imageformats\qico.pdb

Imports

qt5gui

??0QImageIOHandler@@QEAA@XZ
??1QImageIOPlugin@@UEAA@XZ
??0QImageIOPlugin@@QEAA@PEAVQObject@@@Z
?qt_metacall@QImageIOPlugin@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QImageIOPlugin@@UEAAPEAXPEBD@Z
?staticMetaObject@QImageIOPlugin@@2UQMetaObject@@B
?sharedPainter@QPaintDevice@@MEBAPEAVQPainter@@XZ
?setOption@QImageIOHandler@@UEAAXW4ImageOption@1@AEBVQVariant@@@Z
?redirected@QPaintDevice@@MEBAPEAV1@PEAVQPoint@@@Z
?paintEngine@QImage@@UEBAPEAVQPaintEngine@@XZ
?nextImageDelay@QImageIOHandler@@UEBAHXZ
?name@QImageIOHandler@@UEBA?AVQByteArray@@XZ
?metric@QImage@@MEBAHW4PaintDeviceMetric@QPaintDevice@@@Z
?loopCount@QImageIOHandler@@UEBAHXZ
?initPainter@QPaintDevice@@MEBAXPEAVQPainter@@@Z
?devType@QImage@@UEBAHXZ
?currentImageRect@QImageIOHandler@@UEBA?AVQRect@@XZ
?currentImageNumber@QImageIOHandler@@UEBAHXZ
?convertToFormat_inplace@QImage@@IEAA_NW4Format@1@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?convertToFormat_helper@QImage@@IEBA?AV1@W4Format@1@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?setText@QImage@@QEAAXAEBVQString@@0@Z
?fromData@QImage@@SA?AV1@AEBVQByteArray@@PEBD@Z
?scaled@QImage@@QEBA?AV1@AEBVQSize@@W4AspectRatioMode@Qt@@W4TransformationMode@4@@Z
?setAlphaChannel@QImage@@QEAAXAEBV1@@Z
?fill@QImage@@QEAAXW4GlobalColor@Qt@@@Z
?setPixel@QImage@@QEAAXHHI@Z
?bytesPerLine@QImage@@QEBAHXZ
?scanLine@QImage@@QEAAPEAEH@Z
?setColorCount@QImage@@QEAAXH@Z
?setColor@QImage@@QEAAXHI@Z
?height@QImage@@QEBAHXZ
?width@QImage@@QEBAHXZ
?isNull@QImage@@QEBA_NXZ
??4QImage@@QEAAAEAV0@$$QEAV0@@Z
??4QImage@@QEAAAEAV0@AEBV0@@Z
??1QImage@@UEAA@XZ
??0QImage@@QEAA@$$QEAV0@@Z
??0QImage@@QEAA@AEBV0@@Z
??0QImage@@QEAA@HHW4Format@0@@Z
??0QImage@@QEAA@XZ
?setFormat@QImageIOHandler@@QEBAXAEBVQByteArray@@@Z
?device@QImageIOHandler@@QEBAPEAVQIODevice@@XZ
?setDevice@QImageIOHandler@@QEAAXPEAVQIODevice@@@Z
??1QImageIOHandler@@UEAA@XZ
?setFormat@QImageIOHandler@@QEAAXAEBVQByteArray@@@Z

qt5core

?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?event@QObject@@UEAA_NPEAVQEvent@@@Z
?disconnectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?connectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?getAndRef@ExternalRefCountData@QtSharedPointer@@SAPEAU12@PEBVQObject@@@Z
?dynamicMetaObject@QObjectData@@QEBAPEAUQMetaObject@@XZ
?open@QBuffer@@UEAA_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??1QBuffer@@UEAA@XZ
??0QBuffer@@QEAA@PEAVQByteArray@@PEAVQObject@@@Z
??0QVariant@@QEAA@AEBVQSize@@@Z
??0QVariant@@QEAA@H@Z
??0QVariant@@QEAA@XZ
?ungetChar@QIODevice@@QEAAXD@Z
?write@QIODevice@@QEAA_JAEBVQByteArray@@@Z
?write@QIODevice@@QEAA_JPEBD_J@Z
?qstrcmp@@YAHAEBVQByteArray@@PEBD@Z
?read@QIODevice@@QEAA_JPEAD_J@Z
?number@QString@@SA?AV1@HH@Z
?read@QIODevice@@QEAA?AVQByteArray@@_J@Z
??1QString@@QEAA@XZ
??0QString@@QEAA@VQLatin1String@@@Z
?fromRawData@QByteArray@@SA?AV1@PEBDH@Z
?constData@QByteArray@@QEBAPEBDXZ
??1QByteArray@@QEAA@XZ
??0QByteArray@@QEAA@PEBDH@Z
??0QByteArray@@QEAA@XZ
?sharedNull@QArrayData@@SAPEAU1@XZ
?deallocate@QArrayData@@SAXPEAU1@_K1@Z
?allocate@QArrayData@@SAPEAU1@_K00V?$QFlags@W4AllocationOption@QArrayData@@@@@Z
?warning@QMessageLogger@@QEBAXPEBDZZ
??0QMessageLogger@@QEAA@PEBDH0@Z
?isWritable@QIODevice@@QEBA_NXZ
?isReadable@QIODevice@@QEBA_NXZ
?isOpen@QIODevice@@QEBA_NXZ

kernel32

EnterCriticalSection
WriteConsoleW
CreateFileW
SetFilePointerEx
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
SetStdHandle
HeapSize
GetStringTypeW
GetFileType
GetStdHandle
GetProcessHeap
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
HeapReAlloc
HeapAlloc
HeapFree
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
RaiseException
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
GetLastError
InterlockedFlushSList
RtlUnwindEx
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
GetProcAddress
CloseHandle
LeaveCriticalSection

Exports

Exports

qt_plugin_instance
qt_plugin_query_metadata

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtmetad
Size: 512B - Virtual size: 161B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
project/subtools/qwindowsvistastyle.dll
.dll windows:6 windows x64 arch:x64

b8ce85735ed791355a55e3e6558f75a3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\dev\thirdparty\lgpl\qt_source2\valve\qtbase\plugins\styles\qwindowsvistastyle.pdb

Imports

qt5widgets

?qt_metacast@QStylePlugin@@UEAAPEAXPEBD@Z
?qt_metacall@QWindowsStyle@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QWindowsStyle@@UEAAPEAXPEBD@Z
?staticMetaObject@QWindowsStyle@@2UQMetaObject@@B
?qt_metacall@QBlendStyleAnimation@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QBlendStyleAnimation@@UEAAPEAXPEBD@Z
?staticMetaObject@QBlendStyleAnimation@@2UQMetaObject@@B
?staticMetaObject@QLabel@@2UQMetaObject@@B
?staticMetaObject@QSpinBox@@2UQMetaObject@@B
?staticMetaObject@QHeaderView@@2UQMetaObject@@B
?staticMetaObject@QScrollBar@@2UQMetaObject@@B
?staticMetaObject@QComboBox@@2UQMetaObject@@B
?staticMetaObject@QToolButton@@2UQMetaObject@@B
?staticMetaObject@QAbstractButton@@2UQMetaObject@@B
?staticMetaObject@QRubberBand@@2UQMetaObject@@B
?staticMetaObject@QTabWidget@@2UQMetaObject@@B
?staticMetaObject@QTabBar@@2UQMetaObject@@B
?staticMetaObject@QSlider@@2UQMetaObject@@B
?staticMetaObject@QAbstractSpinBox@@2UQMetaObject@@B
?drawDial@QStyleHelper@@YAXPEBVQStyleOptionSlider@@PEAVQPainter@@@Z
?dpiScaled@QStyleHelper@@YANNN@Z
?dpi@QStyleHelper@@YANPEBVQStyleOption@@@Z
?getHWNDForWidget@QApplicationPrivate@@SAPEAUHWND__@@PEBVQWidget@@@Z
?globalStrut@QApplication@@SA?AVQSize@@XZ
?isDarkMode@QWindowsStylePrivate@@SA_NXZ
??1QStyleOptionToolButton@@QEAA@XZ
??0QStyleOptionToolButton@@QEAA@AEBV0@@Z
??1QStyleOptionTab@@QEAA@XZ
??0QStyleOptionTab@@QEAA@XZ
??0QStyleOptionButton@@QEAA@XZ
??0QStyleOptionTabWidgetFrame@@QEAA@AEBV0@@Z
?documentMode@QTabWidget@@QEBA_NXZ
?testAttribute_helper@QWidget@@AEBA_NW4WidgetAttribute@Qt@@@Z
?backingStore@QWidget@@QEBAPEAVQBackingStore@@XZ
?windowType@QWidget@@QEBA?AW4WindowType@Qt@@XZ
?parentWidget@QWidget@@QEBAPEAV1@XZ
?setWindowOpacity@QWidget@@QEAAXN@Z
?palette@QWidget@@QEBAAEBVQPalette@@XZ
?nativeParentWidget@QWidget@@QEBAPEAV1@XZ
?window@QWidget@@QEBAPEAV1@XZ
?rect@QWidget@@QEBA?AVQRect@@XZ
?isEnabled@QWidget@@QEBA_NXZ
?isWindow@QWidget@@QEBA_NXZ
?isTopLevel@QWidget@@QEBA_NXZ
??0QWindowsStyle@@IEAA@AEAVQWindowsStylePrivate@@@Z
?styleHint@QWindowsStyle@@UEBAHW4StyleHint@QStyle@@PEBVQStyleOption@@PEBVQWidget@@PEAVQStyleHintReturn@@@Z
?unpolish@QWindowsStyle@@UEAAXPEAVQWidget@@@Z
?polish@QWindowsStyle@@UEAAXPEAVQWidget@@@Z
?qt_metacall@QStylePlugin@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
??0QStylePlugin@@QEAA@PEAVQObject@@@Z
??1QStylePlugin@@UEAA@XZ
?visualRect@QStyle@@SA?AVQRect@@W4LayoutDirection@Qt@@AEBV2@1@Z
?visualPos@QStyle@@SA?AVQPoint@@W4LayoutDirection@Qt@@AEBVQRect@@AEBV2@@Z
?proxy@QStyle@@QEBAPEBV1@XZ
?drawControl@QCommonStyle@@UEBAXW4ControlElement@QStyle@@PEBVQStyleOption@@PEAVQPainter@@PEBVQWidget@@@Z
?subElementRect@QCommonStyle@@UEBA?AVQRect@@W4SubElement@QStyle@@PEBVQStyleOption@@PEBVQWidget@@@Z
?hitTestComplexControl@QCommonStyle@@UEBA?AW4SubControl@QStyle@@W4ComplexControl@3@PEBVQStyleOptionComplex@@AEBVQPoint@@PEBVQWidget@@@Z
?subControlRect@QCommonStyle@@UEBA?AVQRect@@W4ComplexControl@QStyle@@PEBVQStyleOptionComplex@@W4SubControl@4@PEBVQWidget@@@Z
?polish@QWindowsStyle@@UEAAXAEAVQPalette@@@Z
?drawPrimitive@QWindowsStyle@@UEBAXW4PrimitiveElement@QStyle@@PEBVQStyleOption@@PEAVQPainter@@PEBVQWidget@@@Z
?drawControl@QWindowsStyle@@UEBAXW4ControlElement@QStyle@@PEBVQStyleOption@@PEAVQPainter@@PEBVQWidget@@@Z
?subElementRect@QWindowsStyle@@UEBA?AVQRect@@W4SubElement@QStyle@@PEBVQStyleOption@@PEBVQWidget@@@Z
?drawComplexControl@QWindowsStyle@@UEBAXW4ComplexControl@QStyle@@PEBVQStyleOptionComplex@@PEAVQPainter@@PEBVQWidget@@@Z
?sizeFromContents@QWindowsStyle@@UEBA?AVQSize@@W4ContentsType@QStyle@@PEBVQStyleOption@@AEBV2@PEBVQWidget@@@Z
?pixelMetric@QWindowsStyle@@UEBAHW4PixelMetric@QStyle@@PEBVQStyleOption@@PEBVQWidget@@@Z
?standardPixmap@QWindowsStyle@@UEBA?AVQPixmap@@W4StandardPixmap@QStyle@@PEBVQStyleOption@@PEBVQWidget@@@Z
?standardIcon@QWindowsStyle@@UEBA?AVQIcon@@W4StandardPixmap@QStyle@@PEBVQStyleOption@@PEBVQWidget@@@Z
??1QStyleAnimation@@UEAA@XZ
?setDuration@QStyleAnimation@@QEAAXH@Z
?startTime@QStyleAnimation@@QEBA?AVQTime@@XZ
?setStartTime@QStyleAnimation@@QEAAXAEBVQTime@@@Z
??0QProgressStyleAnimation@@QEAA@HPEAVQObject@@@Z
??0QBlendStyleAnimation@@QEAA@W4Type@0@PEAVQObject@@@Z
?setStartImage@QBlendStyleAnimation@@QEAAXAEBVQImage@@@Z
?setEndImage@QBlendStyleAnimation@@QEAAXAEBVQImage@@@Z
?unpolish@QWindowsStyle@@UEAAXPEAVQApplication@@@Z
?polish@QWindowsStyle@@UEAAXPEAVQApplication@@@Z
??1QWindowsStyle@@UEAA@XZ
?sliderPositionFromValue@QStyle@@SAHHHHH_N@Z
?standardPalette@QStyle@@UEBA?AVQPalette@@XZ
?staticMetaObject@QCommandLinkButton@@2UQMetaObject@@B
?staticMetaObject@QTableView@@2UQMetaObject@@B
?staticMetaObject@QInputDialog@@2UQMetaObject@@B
?staticMetaObject@QDialogButtonBox@@2UQMetaObject@@B
?staticMetaObject@QMessageBox@@2UQMetaObject@@B
?staticMetaObject@QTreeView@@2UQMetaObject@@B
?staticMetaObject@QListView@@2UQMetaObject@@B
?staticMetaObject@QAbstractItemView@@2UQMetaObject@@B
?staticMetaObject@QDockWidget@@2UQMetaObject@@B
?staticMetaObject@QGroupBox@@2UQMetaObject@@B
?staticMetaObject@QLineEdit@@2UQMetaObject@@B
?staticMetaObject@QProgressStyleAnimation@@2UQMetaObject@@B
?updateCurrentTime@QStyleAnimation@@MEAAXH@Z
?updateCurrentTime@QBlendStyleAnimation@@MEAAXH@Z
?tabLayout@QCommonStylePrivate@@UEBAXPEBVQStyleOptionTab@@PEBVQWidget@@PEAVQRect@@2@Z
?qt_metacast@QProgressStyleAnimation@@UEAAPEAXPEBD@Z
?qt_metacall@QProgressStyleAnimation@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?metaObject@QProgressStyleAnimation@@UEBAPEBUQMetaObject@@XZ
?layoutSpacing@QCommonStyle@@UEBAHW4ControlType@QSizePolicy@@0W4Orientation@Qt@@PEBVQStyleOption@@PEBVQWidget@@@Z
?itemTextRect@QStyle@@UEBA?AVQRect@@AEBVQFontMetrics@@AEBV2@H_NAEBVQString@@@Z
?itemPixmapRect@QStyle@@UEBA?AVQRect@@AEBV2@HAEBVQPixmap@@@Z
?isUpdateNeeded@QProgressStyleAnimation@@MEBA_NXZ
?generatedIconPixmap@QCommonStyle@@UEBA?AVQPixmap@@W4Mode@QIcon@@AEBV2@PEBVQStyleOption@@@Z
?eventFilter@QWindowsStyle@@MEAA_NPEAVQObject@@PEAVQEvent@@@Z
?duration@QStyleAnimation@@UEBAHXZ
?drawItemText@QStyle@@UEBAXPEAVQPainter@@AEBVQRect@@HAEBVQPalette@@_NAEBVQString@@W4ColorRole@4@@Z
?drawItemPixmap@QStyle@@UEBAXPEAVQPainter@@AEBVQRect@@HAEBVQPixmap@@@Z
?hasAncestor@QStyleHelper@@YA_NPEAVQObject@@W4Role@QAccessible@@@Z
?isInstanceOf@QStyleHelper@@YA_NPEAVQObject@@W4Role@QAccessible@@@Z
?dpiScaled@QStyleHelper@@YANNPEBVQStyleOption@@@Z
?selectionBehavior@QAbstractItemView@@QEBA?AW4SelectionBehavior@1@XZ
?selectionMode@QAbstractItemView@@QEBA?AW4SelectionMode@1@XZ
?viewport@QAbstractScrollArea@@QEBAPEAVQWidget@@XZ
?isFloating@QDockWidget@@QEBA_NXZ
?windowIcon@QApplication@@SA?AVQIcon@@XZ
?font@QApplication@@SA?AVQFont@@PEBD@Z
??1QWindowsStylePrivate@@UEAA@XZ
?nativeMetricScaleFactor@QWindowsStylePrivate@@SANPEBVQWidget@@@Z
??0QWindowsStylePrivate@@QEAA@XZ
?stopAnimation@QCommonStylePrivate@@QEBAXPEBVQObject@@@Z
?startAnimation@QCommonStylePrivate@@QEBAXPEAVQStyleAnimation@@@Z
?animation@QCommonStylePrivate@@QEBAPEAVQStyleAnimation@@PEBVQObject@@@Z
??1QStyleOptionGroupBox@@QEAA@XZ
??0QStyleOptionGroupBox@@QEAA@AEBV0@@Z
??1QStyleOptionComboBox@@QEAA@XZ
??0QStyleOptionComboBox@@QEAA@AEBV0@@Z
??0QStyleOptionSpinBox@@QEAA@AEBV0@@Z
??4QStyleOptionSlider@@QEAAAEAV0@AEBV0@@Z
??0QStyleOptionComplex@@QEAA@HH@Z
??1QStyleOptionViewItem@@QEAA@XZ
??0QStyleOptionViewItem@@QEAA@AEBV0@@Z
??1QStyleOptionMenuItem@@QEAA@XZ
??0QStyleOptionMenuItem@@QEAA@AEBV0@@Z
??0QStyleOptionToolBar@@QEAA@AEBV0@@Z
??1QStyleOptionButton@@QEAA@XZ
??0QStyleOptionButton@@QEAA@AEBV0@@Z
??0QStyleOptionFocusRect@@QEAA@XZ
??4QStyleOption@@QEAAAEAV0@AEBV0@@Z
??1QStyleOption@@QEAA@XZ
??0QStyleOption@@QEAA@AEBV0@@Z
?setAttribute@QWidget@@QEAAXW4WidgetAttribute@Qt@@_N@Z
?setContentsMargins@QWidget@@QEAAXHHHH@Z
?isActiveWindow@QWidget@@QEBA_NXZ
?windowIcon@QWidget@@QEBA?AVQIcon@@XZ
?setFont@QWidget@@QEAAXAEBVQFont@@@Z
?setPalette@QWidget@@QEAAXAEBVQPalette@@@Z
??1QBlendStyleAnimation@@UEAA@XZ
?currentImage@QBlendStyleAnimation@@QEBA?AVQImage@@XZ
?staticMetaObject@QStylePlugin@@2UQMetaObject@@B

qt5gui

??0QBrush@@QEAA@AEBVQGradient@@@Z
??1QBrush@@QEAA@XZ
??4QBrush@@QEAAAEAV0@$$QEAV0@@Z
?style@QBrush@@QEBA?AW4BrushStyle@Qt@@XZ
?color@QBrush@@QEBAAEBVQColor@@XZ
?setColorAt@QGradient@@QEAAXNAEBVQColor@@@Z
??0QLinearGradient@@QEAA@NNNN@Z
??1QLinearGradient@@QEAA@XZ
??0QPalette@@QEAA@XZ
??0QPalette@@QEAA@AEBV0@@Z
??1QPalette@@QEAA@XZ
??4QPalette@@QEAAAEAV0@AEBV0@@Z
?color@QPalette@@QEBAAEBVQColor@@W4ColorGroup@1@W4ColorRole@1@@Z
?brush@QPalette@@QEBAAEBVQBrush@@W4ColorGroup@1@W4ColorRole@1@@Z
?setBrush@QPalette@@QEAAXW4ColorGroup@1@W4ColorRole@1@AEBVQBrush@@@Z
?color@QPalette@@QEBAAEBVQColor@@W4ColorRole@1@@Z
?devicePixelRatio@QGuiApplication@@QEBANXZ
??0QFont@@QEAA@AEBV0@@Z
??1QFont@@QEAA@XZ
?family@QFont@@QEBA?AVQString@@XZ
?setFamily@QFont@@QEAAXAEBVQString@@@Z
?setWeight@QFont@@QEAAXH@Z
??1QFontMetrics@@QEAA@XZ
?elidedText@QFontMetrics@@QEBA?AVQString@@AEBV2@W4TextElideMode@Qt@@HH@Z
??0QPen@@QEAA@AEBVQBrush@@NW4PenStyle@Qt@@W4PenCapStyle@3@W4PenJoinStyle@3@@Z
??0QPen@@QEAA@AEBV0@@Z
??1QPen@@QEAA@XZ
??0QPainter@@QEAA@PEAVQPaintDevice@@@Z
??1QPainter@@QEAA@XZ
?end@QPainter@@QEAA_NXZ
?setCompositionMode@QPainter@@QEAAXW4CompositionMode@1@@Z
?setFont@QPainter@@QEAAXAEBVQFont@@@Z
?fontMetrics@QPainter@@QEBA?AVQFontMetrics@@XZ
?setPen@QPainter@@QEAAXAEBVQColor@@@Z
?setPen@QPainter@@QEAAXAEBVQPen@@@Z
?pen@QPainter@@QEBAAEBVQPen@@XZ
?setBrush@QPainter@@QEAAXAEBVQBrush@@@Z
?brushOrigin@QPainter@@QEBA?AVQPoint@@XZ
?setBrushOrigin@QPainter@@QEAAXAEBVQPointF@@@Z
?setClipRect@QPainter@@QEAAXAEBVQRect@@W4ClipOperation@Qt@@@Z
?setClipRegion@QPainter@@QEAAXAEBVQRegion@@W4ClipOperation@Qt@@@Z
?save@QPainter@@QEAAXXZ
?restore@QPainter@@QEAAXXZ
?rotate@QPainter@@QEAAXN@Z
?translate@QPainter@@QEAAXAEBVQPointF@@@Z
?drawLines@QPainter@@QEAAXPEBVQLine@@H@Z
?drawRects@QPainter@@QEAAXPEBVQRect@@H@Z
?drawPixmap@QPainter@@QEAAXAEBVQRectF@@AEBVQPixmap@@0@Z
?drawPixmap@QPainter@@QEAAXAEBVQPointF@@AEBVQPixmap@@@Z
?drawPixmap@QPainter@@QEAAXAEBVQRect@@AEBVQPixmap@@@Z
?drawImage@QPainter@@QEAAXAEBVQRect@@AEBVQImage@@@Z
?drawText@QPainter@@QEAAXAEBVQRect@@HAEBVQString@@PEAV2@@Z
?fillRect@QPainter@@QEAAXAEBVQRect@@AEBVQBrush@@@Z
?find@QPixmapCache@@SA_NAEBVQString@@PEAVQPixmap@@@Z
?insert@QPixmapCache@@SA_NAEBVQString@@AEBVQPixmap@@@Z
?red@QColor@@QEBAHXZ
?green@QColor@@QEBAHXZ
?blue@QColor@@QEBAHXZ
??0QRegion@@QEAA@XZ
??0QRegion@@QEAA@AEBV0@@Z
??0QRegion@@QEAA@$$QEAV0@@Z
??4QRegion@@QEAAAEAV0@AEBV0@@Z
?isEmpty@QRegion@@QEBA_NXZ
?begin@QRegion@@QEBAPEBVQRect@@XZ
?end@QRegion@@QEBAPEBVQRect@@XZ
?translated@QRegion@@QEBA?AV1@HH@Z
?boundingRect@QRegion@@QEBA?AVQRect@@XZ
?rectCount@QRegion@@QEBAHXZ
??HQRegion@@QEBA?BV0@AEBVQRect@@@Z
??_5QRegion@@QEAAAEAV0@AEBV0@@Z
??YQRegion@@QEAAAEAV0@AEBVQRect@@@Z
??_4QRegion@@QEAAAEAV0@AEBV0@@Z
??_4QRegion@@QEAAAEAV0@AEBVQRect@@@Z
??0QTransform@@QEAA@XZ
?type@QTransform@@QEBA?AW4TransformationType@1@XZ
?rotate@QTransform@@QEAAAEAV1@NW4Axis@Qt@@@Z
??0QImage@@QEAA@XZ
??0QImage@@QEAA@PEAEHHW4Format@0@P6AXPEAX@Z2@Z
??4QImage@@QEAAAEAV0@$$QEAV0@@Z
?copy@QImage@@QEBA?AV1@AEBVQRect@@@Z
?scaled@QImage@@QEBA?AV1@AEBVQSize@@W4AspectRatioMode@Qt@@W4TransformationMode@4@@Z
?transformed@QImage@@QEBA?AV1@AEBVQTransform@@W4TransformationMode@Qt@@@Z
?mirrored_helper@QImage@@IEBA?AV1@_N0@Z
??0QPixmap@@QEAA@AEBV0@@Z
?toImage@QPixmap@@QEBA?AVQImage@@XZ
?copy@QPixmap@@QEBA?AV1@AEBVQRect@@@Z
??0QIcon@@QEAA@AEBVQPixmap@@@Z
??0QIcon@@QEAA@AEBV0@@Z
?paint@QIcon@@QEBAXPEAVQPainter@@AEBVQRect@@V?$QFlags@W4AlignmentFlag@Qt@@@@W4Mode@1@W4State@1@@Z
?allWindows@QGuiApplication@@SA?AV?$QList@PEAVQWindow@@@@XZ
?platformNativeInterface@QGuiApplication@@SAPEAVQPlatformNativeInterface@@XZ
?device@QPainter@@QEBAPEAVQPaintDevice@@XZ
?isActive@QPainter@@QEBA_NXZ
?font@QPainter@@QEBAAEBVQFont@@XZ
?setBrush@QPainter@@QEAAXW4BrushStyle@Qt@@@Z
?setBackground@QPainter@@QEAAXAEBVQBrush@@@Z
?opacity@QPainter@@QEBANXZ
?clipRegion@QPainter@@QEBA?AVQRegion@@XZ
?setClipping@QPainter@@QEAAX_N@Z
?hasClipping@QPainter@@QEBA_NXZ
?deviceTransform@QPainter@@QEBAAEBVQTransform@@XZ
?translate@QPainter@@QEAAXAEBVQPoint@@@Z
?drawPoints@QPainter@@QEAAXPEBVQPoint@@H@Z
?drawRects@QPainter@@QEAAXPEBVQRectF@@H@Z
?drawImage@QPainter@@QEAAXAEBVQRectF@@AEBVQImage@@0V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?eraseRect@QPainter@@QEAAXAEBVQRectF@@@Z
?paintEngine@QPainter@@QEBAPEAVQPaintEngine@@XZ
?paintDevice@QPaintEngine@@QEBAPEAVQPaintDevice@@XZ
?systemClip@QPaintEngine@@QEBA?AVQRegion@@XZ
?winId@QWindow@@QEBA_KXZ
?isTopLevel@QWindow@@QEBA_NXZ
?type@QWindow@@QEBA?AW4WindowType@Qt@@XZ
?handle@QWindow@@QEBAPEAVQPlatformWindow@@XZ
?paintDevice@QBackingStore@@QEAAPEAVQPaintDevice@@XZ
?size@QBackingStore@@QEBA?AVQSize@@XZ
??0QBrush@@QEAA@AEBVQColor@@W4BrushStyle@Qt@@@Z
?addPixmap@QIcon@@QEAAXAEBVQPixmap@@W4Mode@1@W4State@1@@Z
?cacheKey@QIcon@@QEBA_JXZ
?isNull@QIcon@@QEBA_NXZ
?actualSize@QIcon@@QEBA?AVQSize@@AEBV2@W4Mode@1@W4State@1@@Z
?pixmap@QIcon@@QEBA?AVQPixmap@@AEBVQSize@@W4Mode@1@W4State@1@@Z
??1QIcon@@QEAA@XZ
??0QIcon@@QEAA@XZ
?fromImage@QPixmap@@SA?AV1@AEBVQImage@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?devicePixelRatio@QPixmap@@QEBANXZ
?fill@QPixmap@@QEAAXAEBVQColor@@@Z
?height@QPixmap@@QEBAHXZ
?width@QPixmap@@QEBAHXZ
?isNull@QPixmap@@QEBA_NXZ
??4QPixmap@@QEAAAEAV0@$$QEAV0@@Z
??1QPixmap@@UEAA@XZ
??0QPixmap@@QEAA@XZ
?fill@QImage@@QEAAXW4GlobalColor@Qt@@@Z
?fill@QImage@@QEAAXI@Z
?setDevicePixelRatio@QImage@@QEAAXN@Z
?rect@QImage@@QEBA?AVQRect@@XZ
?height@QImage@@QEBAHXZ
?width@QImage@@QEBAHXZ
??1QImage@@UEAA@XZ
??0QImage@@QEAA@AEBVQSize@@W4Format@0@@Z
??_6QRegion@@QEAAAEAV0@AEBV0@@Z
??ZQRegion@@QEAAAEAV0@AEBV0@@Z
??4QRegion@@QEAAAEAV0@$$QEAV0@@Z
??1QRegion@@QEAA@XZ
??0QRegion@@QEAA@AEBVQRect@@W4RegionType@0@@Z
??9QColor@@QEBA_NAEBV0@@Z
?darker@QColor@@QEBA?AV1@H@Z
?fromRgb@QColor@@SA?AV1@I@Z
?rgba@QColor@@QEBAIXZ
??0QColor@@QEAA@I@Z
??0QColor@@QEAA@HHHH@Z
??0QColor@@QEAA@W4GlobalColor@Qt@@@Z
?devicePixelRatioF@QPaintDevice@@QEBANXZ
??0QBrush@@QEAA@AEBV0@@Z
??0QPixmap@@QEAA@AEBVQSize@@@Z

qt5core

??0QRectF@@QEAA@AEBVQRect@@@Z
?rehash@QHashData@@QEAAXH@Z
?detach_helper@QHashData@@QEAAPEAU1@P6AXPEAUNode@1@PEAX@ZP6AX0@ZHH@Z
?allocateNode@QHashData@@QEAAPEAXH@Z
?toRect@QRectF@@QEBA?AVQRect@@XZ
?translated@QRectF@@QEBA?AV1@AEBVQPointF@@@Z
??0QRectF@@QEAA@AEBVQPointF@@AEBVQSizeF@@@Z
?translated@QRect@@QEBA?AV1@HH@Z
?dispose@QListData@@SAXPEAUData@1@@Z
?invokeMethod@QMetaObject@@SA_NPEAVQObject@@PEBDW4ConnectionType@Qt@@VQGenericReturnArgument@@VQGenericArgument@@444444444@Z
?toPoint@QPointF@@QEBA?AVQPoint@@XZ
?number@QString@@SA?AV1@NDH@Z
?number@QString@@SA?AV1@HH@Z
?fromWCharArray@QString@@SA?AV1@PEB_WH@Z
?toLocal8Bit@QString@@QEHAA?AVQByteArray@@XZ
?append@QString@@QEAAAEAV1@AEBV1@@Z
?append@QString@@QEAAAEAV1@VQChar@@@Z
??0QString@@QEAA@$$QEAV0@@Z
??0QString@@QEAA@XZ
?constData@QByteArray@@QEBAPEBDXZ
??1QByteArray@@QEAA@XZ
?qErrnoWarning@@YAXPEBDZZ
?warning@QMessageLogger@@QEBAXPEBDZZ
??0QMessageLogger@@QEAA@PEBDH0@Z
?shared_null@QHashData@@2U1@B
?Windows8@QOperatingSystemVersion@@2V1@B
?updateState@QAbstractAnimation@@MEAAXW4State@1@0@Z
?updateDirection@QAbstractAnimation@@MEAAXW4Direction@1@@Z
?event@QAbstractAnimation@@MEAA_NPEAVQEvent@@@Z
?currentTime@QTime@@SA?AV1@XZ
?msecsTo@QTime@@QEBAHAEBV1@@Z
?instance@QCoreApplication@@SAPEAV1@XZ
?toRect@QVariant@@QEBA?AVQRect@@XZ
?toBool@QVariant@@QEBA_NXZ
?toInt@QVariant@@QEBAHPEA_N@Z
??0QVariant@@QEAA@AEBVQRect@@@Z
??0QVariant@@QEAA@_N@Z
??0QVariant@@QEAA@H@Z
??UQRect@@QEBA?AV0@AEBV0@@Z
?size@QRect@@QEBA?AVQSize@@XZ
?adjusted@QRect@@QEBA?AV1@HHHH@Z
?transposed@QRect@@QEBA?AV1@XZ
?moveCenter@QRect@@QEAAXAEBVQPoint@@@Z
?center@QRect@@QEBA?AVQPoint@@XZ
??0QRect@@QEAA@AEBVQPoint@@AEBVQSize@@@Z
??0QRect@@QEAA@AEBVQPoint@@0@Z
?toSize@QSizeF@@QEBA?AVQSize@@XZ
?inherits@QObject@@QEBA_NPEBD@Z
?property@QObject@@QEBA?AVQVariant@@PEBD@Z
?setProperty@QObject@@QEAA_NPEBDAEBVQVariant@@@Z
?qt_qFindChild_helper@@YAPEAVQObject@@PEBV1@AEBVQString@@AEBUQMetaObject@@V?$QFlags@W4FindChildOption@Qt@@@@@Z
?cast@QMetaObject@@QEBAPEBVQObject@@PEBV2@@Z
?cast@QMetaObject@@QEBAPEAVQObject@@PEAV2@@Z
?fromLatin1@QString@@SA?AV1@PEBDH@Z
?mid@QString@@QEBA?AV1@HH@Z
?left@QString@@QEBA?AV1@H@Z
?indexOf@QString@@QEBAHVQChar@@HW4CaseSensitivity@Qt@@@Z
?arg@QString@@QEBA?AV1@HHHVQChar@@@Z
??4QString@@QEAAAEAV0@$$QEAV0@@Z
??1QString@@QEAA@XZ
?free_helper@QHashData@@QEAAXP6AXPEAUNode@1@@Z@Z
??0QString@@QEAA@AEBV0@@Z
??0QString@@QEAA@VQLatin1String@@@Z
??0QChar@@QEAA@UQLatin1Char@@@Z
?compare@QOperatingSystemVersion@@CAHAEBV1@0@Z
?current@QOperatingSystemVersion@@SA?AV1@XZ
?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?event@QObject@@UEAA_NPEAVQEvent@@@Z
?disconnectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?connectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?getAndRef@ExternalRefCountData@QtSharedPointer@@SAPEAU12@PEBVQObject@@@Z
?dynamicMetaObject@QObjectData@@QEBAPEAUQMetaObject@@XZ
?compare@QString@@QEBAHVQLatin1String@@W4CaseSensitivity@Qt@@@Z
??1QVariant@@QEAA@XZ

uxtheme

IsAppThemed
IsThemeActive
SetWindowTheme
GetCurrentThemeName
IsThemeBackgroundPartiallyTransparent
GetThemeBackgroundRegion
ord47
CloseThemeData
GetThemeTransitionDuration
GetThemePropertyOrigin
GetThemeMargins
GetThemeEnumValue
GetThemeInt
GetThemeColor
GetThemePartSize
OpenThemeData
GetThemeBool

user32

ReleaseDC
GetDC
GetDesktopWindow
DefWindowProcW
SystemParametersInfoW
GetSystemMetrics
DestroyWindow
GetSysColor

gdi32

CombineRgn
DeleteDC
DeleteObject
GetRegionData
SelectClipRgn
SelectObject
CreateDIBSection
GdiFlush
CreateCompatibleDC
CreateRectRgn

kernel32

FlushFileBuffers
SetStdHandle
HeapSize
GetStringTypeW
GetFileType
GetStdHandle
GetProcessHeap
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
HeapReAlloc
HeapAlloc
HeapFree
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
RtlPcToFileHeader
LoadLibraryExW
GetConsoleOutputCP
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
RaiseException
EncodePointer
SetLastError
GetLastError
InterlockedFlushSList
RtlUnwindEx
GetConsoleMode
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
CloseHandle
GetProcAddress
GetModuleHandleA
lstrcmpW
WriteFile
SetFilePointerEx
CreateFileW
WriteConsoleW
FreeLibrary

Exports

Exports

qt_plugin_instance
qt_plugin_query_metadata

Sections

.text
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtmetad
Size: 512B - Virtual size: 109B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
project/v8system.dll
.dll windows:6 windows x64 arch:x64

3148b02b6994b2725bea2a652b1d5bf0

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:89:b3:bc:eb:44:09:89:0a:32:d7:19:76:b1:32:a4
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

07/10/2021, 00:00

Not After

09/10/2024, 23:59

Subject

CN=Valve Corp.,O=Valve Corp.,L=Bellevue,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

10:8c:0f:68:b5:1d:f7:30:98:76:6a:f2:84:75:aa:ea:ad:c0:4f:2a:25:9f:f3:95:d7:00:52:58:76:f9:8c:36
Signer

Actual PE Digest

10:8c:0f:68:b5:1d:f7:30:98:76:6a:f2:84:75:aa:ea:ad:c0:4f:2a:25:9f:f3:95:d7:00:52:58:76:f9:8c:36

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\buildworker\csgo_rel_win64\build\_build_\v8system\_vpc_v8system\default\win64\_msvc_\Retail\v8system.pdb

Imports

tier0

LoggingSystem_IsChannelEnabled
g_pMemAlloc
?FreeMemoryBlock@CUtlString@@AEAAXXZ
Warning
LoggingSystem_Log
?CheckGet@CUtlBuffer@@IEAA_NH@Z
?CheckArbitraryPeekGet@CUtlBuffer@@QEAA_NHAEAH@Z
?Get@CUtlBuffer@@QEAA_NPEAXH@Z
??0CUtlBuffer@@QEAA@PEBXHH@Z
V_StringToUint16
?LoadKV3@@YA_NPEAVCKeyValues3Context@@PEAVCUtlString@@PEAVCUtlBuffer@@AEBUKV3ID_t@@PEBD@Z
V_StringToUint32
?Assert_ConditionFailed@@YA_NAEBU_AssertCompileTimeConstantStruct_t@@PEBDZZ
LoggingSystem_RegisterLoggingChannel
?Purge@CBufferString@@QEAAXH@Z
?AppendFormatV@CBufferString@@QEAAHPEBDPEAD@Z
?Insert@CBufferString@@QEAAPEBDHPEBDH_N@Z
Plat_RegisterModule
V_qsort_s
CommandLine
g_bUpdateStringTokenDatabase
MemAlloc_StrDupFunc
?Format@CBufferString@@QEAAHPEBDZZ
?MoveFrom@CBufferString@@QEAAXAEAV1@@Z
RegisterStringToken
V_StringToBool
V_StringToInt16
V_StringToInt32
V_StringToInt64
V_StringToUint64
V_StringToFloat32
V_StringToFloat64
?Set@CUtlString@@QEAAXPEBD@Z
??0CUtlBuffer@@QEAA@HHH@Z
?Alloc@CRawAllocator@@SAPEAXW4RawAllocatorType_t@@_KPEA_K@Z
?Free@CRawAllocator@@SAXW4RawAllocatorType_t@@PEAX_K@Z
??0CUtlMemoryBlockAllocator@@QEAA@HIW4RawAllocatorType_t@@@Z
??1CUtlMemoryBlockAllocator@@QEAA@XZ
?Purge@CUtlMemoryBlockAllocator@@QEAAXXZ
?Alloc@CUtlMemoryBlockAllocator@@QEAAII@Z
?IsEqual_FastCaseInsensitive@CUtlString@@QEBA_NPEBD@Z
V_StringToVector2D
V_StringToVector
V_StringToVector4D
V_StringToQAngle
V_StringToColor
InvokeMiniDumpHandler
GetDefaultMiniDumpTypeFlags
Plat_IsInDebugSession
Plat_DebugPrint
Plat_FatalErrorFunc
Plat_ExitProcess
_V_strncpy
?ToLowerFast@CBufferString@@QEAAXH@Z
?RemoveAt@CBufferString@@QEAAPEBDHH@Z
?SetLength@CBufferString@@QEAAPEADH_NPEAH@Z
V_IsAbsolutePath
V_RemoveDotSlashes
V_GetFileExtension
UtlMemory_FailedAllocation
UtlMemory_Alloc
UtlMemory_CalcNewAllocationCount

v8

??1CreateParams@Isolate@v8@@QEAA@XZ
??0CreateParams@Isolate@v8@@QEAA@XZ
?SetCaptureStackTraceForUncaughtExceptions@Isolate@v8@@QEAAX_NHW4StackTraceOptions@StackTrace@2@@Z
?AddNearHeapLimitCallback@Isolate@v8@@QEAAXP6A_KPEAX_K1@Z0@Z
?SetOOMErrorHandler@Isolate@v8@@QEAAXP6AXPEBDAEBUOOMDetails@2@@Z@Z
?SetFatalErrorHandler@Isolate@v8@@QEAAXP6AXPEBD0@Z@Z
?GetHeapSpaceStatistics@Isolate@v8@@QEAA_NPEAVHeapSpaceStatistics@2@_K@Z
?NumberOfHeapSpaces@Isolate@v8@@QEAA_KXZ
?GetHeapStatistics@Isolate@v8@@QEAAXPEAVHeapStatistics@2@@Z
?Dispose@Isolate@v8@@QEAAXXZ
?Exit@Isolate@v8@@QEAAXXZ
?Enter@Isolate@v8@@QEAAXXZ
?GetCurrent@Isolate@v8@@SAPEAV12@XZ
?New@Isolate@v8@@SAPEAV12@AEBUCreateParams@12@@Z
?Reallocate@Allocator@ArrayBuffer@v8@@UEAAPEAXPEAX_K1@Z
?DisposePlatform@V8@v8@@SAXXZ
?InitializePlatform@V8@v8@@SAXPEAVPlatform@2@@Z
?Dispose@V8@v8@@SA_NXZ
?Initialize@V8@v8@@CA_NH@Z
?SetFlagsFromString@V8@v8@@SAXPEBD_K@Z
??0HeapStatistics@v8@@QEAA@XZ
?ConfigureDefaultsFromHeapSize@ResourceConstraints@v8@@QEAAX_K0@Z
??0HeapSpaceStatistics@v8@@QEAA@XZ

v8_libplatform

?V_NewDefaultPlatform@platform@v8@@YAPEAVPlatform@2@H@Z

kernel32

RtlVirtualUnwind
WriteConsoleW
CreateFileW
SetStdHandle
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
GetStringTypeW
GetProcessHeap
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
SetFilePointerEx
GetFileType
GetStdHandle
LCMapStringW
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
TerminateProcess
GetCurrentProcess
EncodePointer
SetLastError
InterlockedFlushSList
RtlUnwindEx
RaiseException
RtlPcToFileHeader
InitializeSListHead
GetCurrentProcessId
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
CloseHandle
TlsSetValue
InitializeCriticalSectionAndSpinCount
GetLastError
TlsAlloc
GetProcAddress
FreeLibrary
TlsGetValue
TlsFree
LoadLibraryExW
GetCurrentThreadId
QueryPerformanceCounter
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetSystemTimeAsFileTime
GetModuleHandleW

Exports

Exports

BinaryProperties_GetValue
CreateInterface
GetResourceManifestCount
GetResourceManifests
InstallSchemaBindings

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
project/vpk.signatures

Sharing

General

Malware Config

Signatures

Files

c5dc7b0af3a2ba439f5e8afbc27503e4

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5cCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

06:89:b3:bc:eb:44:09:89:0a:32:d7:19:76:b1:32:a4Certificate

Extended Key Usages

Key Usages

a4:92:6b:bc:54:f5:44:d4:e9:7e:4d:86:00:8e:47:2d:0e:0c:9b:ae:03:c7:45:d3:1a:8e:0b:3d:28:a8:a7:41Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 101KB - Virtual size: 100KB

.rdata Size: 45KB - Virtual size: 45KB

.data Size: 3KB - Virtual size: 7KB

.pdata Size: 6KB - Virtual size: 6KB

.gxfg Size: 5KB - Virtual size: 4KB

.gehcont Size: 512B - Virtual size: 12B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

07361a3a7f515bf56ca93120b2aca73b

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0aCertificate

Extended Key Usages

Key Usages

12:1c:77:48:63:e3:ba:8e:7b:8b:f7:55:97:87:47:aeCertificate

Extended Key Usages

Key Usages

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

27:12:33:18:21:1d:62:b5:bd:ff:68:8c:a5:06:d5:30:b1:fb:4a:3d:eb:75:98:2c:0f:d5:8e:dc:81:27:a3:80Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 23.0MB - Virtual size: 23.0MB

.rdata Size: 28.4MB - Virtual size: 28.4MB

.data Size: 1.6MB - Virtual size: 2.3MB

.pdata Size: 639KB - Virtual size: 639KB

.xdata Size: 512B - Virtual size: 180B

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 391KB - Virtual size: 391KB

.symtab Size: 512B - Virtual size: 4B

cb397906a98fcf9429c35ae884b67df0

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5cCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

06:89:b3:bc:eb:44:09:89:0a:32:d7:19:76:b1:32:a4
Certificate

a4:92:6b:bc:54:f5:44:d4:e9:7e:4d:86:00:8e:47:2d:0e:0c:9b:ae:03:c7:45:d3:1a:8e:0b:3d:28:a8:a7:41
Signer

.text
Size: 101KB - Virtual size: 100KB

.rdata
Size: 45KB - Virtual size: 45KB

.data
Size: 3KB - Virtual size: 7KB

.pdata
Size: 6KB - Virtual size: 6KB

.gxfg
Size: 5KB - Virtual size: 4KB

.gehcont
Size: 512B - Virtual size: 12B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

12:1c:77:48:63:e3:ba:8e:7b:8b:f7:55:97:87:47:ae
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

27:12:33:18:21:1d:62:b5:bd:ff:68:8c:a5:06:d5:30:b1:fb:4a:3d:eb:75:98:2c:0f:d5:8e:dc:81:27:a3:80
Signer

.text
Size: 23.0MB - Virtual size: 23.0MB

.rdata
Size: 28.4MB - Virtual size: 28.4MB

.data
Size: 1.6MB - Virtual size: 2.3MB

.pdata
Size: 639KB - Virtual size: 639KB

.xdata
Size: 512B - Virtual size: 180B

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 391KB - Virtual size: 391KB

.symtab
Size: 512B - Virtual size: 4B

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

06:89:b3:bc:eb:44:09:89:0a:32:d7:19:76:b1:32:a4
Certificate

d3:fd:4c:90:3a:5d:2c:de:d7:ef:2a:83:2e:17:c8:06:b8:0b:54:c8:52:67:e7:6c:c7:29:3c:c4:84:28:ab:0c
Signer

.text
Size: 62KB - Virtual size: 62KB

.rdata
Size: 46KB - Virtual size: 46KB

.data
Size: 3KB - Virtual size: 9KB

.pdata
Size: 4KB - Virtual size: 4KB

_RDATA
Size: 512B - Virtual size: 348B

.reloc
Size: 2KB - Virtual size: 2KB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 41KB - Virtual size: 41KB

.data
Size: 3KB - Virtual size: 7KB

.pdata
Size: 4KB - Virtual size: 4KB

.qtmetad
Size: 512B - Virtual size: 115B

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 1024B - Virtual size: 832B

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 43KB - Virtual size: 42KB

.data
Size: 3KB - Virtual size: 7KB

.pdata
Size: 4KB - Virtual size: 4KB

.qtmetad
Size: 512B - Virtual size: 161B

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 1024B - Virtual size: 832B

.reloc
Size: 2KB - Virtual size: 1KB