cdfc615911c66ffce2373f8987217a60_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

cdfc615911c66ffce2373f8987217a60_JaffaCakes118
Size

1.4MB
MD5

cdfc615911c66ffce2373f8987217a60
SHA1

b1ec0020db6d55466774e074fbb3244a40671f0e
SHA256

8ddadb92e141a716d58978c7cbfba33c506453cb9906e57102f6fc0e294f52eb
SHA512

0a1eb99781f9b135f17862d553776d285b88b0401c40672dae0b283a23b2defe87d97627a1f391e047f69917002d3291d9842b507878abd34713d8fc76305dfe
SSDEEP

24576:C2oZIrlZPv3tBEJyfkEYEAM3g1QT+8euN1s+YmEDP/Fa25rkdWcVtqm5ZvnrO:ds0fzYzag1QC8eyGRmO3I25AzVt1nC

Score

3^/10

Malware Config

Signatures

Unsigned PE 16 IoCs

Checks for missing Authenticode signature.

resource
cdfc615911c66ffce2373f8987217a60_JaffaCakes118
unpack001/$PLUGINSDIR/INSTALLOPTIONS.DLL
unpack001/$PLUGINSDIR/KILLPROCDLL.DLL
unpack001/$PLUGINSDIR/STARTMENU.DLL
unpack001/$PLUGINSDIR/SYSTEM.DLL
unpack001/$PLUGINSDIR/nsWeb.dll
unpack001/$PROGRAM_FILES/Baidu/bar/BaiduBar.DLL
unpack001/$PROGRAM_FILES_COMMON/NSISLog/Lang2052.DAT
unpack001/DiskView.EXE
unpack001/File,Diz.ThX
unpack001/HDI.EXE
unpack001/Lang2052.DAT
unpack001/uninst.exe
unpack002/$PLUGINSDIR/KILLPROCDLL.DLL
unpack002/$PROGRAM_FILES/Baidu/bar/BaiduBar.DLL
unpack002/$PROGRAM_FILES_COMMON/NSISLog/File,Diz.ThX

Files

cdfc615911c66ffce2373f8987217a60_JaffaCakes118
.exe windows:4 windows x86 arch:x86

37c0608f24ea4f5b69005df26d5dd626

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
HeapAlloc
GetProcessHeap
HeapFree
GetProcAddress

Sections

.text
Size: 17KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.LordFox
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
$PLUGINSDIR/INSTALLOPTIONS.DLL
.dll windows:4 windows x86 arch:x86

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
MultiByteToWideChar
GlobalAlloc

user32

GetDlgCtrlID
GetClientRect
SetWindowRgn
MapWindowPoints
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
PtInRect
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
LoadIconA

gdi32

SetTextColor
GetObjectA
SelectObject
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
CreateCompatibleDC

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 954B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/KILLPROCDLL.DLL
.dll windows:4 windows x86 arch:x86

815c88741b87a0210c457b00b57bf9c6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TerminateProcess
CloseHandle
OpenProcess
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExA
GlobalFree
lstrcpyA
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
RtlUnwind
GetCPInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP

Exports

Exports

KillProc

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/STARTMENU.DLL
.dll windows:4 windows x86 arch:x86

7d85f9c30f9e87a65fff848de2c96ac1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpynA
GlobalAlloc
MulDiv
GetModuleHandleA
GlobalFree
FindClose
FindNextFileA
FindFirstFileA
lstrcmpiA
lstrcatA
lstrcpyA

user32

GetMessageA
IsDialogMessageA
PostMessageA
CallWindowProcA
TranslateMessage
CheckDlgButton
ShowWindow
LoadIconA
GetClientRect
MoveWindow
ScreenToClient
GetWindowRect
ReleaseDC
GetDC
EnableWindow
SetWindowTextA
SendMessageA
GetWindowTextA
IsDlgButtonChecked
DispatchMessageA
DestroyWindow
GetDlgItem
CreateDialogParamA
SetWindowLongA
wsprintfA
GetWindowLongA

gdi32

GetTextMetricsA
SelectObject

shell32

SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA

Exports

Exports

Init
Select
Show

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 460B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/SYSTEM.DLL
.dll windows:4 windows x86 arch:x86

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
GetLastError
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 494B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsWeb.dll
.dll windows:4 windows x86 arch:x86

d12ed83df3a4aa87887f14a225ff95d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapFree
HeapAlloc
GetProcessHeap
FreeLibrary
GetProcAddress
LoadLibraryA
MultiByteToWideChar
GlobalFree
lstrcpyA
GlobalAlloc

user32

MapWindowPoints
GetWindowRect
SendMessageA
PostMessageA
MoveWindow
GetDlgItem
GetWindowLongA
GetClientRect
SetWindowLongA
ShowWindow
UpdateWindow
IsDialogMessageA
GetMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
CreateDialogParamA
CallWindowProcA

ole32

OleInitialize
OleUninitialize
OleSetContainedObject
OleCreate

oleaut32

SafeArrayCreate
SafeArrayDestroy
SysFreeString
SysAllocStringLen
VariantClear
SysAllocString
VariantInit
SafeArrayAccessData

urlmon

CreateURLMoniker

wininet

InternetAttemptConnect

Exports

Exports

IsInet
ShowHTMLInPage
ShowWebInPage
ShowWebInPopUp

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PROGRAM_FILES/Baidu/bar/BaiduBar.DLL
.dll regsvr32 windows:4 windows x86 arch:x86

1a0b6a1a360f8a892bb1ff119220b438

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RemoveDirectoryA
CopyFileA
CreateDirectoryA
MoveFileExA
GetVersionExA
DeviceIoControl
GetTickCount
Sleep
GetFileAttributesA
ReleaseMutex
WaitForSingleObject
CreateMutexA
SetFilePointer
FindClose
FindNextFileA
SetFileAttributesA
FindFirstFileA
GetTempPathA
GetPrivateProfileSectionA
SetErrorMode
GetEnvironmentVariableA
ReadProcessMemory
VirtualProtect
GlobalUnlock
GlobalLock
LocalFree
FormatMessageA
HeapFree
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
GlobalFree
GlobalAlloc
ResumeThread
DeleteFileA
CreateFileA
InitializeCriticalSection
GetWindowsDirectoryA
GetSystemDirectoryA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetShortPathNameA
DisableThreadLibraryCalls
FlushInstructionCache
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
LoadLibraryW
GetVersion
GetFileAttributesW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
SetLastError
lstrlenW
GetCurrentProcess
WriteProcessMemory
CreateThread
WideCharToMultiByte
GetLastError
GetFileSize
GetProcessHeap
HeapAlloc
ReadFile
CloseHandle
WriteFile
MultiByteToWideChar
lstrcpyW
InterlockedIncrement
lstrlenA
OutputDebugStringA
GetTempFileNameA
lstrcatA
lstrcpyA
LoadLibraryA
HeapDestroy
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
FreeLibrary
GetModuleFileNameA
DeleteCriticalSection
WritePrivateProfileSectionA
InterlockedDecrement
DebugBreak

user32

TranslateMessage
CopyRect
CheckMenuRadioItem
MapWindowPoints
PtInRect
ScreenToClient
GetWindowRect
SetCapture
ReleaseCapture
RedrawWindow
CallWindowProcA
CreateWindowExA
GetMenuStringA
wsprintfA
CharUpperA
KillTimer
EndDialog
ShowWindow
SetWindowTextA
IsWindow
GetDlgItem
BeginPaint
SetWindowLongA
GetWindowLongA
EndPaint
wvsprintfA
CharNextA
LoadStringA
CharLowerA
CheckMenuItem
EnableMenuItem
GetAsyncKeyState
CallNextHookEx
GetActiveWindow
PostMessageA
FindWindowExA
SendMessageA
DialogBoxParamA
GetSubMenu
GetClientRect
DestroyWindow
GetFocus
SetFocus
UnhookWindowsHookEx
SetWindowsHookExA
MessageBoxA
LoadImageA
LoadCursorA
RegisterClassExA
GetClassInfoExA
IsWindowVisible
DefWindowProcA
GetWindow
GetParent
GetWindowTextA
DestroyMenu
DispatchMessageA
GetClassInfoA
GetKeyState
SetCursor
LoadMenuA
SetTimer
SetWindowPos
LoadBitmapA
SetRectEmpty
GetCursorPos
TrackPopupMenu
SetForegroundWindow
InsertMenuA
CreatePopupMenu
SystemParametersInfoA
GetDesktopWindow
OffsetRect
FindWindowA

gdi32

DeleteObject
MoveToEx
SelectObject
CreatePen
GetStockObject
SetBkColor
SetBkMode
GetObjectA
DeleteDC
SetTextColor
CreateBitmap
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
TextOutA
CreateFontIndirectA
LineTo

advapi32

RegDeleteKeyA
ControlService
RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumValueA
RegCreateKeyA
CloseServiceHandle
ChangeServiceConfigA
QueryServiceStatus
StartServiceA
OpenServiceA
OpenSCManagerA
EnumDependentServicesA
CopySid
GetLengthSid
GetTokenInformation
OpenProcessToken
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
RegGetKeySecurity
FreeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
AddAce
InitializeAcl
AllocateAndInitializeSid
RegEnumKeyA
RegSetKeySecurity
GetUserNameA

shell32

SHGetSpecialFolderPathA
ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA

ole32

CoTaskMemRealloc
CoGetClassObject
CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CoUninitialize
RegisterDragDrop
RevokeDragDrop
ReleaseStgMedium
CoInitialize
OleUninitialize
OleInitialize

oleaut32

SysStringByteLen
SysFreeString
VariantChangeType
VariantInit
SysAllocStringByteLen
SysStringLen
LoadRegTypeLi
RegisterTypeLi
VariantCopy
LoadTypeLi
SysAllocString
SysAllocStringLen
VariantClear
VarUI4FromStr

shlwapi

SHDeleteKeyA
SHDeleteValueA
SHGetValueA
StrStrIA
SHSetValueA

urlmon

CoInternetGetSession

msvcrt

_wcsnicmp
_stricmp
_wcsicmp
_strnicmp
strstr
_mbsrchr
_mbsstr
__CxxFrameHandler
_adjust_fdiv
_initterm
??1type_info@@UAE@XZ
_onexit
__dllonexit
?terminate@@YAXXZ
_fullpath
_endthreadex
_mbsnbcmp
_memicmp
_mbsnbcpy
_beginthread
_endthread
_local_unwind2
printf
fgets
_vsnprintf
_CxxThrowException
atol
fwrite
wcsstr
strcmp
fseek
ftell
toupper
isxdigit
isalnum
_beginthreadex
abs
_snprintf
_mbsicmp
fread
realloc
_mbstok
malloc
_purecall
fopen
fputs
fclose
_except_handler3
strchr
strncpy
_strlwr
strlen
wcscmp
memset
strrchr
strcat
_stat
_mbsnbicmp
time
srand
rand
sprintf
strcpy
memmove
??3@YAXPAX@Z
_mbschr
_ismbcspace
wcslen
memcmp
free
??2@YAPAXI@Z
memcpy
_ismbcdigit
atoi
_mbscmp

wininet

InternetSetOptionA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetReadFile
InternetSetFilePointer
InternetCloseHandle
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
FindFirstUrlCacheEntryA
InternetOpenA
DeleteUrlCacheEntry
FindNextUrlCacheEntryA
FindCloseUrlCache
FindNextUrlCacheGroup
DeleteUrlCacheGroup
FindFirstUrlCacheGroup

setupapi

SetupIterateCabinetA

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

iphlpapi

GetNetworkParams

ws2_32

gethostname
gethostbyname

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
Install
Uninstall

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PROGRAM_FILES_COMMON/NSISLog/Lang2052.DAT
.exe windows:4 windows x86 arch:x86

d31173ca8ec2d5e26170e3b96a28428f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenProcess
lstrcatA
GetLastError
lstrcpynA
lstrcmpiA
WinExec
GetModuleFileNameA
TerminateProcess
lstrlenA
LoadLibraryA
WritePrivateProfileStringA
GetModuleHandleA
GetVersion
WriteFile
MoveFileExA
GetSystemDirectoryA
CreateFileA
DeviceIoControl
DeleteFileA
GetVersionExA
GetCurrentProcess
CloseHandle
GetTempPathA
GetProcAddress
GlobalAlloc
FreeLibrary
LoadLibraryExA
GetSystemDefaultLangID
GlobalFree
WideCharToMultiByte
MultiByteToWideChar
GetOEMCP
GetStringTypeW
GetStringTypeA
GetFileType
GetStdHandle
SetHandleCount
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
LCMapStringA
GetEnvironmentStrings
RtlUnwind
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
GetCPInfo
GetACP
GetEnvironmentStringsW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
VirtualFree
LCMapStringW
HeapDestroy
HeapCreate
VirtualAlloc
HeapReAlloc
IsBadWritePtr
UnhandledExceptionFilter

user32

ExitWindowsEx
wsprintfA
MessageBoxA

advapi32

CloseServiceHandle
RegOpenKeyExA
RegCloseKey
OpenSCManagerA
CreateServiceA
StartServiceA
ControlService
OpenServiceA
OpenProcessToken
LookupPrivilegeValueA
DeleteService
RegDeleteKeyA
RegEnumKeyExA
AdjustTokenPrivileges
RegEnumValueA
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shlwapi

SHDeleteKeyA

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 352KB - Virtual size: 353KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
DiskView.EXE
.exe windows:1 windows x86 arch:x86

6f59b7d38eb8fe6ec36d9ad8e702ff62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegFlushKey
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegSetValueExA

kernel32

CloseHandle
CompareStringA
CreateDirectoryA
CreateEventA
CreateFileA
CreateThread
DeleteCriticalSection
DeleteFileA
DosDateTimeToFileTime
EnterCriticalSection
EnumCalendarInfoA
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceA
GetDriveTypeA
GetEnvironmentStrings
GetEnvironmentStrings
GetExitCodeThread
GetFileAttributesA
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetLocaleInfoA
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetSystemDirectoryA
GetSystemInfo
GetTempFileNameA
GetTempPathA
GetThreadLocale
GetTickCount
GetVersion
GetVersionExA
GetVolumeInformationA
GetWindowsDirectoryA
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFree
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LockFile
LockResource
MoveFileA
MulDiv
MultiByteToWideChar
RaiseException
ReadFile
RemoveDirectoryA
ResumeThread
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
LockResource
SetThreadLocale
SetThreadPriority
SizeofResource
SleepEx
SuspendThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStringA
lstrcmp
lstrcpy
lstrlen
GlobalHandle

mpr

WNetGetConnectionA

comctl32

ImageList_Add
ImageList_BeginDrag
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_Draw
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_Read
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_SetIconSize
InitCommonControls
ImageList_DrawEx

comdlg32

GetOpenFileNameA
GetSaveFileNameA

gdi32

BitBlt
CopyEnhMetaFileA
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreateDIBitmap
CreateFontIndirectA
CreateHalftonePalette
CreatePalette
CreatePatternBrush
CreatePen
CreatePenIndirect
CreatePolygonRgn
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile
DeleteObject
EnumFontFamiliesExA
EnumFontsA
ExcludeClipRect
ExtCreatePen
ExtTextOutA
GetBitmapBits
GetBrushOrgEx
GetClipBox
GetCurrentPositionEx
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetEnhMetaFileBits
GetEnhMetaFileHeader
GetEnhMetaFilePaletteEntries
GetMapMode
GetNearestColor
GetObjectA
GetPaletteEntries
GetPixel
GetStockObject
GetSystemPaletteEntries
GetTextExtentPointA
GetTextMetricsA
GetWinMetaFileBits
GetWindowOrgEx
IntersectClipRect
LineTo
MaskBlt
MoveToEx
PatBlt
PlayEnhMetaFile
PolyPolyline
Polyline
PtInRegion
RealizePalette
RectVisible
Rectangle
RestoreDC
SaveDC
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBColorTable
SetEnhMetaFileBits
SetMapMode
SetPixel
SetROP2
SetStretchBltMode
SetTextColor
SetViewportOrgEx
SetWinMetaFileBits
SetWindowOrgEx
StretchBlt
TextOutA
UnrealizeObject

shell32

DragAcceptFiles
DragFinish
DragQueryFile
SHBrowseForFolder
SHGetPathFromIDList
SHGetSpecialFolderLocation

user32

ActivateKeyboardLayout
AdjustWindowRectEx
BeginPaint
CallNextHookEx
CallWindowProcA
CharLowerA
CharLowerBuffA
CharToOemBuffA
CharUpperBuffA
CheckMenuItem
ClientToScreen
CloseClipboard
CreateCaret
CreateIcon
CreateMenu
CreatePopupMenu
CreateWindowExA
DefFrameProcA
DefMDIChildProcA
DefWindowProcA
DeleteMenu
DestroyCursor
DestroyCursor
DestroyMenu
DestroyWindow
DispatchMessageA
DrawEdge
DrawFocusRect
DrawFrameControl
DrawIcon
DrawMenuBar
DrawTextA
EmptyClipboard
EnableMenuItem
EnableWindow
EndPaint
EnumClipboardFormats
EnumThreadWindows
EnumWindows
EqualRect
FillRect
FindWindowA
FindWindowExA
FrameRect
GetActiveWindow
GetCapture
GetClassInfoA
GetClassNameA
GetClientRect
GetClipboardData
GetCursor
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDialogBaseUnits
GetDlgItem
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyNameTextA
GetKeyState
GetKeyboardLayout
GetKeyboardLayoutList
GetKeyboardState
GetKeyboardType
GetLastActivePopup
GetMenu
GetMenuItemCount
GetMenuState
GetMenuStringA
GetMessageTime
GetParent
GetPropA
GetScrollPos
GetScrollRange
GetSubMenu
GetSysColor
GetSystemMenu
GetSystemMetrics
GetTabbedTextExtentA
GetWindow
GetWindowDC
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindowRgn
GetWindowTextA
GetWindowTextLengthA
GetWindowThreadProcessId
HideCaret
InflateRect
InsertMenuA
InsertMenuItemA
IntersectRect
InvalidateRect
InvertRect
IsCharAlphaA
IsCharAlphaNumericA
IsChild
IsDialogMessage
IsIconic
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadBitmapA
LoadCursorA
LoadCursorFromFileA
LoadIconA
LoadStringA
MapVirtualKeyA
MapWindowPoints
MessageBeep
MessageBoxA
MsgWaitForMultipleObjects
OemToCharA
OemToCharBuffA
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PtInRect
RedrawWindow
RegisterClassA
RegisterClipboardFormatA
RegisterClipboardFormatA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
ScrollWindowEx
SendMessageA
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetKeyboardState
SetMenu
SetParent
SetPropA
SetRect
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowLongA
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowsHookExA
ShowCaret
ShowCursor
ShowOwnedPopups
ShowWindow
SystemParametersInfoA
TabbedTextOutA
TrackPopupMenu
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UpdateWindow
ValidateRect
WaitMessage
WinHelpA
WindowFromPoint

ole32

CoInitialize
CoTaskMemFree
CoUninitialize

oleaut32

GetErrorInfo
SysAllocStringLen
SysFreeString
SysReAllocStringLen
SysStringLen
VariantChangeTypeEx
VariantClear
VariantCopyInd

Exports

Exports

@$xp$16Rxctrls@TRxLabel
@$xp$16Rxtimer@TRxTimer
@$xp$17Placemnt@TIniLink
@$xp$17Tooledit@TFileExt
@$xp$18Rxctrls@TCheckKind
@$xp$18Tooledit@TDateEdit
@$xp$19Dateutil@TDateOrder
@$xp$19Tooledit@TComboEdit
@$xp$19Tooledit@TGlyphKind
@$xp$20Dateutil@TDaysOfWeek
@$xp$20Rxctrls@TButtonImage
@$xp$20Rxctrls@TGlyphLayout
@$xp$20Rxctrls@TPositiveInt
@$xp$20Rxctrls@TRxNumGlyphs
@$xp$20Rxctrls@TSecretPanel
@$xp$20Rxctrls@TTextListBox
@$xp$20Rxhook@TRxWindowHook
@$xp$20Strutils@TSysCharSet
@$xp$20Tooledit@TEditButton
@$xp$20Tooledit@TPopupAlign
@$xp$20Tooledit@TYearDigits
@$xp$21Placemnt@TFormStorage
@$xp$21Rxprops@TPropInfoList
@$xp$21Rxprops@TPropsStorage
@$xp$21Rxprops@TReadStrEvent
@$xp$21Tooledit@TFileDirEdit
@$xp$21Tooledit@TPopupWindow
@$xp$22Rxctrls@TRxButtonGlyph
@$xp$22Rxctrls@TRxButtonState
@$xp$22Rxctrls@TRxCustomLabel
@$xp$22Rxctrls@TRxSpeedButton
@$xp$22Rxprops@TWriteStrEvent
@$xp$22Tooledit@TCloseUpEvent
@$xp$22Tooledit@TFilenameEdit
@$xp$22Vclutils@TScreenCanvas
@$xp$23Dateutil@TDayOfWeekName
@$xp$23Placemnt@TFormPlacement
@$xp$23Placemnt@TWinMinMaxInfo
@$xp$23Rxctrls@TRxCheckListBox
@$xp$23Rxctrls@TShadowPosition
@$xp$23Rxprops@TEraseSectEvent
@$xp$23Tooledit@TCalendarStyle
@$xp$23Tooledit@TDirDialogKind
@$xp$23Tooledit@TDirectoryEdit
@$xp$23Vclutils@TFillDirection
@$xp$23Vclutils@TVertAlignment
@$xp$24Rxctrls@TRxCustomListBox
@$xp$24Rxhook@THookMessageEvent
@$xp$24Tooledit@EComboEditError
@$xp$24Tooledit@TCustomDateEdit
@$xp$24Tooledit@TExecDateDialog
@$xp$24Tooledit@TFileDialogKind
@$xp$25Placemnt@TPlacementOption
@$xp$25Rxctrls@TChangeStateEvent
@$xp$25Tooledit@TCustomComboEdit
@$xp$26Placemnt@TPlacementOptions
@$xp$26Rxctrls@TGetItemWidthEvent
@$xp$26Rxctrls@TRxDropDownMenuPos
@$xp$28Placemnt@TPlacementOperation
@$xp$29Tooledit@TExecOpenDialogEvent
@Apputils@AppBroadcast$qqriii
@Apputils@AppTaskbarIcons$qqr4bool
@Apputils@DefCompanyName
@Apputils@Finalization$qqrv
@Apputils@FindForm$qqrp17System@TMetaClass
@Apputils@FindShowForm$qqrp17System@TMetaClassx17System@AnsiString
@Apputils@GetDefaultIniData$qqrp17Controls@TControlr17System@AnsiStringt24bool
@Apputils@GetDefaultIniName$qqrv
@Apputils@GetDefaultIniRegKey$qqrv
@Apputils@GetDefaultSection$qqrp18Classes@TComponent
@Apputils@GetUniqueFileNameInDir$qqrx17System@AnsiStringxt1
@Apputils@IniEraseSection$qqrp14System@TObjectx17System@AnsiString
@Apputils@IniReadInteger$qqrp14System@TObjectx17System@AnsiStringxt2i
@Apputils@IniReadSections$qqrp14System@TObjectp16Classes@TStrings
@Apputils@IniReadString$qqrp14System@TObjectx17System@AnsiStringxt2xt2
@Apputils@IniStrToStr$qqrx17System@AnsiString
@Apputils@IniWriteInteger$qqrp14System@TObjectx17System@AnsiStringxt2i
@Apputils@IniWriteString$qqrp14System@TObjectx17System@AnsiStringxt2xt2
@Apputils@InstantiateForm$qqrp17System@TMetaClasspv
@Apputils@InternalRestoreGridLayout$qqrp17Grids@TCustomGridp14System@TObjectx17System@AnsiString
@Apputils@InternalRestoreMDIChildren$qqrp11Forms@TFormp14System@TObject
@Apputils@InternalSaveGridLayout$qqrp17Grids@TCustomGridp14System@TObjectx17System@AnsiString
@Apputils@InternalSaveMDIChildren$qqrp11Forms@TFormp14System@TObject
@Apputils@ReadFormPlacement$qqrp11Forms@TFormp17Inifiles@TIniFilex17System@AnsiString4boolt4
@Apputils@ReadFormPlacementReg$qqrp11Forms@TFormp20Registry@TRegIniFilex17System@AnsiString4boolt4
@Apputils@RegUseAppTitle
@Apputils@RestoreFormPlacement$qqrp11Forms@TFormx17System@AnsiString4bool
@Apputils@RestoreGridLayout$qqrp17Grids@TCustomGridp17Inifiles@TIniFile
@Apputils@RestoreGridLayoutReg$qqrp17Grids@TCustomGridp20Registry@TRegIniFile
@Apputils@RestoreMDIChildren$qqrp11Forms@TFormp17Inifiles@TIniFile
@Apputils@RestoreMDIChildrenReg$qqrp11Forms@TFormp20Registry@TRegIniFile
@Apputils@SaveFormPlacement$qqrp11Forms@TFormx17System@AnsiString4bool
@Apputils@SaveGridLayout$qqrp17Grids@TCustomGridp17Inifiles@TIniFile
@Apputils@SaveGridLayoutReg$qqrp17Grids@TCustomGridp20Registry@TRegIniFile
@Apputils@SaveMDIChildren$qqrp11Forms@TFormp17Inifiles@TIniFile
@Apputils@SaveMDIChildrenReg$qqrp11Forms@TFormp20Registry@TRegIniFile
@Apputils@ShowDialog$qqrp17System@TMetaClass
@Apputils@StrToIniStr$qqrx17System@AnsiString
@Apputils@WriteFormPlacement$qqrp11Forms@TFormp17Inifiles@TIniFilex17System@AnsiString
@Apputils@WriteFormPlacementReg$qqrp11Forms@TFormp20Registry@TRegIniFilex17System@AnsiString
@Apputils@initialization$qqrv
@Classes@TComponent@UpdateRegistry$qqr4boolx17System@AnsiStringxt2
@Dateutil@CenturyOffset
@Dateutil@CurrentYear$qqrv
@Dateutil@CutTime$qqr16System@TDateTime
@Dateutil@DateDiff$qqr16System@TDateTimet1rust3t3
@Dateutil@DaysBetween$qqr16System@TDateTimet1
@Dateutil@DaysInPeriod$qqr16System@TDateTimet1
@Dateutil@DaysPerMonth$qqrii
@Dateutil@DefDateFormat$qqr4bool
@Dateutil@DefDateMask$qqrc4bool
@Dateutil@ExtractDay$qqr16System@TDateTime
@Dateutil@ExtractMonth$qqr16System@TDateTime
@Dateutil@ExtractYear$qqr16System@TDateTime
@Dateutil@Finalization$qqrv
@Dateutil@FirstDayOfNextMonth$qqrv
@Dateutil@FirstDayOfPrevMonth$qqrv
@Dateutil@FormatLongDate$qqr16System@TDateTime
@Dateutil@FormatLongDateTime$qqr16System@TDateTime
@Dateutil@FourDigitYear
@Dateutil@GetDateOrder$qqrx17System@AnsiString
@Dateutil@IncDate$qqr16System@TDateTimeiii
@Dateutil@IncDay$qqr16System@TDateTimei
@Dateutil@IncHour$qqr16System@TDateTimei
@Dateutil@IncMSec$qqr16System@TDateTimei
@Dateutil@IncMinute$qqr16System@TDateTimei
@Dateutil@IncMonth$qqr16System@TDateTimei
@Dateutil@IncSecond$qqr16System@TDateTimei
@Dateutil@IncTime$qqr16System@TDateTimeiiii
@Dateutil@IncYear$qqr16System@TDateTimei
@Dateutil@IsLeapYear$qqri
@Dateutil@LastDayOfPrevMonth$qqrv
@Dateutil@MonthFromName$qqrx17System@AnsiStringuc
@Dateutil@MonthsBetween$qqr16System@TDateTimet1
@Dateutil@NullDate
@Dateutil@StrToDateDef$qqrx17System@AnsiString16System@TDateTime
@Dateutil@StrToDateFmt$qqrx17System@AnsiStringxt1
@Dateutil@StrToDateFmtDef$qqrx17System@AnsiStringxt116System@TDateTime
@Dateutil@ValidDate$qqr16System@TDateTime
@Dateutil@initialization$qqrv
@Dv@C5_4
@Dv@C5_5
@Fileutil@BrowseComputer$qqrr17System@AnsiStringx17System@AnsiStringi
@Fileutil@BrowseDirectory$qqrr17System@AnsiStringx17System@AnsiStringi
@Fileutil@ClearDir$qqrx17System@AnsiString4bool
@Fileutil@CopyFile$qqrx17System@AnsiStringxt1p17Controls@TControl
@Fileutil@DeleteFiles$qqrx17System@AnsiString
@Fileutil@DeleteFilesEx$qqrpx17System@AnsiStringxi
@Fileutil@DirExists$qqr17System@AnsiString
@Fileutil@FileDateTime$qqrx17System@AnsiString
@Fileutil@FileLock$qqriii
@Fileutil@FileUnlock$qqriii
@Fileutil@Finalization$qqrv
@Fileutil@ForceDirectories$qqr17System@AnsiString
@Fileutil@GetFileSize$qqrx17System@AnsiString
@Fileutil@GetSystemDir$qqrv
@Fileutil@GetTempDir$qqrv
@Fileutil@GetWindowsDir$qqrv
@Fileutil@HasAttr$qqrx17System@AnsiStringi
@Fileutil@LongToShortFileName$qqrx17System@AnsiString
@Fileutil@LongToShortPath$qqrx17System@AnsiString
@Fileutil@MoveFile$qqrx17System@AnsiStringxt1
@Fileutil@NormalDir$qqrx17System@AnsiString
@Fileutil@RemoveBackSlash$qqrx17System@AnsiString
@Fileutil@ShortToLongFileName$qqrx17System@AnsiString
@Fileutil@ShortToLongPath$qqrx17System@AnsiString
@Fileutil@ValidFileName$qqrx17System@AnsiString
@Fileutil@initialization$qqrv
@Forms@TForm@$bdtr$qqrv
@Maxmin@Finalization$qqrv
@Maxmin@Max$qqrii
@Maxmin@MaxDateTime$qqrpx16System@TDateTimexi
@Maxmin@MaxFloat$qqrpxgxi
@Maxmin@MaxInteger$qqrpxixi
@Maxmin@MaxOf$qqrpx14System@Variantxi
@Maxmin@Min$qqrii
@Maxmin@MinDateTime$qqrpx16System@TDateTimexi
@Maxmin@MinFloat$qqrpxgxi
@Maxmin@MinInteger$qqrpxixi
@Maxmin@MinOf$qqrpx14System@Variantxi
@Maxmin@SwapInt$qqrrit1
@Maxmin@SwapLong$qqrrit1
@Maxmin@initialization$qqrv
@Motif@TMotifForm@$bdtr$qqrv
@Pickdate@CreatePopupCalendar$qqrp18Classes@TComponent
@Pickdate@Finalization$qqrv
@Pickdate@PopupCalendarSize
@Pickdate@PopupDate$qqrr16System@TDateTimep20Controls@TWinControl
@Pickdate@SelectDate$qqrr16System@TDateTimex17System@AnsiString23Dateutil@TDayOfWeekName51System@%Set$t23Dateutil@TDayOfWeekName$iuc$0$iuc$6%15Graphics@TColorp16Classes@TStrings
@Pickdate@SelectDateStr$qqrr17System@AnsiStringx17System@AnsiString23Dateutil@TDayOfWeekName51System@%Set$t23Dateutil@TDayOfWeekName$iuc$0$iuc$6%15Graphics@TColorp16Classes@TStrings
@Pickdate@SetupPopupCalendar$qqrp20Controls@TWinControl23Dateutil@TDayOfWeekName51System@%Set$t23Dateutil@TDayOfWeekName$iuc$0$iuc$6%15Graphics@TColorp16Classes@TStrings4bool
@Pickdate@initialization$qqrv
@Placemnt@Finalization$qqrv
@Placemnt@TFormPlacement@
@Placemnt@TFormPlacement@$bctr$qqrp18Classes@TComponent
@Placemnt@TFormPlacement@$bdtr$qqrv
@Placemnt@TFormPlacement@AddLink$qqrp17Placemnt@TIniLink
@Placemnt@TFormPlacement@CheckMinMaxInfo$qqrv
@Placemnt@TFormPlacement@CheckToggleHook$qqrv
@Placemnt@TFormPlacement@DoReadString$qqrx17System@AnsiStringxt1xt1
@Placemnt@TFormPlacement@DoWriteString$qqrx17System@AnsiStringxt1xt1
@Placemnt@TFormPlacement@EraseSections$qqrv
@Placemnt@TFormPlacement@FormCloseQuery$qqrp14System@TObjectr4bool
@Placemnt@TFormPlacement@FormDestroy$qqrp14System@TObject
@Placemnt@TFormPlacement@FormShow$qqrp14System@TObject
@Placemnt@TFormPlacement@GetForm$qqrv
@Placemnt@TFormPlacement@GetIniFile$qqrv
@Placemnt@TFormPlacement@GetIniFileName$qqrv
@Placemnt@TFormPlacement@GetIniSection$qqrv
@Placemnt@TFormPlacement@IniFree$qqrv
@Placemnt@TFormPlacement@IniNeeded$qqrv
@Placemnt@TFormPlacement@Loaded$qqrv
@Placemnt@TFormPlacement@MinMaxInfoModified$qqrv
@Placemnt@TFormPlacement@NotifyLinks$qqr28Placemnt@TPlacementOperation
@Placemnt@TFormPlacement@ReadInteger$qqrx17System@AnsiStringi
@Placemnt@TFormPlacement@ReadString$qqrx17System@AnsiStringxt1
@Placemnt@TFormPlacement@ReleaseHook$qqrv
@Placemnt@TFormPlacement@RemoveLink$qqrp17Placemnt@TIniLink
@Placemnt@TFormPlacement@Restore$qqrv
@Placemnt@TFormPlacement@RestoreEvents$qqrv
@Placemnt@TFormPlacement@RestoreFormPlacement$qqrv
@Placemnt@TFormPlacement@RestorePlacement$qqrv
@Placemnt@TFormPlacement@Save$qqrv
@Placemnt@TFormPlacement@SaveFormPlacement$qqrv
@Placemnt@TFormPlacement@SavePlacement$qqrv
@Placemnt@TFormPlacement@SetEvents$qqrv
@Placemnt@TFormPlacement@SetHook$qqrv
@Placemnt@TFormPlacement@SetIniFileName$qqrx17System@AnsiString
@Placemnt@TFormPlacement@SetIniSection$qqrx17System@AnsiString
@Placemnt@TFormPlacement@SetPreventResize$qqr4bool
@Placemnt@TFormPlacement@SetWinMinMaxInfo$qqrp23Placemnt@TWinMinMaxInfo
@Placemnt@TFormPlacement@UpdatePlacement$qqrv
@Placemnt@TFormPlacement@UpdatePreventResize$qqrv
@Placemnt@TFormPlacement@WndMessage$qqrp14System@TObjectr17Messages@TMessager4bool
@Placemnt@TFormPlacement@WriteInteger$qqrx17System@AnsiStringi
@Placemnt@TFormPlacement@WriteString$qqrx17System@AnsiStringxt1
@Placemnt@TFormStorage@
@Placemnt@TFormStorage@$bctr$qqrp18Classes@TComponent
@Placemnt@TFormStorage@$bdtr$qqrv
@Placemnt@TFormStorage@Loaded$qqrv
@Placemnt@TFormStorage@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Placemnt@TFormStorage@RestorePlacement$qqrv
@Placemnt@TFormStorage@RestoreProperties$qqrv
@Placemnt@TFormStorage@SavePlacement$qqrv
@Placemnt@TFormStorage@SaveProperties$qqrv
@Placemnt@TFormStorage@SetNotification$qqrv
@Placemnt@TFormStorage@SetStoredProps$qqrp16Classes@TStrings
@Placemnt@TFormStorage@WriteState$qqrp15Classes@TWriter
@Placemnt@TIniLink@
@Placemnt@TIniLink@$bdtr$qqrv
@Placemnt@TIniLink@GetIniObject$qqrv
@Placemnt@TIniLink@GetRootSection$qqrv
@Placemnt@TIniLink@LoadFromIni$qqrv
@Placemnt@TIniLink@SaveToIni$qqrv
@Placemnt@TIniLink@SetStorage$qqrp23Placemnt@TFormPlacement
@Placemnt@TWinMinMaxInfo@
@Placemnt@TWinMinMaxInfo@Assign$qqrp19Classes@TPersistent
@Placemnt@TWinMinMaxInfo@DefaultMinMaxInfo$qqrv
@Placemnt@TWinMinMaxInfo@GetMinMaxInfo$qqri
@Placemnt@TWinMinMaxInfo@SetMinMaxInfo$qqrii
@Placemnt@initialization$qqrv
@Rxcconst@Finalization$qqrv
@Rxcconst@initialization$qqrv
@Rxconst@Finalization$qqrv
@Rxconst@initialization$qqrv
@Rxctrls@CheckBitmap$qqrv
@Rxctrls@DrawShadowText$qqripcir13Windows@TRectusuci23Rxctrls@TShadowPosition
@Rxctrls@Finalization$qqrv
@Rxctrls@TButtonImage@
@Rxctrls@TButtonImage@$bctr$qqrv
@Rxctrls@TButtonImage@$bdtr$qqrv
@Rxctrls@TButtonImage@Draw$qqrp16Graphics@TCanvasiiii21Buttons@TButtonLayoutp14Graphics@TFontus
@Rxctrls@TButtonImage@DrawEx$qqrp16Graphics@TCanvasiiii21Buttons@TButtonLayoutp14Graphics@TFontp19Controls@TImageListius
@Rxctrls@TButtonImage@GetAlignment$qqrv
@Rxctrls@TButtonImage@GetGlyph$qqrv
@Rxctrls@TButtonImage@GetNumGlyphs$qqrv
@Rxctrls@TButtonImage@GetWordWrap$qqrv
@Rxctrls@TButtonImage@Invalidate$qqrv
@Rxctrls@TButtonImage@SetAlignment$qqr18Classes@TAlignment
@Rxctrls@TButtonImage@SetGlyph$qqrp16Graphics@TBitmap
@Rxctrls@TButtonImage@SetNumGlyphs$qqrzc
@Rxctrls@TButtonImage@SetWordWrap$qqr4bool
@Rxctrls@TRxButtonGlyph@
@Rxctrls@TRxButtonGlyph@$bctr$qqrv
@Rxctrls@TRxButtonGlyph@$bdtr$qqrv
@Rxctrls@TRxButtonGlyph@CalcButtonLayout$qqrp16Graphics@TCanvasrx13Windows@TRectr17System@AnsiString21Buttons@TButtonLayoutii4boolr8tagPOINTr13Windows@TRectusp19Controls@TImageListi
@Rxctrls@TRxButtonGlyph@CreateButtonGlyph$qqr22Rxctrls@TRxButtonState
@Rxctrls@TRxButtonGlyph@CreateImageGlyph$qqr22Rxctrls@TRxButtonStatep19Controls@TImageListi
@Rxctrls@TRxButtonGlyph@Draw$qqrp16Graphics@TCanvasrx13Windows@TRectx17System@AnsiString21Buttons@TButtonLayoutii4bool22Rxctrls@TRxButtonStateus
@Rxctrls@TRxButtonGlyph@DrawButtonGlyph$qqrp16Graphics@TCanvasii22Rxctrls@TRxButtonState
@Rxctrls@TRxButtonGlyph@DrawButtonImage$qqrp16Graphics@TCanvasiip19Controls@TImageListi22Rxctrls@TRxButtonState
@Rxctrls@TRxButtonGlyph@DrawButtonText$qqrp16Graphics@TCanvasx17System@AnsiStringrx13Windows@TRect22Rxctrls@TRxButtonStateus
@Rxctrls@TRxButtonGlyph@DrawEx$qqrp16Graphics@TCanvasrx13Windows@TRectx17System@AnsiString21Buttons@TButtonLayoutii4boolp19Controls@TImageListi22Rxctrls@TRxButtonStateus
@Rxctrls@TRxButtonGlyph@DrawPopupMark$qqrp16Graphics@TCanvasii22Rxctrls@TRxButtonState
@Rxctrls@TRxButtonGlyph@GlyphChanged$qqrp14System@TObject
@Rxctrls@TRxButtonGlyph@Invalidate$qqrv
@Rxctrls@TRxButtonGlyph@MapColor$qqr15Graphics@TColor
@Rxctrls@TRxButtonGlyph@MinimizeCaption$qqrp16Graphics@TCanvasx17System@AnsiStringpcii
@Rxctrls@TRxButtonGlyph@SetGlyph$qqrp16Graphics@TBitmap
@Rxctrls@TRxButtonGlyph@SetNumGlyphs$qqrzc
@Rxctrls@TRxCheckListBox@
@Rxctrls@TRxCheckListBox@$bctr$qqrp18Classes@TComponent
@Rxctrls@TRxCheckListBox@$bdtr$qqrv
@Rxctrls@TRxCheckListBox@ApplyState$qqr23Stdctrls@TCheckBoxState4bool
@Rxctrls@TRxCheckListBox@CMFontChanged$qqrr17Messages@TMessage
@Rxctrls@TRxCheckListBox@CNDrawItem$qqrr20Messages@TWMDrawItem
@Rxctrls@TRxCheckListBox@ChangeItemState$qqri
@Rxctrls@TRxCheckListBox@ClickCheck$qqrv
@Rxctrls@TRxCheckListBox@CreateCheckObject$qqri
@Rxctrls@TRxCheckListBox@CreateItemList$qqrv
@Rxctrls@TRxCheckListBox@CreateParams$qqrr22Controls@TCreateParams
@Rxctrls@TRxCheckListBox@CreateWnd$qqrv
@Rxctrls@TRxCheckListBox@DefineProperties$qqrp14Classes@TFiler
@Rxctrls@TRxCheckListBox@DeleteString$qqri
@Rxctrls@TRxCheckListBox@DestroyWnd$qqrv
@Rxctrls@TRxCheckListBox@DrawCheck$qqrrx13Windows@TRect23Stdctrls@TCheckBoxState4bool
@Rxctrls@TRxCheckListBox@DrawItem$qqrirx13Windows@TRect48System@%Set$t20Stdctrls@StdCtrls__9$iuc$0$iuc$4%
@Rxctrls@TRxCheckListBox@FindCheckObject$qqri
@Rxctrls@TRxCheckListBox@GetAllowGrayed$qqrv
@Rxctrls@TRxCheckListBox@GetCheckObject$qqri
@Rxctrls@TRxCheckListBox@GetCheckWidth$qqrv
@Rxctrls@TRxCheckListBox@GetChecked$qqri
@Rxctrls@TRxCheckListBox@GetCheckedIndex$qqrv
@Rxctrls@TRxCheckListBox@GetItemData$qqri
@Rxctrls@TRxCheckListBox@GetItemEnabled$qqri
@Rxctrls@TRxCheckListBox@GetItemHeight$qqrv
@Rxctrls@TRxCheckListBox@GetItemWidth$qqri
@Rxctrls@TRxCheckListBox@GetState$qqri
@Rxctrls@TRxCheckListBox@GetStorage$qqrv
@Rxctrls@TRxCheckListBox@IniLoad$qqrp14System@TObject
@Rxctrls@TRxCheckListBox@IniSave$qqrp14System@TObject
@Rxctrls@TRxCheckListBox@InternalRestoreStates$qqrp14System@TObjectx17System@AnsiString
@Rxctrls@TRxCheckListBox@InternalSaveStates$qqrp14System@TObjectx17System@AnsiString
@Rxctrls@TRxCheckListBox@InvalidateCheck$qqri
@Rxctrls@TRxCheckListBox@InvalidateItem$qqri
@Rxctrls@TRxCheckListBox@IsCheckObject$qqri
@Rxctrls@TRxCheckListBox@KeyPress$qqrrc
@Rxctrls@TRxCheckListBox@Loaded$qqrv
@Rxctrls@TRxCheckListBox@MouseDown$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Rxctrls@TRxCheckListBox@ReadCheckData$qqrp15Classes@TReader
@Rxctrls@TRxCheckListBox@ReadVersion$qqrp15Classes@TReader
@Rxctrls@TRxCheckListBox@ResetContent$qqrv
@Rxctrls@TRxCheckListBox@ResetItemHeight$qqrv
@Rxctrls@TRxCheckListBox@RestoreStates$qqrp17Inifiles@TIniFile
@Rxctrls@TRxCheckListBox@RestoreStatesReg$qqrp20Registry@TRegIniFile
@Rxctrls@TRxCheckListBox@SaveStates$qqrp17Inifiles@TIniFile
@Rxctrls@TRxCheckListBox@SaveStatesReg$qqrp20Registry@TRegIniFile
@Rxctrls@TRxCheckListBox@SetCheckKind$qqr18Rxctrls@TCheckKind
@Rxctrls@TRxCheckListBox@SetChecked$qqri4bool
@Rxctrls@TRxCheckListBox@SetCheckedIndex$qqri
@Rxctrls@TRxCheckListBox@SetItemData$qqrii
@Rxctrls@TRxCheckListBox@SetItemEnabled$qqri4bool
@Rxctrls@TRxCheckListBox@SetItems$qqrp16Classes@TStrings
@Rxctrls@TRxCheckListBox@SetState$qqri23Stdctrls@TCheckBoxState
@Rxctrls@TRxCheckListBox@SetStorage$qqrp23Placemnt@TFormPlacement
@Rxctrls@TRxCheckListBox@ToggleClickCheck$qqri
@Rxctrls@TRxCheckListBox@UpdateCheckStates$qqrv
@Rxctrls@TRxCheckListBox@WriteCheckData$qqrp15Classes@TWriter
@Rxctrls@TRxCheckListBox@WriteVersion$qqrp15Classes@TWriter
@Rxctrls@TRxCustomLabel@
@Rxctrls@TRxCustomLabel@$bctr$qqrp18Classes@TComponent
@Rxctrls@TRxCustomLabel@AdjustBounds$qqrv
@Rxctrls@TRxCustomLabel@CMDialogChar$qqrr15Messages@TWMKey
@Rxctrls@TRxCustomLabel@CMEnabledChanged$qqrr17Messages@TMessage
@Rxctrls@TRxCustomLabel@CMFocusChanged$qqrr24Controls@TCMFocusChanged
@Rxctrls@TRxCustomLabel@CMFontChanged$qqrr17Messages@TMessage
@Rxctrls@TRxCustomLabel@CMMouseEnter$qqrr17Messages@TMessage
@Rxctrls@TRxCustomLabel@CMMouseLeave$qqrr17Messages@TMessage
@Rxctrls@TRxCustomLabel@CMTextChanged$qqrr17Messages@TMessage
@Rxctrls@TRxCustomLabel@CMVisibleChanged$qqrr17Messages@TMessage
@Rxctrls@TRxCustomLabel@DoDrawText$qqrr13Windows@TRectus
@Rxctrls@TRxCustomLabel@GetTransparent$qqrv
@Rxctrls@TRxCustomLabel@MouseDown$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Rxctrls@TRxCustomLabel@MouseEnter$qqrv
@Rxctrls@TRxCustomLabel@MouseLeave$qqrv
@Rxctrls@TRxCustomLabel@MouseUp$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Rxctrls@TRxCustomLabel@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Rxctrls@TRxCustomLabel@Paint$qqrv
@Rxctrls@TRxCustomLabel@SetAlignment$qqr18Classes@TAlignment
@Rxctrls@TRxCustomLabel@SetAutoSize$qqr4bool
@Rxctrls@TRxCustomLabel@SetFocusControl$qqrp20Controls@TWinControl
@Rxctrls@TRxCustomLabel@SetLayout$qqr20Stdctrls@TTextLayout
@Rxctrls@TRxCustomLabel@SetLeftMargin$qqri
@Rxctrls@TRxCustomLabel@SetRightMargin$qqri
@Rxctrls@TRxCustomLabel@SetShadowColor$qqr15Graphics@TColor
@Rxctrls@TRxCustomLabel@SetShadowPos$qqr23Rxctrls@TShadowPosition
@Rxctrls@TRxCustomLabel@SetShadowSize$qqruc
@Rxctrls@TRxCustomLabel@SetShowAccelChar$qqr4bool
@Rxctrls@TRxCustomLabel@SetShowFocus$qqr4bool
@Rxctrls@TRxCustomLabel@SetTransparent$qqr4bool
@Rxctrls@TRxCustomLabel@SetWordWrap$qqr4bool
@Rxctrls@TRxCustomLabel@UpdateTracking$qqrv
@Rxctrls@TRxCustomLabel@WMRButtonDown$qqrr17Messages@TWMMouse
@Rxctrls@TRxCustomLabel@WMRButtonUp$qqrr17Messages@TWMMouse
@Rxctrls@TRxCustomListBox@
@Rxctrls@TRxCustomListBox@$bctr$qqrp18Classes@TComponent
@Rxctrls@TRxCustomListBox@$bdtr$qqrv
@Rxctrls@TRxCustomListBox@CMCtl3DChanged$qqrr17Messages@TMessage
@Rxctrls@TRxCustomListBox@CNCommand$qqrr19Messages@TWMCommand
@Rxctrls@TRxCustomListBox@CNDrawItem$qqrr20Messages@TWMDrawItem
@Rxctrls@TRxCustomListBox@CNMeasureItem$qqrr23Messages@TWMMeasureItem
@Rxctrls@TRxCustomListBox@Clear$qqrv
@Rxctrls@TRxCustomListBox@CreateItemList$qqrv
@Rxctrls@TRxCustomListBox@CreateParams$qqrr22Controls@TCreateParams
@Rxctrls@TRxCustomListBox@CreateWnd$qqrv
@Rxctrls@TRxCustomListBox@DefaultDrawText$qqriix17System@AnsiString
@Rxctrls@TRxCustomListBox@DeleteString$qqri
@Rxctrls@TRxCustomListBox@DestroyWnd$qqrv
@Rxctrls@TRxCustomListBox@DragCanceled$qqrv
@Rxctrls@TRxCustomListBox@DrawItem$qqrirx13Windows@TRect48System@%Set$t20Stdctrls@StdCtrls__9$iuc$0$iuc$4%
@Rxctrls@TRxCustomListBox@GetAutoScroll$qqrv
@Rxctrls@TRxCustomListBox@GetItemData$qqri
@Rxctrls@TRxCustomListBox@GetItemHeight$qqrv
@Rxctrls@TRxCustomListBox@GetItemIndex$qqrv
@Rxctrls@TRxCustomListBox@GetItemWidth$qqri
@Rxctrls@TRxCustomListBox@GetSelCount$qqrv
@Rxctrls@TRxCustomListBox@GetSelected$qqri
@Rxctrls@TRxCustomListBox@GetTopIndex$qqrv
@Rxctrls@TRxCustomListBox@ItemAtPos$qqrrx8tagPOINT4bool
@Rxctrls@TRxCustomListBox@ItemRect$qqri
@Rxctrls@TRxCustomListBox@MeasureItem$qqriri
@Rxctrls@TRxCustomListBox@ResetContent$qqrv
@Rxctrls@TRxCustomListBox@ResetHorizontalExtent$qqrv
@Rxctrls@TRxCustomListBox@SetAutoScroll$qqr4bool
@Rxctrls@TRxCustomListBox@SetBorderStyle$qqr22Forms@TFormBorderStyle
@Rxctrls@TRxCustomListBox@SetColumnWidth$qqrv
@Rxctrls@TRxCustomListBox@SetColumns$qqri
@Rxctrls@TRxCustomListBox@SetExtendedSelect$qqr4bool
@Rxctrls@TRxCustomListBox@SetGraySelection$qqr4bool
@Rxctrls@TRxCustomListBox@SetHorizontalExtent$qqrv
@Rxctrls@TRxCustomListBox@SetIntegralHeight$qqr4bool
@Rxctrls@TRxCustomListBox@SetItemData$qqrii
@Rxctrls@TRxCustomListBox@SetItemHeight$qqri
@Rxctrls@TRxCustomListBox@SetItemIndex$qqri
@Rxctrls@TRxCustomListBox@SetItems$qqrp16Classes@TStrings
@Rxctrls@TRxCustomListBox@SetMultiSelect$qqr4bool
@Rxctrls@TRxCustomListBox@SetOnDrawItem$qqrynpqqrp20Controls@TWinControlirx13Windows@TRect48System@%Set$t20Stdctrls@StdCtrls__9$iuc$0$iuc$4%$v
@Rxctrls@TRxCustomListBox@SetOnGetItemWidth$qqrynpqqrp20Controls@TWinControliri$v
@Rxctrls@TRxCustomListBox@SetSelected$qqri4bool
@Rxctrls@TRxCustomListBox@SetSorted$qqr4bool
@Rxctrls@TRxCustomListBox@SetStyle$qqr22Stdctrls@TListBoxStyle
@Rxctrls@TRxCustomListBox@SetTabWidth$qqri
@Rxctrls@TRxCustomListBox@SetTopIndex$qqri
@Rxctrls@TRxCustomListBox@WMKillFocus$qqrr21Messages@TWMKillFocus
@Rxctrls@TRxCustomListBox@WMLButtonDown$qqrr17Messages@TWMMouse
@Rxctrls@TRxCustomListBox@WMNCHitTest$qqrr21Messages@TWMNCHitTest
@Rxctrls@TRxCustomListBox@WMPaint$qqrr17Messages@TWMPaint
@Rxctrls@TRxCustomListBox@WMSetFocus$qqrr20Messages@TWMSetFocus
@Rxctrls@TRxCustomListBox@WMSize$qqrr16Messages@TWMSize
@Rxctrls@TRxCustomListBox@WndProc$qqrr17Messages@TMessage
@Rxctrls@TRxLabel@
@Rxctrls@TRxSpeedButton@
@Rxctrls@TRxSpeedButton@$bctr$qqrp18Classes@TComponent
@Rxctrls@TRxSpeedButton@$bdtr$qqrv
@Rxctrls@TRxSpeedButton@ButtonClick$qqrv
@Rxctrls@TRxSpeedButton@CMButtonPressed$qqrr17Messages@TMessage
@Rxctrls@TRxSpeedButton@CMDialogChar$qqrr15Messages@TWMKey
@Rxctrls@TRxSpeedButton@CMEnabledChanged$qqrr17Messages@TMessage
@Rxctrls@TRxSpeedButton@CMFontChanged$qqrr17Messages@TMessage
@Rxctrls@TRxSpeedButton@CMMouseEnter$qqrr17Messages@TMessage
@Rxctrls@TRxSpeedButton@CMMouseLeave$qqrr17Messages@TMessage
@Rxctrls@TRxSpeedButton@CMSysColorChange$qqrr17Messages@TMessage
@Rxctrls@TRxSpeedButton@CMTextChanged$qqrr17Messages@TMessage
@Rxctrls@TRxSpeedButton@CMVisibleChanged$qqrr17Messages@TMessage
@Rxctrls@TRxSpeedButton@CheckBtnMenuDropDown$qqrv
@Rxctrls@TRxSpeedButton@CheckMenuDropDown$qqrx19Windows@TSmallPoint4bool
@Rxctrls@TRxSpeedButton@Click$qqrv
@Rxctrls@TRxSpeedButton@DoMouseUp$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Rxctrls@TRxSpeedButton@GetAlignment$qqrv
@Rxctrls@TRxSpeedButton@GetDropDownMenuPos$qqrv
@Rxctrls@TRxSpeedButton@GetGlyph$qqrv
@Rxctrls@TRxSpeedButton@GetNumGlyphs$qqrv
@Rxctrls@TRxSpeedButton@GetPalette$qqrv
@Rxctrls@TRxSpeedButton@GetWordWrap$qqrv
@Rxctrls@TRxSpeedButton@GlyphChanged$qqrp14System@TObject
@Rxctrls@TRxSpeedButton@Loaded$qqrv
@Rxctrls@TRxSpeedButton@MouseDown$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Rxctrls@TRxSpeedButton@MouseEnter$qqrv
@Rxctrls@TRxSpeedButton@MouseLeave$qqrv
@Rxctrls@TRxSpeedButton@MouseMove$qqr46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Rxctrls@TRxSpeedButton@MouseUp$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Rxctrls@TRxSpeedButton@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Rxctrls@TRxSpeedButton@Paint$qqrv
@Rxctrls@TRxSpeedButton@PaintGlyph$qqrp16Graphics@TCanvasrx13Windows@TRect22Rxctrls@TRxButtonState4bool
@Rxctrls@TRxSpeedButton@SetAlignment$qqr18Classes@TAlignment
@Rxctrls@TRxSpeedButton@SetAllowAllUp$qqr4bool
@Rxctrls@TRxSpeedButton@SetAllowTimer$qqr4bool
@Rxctrls@TRxSpeedButton@SetDown$qqr4bool
@Rxctrls@TRxSpeedButton@SetDropDownMenu$qqrp16Menus@TPopupMenu
@Rxctrls@TRxSpeedButton@SetFlat$qqr4bool
@Rxctrls@TRxSpeedButton@SetGlyph$qqrp16Graphics@TBitmap
@Rxctrls@TRxSpeedButton@SetGroupIndex$qqri
@Rxctrls@TRxSpeedButton@SetInactiveGrayed$qqr4bool
@Rxctrls@TRxSpeedButton@SetLayout$qqr21Buttons@TButtonLayout
@Rxctrls@TRxSpeedButton@SetMargin$qqri
@Rxctrls@TRxSpeedButton@SetMarkDropDown$qqr4bool
@Rxctrls@TRxSpeedButton@SetNumGlyphs$qqrzc
@Rxctrls@TRxSpeedButton@SetSpacing$qqri
@Rxctrls@TRxSpeedButton@SetStyle$qqr20Buttons@TButtonStyle
@Rxctrls@TRxSpeedButton@SetTransparent$qqr4bool

Sections

LordFox
Size: 765KB - Virtual size: 768KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LordFox
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LordFox
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

LordFox
Size: 271KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

LordFox
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LordFox
Size: 53KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.JGLong
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
File,Diz.ThX
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

.rsrc
Size: 17KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
HDI.EXE
.exe windows:4 windows x86 arch:x86

60dc867c88aacee19586e1274e815de2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
lstrcpynA
CreateThread
SetPriorityClass
GetCurrentProcess
SetThreadPriority
GetCurrentThread
GetLastError
CreateMutexA
ExitThread
Sleep
MultiByteToWideChar
GetModuleFileNameA
GetModuleHandleA
DeleteFileA
CloseHandle
CreateFileA
FlushFileBuffers
EnterCriticalSection
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
SetFilePointer
InterlockedIncrement
InterlockedDecrement
WriteFile
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
LeaveCriticalSection
DeleteCriticalSection
GetExitCodeThread
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapFree
HeapAlloc
HeapReAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
RtlUnwind
GetProcAddress
TerminateProcess

user32

SetWindowTextA
EndDialog
DestroyWindow
SendMessageA
LoadCursorA
SetCursor
EnableWindow
CheckDlgButton
IsDlgButtonChecked
PostMessageA
LoadMenuA
GetSubMenu
DispatchMessageA
TrackPopupMenu
DestroyMenu
GetCursorPos
GetDlgItem
PostQuitMessage
DialogBoxParamA
SetForegroundWindow
LoadImageA
DestroyIcon
MessageBoxA
CreateDialogParamA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

shell32

ShellExecuteA
Shell_NotifyIconA

ole32

CoCreateInstance
CoInitialize
CoUninitialize

shlwapi

PathAddBackslashA
PathIsDirectoryA
PathRemoveFileSpecA

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Lang2052.DAT
.exe windows:4 windows x86 arch:x86

d31173ca8ec2d5e26170e3b96a28428f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenProcess
lstrcatA
GetLastError
lstrcpynA
lstrcmpiA
WinExec
GetModuleFileNameA
TerminateProcess
lstrlenA
LoadLibraryA
WritePrivateProfileStringA
GetModuleHandleA
GetVersion
WriteFile
MoveFileExA
GetSystemDirectoryA
CreateFileA
DeviceIoControl
DeleteFileA
GetVersionExA
GetCurrentProcess
CloseHandle
GetTempPathA
GetProcAddress
GlobalAlloc
FreeLibrary
LoadLibraryExA
GetSystemDefaultLangID
GlobalFree
WideCharToMultiByte
MultiByteToWideChar
GetOEMCP
GetStringTypeW
GetStringTypeA
GetFileType
GetStdHandle
SetHandleCount
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
LCMapStringA
GetEnvironmentStrings
RtlUnwind
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
GetCPInfo
GetACP
GetEnvironmentStringsW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
VirtualFree
LCMapStringW
HeapDestroy
HeapCreate
VirtualAlloc
HeapReAlloc
IsBadWritePtr
UnhandledExceptionFilter

user32

ExitWindowsEx
wsprintfA
MessageBoxA

advapi32

CloseServiceHandle
RegOpenKeyExA
RegCloseKey
OpenSCManagerA
CreateServiceA
StartServiceA
ControlService
OpenServiceA
OpenProcessToken
LookupPrivilegeValueA
DeleteService
RegDeleteKeyA
RegEnumKeyExA
AdjustTokenPrivileges
RegEnumValueA
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shlwapi

SHDeleteKeyA

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 352KB - Virtual size: 353KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
uninst.exe
.exe windows:4 windows x86 arch:x86

37c0608f24ea4f5b69005df26d5dd626

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
HeapAlloc
GetProcessHeap
HeapFree
GetProcAddress

Sections

.text
Size: 17KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.LordFox
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
$PLUGINSDIR/KILLPROCDLL.DLL
.dll windows:4 windows x86 arch:x86

815c88741b87a0210c457b00b57bf9c6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TerminateProcess
CloseHandle
OpenProcess
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExA
GlobalFree
lstrcpyA
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
RtlUnwind
GetCPInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP

Exports

Exports

KillProc

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
$PROGRAM_FILES/Baidu/bar/BaiduBar.DLL
.dll regsvr32 windows:4 windows x86 arch:x86

1a0b6a1a360f8a892bb1ff119220b438

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RemoveDirectoryA
CopyFileA
CreateDirectoryA
MoveFileExA
GetVersionExA
DeviceIoControl
GetTickCount
Sleep
GetFileAttributesA
ReleaseMutex
WaitForSingleObject
CreateMutexA
SetFilePointer
FindClose
FindNextFileA
SetFileAttributesA
FindFirstFileA
GetTempPathA
GetPrivateProfileSectionA
SetErrorMode
GetEnvironmentVariableA
ReadProcessMemory
VirtualProtect
GlobalUnlock
GlobalLock
LocalFree
FormatMessageA
HeapFree
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
GlobalFree
GlobalAlloc
ResumeThread
DeleteFileA
CreateFileA
InitializeCriticalSection
GetWindowsDirectoryA
GetSystemDirectoryA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetShortPathNameA
DisableThreadLibraryCalls
FlushInstructionCache
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
LoadLibraryW
GetVersion
GetFileAttributesW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
SetLastError
lstrlenW
GetCurrentProcess
WriteProcessMemory
CreateThread
WideCharToMultiByte
GetLastError
GetFileSize
GetProcessHeap
HeapAlloc
ReadFile
CloseHandle
WriteFile
MultiByteToWideChar
lstrcpyW
InterlockedIncrement
lstrlenA
OutputDebugStringA
GetTempFileNameA
lstrcatA
lstrcpyA
LoadLibraryA
HeapDestroy
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
FreeLibrary
GetModuleFileNameA
DeleteCriticalSection
WritePrivateProfileSectionA
InterlockedDecrement
DebugBreak

user32

TranslateMessage
CopyRect
CheckMenuRadioItem
MapWindowPoints
PtInRect
ScreenToClient
GetWindowRect
SetCapture
ReleaseCapture
RedrawWindow
CallWindowProcA
CreateWindowExA
GetMenuStringA
wsprintfA
CharUpperA
KillTimer
EndDialog
ShowWindow
SetWindowTextA
IsWindow
GetDlgItem
BeginPaint
SetWindowLongA
GetWindowLongA
EndPaint
wvsprintfA
CharNextA
LoadStringA
CharLowerA
CheckMenuItem
EnableMenuItem
GetAsyncKeyState
CallNextHookEx
GetActiveWindow
PostMessageA
FindWindowExA
SendMessageA
DialogBoxParamA
GetSubMenu
GetClientRect
DestroyWindow
GetFocus
SetFocus
UnhookWindowsHookEx
SetWindowsHookExA
MessageBoxA
LoadImageA
LoadCursorA
RegisterClassExA
GetClassInfoExA
IsWindowVisible
DefWindowProcA
GetWindow
GetParent
GetWindowTextA
DestroyMenu
DispatchMessageA
GetClassInfoA
GetKeyState
SetCursor
LoadMenuA
SetTimer
SetWindowPos
LoadBitmapA
SetRectEmpty
GetCursorPos
TrackPopupMenu
SetForegroundWindow
InsertMenuA
CreatePopupMenu
SystemParametersInfoA
GetDesktopWindow
OffsetRect
FindWindowA

gdi32

DeleteObject
MoveToEx
SelectObject
CreatePen
GetStockObject
SetBkColor
SetBkMode
GetObjectA
DeleteDC
SetTextColor
CreateBitmap
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
TextOutA
CreateFontIndirectA
LineTo

advapi32

RegDeleteKeyA
ControlService
RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumValueA
RegCreateKeyA
CloseServiceHandle
ChangeServiceConfigA
QueryServiceStatus
StartServiceA
OpenServiceA
OpenSCManagerA
EnumDependentServicesA
CopySid
GetLengthSid
GetTokenInformation
OpenProcessToken
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
RegGetKeySecurity
FreeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
AddAce
InitializeAcl
AllocateAndInitializeSid
RegEnumKeyA
RegSetKeySecurity
GetUserNameA

shell32

SHGetSpecialFolderPathA
ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA

ole32

CoTaskMemRealloc
CoGetClassObject
CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CoUninitialize
RegisterDragDrop
RevokeDragDrop
ReleaseStgMedium
CoInitialize
OleUninitialize
OleInitialize

oleaut32

SysStringByteLen
SysFreeString
VariantChangeType
VariantInit
SysAllocStringByteLen
SysStringLen
LoadRegTypeLi
RegisterTypeLi
VariantCopy
LoadTypeLi
SysAllocString
SysAllocStringLen
VariantClear
VarUI4FromStr

shlwapi

SHDeleteKeyA
SHDeleteValueA
SHGetValueA
StrStrIA
SHSetValueA

urlmon

CoInternetGetSession

msvcrt

_wcsnicmp
_stricmp
_wcsicmp
_strnicmp
strstr
_mbsrchr
_mbsstr
__CxxFrameHandler
_adjust_fdiv
_initterm
??1type_info@@UAE@XZ
_onexit
__dllonexit
?terminate@@YAXXZ
_fullpath
_endthreadex
_mbsnbcmp
_memicmp
_mbsnbcpy
_beginthread
_endthread
_local_unwind2
printf
fgets
_vsnprintf
_CxxThrowException
atol
fwrite
wcsstr
strcmp
fseek
ftell
toupper
isxdigit
isalnum
_beginthreadex
abs
_snprintf
_mbsicmp
fread
realloc
_mbstok
malloc
_purecall
fopen
fputs
fclose
_except_handler3
strchr
strncpy
_strlwr
strlen
wcscmp
memset
strrchr
strcat
_stat
_mbsnbicmp
time
srand
rand
sprintf
strcpy
memmove
??3@YAXPAX@Z
_mbschr
_ismbcspace
wcslen
memcmp
free
??2@YAPAXI@Z
memcpy
_ismbcdigit
atoi
_mbscmp

wininet

InternetSetOptionA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetReadFile
InternetSetFilePointer
InternetCloseHandle
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
FindFirstUrlCacheEntryA
InternetOpenA
DeleteUrlCacheEntry
FindNextUrlCacheEntryA
FindCloseUrlCache
FindNextUrlCacheGroup
DeleteUrlCacheGroup
FindFirstUrlCacheGroup

setupapi

SetupIterateCabinetA

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

iphlpapi

GetNetworkParams

ws2_32

gethostname
gethostbyname

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
Install
Uninstall

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PROGRAM_FILES_COMMON/NSISLog/File,Diz.ThX
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

.rsrc
Size: 17KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ⷴ.URL
ػŶ[SLT].URL

Sharing

General

Malware Config

Signatures

Files

37c0608f24ea4f5b69005df26d5dd626

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 17KB - Virtual size: 28KB

.rdata Size: 2KB - Virtual size: 8KB

.data Size: 1KB - Virtual size: 264KB

.ndata Size: - Virtual size: 336KB

.rsrc Size: 14KB - Virtual size: 20KB

.LordFox Size: 2KB - Virtual size: 4KB

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 9KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 954B

815c88741b87a0210c457b00b57bf9c6

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 2KB

7d85f9c30f9e87a65fff848de2c96ac1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 5KB

.rsrc Size: 512B - Virtual size: 296B

.reloc Size: 512B - Virtual size: 460B

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 1024B - Virtual size: 784B

.data Size: 512B - Virtual size: 92B

.reloc Size: 512B - Virtual size: 494B

d12ed83df3a4aa87887f14a225ff95d4

Headers

File Characteristics

Imports

.text
Size: 17KB - Virtual size: 28KB

.rdata
Size: 2KB - Virtual size: 8KB

.data
Size: 1KB - Virtual size: 264KB

.ndata
Size: - Virtual size: 336KB

.rsrc
Size: 14KB - Virtual size: 20KB

.LordFox
Size: 2KB - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 9KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 954B

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 5KB

.rsrc
Size: 512B - Virtual size: 296B

.reloc
Size: 512B - Virtual size: 460B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 92B

.reloc
Size: 512B - Virtual size: 494B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 456B

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 644B

.text
Size: 176KB - Virtual size: 174KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 20KB - Virtual size: 47KB

.rsrc
Size: 224KB - Virtual size: 223KB

.reloc
Size: 16KB - Virtual size: 15KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 352KB - Virtual size: 353KB

.rsrc
Size: 4KB - Virtual size: 928B