Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc
Overview
overview
7Static
static
350891ae869...f6.exe
windows7-x64
750891ae869...f6.exe
windows10-2004-x64
7$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3cscss.exe
windows7-x64
1cscss.exe
windows10-2004-x64
3csfwcli.dll
windows7-x64
3csfwcli.dll
windows10-2004-x64
3csimlog_s.exe
windows7-x64
1csimlog_s.exe
windows10-2004-x64
3cssvc.exe
windows7-x64
3cssvc.exe
windows10-2004-x64
3libpng16.dll
windows7-x64
3libpng16.dll
windows10-2004-x64
3lssvr.exe
windows7-x64
1lssvr.exe
windows10-2004-x64
3scecli_xp.dll
windows7-x64
5scecli_xp.dll
windows10-2004-x64
5sqlite3.dll
windows7-x64
3sqlite3.dll
windows10-2004-x64
3udmsvc.exe
windows7-x64
1udmsvc.exe
windows10-2004-x64
1Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
50891ae8695773da5af088e6db33196edb217a4d4ea918184b246973f28642f6.exe
Resource
win7-20240903-en
windows7-x64
8 signatures
150 seconds
Behavioral task
behavioral2
Sample
50891ae8695773da5af088e6db33196edb217a4d4ea918184b246973f28642f6.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
8 signatures
150 seconds
Behavioral task
behavioral3
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240704-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral4
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
3 signatures
150 seconds
Behavioral task
behavioral5
Sample
cscss.exe
Resource
win7-20240903-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral6
Sample
cscss.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
Behavioral task
behavioral7
Sample
csfwcli.dll
Resource
win7-20240708-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral8
Sample
csfwcli.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
3 signatures
150 seconds
Behavioral task
behavioral9
Sample
csimlog_s.exe
Resource
win7-20240903-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral10
Sample
csimlog_s.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
Behavioral task
behavioral11
Sample
cssvc.exe
Resource
win7-20240903-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral12
Sample
cssvc.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
Behavioral task
behavioral13
Sample
libpng16.dll
Resource
win7-20240729-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral14
Sample
libpng16.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
2 signatures
150 seconds
Behavioral task
behavioral15
Sample
lssvr.exe
Resource
win7-20240903-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral16
Sample
lssvr.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
Behavioral task
behavioral17
Sample
scecli_xp.dll
Resource
win7-20240903-en
windows7-x64
4 signatures
150 seconds
Behavioral task
behavioral18
Sample
scecli_xp.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
4 signatures
150 seconds
Behavioral task
behavioral19
Sample
sqlite3.dll
Resource
win7-20240903-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral20
Sample
sqlite3.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
3 signatures
150 seconds
Behavioral task
behavioral21
Sample
udmsvc.exe
Resource
win7-20240729-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral22
Sample
udmsvc.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
50891ae8695773da5af088e6db33196edb217a4d4ea918184b246973f28642f6
-
Size
6.2MB
-
MD5
e4af28a6205022313303d5e1a584ead5
-
SHA1
5ac588b8a92b9d1478d9458ebb40a0f3613e352c
-
SHA256
50891ae8695773da5af088e6db33196edb217a4d4ea918184b246973f28642f6
-
SHA512
27ebe0e6ddeb787c2a263d7cbba7a11f7f5c56fd2b6a6b6b86c521a828d33252b9e3cfc5477a6628cfd3b08ceae07a2553de8b44172000fb48d575097c318bf9
-
SSDEEP
196608:TeTmk8rUS5CsPZwz0jaN8Sdn2ri4qmAXPe4UeL3mds52vc:TcerJ5CsNcwfb8emTg0
Score
3/10
Malware Config
Signatures
-
Unsigned PE 11 IoCs
Checks for missing Authenticode signature.
resource 50891ae8695773da5af088e6db33196edb217a4d4ea918184b246973f28642f6 unpack001/$PLUGINSDIR/System.dll unpack001/cscss.exe unpack001/csfwcli.dll unpack001/csimlog_s.exe unpack001/cssvc.exe unpack001/libpng16.dll unpack001/lssvr.exe unpack001/scecli_xp.dll unpack001/sqlite3.dll unpack001/udmsvc.exe
Files
-
50891ae8695773da5af088e6db33196edb217a4d4ea918184b246973f28642f6.exe windows:4 windows x86 arch:x86
56a78d55f3f7af51443e58e0ce2fb5f6
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
RegCreateKeyExW
RegEnumKeyW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
SetFileSecurityW
RegOpenKeyExW
RegEnumValueW
shell32
SHGetSpecialFolderLocation
SHFileOperationW
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteExW
SHGetFileInfoW
ole32
OleInitialize
OleUninitialize
CoCreateInstance
IIDFromString
CoTaskMemFree
comctl32
ord17
ImageList_Create
ImageList_Destroy
ImageList_AddMasked
user32
GetClientRect
EndPaint
DrawTextW
IsWindowEnabled
DispatchMessageW
wsprintfA
CharNextA
CharPrevW
MessageBoxIndirectW
GetDlgItemTextW
SetDlgItemTextW
GetSystemMetrics
FillRect
AppendMenuW
TrackPopupMenu
OpenClipboard
SetClipboardData
CloseClipboard
IsWindowVisible
CallWindowProcW
GetMessagePos
CheckDlgButton
LoadCursorW
SetCursor
GetSysColor
SetWindowPos
GetWindowLongW
PeekMessageW
SetClassLongW
GetSystemMenu
EnableMenuItem
GetWindowRect
ScreenToClient
EndDialog
RegisterClassW
SystemParametersInfoW
CreateWindowExW
GetClassInfoW
DialogBoxParamW
CharNextW
ExitWindowsEx
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
FindWindowExW
IsWindow
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
ReleaseDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
EmptyClipboard
CreatePopupMenu
gdi32
SetBkMode
SetBkColor
GetDeviceCaps
CreateFontIndirectW
CreateBrushIndirect
DeleteObject
SetTextColor
SelectObject
kernel32
GetExitCodeProcess
WaitForSingleObject
GetModuleHandleA
GetProcAddress
GetSystemDirectoryW
lstrcatW
Sleep
lstrcpyA
WriteFile
GetTempFileNameW
CreateFileW
lstrcmpiA
RemoveDirectoryW
CreateProcessW
CreateDirectoryW
GetLastError
CreateThread
GlobalLock
GlobalUnlock
GetDiskFreeSpaceW
WideCharToMultiByte
lstrcpynW
lstrlenW
SetErrorMode
GetVersionExW
GetCommandLineW
GetTempPathW
GetWindowsDirectoryW
SetEnvironmentVariableW
CopyFileW
ExitProcess
GetCurrentProcess
GetModuleFileNameW
GetFileSize
GetTickCount
MulDiv
SetFileAttributesW
GetFileAttributesW
SetCurrentDirectoryW
MoveFileW
GetFullPathNameW
GetShortPathNameW
SearchPathW
CompareFileTime
SetFileTime
CloseHandle
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalFree
GlobalAlloc
GetModuleHandleW
LoadLibraryExW
MoveFileExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
lstrlenA
MultiByteToWideChar
ReadFile
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
Sections
.text Size: 25KB - Virtual size: 25KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1KB - Virtual size: 128KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ndata Size: - Virtual size: 68KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
$PLUGINSDIR/System.dll.dll windows:4 windows x86 arch:x86
fc0224e99e736751432961db63a41b76
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
GetModuleHandleW
GlobalFree
GlobalSize
lstrcpynW
lstrcpyW
GetProcAddress
WideCharToMultiByte
VirtualFree
FreeLibrary
lstrlenW
LoadLibraryW
GlobalAlloc
MultiByteToWideChar
VirtualAlloc
VirtualProtect
GetLastError
user32
wsprintfW
ole32
StringFromGUID2
CLSIDFromString
Exports
Exports
Sections
.text Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 867B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 120B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1024B - Virtual size: 662B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
cscss.exe.exe windows:5 windows x86 arch:x86
a515cb46b710b8569e7a412c08873f72
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
D:\workspace\solutions\PCCMApp\build\Release\x86\cscss.pdb
Imports
ws2_32
inet_ntoa
comctl32
InitCommonControlsEx
_TrackMouseEvent
csksapi
??0CDataReturned@@QAE@PAXH@Z
?GetBaseConfig@CCskbsApi@@QAEHPAU_BASE_CONFIG@@@Z
?PostNmPacket@CCskbsApi@@QAEHQADHPBDH@Z
?Close@CCskbsApi@@QAEXXZ
?ReadSharedMemory@CCskbsApi@@QAEHQADPAXHPAK@Z
??0CCskbsApi@@QAE@XZ
?GetData@CDataReturned@@QAEPAXXZ
?GetDataSize@CDataReturned@@QAEHXZ
?SendNmPacket@CCskbsApi@@QAEHQADHPBDHAAVCDataReturned@@@Z
??1CCskbsApi@@QAE@XZ
?Create@CCskbsApi@@QAEHQADPAVINavMessage@@@Z
??1CDataReturned@@QAE@XZ
??0CDataReturned@@QAE@H@Z
libpng16
png_set_read_fn
png_get_io_ptr
png_get_rows
png_get_color_type
png_get_image_width
png_sig_cmp
png_get_image_height
png_set_longjmp_fn
png_destroy_read_struct
png_create_info_struct
png_create_read_struct
png_read_png
kernel32
GetFileAttributesW
CloseHandle
RaiseException
GetLastError
SetLastError
ReleaseMutex
WaitForSingleObject
CreateMutexW
GetCurrentProcess
GetCurrentProcessId
TerminateProcess
CreateThread
GetCurrentThreadId
GetSystemTimeAsFileTime
FreeLibrary
GetModuleFileNameW
GetProcAddress
LoadLibraryW
LocalAlloc
LocalFree
QueryPerformanceCounter
MultiByteToWideChar
WideCharToMultiByte
GetFileSize
ReadFile
FindResourceW
LoadResource
SizeofResource
LockResource
FreeResource
WriteFile
GetModuleHandleW
GetLocalTime
CreateDirectoryW
SetFilePointer
FlushFileBuffers
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
CreateFileW
UnhandledExceptionFilter
InitializeSListHead
user32
GetWindowTextW
SetWindowTextW
SetDlgItemTextW
GetSystemMenu
GetParent
DispatchMessageW
EnableWindow
GetDlgItemTextW
MessageBoxW
SendMessageW
PostMessageW
DefWindowProcW
PostQuitMessage
UnregisterHotKey
RegisterHotKey
InvalidateRect
SetCursor
RedrawWindow
CallWindowProcW
GetClientRect
PtInRect
BeginPaint
DrawTextW
TranslateMessage
RegisterWindowMessageW
LoadMenuW
GetSubMenu
EnableMenuItem
GetCursorPos
TrackPopupMenu
DestroyMenu
EndDialog
DialogBoxParamW
GetDlgItemTextA
SetWindowsHookExW
UnhookWindowsHookEx
IsDialogMessageW
SetFocus
SetForegroundWindow
CreateDialogParamW
UpdateWindow
ShowWindow
PostThreadMessageW
CreateDialogIndirectParamW
GetMessageW
EndPaint
ModifyMenuW
SetWindowPos
RegisterClassExW
LoadIconW
LoadCursorW
SystemParametersInfoW
SetWindowLongW
GetWindowLongW
DestroyWindow
CreateWindowExW
GetDlgItem
gdi32
SelectObject
CreateCompatibleDC
CreateDIBSection
SetDIBitsToDevice
CreateFontIndirectW
DeleteObject
SetBkMode
SetTextColor
BitBlt
advapi32
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetEntriesInAclW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
shell32
ShellExecuteW
Shell_NotifyIconW
msvcp140
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Xbad_alloc@std@@YAXXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Xlength_error@std@@YAXPBD@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??7ios_base@std@@QBE_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?good@ios_base@std@@QBE_NXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?uncaught_exception@std@@YA_NXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
vcruntime140
_CxxThrowException
wcsrchr
_except_handler4_common
_setjmp3
memchr
memcpy
memmove
memset
__CxxFrameHandler3
__std_terminate
_purecall
wcsstr
__std_exception_copy
__std_exception_destroy
longjmp
__current_exception
__current_exception_context
api-ms-win-crt-runtime-l1-1-0
_initterm
_get_wide_winmain_command_line
exit
_configure_wide_argv
_exit
_set_app_type
_seh_filter_exe
_cexit
_invalid_parameter_noinfo_noreturn
_initialize_onexit_table
_c_exit
_crt_atexit
_register_thread_local_exe_atexit_callback
terminate
_controlfp_s
_register_onexit_function
_initterm_e
_initialize_wide_environment
api-ms-win-crt-string-l1-1-0
strcpy_s
wcscpy_s
wcscat_s
strncmp
api-ms-win-crt-stdio-l1-1-0
__stdio_common_vsprintf_s
__stdio_common_vsprintf
_set_fmode
__p__commode
__stdio_common_vswprintf
__stdio_common_vswprintf_s
api-ms-win-crt-convert-l1-1-0
_wtoi
api-ms-win-crt-math-l1-1-0
_finite
_dclass
_isnan
modf
__setusermatherr
api-ms-win-crt-heap-l1-1-0
_callnewh
_set_new_mode
free
malloc
api-ms-win-crt-locale-l1-1-0
setlocale
_configthreadlocale
Sections
.text Size: 101KB - Virtual size: 100KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 27KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 61KB - Virtual size: 60KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
csfwcli.dll.dll windows:5 windows x86 arch:x86
4ac6dbde4ad9ee670d99e4eb85dfb039
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
D:\workspace\solutions\csfw\build\Release\x86\csfwcli.pdb
Imports
rpcrt4
RpcBindingSetAuthInfoA
RpcStringFreeA
RpcBindingFromStringBindingA
RpcStringBindingComposeA
RpcBindingFree
NdrClientCall2
kernel32
InitializeSListHead
InitializeCriticalSection
DeleteCriticalSection
CreateThread
SetEvent
WaitForSingleObject
SetUnhandledExceptionFilter
EnterCriticalSection
LeaveCriticalSection
CreateEventW
Sleep
GetLastError
DisableThreadLibraryCalls
IsDebuggerPresent
UnhandledExceptionFilter
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
CloseHandle
ReleaseSRWLockExclusive
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
advapi32
CloseServiceHandle
QueryServiceStatus
OpenServiceW
OpenSCManagerW
StartServiceW
msvcp140
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?good@ios_base@std@@QBE_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPBD@Z
vcruntime140
__std_type_info_destroy_list
memset
_CxxThrowException
__current_exception_context
memmove
__current_exception
memcpy
memchr
__std_exception_destroy
__CxxFrameHandler3
__std_terminate
__std_exception_copy
_purecall
_except_handler4_common
api-ms-win-crt-runtime-l1-1-0
_invalid_parameter_noinfo_noreturn
terminate
_initterm_e
_initterm
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
api-ms-win-crt-heap-l1-1-0
free
malloc
_callnewh
api-ms-win-crt-math-l1-1-0
_isnan
_finite
_dclass
modf
api-ms-win-crt-stdio-l1-1-0
__stdio_common_vsprintf
Exports
Exports
??0CCsfwCli@@QAE@XZ
??1CCsfwCli@@QAE@XZ
??4CCsfwCli@@QAEAAV0@ABV0@@Z
?Close@CCsfwCli@@QAEXXZ
?Create@CCsfwCli@@QAE_NIPAVICsfwNotify@@@Z
?ExecuteCmds@CCsfwCli@@AAE_NPBD@Z
?IsServiceValid@CCsfwCli@@QAE_NXZ
?add_cmd@CCsfwCli@@AAE_NIPBDPBX@Z
?add_dns_rule@CCsfwCli@@QAE_NIPBD@Z
?add_http_request_rule@CCsfwCli@@QAE_NIPBD@Z
?add_ip_rule@CCsfwCli@@QAE_N_NIIIU_IP_ADDRESS_V4@1@@Z
?add_tcp_rule@CCsfwCli@@QAE_N_NIIU_IP_ADDRESS_V4@1@U_PORT_RANGE@1@2@Z
?add_udp_rule@CCsfwCli@@QAE_N_NIIU_IP_ADDRESS_V4@1@U_PORT_RANGE@1@2@Z
?clear_all@CCsfwCli@@QAE_NXZ
?commit_cmds@CCsfwCli@@QAE_NXZ
?enable_pd@CCsfwCli@@QAE_N_N@Z
?set_http_info@CCsfwCli@@QAE_NIPBD@Z
Sections
.text Size: 57KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
csimlog_s.exe.exe windows:5 windows x86 arch:x86
31337a20359d0e4925c08d68929b12d6
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
D:\PccmWorkspace\zw\csimlog\Release\csimlog_s.pdb
Imports
ws2_32
inet_ntoa
csimlog
CreateLogServer
CloseLogServer
libcurl
curl_easy_cleanup
curl_global_init
curl_easy_getinfo
curl_easy_perform
curl_easy_init
curl_easy_strerror
curl_easy_setopt
curl_global_cleanup
kernel32
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
SetLastError
CreateMutexW
WaitForSingleObject
LocalAlloc
CreateEventW
GetLastError
SetEvent
TerminateProcess
LoadLibraryW
IsDebuggerPresent
LocalFree
FreeLibrary
ReleaseMutex
GetLocalTime
GetModuleFileNameW
GetFileAttributesW
CreateDirectoryW
CreateFileW
WriteFile
SetFilePointer
FlushFileBuffers
MultiByteToWideChar
WaitForSingleObjectEx
GetCurrentProcess
InitializeSListHead
GetProcAddress
GetStartupInfoW
SetUnhandledExceptionFilter
CloseHandle
UnhandledExceptionFilter
ResetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
IsProcessorFeaturePresent
GetModuleHandleW
advapi32
SetSecurityDescriptorDacl
SetEntriesInAclW
InitializeSecurityDescriptor
msvcp140
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPBD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
vcruntime140
_except_handler4_common
__current_exception
__current_exception_context
_CxxThrowException
memset
memmove
memcpy
wcsrchr
__std_terminate
__std_exception_copy
__std_exception_destroy
__CxxFrameHandler3
strchr
memchr
_purecall
api-ms-win-crt-stdio-l1-1-0
__p__commode
_set_fmode
__stdio_common_vsprintf
__stdio_common_vsprintf_s
__stdio_common_vsnprintf_s
__stdio_common_vswprintf_s
__stdio_common_vswprintf
api-ms-win-crt-string-l1-1-0
wcscpy_s
_stricmp
isalpha
isspace
strncmp
isdigit
api-ms-win-crt-runtime-l1-1-0
_invalid_parameter_noinfo_noreturn
_seh_filter_exe
_set_app_type
_controlfp_s
_configure_wide_argv
_initialize_wide_environment
_get_wide_winmain_command_line
_initterm
_initterm_e
exit
_exit
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_crt_atexit
_register_onexit_function
terminate
_initialize_onexit_table
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
setlocale
api-ms-win-crt-math-l1-1-0
_dclass
ceil
_isnan
__setusermatherr
modf
_finite
api-ms-win-crt-heap-l1-1-0
free
malloc
_callnewh
_set_new_mode
Sections
.text Size: 72KB - Virtual size: 71KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 19KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 92KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
cssvc.exe.exe windows:5 windows x86 arch:x86
4b08ca629d747aedcb9213b50702ce66
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
D:\workspace\solutions\PCCMApp\build\Release\x86\cssvc.pdb
Imports
wtsapi32
WTSFreeMemory
WTSEnumerateSessionsW
WTSEnumerateProcessesW
kernel32
GetSystemTimeAsFileTime
GetSystemDirectoryW
GetVersionExW
FreeLibrary
GetModuleFileNameW
GetProcAddress
LoadLibraryW
LocalAlloc
LocalFree
TzSpecificLocalTimeToSystemTime
GetTimeZoneInformation
CompareStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringW
CreateDirectoryW
GetCurrentThreadId
GetStdHandle
CreateProcessW
GetTempFileNameW
DeleteFileW
MoveFileExW
GetFileAttributesA
CreateDirectoryA
GetProcessHeap
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileW
FindClose
ReadConsoleW
ReadFile
SetStdHandle
GetCurrentDirectoryW
GetConsoleMode
GetConsoleCP
CreateThread
TerminateProcess
GetCurrentProcessId
GetCurrentProcess
Sleep
CreateEventW
CreateMutexW
HeapSize
WaitForSingleObject
SetEvent
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
HeapFree
HeapReAlloc
HeapAlloc
SetLastError
GetLastError
RaiseException
CloseHandle
GetFileAttributesW
FindFirstFileW
CreateFileW
GetStringTypeW
FlushFileBuffers
SetFilePointerEx
WriteConsoleW
GetACP
WriteFile
GetModuleHandleExW
ExitProcess
SystemTimeToFileTime
SetFileTime
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
RtlUnwind
InitializeSListHead
QueryPerformanceCounter
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetEndOfFile
OpenProcess
user32
MessageBoxW
CharUpperW
CharNextW
advapi32
RegSetValueExW
RegCloseKey
CreateProcessAsUserW
OpenProcessToken
SetKernelObjectSecurity
MakeAbsoluteSD
BuildExplicitAccessWithNameW
GetUserNameW
GetSecurityDescriptorDacl
GetKernelObjectSecurity
SetServiceStatus
RegisterServiceCtrlHandlerExW
StartServiceCtrlDispatcherW
DeregisterEventSource
ReportEventW
RegisterEventSourceW
DeleteService
ControlService
QueryServiceStatus
ChangeServiceConfigW
CreateServiceW
CloseServiceHandle
OpenServiceW
OpenSCManagerW
SetEntriesInAclW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegCreateKeyExW
Sections
.text Size: 192KB - Virtual size: 192KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 77KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 49KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
libpng16.dll.dll windows:5 windows x86 arch:x86
4c954a9b8bd174285ab4600cc8264897
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
D:\PccmWorkspace\zw\cstplibs\build\x86\Release\libpng16.pdb
Imports
kernel32
ExitProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
vcruntime140
longjmp
memcpy
memset
__std_type_info_destroy_list
_except_handler4_common
_setjmp3
api-ms-win-crt-math-l1-1-0
_libm_sse2_pow_precise
floor
frexp
modf
api-ms-win-crt-stdio-l1-1-0
fopen
fflush
__acrt_iob_func
ferror
fwrite
fread
fclose
__stdio_common_vfprintf
api-ms-win-crt-heap-l1-1-0
malloc
free
api-ms-win-crt-runtime-l1-1-0
_errno
strerror
_cexit
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
abort
api-ms-win-crt-convert-l1-1-0
atof
api-ms-win-crt-time-l1-1-0
_gmtime64
api-ms-win-crt-filesystem-l1-1-0
remove
Exports
Exports
png_access_version_number
png_benign_error
png_build_grayscale_palette
png_calloc
png_chunk_benign_error
png_chunk_error
png_chunk_warning
png_convert_from_struct_tm
png_convert_from_time_t
png_convert_to_rfc1123
png_convert_to_rfc1123_buffer
png_create_info_struct
png_create_read_struct
png_create_read_struct_2
png_create_write_struct
png_create_write_struct_2
png_data_freer
png_destroy_info_struct
png_destroy_read_struct
png_destroy_write_struct
png_error
png_free
png_free_data
png_free_default
png_get_IHDR
png_get_PLTE
png_get_bKGD
png_get_bit_depth
png_get_cHRM
png_get_cHRM_XYZ
png_get_cHRM_XYZ_fixed
png_get_cHRM_fixed
png_get_channels
png_get_chunk_cache_max
png_get_chunk_malloc_max
png_get_color_type
png_get_compression_buffer_size
png_get_compression_type
png_get_copyright
png_get_current_pass_number
png_get_current_row_number
png_get_eXIf
png_get_eXIf_1
png_get_error_ptr
png_get_filter_type
png_get_gAMA
png_get_gAMA_fixed
png_get_hIST
png_get_header_ver
png_get_header_version
png_get_iCCP
png_get_image_height
png_get_image_width
png_get_int_32
png_get_interlace_type
png_get_io_chunk_type
png_get_io_ptr
png_get_io_state
png_get_libpng_ver
png_get_mem_ptr
png_get_oFFs
png_get_pCAL
png_get_pHYs
png_get_pHYs_dpi
png_get_palette_max
png_get_pixel_aspect_ratio
png_get_pixel_aspect_ratio_fixed
png_get_pixels_per_inch
png_get_pixels_per_meter
png_get_progressive_ptr
png_get_rgb_to_gray_status
png_get_rowbytes
png_get_rows
png_get_sBIT
png_get_sCAL
png_get_sCAL_fixed
png_get_sCAL_s
png_get_sPLT
png_get_sRGB
png_get_signature
png_get_tIME
png_get_tRNS
png_get_text
png_get_uint_16
png_get_uint_31
png_get_uint_32
png_get_unknown_chunks
png_get_user_chunk_ptr
png_get_user_height_max
png_get_user_transform_ptr
png_get_user_width_max
png_get_valid
png_get_x_offset_inches
png_get_x_offset_inches_fixed
png_get_x_offset_microns
png_get_x_offset_pixels
png_get_x_pixels_per_inch
png_get_x_pixels_per_meter
png_get_y_offset_inches
png_get_y_offset_inches_fixed
png_get_y_offset_microns
png_get_y_offset_pixels
png_get_y_pixels_per_inch
png_get_y_pixels_per_meter
png_handle_as_unknown
png_image_begin_read_from_file
png_image_begin_read_from_memory
png_image_begin_read_from_stdio
png_image_finish_read
png_image_free
png_image_write_to_file
png_image_write_to_memory
png_image_write_to_stdio
png_info_init_3
png_init_io
png_longjmp
png_malloc
png_malloc_default
png_malloc_warn
png_permit_mng_features
png_process_data
png_process_data_pause
png_process_data_skip
png_progressive_combine_row
png_read_end
png_read_image
png_read_info
png_read_png
png_read_row
png_read_rows
png_read_update_info
png_reset_zstream
png_save_int_32
png_save_uint_16
png_save_uint_32
png_set_IHDR
png_set_PLTE
png_set_add_alpha
png_set_alpha_mode
png_set_alpha_mode_fixed
png_set_bKGD
png_set_background
png_set_background_fixed
png_set_benign_errors
png_set_bgr
png_set_cHRM
png_set_cHRM_XYZ
png_set_cHRM_XYZ_fixed
png_set_cHRM_fixed
png_set_check_for_invalid_index
png_set_chunk_cache_max
png_set_chunk_malloc_max
png_set_compression_buffer_size
png_set_compression_level
png_set_compression_mem_level
png_set_compression_method
png_set_compression_strategy
png_set_compression_window_bits
png_set_crc_action
png_set_eXIf
png_set_eXIf_1
png_set_error_fn
png_set_expand
png_set_expand_16
png_set_expand_gray_1_2_4_to_8
png_set_filler
png_set_filter
png_set_filter_heuristics
png_set_filter_heuristics_fixed
png_set_flush
png_set_gAMA
png_set_gAMA_fixed
png_set_gamma
png_set_gamma_fixed
png_set_gray_to_rgb
png_set_hIST
png_set_iCCP
png_set_interlace_handling
png_set_invalid
png_set_invert_alpha
png_set_invert_mono
png_set_keep_unknown_chunks
png_set_longjmp_fn
png_set_mem_fn
png_set_oFFs
png_set_option
png_set_pCAL
png_set_pHYs
png_set_packing
png_set_packswap
png_set_palette_to_rgb
png_set_progressive_read_fn
png_set_quantize
png_set_read_fn
png_set_read_status_fn
png_set_read_user_chunk_fn
png_set_read_user_transform_fn
png_set_rgb_to_gray
png_set_rgb_to_gray_fixed
png_set_rows
png_set_sBIT
png_set_sCAL
png_set_sCAL_fixed
png_set_sCAL_s
png_set_sPLT
png_set_sRGB
png_set_sRGB_gAMA_and_cHRM
png_set_scale_16
png_set_shift
png_set_sig_bytes
png_set_strip_16
png_set_strip_alpha
png_set_swap
png_set_swap_alpha
png_set_tIME
png_set_tRNS
png_set_tRNS_to_alpha
png_set_text
png_set_text_compression_level
png_set_text_compression_mem_level
png_set_text_compression_method
png_set_text_compression_strategy
png_set_text_compression_window_bits
png_set_unknown_chunk_location
png_set_unknown_chunks
png_set_user_limits
png_set_user_transform_info
png_set_write_fn
png_set_write_status_fn
png_set_write_user_transform_fn
png_sig_cmp
png_start_read_image
png_warning
png_write_chunk
png_write_chunk_data
png_write_chunk_end
png_write_chunk_start
png_write_end
png_write_flush
png_write_image
png_write_info
png_write_info_before_PLTE
png_write_png
png_write_row
png_write_rows
png_write_sig
Sections
.text Size: 173KB - Virtual size: 172KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 41KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 924B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
lssvr.exe.exe windows:5 windows x86 arch:x86
cf857c3e6d41a997f0513a6c4eac1543
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
D:\workspace\solutions\PCCMApp\build\Release\x86\lssvr.pdb
Imports
wtsapi32
WTSFreeMemory
WTSEnumerateSessionsW
userenv
CreateEnvironmentBlock
DestroyEnvironmentBlock
netapi32
NetApiBufferFree
NetQueryDisplayInformation
ws2_32
getsockopt
__WSAFDIsSet
recvfrom
WSASocketW
WSAStartup
WSACleanup
WSAGetLastError
getsockname
ioctlsocket
inet_ntoa
closesocket
sendto
socket
inet_addr
htons
select
setsockopt
connect
iphlpapi
GetInterfaceInfo
GetBestRoute
GetIpAddrTable
csksapi
?GetServerTime@CCskbsApi@@QAEHPAU_SYSTEMTIME@@@Z
?PostNmPacket@CCskbsApi@@QAEHQADHPBDH@Z
?SetBaseConfig@CCskbsApi@@QAEHPAU_BASE_CONFIG@@@Z
?NativeTimeToServerTime@CCskbsApi@@QAEH_KPAU_SYSTEMTIME@@@Z
??0CCskbsApi@@QAE@XZ
?CreateSharedMemory@CCskbsApi@@QAEHQADH@Z
??1CCskbsApi@@QAE@XZ
?GetBaseConfig@CCskbsApi@@QAEHPAU_BASE_CONFIG@@@Z
?Create@CCskbsApi@@QAEHQADPAVINavMessage@@@Z
?CloseSharedMemory@CCskbsApi@@QAEHQAD@Z
?ReadSharedMemory@CCskbsApi@@QAEHQADPAXHPAK@Z
?WriteSharedMemory@CCskbsApi@@QAEHQADPAXH@Z
??0CDataReturned@@QAE@PAXH@Z
?GetVersion@CCskbsApi@@QAEKXZ
?Close@CCskbsApi@@QAEXXZ
sqlite3
sqlite3_close
sqlite3_exec
sqlite3_open
libcurl
curl_easy_strerror
curl_slist_append
curl_easy_getinfo
curl_easy_perform
curl_easy_setopt
curl_easy_init
curl_easy_cleanup
curl_global_init
curl_global_cleanup
curl_slist_free_all
secnapi
??0CLhmonApi@@QAE@PB_W@Z
?GetVersion@CLhmonApi@@QAEKXZ
?SetLoggingState@CLhmonApi@@QAEHK@Z
?SetResponseTimeout@CLhmonApi@@QAEXH@Z
?SetStaticFilters@CLhmonApi@@QAEHPAU_FILTER_INFO@@K@Z
?RemoveAllFilters@CLhmonApi@@QAEHXZ
?SetGlobalPacketFilterTable@CNdisApi@@QAEHPAU_GLOBAL_FILTER_TABLE@@@Z
??1CLhmonApi@@QAE@XZ
??0CNdisApi@@QAE@PB_W@Z
?GetVersion@CNdisApi@@QAEKXZ
?IsDriverLoaded@CNdisApi@@QAEHXZ
??1CNdisApi@@UAE@XZ
kernel32
GetStartupInfoW
InitializeSListHead
IsDebuggerPresent
IsProcessorFeaturePresent
UnhandledExceptionFilter
CreateDirectoryA
GetFileAttributesA
OpenThread
SetThreadContext
FlushInstructionCache
GetThreadContext
HeapDestroy
CreateToolhelp32Snapshot
SuspendThread
Thread32First
Thread32Next
InterlockedCompareExchange
HeapCreate
QueryPerformanceCounter
QueryPerformanceFrequency
GetExitCodeProcess
PeekNamedPipe
CreatePipe
SetConsoleCtrlHandler
SetCurrentDirectoryW
SetUnhandledExceptionFilter
SetEndOfFile
CreateDirectoryW
CreateProcessW
GetStdHandle
OpenEventW
GetTempPathW
FlushFileBuffers
SetFilePointer
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
CreateFileW
FindFirstFileA
FindFirstFileW
GetFileAttributesW
CloseHandle
RaiseException
GetLastError
SetLastError
HeapAlloc
HeapReAlloc
HeapFree
EnterCriticalSection
LeaveCriticalSection
SetEvent
ReleaseMutex
WaitForSingleObject
WaitForSingleObjectEx
CreateMutexW
CreateEventW
Sleep
WaitForMultipleObjects
GetCurrentProcess
GetCurrentProcessId
TerminateProcess
CreateThread
GetCurrentThreadId
GetSystemInfo
GetSystemTimeAsFileTime
GetTickCount
GetVersionExW
GetNativeSystemInfo
VirtualAlloc
VirtualProtect
VirtualFree
VirtualQuery
FreeLibrary
GetModuleFileNameW
GetProcAddress
LoadLibraryW
LocalAlloc
LocalFree
MultiByteToWideChar
WideCharToMultiByte
CreateFileA
GetFileSize
ReadFile
FindNextFileA
FindClose
InterlockedExchange
ResumeThread
GetComputerNameW
WriteFile
DeviceIoControl
GetModuleHandleW
FileTimeToLocalFileTime
DeleteFileW
FindNextFileW
RemoveDirectoryW
OpenProcess
GetLocalTime
QueueUserAPC
SleepEx
user32
GetSystemMetrics
ExitWindowsEx
advapi32
RegCloseKey
LogonUserW
FreeSid
CheckTokenMembership
AllocateAndInitializeSid
SetTokenInformation
DuplicateTokenEx
RegEnumKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegQueryInfoKeyW
GetTokenInformation
InitializeSecurityDescriptor
CreateProcessAsUserW
CloseServiceHandle
StartServiceW
ChangeServiceConfigW
OpenServiceW
OpenSCManagerW
OpenProcessToken
SetKernelObjectSecurity
SetSecurityDescriptorDacl
MakeAbsoluteSD
SetEntriesInAclW
BuildExplicitAccessWithNameW
GetUserNameW
GetSecurityDescriptorDacl
GetKernelObjectSecurity
RegEnumKeyExA
RegSetValueExW
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyExA
shell32
SHGetFolderPathA
ole32
CoInitializeEx
CoInitializeSecurity
CoUninitialize
CoCreateInstance
CoSetProxyBlanket
oleaut32
SafeArrayDestroy
SafeArrayPutElement
SafeArrayCreate
VariantClear
VariantInit
SysFreeString
SysAllocString
msvcp140
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Random_device@std@@YAIXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??7ios_base@std@@QBE_NXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Xbad_alloc@std@@YAXXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Xlength_error@std@@YAXPBD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?good@ios_base@std@@QBE_NXZ
?uncaught_exception@std@@YA_NXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
dbghelp
MiniDumpWriteDump
vcruntime140
memchr
memmove
memset
__CxxFrameHandler3
__std_terminate
__std_exception_copy
__std_exception_destroy
_purecall
strchr
_CxxThrowException
wcsstr
strrchr
_except_handler4_common
__current_exception
__current_exception_context
wcsrchr
memcpy
api-ms-win-crt-runtime-l1-1-0
_controlfp_s
terminate
_errno
_register_thread_local_exe_atexit_callback
_c_exit
_exit
exit
_initterm_e
_initterm
_get_wide_winmain_command_line
_initialize_wide_environment
_configure_wide_argv
_set_app_type
_seh_filter_exe
_cexit
_crt_atexit
_register_onexit_function
_initialize_onexit_table
_invalid_parameter_noinfo_noreturn
api-ms-win-crt-string-l1-1-0
isdigit
wcscpy_s
tolower
_wcsnicmp
strtok_s
wcsncmp
wcscat_s
isalpha
towupper
strncpy
_wcsicmp
strcpy_s
isprint
strncpy_s
_stricmp
strcat_s
_wcslwr_s
isspace
strncmp
api-ms-win-crt-stdio-l1-1-0
__p__commode
fopen
_fileno
fwrite
fputc
__stdio_common_vsnprintf_s
_set_fmode
__stdio_common_vsprintf
__stdio_common_vfprintf
__stdio_common_vsprintf_s
__acrt_iob_func
fclose
fread
__stdio_common_vswprintf_s
__stdio_common_vswprintf
__stdio_common_vsscanf
api-ms-win-crt-convert-l1-1-0
atof
strtoul
atoi
api-ms-win-crt-heap-l1-1-0
free
_callnewh
malloc
_set_new_mode
api-ms-win-crt-locale-l1-1-0
setlocale
_configthreadlocale
api-ms-win-crt-math-l1-1-0
_dclass
__setusermatherr
modf
_finite
ceil
_isnan
api-ms-win-crt-filesystem-l1-1-0
_fstat64
api-ms-win-crt-time-l1-1-0
_utime64
Sections
.text Size: 380KB - Virtual size: 380KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 84KB - Virtual size: 83KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 12KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 48KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
scecli_xp.dll.dll regsvr32 windows:5 windows x86 arch:x86
9f8e0969a00b5475489305a765e8f597
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
scecli.pdb
Imports
msvcrt
wcsstr
_vsnwprintf
_except_handler3
_wcsnicmp
wcscpy
_resetstkoflw
wcsncpy
wcslen
_wcsicmp
??3@YAXPAX@Z
swprintf
wcscat
wcschr
wcsncmp
_wcsupr
wcsncat
fclose
_wfopen
wcscmp
malloc
_adjust_fdiv
_initterm
free
??2@YAPAXI@Z
towlower
__CxxFrameHandler
_wtol
_itow
_wfindnext
_wfindfirst
_findclose
memmove
ntdll
RtlNtStatusToDosError
RtlGetControlSecurityDescriptor
RtlGetGroupSecurityDescriptor
RtlGetOwnerSecurityDescriptor
RtlGetSaclSecurityDescriptor
RtlGetDaclSecurityDescriptor
RtlFreeSid
RtlAllocateAndInitializeSid
RtlMapGenericMask
RtlGetAce
NtAdjustPrivilegesToken
RtlTimeToTimeFields
RtlSystemTimeToLocalTime
NtQuerySystemTime
RtlCopySid
RtlLengthSid
RtlSubAuthoritySid
RtlSubAuthorityCountSid
RtlIdentifierAuthoritySid
NtQueryInformationToken
RtlGetNtProductType
RtlLengthRequiredSid
RtlFreeUnicodeString
RtlConvertSidToUnicodeString
RtlInitUnicodeString
RtlValidSid
RtlEqualSid
RtlRandomEx
RtlMakeSelfRelativeSD
RtlLengthSecurityDescriptor
NtQueryInformationProcess
RtlAllocateHeap
RtlFreeHeap
RtlImageNtHeader
NtQueryObject
RtlTimeToSecondsSince1980
DbgPrint
advapi32
RevertToSelf
LsaQueryDomainInformationPolicy
LsaSetDomainInformationPolicy
RegEnumKeyExW
ImpersonateLoggedOnUser
GetNamedSecurityInfoW
SetNamedSecurityInfoW
GetSecurityDescriptorDacl
AllocateAndInitializeSid
LsaRemoveAccountRights
RegDeleteKeyW
ConvertStringSidToSidW
LsaLookupSids
OpenSCManagerW
EnumServicesStatusW
LsaClose
FreeSid
LsaOpenPolicy
LsaQueryInformationPolicy
LsaLookupNames2
LsaFreeMemory
OpenServiceW
QueryServiceConfigW
QueryServiceObjectSecurity
CloseServiceHandle
RegOpenCurrentUser
ReportEventW
DeregisterEventSource
RegisterEventSourceW
OpenThreadToken
OpenProcessToken
DuplicateToken
CheckTokenMembership
EqualSid
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSecurityDescriptorToStringSecurityDescriptorW
kernel32
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetPrivateProfileStringW
Sleep
GetPrivateProfileSectionW
ReadFile
WideCharToMultiByte
WritePrivateProfileSectionW
WritePrivateProfileStringW
GetEnvironmentVariableW
GetTickCount
DeleteFileW
CopyFileW
GetFileAttributesW
FormatMessageW
lstrlenW
CompareStringW
CreateFileW
SetFilePointer
SetLastError
ExpandEnvironmentStringsW
GetSystemDirectoryW
GetSystemWindowsDirectoryW
CreateDirectoryW
LoadLibraryW
GetProcAddress
FreeLibrary
FindResourceW
LoadResource
lstrcatW
lstrcpyW
GetModuleHandleW
GetVolumeInformationW
GetDriveTypeW
GetFileSize
SetFileAttributesW
ExitThread
FreeLibraryAndExitThread
CreateThread
LeaveCriticalSection
WaitForSingleObject
EnterCriticalSection
GetCurrentThreadId
QueueUserWorkItem
WaitForSingleObjectEx
OpenEventW
InitializeCriticalSection
DeleteCriticalSection
InterlockedCompareExchange
LoadLibraryA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LocalFree
GetLastError
CloseHandle
GetCurrentProcess
GetCurrentThread
WriteFile
DelayLoadFailureHook
GetComputerNameExW
LocalAlloc
GetComputerNameW
GetTimeFormatW
GetDateFormatW
FileTimeToSystemTime
GetPrivateProfileIntW
LockResource
rpcrt4
I_RpcExceptionFilter
RpcBindingSetAuthInfoW
NdrClientCall2
NdrServerCall2
RpcStringFreeW
RpcBindingFromStringBindingW
RpcStringBindingComposeW
RpcBindingFree
setupapi
SetupFindNextLine
SetupGetFieldCount
SetupGetStringFieldW
SetupFindFirstLineW
SetupGetLineCountW
SetupOpenInfFileW
SetupCloseInfFile
SetupGetIntField
SetupGetMultiSzFieldW
user32
LoadStringW
wsprintfW
netapi32
NetLocalGroupAddMembers
userenv
ProcessGroupPolicyCompletedEx
GetProfilesDirectoryW
Exports
Exports
DeltaNotify
DllRegisterServer
DllUnregisterServer
InitializeChangeNotify
SceAddToNameList
SceAddToNameStatusList
SceAddToObjectList
SceAnalyzeSystem
SceAppendSecurityProfileInfo
SceBrowseDatabaseTable
SceCloseProfile
SceCommitTransaction
SceCompareNameList
SceCompareSecurityDescriptors
SceConfigureConvertedFileSecurity
SceConfigureSystem
SceCopyBaseProfile
SceCreateDirectory
SceDcPromoCreateGPOsInSysvol
SceDcPromoCreateGPOsInSysvolEx
SceDcPromoteSecurity
SceDcPromoteSecurityEx
SceEnforceSecurityPolicyPropagation
SceEnumerateServices
SceFreeMemory
SceFreeProfileMemory
SceGenerateGroupPolicy
SceGenerateRollback
SceGetAnalysisAreaSummary
SceGetAreas
SceGetDatabaseSetting
SceGetDbTime
SceGetObjectChildren
SceGetObjectSecurity
SceGetScpProfileDescription
SceGetSecurityProfileInfo
SceGetServerProductType
SceGetTimeStamp
SceIsSystemDatabase
SceLookupPrivRightName
SceNotifyPolicyDelta
SceOpenPolicy
SceOpenProfile
SceProcessEFSRecoveryGPO
SceProcessSecurityPolicyGPO
SceProcessSecurityPolicyGPOEx
SceRegisterRegValues
SceRollbackTransaction
SceSetDatabaseSetting
SceSetupBackupSecurity
SceSetupConfigureServices
SceSetupGenerateTemplate
SceSetupMoveSecurityFile
SceSetupRootSecurity
SceSetupSystemByInfName
SceSetupUnwindSecurityFile
SceSetupUpdateSecurityFile
SceSetupUpdateSecurityKey
SceSetupUpdateSecurityService
SceStartTransaction
SceSvcConvertSDToText
SceSvcConvertTextToSD
SceSvcFree
SceSvcGetInformationTemplate
SceSvcQueryInfo
SceSvcSetInfo
SceSvcSetInformationTemplate
SceSvcUpdateInfo
SceSysPrep
SceUpdateObjectInfo
SceUpdateSecurityProfile
SceWriteSecurityProfileInfo
Sections
.text Size: 149KB - Virtual size: 149KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
sqlite3.dll.dll windows:4 windows x86 arch:x86
b6b717510bf0f538ce941b9675264c78
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
AreFileApisANSI
CloseHandle
CreateFileA
CreateFileMappingA
CreateFileMappingW
CreateFileW
CreateMutexW
DeleteCriticalSection
DeleteFileA
DeleteFileW
EnterCriticalSection
FlushFileBuffers
FlushViewOfFile
FormatMessageA
FormatMessageW
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDiskFreeSpaceA
GetDiskFreeSpaceW
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileSize
GetFullPathNameA
GetFullPathNameW
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetSystemInfo
GetSystemTime
GetSystemTimeAsFileTime
GetTempPathA
GetTempPathW
GetTickCount
GetVersionExA
GetVersionExW
HeapAlloc
HeapCompact
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
HeapValidate
InitializeCriticalSection
InterlockedCompareExchange
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
LocalFree
LockFile
LockFileEx
MapViewOfFile
MultiByteToWideChar
OutputDebugStringA
OutputDebugStringW
QueryPerformanceCounter
ReadFile
SetEndOfFile
SetFilePointer
SetUnhandledExceptionFilter
Sleep
SystemTimeToFileTime
TerminateProcess
TlsGetValue
TryEnterCriticalSection
UnhandledExceptionFilter
UnlockFile
UnlockFileEx
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteFile
msvcrt
__dllonexit
__setusermatherr
_amsg_exit
_beginthreadex
_endthreadex
_errno
_initterm
_iob
_lock
_onexit
localtime
calloc
fprintf
free
fwrite
malloc
memcmp
memmove
qsort
realloc
strcmp
strcspn
strlen
strncmp
_unlock
abort
vfprintf
Exports
Exports
sqlite3_aggregate_context
sqlite3_aggregate_count
sqlite3_auto_extension
sqlite3_backup_finish
sqlite3_backup_init
sqlite3_backup_pagecount
sqlite3_backup_remaining
sqlite3_backup_step
sqlite3_bind_blob
sqlite3_bind_blob64
sqlite3_bind_double
sqlite3_bind_int
sqlite3_bind_int64
sqlite3_bind_null
sqlite3_bind_parameter_count
sqlite3_bind_parameter_index
sqlite3_bind_parameter_name
sqlite3_bind_pointer
sqlite3_bind_text
sqlite3_bind_text16
sqlite3_bind_text64
sqlite3_bind_value
sqlite3_bind_zeroblob
sqlite3_bind_zeroblob64
sqlite3_blob_bytes
sqlite3_blob_close
sqlite3_blob_open
sqlite3_blob_read
sqlite3_blob_reopen
sqlite3_blob_write
sqlite3_busy_handler
sqlite3_busy_timeout
sqlite3_cancel_auto_extension
sqlite3_changes
sqlite3_clear_bindings
sqlite3_close
sqlite3_close_v2
sqlite3_collation_needed
sqlite3_collation_needed16
sqlite3_column_blob
sqlite3_column_bytes
sqlite3_column_bytes16
sqlite3_column_count
sqlite3_column_database_name
sqlite3_column_database_name16
sqlite3_column_decltype
sqlite3_column_decltype16
sqlite3_column_double
sqlite3_column_int
sqlite3_column_int64
sqlite3_column_name
sqlite3_column_name16
sqlite3_column_origin_name
sqlite3_column_origin_name16
sqlite3_column_table_name
sqlite3_column_table_name16
sqlite3_column_text
sqlite3_column_text16
sqlite3_column_type
sqlite3_column_value
sqlite3_commit_hook
sqlite3_compileoption_get
sqlite3_compileoption_used
sqlite3_complete
sqlite3_complete16
sqlite3_config
sqlite3_context_db_handle
sqlite3_create_collation
sqlite3_create_collation16
sqlite3_create_collation_v2
sqlite3_create_function
sqlite3_create_function16
sqlite3_create_function_v2
sqlite3_create_module
sqlite3_create_module_v2
sqlite3_data_count
sqlite3_data_directory
sqlite3_db_cacheflush
sqlite3_db_config
sqlite3_db_filename
sqlite3_db_handle
sqlite3_db_mutex
sqlite3_db_readonly
sqlite3_db_release_memory
sqlite3_db_status
sqlite3_declare_vtab
sqlite3_enable_load_extension
sqlite3_enable_shared_cache
sqlite3_errcode
sqlite3_errmsg
sqlite3_errmsg16
sqlite3_errstr
sqlite3_exec
sqlite3_expanded_sql
sqlite3_expired
sqlite3_extended_errcode
sqlite3_extended_result_codes
sqlite3_file_control
sqlite3_finalize
sqlite3_free
sqlite3_free_table
sqlite3_fts5_may_be_corrupt
sqlite3_get_autocommit
sqlite3_get_auxdata
sqlite3_get_table
sqlite3_global_recover
sqlite3_initialize
sqlite3_interrupt
sqlite3_last_insert_rowid
sqlite3_libversion
sqlite3_libversion_number
sqlite3_limit
sqlite3_load_extension
sqlite3_log
sqlite3_malloc
sqlite3_malloc64
sqlite3_memory_alarm
sqlite3_memory_highwater
sqlite3_memory_used
sqlite3_mprintf
sqlite3_msize
sqlite3_mutex_alloc
sqlite3_mutex_enter
sqlite3_mutex_free
sqlite3_mutex_leave
sqlite3_mutex_try
sqlite3_next_stmt
sqlite3_open
sqlite3_open16
sqlite3_open_v2
sqlite3_os_end
sqlite3_os_init
sqlite3_overload_function
sqlite3_prepare
sqlite3_prepare16
sqlite3_prepare16_v2
sqlite3_prepare16_v3
sqlite3_prepare_v2
sqlite3_prepare_v3
sqlite3_profile
sqlite3_progress_handler
sqlite3_randomness
sqlite3_realloc
sqlite3_realloc64
sqlite3_release_memory
sqlite3_reset
sqlite3_reset_auto_extension
sqlite3_result_blob
sqlite3_result_blob64
sqlite3_result_double
sqlite3_result_error
sqlite3_result_error16
sqlite3_result_error_code
sqlite3_result_error_nomem
sqlite3_result_error_toobig
sqlite3_result_int
sqlite3_result_int64
sqlite3_result_null
sqlite3_result_pointer
sqlite3_result_subtype
sqlite3_result_text
sqlite3_result_text16
sqlite3_result_text16be
sqlite3_result_text16le
sqlite3_result_text64
sqlite3_result_value
sqlite3_result_zeroblob
sqlite3_result_zeroblob64
sqlite3_rollback_hook
sqlite3_rtree_geometry_callback
sqlite3_rtree_query_callback
sqlite3_set_authorizer
sqlite3_set_auxdata
sqlite3_set_last_insert_rowid
sqlite3_shutdown
sqlite3_sleep
sqlite3_snprintf
sqlite3_soft_heap_limit
sqlite3_soft_heap_limit64
sqlite3_sourceid
sqlite3_sql
sqlite3_status
sqlite3_status64
sqlite3_step
sqlite3_stmt_busy
sqlite3_stmt_readonly
sqlite3_stmt_status
sqlite3_strglob
sqlite3_stricmp
sqlite3_strlike
sqlite3_strnicmp
sqlite3_system_errno
sqlite3_table_column_metadata
sqlite3_temp_directory
sqlite3_test_control
sqlite3_thread_cleanup
sqlite3_threadsafe
sqlite3_total_changes
sqlite3_trace
sqlite3_trace_v2
sqlite3_transfer_bindings
sqlite3_update_hook
sqlite3_uri_boolean
sqlite3_uri_int64
sqlite3_uri_parameter
sqlite3_user_data
sqlite3_value_blob
sqlite3_value_bytes
sqlite3_value_bytes16
sqlite3_value_double
sqlite3_value_dup
sqlite3_value_free
sqlite3_value_int
sqlite3_value_int64
sqlite3_value_nochange
sqlite3_value_numeric_type
sqlite3_value_pointer
sqlite3_value_subtype
sqlite3_value_text
sqlite3_value_text16
sqlite3_value_text16be
sqlite3_value_text16le
sqlite3_value_type
sqlite3_version
sqlite3_vfs_find
sqlite3_vfs_register
sqlite3_vfs_unregister
sqlite3_vmprintf
sqlite3_vsnprintf
sqlite3_vtab_collation
sqlite3_vtab_config
sqlite3_vtab_nochange
sqlite3_vtab_on_conflict
sqlite3_wal_autocheckpoint
sqlite3_wal_checkpoint
sqlite3_wal_checkpoint_v2
sqlite3_wal_hook
sqlite3_win32_is_nt
sqlite3_win32_mbcs_to_utf8
sqlite3_win32_mbcs_to_utf8_v2
sqlite3_win32_set_directory
sqlite3_win32_sleep
sqlite3_win32_unicode_to_utf8
sqlite3_win32_utf8_to_mbcs
sqlite3_win32_utf8_to_mbcs_v2
sqlite3_win32_utf8_to_unicode
sqlite3_win32_write_debug
Sections
.text Size: 565KB - Virtual size: 565KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 58KB - Virtual size: 57KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: - Virtual size: 2KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 512B - Virtual size: 44B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 512B - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/4 Size: 1024B - Virtual size: 728B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/19 Size: 38KB - Virtual size: 38KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/31 Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/45 Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/57 Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/70 Size: 1024B - Virtual size: 617B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/81 Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
/92 Size: 1024B - Virtual size: 656B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
udmsvc.exe.exe windows:5 windows x64 arch:x64
8b0e342fbd5245cbfeab9cec3dafbd8f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
D:\PccmWorkspace\zw\PCCMApp\x64\Release\udmsvc.pdb
Imports
setupapi
SetupDiEnumDeviceInterfaces
CM_Get_DevNode_Status
CM_Locate_DevNodeW
CM_Get_Sibling
SetupDiSetClassInstallParamsW
SetupDiGetDeviceInfoListDetailW
CM_Get_DevNode_Registry_PropertyW
SetupDiGetDeviceRegistryPropertyW
CM_Get_Device_IDW
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW
CM_Get_Parent
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiCallClassInstaller
CM_Get_Child
kernel32
CreateMutexW
CreateFileW
MultiByteToWideChar
GetPrivateProfileStringW
GlobalAlloc
GlobalFree
CloseHandle
WideCharToMultiByte
WaitForSingleObject
ReleaseMutex
GetFileAttributesW
CreateDirectoryW
WriteFile
SetFilePointer
GetLocalTime
FlushFileBuffers
DeviceIoControl
SetEvent
DisconnectNamedPipe
ReadFileEx
CreateEventW
WaitForSingleObjectEx
CreateNamedPipeW
ConnectNamedPipe
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
LocalFree
GetLastError
Sleep
GetVersionExW
LocalAlloc
GetModuleFileNameW
SetLastError
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
GetProcessHeap
GetConsoleCP
GetConsoleMode
HeapSize
SetFilePointerEx
WriteConsoleW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
EncodePointer
DecodePointer
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
ResetEvent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
RtlUnwindEx
RtlPcToFileHeader
RaiseException
FreeLibrary
LoadLibraryExW
GetStdHandle
ExitProcess
GetModuleHandleExW
GetACP
HeapFree
HeapAlloc
GetFileType
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapReAlloc
user32
UnregisterDeviceNotification
CharNextW
RegisterDeviceNotificationW
MessageBoxW
CharUpperW
advapi32
RegQueryValueExA
RegSetValueExA
RegOpenKeyExW
RegQueryValueExW
DeregisterEventSource
RegisterServiceCtrlHandlerExW
SetSecurityDescriptorDacl
CreateServiceW
RegCloseKey
QueryServiceStatus
CloseServiceHandle
OpenSCManagerW
SetServiceStatus
SetEntriesInAclW
RegCreateKeyExW
DeleteService
ControlService
RegSetValueExW
InitializeSecurityDescriptor
StartServiceCtrlDispatcherW
ChangeServiceConfigW
OpenServiceW
RegisterEventSourceW
ReportEventW
ole32
CLSIDFromString
Sections
.text Size: 246KB - Virtual size: 246KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 101KB - Virtual size: 101KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 148B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 92KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ