d6b43fff0e89890d80e1c401060ab938_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d6b43fff0e89890d80e1c401060ab938_JaffaCakes118
Size

4.7MB
MD5

d6b43fff0e89890d80e1c401060ab938
SHA1

52d23e7e5c978211353cacb341e8893ae4419be4
SHA256

ecbd92b019d5d97642bb739f6503eb9ccbf48d825d966052a8b69137f2afc0e4
SHA512

89d9c9cefe21712fd6fd8069701a018f4316352f815bc565083dadb78ede0af411a38b9046d74fda3b54f3a8eb9bb1353c2cf9b1d3f0524b10f0242de5f1ce61
SSDEEP

98304:1yXc/N4U7iADLTlB3+5kIkNyOF6UJLmFG8Gq+mlu/FTPbSPZjygEVK3+:1Kc/vOADLT/3++IMysmFGeY/9wZjyTT

Score

3^/10

Malware Config

Signatures

Unsigned PE 10 IoCs

Checks for missing Authenticode signature.

resource
d6b43fff0e89890d80e1c401060ab938_JaffaCakes118
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/$PLUGINSDIR/LangDLL.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/Check.exe
unpack001/flvdownloader.exe
unpack001/pqcap.dll
unpack001/pqdvdb.dll
unpack001/uninst.exe
unpack002/$PLUGINSDIR/LangDLL.dll

NSIS installer 2 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
static1/unpack001/uninst.exe	nsis_installer_1

Files

d6b43fff0e89890d80e1c401060ab938_JaffaCakes118
.exe windows:4 windows x86 arch:x86

18bc6fa81e19f21156316b1ae696ed6b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
lstrcmpiA
ExitProcess
GetCommandLineA
GetWindowsDirectoryA
GetTempPathA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
CopyFileA

user32

ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
EndDialog
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
RegisterClassA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
MultiByteToWideChar
GlobalAlloc

user32

GetDlgCtrlID
GetClientRect
SetWindowRgn
MapWindowPoints
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
PtInRect
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
LoadIconA

gdi32

SetTextColor
GetObjectA
SelectObject
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
CreateCompatibleDC

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 954B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/LangDLL.dll
.dll windows:4 windows x86 arch:x86

2db813254ea8b4d2a92d703ecb659f39

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
lstrcpynA
lstrcmpA
lstrlenA
GetModuleHandleA
MulDiv
lstrcpyA
GlobalAlloc

user32

SetWindowTextA
SetDlgItemTextA
SendDlgItemMessageA
EndDialog
DialogBoxParamA
LoadIconA
SendMessageA
ShowWindow
GetDC

gdi32

CreateFontIndirectA
GetDeviceCaps
DeleteObject

Exports

Exports

LangDialog

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 681B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 254B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
GetLastError
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 494B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-wizard.bmp
Check.exe
.exe windows:4 windows x86 arch:x86

3b3376beefc3a7d5ede3a79c844e15a0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

pqdvdb

ord2

advapi32

RegCloseKey
RegCreateKeyA
RegOpenKeyExA
RegQueryValueA
RegQueryValueExA
RegSetValueA

kernel32

CloseHandle
CompareStringA
CreateEventA
CreateFileA
CreateMutexA
CreateThread
DebugBreak
DeleteCriticalSection
DeleteFileA
DeleteFileW
EnterCriticalSection
EnumCalendarInfoA
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindCloseChangeNotification
FindFirstChangeNotificationA
FindFirstFileA
FindNextChangeNotification
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetComputerNameA
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceA
GetEnvironmentStrings
GetExitCodeThread
GetFileAttributesA
GetFileSize
GetFileType
GetLastError
GetLocalTime
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetProfileStringA
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeExA
GetStringTypeW
GetSystemDefaultLangID
GetSystemInfo
GetSystemTime
GetThreadLocale
GetTickCount
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetVersionExA
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalFree
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsValidLocale
LCMapStringA
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalAlloc
LocalFree
LockResource
MulDiv
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadFile
ReleaseMutex
ResetEvent
ResumeThread
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetEndOfFile
SetErrorMode
SetEvent
SetFilePointer
SetHandleCount
SetLastError
SetThreadLocale
SizeofResource
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile
lstrcmpA
lstrcpyA
lstrcpynA
lstrlenA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winspool.drv

ClosePrinter
DocumentPropertiesA
EnumPrintersA
OpenPrinterA

comctl32

ImageList_Add
ImageList_BeginDrag
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_Draw
ImageList_DrawEx
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Read
ImageList_Remove
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_Write
ord17

gdi32

BitBlt
CloseEnhMetaFile
CombineRgn
CopyEnhMetaFileA
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBSection
CreateDIBitmap
CreateEnhMetaFileA
CreateFontIndirectA
CreateHalftonePalette
CreateICA
CreatePalette
CreatePenIndirect
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile
DeleteObject
Ellipse
EndDoc
EndPage
EnumFontFamiliesA
ExcludeClipRect
ExtCreatePen
ExtCreateRegion
ExtTextOutA
GdiFlush
GetBitmapBits
GetBrushOrgEx
GetClipBox
GetCurrentObject
GetCurrentPositionEx
GetDCOrgEx
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetEnhMetaFileBits
GetEnhMetaFileDescriptionA
GetEnhMetaFileHeader
GetEnhMetaFilePaletteEntries
GetObjectA
GetPaletteEntries
GetPixel
GetRgnBox
GetStockObject
GetSystemPaletteEntries
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextExtentPointA
GetTextMetricsA
GetWinMetaFileBits
GetWindowOrgEx
IntersectClipRect
LPtoDP
LineTo
MaskBlt
MoveToEx
OffsetRgn
PatBlt
PlayEnhMetaFile
PolyPolyline
Polygon
Polyline
PtInRegion
RealizePalette
RectVisible
Rectangle
RestoreDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetAbortProc
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBColorTable
SetEnhMetaFileBits
SetMapMode
SetPixel
SetROP2
SetStretchBltMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWinMetaFileBits
SetWindowExtEx
SetWindowOrgEx
StartDocA
StartPage
StretchBlt
UnrealizeObject

shell32

SHGetDesktopFolder
SHGetFileInfoA
SHGetMalloc
SHGetSpecialFolderLocation
ShellExecuteA
ShellExecuteExA
Shell_NotifyIconA

user32

ActivateKeyboardLayout
AdjustWindowRectEx
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcA
CharLowerA
CharLowerBuffA
CharNextA
CharUpperBuffA
CheckMenuItem
ChildWindowFromPoint
ClientToScreen
CloseClipboard
CopyImage
CreateCaret
CreateIcon
CreateMenu
CreatePopupMenu
CreateWindowExA
DefFrameProcA
DefMDIChildProcA
DefWindowProcA
DeferWindowPos
DeleteMenu
DestroyCaret
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DispatchMessageA
DrawEdge
DrawFocusRect
DrawFrameControl
DrawIcon
DrawIconEx
DrawMenuBar
DrawTextA
DrawTextW
EmptyClipboard
EnableMenuItem
EnableScrollBar
EnableWindow
EndDeferWindowPos
EndPaint
EnumClipboardFormats
EnumThreadWindows
EnumWindows
EqualRect
FillRect
FindWindowA
FindWindowExA
FrameRect
GetActiveWindow
GetCapture
GetCaretPos
GetClassInfoA
GetClassNameA
GetClientRect
GetClipboardData
GetCursor
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyNameTextA
GetKeyState
GetKeyboardLayout
GetKeyboardLayoutList
GetKeyboardState
GetKeyboardType
GetLastActivePopup
GetMenu
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetMenuStringA
GetMessageA
GetMessagePos
GetMessageTime
GetParent
GetPropA
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSystemMenu
GetSystemMetrics
GetTopWindow
GetUpdateRect
GetWindow
GetWindowDC
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindowRgn
GetWindowTextA
GetWindowThreadProcessId
HideCaret
InflateRect
InsertMenuA
InsertMenuItemA
IntersectRect
InvalidateRect
IsCharAlphaA
IsCharAlphaNumericA
IsChild
IsClipboardFormatAvailable
IsDialogMessageA
IsIconic
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadKeyboardLayoutA
LoadStringA
MapVirtualKeyA
MapWindowPoints
MessageBeep
MessageBoxA
MsgWaitForMultipleObjects
OemToCharA
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PtInRect
RedrawWindow
RegisterClassA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
ScrollWindowEx
SendMessageA
SetActiveWindow
SetCapture
SetCaretPos
SetClassLongA
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetKeyboardState
SetMenu
SetMenuItemInfoA
SetParent
SetPropA
SetRect
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowLongA
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowsHookExA
ShowCaret
ShowCursor
ShowOwnedPopups
ShowScrollBar
ShowWindow
SystemParametersInfoA
TrackPopupMenu
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UpdateWindow
ValidateRect
WaitMessage
WinHelpA
WindowFromPoint
wsprintfA
GetSysColor

winmm

sndPlaySoundA

imm32

ImmGetCompositionStringW
ImmGetContext
ImmReleaseContext
ImmSetCompositionFontA
ImmSetCompositionWindow

ole32

CoCreateInstance
CoGetClassObject
CoInitialize
CoInitializeEx
CoTaskMemFree
CoUninitialize
CreateStreamOnHGlobal
IsAccelerator
IsEqualGUID
OleDraw
OleInitialize
OleSetMenuDescriptor
OleUninitialize
ProgIDFromCLSID
StringFromCLSID

oleaut32

GetActiveObject
GetErrorInfo
SafeArrayCreate
SafeArrayGetElement
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayRedim
SysAllocString
SysAllocStringLen
SysFreeString
SysReAllocStringLen
VarBoolFromStr
VarBstrFromBool
VarBstrFromCy
VarBstrFromDate
VarCyFromStr
VarDateFromStr
VarI4FromStr
VarNeg
VarNot
VarR8FromStr
VariantChangeType
VariantChangeTypeEx
VariantClear
VariantCopy
VariantCopyInd
VariantInit

Exports

Exports

@$xp$12PExtraSearch
@$xp$13IShellFolder2
@$xp$14PROPERTYORIGIN
@$xp$14tagExtraSearch
@$xp$15Te_wave@TTeWave
@$xp$16IEnumExtraSearch
@$xp$16Te_forms@TTeForm
@$xp$16Te_forms@TTeHook
@$xp$16Te_forms@TTeItem
@$xp$17Te_forms@TTeForm2
@$xp$17Te_theme@TteTheme
@$xp$18Te_bitmap@TteColor
@$xp$18Te_effect@TteTimer
@$xp$18Te_forms@PColorRec
@$xp$18Te_forms@TColorRec
@$xp$18Te_forms@TTeShadow
@$xp$19Te_bitmap@TteBitmap
@$xp$19Te_controls@TTeEdit
@$xp$19Te_controls@TTeHint
@$xp$19Te_controls@TTeMemo
@$xp$19Te_extctrls@TTabRow
@$xp$19Te_extctrls@TTePage
@$xp$19Te_extctrls@TTeRoot
@$xp$19Te_forms@TTeControl
@$xp$19Te_forms@TTeMenuBar
@$xp$19Te_theme@TktlMargin
@$xp$19Te_theme@TteBarInfo
@$xp$19Te_theme@TteBoxInfo
@$xp$19Te_theme@TteTabInfo
@$xp$19Te_wave@TTeWaveList
@$xp$20Te_compress@z_stream
@$xp$20Te_controls@TTeFrame
@$xp$20Te_controls@TTeLabel
@$xp$20Te_controls@TTePanel
@$xp$20Te_controls@TTeQueue
@$xp$20Te_controls@TTeStack
@$xp$20Te_controls@TTeTimer
@$xp$20Te_extctrls@TPercent
@$xp$20Te_extctrls@TRowSize
@$xp$20Te_extctrls@TTabRows
@$xp$20Te_extctrls@TTeSEdit
@$xp$20Te_forms@TTeBevelCut
@$xp$20Te_forms@TTeBlending
@$xp$20Te_forms@TTeDragging
@$xp$20Te_forms@TTeItemView
@$xp$20Te_forms@TTeMDIChild
@$xp$20Te_theme@TteDockInfo
@$xp$20Te_theme@TteEditInfo
@$xp$20Te_theme@TteGridInfo
@$xp$20Te_theme@TteHintInfo
@$xp$20Te_theme@TteListInfo
@$xp$20Te_theme@TteMemoInfo
@$xp$20Te_theme@TteMenuInfo
@$xp$20Te_theme@TteTextInfo
@$xp$20Te_theme@TteToolInfo
@$xp$20Te_theme@TteTreeInfo
@$xp$20Te_theme@te_theme__1
@$xp$20Te_theme@te_theme__3
@$xp$20Te_theme@te_theme__5
@$xp$20Te_theme@te_theme__9
@$xp$21Te_bitmap@PteColorRec
@$xp$21Te_bitmap@TteColorRec
@$xp$21Te_compress@free_func
@$xp$21Te_compress@z_streamp
@$xp$21Te_controls@TTeButton
@$xp$21Te_effect@TteProcItem
@$xp$21Te_effect@TteProcKind
@$xp$21Te_effect@TteProcList
@$xp$21Te_effect@TteRotation
@$xp$21Te_extctrls@TTeIPEdit
@$xp$21Te_forms@EKsItemError
@$xp$21Te_forms@TTeAnimation
@$xp$21Te_forms@TTeBevelKind
@$xp$21Te_forms@TTeBevelSide
@$xp$21Te_forms@TTeDirection
@$xp$21Te_forms@TTeItemClass
@$xp$21Te_forms@TTePopupForm
@$xp$21Te_forms@TTePopupMenu
@$xp$21Te_forms@TTePopupView
@$xp$21Te_theme@TktlMarginId
@$xp$21Te_theme@TteCheckInfo
@$xp$21Te_theme@TteGlyphInfo
@$xp$21Te_theme@TteGroupInfo
@$xp$21Te_theme@TteLabelInfo
@$xp$21Te_theme@TteListGlyph
@$xp$21Te_theme@TteMenuGlyph
@$xp$21Te_theme@TtePanelInfo
@$xp$21Te_theme@TteTextAlign
@$xp$21Te_theme@TteTextStyle
@$xp$21Te_theme@TteThemeFont
@$xp$21Te_theme@TteToolGlyph
@$xp$21Te_theme@TteTrackInfo
@$xp$21Theme_se3@TTeSkinFile
@$xp$22Te_compress@EZlibError
@$xp$22Te_compress@alloc_func
@$xp$22Te_compress@check_func
@$xp$22Te_controls@TGlyphKind
@$xp$22Te_controls@TTeListBox
@$xp$22Te_controls@TTeMessage
@$xp$22Te_engine@TTeThemeLink
@$xp$22Te_engine@TTeThemeList
@$xp$22Te_extctrls@TRollEvent
@$xp$22Te_extctrls@TTeToolBar
@$xp$22Te_forms@TTeBevelSides
@$xp$22Te_forms@TTeBorderIcon
@$xp$22Te_forms@TTeScrollCode
@$xp$22Te_theme@TteButtonInfo
@$xp$22Te_theme@TteGlyphAlign
@$xp$22Te_theme@TteHeaderInfo
@$xp$22Te_theme@TteScrollInfo
@$xp$22Te_theme@TteStatusInfo
@$xp$22Te_theme@TteTextStyles
@$xp$22Te_theme@TteThemeClass
@$xp$22Te_theme@TteThemeColor
@$xp$22Te_theme@TteThemeFonts
@$xp$22Te_theme@TteWindowInfo
@$xp$22Theme_se3@theme_se3__2
@$xp$23Te_bitmap@PteColorArray
@$xp$23Te_bitmap@TteBitmapLink
@$xp$23Te_bitmap@TteBitmapList
@$xp$23Te_bitmap@TteColorArray
@$xp$23Te_controls@PEditAction
@$xp$23Te_controls@TActionType
@$xp$23Te_controls@TEditAction
@$xp$23Te_controls@TTeCheckBox
@$xp$23Te_controls@TTeComboBox
@$xp$23Te_controls@TTeDrawGrid
@$xp$23Te_controls@TTeFontType
@$xp$23Te_controls@TTeGroupBox
@$xp$23Te_controls@TTeListView
@$xp$23Te_controls@TTeRichEdit
@$xp$23Te_controls@TTeSpinEdit
@$xp$23Te_controls@TTeSplitter
@$xp$23Te_controls@TTeTreeView
@$xp$23Te_extctrls@TTeGradient
@$xp$23Te_extctrls@TTeMaskEdit
@$xp$23Te_extctrls@TTeNotebook
@$xp$23Te_extctrls@TTePaintBox
@$xp$23Te_extctrls@TTeRangeBar
@$xp$23Te_extctrls@TTeSListBox
@$xp$23Te_extctrls@TTeTabSheet
@$xp$23Te_extctrls@TTeTickMark
@$xp$23Te_extctrls@TTeTrackBar
@$xp$23Te_forms@TTeBorderIcons
@$xp$23Te_forms@TTeBorderStyle
@$xp$23Te_forms@TTeDefaultForm
@$xp$23Te_forms@TTeFontOptions
@$xp$23Te_forms@TTeFormOptions
@$xp$23Te_forms@TTeGravitation
@$xp$23Te_forms@TTeMDIItemKind
@$xp$23Te_forms@TTeMenuBarView
@$xp$23Te_forms@TTePerformance
@$xp$23Te_forms@TTePopupWindow
@$xp$23Te_forms@TTeScrollEvent
@$xp$23Te_forms@TTeWindowState
@$xp$23Te_shlobj@IShellDetails
@$xp$23Te_theme@TteBarDockInfo
@$xp$23Te_theme@TteBarItemInfo
@$xp$23Te_theme@TteBarSubclass
@$xp$23Te_theme@TteBoxSubclass
@$xp$23Te_theme@TteTabItemInfo
@$xp$23Te_theme@TteTabSubclass
@$xp$23Te_theme@TteThemeColors
@$xp$23Te_theme@TteThemeConfig
@$xp$23Te_theme@TteThemeOption
@$xp$23Theme_flat@TTeFlatTheme
@$xp$24Te_bitmap@PteColorRecBor
@$xp$24Te_bitmap@TteColorRecBor
@$xp$24Te_compress@inflate_mode
@$xp$24Te_controls@TTeButtonBar
@$xp$24Te_controls@TTeClassList
@$xp$24Te_controls@TTeLeftRight
@$xp$24Te_controls@TTeScrollBar
@$xp$24Te_controls@TTeScrollBox
@$xp$24Te_controls@TTeSpinAlign
@$xp$24Te_effect@EProcItemError
@$xp$24Te_engine@TTeThemeEngine
@$xp$24Te_engine@TTeThemeStream
@$xp$24Te_extctrls@EInvalidPath
@$xp$24Te_extctrls@PCountryInfo
@$xp$24Te_extctrls@TCountryInfo
@$xp$24Te_extctrls@TTeSComboBox
@$xp$24Te_extctrls@TTeSTabSheet
@$xp$24Te_extctrls@TTeStatusBar
@$xp$24Te_forms@TTeDefaultForm2
@$xp$24Te_forms@TTeFormDragMode
@$xp$24Te_theme@TktThemeVersion
@$xp$24Te_theme@TteBarItemClass
@$xp$24Te_theme@TteBoxDrawState
@$xp$24Te_theme@TteDockSubclass
@$xp$24Te_theme@TteEditSubclass
@$xp$24Te_theme@TteGridItemInfo
@$xp$24Te_theme@TteGridSubclass
@$xp$24Te_theme@TteHintSubclass
@$xp$24Te_theme@TteListItemInfo
@$xp$24Te_theme@TteListSubclass
@$xp$24Te_theme@TteMemoSubclass
@$xp$24Te_theme@TteMenuItemInfo
@$xp$24Te_theme@TteMenuSubclass
@$xp$24Te_theme@TteProgressInfo
@$xp$24Te_theme@TteProgressPart
@$xp$24Te_theme@TteSectionState
@$xp$24Te_theme@TteSplitterInfo
@$xp$24Te_theme@TteTabItemClass
@$xp$24Te_theme@TteThemeDrawing
@$xp$24Te_theme@TteThemeManager
@$xp$24Te_theme@TteThemeMetrics
@$xp$24Te_theme@TteThemeOptions
@$xp$24Te_theme@TteToolItemInfo
@$xp$24Te_theme@TteToolSubclass
@$xp$24Te_theme@TteTrackBarInfo
@$xp$24Te_theme@TteTreeItemInfo
@$xp$24Te_theme@TteTreeSubclass
@$xp$24Te_utils@TteUtilsVersion
@$xp$24Theme_se3objects@TSeKind
@$xp$25Te_bitmap@TArrayOfteColor
@$xp$25Te_controls@TEditCharCase
@$xp$25Te_controls@TOnEraseBkgnd
@$xp$25Te_controls@TPasswordKind
@$xp$25Te_controls@TTeChevronPos
@$xp$25Te_controls@TTeClickCheck
@$xp$25Te_controls@TTeComboStyle
@$xp$25Te_controls@TTeEditButton
@$xp$25Te_controls@TTeFontDevice
@$xp$25Te_controls@TTeObjectList
@$xp$25Te_controls@TTeOutlookBar
@$xp$25Te_controls@TTeRadioGroup
@$xp$25Te_controls@TTeSpeedSpace
@$xp$25Te_controls@TTeSpinButton
@$xp$25Te_controls@TTeStringGrid
@$xp$25Te_controls@TTeTransPanel
@$xp$25Te_effect@TteAnimationRec
@$xp$25Te_engine@TTeThemePreview
@$xp$25Te_extctrls@TDrawTabEvent
@$xp$25Te_extctrls@TNotifyFilter
@$xp$25Te_extctrls@TTeComboBoxEx
@$xp$25Te_extctrls@TTeControlBar
@$xp$25Te_extctrls@TTeRootFolder
@$xp$25Te_extctrls@TTeTabControl
@$xp$25Te_forms@TPaintBackground
@$xp$25Te_theme@TteBarButtonInfo
@$xp$25Te_theme@TteCheckSubclass
@$xp$25Te_theme@TteEditDrawState
@$xp$25Te_theme@TteGridItemClass
@$xp$25Te_theme@TteGroupSubclass
@$xp$25Te_theme@TteLabelSubclass
@$xp$25Te_theme@TteListGlyphInfo
@$xp$25Te_theme@TteMemoDrawState
@$xp$25Te_theme@TteMenuGlyphInfo
@$xp$25Te_theme@TteMenuItemClass
@$xp$25Te_theme@TtePanelSubclass
@$xp$25Te_theme@TteTabButtonInfo
@$xp$25Te_theme@TteToolGlyphInfo
@$xp$25Te_theme@TteToolItemClass
@$xp$25Te_theme@TteTrackBarClass
@$xp$25Te_theme@TteTrackSubclass
@$xp$25Te_theme@TteWindowButtons
@$xp$25Te_theme@TteWindowHitTest
@$xp$25Te_utils@TTokenSeparators
@$xp$25Theme_se3objects@TSeAlign
@$xp$25Theme_se3objects@TSeState
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Te_bitmap@PteColorRecArray
@$xp$26Te_bitmap@TteColorRecArray
@$xp$26Te_compress@internal_state
@$xp$26Te_compress@te_compress__1
@$xp$26Te_compress@te_compress__2
@$xp$26Te_compress@te_compress__3
@$xp$26Te_compress@te_compress__4
@$xp$26Te_compress@te_compress__5
@$xp$26Te_compress@te_compress__6
@$xp$26Te_compress@te_compress__7
@$xp$26Te_compress@te_compress__8
@$xp$26Te_controls@TTeButtonAlign
@$xp$26Te_controls@TTeExplorerBar
@$xp$26Te_controls@TTeObjectQueue
@$xp$26Te_controls@TTeObjectStack
@$xp$26Te_controls@TTeOrderedList
@$xp$26Te_controls@TTeRadioButton
@$xp$26Te_controls@TTeSpeedButton
@$xp$26Te_extctrls@TBandDragEvent
@$xp$26Te_extctrls@TBandInfoEvent
@$xp$26Te_extctrls@TBandMoveEvent
@$xp$26Te_extctrls@TNotifyFilters
@$xp$26Te_extctrls@TTeCustomCombo
@$xp$26Te_extctrls@TTeGradientBox
@$xp$26Te_extctrls@TTeHeaderPanel
@$xp$26Te_extctrls@TTePageControl
@$xp$26Te_extctrls@TTePenStyleBox
@$xp$26Te_extctrls@TTePenWidthBox
@$xp$26Te_extctrls@TTeProgressBar
@$xp$26Te_extctrls@TTeSTabControl
@$xp$26Te_extctrls@TTeShellFolder
@$xp$26Te_extctrls@TTeStatusPanel
@$xp$26Te_extctrls@TTeTabPosition
@$xp$26Te_forms@THookMessageEvent
@$xp$26Te_forms@TTeCustomMDIChild
@$xp$26Te_forms@TTeGraphicControl
@$xp$26Te_forms@TTeInsertItemProc
@$xp$26Te_forms@TTeItemActionLink
@$xp$26Te_forms@TTePopupFormClass
@$xp$26Te_theme@TteBarButtonClass
@$xp$26Te_theme@TteBarCaptionInfo
@$xp$26Te_theme@TteButtonSubclass
@$xp$26Te_theme@TteCheckDrawState
@$xp$26Te_theme@TteEditButtonInfo
@$xp$26Te_theme@TteGroupDrawState
@$xp$26Te_theme@TteHeaderSubclass
@$xp$26Te_theme@TteLabelDrawState
@$xp$26Te_theme@TteListColumnInfo
@$xp$26Te_theme@TteMemoGutterInfo
@$xp$26Te_theme@TteScrollAreaInfo
@$xp$26Te_theme@TteScrollSubclass
@$xp$26Te_theme@TteStatusSubclass
@$xp$26Te_theme@TteTabButtonClass
@$xp$26Te_theme@TteThemeSysColors
@$xp$26Te_theme@TteTrackThumbInfo
@$xp$26Te_theme@TteWindowSubclass
@$xp$26Theme_se3@TTeSkinFileClass
@$xp$26Theme_se3objects@TSeAction
@$xp$27Te_compress@pInternal_state
@$xp$27Te_controls@TTeListBoxStyle
@$xp$27Te_controls@TTeScrollBarInc
@$xp$27Te_controls@TTeSpeedDivider
@$xp$27Te_controls@TTeSubScrollBar
@$xp$27Te_controls@te_controls__31
@$xp$27Te_controls@te_controls__41
@$xp$27Te_controls@te_controls__51
@$xp$27Te_extctrls@TAddFolderEvent
@$xp$27Te_extctrls@TBandPaintEvent
@$xp$27Te_extctrls@TDrawPanelEvent
@$xp$27Te_extctrls@TTeGradientList
@$xp$27Te_extctrls@TTePenStyleList
@$xp$27Te_extctrls@TTePenWidthList
@$xp$27Te_extctrls@TTeSPageControl
@$xp$27Te_extctrls@TTeStatusPanels
@$xp$27Te_extctrls@TTeThemePreview
@$xp$27Te_extctrls@te_extctrls__15
@$xp$27Te_forms@TTeFormActionEvent
@$xp$27Te_forms@TTeFormPerformance
@$xp$27Te_forms@TTeGravitationKind
@$xp$27Te_forms@TTeViewOrientation
@$xp$27Te_theme@TteBarDockSubclass
@$xp$27Te_theme@TteButtonDrawState
@$xp$27Te_theme@TteCustomThemeLink
@$xp$27Te_theme@TteEditButtonClass
@$xp$27Te_theme@TtePanelButtonInfo
@$xp$27Te_theme@TteScrollAreaClass
@$xp$27Te_theme@TteStatusPanelInfo
@$xp$27Te_theme@TteTextOrientation
@$xp$27Te_theme@TteToolButtonClass
@$xp$27Te_theme@TteTrackThumbClass
@$xp$27Te_theme@TteWindowDrawState
@$xp$27Theme_msux@TTeThemeMsStyles
@$xp$27Theme_msuxtypes@TmsuxBgType
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Te_controls@TEditActionStack
@$xp$28Te_controls@TTeChangingEvent
@$xp$28Te_controls@TTeCheckBoxState
@$xp$28Te_controls@TTeCommonVersion
@$xp$28Te_controls@TTeComponentList
@$xp$28Te_controls@TTeDrawItemEvent
@$xp$28Te_controls@TTeSpinValueType
@$xp$28Te_engine@TTeThemeCollection
@$xp$28Te_extctrls@PLineCountryList
@$xp$28Te_extctrls@TBandPaintOption
@$xp$28Te_extctrls@TLineCountryList
@$xp$28Te_extctrls@TTeAlphaValueBox
@$xp$28Te_extctrls@TTeBrushStyleBox
@$xp$28Te_extctrls@TTeHeaderControl
@$xp$28Te_extctrls@TTeHeaderSection
@$xp$28Te_extctrls@TTeMonthCalendar
@$xp$28Te_extctrls@TTeShellComboBox
@$xp$28Te_extctrls@TTeShellListView
@$xp$28Te_extctrls@TTeShellTreeView
@$xp$28Te_forms@TTeGetItemClassProc
@$xp$28Te_forms@TTeMenuScrollButton
@$xp$28Te_forms@TTePopupMenuOptions
@$xp$28Te_forms@TTePopupWindowClass
@$xp$28Te_theme@TteBarItemDrawState
@$xp$28Te_theme@TtePanelButtonClass
@$xp$28Te_theme@TteProgressSubclass
@$xp$28Te_theme@TteScrollButtonInfo
@$xp$28Te_theme@TteSectionDrawState
@$xp$28Te_theme@TteSplitterSubclass
@$xp$28Te_theme@TteStatusPanelClass
@$xp$28Te_theme@TteTabItemDrawState
@$xp$28Te_theme@TteWindowButtonInfo
@$xp$28Te_theme@TteWindowDrawStates
@$xp$28Theme_flat@TTeFlatThemeClass
@$xp$28Theme_se3objects@TSeRollKind
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Te_compress@ECompressionError
@$xp$29Te_compress@TCompressionLevel
@$xp$29Te_compress@TCustomZlibStream
@$xp$29Te_controls@TTeCustomListView
@$xp$29Te_controls@TTeCustomTreeView
@$xp$29Te_controls@TTeScrollingLabel
@$xp$29Te_controls@TTeSpeedContainer
@$xp$29Te_extctrls@IShellCommandVerb
@$xp$29Te_extctrls@PLineCountryEntry
@$xp$29Te_extctrls@TBandPaintOptions
@$xp$29Te_extctrls@TDrawSectionEvent
@$xp$29Te_extctrls@TLineCountryEntry
@$xp$29Te_extctrls@TPanelNotifyEvent
@$xp$29Te_extctrls@TSectionDragEvent
@$xp$29Te_extctrls@TTabChangingEvent
@$xp$29Te_extctrls@TTeAlphaValueList
@$xp$29Te_extctrls@TTeBrushStyleList
@$xp$29Te_extctrls@TTeComboBoxExItem
@$xp$29Te_extctrls@TTeCountryListBox
@$xp$29Te_extctrls@TTeDateTimePicker
@$xp$29Te_extctrls@TTeHeaderSections
@$xp$29Te_forms@PEraseBackgroundInfo
@$xp$29Te_forms@TEraseBackgroundInfo
@$xp$29Te_theme@TteGridItemDrawState
@$xp$29Te_theme@TteHeaderSectionInfo
@$xp$29Te_theme@TteListItemDrawState
@$xp$29Te_theme@TteMenuItemDrawState
@$xp$29Te_theme@TteProgressDrawState
@$xp$29Te_theme@TteScrollButtonClass
@$xp$29Te_theme@TteToolItemDrawState
@$xp$29Te_theme@TteTrackBarDrawState
@$xp$29Te_theme@TteTreeItemDrawState
@$xp$29Te_theme@TteWindowButtonClass
@$xp$29Te_theme@TteWindowGripperInfo
@$xp$29Theme_se3objects@TSeTextAlign
@$xp$29Theme_se3objects@TscTileStyle
@$xp$30Te_compress@TCompressionStream
@$xp$30Te_compress@inflate_block_mode
@$xp$30Te_compress@inflate_codes_mode
@$xp$30Te_controls@TTeButtonBarScroll
@$xp$30Te_controls@TTeOutlookBarPanel
@$xp$30Te_extctrls@TSectionTrackEvent
@$xp$30Te_extctrls@TSectionTrackState
@$xp$30Te_extctrls@TTeComboBoxExItems
@$xp$30Te_extctrls@TTeComboBoxExStyle
@$xp$30Te_extctrls@TTeCountryComboBox
@$xp$30Te_extctrls@TTeListControlItem
@$xp$30Te_extctrls@TTePanelButtonKind
@$xp$30Te_extctrls@TTeShellObjectType
@$xp$30Te_forms@TTeDefaultMenuOptions
@$xp$30Te_theme@TteBarButtonDrawState
@$xp$30Te_theme@TteSplitterButtonInfo
@$xp$30Te_theme@TteTabButtonDrawState
@$xp$30Theme_msuxtypes@TmsuxAlignment
@$xp$30Theme_msuxtypes@TmsuxGlyphType
@$xp$30Theme_msuxtypes@TmsuxTileStyle
@$xp$30Theme_se3objects@TSeSkinFilter
@$xp$30Theme_se3objects@TSeSkinObject
@$xp$30Theme_se3objects@TSeSkinSource
@$xp$30Theme_se3objects@TSeTextEffect
@$xp$30Theme_se3objects@TSeTextObject
@$xp$30Theme_se3objects@TTeFilterSign
@$xp$31Te_compress@EDecompressionError
@$xp$31Te_compress@inflate_codes_state
@$xp$31Te_controls@TTeComboButtonAlign
@$xp$31Te_controls@TTeInplaceScrollBar
@$xp$31Te_controls@TTeMeasureItemEvent
@$xp$31Te_controls@TTeOutlookBarButton
@$xp$31Te_controls@TTeSpeedButtonState
@$xp$31Te_extctrls@TGetImageIndexEvent
@$xp$31Te_extctrls@TSectionNotifyEvent
@$xp$31Te_extctrls@TTeComboBoxExStyles
@$xp$31Te_extctrls@TTeCustomComboBoxEx
@$xp$31Te_extctrls@TTeListCompareEvent
@$xp$31Te_extctrls@TTeListControlItems
@$xp$31Te_extctrls@TTeListItemsCompare
@$xp$31Te_extctrls@TTeShellObjectTypes
@$xp$31Te_extctrls@TTeStatusPanelClass
@$xp$31Te_extctrls@TTeStatusPanelstyle
@$xp$31Te_extctrls@TTeTrackOrientation
@$xp$31Te_forms@TTeItemActionLinkClass
@$xp$31Te_theme@TteBarCaptionDrawState
@$xp$31Te_theme@TteEditButtonDrawState
@$xp$31Te_theme@TteScrollAreaDrawState
@$xp$31Te_theme@TteSplitterButtonClass
@$xp$31Te_theme@TteTrackThumbDrawState
@$xp$31Theme_msuxobjects@TUxMarginType
@$xp$31Theme_msuxtypes@TmsuxTextShadow
@$xp$31Theme_officexp@TTeOfficeXPTheme
@$xp$31Theme_se3objects@TSeButtonState
@$xp$32Shdocvw_tlb@TCppCScriptErrorList
@$xp$32Shdocvw_tlb@TCppCScriptErrorList
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Te_compress@TDecompressionStream
@$xp$32Te_compress@inflate_blocks_state
@$xp$32Te_compress@pInflate_codes_state
@$xp$32Te_controls@TTeScrollOrientation
@$xp$32Te_extctrls@TTeComboBoxExStrings
@$xp$32Te_extctrls@TTeComboBoxExStyleEx
@$xp$32Te_extctrls@TTeCustomListControl
@$xp$32Te_extctrls@TTeHeaderGliphLayout
@$xp$32Te_extctrls@TTeListItemsSortType

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 376KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 107KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
flvdownloader.exe
.exe windows:4 windows x86 arch:x86

73ec795c6c369c6ce2c3b4c3f6477daa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcatA
InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
DuplicateHandle
GetShortPathNameA
ResumeThread
WriteProcessMemory
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: 188KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

1
Size: 36KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

2
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

4
Size: 48KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
license.txt
pqcap.dll
.dll windows:4 windows x86 arch:x86

6e3a9a8d8e08a7b033f285b52283ea0f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\code\svn\old\ieplug\HOOKAPI\fundll\release\pqcap.pdb

Imports

ws2_32

WSARecv
WSASend
shutdown
recv
closesocket
send

kernel32

MapViewOfFile
UnmapViewOfFile
WaitForSingleObject
GetLastError
CreateFileMappingA
ReleaseMutex
CloseHandle
CreateFileA
WriteFile
Sleep
ReadFile
FlushFileBuffers
LocalFree
SetLastError
GetStringTypeExA
GetModuleHandleA
OutputDebugStringA
OpenMutexA
CreateMutexA
CreateThread
VirtualProtect
FlushInstructionCache
GetCurrentProcess
GetProcAddress
LoadLibraryA
FreeLibrary
VirtualQuery
WideCharToMultiByte
SetEndOfFile
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
InterlockedCompareExchange
GetModuleFileNameA
IsDebuggerPresent
HeapFree
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
RtlUnwind
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
HeapReAlloc
GetStdHandle
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
InterlockedDecrement
HeapSize
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
GetConsoleCP
GetConsoleMode
MultiByteToWideChar
InterlockedExchange
InitializeCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoA
GetUserDefaultLCID

user32

CallNextHookEx
SetWindowsHookExA
UnhookWindowsHookEx
LoadStringA

advapi32

SetSecurityInfo
ConvertStringSecurityDescriptorToSecurityDescriptorW
SetNamedSecurityInfoA
GetSecurityDescriptorSacl

Exports

Exports

_SetHook@12

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

shared
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pqcap.dll.txt
pqdvdb.dll
.dll windows:4 windows x86 arch:x86

7920c937d58fca658e8c297f585aeefe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TlsSetValue
LocalReAlloc
TlsFree
lstrcmpA
GlobalFlags
GetCurrentThreadId
lstrcmpW
lstrcatA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCPInfo
GetOEMCP
TlsAlloc
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
GetCurrentProcess
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
ExitProcess
GetCommandLineA
GetFileType
HeapReAlloc
HeapSize
TerminateProcess
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
SetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
InterlockedDecrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
SetLastError
GlobalFree
FindResourceA
LoadResource
LockResource
SizeofResource
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
CreateEventA
WaitForSingleObject
SetEvent
LoadLibraryA
GetProcAddress
FreeLibrary
lstrcpyA
CreateFileA
CloseHandle
GetModuleHandleA
GetModuleFileNameA
DeviceIoControl
lstrlenA
lstrcmpiA
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
DeleteFileA
InterlockedExchange

user32

LoadBitmapA
GetMenuCheckMarkDimensions
CheckMenuItem
EnableMenuItem
ModifyMenuA
SetMenuItemBitmaps
DestroyMenu
PostQuitMessage
GetForegroundWindow
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
SetForegroundWindow
GetMenu
PostMessageA
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
GetWindowPlacement
SetWindowsHookExA
CallNextHookEx
RegisterWindowMessageA
ValidateRect
CopyRect
GetWindow
GetWindowRect
PtInRect
GetClassNameA
GetWindowTextA
GetFocus
SetWindowPos
SetWindowLongA
SetWindowTextA
GetDlgItem
SendMessageA
GetParent
GetWindowLongA
MessageBoxA
GetMessageA
GetLastActivePopup
IsWindowEnabled
EnableWindow
UnhookWindowsHookEx
LoadCursorA
GetSystemMetrics
GetSysColorBrush
UnregisterClassA
GetSysColor
WinHelpA
GetCapture
CreateWindowExA
DispatchMessageA
TranslateMessage
PeekMessageA
ReleaseDC
GetClientRect
GetDC
IsIconic
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
GetKeyState
RemovePropA
GetSubMenu
GetMenuItemCount
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetMenuState
GetMenuItemID
GetDlgCtrlID

gdi32

SaveDC
RestoreDC
SetBkColor
GetStockObject
SetTextColor
SetMapMode
GetClipBox
CreateBitmap
SelectObject
DeleteObject
DeleteDC
ScaleWindowExtEx
GetDeviceCaps
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
SetWindowExtEx

comctl32

ord17

oleacc

LresultFromObject
CreateStdAccessibleObject

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

oleaut32

VariantClear
VariantChangeType
VariantInit

Exports

Exports

_x_ghci
_x_ghci_2

Sections

.text
Size: 448KB - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninst.exe
.exe windows:4 windows x86 arch:x86

18bc6fa81e19f21156316b1ae696ed6b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
lstrcmpiA
ExitProcess
GetCommandLineA
GetWindowsDirectoryA
GetTempPathA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
CopyFileA

user32

ScreenToClient
GetWindowRect
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
EndDialog
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
RegisterClassA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
TrackPopupMenu
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/LangDLL.dll
.dll windows:4 windows x86 arch:x86

2db813254ea8b4d2a92d703ecb659f39

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
lstrcpynA
lstrcmpA
lstrlenA
GetModuleHandleA
MulDiv
lstrcpyA
GlobalAlloc

user32

SetWindowTextA
SetDlgItemTextA
SendDlgItemMessageA
EndDialog
DialogBoxParamA
LoadIconA
SendMessageA
ShowWindow
GetDC

gdi32

CreateFontIndirectA
GetDeviceCaps
DeleteObject

Exports

Exports

LangDialog

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 681B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 254B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18bc6fa81e19f21156316b1ae696ed6b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 153KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 91KB - Virtual size: 90KB

57354bdeea3dfae6e948101add87501a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 9KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 954B

2db813254ea8b4d2a92d703ecb659f39

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 681B

.data Size: 512B - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 352B

.reloc Size: 512B - Virtual size: 254B

4ec328f99bdd944fc98d8a5cf11f7a62

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 1024B - Virtual size: 784B

.data Size: 512B - Virtual size: 92B

.reloc Size: 512B - Virtual size: 494B

3b3376beefc3a7d5ede3a79c844e15a0

Headers

File Characteristics

Imports

pqdvdb

advapi32

kernel32

version

winspool.drv

comctl32

gdi32

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 153KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 91KB - Virtual size: 90KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 9KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 954B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 681B

.data
Size: 512B - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 352B

.reloc
Size: 512B - Virtual size: 254B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 92B

.reloc
Size: 512B - Virtual size: 494B

.text
Size: 1.7MB - Virtual size: 1.7MB

.data
Size: 62KB - Virtual size: 188KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 13KB - Virtual size: 16KB

.edata
Size: 376KB - Virtual size: 376KB

.rsrc
Size: 128KB - Virtual size: 128KB

.reloc
Size: 107KB - Virtual size: 108KB

0
Size: 188KB - Virtual size: 361KB

1
Size: 36KB - Virtual size: 78KB

2
Size: 4KB - Virtual size: 10KB

3
Size: 96KB - Virtual size: 92KB

4
Size: 48KB - Virtual size: 71KB

5
Size: 4KB - Virtual size: 3KB

6
Size: 8KB - Virtual size: 28KB

.text
Size: 180KB - Virtual size: 179KB

.rdata
Size: 32KB - Virtual size: 30KB

.data
Size: 12KB - Virtual size: 21KB

shared
Size: 4KB - Virtual size: 4B

.rsrc
Size: 4KB - Virtual size: 176B

.reloc
Size: 16KB - Virtual size: 12KB

.text
Size: 448KB - Virtual size: 446KB

.rdata
Size: 48KB - Virtual size: 46KB

.data
Size: 64KB - Virtual size: 2.4MB

.data1
Size: 16KB - Virtual size: 13KB

.reloc
Size: 52KB - Virtual size: 48KB