dfsvc.pdb
Behavioral task
behavioral1
Sample
nitrogen/Language/2.0.0.0__b03f5f7f11d50a3a/dfsvc.exe
Resource
win10-20240404-en
windows10-1703-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
nitrogen/Language/updater.exe
Resource
win10-20240404-en
windows10-1703-x64
0 signatures
150 seconds
Behavioral task
behavioral3
Sample
nitrogen/d3db.dll
Resource
win10-20240404-en
windows10-1703-x64
0 signatures
150 seconds
Behavioral task
behavioral4
Sample
nitrogen/nitrogen.exe
Resource
win10-20240404-en
windows10-1703-x64
6 signatures
150 seconds
Behavioral task
behavioral5
Sample
nitrogen/updater.dll
Resource
win10-20240404-en
windows10-1703-x64
0 signatures
150 seconds
General
-
Target
nitro-sniper.rar
-
Size
25.4MB
-
MD5
60392b7eb38bfffe09c6ddbaf17df657
-
SHA1
b3dd196b615b654945ca3fb5083fd3cee7ff4778
-
SHA256
501854bff3e48f6a8caf2fb63741036133a5ab51e9d83a3a4891dc9f91530221
-
SHA512
de60d3afca5a05340bddd6a1ee802c04415409779e576f40fbf7871dbdce1d724d40cc6f6ceaea6e4c2258e7468a897321d5b9289f01871f5da5d9686c232a58
-
SSDEEP
393216:WJPLo/qTZeyL4f3xmyedj958IQNC7MafqkFIReTWZKlmBVsn2qUB9C:u8EeyMmyPoMaf0Y+C
Score
10/10
Malware Config
Signatures
-
SectopRAT payload 1 IoCs
resource yara_rule static1/unpack001/nitrogen/nitrogen.exe family_sectoprat -
Sectoprat family
-
Unsigned PE 3 IoCs
Checks for missing Authenticode signature.
resource unpack001/nitrogen/Language/2.0.0.0__b03f5f7f11d50a3a/dfsvc.exe unpack001/nitrogen/d3db.dll unpack001/nitrogen/nitrogen.exe
Files
-
nitro-sniper.rar.rar
Password: 2024
-
nitrogen/Language/2.0.0.0__b03f5f7f11d50a3a/dfsvc.exe.exe windows:4 windows x86 arch:x86
Password: 2024
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
nitrogen/Language/updater.exe.exe windows:6 windows x64 arch:x64
Password: 2024
a48c772826ef5fbef5f9d4ddcfb60aea
Code Sign
06:e9:03:cc:ee:6d:b3:0d:2a:4f:91:74:3e:b1:6e:b0Certificate
IssuerCN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=USNot Before05/06/2020, 00:00Not After14/06/2023, 12:00SubjectSERIALNUMBER=HRB72838,CN=Ableton AG,OU=IT OPS,O=Ableton AG,L=Berlin,C=DE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#13064265726c696e,1.3.6.1.4.1.311.60.2.1.2=#13064265726c696e,1.3.6.1.4.1.311.60.2.1.3=#13024445Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5cCertificate
IssuerCN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before18/04/2012, 12:00Not After18/04/2027, 12:00SubjectCN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate
IssuerCN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/01/2021, 00:00Not After06/01/2031, 00:00SubjectCN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before07/01/2016, 12:00Not After07/01/2031, 12:00SubjectCN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
e0:9d:37:96:c1:c3:08:c1:da:8a:55:64:22:1d:55:7e:46:44:10:f6:bd:9a:98:e0:37:72:e5:c8:b3:b8:34:d3Signer
Actual PE Digeste0:9d:37:96:c1:c3:08:c1:da:8a:55:64:22:1d:55:7e:46:44:10:f6:bd:9a:98:e0:37:72:e5:c8:b3:b8:34:d3Digest Algorithmsha256PE Digest MatchesfalseHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
c:\Jenkins\live\output\Live\win_64_static\Release\Live.pdb
Imports
kernel32
SetThreadStackGuarantee
TryAcquireSRWLockExclusive
SetFileCompletionNotificationModes
ReleaseSRWLockShared
SleepConditionVariableSRW
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
CloseHandle
OpenFileMappingW
OpenEventA
ReadConsoleA
SetConsoleMode
ConvertThreadToFiber
ConvertFiberToThread
CreateFiber
DeleteFiber
SwitchToFiber
GetFileInformationByHandleEx
GetModuleHandleExW
AcquireSRWLockShared
CreateProcessW
IsProcessorFeaturePresent
GetStartupInfoW
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
InitializeSListHead
InitOnceComplete
InitOnceBeginInitialize
SignalObjectAndWait
MulDiv
TryEnterCriticalSection
OpenFile
ExitProcess
GetEnvironmentVariableA
MoveFileExA
InitializeCriticalSectionEx
GetSystemDirectoryA
GetModuleHandleA
VirtualQuery
GetFileSize
LockFileEx
UnlockFile
HeapDestroy
HeapCompact
HeapReAlloc
DeleteFileA
LoadLibraryA
FlushViewOfFile
GetFileAttributesA
GetDiskFreeSpaceA
HeapSize
HeapValidate
UnlockFileEx
GetFullPathNameA
LockFile
GetDiskFreeSpaceW
HeapCreate
MapViewOfFileEx
CreateFileMappingA
ConnectNamedPipe
CancelIoEx
DisconnectNamedPipe
CreateNamedPipeA
SetNamedPipeHandleState
GetQueuedCompletionStatusEx
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
InitOnceExecuteOnce
GetTempFileNameA
GetTempPathA
ResumeThread
GetThreadPriority
OpenThread
CreateProcessA
GetCommandLineA
GetModuleFileNameA
SetConsoleTextAttribute
AreFileApisANSI
CopyFileW
CreateDirectoryExW
GetEnvironmentVariableW
GetDynamicTimeZoneInformation
GetVolumeNameForVolumeMountPointW
GetLogicalDrives
SwitchToThread
OpenMutexW
GlobalHandle
CreateMutexA
DuplicateHandle
SetThreadAffinityMask
CreateWaitableTimerW
GetQueuedCompletionStatus
SetWaitableTimer
CreateIoCompletionPort
SleepEx
InitializeCriticalSectionAndSpinCount
CreateEventW
DebugBreak
GlobalFree
GlobalAlloc
GlobalUnlock
GlobalLock
SetThreadExecutionState
CreateThread
UnmapViewOfFile
ReleaseMutex
MapViewOfFile
CreateFileMappingW
CreateMutexW
PostQueuedCompletionStatus
QueueUserAPC
TerminateThread
WaitForMultipleObjects
WaitForSingleObject
FormatMessageA
GetCommandLineW
SetDllDirectoryW
GetVolumeInformationW
GetSystemDirectoryW
lstrlenW
GetLongPathNameW
GetTempPathW
ReplaceFileW
SetUnhandledExceptionFilter
GetTimeZoneInformation
SystemTimeToFileTime
FileTimeToSystemTime
GetSystemTime
SetPriorityClass
GetProcessId
GetExitCodeProcess
GetDriveTypeW
GetFileTime
SetEndOfFile
SetFilePointerEx
GetFileSizeEx
FlushFileBuffers
SetThreadPriority
OutputDebugStringA
RtlCaptureContext
GetProcessAffinityMask
K32GetProcessMemoryInfo
GlobalMemoryStatusEx
FlushInstructionCache
IsDebuggerPresent
GetUserPreferredUILanguages
Process32NextW
Process32FirstW
GetACP
GetLocaleInfoA
GetThreadTimes
GetCurrentThread
VerifyVersionInfoW
GetCurrentProcessId
VerSetConditionMask
GetComputerNameExW
VerifyVersionInfoA
ExpandEnvironmentStringsW
GetStringTypeW
GetNumberOfConsoleInputEvents
WriteConsoleW
ResetEvent
ReadConsoleW
GetConsoleMode
AddVectoredExceptionHandler
RaiseException
RemoveVectoredExceptionHandler
LoadLibraryExW
FreeLibrary
SetErrorMode
GetTickCount
TlsFree
TlsGetValue
GetProcessHeap
HeapAlloc
TlsAlloc
GetCurrentThreadId
HeapFree
TlsSetValue
GetVersionExA
QueryPerformanceCounter
QueryPerformanceFrequency
GetTickCount64
GetSystemTimeAdjustment
CreateEventA
SetEvent
GetFileType
GetConsoleCP
GetConsoleOutputCP
GenerateConsoleCtrlEvent
GetProcessTimes
GetSystemTimeAsFileTime
GetModuleHandleW
MoveFileExW
GetProcAddress
SetCurrentDirectoryW
GetCurrentDirectoryW
LoadLibraryW
GetSystemInfo
Process32Next
DeleteFileW
GetDiskFreeSpaceExW
GetFileAttributesExW
GetFileInformationByHandle
CreateToolhelp32Snapshot
SetFileAttributesW
OpenProcess
GetFileAttributesW
GetVolumePathNameW
FindClose
CreateHardLinkW
CreatePipe
SetEnvironmentVariableW
SetFileTime
GetFinalPathNameByHandleW
RemoveDirectoryW
TerminateProcess
DeviceIoControl
GetStdHandle
GetCurrentProcess
FindNextFileW
GetFullPathNameW
GetHandleInformation
SetLastError
GetConsoleScreenBufferInfo
SetHandleInformation
Process32First
FindFirstFileW
CreateDirectoryW
OutputDebugStringW
CreateSemaphoreA
DeleteCriticalSection
WaitForSingleObjectEx
InitializeCriticalSection
LeaveCriticalSection
ReleaseSemaphore
EnterCriticalSection
VirtualAlloc
VirtualFree
LocalFree
FormatMessageW
WideCharToMultiByte
MultiByteToWideChar
CreateFileA
GetLastError
CreateFileW
SetFilePointer
WriteFile
ReadFile
Sleep
GetModuleFileNameW
user32
AdjustWindowRectEx
DestroyMenu
CreateMenu
DrawMenuBar
SetWindowLongW
CreateWindowExW
RegisterClassExW
AppendMenuW
RemoveMenu
LoadCursorW
SetMenuItemInfoW
MessageBoxExW
DeleteMenu
BroadcastSystemMessageW
RegisterWindowMessageW
GetTopWindow
InSendMessage
ReplyMessage
OpenClipboard
EmptyClipboard
GetWindowLongW
SetClipboardData
SetCapture
CloseClipboard
GetClipboardSequenceNumber
SetCursor
SetCursorPos
ShowCursor
InvalidateRect
LoadCursorFromFileW
DestroyCursor
GetDC
ReleaseDC
MessageBoxA
RegisterDeviceNotificationW
UnregisterDeviceNotification
MapVirtualKeyW
RegisterClassW
MoveWindow
ToUnicode
SetRect
SendMessageW
CallWindowProcW
MessageBoxW
SetTimer
KillTimer
CharLowerBuffA
FillRect
DrawTextA
DrawTextExA
SetRectEmpty
MsgWaitForMultipleObjects
PeekMessageA
EnumDisplayDevicesW
DispatchMessageA
GetQueueStatus
FlashWindowEx
LoadIconW
PostThreadMessageA
GetProcessWindowStation
DestroyWindow
GetUserObjectInformationW
PeekMessageW
MonitorFromPoint
GetMonitorInfoW
PostQuitMessage
ShutdownBlockReasonCreate
ShutdownBlockReasonDestroy
GetKeyState
ShowWindow
SetForegroundWindow
EnableWindow
GetMenu
GetWindowLongPtrW
SetWindowLongPtrW
WaitForInputIdle
GetWindow
MonitorFromWindow
UnhookWindowsHookEx
SetWindowsHookExW
CallNextHookEx
GetClientRect
GetUpdateRect
ValidateRect
SetWindowPlacement
GetWindowPlacement
GetWindowRect
GetGestureInfo
PostMessageW
EnumChildWindows
EnumWindows
DefWindowProcW
ToAscii
GetWindowThreadProcessId
IsWindowVisible
GetCursorPos
SystemParametersInfoW
GetDoubleClickTime
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
SetActiveWindow
WindowFromPoint
ScreenToClient
SetFocus
IsWindowEnabled
SetMenu
RegisterWindowMessageA
GetKeyboardLayoutNameW
EnumDisplayMonitors
BringWindowToTop
UpdateWindow
GetParent
SetWindowPos
ClientToScreen
GetClassNameW
GetKeyboardState
CloseGestureInfoHandle
GetWindowInfo
GetSystemMetrics
GetMessageW
TranslateMessage
DispatchMessageW
GetSystemMenu
EnableMenuItem
GetActiveWindow
ReleaseCapture
msvcp140
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?_Syserror_map@std@@YAPEBDH@Z
?_Xlength_error@std@@YAXPEBD@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?uncaught_exception@std@@YA_NXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Winerror_map@std@@YAHH@Z
?_Xbad_function_call@std@@YAXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ
??1codecvt_base@std@@UEAA@XZ
??1facet@locale@std@@MEAA@XZ
??1_Facet_base@std@@UEAA@XZ
??_7_Facet_base@std@@6B@
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??1_Lockit@std@@QEAA@XZ
??0_Lockit@std@@QEAA@H@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
??Bid@locale@std@@QEAA_KXZ
?always_noconv@codecvt_base@std@@QEBA_NXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Xout_of_range@std@@YAXPEBD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??_7facet@locale@std@@6B@
??_7codecvt_base@std@@6B@
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
??_7?$codecvt@_WDU_Mbstatet@@@std@@6B@
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Incref@facet@locale@std@@UEAAXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Xbad_alloc@std@@YAXXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@M@Z
?setprecision@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAI@Z
??1_Locinfo@std@@QEAA@XZ
??0_Locinfo@std@@QEAA@PEBD@Z
??0facet@locale@std@@IEAA@_K@Z
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?id@?$ctype@D@std@@2V0locale@2@A
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
_Strxfrm
_Strcoll
?id@?$collate@D@std@@2V0locale@2@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?tolower@?$ctype@D@std@@QEBADD@Z
?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?in@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?out@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
_Cnd_wait
?id@?$messages@D@std@@2V0locale@2@A
??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAXXZ
_Cnd_broadcast
?_Gettrue@_Locinfo@std@@QEBAPEBDXZ
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@_N@Z
??0_Locinfo@std@@QEAA@HPEBD@Z
?_Getfalse@_Locinfo@std@@QEBAPEBDXZ
?_Getlconv@_Locinfo@std@@QEBAPEBUlconv@@XZ
?id@?$numpunct@D@std@@2V0locale@2@A
?getloc@ios_base@std@@QEBA?AVlocale@2@XZ
?widen@?$ctype@D@std@@QEBADD@Z
?_Makeloc@_Locimp@locale@std@@CAPEAV123@AEBV_Locinfo@3@HPEAV123@PEBV23@@Z
?_Xruntime_error@std@@YAXPEBD@Z
?narrow@?$ctype@D@std@@QEBADDD@Z
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?overflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?pubsetbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAPEAV12@PEAD_J@Z
?in_avail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEA_J@Z
_Mtx_lock
?_Throw_C_error@std@@YAXH@Z
_Mtx_unlock
_Mtx_destroy_in_situ
_Mtx_init_in_situ
?_Xinvalid_argument@std@@YAXPEBD@Z
?_Random_device@std@@YAIXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@PEAV32@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
_Thrd_detach
?_Throw_Cpp_error@std@@YAXH@Z
_Thrd_join
_Thrd_id
_Cnd_do_broadcast_at_thread_exit
?classic@locale@std@@SAAEBV12@XZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@G@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?widen@?$ctype@_W@std@@QEBA_WD@Z
?_Getcat@?$ctype@_W@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?id@?$ctype@_W@std@@2V0locale@2@A
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAHXZ
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEB_W_J@Z
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JXZ
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAGXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEA_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAPEAV12@PEA_W_J@Z
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAXAEBVlocale@2@@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@N@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
?set_new_handler@std@@YAP6AXXZP6AXXZ@Z
_Xtime_get_ticks
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?widen@?$ctype@D@std@@QEBAPEBDPEBD0PEAD@Z
?toupper@?$ctype@D@std@@QEBADD@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?__ExceptionPtrRethrow@@YAXPEBX@Z
_Cnd_signal
?__ExceptionPtrCopyException@@YAXPEAXPEBX1@Z
_Mtx_trylock
_Cnd_init_in_situ
_Cnd_destroy_in_situ
_Cnd_timedwait
_Mtx_current_owns
?_Xoverflow_error@std@@YAXPEBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@J@Z
_Query_perf_counter
_Query_perf_frequency
?exceptions@ios_base@std@@QEAAXH@Z
?id@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?put@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEBA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AEAVios_base@2@DPEBUtm@@PEBD3@Z
?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z
?swap@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?swap@?$basic_iostream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
_Thrd_yield
?clog@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?setbase@std@@YA?AU?$_Smanip@H@1@H@Z
?do_in@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z
?do_always_noconv@?$codecvt@_WDU_Mbstatet@@@std@@MEBA_NXZ
?do_max_length@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHXZ
?do_encoding@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHXZ
?do_out@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z
?do_unshift@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?do_length@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEBD1_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAM@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
vcruntime140_1
__CxxFrameHandler4
vcruntime140
__CxxFrameHandler3
__std_terminate
__RTDynamicCast
__std_type_info_hash
_CxxThrowException
memcmp
__current_exception_context
__current_exception
longjmp
memcpy
wcsstr
__C_specific_handler
memmove
_set_se_translator
memset
strstr
wcsrchr
wcschr
strrchr
strchr
__RTtypeid
__std_type_info_compare
__std_type_info_name
_purecall
__std_exception_destroy
__std_exception_copy
_set_purecall_handler
__RTCastToVoid
__intrinsic_setjmp
memchr
api-ms-win-crt-runtime-l1-1-0
raise
_set_abort_behavior
terminate
set_terminate
fesetenv
fegetenv
strerror_s
_getpid
_beginthreadex
_endthreadex
strerror
_exit
_seh_filter_exe
_set_app_type
_configure_wide_argv
_initialize_wide_environment
_get_wide_winmain_command_line
_initterm
_initterm_e
_cexit
_set_thread_local_invalid_parameter_handler
_register_thread_local_exe_atexit_callback
_initialize_onexit_table
_invalid_parameter_noinfo_noreturn
abort
_register_onexit_function
_crt_atexit
_wsystem
signal
_control87
exit
__fpe_flt_rounds
__sys_nerr
_errno
__sys_errlist
_c_exit
api-ms-win-crt-stdio-l1-1-0
_wfopen
fputs
_chsize_s
_lseeki64
_wopen
_commit
_open_osfhandle
_get_osfhandle
getc
rewind
_setmode
fgets
feof
__stdio_common_vsprintf_s
__stdio_common_vswprintf
ftell
ferror
fopen
fseek
_ftelli64
__acrt_iob_func
__stdio_common_vfprintf
clearerr
fgetc
ungetc
fread
_fseeki64
__stdio_common_vsscanf
__stdio_common_vswscanf
fgetpos
fsetpos
setvbuf
_fileno
_locking
_dup
fflush
_wfopen_s
__stdio_common_vsprintf
__stdio_common_vsnprintf_s
_creat
_wfsopen
_lseek
_write
_read
_open
_dup2
_close
fputc
fwrite
fclose
_get_stream_buffer_pointers
_isatty
_getcwd
_set_fmode
__p__commode
api-ms-win-crt-filesystem-l1-1-0
_unlock_file
_umask
_wstat64
_fstat64
_lock_file
_wstat64i32
_access
_fstat64i32
_stat64i32
remove
_mkdir
_unlink
_stat64
api-ms-win-crt-math-l1-1-0
truncf
fminf
fmaxf
_fdsign
floorf
cosf
sinf
ceilf
nextafter
powf
sqrtf
__setusermatherr
sinh
tanh
trunc
atanf
roundf
atan2f
erfc
sqrt
asin
erf
lrintf
sin
atan
acos
pow
nextafterf
log2
lround
floor
fabs
tan
fmin
hypot
tanf
cos
copysign
modf
frexp
ldexp
_finite
_isnan
copysignf
_dsign
ceil
cosh
lroundf
_fdopen
log2f
cbrt
exp
llround
round
expf
logf
fmodf
modff
exp2f
tanhf
_dclass
_fdclass
_ldclass
llrint
acosf
atan2
fmod
log
log10
log10f
sinhf
exp2
api-ms-win-crt-heap-l1-1-0
_msize
realloc
calloc
malloc
_callnewh
_aligned_realloc
_aligned_free
_aligned_malloc
free
_set_new_mode
api-ms-win-crt-string-l1-1-0
wcsncpy_s
wcsncpy
strncpy
isxdigit
strlen
isalnum
wcsxfrm
wcscoll
wcsnlen
wcstok
_stricmp_l
strncat
strnlen
strcpy_s
strncmp
tolower
strspn
isspace
isdigit
strcspn
_strnicmp
iswprint
iswspace
isupper
strcmp
iscntrl
iswdigit
_wcsicmp
_strdup
wcsncmp
towlower
_stricmp
wcscpy_s
isprint
toupper
wcscat_s
isalpha
api-ms-win-crt-utility-l1-1-0
rand
qsort
bsearch
rand_s
srand
api-ms-win-crt-time-l1-1-0
_localtime64
_tzset
_time64
_localtime64_s
_gmtime64_s
clock
__timezone
_gmtime64
_ctime64
_mktime64
strftime
_difftime64
__tzname
__daylight
api-ms-win-crt-multibyte-l1-1-0
_mbsncmp
_mbspbrk
_mbschr
_mbsnbcpy
api-ms-win-crt-convert-l1-1-0
strtoull
_wcstoi64
atoi
strtod
strtoll
_wtoi
atof
atoll
strtoul
strtol
wcstol
wcstombs
mbstowcs
strtof
_wcstod_l
api-ms-win-crt-environment-l1-1-0
__p__wenviron
getenv
_wgetenv
_wgetcwd
_wputenv
api-ms-win-crt-locale-l1-1-0
setlocale
_free_locale
_create_locale
localeconv
_configthreadlocale
api-ms-win-crt-process-l1-1-0
_wspawnv
_wexecve
_cwait
_wspawnve
_wexecv
mswsock
AcceptEx
bcrypt
BCryptGenRandom
BCryptCloseAlgorithmProvider
BCryptOpenAlgorithmProvider
avrt
AvSetMmThreadCharacteristicsW
dbghelp
MiniDumpWriteDump
iphlpapi
GetAdaptersAddresses
shlwapi
PathCanonicalizeW
StrCmpLogicalW
PathCombineW
crypt32
CertEnumCRLsInStore
CertGetEnhancedKeyUsage
CertFreeCRLContext
CertFreeCertificateContext
CertEnumCertificatesInStore
CertCloseStore
CertOpenStore
PFXImportCertStore
CryptStringToBinaryA
CryptProtectData
CryptUnprotectData
CertDuplicateStore
CertDuplicateCertificateChain
CertVerifyCertificateChainPolicy
CertFindCertificateInStore
CryptDecodeObjectEx
CertGetCertificateChain
CertFreeCertificateChainEngine
CertAddCertificateContextToStore
CryptQueryObject
CertFreeCertificateChain
CertGetNameStringA
CertFindExtension
CertCreateCertificateChainEngine
CertDuplicateCertificateContext
CertGetCertificateContextProperty
ws2_32
WSAPoll
WSARecv
WSAStringToAddressW
WSAAddressToStringW
WSASendTo
WSAGetLastError
getsockopt
send
WSARecvFrom
shutdown
select
__WSAFDIsSet
setsockopt
getnameinfo
ioctlsocket
sendto
freeaddrinfo
htons
inet_ntop
htonl
recv
WSASend
recvfrom
getservbyname
inet_ntoa
connect
ntohs
socket
getservbyport
getprotobyname
gethostbyaddr
getsockname
inet_addr
getpeername
WSAStartup
WSACleanup
getaddrinfo
inet_pton
accept
WSASocketW
WSASetLastError
bind
listen
WSAIoctl
closesocket
gethostbyname
ntohl
WSADuplicateSocketW
d3d11
D3D11CreateDevice
dwmapi
DwmFlush
DwmGetCompositionTimingInfo
DwmIsCompositionEnabled
imm32
ImmGetContext
ImmAssociateContextEx
ImmGetCompositionStringW
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow
opengl32
glGenTextures
glDeleteTextures
glDisable
glBlendFunc
glEnable
glEnd
glVertex2f
glTexCoord2f
glBegin
glTexSubImage2D
glPixelStorei
glLoadIdentity
glColor3f
glBindTexture
glGetError
glGetTexLevelParameteriv
glTexImage2D
glGetIntegerv
wglCreateContext
glViewport
glMatrixMode
wglDeleteContext
wglGetCurrentDC
wglGetCurrentContext
wglMakeCurrent
wglGetProcAddress
glGetString
glTexParameteri
glTexParameterfv
shell32
DragAcceptFiles
SHCreateItemFromParsingName
DragQueryFileW
SHGetSpecialFolderPathA
SetCurrentProcessExplicitAppUserModelID
SHGetKnownFolderPath
ShellExecuteExW
FindExecutableW
ShellExecuteW
CommandLineToArgvW
SHAddToRecentDocs
version
GetFileVersionInfoA
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
GetFileVersionInfoW
VerQueryValueA
dsound
ord1
ord8
ord6
ord3
rex shared library
REXDelete
REXCreate
REXInitializeDLL
REXGetSliceInfo
REXGetInfo
REXRenderSlice
gdi32
BitBlt
GetPixel
SelectObject
ChoosePixelFormat
CreateCompatibleDC
DeleteObject
SetBkColor
SwapBuffers
DescribePixelFormat
SetPixelFormat
GetStockObject
CreateDIBSection
SetTextColor
DeleteDC
ole32
OleInitialize
CoUninitialize
CoLockObjectExternal
OleUninitialize
RevokeDragDrop
StringFromGUID2
CLSIDFromString
CoInitialize
CoTaskMemFree
CoCreateInstance
OleGetClipboard
GetRunningObjectTable
CoTaskMemAlloc
CreateItemMoniker
ReleaseStgMedium
RegisterDragDrop
DoDragDrop
CoFreeUnusedLibraries
oleaut32
SysAllocString
SysFreeString
winmm
midiOutUnprepareHeader
midiOutLongMsg
timeEndPeriod
midiOutShortMsg
midiOutClose
midiOutReset
midiOutPrepareHeader
timeBeginPeriod
midiInStop
midiInReset
timeGetTime
waveOutGetNumDevs
waveOutGetDevCapsW
waveOutOpen
waveOutClose
waveOutPause
waveOutRestart
waveOutReset
waveOutGetPosition
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
waveInGetNumDevs
waveInGetDevCapsW
waveInOpen
waveInClose
waveInGetPosition
waveInStart
waveInReset
waveInUnprepareHeader
waveInPrepareHeader
waveInAddBuffer
timeSetEvent
timeKillEvent
waveInGetErrorTextA
midiInGetDevCapsW
midiInMessage
midiInGetNumDevs
midiOutGetDevCapsW
midiOutMessage
midiOutGetNumDevs
midiInPrepareHeader
midiInAddBuffer
midiInUnprepareHeader
midiInOpen
midiInClose
midiInStart
midiOutOpen
usflib
XUsfProgGetTuno
XUsfProgGetVelFade
XUsfBankDelete
XUsfStreamDelete
XUsfVoiceGetTuno
XUsfSampSamplePitch
XUsfSampNumberOfChannels
XUsfSampIsLooped
XUsfSampGetFormat
XUsfVoiceChannelName
XUsfVoiceIsInterleaved
XUsfVoiceIsExternal
XUsfVoiceIsLooped
XUsfModGetDepthExt
XUsfModGetControl
XUsfEnvSegmentRate
XUsfEnvSegmentCount
XUsfProgLfoCount
XUsfProgGetDim
XUsfProgHasCrossFade
XUsfProgDimCount
XUsfProgGetVcfKeyFollow
XUsfProgGetLevelRange
XUsfProgGetCrossfade
XUsfImportUsfProgramName
XUsfImportUsfFileName
XUsfImportUsfCurrentFolder
XUsfLibNew
XUsfLibNewFileImport
XUsfLibNewImageImport
XUsfImportUsfVolumeName
XUsfImportUsfVolumeCount
XUsfImportUsfCloseSubFolder
XUsfImportUsfFolderName
XUsfImportUsfFolderCount
XUsfImportUsfFileCount
XUsfImportUsfOpenSubFolder
XUsfImportUsfOpenFolder
XUsfImportUsfProgramCount
XUsfImportUsfOpenFileByName
XUsfImportUsfOpenFile
XUsfBankGetProgram
XUsfBankProgramCount
XUsfImportUsfLoadProgram
XUsfBankNew
XUsfProgHasReleaseTrigger
XUsfProgSplitByGroup
XUsfProgGetReleaseTrigger
XUsfProgIsSet
XUsfProgSplitBadStereo
XUsfProgFlatten
XUsfNodeGetName
XUsfNodeGetChildByIndex
XUsfNodeChildCount
XUsfEnvGetSustainIndex
XUsfEnvSegmentLevel
XUsfEnvSegmentRateByType
XUsfEnvSegmentLevelByType
XUsfModGetSource
XUsfModGetDepthInt
XUsfLfoGetDelay
XUsfLfoGetRate
XUsfLfoGetSync
XUsfLfoGetTrig
XUsfLfoGetWave
XUsfProgGetLfo
XUsfModGetDestin
XUsfProgGetMod
XUsfProgModCount
XUsfProgGetEnvAux
XUsfProgGetEnvMod
XUsfProgVcaByEnv
XUsfEnvSetDestination
XUsfProgGetEnvAmp
XUsfProgVcfByEnv
XUsfProgVcfByVel
XUsfProgGetFilter
XUsfProgVcaByVel
XUsfProgGetTranspose
XUsfImportDelete
XUsfVoiceRootKey
XUsfProgPitchTracking
XUsfProgVcaLevel
XUsfProgGetPano
XUsfVoiceChannelCount
XUsfVoiceChannelStart
XUsfVoiceChannelEnd
XUsfVoiceChannelLoopStart
XUsfVoiceChannelLoopEnd
XUsfVoicePlayMode
XUsfImportUsfGetFormat
XUsfVoiceLoopCrossfade
XUsfVoiceIsDummy
XUsfVoiceSampleCount
XUsfSampIsExternal
XUsfVoiceIsStereo
XUsfVoiceCanInterleave
XUsfVoiceVoiceName
XUsfVoiceChannelSize
XUsfVoiceSampleRate
XUsfVoiceBitDepth
XUsfLibDelete
XUsfProgPitchByEnv
XUsfProgGetPitchBend
XUsfProgGetGlide
XUsfProgGetPolyphony
XUsfProgGetNextZone
XUsfStreamGetAudioByFloats
XUsfStreamGetAudioByShorts
XUsfImportUsfCreateStream
XUsfProgGetKeyFade
XUsfStreamSetOffset
XUsfProgGetKeyRange
XUsfProgGetVoice
XUsfSampGetFolderPathByArgs
XUsfSampGetFileName
XUsfVoiceGetSample
XUsfSampGetFullPath
XUsfProgGetVelRange
advapi32
RegCreateKeyW
GetUserNameW
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
RegSetValueW
RegQueryValueExW
RegEnumValueW
SystemFunction036
RegDeleteValueW
RegConnectRegistryW
RegSetKeyValueW
RegOpenKeyExW
RegLoadKeyW
RegQueryInfoKeyA
RegSetValueExW
RegEnumKeyExW
RegSaveKeyW
RegCreateKeyExW
RegFlushKey
RegQueryValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegCloseKey
RegDeleteTreeW
CryptEnumProvidersW
CryptSignHashW
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyA
RegOpenKeyA
CryptCreateHash
CryptHashData
CryptDestroyHash
CryptGetHashParam
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegGetValueW
rpcrt4
UuidCreate
RpcStringFreeW
UuidToStringW
wininet
InternetGetConnectedState
ntdll
NtDeviceIoControlFile
RtlNtStatusToDosError
NtCancelIoFileEx
NtCreateFile
secur32
ApplyControlToken
QueryContextAttributesW
AcceptSecurityContext
InitializeSecurityContextW
FreeContextBuffer
DecryptMessage
DeleteSecurityContext
FreeCredentialsHandle
EncryptMessage
AcquireCredentialsHandleA
Exports
Exports
AmdPowerXpressRequestHighPerformance
NvOptimusEnablement
PyInit_Application
PyInit_Base
PyInit_Browser
PyInit_Chain
PyInit_ChainMixerDevice
PyInit_Clip
PyInit_ClipSlot
PyInit_CompressorDevice
PyInit_Conversions
PyInit_Device
PyInit_DeviceIO
PyInit_DeviceParameter
PyInit_DrumChain
PyInit_DrumPad
PyInit_Eq8Device
PyInit_Groove
PyInit_GroovePool
PyInit_HybridReverbDevice
PyInit_ListWrapper
PyInit_Listener
PyInit_Live
PyInit_LomObject
PyInit_MaxDevice
PyInit_MidiMap
PyInit_MidiRemoteScript
PyInit_MixerDevice
PyInit_MxDManager
PyInit_PluginDevice
PyInit_RackDevice
PyInit_Sample
PyInit_Scene
PyInit_ShifterDevice
PyInit_SimplerDevice
PyInit_Song
PyInit_SpectralResonatorDevice
PyInit_Track
PyInit_WavetableDevice
PyInit_live_io
Sections
.text Size: 67.2MB - Virtual size: 67.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IPPCODE Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 21.3MB - Virtual size: 21.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3.6MB - Virtual size: 5.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 3.2MB - Virtual size: 3.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IPPDATA Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 160KB - Virtual size: 160KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 119KB - Virtual size: 118KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
nitrogen/d3db.dll.dll windows:6 windows x64 arch:x64
Password: 2024
3bc5483cf1cc179252d95047958b7b06
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
v:\devel\projects\oodle2\cdepbuild\win64_release_dll\oo2core_6_win64.pdb
Imports
kernel32
OutputDebugStringA
HeapAlloc
HeapFree
GetProcessHeap
EncodePointer
DecodePointer
RtlLookupFunctionEntry
RtlUnwindEx
GetCommandLineA
GetCurrentThreadId
IsDebuggerPresent
IsProcessorFeaturePresent
GetLastError
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
HeapSize
SetLastError
RtlPcToFileHeader
RaiseException
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
WriteFile
GetModuleFileNameW
LoadLibraryExW
HeapReAlloc
GetStringTypeW
LCMapStringW
OutputDebugStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
CreateFileW
Exports
Exports
OodleHuffman_CountHistoArrayU8
OodleHuffman_DecodeArrayU8
OodleHuffman_EncodeArrayU8
OodleLZDecoder_Create
OodleLZDecoder_DecodeSome
OodleLZDecoder_Destroy
OodleLZDecoder_MakeValidCircularWindowSize
OodleLZDecoder_MemorySizeNeeded
OodleLZDecoder_Reset
OodleLZ_CheckSeekTableCRCs
OodleLZ_Compress
OodleLZ_CompressContext_Alloc
OodleLZ_CompressContext_Free
OodleLZ_CompressContext_Reset
OodleLZ_CompressOptions_GetDefault
OodleLZ_CompressOptions_Validate
OodleLZ_CompressWithContext
OodleLZ_CompressionLevel_GetName
OodleLZ_Compressor_GetName
OodleLZ_CreateSeekTable
OodleLZ_Decompress
OodleLZ_FillSeekTable
OodleLZ_FindSeekEntry
OodleLZ_FreeSeekTable
OodleLZ_GetChunkCompressor
OodleLZ_GetCompressedBufferSizeNeeded
OodleLZ_GetCompressedStepForRawStep
OodleLZ_GetDecodeBufferSize
OodleLZ_GetInPlaceDecodeBufferSize
OodleLZ_GetNumSeekChunks
OodleLZ_GetSeekEntryPackedPos
OodleLZ_GetSeekTableMemorySizeNeeded
OodleLZ_GetZipLikeCompressionSettings
OodleLZ_MakeSeekChunkLen
OodleLZ_ThreadPhased_BlockDecoderMemorySizeNeeded
OodleNetwork1TCP_Decode
OodleNetwork1TCP_Encode
OodleNetwork1TCP_State_InitAsCopy
OodleNetwork1TCP_State_Reset
OodleNetwork1TCP_State_Size
OodleNetwork1TCP_Train
OodleNetwork1UDP_Decode
OodleNetwork1UDP_Encode
OodleNetwork1UDP_StateCompacted_MaxSize
OodleNetwork1UDP_State_Compact
OodleNetwork1UDP_State_Size
OodleNetwork1UDP_State_Uncompact
OodleNetwork1UDP_Train
OodleNetwork1_CompressedBufferSizeNeeded
OodleNetwork1_SelectDictionaryFromPackets
OodleNetwork1_SelectDictionaryFromPackets_Trials
OodleNetwork1_Shared_SetWindow
OodleNetwork1_Shared_Size
OodlePlugin_DisplayAssertion_Default
OodlePlugin_Free_Default
OodlePlugin_MallocAligned_Default
OodlePlugin_Printf_Default
OodlePlugin_Printf_Verbose
OodlePlugins_SetAllocators
OodlePlugins_SetAssertion
OodlePlugins_SetPrintf
Oodle_CheckVersion
Oodle_GetConfigValues
Oodle_LogHeader
Oodle_SetConfigValues
Oodle_SetUsageWarnings
Sections
.text Size: 874KB - Virtual size: 873KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 156KB - Virtual size: 155KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 19KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
nitrogen/nitrogen.exe.exe windows:4 windows x86 arch:x86
Password: 2024
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 93KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
nitrogen/updater.dll