Sliver5[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Sliver5.zip
Size

4.0MB
MD5

8a8a38d96f422aeb5b6eab523fb56524
SHA1

5426a047ac480ea3ce8dd974493b6b98cb317a02
SHA256

10638b1b21e30b12ddf9e7c14e3276481281e7ba6faae6191f475f96e58eea78
SHA512

0f227e2ce1b4735a309ca78ad571ceba7d348c877972f44f738546518e6412fbf756b39d0fbd674340d5c3c24ce0c71051bdb266969cacf0877328fac439101c
SSDEEP

98304:GecEMM/O1oQ1wu8ZZPD4ZcJP5Wx3vt/vo+heUEYT8riqOb:RclM2tqZDr6YGvt/vDE/jOb

Score

7^/10

agilenet

Malware Config

Signatures

Obfuscated with Agile.Net obfuscator 2 IoCs

Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

agilenet

resource	yara_rule
static1/unpack001/IFPDZ.Protection.dll	agile_net
static1/unpack001/Sliver 5.exe	agile_net

Unsigned PE 54 IoCs

Checks for missing Authenticode signature.

resource
unpack001/IFPDZ.Protection.dll
unpack001/Renci.SshNet.dll
unpack001/Sliver 5.exe
unpack001/ref/LIBEAY32.dll
unpack001/ref/SSLEAY32.dll
unpack001/ref/bz2.dll
unpack001/ref/getopt.dll
unpack001/ref/idevice_id.exe
unpack001/ref/ideviceactivation.dll
unpack001/ref/ideviceactivation.exe
unpack001/ref/idevicebackup.exe
unpack001/ref/idevicebackup2.exe
unpack001/ref/idevicecrashreport.exe
unpack001/ref/idevicedate.exe
unpack001/ref/idevicedebug.exe
unpack001/ref/idevicedebugserverproxy.exe
unpack001/ref/idevicediagnostics.exe
unpack001/ref/ideviceenterrecovery.exe
unpack001/ref/ideviceimagemounter.exe
unpack001/ref/ideviceinfo.exe
unpack001/ref/ideviceinstaller.exe
unpack001/ref/idevicename.exe
unpack001/ref/idevicenotificationproxy.exe
unpack001/ref/idevicepair.exe
unpack001/ref/ideviceprovision.exe
unpack001/ref/idevicerestore.exe
unpack001/ref/idevicescreenshot.exe
unpack001/ref/idevicesyslog.exe
unpack001/ref/imobiledevice-net-lighthouse.dll
unpack001/ref/imobiledevice.dll
unpack001/ref/info.exe
unpack001/ref/ios_webkit_debug_proxy.exe
unpack001/ref/iproxy.exe
unpack001/ref/irecovery.dll
unpack001/ref/irecovery.exe
unpack001/ref/libcharset.dll
unpack001/ref/libcurl.dll
unpack001/ref/libiconv.dll
unpack001/ref/libusb-1.0.dll
unpack001/ref/libusb0.dll
unpack001/ref/libxml2.dll
unpack001/ref/lzma.dll
unpack001/ref/pcre.dll
unpack001/ref/pcreposix.dll
unpack001/ref/plist.dll
unpack001/ref/plist_cmp.exe
unpack001/ref/plist_test.exe
unpack001/ref/plistutil.exe
unpack001/ref/pthreadVC3.dll
unpack001/ref/readline.dll
unpack001/ref/usbmuxd.dll
unpack001/ref/usbmuxd.exe
unpack001/ref/zip.dll
unpack001/ref/zlib1.dll

Files

Sliver5.zip
.zip
IFPDZ.Protection.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Dropbox\Dev\ag.v66\Libraries\VMRuntime\obj\Trial\AgileDotNet.VMRuntime.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 198KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Renci.SshNet.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\development\SSH.NET\src\Renci.SshNet\obj\Release\Renci.SshNet.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 410KB - Virtual size: 410KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Sliver 5.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/LIBEAY32.dll
.dll windows:6 windows x64 arch:x64

d616c61ea5b377f503af8db86d46bf25

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\openssl-windows\x64-windows-rel\out32dll\libeay32.pdb

Imports

ws2_32

socket
setsockopt
htons
htonl
bind
WSAGetLastError
WSASetLastError
shutdown
closesocket
send
recv
ioctlsocket
getsockopt
listen
ntohl
ntohs
gethostbyname
getservbyname
WSAStartup
WSACleanup
recvfrom
sendto
accept
connect

gdi32

CreateCompatibleBitmap
DeleteObject
GetObjectW
GetDIBits
GetDeviceCaps

advapi32

CryptDestroyKey
RegisterEventSourceW
ReportEventW
CryptAcquireContextW
CryptReleaseContext
CryptSetHashParam
CryptGetProvParam
CryptGetUserKey
CryptExportKey
CryptEnumProvidersW
CryptSignHashW
CryptDestroyHash
CryptCreateHash
CryptDecrypt
DeregisterEventSource

crypt32

CertEnumCertificatesInStore
CertOpenStore
CertDuplicateCertificateContext
CertFreeCertificateContext
CertGetCertificateContextProperty
CertFindCertificateInStore
CertCloseStore

user32

GetUserObjectInformationW
GetProcessWindowStation
MessageBoxW
GetDC
ReleaseDC

kernel32

CloseHandle
FreeLibrary
LoadLibraryA
LoadLibraryW
SetLastError
GetSystemTime
IsDebuggerPresent
SystemTimeToFileTime
QueryPerformanceCounter
GetCurrentProcessId
GetTickCount
GlobalMemoryStatus
FlushConsoleInputBuffer
RtlCaptureContext
RtlLookupFunctionEntry
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
InitializeSListHead
FindFirstFileW
RtlVirtualUnwind
FindClose
MultiByteToWideChar
GetCurrentThreadId
GetLastError
WriteFile
WideCharToMultiByte
ExitProcess
GetModuleHandleW
GetProcAddress
GetStdHandle
GetFileType
FindNextFileW

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
memchr
strrchr
strstr
memmove
memset
memcpy
memcmp
wcsstr
strchr

api-ms-win-crt-stdio-l1-1-0

fwrite
ftell
fseek
fread
setvbuf
_fileno
_open
fgets
fflush
ferror
feof
fclose
_wfopen
fputs
__stdio_common_vfprintf
_setmode
_write
__stdio_common_vswprintf
_read
__stdio_common_vsscanf
__stdio_common_vsprintf
__acrt_iob_func
fopen

api-ms-win-crt-runtime-l1-1-0

_errno
signal
raise
_configure_narrow_argv
_cexit
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
strerror
_initterm
_initterm_e
_seh_filter_dll
_getpid
_exit
perror

api-ms-win-crt-convert-l1-1-0

atoi
strtol
strtoul

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-heap-l1-1-0

free
malloc
realloc

api-ms-win-crt-time-l1-1-0

_time64
_gmtime64_s
_localtime64

api-ms-win-crt-string-l1-1-0

isupper
strncmp
tolower
isalnum
isspace
_stricmp
strncpy
isxdigit
toupper
isdigit
_strnicmp
strcmp

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-math-l1-1-0

_fdopen

api-ms-win-crt-filesystem-l1-1-0

_chmod
_stat64i32

api-ms-win-crt-conio-l1-1-0

_getch

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
AES_bi_ige_encrypt
AES_cbc_encrypt
AES_cfb128_encrypt
AES_cfb1_encrypt
AES_cfb8_encrypt
AES_ctr128_encrypt
AES_decrypt
AES_ecb_encrypt
AES_encrypt
AES_ige_encrypt
AES_ofb128_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
AES_unwrap_key
AES_wrap_key
ASN1_ANY_it
ASN1_BIT_STRING_check
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_adj
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PCTX_free
ASN1_PCTX_get_cert_flags
ASN1_PCTX_get_flags
ASN1_PCTX_get_nm_flags
ASN1_PCTX_get_oid_flags
ASN1_PCTX_get_str_flags
ASN1_PCTX_new
ASN1_PCTX_set_cert_flags
ASN1_PCTX_set_flags
ASN1_PCTX_set_nm_flags
ASN1_PCTX_set_oid_flags
ASN1_PCTX_set_str_flags
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SEQUENCE_ANY_it
ASN1_SEQUENCE_it
ASN1_SET_ANY_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_clear_free
ASN1_STRING_cmp
ASN1_STRING_copy
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_free
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set0
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_adj
ASN1_TIME_check
ASN1_TIME_diff
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TIME_set_string
ASN1_TIME_to_generalizedtime
ASN1_TYPE_cmp
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_set
ASN1_TYPE_set1
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_adj
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_add_oid_module
ASN1_bn_print
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_fp
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_pack
ASN1_item_print
ASN1_item_sign
ASN1_item_sign_ctx
ASN1_item_unpack
ASN1_item_verify
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_pack_string
ASN1_parse
ASN1_parse_dump
ASN1_primitive_free
ASN1_primitive_new
ASN1_put_eoc
ASN1_put_object
ASN1_seq_pack
ASN1_seq_unpack
ASN1_sign
ASN1_tag2bit
ASN1_tag2str
ASN1_template_d2i
ASN1_template_free
ASN1_template_i2d
ASN1_template_new
ASN1_unpack_string
ASN1_verify
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIGNUM_it
BIO_accept
BIO_asn1_get_prefix
BIO_asn1_get_suffix
BIO_asn1_set_prefix
BIO_asn1_set_suffix
BIO_callback_ctrl
BIO_clear_flags
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_dgram_non_fatal_error
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_asn1
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_callback
BIO_get_callback_arg
BIO_get_ex_data
BIO_get_ex_new_index
BIO_get_host_ip
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_gethostbyname
BIO_gets
BIO_hex_string
BIO_indent
BIO_int_ctrl
BIO_method_name
BIO_method_type
BIO_new
BIO_new_CMS
BIO_new_NDEF
BIO_new_PKCS7
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_dgram
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_datagram
BIO_s_fd
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_socket
BIO_set
BIO_set_callback
BIO_set_callback_arg
BIO_set_cipher
BIO_set_ex_data
BIO_set_flags
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_cleanup
BIO_sock_error
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket_ioctl
BIO_socket_nbio
BIO_test_flags
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_get_thread_id
BN_BLINDING_invert
BN_BLINDING_invert_ex
BN_BLINDING_new
BN_BLINDING_set_flags
BN_BLINDING_set_thread_id
BN_BLINDING_thread_id
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_init
BN_CTX_new
BN_CTX_start
BN_GENCB_call
BN_GF2m_add
BN_GF2m_arr2poly
BN_GF2m_mod
BN_GF2m_mod_arr
BN_GF2m_mod_div
BN_GF2m_mod_div_arr
BN_GF2m_mod_exp
BN_GF2m_mod_exp_arr
BN_GF2m_mod_inv
BN_GF2m_mod_inv_arr
BN_GF2m_mod_mul
BN_GF2m_mod_mul_arr
BN_GF2m_mod_solve_quad
BN_GF2m_mod_solve_quad_arr
BN_GF2m_mod_sqr
BN_GF2m_mod_sqr_arr
BN_GF2m_mod_sqrt
BN_GF2m_mod_sqrt_arr
BN_GF2m_poly2arr
BN_MONT_CTX_copy
BN_MONT_CTX_free
BN_MONT_CTX_init
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_MONT_CTX_set_locked
BN_RECP_CTX_free
BN_RECP_CTX_init
BN_RECP_CTX_new
BN_RECP_CTX_set
BN_X931_derive_prime_ex
BN_X931_generate_Xpq
BN_X931_generate_prime_ex
BN_add
BN_add_word
BN_asc2bn
BN_bin2bn
BN_bn2bin
BN_bn2dec
BN_bn2hex
BN_bn2mpi
BN_bntest_rand
BN_clear
BN_clear_bit
BN_clear_free
BN_cmp
BN_consttime_swap
BN_copy
BN_dec2bn
BN_div
BN_div_recp
BN_div_word
BN_dup
BN_exp
BN_free
BN_from_montgomery
BN_gcd
BN_generate_prime
BN_generate_prime_ex
BN_get0_nist_prime_192
BN_get0_nist_prime_224
BN_get0_nist_prime_256
BN_get0_nist_prime_384
BN_get0_nist_prime_521
BN_get_params
BN_get_word
BN_hex2bn
BN_init
BN_is_bit_set
BN_is_prime
BN_is_prime_ex
BN_is_prime_fasttest
BN_is_prime_fasttest_ex
BN_kronecker
BN_lshift
BN_lshift1
BN_mask_bits
BN_mod_add
BN_mod_add_quick
BN_mod_exp
BN_mod_exp2_mont
BN_mod_exp_mont
BN_mod_exp_mont_consttime
BN_mod_exp_mont_word
BN_mod_exp_recp
BN_mod_exp_simple
BN_mod_inverse
BN_mod_lshift
BN_mod_lshift1
BN_mod_lshift1_quick
BN_mod_lshift_quick
BN_mod_mul
BN_mod_mul_montgomery
BN_mod_mul_reciprocal
BN_mod_sqr
BN_mod_sqrt
BN_mod_sub
BN_mod_sub_quick
BN_mod_word
BN_mpi2bn
BN_mul
BN_mul_word
BN_new
BN_nist_mod_192
BN_nist_mod_224
BN_nist_mod_256
BN_nist_mod_384
BN_nist_mod_521
BN_nnmod
BN_num_bits
BN_num_bits_word
BN_options
BN_print
BN_print_fp
BN_pseudo_rand
BN_pseudo_rand_range
BN_rand
BN_rand_range
BN_reciprocal
BN_rshift
BN_rshift1
BN_set_bit
BN_set_negative
BN_set_params
BN_set_word
BN_sqr
BN_sub
BN_sub_word
BN_swap
BN_to_ASN1_ENUMERATED
BN_to_ASN1_INTEGER
BN_uadd
BN_ucmp
BN_usub
BN_value_one

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 498KB - Virtual size: 498KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 292KB - Virtual size: 305KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/SSLEAY32.dll
.dll windows:6 windows x64 arch:x64

5c71640db8f86d26bff135d45f311cf6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\openssl-windows\x64-windows-rel\out32dll\ssleay32.pdb

Imports

libeay32

ord123
ord118
ord120
ord165
ord32
ord490
ord2760
ord495
ord498
ord4540
ord202
ord203
ord201
ord219
ord252
ord222
ord3837
ord3844
ord3896
ord3899
ord2630
ord2821
ord3883
ord3109
ord269
ord2936
ord2894
ord276
ord274
ord289
ord290
ord961
ord256
ord3315
ord2927
ord285
ord2128
ord281
ord967
ord4119
ord4430
ord4233
ord4474
ord4369
ord4245
ord1070
ord4488
ord3695
ord3570
ord2924
ord2929
ord3010
ord3178
ord2578
ord3663
ord3353
ord3422
ord3729
ord3575
ord3512
ord3608
ord3459
ord3480
ord3550
ord3666
ord3644
ord866
ord641
ord754
ord654
ord635
ord2747
ord2784
ord2572
ord964
ord965
ord464
ord2201
ord3489
ord907
ord904
ord176
ord87
ord150
ord125
ord1000
ord124
ord129
ord486
ord493
ord484
ord205
ord216
ord363
ord2712
ord2925
ord3165
ord268
ord333
ord316
ord4470
ord1010
ord282
ord4125
ord4262
ord4164
ord1071
ord2877
ord3711
ord3682
ord3719
ord577
ord763
ord572
ord4046
ord481
ord2063
ord2107
ord3450
ord283
ord3418
ord3244
ord1096
ord1097
ord78
ord109
ord95
ord3816
ord3873
ord3836
ord3888
ord3891
ord3874
ord2589
ord2915
ord323
ord3906
ord1144
ord1145
ord3823
ord3866
ord3846
ord89
ord2292
ord1081
ord3857
ord2400
ord187
ord267
ord503
ord1012
ord3631
ord3479
ord3664
ord3737
ord3633
ord3675
ord341
ord1011
ord359
ord365
ord4210
ord3067
ord266
ord264
ord3314
ord3312
ord3313
ord4188
ord2568
ord3528
ord4684
ord3388
ord541
ord3925
ord3922
ord110
ord653
ord4692
ord3192
ord3124
ord2702
ord2898
ord3332
ord3566
ord1202
ord4144
ord4372
ord3782
ord4174
ord193
ord3767
ord3758
ord3704
ord3647
ord3365
ord3766
ord3460
ord4114
ord3783
ord3454
ord3394
ord3754
ord1655
ord914
ord1041
ord1027
ord1025
ord1004
ord1007
ord1005
ord3826
ord53
ord85
ord67
ord65
ord74
ord98
ord58
ord497
ord206
ord892
ord890
ord897
ord2257
ord248
ord364
ord4331
ord4513
ord629
ord626
ord628
ord630
ord3437
ord3527
ord3378
ord3610
ord3414
ord3495
ord3399
ord3559
ord575
ord636
ord2051
ord2478
ord246
ord3657
ord3396
ord908
ord911
ord93
ord128
ord623
ord622
ord624
ord1100
ord1023
ord1016
ord2204
ord2451
ord2524
ord3505
ord3595
ord680
ord857
ord657
ord4693
ord2135
ord679
ord401
ord3205
ord891
ord887
ord889
ord4045
ord2475
ord368
ord370
ord367
ord369
ord1671
ord189
ord1147
ord314
ord315
ord4383
ord4320
ord956
ord750
ord279
ord748
ord280
ord774
ord751
ord2181
ord394
ord1959
ord400
ord399
ord716
ord822
ord718
ord824
ord8
ord7
ord3700
ord3623
ord37
ord35
ord703
ord1091
ord88
ord2426
ord86
ord1101
ord313
ord3724
ord299
ord304
ord329
ord318
ord325
ord959
ord4601
ord3155
ord2996
ord4615
ord4637
ord4656
ord4731
ord4740
ord3795
ord3807
ord3914
ord292
ord293
ord395
ord2252
ord91
ord955
ord225
ord247
ord4572
ord4580
ord4576
ord4570
ord4578
ord4582
ord4573
ord4577
ord4581
ord4575
ord4584
ord151
ord111
ord52
ord66
ord3245
ord181
ord188
ord903
ord912
ord910
ord909
ord905
ord2411
ord1653
ord1654
ord3513
ord170
ord3239
ord168
ord167
ord4701
ord169

kernel32

IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetLastError
SystemTimeToFileTime
GetSystemTime
SetLastError

vcruntime140

memcmp
memcpy
memmove
memset
strchr
__C_specific_handler
__std_type_info_destroy_list

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-string-l1-1-0

_stricmp
strncmp
_strnicmp

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__acrt_iob_func

api-ms-win-crt-runtime-l1-1-0

_cexit
_errno
abort
_initialize_onexit_table
_execute_onexit_table
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment

Exports

Exports

BIO_f_ssl
BIO_new_buffer_ssl_connect
BIO_new_ssl
BIO_new_ssl_connect
BIO_ssl_copy_session_id
BIO_ssl_shutdown
DTLS_client_method
DTLS_method
DTLS_server_method
DTLSv1_2_client_method
DTLSv1_2_method
DTLSv1_2_server_method
DTLSv1_client_method
DTLSv1_method
DTLSv1_server_method
ERR_load_SSL_strings
PEM_read_SSL_SESSION
PEM_read_bio_SSL_SESSION
PEM_write_SSL_SESSION
PEM_write_bio_SSL_SESSION
SRP_Calc_A_param
SRP_generate_client_master_secret
SRP_generate_server_master_secret
SSL_CIPHER_description
SSL_CIPHER_find
SSL_CIPHER_get_bits
SSL_CIPHER_get_id
SSL_CIPHER_get_name
SSL_CIPHER_get_version
SSL_COMP_add_compression_method
SSL_COMP_free_compression_methods
SSL_COMP_get_compression_methods
SSL_COMP_get_name
SSL_COMP_set0_compression_methods
SSL_CONF_CTX_clear_flags
SSL_CONF_CTX_finish
SSL_CONF_CTX_free
SSL_CONF_CTX_new
SSL_CONF_CTX_set1_prefix
SSL_CONF_CTX_set_flags
SSL_CONF_CTX_set_ssl
SSL_CONF_CTX_set_ssl_ctx
SSL_CONF_cmd
SSL_CONF_cmd_argv
SSL_CONF_cmd_value_type
SSL_CTX_SRP_CTX_free
SSL_CTX_SRP_CTX_init
SSL_CTX_add_client_CA
SSL_CTX_add_client_custom_ext
SSL_CTX_add_server_custom_ext
SSL_CTX_add_session
SSL_CTX_callback_ctrl
SSL_CTX_check_private_key
SSL_CTX_ctrl
SSL_CTX_flush_sessions
SSL_CTX_free
SSL_CTX_get0_certificate
SSL_CTX_get0_param
SSL_CTX_get0_privatekey
SSL_CTX_get_cert_store
SSL_CTX_get_client_CA_list
SSL_CTX_get_client_cert_cb
SSL_CTX_get_ex_data
SSL_CTX_get_ex_new_index
SSL_CTX_get_info_callback
SSL_CTX_get_quiet_shutdown
SSL_CTX_get_ssl_method
SSL_CTX_get_timeout
SSL_CTX_get_verify_callback
SSL_CTX_get_verify_depth
SSL_CTX_get_verify_mode
SSL_CTX_load_verify_locations
SSL_CTX_new
SSL_CTX_remove_session
SSL_CTX_sess_get_get_cb
SSL_CTX_sess_get_new_cb
SSL_CTX_sess_get_remove_cb
SSL_CTX_sess_set_get_cb
SSL_CTX_sess_set_new_cb
SSL_CTX_sess_set_remove_cb
SSL_CTX_sessions
SSL_CTX_set1_param
SSL_CTX_set_alpn_protos
SSL_CTX_set_alpn_select_cb
SSL_CTX_set_cert_cb
SSL_CTX_set_cert_store
SSL_CTX_set_cert_verify_callback
SSL_CTX_set_cipher_list
SSL_CTX_set_client_CA_list
SSL_CTX_set_client_cert_cb
SSL_CTX_set_client_cert_engine
SSL_CTX_set_cookie_generate_cb
SSL_CTX_set_cookie_verify_cb
SSL_CTX_set_default_passwd_cb
SSL_CTX_set_default_passwd_cb_userdata
SSL_CTX_set_default_verify_paths
SSL_CTX_set_ex_data
SSL_CTX_set_generate_session_id
SSL_CTX_set_info_callback
SSL_CTX_set_msg_callback
SSL_CTX_set_next_proto_select_cb
SSL_CTX_set_next_protos_advertised_cb
SSL_CTX_set_psk_client_callback
SSL_CTX_set_psk_server_callback
SSL_CTX_set_purpose
SSL_CTX_set_quiet_shutdown
SSL_CTX_set_session_id_context
SSL_CTX_set_srp_cb_arg
SSL_CTX_set_srp_client_pwd_callback
SSL_CTX_set_srp_password
SSL_CTX_set_srp_strength
SSL_CTX_set_srp_username
SSL_CTX_set_srp_username_callback
SSL_CTX_set_srp_verify_param_callback
SSL_CTX_set_ssl_version
SSL_CTX_set_timeout
SSL_CTX_set_tlsext_use_srtp
SSL_CTX_set_tmp_dh_callback
SSL_CTX_set_tmp_ecdh_callback
SSL_CTX_set_tmp_rsa_callback
SSL_CTX_set_trust
SSL_CTX_set_verify
SSL_CTX_set_verify_depth
SSL_CTX_use_PrivateKey
SSL_CTX_use_PrivateKey_ASN1
SSL_CTX_use_PrivateKey_file
SSL_CTX_use_RSAPrivateKey
SSL_CTX_use_RSAPrivateKey_ASN1
SSL_CTX_use_RSAPrivateKey_file
SSL_CTX_use_certificate
SSL_CTX_use_certificate_ASN1
SSL_CTX_use_certificate_chain_file
SSL_CTX_use_certificate_file
SSL_CTX_use_psk_identity_hint
SSL_CTX_use_serverinfo
SSL_CTX_use_serverinfo_file
SSL_SESSION_free
SSL_SESSION_get0_peer
SSL_SESSION_get_compress_id
SSL_SESSION_get_ex_data
SSL_SESSION_get_ex_new_index
SSL_SESSION_get_id
SSL_SESSION_get_time
SSL_SESSION_get_timeout
SSL_SESSION_new
SSL_SESSION_print
SSL_SESSION_print_fp
SSL_SESSION_set1_id_context
SSL_SESSION_set_ex_data
SSL_SESSION_set_time
SSL_SESSION_set_timeout
SSL_SRP_CTX_free
SSL_SRP_CTX_init
SSL_accept
SSL_add_client_CA
SSL_add_dir_cert_subjects_to_stack
SSL_add_file_cert_subjects_to_stack
SSL_alert_desc_string
SSL_alert_desc_string_long
SSL_alert_type_string
SSL_alert_type_string_long
SSL_cache_hit
SSL_callback_ctrl
SSL_certs_clear
SSL_check_chain
SSL_check_private_key
SSL_clear
SSL_connect
SSL_copy_session_id
SSL_ctrl
SSL_do_handshake
SSL_dup
SSL_dup_CA_list
SSL_export_keying_material
SSL_extension_supported
SSL_free
SSL_get0_alpn_selected
SSL_get0_next_proto_negotiated
SSL_get0_param
SSL_get1_session
SSL_get_SSL_CTX
SSL_get_certificate
SSL_get_cipher_list
SSL_get_ciphers
SSL_get_client_CA_list
SSL_get_current_cipher
SSL_get_current_compression
SSL_get_current_expansion
SSL_get_default_timeout
SSL_get_error
SSL_get_ex_data
SSL_get_ex_data_X509_STORE_CTX_idx
SSL_get_ex_new_index
SSL_get_fd
SSL_get_finished
SSL_get_info_callback
SSL_get_peer_cert_chain
SSL_get_peer_certificate
SSL_get_peer_finished
SSL_get_privatekey
SSL_get_psk_identity
SSL_get_psk_identity_hint
SSL_get_quiet_shutdown
SSL_get_rbio
SSL_get_read_ahead
SSL_get_rfd
SSL_get_selected_srtp_profile
SSL_get_servername
SSL_get_servername_type
SSL_get_session
SSL_get_shared_ciphers
SSL_get_shared_sigalgs
SSL_get_shutdown
SSL_get_sigalgs
SSL_get_srp_N
SSL_get_srp_g
SSL_get_srp_userinfo
SSL_get_srp_username
SSL_get_srtp_profiles
SSL_get_ssl_method
SSL_get_verify_callback
SSL_get_verify_depth
SSL_get_verify_mode
SSL_get_verify_result
SSL_get_version
SSL_get_wbio
SSL_get_wfd
SSL_has_matching_session_id
SSL_is_server
SSL_library_init
SSL_load_client_CA_file
SSL_load_error_strings
SSL_new
SSL_peek
SSL_pending
SSL_read
SSL_renegotiate
SSL_renegotiate_abbreviated
SSL_renegotiate_pending
SSL_rstate_string
SSL_rstate_string_long
SSL_select_next_proto
SSL_set1_param
SSL_set_SSL_CTX
SSL_set_accept_state
SSL_set_alpn_protos
SSL_set_bio
SSL_set_cert_cb
SSL_set_cipher_list
SSL_set_client_CA_list
SSL_set_connect_state
SSL_set_debug
SSL_set_ex_data
SSL_set_fd
SSL_set_generate_session_id
SSL_set_info_callback
SSL_set_msg_callback
SSL_set_psk_client_callback
SSL_set_psk_server_callback
SSL_set_purpose
SSL_set_quiet_shutdown
SSL_set_read_ahead
SSL_set_rfd
SSL_set_session
SSL_set_session_id_context
SSL_set_session_secret_cb
SSL_set_session_ticket_ext
SSL_set_session_ticket_ext_cb
SSL_set_shutdown
SSL_set_srp_server_param
SSL_set_srp_server_param_pw
SSL_set_ssl_method
SSL_set_state
SSL_set_tlsext_use_srtp
SSL_set_tmp_dh_callback
SSL_set_tmp_ecdh_callback
SSL_set_tmp_rsa_callback
SSL_set_trust
SSL_set_verify
SSL_set_verify_depth
SSL_set_verify_result
SSL_set_wfd
SSL_shutdown
SSL_srp_server_param_with_username
SSL_state
SSL_state_string
SSL_state_string_long
SSL_use_PrivateKey
SSL_use_PrivateKey_ASN1
SSL_use_PrivateKey_file
SSL_use_RSAPrivateKey
SSL_use_RSAPrivateKey_ASN1
SSL_use_RSAPrivateKey_file
SSL_use_certificate
SSL_use_certificate_ASN1
SSL_use_certificate_file
SSL_use_psk_identity_hint
SSL_version
SSL_want
SSL_write
SSLv23_client_method
SSLv23_method
SSLv23_server_method
SSLv2_client_method
SSLv2_method
SSLv2_server_method
SSLv3_client_method
SSLv3_method
SSLv3_server_method
TLSv1_1_client_method
TLSv1_1_method
TLSv1_1_server_method
TLSv1_2_client_method
TLSv1_2_method
TLSv1_2_server_method
TLSv1_client_method
TLSv1_method
TLSv1_server_method
d2i_SSL_SESSION
i2d_SSL_SESSION
ssl3_ciphers

Sections

.text
Size: 237KB - Virtual size: 237KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/bz2.dll
.dll windows:6 windows x64 arch:x64

250c242bc4ff9b2842c7a6cb04d4faf6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\bzip2\x64-windows-rel\bz2.pdb

Imports

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
memset
memcpy

api-ms-win-crt-stdio-l1-1-0

ungetc
fwrite
fread
_fileno
fgetc
fflush
ferror
fclose
fopen
__acrt_iob_func
_setmode
__stdio_common_vfprintf

api-ms-win-crt-heap-l1-1-0

free
malloc

api-ms-win-crt-runtime-l1-1-0

_seh_filter_dll
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_cexit
exit
_initterm
_configure_narrow_argv
_initterm_e

api-ms-win-crt-string-l1-1-0

isdigit

api-ms-win-crt-math-l1-1-0

_fdopen

kernel32

GetSystemTimeAsFileTime
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
RtlCaptureContext
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess

Exports

Exports

BZ2_bzBuffToBuffCompress
BZ2_bzBuffToBuffDecompress
BZ2_bzCompress
BZ2_bzCompressEnd
BZ2_bzCompressInit
BZ2_bzDecompress
BZ2_bzDecompressEnd
BZ2_bzDecompressInit
BZ2_bzRead
BZ2_bzReadClose
BZ2_bzReadGetUnused
BZ2_bzReadOpen
BZ2_bzWrite
BZ2_bzWriteClose
BZ2_bzWriteClose64
BZ2_bzWriteOpen
BZ2_bzclose
BZ2_bzdopen
BZ2_bzerror
BZ2_bzflush
BZ2_bzlibVersion
BZ2_bzopen
BZ2_bzread
BZ2_bzwrite

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/getopt.dll
.dll windows:6 windows x64 arch:x64

d241e1ebf18aef97a56fa5ddeaf11c4c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\getopt-win32\x64-windows-rel\0.1-e58465bf74\x64\Release\getopt.pdb

Imports

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
strchr
memset
wcschr

api-ms-win-crt-stdio-l1-1-0

fputc
__acrt_iob_func
__stdio_common_vfprintf
__stdio_common_vfwprintf
fputwc

api-ms-win-crt-string-l1-1-0

wcsncmp
strncmp

api-ms-win-crt-environment-l1-1-0

_wgetenv
getenv

api-ms-win-crt-runtime-l1-1-0

_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm

kernel32

GetSystemTimeAsFileTime
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
RtlCaptureContext
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent

Exports

Exports

getopt_a
getopt_long_a
getopt_long_only_a
getopt_long_only_w
getopt_long_w
getopt_w
optarg_a
optarg_w
opterr
optind
optopt

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevice_id.exe
.exe windows:6 windows x64 arch:x64

808cad2d92c2ccf265bbf5da423ffada

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevice_id.pdb

Imports

kernel32

IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

getopt

getopt_long_a
optind

imobiledevice

idevice_get_device_list_extended
lockdownd_client_new
idevice_free
idevice_set_debug_level
lockdownd_get_device_name
idevice_new_with_options
lockdownd_client_free
idevice_device_list_extended_free

vcruntime140

memset
strrchr
__C_specific_handler
__current_exception_context
__current_exception

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__p__commode
_set_fmode
__acrt_iob_func

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode

api-ms-win-crt-runtime-l1-1-0

_c_exit
_cexit
__p___argv
_register_onexit_function
__p___argc
_set_app_type
_register_thread_local_exe_atexit_callback
terminate
_configure_narrow_argv
_initialize_narrow_environment
_get_initial_narrow_environment
_seh_filter_exe
exit
_initialize_onexit_table
_initterm
_initterm_e
_crt_atexit
_exit

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/ideviceactivation.dll
.dll windows:6 windows x64 arch:x64

6803e60666484b5da1e8760667d32afe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\a\1\s\x64\Release\ideviceactivation.pdb

Imports

libxml2

xmlXPathFreeObject
xmlNodeGetContent
xmlBufferFree
xmlXPathFreeContext
htmlNodeDump
xmlXPathNewContext
xmlNodeListGetString
xmlBufferCreate
xmlXPathEvalExpression
xmlFree
xmlStrlen
xmlReadMemory
xmlGetProp
xmlFreeDoc
xmlStrcmp

kernel32

IsProcessorFeaturePresent
RtlLookupFunctionEntry
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
RtlCaptureContext
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
Sleep

libcurl

curl_slist_append
curl_easy_setopt
curl_formfree
curl_easy_init
curl_easy_cleanup
curl_formadd
curl_slist_free_all
curl_global_init
curl_easy_perform
curl_global_cleanup

imobiledevice

lockdownd_get_value

plist

plist_get_string_val
plist_dict_merge
plist_get_bool_val
plist_dict_get_size
plist_new_bool
plist_copy
plist_dict_get_item
plist_to_xml
plist_new_dict
plist_new_string
plist_dict_new_iter
plist_dict_set_item
plist_new_data
plist_free
plist_from_xml
plist_get_node_type
plist_dict_next_item

vcruntime140

strstr
memcpy
__C_specific_handler
__std_type_info_destroy_list
memset
strchr

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
__stdio_common_vfprintf
fwrite
__acrt_iob_func

api-ms-win-crt-heap-l1-1-0

free
malloc
realloc

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm
_execute_onexit_table
_cexit
_initialize_onexit_table
_initterm_e

api-ms-win-crt-string-l1-1-0

strcmp
_strdup

Exports

Exports

idevice_activation_drm_handshake_request_new
idevice_activation_request_free
idevice_activation_request_get_field
idevice_activation_request_get_fields
idevice_activation_request_get_url
idevice_activation_request_new
idevice_activation_request_new_from_lockdownd
idevice_activation_request_set_field
idevice_activation_request_set_fields
idevice_activation_request_set_fields_from_response
idevice_activation_request_set_url
idevice_activation_response_field_requires_input
idevice_activation_response_field_secure_input
idevice_activation_response_free
idevice_activation_response_get_activation_record
idevice_activation_response_get_description
idevice_activation_response_get_field
idevice_activation_response_get_fields
idevice_activation_response_get_headers
idevice_activation_response_get_label
idevice_activation_response_get_placeholder
idevice_activation_response_get_title
idevice_activation_response_has_errors
idevice_activation_response_is_activation_acknowledged
idevice_activation_response_is_authentication_required
idevice_activation_response_new
idevice_activation_response_new_from_html
idevice_activation_response_to_buffer
idevice_activation_send_request
idevice_activation_set_debug_level

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/ideviceactivation.exe
.exe windows:6 windows x64 arch:x64

89b62278d18656be68b5d3d708bc5c23

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\ideviceactivation.pdb

Imports

imobiledevice

lockdownd_client_new_with_handshake
lockdownd_set_value
idevice_new
lockdownd_activate
lockdownd_service_descriptor_free
lockdownd_deactivate
idevice_free
mobileactivation_get_activation_state
mobileactivation_deactivate
mobileactivation_create_activation_info_with_session
mobileactivation_create_activation_info
mobileactivation_client_start_service
mobileactivation_activate_with_session
lockdownd_get_value
lockdownd_start_service
mobileactivation_client_free
lockdownd_client_free
idevice_set_debug_level
mobileactivation_create_activation_session_info
mobileactivation_activate
mobileactivation_client_new

ideviceactivation

idevice_activation_response_field_requires_input
idevice_activation_request_new_from_lockdownd
idevice_activation_request_set_field
idevice_activation_request_new
idevice_activation_response_get_label
idevice_activation_response_get_description
idevice_activation_response_field_secure_input
idevice_activation_request_set_url
idevice_activation_response_is_activation_acknowledged
idevice_activation_response_get_headers
idevice_activation_response_get_title
idevice_activation_send_request
idevice_activation_request_set_fields_from_response
idevice_activation_response_get_fields
idevice_activation_response_get_activation_record
idevice_activation_response_get_placeholder
idevice_activation_response_free
idevice_activation_request_set_fields
idevice_activation_response_has_errors
idevice_activation_drm_handshake_request_new
idevice_activation_set_debug_level
idevice_activation_request_free

plist

plist_get_string_val
plist_dict_get_size
plist_new_bool
plist_new_dict
plist_dict_new_iter
plist_dict_set_item
plist_free
plist_get_node_type
plist_dict_next_item

vcruntime140

__current_exception
strrchr
__current_exception_context
memset
__C_specific_handler

api-ms-win-crt-stdio-l1-1-0

__p__commode
_isatty
_fileno
__stdio_common_vfprintf
_set_fmode
fputc
__stdio_common_vsscanf
fflush
__acrt_iob_func
fputs

api-ms-win-crt-string-l1-1-0

strcmp
isprint

api-ms-win-crt-heap-l1-1-0

_set_new_mode
free

api-ms-win-crt-runtime-l1-1-0

_register_onexit_function
_crt_atexit
_register_thread_local_exe_atexit_callback
_c_exit
_cexit
__p___argv
__p___argc
_initialize_onexit_table
_exit
exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_set_app_type
_seh_filter_exe
terminate

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-conio-l1-1-0

_getch

kernel32

SetUnhandledExceptionFilter
RtlLookupFunctionEntry
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
RtlVirtualUnwind
UnhandledExceptionFilter
RtlCaptureContext

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicebackup.exe
.exe windows:6 windows x64 arch:x64

bb93d8fc5c9253cb49c2a8a80592032d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicebackup.pdb

Imports

kernel32

Sleep
QueryPerformanceFrequency
QueryPerformanceCounter
GetCurrentProcess
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
GetModuleHandleW
TerminateProcess
IsProcessorFeaturePresent
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter

libeay32

ord502
ord503
ord501
ord504

imobiledevice

mobilebackup_send_backup_file_received
mobilebackup_send_restore_complete
mobilebackup_receive_restore_application_received
mobilebackup_client_new
idevice_new
lockdownd_service_descriptor_free
np_client_new
mobilebackup_send
afc_client_free
np_post_notification
np_observe_notifications
afc_file_lock
mobilebackup_receive
idevice_free
mobilebackup_request_restore
afc_client_new
lockdownd_client_new_with_handshake
np_client_free
afc_file_close
mobilebackup_request_backup
idevice_set_debug_level
lockdownd_client_free
lockdownd_start_service
lockdownd_get_value
np_set_notify_callback
afc_file_open
mobilebackup_receive_restore_file_received
mobilebackup_send_error
mobilebackup_client_free

plist

plist_get_bool_val
plist_array_get_item
plist_to_xml
plist_to_bin
plist_from_bin
plist_dict_new_iter
plist_from_xml
plist_get_node_type
plist_dict_next_item
plist_get_data_val
plist_get_string_val
plist_new_string
plist_dict_set_item
plist_new_data
plist_compare_node_value
plist_new_uint
plist_new_date
plist_new_bool
plist_copy
plist_dict_remove_item
plist_new_dict
plist_array_append_item
plist_new_array
plist_set_date_val
plist_free
plist_dict_get_item
plist_get_uint_val
plist_array_get_size
plist_dict_get_size

vcruntime140

strrchr
__C_specific_handler
__current_exception
memset
__current_exception_context

api-ms-win-crt-stdio-l1-1-0

fclose
__stdio_common_vsprintf
fwrite
rewind
fread
fflush
__p__commode
fopen
__acrt_iob_func
fseek
__stdio_common_vfprintf
_set_fmode
ftell

api-ms-win-crt-string-l1-1-0

_strdup
toupper
strcmp

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode
malloc

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_exit
_get_initial_narrow_environment
_initialize_narrow_environment
__p___argc
_initterm
exit
_set_app_type
_seh_filter_exe
strerror
signal
_c_exit
_register_thread_local_exe_atexit_callback
_errno
__p___argv
_configure_narrow_argv
terminate
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_cexit

api-ms-win-crt-convert-l1-1-0

strtol

api-ms-win-crt-filesystem-l1-1-0

rename
_stat64i32
_stat64
remove

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicebackup2.exe
.exe windows:6 windows x64 arch:x64

a9828c7dedd34fa0e65d1a9878fe9018

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicebackup2.pdb

Imports

kernel32

FindFirstFileExW
GetFullPathNameW
FindNextFileW
FindClose
GetLastError
QueryPerformanceFrequency
DeleteFileA
RemoveDirectoryA
GetDiskFreeSpaceExA
CreateDirectoryA
QueryPerformanceCounter
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
GetModuleHandleW
TerminateProcess
IsProcessorFeaturePresent
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
RtlCaptureContext

imobiledevice

instproxy_client_options_set_return_attributes
instproxy_client_options_new
afc_client_new
idevice_free
afc_dictionary_free
mobilebackup2_client_new
instproxy_client_options_free
instproxy_browse
diagnostics_relay_client_start_service
idevice_new
lockdownd_client_new_with_handshake
idevice_get_udid
lockdownd_service_descriptor_free
np_client_new
afc_remove_path
diagnostics_relay_query_mobilegestalt
mobilebackup2_send_status_response
afc_client_free
sbservices_client_start_service
instproxy_client_free
afc_make_directory
instproxy_client_options_add
np_post_notification
mobilebackup2_receive_raw
np_observe_notifications
mobilebackup2_send_request
mobilebackup2_receive_message
afc_file_lock
mobilebackup2_version_exchange
mobilebackup2_send_raw
diagnostics_relay_goodbye
np_client_free
mobilebackup2_send_message
afc_file_read
instproxy_client_start_service
sbservices_get_icon_pngdata
sbservices_client_free
mobilebackup2_client_free
lockdownd_start_service_with_escrow_bag
afc_file_close
afc_file_open
np_set_notify_callback
lockdownd_get_value
lockdownd_start_service
afc_get_file_info
lockdownd_client_free
idevice_set_debug_level
diagnostics_relay_client_free
afc_file_write

plist

plist_get_string_val
plist_get_uint_val
plist_array_get_size
plist_to_xml
plist_from_bin
plist_dict_new_iter
plist_get_real_val
plist_from_xml
plist_get_node_type
plist_get_bool_val
plist_dict_get_item
plist_new_string
plist_dict_set_item
plist_new_data
plist_new_uint
plist_dict_get_size
plist_new_date
plist_new_bool
plist_copy
plist_access_path
plist_new_dict
plist_array_append_item
plist_new_array
plist_free
plist_array_get_item
plist_dict_next_item

vcruntime140

memcpy
strrchr
__C_specific_handler
strchr
__current_exception
__current_exception_context
memset

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
fflush
fread
__p__commode
__stdio_common_vsprintf
fwrite
rewind
__stdio_common_vfprintf
fseek
fputs
fclose
fopen
fputc
ftell
_set_fmode
__stdio_common_vsscanf

api-ms-win-crt-utility-l1-1-0

srand
rand

api-ms-win-crt-string-l1-1-0

strcmp
isprint
_strdup
toupper

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode
malloc

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-runtime-l1-1-0

exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_exit
_set_app_type
_seh_filter_exe
strerror
terminate
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_errno
__p___argc
_crt_atexit
__p___argv
_register_onexit_function
_initialize_onexit_table
_set_errno
signal

api-ms-win-crt-convert-l1-1-0

atol
wcstombs_s
mbstowcs_s

api-ms-win-crt-filesystem-l1-1-0

rename
_stat64i32
_stat64

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-conio-l1-1-0

_getch

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicecrashreport.exe
.exe windows:6 windows x64 arch:x64

cc8bcb796f75446b96621ccb064b8eeb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicecrashreport.pdb

Imports

kernel32

GetCurrentProcess
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
GetModuleHandleW
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter

imobiledevice

afc_client_new
idevice_free
service_receive_with_timeout
idevice_new
lockdownd_client_new_with_handshake
lockdownd_service_descriptor_free
afc_client_free
service_client_free
afc_file_close
idevice_set_debug_level
lockdownd_client_free
afc_get_file_info
lockdownd_start_service
afc_file_open
service_client_new
afc_file_read
afc_read_directory
afc_dictionary_free
afc_remove_path

plist

plist_from_bin
plist_from_xml
plist_get_node_type
plist_dict_get_item
plist_free
plist_get_string_val

vcruntime140

__C_specific_handler
__current_exception
__current_exception_context
memset
strrchr

api-ms-win-crt-stdio-l1-1-0

_set_fmode
fseek
__stdio_common_vfprintf
rewind
fwrite
ftell
fclose
fopen
fread
__acrt_iob_func
__p__commode

api-ms-win-crt-string-l1-1-0

strncmp
strcmp
_strdup
strncpy

api-ms-win-crt-heap-l1-1-0

_set_new_mode
free
malloc

api-ms-win-crt-runtime-l1-1-0

exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_c_exit
_exit
__p___argc
_initialize_onexit_table
_register_onexit_function
_crt_atexit
terminate
_seh_filter_exe
_register_thread_local_exe_atexit_callback
__p___argv
_set_app_type
_cexit

api-ms-win-crt-convert-l1-1-0

atoi
atoll

api-ms-win-crt-filesystem-l1-1-0

remove
_mkdir
_stat64i32

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicedate.exe
.exe windows:6 windows x64 arch:x64

f6679c2ec0fb1c445c9d8aba8f0b60af

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicedate.pdb

Imports

kernel32

IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

imobiledevice

idevice_new
lockdownd_client_free
lockdownd_get_value
lockdownd_client_new_with_handshake
idevice_set_debug_level
idevice_free
lockdownd_set_value

plist

plist_get_real_val
plist_get_node_type
plist_get_uint_val
plist_new_uint
plist_new_real
plist_free

vcruntime140

strrchr
__C_specific_handler
__current_exception_context
__current_exception
memset

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__acrt_iob_func
_set_fmode
__p__commode
puts

api-ms-win-crt-heap-l1-1-0

_set_new_mode

api-ms-win-crt-time-l1-1-0

strftime
_time64
_localtime64
_mktime64

api-ms-win-crt-runtime-l1-1-0

_exit
exit
_initterm_e
__p___argc
_register_onexit_function
_crt_atexit
terminate
__p___argv
_cexit
_seh_filter_exe
_initterm
_get_initial_narrow_environment
_c_exit
_register_thread_local_exe_atexit_callback
_initialize_onexit_table
_set_app_type
_initialize_narrow_environment
_configure_narrow_argv

api-ms-win-crt-convert-l1-1-0

atoi

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicedebug.exe
.exe windows:6 windows x64 arch:x64

d94eb67f27cb7b280aac86fc601db670

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicedebug.pdb

Imports

kernel32

Sleep
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

imobiledevice

instproxy_client_options_set_return_attributes
instproxy_client_options_new
debugserver_decode_string
instproxy_client_options_free
instproxy_client_start_service
debug_info_real
idevice_free
debugserver_client_set_environment_hex_encoded
instproxy_client_get_path_for_bundle_identifier
debugserver_command_new
instproxy_client_free
idevice_new
debugserver_command_free
debugserver_client_send_command
debugserver_client_set_argv
debugserver_client_start_service
debugserver_client_free
idevice_set_debug_level
instproxy_lookup
instproxy_client_options_add

plist

plist_get_node_type
plist_dict_get_item
plist_get_string_val
plist_copy
plist_access_path
plist_free

vcruntime140

memset
__C_specific_handler
strchr
strrchr
__current_exception
__current_exception_context

api-ms-win-crt-stdio-l1-1-0

fflush
__p__commode
_set_fmode
__acrt_iob_func
__stdio_common_vfprintf

api-ms-win-crt-string-l1-1-0

_strdup
strncmp

api-ms-win-crt-heap-l1-1-0

free
realloc
malloc
_set_new_mode

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_register_thread_local_exe_atexit_callback
_c_exit
_cexit
__p___argv
_exit
exit
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_initialize_onexit_table
_set_app_type
_seh_filter_exe
signal
terminate
_register_onexit_function
_initterm_e
__p___argc

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicedebugserverproxy.exe
.exe windows:6 windows x64 arch:x64

c280b183bf54a4b6e913f2074d2b9e85

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicedebugserverproxy.pdb

Imports

ws2_32

WSAStartup
send
socket
listen
recv
htonl
htons
setsockopt
shutdown
select
closesocket
bind
accept

kernel32

GetModuleHandleW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
IsDebuggerPresent
CreateThread
CloseHandle
WaitForSingleObject
ExitProcess
InitializeSListHead

imobiledevice

debugserver_client_send
debugserver_client_free
debugserver_client_start_service
debugserver_client_receive_with_timeout
idevice_new
idevice_set_debug_level
idevice_free

vcruntime140

__C_specific_handler
__current_exception_context
memset
strrchr
__current_exception

api-ms-win-crt-stdio-l1-1-0

__p__commode
__stdio_common_vfprintf
__acrt_iob_func
_set_fmode

api-ms-win-crt-heap-l1-1-0

malloc
_set_new_mode
free

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_register_thread_local_exe_atexit_callback
_c_exit
_cexit
__p___argv
__p___argc
_initterm_e
_initterm
_initialize_narrow_environment
_configure_narrow_argv
_initialize_onexit_table
terminate
_set_app_type
perror
strerror
signal
_seh_filter_exe
_errno
exit
_register_onexit_function
_get_initial_narrow_environment
_exit

api-ms-win-crt-convert-l1-1-0

atoi

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicediagnostics.exe
.exe windows:6 windows x64 arch:x64

a1eea0eedc356c76c02fc35ce37c451a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicediagnostics.pdb

Imports

kernel32

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
GetModuleHandleW
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent

imobiledevice

diagnostics_relay_restart
diagnostics_relay_shutdown
idevice_new
lockdownd_client_new_with_handshake
diagnostics_relay_query_mobilegestalt
diagnostics_relay_client_new
diagnostics_relay_goodbye
diagnostics_relay_client_free
idevice_set_debug_level
diagnostics_relay_query_ioregistry_plane
lockdownd_client_free
lockdownd_start_service
diagnostics_relay_query_ioregistry_entry
diagnostics_relay_request_diagnostics
diagnostics_relay_sleep
lockdownd_service_descriptor_free
idevice_free

plist

plist_new_string
plist_array_append_item
plist_new_array
plist_free
plist_to_xml

vcruntime140

__C_specific_handler
memset
__current_exception_context
__current_exception
strrchr

api-ms-win-crt-stdio-l1-1-0

__p__commode
puts
_set_fmode
__stdio_common_vfprintf
__acrt_iob_func

api-ms-win-crt-string-l1-1-0

strncmp
_strdup
strcmp

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode

api-ms-win-crt-runtime-l1-1-0

_cexit
__p___argv
__p___argc
_c_exit
_register_thread_local_exe_atexit_callback
exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_initialize_onexit_table
_set_app_type
_seh_filter_exe
_register_onexit_function
_crt_atexit
_exit
terminate

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/ideviceenterrecovery.exe
.exe windows:6 windows x64 arch:x64

ee8740a4a2341520185de205dc5d7d55

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\ideviceenterrecovery.pdb

Imports

kernel32

IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

imobiledevice

lockdownd_client_new
lockdownd_client_free
idevice_free
idevice_new
lockdownd_enter_recovery
idevice_set_debug_level

vcruntime140

__current_exception_context
__current_exception
__C_specific_handler
memset
strrchr

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__acrt_iob_func
_set_fmode
__p__commode

api-ms-win-crt-heap-l1-1-0

_set_new_mode

api-ms-win-crt-runtime-l1-1-0

_set_app_type
terminate
_register_thread_local_exe_atexit_callback
_cexit
__p___argv
_seh_filter_exe
__p___argc
_register_onexit_function
_exit
_initialize_onexit_table
_c_exit
exit
_initterm_e
_crt_atexit
_initialize_narrow_environment
_get_initial_narrow_environment
_initterm
_configure_narrow_argv

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/ideviceimagemounter.exe
.exe windows:6 windows x64 arch:x64

2491ed274c29ef3692a0b33d86229b9e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\ideviceimagemounter.pdb

Imports

kernel32

GetCurrentProcess
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
UnhandledExceptionFilter
SetUnhandledExceptionFilter

getopt

optarg_a
optind
getopt_long_a

imobiledevice

afc_client_new
idevice_free
afc_file_write
lockdownd_client_new_with_handshake
lockdownd_service_descriptor_free
mobile_image_mounter_mount_image
afc_client_free
afc_make_directory
mobile_image_mounter_upload_image
afc_file_close
idevice_set_debug_level
lockdownd_client_free
afc_get_file_info
mobile_image_mounter_new
idevice_new
mobile_image_mounter_lookup_image
lockdownd_start_service
lockdownd_get_value
mobile_image_mounter_hangup
mobile_image_mounter_free
afc_file_open

plist

plist_get_string_val
plist_get_uint_val
plist_get_key_val
plist_array_get_size
plist_to_xml
plist_get_date_val
plist_array_get_item
plist_get_real_val
plist_get_node_type
plist_dict_next_item
plist_get_data_val
plist_dict_get_item
plist_get_bool_val
plist_dict_new_iter
plist_free

vcruntime140

strrchr
__C_specific_handler
__current_exception
__current_exception_context
memset

api-ms-win-crt-stdio-l1-1-0

fread
_set_fmode
__acrt_iob_func
fopen
fclose
__stdio_common_vsscanf
puts
__p__commode
__stdio_common_vfprintf
__stdio_common_vsprintf

api-ms-win-crt-string-l1-1-0

_strdup
strcmp

api-ms-win-crt-heap-l1-1-0

free
realloc
malloc
_set_new_mode

api-ms-win-crt-time-l1-1-0

strftime
_localtime64

api-ms-win-crt-runtime-l1-1-0

__p___argv
__p___argc
_cexit
_exit
_initterm_e
_c_exit
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_register_thread_local_exe_atexit_callback
_set_app_type
_seh_filter_exe
strerror
_initterm
_errno
terminate
exit
_initialize_onexit_table
_register_onexit_function
_crt_atexit

api-ms-win-crt-filesystem-l1-1-0

_stat64i32

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/ideviceinfo.exe
.exe windows:6 windows x64 arch:x64

313f08433e0871939b1dbdb197b8c964

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\ideviceinfo.pdb

Imports

kernel32

IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

getopt

getopt_long_a
optarg_a

imobiledevice

lockdownd_client_new_with_handshake
lockdownd_strerror
idevice_free
lockdownd_get_value
lockdownd_client_free
idevice_new_with_options
idevice_set_debug_level
lockdownd_client_new

plist

plist_get_node_type
plist_free
plist_get_date_val
plist_dict_next_item
plist_get_data_val
plist_dict_new_iter
plist_to_xml
plist_array_get_size
plist_get_key_val
plist_get_uint_val
plist_get_string_val
plist_array_get_item
plist_get_bool_val
plist_get_real_val

vcruntime140

__current_exception_context
__current_exception
__C_specific_handler
strstr
strrchr
memset

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__p__commode
_set_fmode
__acrt_iob_func

api-ms-win-crt-string-l1-1-0

_strdup

api-ms-win-crt-heap-l1-1-0

malloc
free
_set_new_mode

api-ms-win-crt-time-l1-1-0

strftime
_localtime64

api-ms-win-crt-runtime-l1-1-0

_register_thread_local_exe_atexit_callback
_c_exit
_cexit
terminate
__p___argc
_initialize_onexit_table
exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_register_onexit_function
_seh_filter_exe
_set_app_type
_exit
_crt_atexit
__p___argv

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 564B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/ideviceinstaller.exe
.exe windows:6 windows x64 arch:x64

ec4ba77e87a354fb387267b429b341c8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\ideviceinstaller.pdb

Imports

kernel32

FindFirstFileExW
GetFullPathNameW
FindNextFileW
FindClose
Sleep
RtlLookupFunctionEntry
RtlVirtualUnwind
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlCaptureContext

plist

plist_get_node_type
plist_array_get_item
plist_get_string_val
plist_dict_get_size
plist_array_get_size
plist_dict_get_item
plist_to_xml
plist_dict_remove_item
plist_from_bin
plist_dict_new_iter
plist_new_data
plist_free
plist_from_xml
plist_dict_next_item

imobiledevice

instproxy_client_options_new
instproxy_archive
idevice_get_udid
idevice_free
instproxy_browse
instproxy_install
afc_file_write
lockdownd_client_new_with_handshake
lockdownd_service_descriptor_free
instproxy_client_options_free
np_client_new
instproxy_command_get_name
idevice_event_unsubscribe
afc_client_free
instproxy_client_options_set_return_attributes
instproxy_status_get_percent_complete
idevice_new
instproxy_uninstall
instproxy_upgrade
afc_file_read
instproxy_remove_archive
instproxy_status_get_error
instproxy_client_free
instproxy_lookup_archives
afc_file_open
instproxy_browse_with_callback
np_set_notify_callback
lockdownd_start_service
instproxy_status_get_name
afc_get_file_info
lockdownd_client_free
idevice_event_subscribe
idevice_set_debug_level
afc_file_close
np_client_free
instproxy_restore
np_observe_notifications
instproxy_status_get_current_list
instproxy_client_new
instproxy_client_options_add
afc_make_directory
afc_client_new

getopt

optind
getopt_long_a
optarg_a

zip

zip_name_locate
zip_close
zip_stat_index
zip_unchange_all
zip_open
zip_fopen_index
zip_get_name
zip_get_num_files
zip_fread
zip_stat_init
zip_fclose
zip_get_num_entries

vcruntime140

memcpy
memset
__current_exception_context
__current_exception
__C_specific_handler
strrchr

api-ms-win-crt-runtime-l1-1-0

_errno
_register_onexit_function
_register_thread_local_exe_atexit_callback
_crt_atexit
_cexit
terminate
_exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
__p___argc
_set_app_type
_seh_filter_exe
_wassert
_set_errno
strerror
exit
_initialize_onexit_table
__p___argv
_c_exit

api-ms-win-crt-string-l1-1-0

_strdup
strtok
strncmp
strncpy
strcmp

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
__p__commode
fwrite
fopen
__acrt_iob_func
_set_fmode
fread
setbuf
__stdio_common_vfprintf
puts
fclose

api-ms-win-crt-filesystem-l1-1-0

_stat64
_stat64i32

api-ms-win-crt-heap-l1-1-0

_set_new_mode
malloc
free

api-ms-win-crt-convert-l1-1-0

mbstowcs_s
atoi
wcstombs_s

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicename.exe
.exe windows:6 windows x64 arch:x64

c2356c896beb61cc8e0655cbb0de0c9f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicename.pdb

Imports

kernel32

IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

getopt

getopt_long_a
optind
optarg_a

imobiledevice

idevice_free
lockdownd_client_new_with_handshake
idevice_set_debug_level
lockdownd_get_device_name
lockdownd_client_free
idevice_new
lockdownd_set_value

plist

plist_new_string

vcruntime140

memset
__C_specific_handler
__current_exception_context
__current_exception

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__p__commode
_set_fmode
__acrt_iob_func

api-ms-win-crt-string-l1-1-0

_strdup

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode

api-ms-win-crt-runtime-l1-1-0

_c_exit
_cexit
__p___argv
_register_onexit_function
__p___argc
_set_app_type
_register_thread_local_exe_atexit_callback
terminate
_configure_narrow_argv
_initialize_narrow_environment
_get_initial_narrow_environment
_seh_filter_exe
exit
_initialize_onexit_table
_initterm
_initterm_e
_crt_atexit
_exit

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicenotificationproxy.exe
.exe windows:6 windows x64 arch:x64

2c8adcfd929ead7e193ab1e8b762c079

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicenotificationproxy.pdb

Imports

kernel32

Sleep
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

imobiledevice

idevice_free
np_observe_notification
idevice_new
np_set_notify_callback
lockdownd_client_new_with_handshake
lockdownd_service_descriptor_free
np_client_new
np_post_notification
np_client_free
idevice_set_debug_level
lockdownd_client_free
lockdownd_start_service

vcruntime140

memset
strrchr
__C_specific_handler
__current_exception_context
__current_exception

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__p__commode
_set_fmode
__acrt_iob_func

api-ms-win-crt-string-l1-1-0

strncmp
_strdup

api-ms-win-crt-heap-l1-1-0

realloc
free
malloc
_set_new_mode

api-ms-win-crt-runtime-l1-1-0

_c_exit
_cexit
__p___argv
__p___argc
_register_onexit_function
_set_app_type
_exit
_register_thread_local_exe_atexit_callback
terminate
_configure_narrow_argv
_initialize_narrow_environment
_get_initial_narrow_environment
_seh_filter_exe
signal
_initialize_onexit_table
_initterm
_initterm_e
_crt_atexit
exit

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicepair.exe
.exe windows:6 windows x64 arch:x64

4a2d8677501fe39f8f8adb085067f66b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicepair.pdb

Imports

kernel32

FindFirstFileExW
GetFullPathNameW
FindNextFileW
FindClose
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW

ole32

CoTaskMemFree

getopt

optind
optarg_a
getopt_long_a

imobiledevice

debug_info_real
idevice_get_udid
lockdownd_pair
idevice_free
idevice_new
lockdownd_client_new_with_handshake
lockdownd_client_new
idevice_set_debug_level
lockdownd_client_free
lockdownd_unpair
lockdownd_query_type

plist

plist_free
plist_get_string_val
plist_from_bin
plist_from_xml
plist_get_node_type
plist_dict_get_item

usbmuxd

usbmuxd_read_pair_record
usbmuxd_read_buid

vcruntime140

__C_specific_handler
memset
__current_exception_context
__current_exception
strrchr

api-ms-win-crt-stdio-l1-1-0

__p__commode
__stdio_common_vfprintf
_set_fmode
__acrt_iob_func

api-ms-win-crt-string-l1-1-0

_strdup
strncpy
strcmp

api-ms-win-crt-heap-l1-1-0

free
malloc
realloc
_set_new_mode

api-ms-win-crt-runtime-l1-1-0

_cexit
__p___argv
__p___argc
_set_errno
_exit
_initialize_onexit_table
_register_onexit_function
_register_thread_local_exe_atexit_callback
_get_initial_narrow_environment
_initialize_narrow_environment
terminate
exit
_seh_filter_exe
_c_exit
_set_app_type
_configure_narrow_argv
_initterm
_initterm_e
_crt_atexit

api-ms-win-crt-convert-l1-1-0

wcstombs_s
mbstowcs_s

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/ideviceprovision.exe
.exe windows:6 windows x64 arch:x64

609ea515f32cb985d01bf1859ece8257

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\ideviceprovision.pdb

Imports

ws2_32

ntohs
ntohl

kernel32

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
QueryPerformanceCounter
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
GetModuleHandleW
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
TerminateProcess
IsProcessorFeaturePresent

imobiledevice

misagent_copy
misagent_install
lockdownd_client_new_with_handshake
misagent_copy_all
misagent_client_free
misagent_remove
idevice_set_debug_level
lockdownd_client_free
lockdownd_start_service
lockdownd_get_value
misagent_get_status_code
idevice_new
misagent_client_new
lockdownd_service_descriptor_free
idevice_free

plist

plist_get_uint_val
plist_get_string_val
plist_dict_new_iter
plist_array_get_item
plist_get_bool_val
plist_get_key_val
plist_array_get_size
plist_from_xml
plist_get_node_type
plist_dict_next_item
plist_get_data_val
plist_dict_get_item
plist_new_data
plist_free
plist_get_real_val
plist_get_date_val
plist_to_xml

vcruntime140

__C_specific_handler
strrchr
memset
__current_exception_context
__current_exception

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
fwrite
__stdio_common_vsprintf
fclose
fopen
__stdio_common_vsscanf
fread
ftell
__acrt_iob_func
__p__commode
fseek
_set_fmode

api-ms-win-crt-string-l1-1-0

strcmp

api-ms-win-crt-heap-l1-1-0

_set_new_mode
free
malloc

api-ms-win-crt-time-l1-1-0

strftime
_localtime64

api-ms-win-crt-runtime-l1-1-0

__p___argv
__p___argc
_c_exit
_exit
_register_thread_local_exe_atexit_callback
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_onexit_table
_register_onexit_function
_cexit
strerror
_crt_atexit
_initialize_narrow_environment
terminate
_seh_filter_exe
_set_app_type
_errno
exit
_configure_narrow_argv

api-ms-win-crt-filesystem-l1-1-0

_stat64i32

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicerestore.exe
.exe windows:6 windows x64 arch:x64

a1162e59ce3efe85d10b71c7ff476c6c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicerestore.pdb

Imports

kernel32

GetFullPathNameA
Sleep
GetCurrentThreadId
GetCurrentProcessId
SystemTimeToFileTime
CreateDirectoryA
GetSystemTime
UnlockFileEx
GetLastError
CreateFileA
CloseHandle
LockFileEx
ExitProcess
EnterCriticalSection
ReleaseSemaphore
LeaveCriticalSection
InitializeCriticalSection
WaitForSingleObject
CreateThread
DeleteCriticalSection
CreateSemaphoreA
RtlLookupFunctionEntry
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext

ws2_32

recv
connect
socket
send
htons
select
gethostbyname
closesocket
setsockopt
WSAStartup

libcurl

curl_easy_init
curl_slist_free_all
curl_slist_append
curl_global_cleanup
curl_global_init
curl_easy_setopt
curl_easy_cleanup
curl_easy_perform

plist

plist_new_array
plist_get_bool_val
plist_get_string_val
plist_new_uint
plist_get_uint_val
plist_dict_get_item
plist_new_dict
plist_dict_set_item
plist_free
plist_from_xml
plist_get_node_type
plist_get_data_val
plist_new_bool
plist_to_bin
plist_from_bin
plist_new_string
plist_array_get_item
plist_dict_get_size
plist_copy
plist_array_get_size
plist_dict_remove_item
plist_access_path
plist_dict_new_iter
plist_set_uint_val
plist_compare_node_value
plist_array_insert_item
plist_is_binary
plist_dict_merge
plist_new_data
plist_array_append_item
plist_dict_next_item
plist_to_xml

imobiledevice

idevice_connection_receive_timeout
idevice_connect
idevice_event_unsubscribe
idevice_set_debug_level
idevice_event_subscribe
preboard_receive_with_timeout
idevice_connection_receive
preboard_client_new
idevice_free
idevice_connection_send
idevice_new
lockdownd_client_new_with_handshake
idevice_disconnect
preboard_create_stashbag
lockdownd_enter_recovery
lockdownd_client_new
preboard_commit_stashbag
idevice_device_list_free
preboard_client_free
restored_query_value
restored_send
restored_client_free
restored_start_restore
restored_get_value
restored_reboot
restored_receive
restored_client_new
restored_query_type
idevice_get_device_list
lockdownd_get_value
lockdownd_start_service
lockdownd_unpair
lockdownd_client_free
lockdownd_service_descriptor_free
lockdownd_query_type

irecovery

irecv_usb_control_transfer
irecv_send_command
irecv_event_subscribe
irecv_send_buffer
irecv_usb_set_configuration
irecv_open_with_ecid
irecv_devices_get_device_by_client
irecv_get_mode
irecv_close
irecv_get_device_info
irecv_init
irecv_strerror
irecv_device_event_subscribe
irecv_device_event_unsubscribe
irecv_set_debug_level
irecv_devices_get_device_by_product_type
irecv_finish_transfer
irecv_reset_counters
irecv_reset
irecv_devices_get_device_by_hardware_model
irecv_getenv
irecv_reconnect

getopt

optarg_a
optind
getopt_long_a

libeay32

ord504
ord503
ord502

zip

zip_name_locate
zip_close
zip_fclose
zip_stat_init
zip_fread
zip_fopen_index
zip_open
zip_unchange_all
zip_stat_index
zip_source_free
zip_delete
zip_get_num_files
zip_add
zip_get_name
zip_strerror
zip_source_buffer
zip_replace

zlib1

gzeof
gzclose
gzread
gzwrite
gzopen

vcruntime140

__current_exception
__current_exception_context
memset
__C_specific_handler
strstr
strrchr
memmove
memcpy
memcmp
strchr

api-ms-win-crt-heap-l1-1-0

_set_new_mode
realloc
calloc
malloc
free

api-ms-win-crt-runtime-l1-1-0

__p___argv
_crt_atexit
__p___argc
_exit
_initterm_e
_c_exit
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
strerror
_configure_narrow_argv
_register_thread_local_exe_atexit_callback
_errno
exit
_register_onexit_function
_wassert
terminate
signal
_cexit
perror
_seh_filter_exe
_set_app_type
_initialize_onexit_table

api-ms-win-crt-stdio-l1-1-0

fclose
rewind
fread
_fseeki64
fputc
feof
__acrt_iob_func
__stdio_common_vsscanf
__stdio_common_vfprintf
_set_fmode
_fileno
__stdio_common_vsprintf
fopen
fputs
fflush
_isatty
_close
_open
__p__commode
fwrite

api-ms-win-crt-string-l1-1-0

strtok
strncmp
strcmp
_strdup
tolower
strncpy
strcspn
isprint
_stricmp

api-ms-win-crt-utility-l1-1-0

srand
rand

api-ms-win-crt-conio-l1-1-0

_getch

api-ms-win-crt-convert-l1-1-0

strtoul
strtoll
strtoull

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-filesystem-l1-1-0

_stat64
_fstat64i32
remove
_access
_stat64i32
rename
_unlink

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicescreenshot.exe
.exe windows:6 windows x64 arch:x64

f84dfc51d90cf42c7cb0129511486273

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicescreenshot.pdb

Imports

kernel32

IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

imobiledevice

lockdownd_service_descriptor_free
idevice_free
lockdownd_client_free
screenshotr_client_new
lockdownd_start_service
screenshotr_take_screenshot
idevice_new
idevice_set_debug_level
screenshotr_client_free
lockdownd_client_new_with_handshake

vcruntime140

__current_exception_context
strrchr
__C_specific_handler
memset
__current_exception

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__stdio_common_vsprintf
__acrt_iob_func
fopen
_set_fmode
__p__commode
fclose
fwrite

api-ms-win-crt-string-l1-1-0

_strdup

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode
malloc

api-ms-win-crt-time-l1-1-0

strftime
_time64
_gmtime64

api-ms-win-crt-runtime-l1-1-0

__p___argv
_exit
exit
_initterm_e
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_initterm
_get_initial_narrow_environment
_seh_filter_exe
terminate
strerror
_initialize_narrow_environment
_configure_narrow_argv
_set_app_type
__p___argc
_errno

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/idevicesyslog.exe
.exe windows:6 windows x64 arch:x64

38d38cdd0f33628f9c65a12f9da7ef5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\idevicesyslog.pdb

Imports

kernel32

Sleep
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

getopt

optarg_a
getopt_long_a

imobiledevice

lockdownd_client_new_with_handshake
lockdownd_client_free
idevice_free
idevice_event_subscribe
idevice_set_debug_level
lockdownd_start_service
lockdownd_service_descriptor_free
syslog_relay_start_capture
idevice_event_unsubscribe
syslog_relay_client_new
idevice_new_with_options
idevice_device_list_extended_free
syslog_relay_client_free
idevice_get_device_list_extended

vcruntime140

__current_exception_context
__current_exception
__C_specific_handler
strrchr
memset

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__p__commode
fflush
__acrt_iob_func
__stdio_common_vfprintf
putchar

api-ms-win-crt-string-l1-1-0

_strdup

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode

api-ms-win-crt-runtime-l1-1-0

terminate
_crt_atexit
_initialize_onexit_table
_c_exit
_cexit
__p___argv
__p___argc
_register_onexit_function
_exit
exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_set_app_type
_seh_filter_exe
_register_thread_local_exe_atexit_callback
signal

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/imobiledevice-net-lighthouse.dll
.dll windows:6 windows x64 arch:x64

e533a869d1bcfad4b2b0d69c5d8dfc25

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\FrederikCarlier\Source\Repos\adk-nuget\AdkNuGetGenerator\lighthouse\windows\x64\Release\pinvoke-lighthouse.pdb

Imports

kernel32

GetModuleFileNameW
GetLastError
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

vcruntime140

memset
__C_specific_handler
__std_type_info_destroy_list

api-ms-win-crt-string-l1-1-0

wcscpy_s

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
_initialize_onexit_table
_cexit

Exports

Exports

get_moduleFileName

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/imobiledevice.dll
.dll windows:6 windows x64 arch:x64

ae2e5ca399d4656d302cc04afbdae394

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\a\1\s\x64\Release\imobiledevice.pdb

Imports

ws2_32

select

kernel32

CloseHandle
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
WaitForSingleObject
Sleep
RtlCaptureContext
CreateThread
DeleteCriticalSection

plist

plist_new_uint
plist_copy
plist_array_append_item
plist_new_array
plist_get_real_val
plist_free
plist_new_bool
plist_new_dict
plist_access_path
plist_dict_remove_item
plist_new_real
plist_to_xml
plist_get_string_val
plist_dict_get_item
plist_to_bin
plist_from_bin
plist_new_string
plist_dict_set_item
plist_new_data
plist_from_xml
plist_get_node_type
plist_get_data_val
plist_get_bool_val
plist_array_get_item
plist_array_get_size
plist_get_uint_val

usbmuxd

usbmuxd_set_tcp_endpoint
usbmuxd_subscribe
usbmuxd_get_socket_type
usbmuxd_get_device
usbmuxd_unsubscribe
usbmuxd_recv
usbmuxd_get_tcp_endpoint
usbmuxd_get_device_list
usbmuxd_disconnect
usbmuxd_connect
usbmuxd_read_pair_record
usbmuxd_delete_pair_record
usbmuxd_save_pair_record_with_device_id
usbmuxd_read_buid
usbmuxd_send
usbmuxd_recv_timeout
usbmuxd_set_socket_type
usbmuxd_device_list_free

libeay32

ord486
ord670
ord283
ord633
ord664
ord1253
ord129
ord161
ord1954
ord421
ord1177
ord52
ord2131
ord78
ord541
ord3686
ord943
ord4346
ord53
ord197
ord1804
ord298
ord673
ord2111
ord95
ord279
ord1973
ord281
ord66
ord333
ord150
ord1508
ord1175
ord8
ord419
ord4334
ord641
ord1882
ord669
ord671
ord668
ord674
ord401
ord400
ord2604
ord484
ord4445
ord98

ssleay32

ord125
ord170
ord6
ord71
ord183
ord12
ord108
ord83
ord48
ord77
ord28
ord78
ord94
ord130
ord127
ord407
ord58
ord86
ord75
ord25
ord8
ord96

vcruntime140

memset
__C_specific_handler
__std_type_info_destroy_list
memcpy

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__acrt_iob_func
__stdio_common_vsscanf
__stdio_common_vsprintf
fflush

api-ms-win-crt-time-l1-1-0

_time64
_localtime64
strftime

api-ms-win-crt-heap-l1-1-0

free
realloc
malloc

api-ms-win-crt-runtime-l1-1-0

_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_errno
strerror
_initterm

api-ms-win-crt-string-l1-1-0

strncmp
isspace
_strdup
strcmp

api-ms-win-crt-utility-l1-1-0

srand
rand

Exports

Exports

afc_client_free
afc_client_new
afc_client_new_from_house_arrest_client
afc_client_new_with_service_client
afc_client_start_service
afc_dictionary_free
afc_file_close
afc_file_lock
afc_file_open
afc_file_read
afc_file_seek
afc_file_tell
afc_file_truncate
afc_file_write
afc_get_device_info
afc_get_device_info_key
afc_get_file_info
afc_make_directory
afc_make_link
afc_read_directory
afc_remove_path
afc_remove_path_and_contents
afc_rename_path
afc_set_file_time
afc_truncate
debug_info_real
debugserver_client_free
debugserver_client_new
debugserver_client_receive
debugserver_client_receive_response
debugserver_client_receive_with_timeout
debugserver_client_send
debugserver_client_send_command
debugserver_client_set_ack_mode
debugserver_client_set_argv
debugserver_client_set_environment_hex_encoded
debugserver_client_start_service
debugserver_command_free
debugserver_command_new
debugserver_decode_string
debugserver_encode_string
diagnostics_relay_client_free
diagnostics_relay_client_new
diagnostics_relay_client_start_service
diagnostics_relay_goodbye
diagnostics_relay_query_ioregistry_entry
diagnostics_relay_query_ioregistry_plane
diagnostics_relay_query_mobilegestalt
diagnostics_relay_request_diagnostics
diagnostics_relay_restart
diagnostics_relay_shutdown
diagnostics_relay_sleep
file_relay_client_free
file_relay_client_new
file_relay_client_start_service
file_relay_request_sources
file_relay_request_sources_timeout
heartbeat_client_free
heartbeat_client_new
heartbeat_client_start_service
heartbeat_receive
heartbeat_receive_with_timeout
heartbeat_send
house_arrest_client_free
house_arrest_client_new
house_arrest_client_start_service
house_arrest_get_result
house_arrest_send_command
house_arrest_send_request
idevice_connect
idevice_connection_disable_ssl
idevice_connection_enable_ssl
idevice_connection_get_fd
idevice_connection_receive
idevice_connection_receive_timeout
idevice_connection_send
idevice_device_list_extended_free
idevice_device_list_free
idevice_disconnect
idevice_event_subscribe
idevice_event_unsubscribe
idevice_free
idevice_get_device_list
idevice_get_device_list_extended
idevice_get_handle
idevice_get_socket_type
idevice_get_tcp_endpoint
idevice_get_udid
idevice_new
idevice_new_with_options
idevice_set_debug_callback
idevice_set_debug_level
idevice_set_socket_type
idevice_set_tcp_endpoint
instproxy_archive
instproxy_browse
instproxy_browse_with_callback
instproxy_check_capabilities_match
instproxy_client_free
instproxy_client_get_path_for_bundle_identifier
instproxy_client_new
instproxy_client_options_add
instproxy_client_options_free
instproxy_client_options_new
instproxy_client_options_set_return_attributes
instproxy_client_start_service
instproxy_command_get_name
instproxy_install
instproxy_lookup
instproxy_lookup_archives
instproxy_remove_archive
instproxy_restore
instproxy_status_get_current_list
instproxy_status_get_error
instproxy_status_get_name
instproxy_status_get_percent_complete
instproxy_uninstall
instproxy_upgrade
lockdownd_activate
lockdownd_client_free
lockdownd_client_new
lockdownd_client_new_with_handshake
lockdownd_client_set_label
lockdownd_data_classes_free
lockdownd_deactivate
lockdownd_enter_recovery
lockdownd_get_device_name
lockdownd_get_device_udid
lockdownd_get_sync_data_classes
lockdownd_get_value
lockdownd_goodbye
lockdownd_pair
lockdownd_pair_with_options
lockdownd_query_type
lockdownd_receive
lockdownd_remove_value
lockdownd_send
lockdownd_service_descriptor_free
lockdownd_set_value
lockdownd_start_service
lockdownd_start_service_with_escrow_bag
lockdownd_start_session
lockdownd_stop_session
lockdownd_strerror
lockdownd_unpair
lockdownd_validate_pair
misagent_client_free
misagent_client_new
misagent_client_start_service
misagent_copy
misagent_copy_all
misagent_get_status_code
misagent_install
misagent_remove
mobile_image_mounter_free
mobile_image_mounter_hangup
mobile_image_mounter_lookup_image
mobile_image_mounter_mount_image
mobile_image_mounter_new
mobile_image_mounter_start_service
mobile_image_mounter_upload_image
mobileactivation_activate
mobileactivation_activate_with_session
mobileactivation_client_free
mobileactivation_client_new
mobileactivation_client_start_service
mobileactivation_create_activation_info
mobileactivation_create_activation_info_with_session
mobileactivation_create_activation_session_info
mobileactivation_deactivate
mobileactivation_get_activation_state
mobilebackup2_client_free
mobilebackup2_client_new
mobilebackup2_client_start_service
mobilebackup2_receive_message
mobilebackup2_receive_raw
mobilebackup2_send_message
mobilebackup2_send_raw
mobilebackup2_send_request
mobilebackup2_send_status_response
mobilebackup2_version_exchange
mobilebackup_client_free
mobilebackup_client_new
mobilebackup_client_start_service
mobilebackup_receive
mobilebackup_receive_restore_application_received
mobilebackup_receive_restore_file_received
mobilebackup_request_backup
mobilebackup_request_restore
mobilebackup_send
mobilebackup_send_backup_file_received
mobilebackup_send_error
mobilebackup_send_restore_complete
mobilesync_acknowledge_changes_from_device
mobilesync_actions_add
mobilesync_actions_free
mobilesync_actions_new
mobilesync_anchors_free
mobilesync_anchors_new
mobilesync_cancel
mobilesync_clear_all_records_on_device
mobilesync_client_free
mobilesync_client_new
mobilesync_client_start_service
mobilesync_finish
mobilesync_get_all_records_from_device
mobilesync_get_changes_from_device
mobilesync_ready_to_send_changes_from_computer
mobilesync_receive
mobilesync_receive_changes
mobilesync_remap_identifiers
mobilesync_send
mobilesync_send_changes
mobilesync_start
np_client_free
np_client_new
np_client_start_service
np_observe_notification
np_observe_notifications
np_post_notification
np_set_notify_callback
pinvoke_free_string
pinvoke_get_string_length
preboard_client_free
preboard_client_new
preboard_client_start_service
preboard_commit_stashbag
preboard_create_stashbag
preboard_receive
preboard_receive_with_timeout
preboard_send
property_list_service_client_free
property_list_service_client_new
property_list_service_disable_ssl
property_list_service_enable_ssl
property_list_service_receive_plist
property_list_service_receive_plist_with_timeout
property_list_service_send_binary_plist
property_list_service_send_xml_plist
restored_client_free
restored_client_new
restored_client_set_label
restored_get_value
restored_goodbye
restored_query_type
restored_query_value
restored_reboot
restored_receive
restored_send
restored_start_restore
sbservices_client_free
sbservices_client_new
sbservices_client_start_service
sbservices_get_home_screen_wallpaper_pngdata
sbservices_get_icon_pngdata
sbservices_get_icon_state
sbservices_get_interface_orientation
sbservices_set_icon_state
screenshotr_client_free
screenshotr_client_new
screenshotr_client_start_service
screenshotr_screenshot_free
screenshotr_take_screenshot
service_client_factory_start_service
service_client_free
service_client_new
service_disable_ssl
service_enable_ssl
service_receive
service_receive_with_timeout
service_send
syslog_relay_client_free
syslog_relay_client_new
syslog_relay_client_start_service
syslog_relay_receive
syslog_relay_receive_with_timeout
syslog_relay_start_capture
syslog_relay_stop_capture
webinspector_client_free
webinspector_client_new
webinspector_client_start_service
webinspector_receive
webinspector_receive_with_timeout
webinspector_send

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/info.exe
.exe windows:6 windows x64 arch:x64

313f08433e0871939b1dbdb197b8c964

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\ideviceinfo.pdb

Imports

kernel32

IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

getopt

getopt_long_a
optarg_a

imobiledevice

lockdownd_client_new_with_handshake
lockdownd_strerror
idevice_free
lockdownd_get_value
lockdownd_client_free
idevice_new_with_options
idevice_set_debug_level
lockdownd_client_new

plist

plist_get_node_type
plist_free
plist_get_date_val
plist_dict_next_item
plist_get_data_val
plist_dict_new_iter
plist_to_xml
plist_array_get_size
plist_get_key_val
plist_get_uint_val
plist_get_string_val
plist_array_get_item
plist_get_bool_val
plist_get_real_val

vcruntime140

__current_exception_context
__current_exception
__C_specific_handler
strstr
strrchr
memset

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__p__commode
_set_fmode
__acrt_iob_func

api-ms-win-crt-string-l1-1-0

_strdup

api-ms-win-crt-heap-l1-1-0

malloc
free
_set_new_mode

api-ms-win-crt-time-l1-1-0

strftime
_localtime64

api-ms-win-crt-runtime-l1-1-0

_register_thread_local_exe_atexit_callback
_c_exit
_cexit
terminate
__p___argc
_initialize_onexit_table
exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_register_onexit_function
_seh_filter_exe
_set_app_type
_exit
_crt_atexit
__p___argv

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 564B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/ios_webkit_debug_proxy.exe
.exe windows:6 windows x64 arch:x64

6794223cdfa2318d6c85797b26b4b35b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\ios_webkit_debug_proxy.pdb

Imports

ws2_32

freeaddrinfo
WSACleanup
WSAStartup
send
gethostbyname
WSAGetLastError
connect
htons
recv
getaddrinfo
listen
ioctlsocket
select
bind
accept
__WSAFDIsSet
setsockopt
closesocket
socket

plist

plist_from_xml
plist_to_bin
plist_get_data_val
plist_dict_next_item
plist_new_data
plist_dict_new_iter
plist_copy
plist_new_bool
plist_new_uint
plist_get_bool_val
plist_get_node_type
plist_from_bin
plist_free
plist_dict_set_item
plist_new_string
plist_new_dict
plist_to_xml
plist_dict_get_item
plist_get_uint_val
plist_dict_get_size
plist_get_string_val

imobiledevice

lockdownd_start_service
lockdownd_get_value
idevice_connect
lockdownd_client_free
lockdownd_client_new_with_handshake
idevice_new
idevice_connection_enable_ssl
idevice_connection_get_fd
idevice_free

getopt

getopt_long_a
optarg_a
optind

pcreposix

regfree
regexec
regcomp

ssleay32

ord78
ord58
ord108

vcruntime140

memmove
memcpy
strchr
strrchr
__C_specific_handler
__current_exception
__current_exception_context
memset
strstr

api-ms-win-crt-heap-l1-1-0

_set_new_mode
calloc
malloc
free
realloc

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_configure_narrow_argv
_get_initial_narrow_environment
terminate
_set_app_type
_crt_atexit
perror
_c_exit
_seh_filter_exe
_register_onexit_function
_register_thread_local_exe_atexit_callback
_initterm_e
_exit
_cexit
__p___argv
_initialize_onexit_table
exit
signal
__p___argc
_wassert
_errno
_initterm

api-ms-win-crt-string-l1-1-0

tolower
_strnicmp
_strdup
_stricmp
strncpy
strncmp
strcmp

api-ms-win-crt-stdio-l1-1-0

fopen
ferror
_set_fmode
__stdio_common_vfprintf
__stdio_common_vsscanf
fclose
__stdio_common_vsprintf
__p__commode
_open
_read
_close
__acrt_iob_func
getc

api-ms-win-crt-utility-l1-1-0

srand
qsort
rand

api-ms-win-crt-convert-l1-1-0

strtol

api-ms-win-crt-filesystem-l1-1-0

_fstat64i32

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-math-l1-1-0

__setusermatherr
log10

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

kernel32

InitializeSListHead
GetModuleHandleW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
IsDebuggerPresent

Sections

.text
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/iproxy.exe
.exe windows:6 windows x64 arch:x64

9c52884a33aea0ce421a283b82d19e0b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\iproxy.pdb

Imports

ws2_32

WSAStartup
send
socket
listen
select
closesocket
bind
recv
htonl
htons
setsockopt
accept
WSAGetLastError

kernel32

GetModuleHandleW
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
CreateThread
CloseHandle
WaitForSingleObject
ExitProcess
RtlCaptureContext

usbmuxd

usbmuxd_set_socket_type
usbmuxd_connect
usbmuxd_get_device_list
usbmuxd_set_tcp_endpoint

vcruntime140

__current_exception
__current_exception_context
memset
__C_specific_handler

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__acrt_iob_func
__stdio_common_vfprintf
__p__commode

api-ms-win-crt-runtime-l1-1-0

__p___argc
__p___argv
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_get_initial_narrow_environment
_initialize_narrow_environment
perror
_exit
_initialize_onexit_table
_register_onexit_function
_crt_atexit
terminate
_errno
strerror
_configure_narrow_argv
exit
_initterm_e
_initterm
_seh_filter_exe
_set_app_type

api-ms-win-crt-string-l1-1-0

strncmp

api-ms-win-crt-heap-l1-1-0

_set_new_mode
free
malloc

api-ms-win-crt-convert-l1-1-0

atoi

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/irecovery.dll
.dll windows:6 windows x64 arch:x64

3e3eafe475f420d28c8e526b3ad439b6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\a\1\s\x64\Release\irecovery.pdb

Imports

kernel32

CancelIo
DeviceIoControl
WaitForSingleObject
Sleep
CreateFileA
CloseHandle
GetOverlappedResult
GetFileSize
CreateEventA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CreateThread
DeleteCriticalSection
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
RtlCaptureContext
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiGetDeviceRegistryPropertyA

vcruntime140

strchr
memset
__C_specific_handler
memcpy
__std_type_info_destroy_list
strstr
strrchr

api-ms-win-crt-string-l1-1-0

strncmp
toupper
strtok
_strdup
tolower

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsscanf
fread
__stdio_common_vsprintf
fopen
__stdio_common_vfprintf
__acrt_iob_func
fclose

api-ms-win-crt-convert-l1-1-0

strtoul

api-ms-win-crt-heap-l1-1-0

malloc
free
realloc

api-ms-win-crt-runtime-l1-1-0

_cexit
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_execute_onexit_table
_initterm
_initterm_e

Exports

Exports

irecv_close
irecv_device_event_subscribe
irecv_device_event_unsubscribe
irecv_devices_get_all
irecv_devices_get_device_by_client
irecv_devices_get_device_by_hardware_model
irecv_devices_get_device_by_product_type
irecv_event_subscribe
irecv_event_unsubscribe
irecv_execute_script
irecv_exit
irecv_finish_transfer
irecv_get_device_info
irecv_get_mode
irecv_getenv
irecv_getret
irecv_init
irecv_open_with_ecid
irecv_open_with_ecid_and_attempts
irecv_reboot
irecv_receive
irecv_reconnect
irecv_recv_buffer
irecv_reset
irecv_reset_counters
irecv_saveenv
irecv_send_buffer
irecv_send_command
irecv_send_file
irecv_set_debug_level
irecv_setenv
irecv_strerror
irecv_trigger_limera1n_exploit
irecv_usb_bulk_transfer
irecv_usb_control_transfer
irecv_usb_set_configuration
irecv_usb_set_interface

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/irecovery.exe
.exe windows:6 windows x64 arch:x64

bb829518c3e35176423c127c9605e3d9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\irecovery.pdb

Imports

kernel32

Sleep
RtlLookupFunctionEntry
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext

readline

write_history
add_history
readline
read_history

getopt

getopt_a
optarg_a

irecovery

irecv_set_debug_level
irecv_strerror
irecv_reset
irecv_devices_get_device_by_client
irecv_close
irecv_reboot
irecv_get_device_info
irecv_trigger_limera1n_exploit
irecv_execute_script
irecv_send_file
irecv_getenv
irecv_receive
irecv_event_subscribe
irecv_send_command
irecv_setenv
irecv_open_with_ecid
irecv_saveenv
irecv_get_mode

vcruntime140

__current_exception_context
__current_exception
__C_specific_handler
strrchr
strchr
strstr
memset

api-ms-win-crt-stdio-l1-1-0

rewind
__stdio_common_vfprintf
_set_fmode
fseek
fclose
fflush
__acrt_iob_func
fopen
fread
ftell
__p__commode

api-ms-win-crt-string-l1-1-0

strcmp
strtok
_strdup

api-ms-win-crt-convert-l1-1-0

strtoull

api-ms-win-crt-heap-l1-1-0

_set_new_mode
malloc
free

api-ms-win-crt-runtime-l1-1-0

_register_onexit_function
_crt_atexit
_register_thread_local_exe_atexit_callback
_c_exit
_cexit
__p___argv
__p___argc
_exit
exit
terminate
_initterm_e
_seh_filter_exe
_set_app_type
_initialize_onexit_table
_configure_narrow_argv
_initialize_narrow_environment
_get_initial_narrow_environment
_initterm

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/iremoval
.macho macos arch:arm64
ref/libcharset.dll
.dll windows:6 windows x64 arch:x64

975e6234b4679c35cd800150985fc1df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\libiconv\x64-windows-rel\libcharset.pdb

Imports

kernel32

GetACP
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter

vcruntime140

memset
strrchr
strchr
__C_specific_handler
__std_type_info_destroy_list

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf

api-ms-win-crt-locale-l1-1-0

setlocale

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm
_seh_filter_dll
_configure_narrow_argv
_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment

Exports

Exports

locale_charset

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/libcurl.dll
.dll windows:6 windows x64 arch:x64

73a820a7c996da80393e72568ffc92ea

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\curl\x64-windows-rel\lib\libcurl.pdb

Imports

ws2_32

recv
send
WSAGetLastError
setsockopt
WSAIoctl
ntohs
WSACleanup
WSAStartup
ioctlsocket
freeaddrinfo
getaddrinfo
select
__WSAFDIsSet
inet_pton
socket
bind
WSASetLastError
getsockopt
getsockname
getpeername
connect
htons
closesocket

advapi32

CryptAcquireContextA
CryptGetHashParam
CryptCreateHash
CryptHashData
CryptDestroyHash
CryptGenRandom
CryptReleaseContext

crypt32

CryptStringToBinaryA
CertFreeCertificateContext
CertGetNameStringA
CertCloseStore
CertOpenStore
CertAddCertificateContextToStore
CryptQueryObject
CertCreateCertificateChainEngine
CertFreeCertificateChainEngine
CertGetCertificateChain
CertFreeCertificateChain
CertEnumCertificatesInStore
CertFindCertificateInStore

zlib1

zlibVersion
inflate
inflateEnd
inflateInit_
inflateInit2_

kernel32

LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionEx
CloseHandle
GetProcAddress
DeleteCriticalSection
VerSetConditionMask
QueryPerformanceFrequency
GetSystemDirectoryA
GetModuleHandleA
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
WaitForSingleObjectEx
FreeLibrary
Sleep
ReadFile
GetFileSizeEx
CreateFileA
VerifyVersionInfoA
QueryPerformanceCounter
GetTickCount
ExpandEnvironmentStringsA
SleepEx
GetLastError
SetLastError
FormatMessageA
LoadLibraryA

vcruntime140

memcpy
strrchr
memmove
strstr
memchr
strchr
memcmp
__C_specific_handler
__std_type_info_destroy_list
memset

api-ms-win-crt-stdio-l1-1-0

ftell
fputs
__stdio_common_vsscanf
fclose
fwrite
fread
fseek
fgets
fopen
__stdio_common_vsprintf
fflush
__acrt_iob_func
fputc

api-ms-win-crt-time-l1-1-0

_gmtime64
_time64

api-ms-win-crt-string-l1-1-0

strncpy
_strdup
isupper
strpbrk
strncmp
tolower
strcspn
strspn
strcmp

api-ms-win-crt-convert-l1-1-0

strtoul
strtoll
strtol

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-runtime-l1-1-0

_errno
_cexit
strerror
__sys_nerr
_beginthreadex
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_initterm
_initterm_e
_seh_filter_dll

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-heap-l1-1-0

free
calloc
realloc
malloc

api-ms-win-crt-filesystem-l1-1-0

_stat64
_access

Exports

Exports

curl_easy_cleanup
curl_easy_duphandle
curl_easy_escape
curl_easy_getinfo
curl_easy_init
curl_easy_pause
curl_easy_perform
curl_easy_recv
curl_easy_reset
curl_easy_send
curl_easy_setopt
curl_easy_strerror
curl_easy_unescape
curl_easy_upkeep
curl_escape
curl_formadd
curl_formfree
curl_formget
curl_free
curl_getdate
curl_getenv
curl_global_cleanup
curl_global_init
curl_global_init_mem
curl_global_sslset
curl_maprintf
curl_mfprintf
curl_mime_addpart
curl_mime_data
curl_mime_data_cb
curl_mime_encoder
curl_mime_filedata
curl_mime_filename
curl_mime_free
curl_mime_headers
curl_mime_init
curl_mime_name
curl_mime_subparts
curl_mime_type
curl_mprintf
curl_msnprintf
curl_msprintf
curl_multi_add_handle
curl_multi_assign
curl_multi_cleanup
curl_multi_fdset
curl_multi_info_read
curl_multi_init
curl_multi_perform
curl_multi_poll
curl_multi_remove_handle
curl_multi_setopt
curl_multi_socket
curl_multi_socket_action
curl_multi_socket_all
curl_multi_strerror
curl_multi_timeout
curl_multi_wait
curl_mvaprintf
curl_mvfprintf
curl_mvprintf
curl_mvsnprintf
curl_mvsprintf
curl_pushheader_byname
curl_pushheader_bynum
curl_share_cleanup
curl_share_init
curl_share_setopt
curl_share_strerror
curl_slist_append
curl_slist_free_all
curl_strequal
curl_strnequal
curl_unescape
curl_url
curl_url_cleanup
curl_url_dup
curl_url_get
curl_url_set
curl_version
curl_version_info

Sections

.text
Size: 230KB - Virtual size: 230KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 640B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/libiconv.dll
.dll windows:6 windows x64 arch:x64

3303d916eb65d221d0784561f7274f46

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\libiconv\x64-windows-rel\libiconv.pdb

Imports

libcharset

locale_charset

vcruntime140

__C_specific_handler
__std_type_info_destroy_list
memset
memcpy

api-ms-win-crt-runtime-l1-1-0

_cexit
abort
_errno
_execute_onexit_table
_initterm
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e

api-ms-win-crt-heap-l1-1-0

malloc
free

api-ms-win-crt-utility-l1-1-0

qsort

kernel32

DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
InitializeSListHead
IsDebuggerPresent

Exports

Exports

_libiconv_version
iconv_canonicalize
libiconv
libiconv_close
libiconv_open
libiconv_open_into
libiconvctl
libiconvlist

Sections

.text
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 822KB - Virtual size: 822KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/libusb-1.0.dll
.dll windows:6 windows x64 arch:x64

b2da45a41634a85cca953c9b4d3d1824

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\libusb\x64-windows-rel\3ae1ed06fa-f8218372d8\x64\Release\dll\libusb-1.0.pdb

Imports

kernel32

DeleteCriticalSection
TlsGetValue
TryEnterCriticalSection
TlsSetValue
TlsAlloc
TlsFree
WaitForMultipleObjects
WaitForSingleObject
CreateEventW
GetLastError
SetEvent
CloseHandle
ResetEvent
SleepEx
SetThreadAffinityMask
VerifyVersionInfoA
GetCurrentProcess
ReleaseSemaphore
GetCurrentThreadId
TerminateThread
LoadLibraryA
GetVersionExA
QueryPerformanceFrequency
GetProcAddress
VerSetConditionMask
GetCurrentProcessId
FreeLibrary
FormatMessageA
CreateSemaphoreA
QueryPerformanceCounter
GetOverlappedResult
ReadFile
CancelIo
WriteFile
DeviceIoControl
Sleep
CreateFileA
RtlLookupFunctionEntry
InitializeCriticalSection
LeaveCriticalSection
GetProcessAffinityMask
EnterCriticalSection
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
RtlCaptureContext

advapi32

OpenSCManagerW
OpenServiceA
CloseServiceHandle

vcruntime140

__current_exception_context
memcpy
__std_type_info_destroy_list
__C_specific_handler
strstr
__current_exception
memset
memmove

api-ms-win-crt-heap-l1-1-0

malloc
free
realloc
calloc

api-ms-win-crt-stdio-l1-1-0

fputs
__acrt_iob_func
__stdio_common_vsscanf
__stdio_common_vsprintf

api-ms-win-crt-convert-l1-1-0

atoi

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
terminate
_configure_narrow_argv
_initterm
_seh_filter_dll
_initterm_e
_errno
_beginthreadex

api-ms-win-crt-string-l1-1-0

_strnicmp
isdigit
_stricmp
strtok
_strdup
toupper
strncmp

api-ms-win-crt-time-l1-1-0

_timespec64_get

Exports

Exports

_libusb_set_option
libusb_alloc_streams
libusb_alloc_streams@16
libusb_alloc_transfer
libusb_alloc_transfer@4
libusb_attach_kernel_driver
libusb_attach_kernel_driver@8
libusb_bulk_transfer
libusb_bulk_transfer@24
libusb_cancel_transfer
libusb_cancel_transfer@4
libusb_claim_interface
libusb_claim_interface@8
libusb_clear_halt
libusb_clear_halt@8
libusb_close
libusb_close@4
libusb_control_transfer
libusb_control_transfer@32
libusb_detach_kernel_driver
libusb_detach_kernel_driver@8
libusb_dev_mem_alloc
libusb_dev_mem_alloc@8
libusb_dev_mem_free
libusb_dev_mem_free@12
libusb_error_name
libusb_error_name@4
libusb_event_handler_active
libusb_event_handler_active@4
libusb_event_handling_ok
libusb_event_handling_ok@4
libusb_exit
libusb_exit@4
libusb_free_bos_descriptor
libusb_free_bos_descriptor@4
libusb_free_config_descriptor
libusb_free_config_descriptor@4
libusb_free_container_id_descriptor
libusb_free_container_id_descriptor@4
libusb_free_device_list
libusb_free_device_list@8
libusb_free_pollfds
libusb_free_pollfds@4
libusb_free_ss_endpoint_companion_descriptor
libusb_free_ss_endpoint_companion_descriptor@4
libusb_free_ss_usb_device_capability_descriptor
libusb_free_ss_usb_device_capability_descriptor@4
libusb_free_streams
libusb_free_streams@12
libusb_free_transfer
libusb_free_transfer@4
libusb_free_usb_2_0_extension_descriptor
libusb_free_usb_2_0_extension_descriptor@4
libusb_get_active_config_descriptor
libusb_get_active_config_descriptor@8
libusb_get_bos_descriptor
libusb_get_bos_descriptor@8
libusb_get_bus_number
libusb_get_bus_number@4
libusb_get_config_descriptor
libusb_get_config_descriptor@12
libusb_get_config_descriptor_by_value
libusb_get_config_descriptor_by_value@12
libusb_get_configuration
libusb_get_configuration@8
libusb_get_container_id_descriptor
libusb_get_container_id_descriptor@12
libusb_get_device
libusb_get_device@4
libusb_get_device_address
libusb_get_device_address@4
libusb_get_device_descriptor
libusb_get_device_descriptor@8
libusb_get_device_list
libusb_get_device_list@8
libusb_get_device_speed
libusb_get_device_speed@4
libusb_get_max_iso_packet_size
libusb_get_max_iso_packet_size@8
libusb_get_max_packet_size
libusb_get_max_packet_size@8
libusb_get_next_timeout
libusb_get_next_timeout@8
libusb_get_parent
libusb_get_parent@4
libusb_get_pollfds
libusb_get_pollfds@4
libusb_get_port_number
libusb_get_port_number@4
libusb_get_port_numbers
libusb_get_port_numbers@12
libusb_get_port_path
libusb_get_port_path@16
libusb_get_ss_endpoint_companion_descriptor
libusb_get_ss_endpoint_companion_descriptor@12
libusb_get_ss_usb_device_capability_descriptor
libusb_get_ss_usb_device_capability_descriptor@12
libusb_get_string_descriptor_ascii
libusb_get_string_descriptor_ascii@16
libusb_get_usb_2_0_extension_descriptor
libusb_get_usb_2_0_extension_descriptor@12
libusb_get_version
libusb_get_version@0
libusb_handle_events
libusb_handle_events@4
libusb_handle_events_completed
libusb_handle_events_completed@8
libusb_handle_events_locked
libusb_handle_events_locked@8
libusb_handle_events_timeout
libusb_handle_events_timeout@8
libusb_handle_events_timeout_completed
libusb_handle_events_timeout_completed@12
libusb_has_capability
libusb_has_capability@4
libusb_hotplug_deregister_callback
libusb_hotplug_deregister_callback@8
libusb_hotplug_register_callback
libusb_hotplug_register_callback@36
libusb_init
libusb_init@4
libusb_interrupt_event_handler
libusb_interrupt_event_handler@4
libusb_interrupt_transfer
libusb_interrupt_transfer@24
libusb_kernel_driver_active
libusb_kernel_driver_active@8
libusb_lock_event_waiters
libusb_lock_event_waiters@4
libusb_lock_events
libusb_lock_events@4
libusb_open
libusb_open@8
libusb_open_device_with_vid_pid
libusb_open_device_with_vid_pid@12
libusb_pollfds_handle_timeouts
libusb_pollfds_handle_timeouts@4
libusb_ref_device
libusb_ref_device@4
libusb_release_interface
libusb_release_interface@8
libusb_reset_device
libusb_reset_device@4
libusb_set_auto_detach_kernel_driver
libusb_set_auto_detach_kernel_driver@8
libusb_set_configuration
libusb_set_configuration@8
libusb_set_debug
libusb_set_debug@8
libusb_set_interface_alt_setting
libusb_set_interface_alt_setting@12
libusb_set_log_cb
libusb_set_log_cb@12
libusb_set_option
libusb_set_pollfd_notifiers
libusb_set_pollfd_notifiers@16
libusb_setlocale
libusb_setlocale@4
libusb_strerror
libusb_strerror@4
libusb_submit_transfer
libusb_submit_transfer@4
libusb_transfer_get_stream_id
libusb_transfer_get_stream_id@4
libusb_transfer_set_stream_id
libusb_transfer_set_stream_id@8
libusb_try_lock_events
libusb_try_lock_events@4
libusb_unlock_event_waiters
libusb_unlock_event_waiters@4
libusb_unlock_events
libusb_unlock_events@4
libusb_unref_device
libusb_unref_device@4
libusb_wait_for_event
libusb_wait_for_event@8

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/libusb0.dll
.dll windows:6 windows x64 arch:x64

9498967164a796b6d530c86ebc2f3628

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\libusb-win32\x64-windows-rel\libusb0.pdb

Imports

setupapi

CM_Get_Device_IDA
CM_Get_DevNode_Status
SetupDiGetDeviceInstallParamsA
SetupDiSetDeviceRegistryPropertyA
SetupDiGetDeviceRegistryPropertyA
SetupDiRemoveDevice
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupGetStringFieldA
SetupFindNextLine
SetupFindFirstLineA
SetupDiOpenDevRegKey
SetupDiSetClassInstallParamsA
SetupOpenInfFileA
SetupDiCallClassInstaller
SetupCloseInfFile

kernel32

GetLastError
FormatMessageA
GetStdHandle
SetEnvironmentVariableA
GetFullPathNameA
WriteFile
CloseHandle
WaitForSingleObject
Sleep
GetCurrentProcess
GetVersionExA
RtlLookupFunctionEntry
GetModuleHandleA
GetProcAddress
LoadResource
LockResource
SizeofResource
LoadLibraryA
LocalFree
CreateSemaphoreA
FindResourceA
GetVersion
CreateFileA
DeviceIoControl
GetOverlappedResult
ResetEvent
CreateEventA
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
RtlCaptureContext
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
FreeLibrary

user32

GetParent
LoadCursorA
LoadIconA
SetWindowLongPtrA
GetDlgItem
SetWindowPos
DestroyWindow
CreateWindowExA
GetWindowLongPtrA
RegisterClassExA
PostQuitMessage
DefWindowProcA
PostMessageA
SendMessageA
DispatchMessageA
TranslateMessage
GetMessageA
DrawEdge
OffsetRect
GetDesktopWindow
InflateRect
FillRect
GetSysColorBrush
GetSysColor
MessageBoxA
GetWindowRect
GetClientRect
GetWindowTextLengthA
SetWindowTextA
RedrawWindow
InvalidateRect
UpdateWindow
GetSystemMetrics
EnableWindow
GetClassInfoExA
SetTimer

gdi32

DeleteDC
CreateCompatibleDC
BitBlt
CreateCompatibleBitmap
DeleteObject
CreateSolidBrush
SelectObject

advapi32

FreeSid
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
RegCloseKey
AllocateAndInitializeSid
CheckTokenMembership
RegSetValueExA

vcruntime140

__std_type_info_destroy_list
memcpy
memset
strstr
wcsstr
memmove
__C_specific_handler

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
fgetws
__stdio_common_vsscanf
fputs
fopen
__stdio_common_vfprintf
__acrt_iob_func
fgets
fclose
fputws

api-ms-win-crt-heap-l1-1-0

malloc
realloc
free

api-ms-win-crt-runtime-l1-1-0

_endthread
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
_cexit
_beginthread
strerror

api-ms-win-crt-string-l1-1-0

strncmp
_strlwr
_strdup
_wcsnicmp
_wcsicmp
strncpy
_stricmp

api-ms-win-crt-convert-l1-1-0

mbstowcs
atoi
wcstombs

api-ms-win-crt-conio-l1-1-0

_getch

api-ms-win-crt-environment-l1-1-0

getenv

Exports

Exports

usb_bulk_read
usb_bulk_setup_async
usb_bulk_write
usb_cancel_async
usb_claim_interface
usb_clear_halt
usb_close
usb_control_msg
usb_device
usb_find_busses
usb_find_devices
usb_free_async
usb_get_busses
usb_get_descriptor
usb_get_descriptor_by_endpoint
usb_get_string
usb_get_string_simple
usb_get_version
usb_init
usb_install_driver_np
usb_install_driver_np_rundll
usb_install_needs_restart_np
usb_install_npA
usb_install_npW
usb_install_np_rundll
usb_install_service_np
usb_install_service_np_rundll
usb_interrupt_read
usb_interrupt_setup_async
usb_interrupt_write
usb_isochronous_setup_async
usb_open
usb_reap_async
usb_reap_async_nocancel
usb_release_interface
usb_reset
usb_reset_ex
usb_resetep
usb_set_altinterface
usb_set_configuration
usb_set_debug
usb_strerror
usb_submit_async
usb_touch_inf_file_np
usb_touch_inf_file_np_rundll
usb_uninstall_service_np
usb_uninstall_service_np_rundll

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/libxml2.dll
.dll windows:6 windows x64 arch:x64

95ea11a36f8ac402b77ab8ec6f0814b4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\libxml2\x64-windows-rel\libxml2.pdb

Imports

libiconv

libiconv_close
libiconv_open
libiconv

zlib1

crc32
gzclose
gzdirect
gzwrite
deflateInit2_
gzdopen
deflateEnd
deflate
inflateInit2_
inflateEnd
inflate
inflateReset
gzopen
gzread

lzma

lzma_end
lzma_code
lzma_auto_decoder
lzma_properties_decode

wsock32

WSAGetLastError
closesocket
WSASetLastError
getservbyname
getservbyport
gethostbyaddr
ntohs
inet_addr
ioctlsocket
htonl
getsockopt
inet_ntoa
__WSAFDIsSet
WSACleanup
WSAStartup
gethostbyname
socket
send
select
recv
listen
htons
getsockname
connect
bind

kernel32

IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleFileNameA
GetSystemDirectoryA
FreeLibrary
GetProcAddress
LoadLibraryA
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleA
DeleteCriticalSection
ReleaseMutex
MultiByteToWideChar
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetCurrentThreadId
Sleep
CreateMutexA
WaitForSingleObject

vcruntime140

memcpy
memmove
strchr
memchr
strstr
__C_specific_handler
__std_type_info_destroy_list
memset

api-ms-win-crt-stdio-l1-1-0

ferror
fflush
fread
_close
_open
__stdio_common_vsprintf_s
_read
_write
_wfopen
fputc
fopen
fclose
_dup
__stdio_common_vfprintf
fwrite
__acrt_iob_func
_getcwd
__stdio_common_vsprintf
__stdio_common_vsscanf
_fileno
_lseek
_wopen

api-ms-win-crt-string-l1-1-0

strncpy_s
strcat_s
strcpy_s
strncmp
strcmp
toupper
strncpy

api-ms-win-crt-filesystem-l1-1-0

_wstat64i32
_stat64i32

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-heap-l1-1-0

calloc
realloc
malloc
free

api-ms-win-crt-runtime-l1-1-0

_initterm
_initterm_e
_seh_filter_dll
_errno
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
exit
strerror
_execute_onexit_table
_cexit

api-ms-win-crt-convert-l1-1-0

strtoul
strtol

api-ms-win-crt-math-l1-1-0

ceil
_dclass
floor
fmod
log10
pow

Exports

Exports

DllMain
UTF8ToHtml
UTF8Toisolat1
__docbDefaultSAXHandler
__htmlDefaultSAXHandler
__oldXMLWDcompatibility
__xmlBufferAllocScheme
__xmlDefaultBufferSize
__xmlDefaultSAXHandler
__xmlDefaultSAXLocator
__xmlDeregisterNodeDefaultValue
__xmlDoValidityCheckingDefaultValue
__xmlErrEncoding
__xmlGenericError
__xmlGenericErrorContext
__xmlGetWarningsDefaultValue
__xmlIndentTreeOutput
__xmlKeepBlanksDefaultValue
__xmlLastError
__xmlLineNumbersDefaultValue
__xmlLoadExtDtdDefaultValue
__xmlOutputBufferCreateFilenameValue
__xmlParserDebugEntities
__xmlParserInputBufferCreateFilenameValue
__xmlParserVersion
__xmlPedanticParserDefaultValue
__xmlRaiseError
__xmlRegisterNodeDefaultValue
__xmlSaveNoEmptyTags
__xmlSimpleError
__xmlStructuredError
__xmlStructuredErrorContext
__xmlSubstituteEntitiesDefaultValue
__xmlTreeIndentString
attribute
attributeDecl
cdataBlock
characters
checkNamespace
comment
docbCreateFileParserCtxt
docbCreatePushParserCtxt
docbDefaultSAXHandlerInit
docbEncodeEntities
docbFreeParserCtxt
docbParseChunk
docbParseDoc
docbParseDocument
docbParseFile
docbSAXParseDoc
docbSAXParseFile
elementDecl
emptyExp
endDocument
endElement
entityDecl
externalSubset
forbiddenExp
getColumnNumber
getEntity
getLineNumber
getNamespace
getParameterEntity
getPublicId
getSystemId
globalNamespace
hasExternalSubset
hasInternalSubset
htmlAttrAllowed
htmlAutoCloseTag
htmlCreateFileParserCtxt
htmlCreateMemoryParserCtxt
htmlCreatePushParserCtxt
htmlCtxtReadDoc
htmlCtxtReadFd
htmlCtxtReadFile
htmlCtxtReadIO
htmlCtxtReadMemory
htmlCtxtReset
htmlCtxtUseOptions
htmlDefaultSAXHandlerInit
htmlDocContentDumpFormatOutput
htmlDocContentDumpOutput
htmlDocDump
htmlDocDumpMemory
htmlDocDumpMemoryFormat
htmlElementAllowedHere
htmlElementStatusHere
htmlEncodeEntities
htmlEntityLookup
htmlEntityValueLookup
htmlFreeParserCtxt
htmlGetMetaEncoding
htmlHandleOmittedElem
htmlInitAutoClose
htmlIsAutoClosed
htmlIsBooleanAttr
htmlIsScriptAttribute
htmlNewDoc
htmlNewDocNoDtD
htmlNewParserCtxt
htmlNodeDump
htmlNodeDumpFile
htmlNodeDumpFileFormat
htmlNodeDumpFormatOutput
htmlNodeDumpOutput
htmlNodeStatus
htmlParseCharRef
htmlParseChunk
htmlParseDoc
htmlParseDocument
htmlParseElement
htmlParseEntityRef
htmlParseFile
htmlReadDoc
htmlReadFd
htmlReadFile
htmlReadIO
htmlReadMemory
htmlSAXParseDoc
htmlSAXParseFile
htmlSaveFile
htmlSaveFileEnc
htmlSaveFileFormat
htmlSetMetaEncoding
htmlTagLookup
ignorableWhitespace
initGenericErrorDefaultFunc
initdocbDefaultSAXHandler
inithtmlDefaultSAXHandler
initxmlDefaultSAXHandler
inputPop
inputPush
internalSubset
isStandalone
isolat1ToUTF8
namePop
namePush
namespaceDecl
nodePop
nodePush
notationDecl
processingInstruction
reference
resolveEntity
setDocumentLocator
setNamespace
startDocument
startElement
unparsedEntityDecl
valuePop
valuePush
xlinkGetDefaultDetect
xlinkGetDefaultHandler
xlinkIsLink
xlinkSetDefaultDetect
xlinkSetDefaultHandler
xmlACatalogAdd
xmlACatalogDump
xmlACatalogRemove
xmlACatalogResolve
xmlACatalogResolvePublic
xmlACatalogResolveSystem
xmlACatalogResolveURI
xmlAddAttributeDecl
xmlAddChild
xmlAddChildList
xmlAddDocEntity
xmlAddDtdEntity
xmlAddElementDecl
xmlAddEncodingAlias
xmlAddID
xmlAddNextSibling
xmlAddNotationDecl
xmlAddPrevSibling
xmlAddRef
xmlAddSibling
xmlAllocOutputBuffer
xmlAllocParserInputBuffer
xmlAttrSerializeTxtContent
xmlAutomataCompile
xmlAutomataGetInitState
xmlAutomataIsDeterminist
xmlAutomataNewAllTrans
xmlAutomataNewCountTrans
xmlAutomataNewCountTrans2
xmlAutomataNewCountedTrans
xmlAutomataNewCounter
xmlAutomataNewCounterTrans
xmlAutomataNewEpsilon
xmlAutomataNewNegTrans
xmlAutomataNewOnceTrans
xmlAutomataNewOnceTrans2
xmlAutomataNewState
xmlAutomataNewTransition
xmlAutomataNewTransition2
xmlAutomataSetFinalState
xmlBoolToText
xmlBufContent
xmlBufEnd
xmlBufGetNodeContent
xmlBufNodeDump
xmlBufShrink
xmlBufUse
xmlBufferAdd
xmlBufferAddHead
xmlBufferCCat
xmlBufferCat
xmlBufferContent
xmlBufferCreate
xmlBufferCreateSize
xmlBufferCreateStatic
xmlBufferDetach
xmlBufferDump
xmlBufferEmpty
xmlBufferFree
xmlBufferGrow
xmlBufferLength
xmlBufferResize
xmlBufferSetAllocationScheme
xmlBufferShrink
xmlBufferWriteCHAR
xmlBufferWriteChar
xmlBufferWriteQuotedString
xmlBuildQName
xmlBuildRelativeURI
xmlBuildURI
xmlByteConsumed
xmlC14NDocDumpMemory
xmlC14NDocSave
xmlC14NDocSaveTo
xmlC14NExecute
xmlCanonicPath
xmlCatalogAdd
xmlCatalogAddLocal
xmlCatalogCleanup
xmlCatalogConvert
xmlCatalogDump
xmlCatalogFreeLocal
xmlCatalogGetDefaults
xmlCatalogGetPublic
xmlCatalogGetSystem
xmlCatalogIsEmpty
xmlCatalogLocalResolve
xmlCatalogLocalResolveURI
xmlCatalogRemove
xmlCatalogResolve
xmlCatalogResolvePublic
xmlCatalogResolveSystem
xmlCatalogResolveURI
xmlCatalogSetDebug
xmlCatalogSetDefaultPrefer
xmlCatalogSetDefaults
xmlCharEncCloseFunc
xmlCharEncFirstLine
xmlCharEncInFunc
xmlCharEncOutFunc
xmlCharInRange
xmlCharStrdup
xmlCharStrndup
xmlCheckFilename
xmlCheckHTTPInput
xmlCheckLanguageID
xmlCheckUTF8
xmlCheckVersion
xmlChildElementCount
xmlCleanupCharEncodingHandlers
xmlCleanupEncodingAliases
xmlCleanupGlobals
xmlCleanupInputCallbacks
xmlCleanupMemory
xmlCleanupOutputCallbacks
xmlCleanupParser
xmlCleanupPredefinedEntities
xmlCleanupThreads
xmlClearNodeInfoSeq
xmlClearParserCtxt
xmlConvertSGMLCatalog
xmlCopyAttributeTable
xmlCopyChar
xmlCopyCharMultiByte
xmlCopyDoc
xmlCopyDocElementContent
xmlCopyDtd
xmlCopyElementContent
xmlCopyElementTable
xmlCopyEntitiesTable
xmlCopyEnumeration
xmlCopyError
xmlCopyNamespace
xmlCopyNamespaceList
xmlCopyNode
xmlCopyNodeList
xmlCopyNotationTable
xmlCopyProp
xmlCopyPropList
xmlCreateDocParserCtxt
xmlCreateEntitiesTable
xmlCreateEntityParserCtxt
xmlCreateEnumeration
xmlCreateFileParserCtxt
xmlCreateIOParserCtxt
xmlCreateIntSubset
xmlCreateMemoryParserCtxt
xmlCreatePushParserCtxt
xmlCreateURI
xmlCreateURLParserCtxt
xmlCtxtGetLastError
xmlCtxtReadDoc
xmlCtxtReadFd
xmlCtxtReadFile
xmlCtxtReadIO
xmlCtxtReadMemory
xmlCtxtReset
xmlCtxtResetLastError
xmlCtxtResetPush
xmlCtxtUseOptions
xmlCurrentChar
xmlDOMWrapAdoptNode
xmlDOMWrapCloneNode
xmlDOMWrapFreeCtxt
xmlDOMWrapNewCtxt
xmlDOMWrapReconcileNamespaces
xmlDOMWrapRemoveNode
xmlDebugCheckDocument
xmlDebugDumpAttr
xmlDebugDumpAttrList
xmlDebugDumpDTD
xmlDebugDumpDocument
xmlDebugDumpDocumentHead
xmlDebugDumpEntities
xmlDebugDumpNode
xmlDebugDumpNodeList
xmlDebugDumpOneNode
xmlDebugDumpString
xmlDecodeEntities
xmlDefaultSAXHandlerInit
xmlDelEncodingAlias
xmlDeregisterNodeDefault
xmlDetectCharEncoding
xmlDictCleanup
xmlDictCreate
xmlDictCreateSub
xmlDictExists
xmlDictFree
xmlDictGetUsage
xmlDictLookup
xmlDictOwns
xmlDictQLookup
xmlDictReference
xmlDictSetLimit
xmlDictSize
xmlDocCopyNode
xmlDocCopyNodeList
xmlDocDump
xmlDocDumpFormatMemory
xmlDocDumpFormatMemoryEnc
xmlDocDumpMemory
xmlDocDumpMemoryEnc
xmlDocFormatDump
xmlDocGetRootElement
xmlDocSetRootElement
xmlDumpAttributeDecl
xmlDumpAttributeTable
xmlDumpElementDecl
xmlDumpElementTable
xmlDumpEntitiesTable
xmlDumpEntityDecl
xmlDumpNotationDecl
xmlDumpNotationTable
xmlElemDump
xmlEncodeEntities
xmlEncodeEntitiesReentrant
xmlEncodeSpecialChars
xmlErrMemory
xmlEscapeFormatString
xmlExpCtxtNbCons
xmlExpCtxtNbNodes
xmlExpDump
xmlExpExpDerive
xmlExpFree
xmlExpFreeCtxt
xmlExpGetLanguage
xmlExpGetStart
xmlExpIsNillable
xmlExpMaxToken
xmlExpNewAtom
xmlExpNewCtxt
xmlExpNewOr
xmlExpNewRange
xmlExpNewSeq
xmlExpParse
xmlExpRef
xmlExpStringDerive
xmlExpSubsume
xmlFileClose
xmlFileMatch
xmlFileOpen
xmlFileRead
xmlFindCharEncodingHandler
xmlFirstElementChild
xmlFree
xmlFreeAttributeTable
xmlFreeAutomata
xmlFreeCatalog
xmlFreeDoc
xmlFreeDocElementContent
xmlFreeDtd
xmlFreeElementContent
xmlFreeElementTable
xmlFreeEntitiesTable
xmlFreeEnumeration
xmlFreeIDTable
xmlFreeInputStream
xmlFreeMutex
xmlFreeNode
xmlFreeNodeList
xmlFreeNotationTable
xmlFreeNs
xmlFreeNsList
xmlFreeParserCtxt
xmlFreeParserInputBuffer
xmlFreePattern
xmlFreePatternList
xmlFreeProp
xmlFreePropList
xmlFreeRMutex
xmlFreeRefTable
xmlFreeStreamCtxt
xmlFreeTextReader
xmlFreeTextWriter
xmlFreeURI
xmlFreeValidCtxt
xmlGcMemGet
xmlGcMemSetup
xmlGetBufferAllocationScheme
xmlGetCharEncodingHandler
xmlGetCharEncodingName
xmlGetCompressMode
xmlGetDocCompressMode
xmlGetDocEntity
xmlGetDtdAttrDesc
xmlGetDtdElementDesc
xmlGetDtdEntity
xmlGetDtdNotationDesc
xmlGetDtdQAttrDesc
xmlGetDtdQElementDesc
xmlGetEncodingAlias
xmlGetExternalEntityLoader
xmlGetFeature
xmlGetFeaturesList
xmlGetGlobalState
xmlGetID
xmlGetIntSubset
xmlGetLastChild
xmlGetLastError
xmlGetLineNo
xmlGetNoNsProp
xmlGetNodePath
xmlGetNsList
xmlGetNsProp
xmlGetParameterEntity
xmlGetPredefinedEntity
xmlGetProp
xmlGetRefs
xmlGetThreadId
xmlGetUTF8Char
xmlHandleEntity
xmlHasFeature
xmlHasNsProp
xmlHasProp
xmlHashAddEntry
xmlHashAddEntry2
xmlHashAddEntry3
xmlHashCopy
xmlHashCreate
xmlHashCreateDict
xmlHashDefaultDeallocator
xmlHashFree
xmlHashLookup
xmlHashLookup2
xmlHashLookup3
xmlHashQLookup
xmlHashQLookup2
xmlHashQLookup3
xmlHashRemoveEntry
xmlHashRemoveEntry2
xmlHashRemoveEntry3
xmlHashScan
xmlHashScan3
xmlHashScanFull
xmlHashScanFull3
xmlHashSize
xmlHashUpdateEntry
xmlHashUpdateEntry2
xmlHashUpdateEntry3
xmlIOFTPClose
xmlIOFTPMatch
xmlIOFTPOpen
xmlIOFTPRead

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 280KB - Virtual size: 279KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/lzma.dll
.dll windows:6 windows x64 arch:x64

7950f4177951bd0dc1c676a59abbf92a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\liblzma\x64-windows-rel\lzma.pdb

Imports

kernel32

GetSystemInfo
GetVersion
GetModuleHandleA
GetProcAddress
GlobalMemoryStatus
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeConditionVariable
WakeConditionVariable
SleepConditionVariableCS
WaitForSingleObject
GetTickCount
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

vcruntime140

memcmp
memset
memmove
__C_specific_handler
__std_type_info_destroy_list
memcpy

api-ms-win-crt-heap-l1-1-0

calloc
free
malloc

api-ms-win-crt-runtime-l1-1-0

_seh_filter_dll
_configure_narrow_argv
_initterm
_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_beginthreadex
_initterm_e

Exports

Exports

lzma_alone_decoder
lzma_alone_encoder
lzma_auto_decoder
lzma_block_buffer_bound
lzma_block_buffer_decode
lzma_block_buffer_encode
lzma_block_compressed_size
lzma_block_decoder
lzma_block_encoder
lzma_block_header_decode
lzma_block_header_encode
lzma_block_header_size
lzma_block_total_size
lzma_block_uncomp_encode
lzma_block_unpadded_size
lzma_check_is_supported
lzma_check_size
lzma_code
lzma_cputhreads
lzma_crc32
lzma_crc64
lzma_easy_buffer_encode
lzma_easy_decoder_memusage
lzma_easy_encoder
lzma_easy_encoder_memusage
lzma_end
lzma_filter_decoder_is_supported
lzma_filter_encoder_is_supported
lzma_filter_flags_decode
lzma_filter_flags_encode
lzma_filter_flags_size
lzma_filters_copy
lzma_filters_update
lzma_get_check
lzma_get_progress
lzma_index_append
lzma_index_block_count
lzma_index_buffer_decode
lzma_index_buffer_encode
lzma_index_cat
lzma_index_checks
lzma_index_decoder
lzma_index_dup
lzma_index_encoder
lzma_index_end
lzma_index_file_size
lzma_index_hash_append
lzma_index_hash_decode
lzma_index_hash_end
lzma_index_hash_init
lzma_index_hash_size
lzma_index_init
lzma_index_iter_init
lzma_index_iter_locate
lzma_index_iter_next
lzma_index_iter_rewind
lzma_index_memusage
lzma_index_memused
lzma_index_size
lzma_index_stream_count
lzma_index_stream_flags
lzma_index_stream_padding
lzma_index_stream_size
lzma_index_total_size
lzma_index_uncompressed_size
lzma_lzma_preset
lzma_memlimit_get
lzma_memlimit_set
lzma_memusage
lzma_mf_is_supported
lzma_mode_is_supported
lzma_physmem
lzma_properties_decode
lzma_properties_encode
lzma_properties_size
lzma_raw_buffer_decode
lzma_raw_buffer_encode
lzma_raw_decoder
lzma_raw_decoder_memusage
lzma_raw_encoder
lzma_raw_encoder_memusage
lzma_stream_buffer_bound
lzma_stream_buffer_decode
lzma_stream_buffer_encode
lzma_stream_decoder
lzma_stream_encoder
lzma_stream_encoder_mt
lzma_stream_encoder_mt_memusage
lzma_stream_flags_compare
lzma_stream_footer_decode
lzma_stream_footer_encode
lzma_stream_header_decode
lzma_stream_header_encode
lzma_version_number
lzma_version_string
lzma_vli_decode
lzma_vli_encode
lzma_vli_size

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/pcre.dll
.dll windows:6 windows x64 arch:x64

21a09f854b56bdd5dfb09f8e97b18b39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\pcre\x64-windows-rel\pcre.pdb

Imports

kernel32

ReleaseMutex
WaitForSingleObject
CreateMutexA
GetSystemInfo
VirtualAlloc
VirtualFree
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

vcruntime140

memcpy
memmove
memset
strchr
__C_specific_handler
__std_type_info_destroy_list
memcmp

api-ms-win-crt-string-l1-1-0

islower
strncmp
isdigit
isupper
toupper
iscntrl
isgraph
isprint
isalnum
ispunct
isspace
isxdigit
isalpha
tolower

api-ms-win-crt-heap-l1-1-0

free
malloc

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
_cexit
_initterm_e
_initterm
_configure_narrow_argv
_seh_filter_dll

Exports

Exports

pcre_assign_jit_stack
pcre_callout
pcre_compile
pcre_compile2
pcre_config
pcre_copy_named_substring
pcre_copy_substring
pcre_dfa_exec
pcre_exec
pcre_free
pcre_free_study
pcre_free_substring
pcre_free_substring_list
pcre_fullinfo
pcre_get_named_substring
pcre_get_stringnumber
pcre_get_stringtable_entries
pcre_get_substring
pcre_get_substring_list
pcre_jit_exec
pcre_jit_free_unused_memory
pcre_jit_stack_alloc
pcre_jit_stack_free
pcre_maketables
pcre_malloc
pcre_pattern_to_host_byte_order
pcre_refcount
pcre_stack_free
pcre_stack_guard
pcre_stack_malloc
pcre_study
pcre_version

Sections

.text
Size: 286KB - Virtual size: 285KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/pcreposix.dll
.dll windows:6 windows x64 arch:x64

829e50cf9b1abbca7d2d5a9a9a826348

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\pcre\x64-windows-rel\pcreposix.pdb

Imports

pcre

pcre_compile2
pcre_free
pcre_fullinfo
pcre_exec

vcruntime140

__C_specific_handler
memset
__std_type_info_destroy_list

api-ms-win-crt-heap-l1-1-0

free
malloc

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf

api-ms-win-crt-string-l1-1-0

strncpy

api-ms-win-crt-runtime-l1-1-0

_execute_onexit_table
_initterm_e
_initterm
_cexit
_initialize_onexit_table
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment

kernel32

IsProcessorFeaturePresent
IsDebuggerPresent
InitializeSListHead
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
QueryPerformanceCounter
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId

Exports

Exports

regcomp
regerror
regexec
regfree

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/plist.dll
.dll windows:6 windows x64 arch:x64

7a96382b4a0c1e0ace6f59c19e8adb54

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\a\1\s\x64\Release\plist.pdb

Imports

kernel32

Sleep
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlCaptureContext
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
RtlLookupFunctionEntry

vcruntime140

memmove
__C_specific_handler
memcmp
memset
__std_type_info_destroy_list
memcpy

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsscanf
__stdio_common_vsprintf

api-ms-win-crt-heap-l1-1-0

malloc
free
calloc
realloc

api-ms-win-crt-runtime-l1-1-0

_errno
_cexit
_initterm
_seh_filter_dll
_configure_narrow_argv
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_initterm_e

api-ms-win-crt-time-l1-1-0

strftime

api-ms-win-crt-string-l1-1-0

strncpy
strncmp
_strdup

api-ms-win-crt-convert-l1-1-0

atof
strtoull

api-ms-win-crt-math-l1-1-0

_dclass

Exports

Exports

plist_access_path
plist_access_pathv
plist_array_append_item
plist_array_get_item
plist_array_get_item_index
plist_array_get_size
plist_array_insert_item
plist_array_item_remove
plist_array_new_iter
plist_array_next_item
plist_array_remove_item
plist_array_set_item
plist_compare_node_value
plist_copy
plist_dict_get_item
plist_dict_get_item_key
plist_dict_get_size
plist_dict_insert_item
plist_dict_item_get_key
plist_dict_merge
plist_dict_new_iter
plist_dict_next_item
plist_dict_remove_item
plist_dict_set_item
plist_free
plist_from_bin
plist_from_memory
plist_from_xml
plist_get_bool_val
plist_get_data_ptr
plist_get_data_val
plist_get_date_val
plist_get_key_val
plist_get_node_type
plist_get_parent
plist_get_real_val
plist_get_string_ptr
plist_get_string_val
plist_get_uid_val
plist_get_uint_val
plist_is_binary
plist_new_array
plist_new_bool
plist_new_data
plist_new_date
plist_new_dict
plist_new_real
plist_new_string
plist_new_uid
plist_new_uint
plist_set_bool_val
plist_set_data_val
plist_set_date_val
plist_set_key_val
plist_set_real_val
plist_set_string_val
plist_set_uid_val
plist_set_uint_val
plist_to_bin
plist_to_bin_free
plist_to_xml
plist_to_xml_free

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/plist_cmp.exe
.exe windows:6 windows x64 arch:x64

e09564d404cf043779046ac52e71c5ec

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\plist_cmp.pdb

Imports

plist

plist_from_xml
plist_free
plist_from_bin
plist_compare_node_value

vcruntime140

memset
__C_specific_handler
__current_exception
__current_exception_context

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__p__commode
_set_fmode
fread
fclose
fopen
__stdio_common_vfprintf

api-ms-win-crt-heap-l1-1-0

_set_new_mode
free
malloc

api-ms-win-crt-filesystem-l1-1-0

_stat64i32

api-ms-win-crt-runtime-l1-1-0

_c_exit
_register_thread_local_exe_atexit_callback
_exit
_initterm_e
_initterm
_initialize_onexit_table
_cexit
_crt_atexit
terminate
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
__p___argv
_register_onexit_function
__p___argc
_set_app_type
_seh_filter_exe
exit

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

kernel32

RtlVirtualUnwind
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
RtlLookupFunctionEntry
RtlCaptureContext
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
IsProcessorFeaturePresent
QueryPerformanceCounter

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/plist_test.exe
.exe windows:6 windows x64 arch:x64

dee379b754b17f15daa2b582dde29f17

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\plist_test.pdb

Imports

plist

plist_from_xml
plist_free
plist_from_bin
plist_to_bin
plist_to_xml

vcruntime140

memset
__current_exception
__current_exception_context
__C_specific_handler

api-ms-win-crt-stdio-l1-1-0

fopen
__p__commode
_set_fmode
fread
fwrite
__stdio_common_vfprintf
fclose
__acrt_iob_func

api-ms-win-crt-filesystem-l1-1-0

_stat64i32

api-ms-win-crt-heap-l1-1-0

malloc
_set_new_mode
free

api-ms-win-crt-runtime-l1-1-0

__p___argv
_cexit
exit
_register_thread_local_exe_atexit_callback
_initterm_e
_get_initial_narrow_environment
_initialize_narrow_environment
__p___argc
_initialize_onexit_table
_register_onexit_function
_crt_atexit
terminate
_configure_narrow_argv
_set_app_type
_seh_filter_exe
_exit
_c_exit
_initterm

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

kernel32

RtlCaptureContext
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetCurrentProcess
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/plistutil.exe
.exe windows:6 windows x64 arch:x64

832e078cb56c16f3a980a2ceb4ce910e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\plistutil.pdb

Imports

plist

plist_from_xml
plist_free
plist_from_bin
plist_to_bin
plist_to_xml
plist_is_binary

vcruntime140

__current_exception
__current_exception_context
strrchr
__C_specific_handler
memset

api-ms-win-crt-stdio-l1-1-0

fopen
_fileno
__p__commode
__acrt_iob_func
fread
fwrite
__stdio_common_vfprintf
fclose
_set_fmode

api-ms-win-crt-runtime-l1-1-0

_exit
_cexit
__p___argc
__p___argv
exit
_c_exit
_register_thread_local_exe_atexit_callback
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_onexit_table
_register_onexit_function
_crt_atexit
terminate
_initialize_narrow_environment
_set_app_type
_seh_filter_exe
strerror
_errno
_configure_narrow_argv

api-ms-win-crt-heap-l1-1-0

_set_new_mode
free
malloc

api-ms-win-crt-filesystem-l1-1-0

_fstat64i32

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
RtlVirtualUnwind
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
RtlLookupFunctionEntry
RtlCaptureContext
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
UnhandledExceptionFilter

api-ms-win-crt-string-l1-1-0

strcmp

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/pthreadVC3.dll
.dll windows:6 windows x64 arch:x64

10da88cadfe088de04539ca6d6b328c5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\pthreads\src\3.0.0-bb03a1deb3\pthreadVC3.pdb

Imports

kernel32

CloseHandle
DuplicateHandle
RaiseException
GetLastError
SetLastError
SetEvent
ResetEvent
ReleaseSemaphore
WaitForSingleObject
CreateEventA
Sleep
WaitForMultipleObjects
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
SetThreadPriority
GetThreadPriority
SuspendThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetThreadContext
SetThreadContext
OpenProcess
GetSystemTimeAsFileTime
GetSystemDirectoryA
FreeLibrary
GetProcAddress
LoadLibraryA
GetProcessAffinityMask
SetProcessAffinityMask
SetThreadAffinityMask
CreateSemaphoreA
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW

vcruntime140

longjmp
__C_specific_handler
memset
__intrinsic_setjmp
__std_type_info_destroy_list
__current_exception
__current_exception_context

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
terminate
_get_errno
exit
_set_errno
_endthreadex
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_beginthreadex
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit

api-ms-win-crt-string-l1-1-0

_strdup
strncat_s

api-ms-win-crt-heap-l1-1-0

malloc
free
calloc

Exports

Exports

__ptw32_get_exception_services_code
__ptw32_pop_cleanup
__ptw32_push_cleanup
_sched_affinitycpuand
_sched_affinitycpuclr
_sched_affinitycpucount
_sched_affinitycpuequal
_sched_affinitycpuisset
_sched_affinitycpuor
_sched_affinitycpuset
_sched_affinitycpuxor
_sched_affinitycpuzero
pthreadCancelableTimedWait
pthreadCancelableWait
pthread_attr_destroy
pthread_attr_getaffinity_np
pthread_attr_getdetachstate
pthread_attr_getinheritsched
pthread_attr_getname_np
pthread_attr_getschedparam
pthread_attr_getschedpolicy
pthread_attr_getscope
pthread_attr_getstackaddr
pthread_attr_getstacksize
pthread_attr_init
pthread_attr_setaffinity_np
pthread_attr_setdetachstate
pthread_attr_setinheritsched
pthread_attr_setname_np
pthread_attr_setschedparam
pthread_attr_setschedpolicy
pthread_attr_setscope
pthread_attr_setstackaddr
pthread_attr_setstacksize
pthread_barrier_destroy
pthread_barrier_init
pthread_barrier_wait
pthread_barrierattr_destroy
pthread_barrierattr_getpshared
pthread_barrierattr_init
pthread_barrierattr_setpshared
pthread_cancel
pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_init
pthread_cond_signal
pthread_cond_timedwait
pthread_cond_wait
pthread_condattr_destroy
pthread_condattr_getpshared
pthread_condattr_init
pthread_condattr_setpshared
pthread_create
pthread_delay_np
pthread_detach
pthread_equal
pthread_exit
pthread_getaffinity_np
pthread_getconcurrency
pthread_getname_np
pthread_getschedparam
pthread_getspecific
pthread_getunique_np
pthread_getw32threadhandle_np
pthread_getw32threadid_np
pthread_join
pthread_key_create
pthread_key_delete
pthread_kill
pthread_mutex_consistent
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_timedlock
pthread_mutex_trylock
pthread_mutex_unlock
pthread_mutexattr_destroy
pthread_mutexattr_getkind_np
pthread_mutexattr_getpshared
pthread_mutexattr_getrobust
pthread_mutexattr_gettype
pthread_mutexattr_init
pthread_mutexattr_setkind_np
pthread_mutexattr_setpshared
pthread_mutexattr_setrobust
pthread_mutexattr_settype
pthread_num_processors_np
pthread_once
pthread_rwlock_destroy
pthread_rwlock_init
pthread_rwlock_rdlock
pthread_rwlock_timedrdlock
pthread_rwlock_timedwrlock
pthread_rwlock_tryrdlock
pthread_rwlock_trywrlock
pthread_rwlock_unlock
pthread_rwlock_wrlock
pthread_rwlockattr_destroy
pthread_rwlockattr_getpshared
pthread_rwlockattr_init
pthread_rwlockattr_setpshared
pthread_self
pthread_setaffinity_np
pthread_setcancelstate
pthread_setcanceltype
pthread_setconcurrency
pthread_setname_np
pthread_setschedparam
pthread_setspecific
pthread_spin_destroy
pthread_spin_init
pthread_spin_lock
pthread_spin_trylock
pthread_spin_unlock
pthread_testcancel
pthread_timechange_handler_np
pthread_timedjoin_np
pthread_tryjoin_np
pthread_win32_getabstime_np
pthread_win32_process_attach_np
pthread_win32_process_detach_np
pthread_win32_test_features_np
pthread_win32_thread_attach_np
pthread_win32_thread_detach_np
sched_get_priority_max
sched_get_priority_min
sched_getaffinity
sched_setaffinity
sched_setscheduler
sched_yield
sem_close
sem_destroy
sem_getvalue
sem_init
sem_open
sem_post
sem_post_multiple
sem_timedwait
sem_trywait
sem_unlink
sem_wait

Sections

.text
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 283B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/readline.dll
.dll windows:6 windows x64 arch:x64

9d5d299e2acc7584bfe87e19012a8f02

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\readline-win32\x64-windows-rel\readline.pdb

Imports

kernel32

PeekConsoleInputA
GetConsoleScreenBufferInfo
FindClose
FindFirstFileA
FindNextFileA
FillConsoleOutputCharacterA
SetConsoleCursorPosition
SetConsoleMode
ReadFile
ReadConsoleInputA
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetConsoleMode
WaitForSingleObject
SetConsoleCtrlHandler
GetStdHandle
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

user32

GetClipboardData
MessageBeep
CloseClipboard
OpenClipboard

advapi32

RegOpenKeyExA
GetUserNameA
RegQueryValueExA

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
strchr
strrchr
memcmp
memcpy
__intrinsic_setjmp
longjmp
memmove
memset

api-ms-win-crt-heap-l1-1-0

free
realloc
malloc

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
_close
_open
_read
putc
_fileno
_kbhit
_isatty
_write
fwrite
__stdio_common_vsprintf
fflush
__stdio_common_vfprintf

api-ms-win-crt-string-l1-1-0

isprint
isalpha
mbrlen
strcoll
isxdigit
strpbrk
strncmp
_stricmp
_strnicmp
toupper
isalnum
islower
iswctype
towlower
towupper
strncpy
isupper
tolower

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-locale-l1-1-0

setlocale
___mb_cur_max_func

api-ms-win-crt-convert-l1-1-0

atol
mbrtowc
atoi
wcrtomb

api-ms-win-crt-filesystem-l1-1-0

_stat64i32
_fstat64i32
_access

api-ms-win-crt-runtime-l1-1-0

_errno
abort
exit
raise
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
_cexit

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-environment-l1-1-0

getenv
_putenv

Exports

Exports

_rl_abort_internal
_rl_add_macro_char
_rl_adjust_point
_rl_any_typein
_rl_backspace
_rl_bell_preference
_rl_char_search_internal
_rl_clean_up_for_exit
_rl_clear_screen
_rl_clear_to_eol
_rl_comment_begin
_rl_compare_chars
_rl_complete_mark_directories
_rl_complete_mark_symlink_dirs
_rl_complete_show_all
_rl_complete_show_unmodified
_rl_completion_case_fold
_rl_control_keypad
_rl_convert_meta_chars_to_ascii
_rl_current_display_line
_rl_digit_p
_rl_digit_value
_rl_disable_tty_signals
_rl_dispatch
_rl_dispatch_subseq
_rl_doing_an_undo
_rl_enable_keypad
_rl_enable_meta
_rl_enable_meta_key
_rl_enable_paren_matching
_rl_eof_char
_rl_erase_at_end_of_line
_rl_erase_entire_line
_rl_executing_macro
_rl_find_completion_word
_rl_find_next_mbchar
_rl_find_prev_mbchar
_rl_fix_last_undo_of_type
_rl_fix_point
_rl_free_match_list
_rl_free_saved_history_line
_rl_get_char_len
_rl_get_screen_size
_rl_history_preserve_point
_rl_history_saved_point
_rl_horizontal_scroll_mode
_rl_in_stream
_rl_init_argument
_rl_init_eightbit
_rl_init_line_state
_rl_init_terminal_io
_rl_input_available
_rl_input_queued
_rl_insert_char
_rl_insert_typein
_rl_is_mbchar_matched
_rl_isearch_terminators
_rl_keymap
_rl_kill_kbd_macro
_rl_last_c_pos
_rl_last_command_was_kill
_rl_lowercase_p
_rl_make_prompt_for_search
_rl_mark_modified_lines
_rl_match_hidden_files
_rl_meta_flag
_rl_move_cursor_relative
_rl_move_vert
_rl_next_macro_key
_rl_out_stream
_rl_output_character_function
_rl_output_meta_chars
_rl_output_some_chars
_rl_overwrite_char
_rl_overwrite_rubout
_rl_page_completions
_rl_parsing_conditionalized_out
_rl_pop_executing_macro
_rl_possible_control_prefixes
_rl_possible_meta_prefixes
_rl_print_completions_horizontally
_rl_pure_alphabetic
_rl_push_executing_macro
_rl_pushed_input_available
_rl_qsort_string_compare
_rl_read_mbchar
_rl_read_mbstring
_rl_redisplay_after_sigwinch
_rl_replace_text
_rl_restore_tty_signals
_rl_rubout_char
_rl_savestring
_rl_screenchars
_rl_screenheight
_rl_screenwidth
_rl_set_cursor
_rl_set_insert_mode
_rl_set_mark_at_pos
_rl_set_screen_size
_rl_set_the_line
_rl_start_using_history
_rl_strindex
_rl_strip_prompt
_rl_suppress_redisplay
_rl_term_DC
_rl_term_IC
_rl_term_autowrap
_rl_term_clreol
_rl_term_clrpag
_rl_term_cr
_rl_term_dc
_rl_term_ei
_rl_term_ic
_rl_term_im
_rl_term_up
_rl_terminal_can_insert
_rl_to_lower
_rl_to_upper
_rl_undo_group_level
_rl_unget_char
_rl_update_final
_rl_uppercase_p
_rl_vi_done_inserting
_rl_vi_initialize_line
_rl_vi_last_command
_rl_vi_reset_last
_rl_vi_set_last
_rl_vi_textmod_command
_rl_vis_botlin
_rl_with_macro_input
add_history
add_history_time
append_history
clear_history
current_history
free_history_entry
funmap
get_history_event
history_arg_extract
history_base
history_comment_char
history_expand
history_expansion_char
history_get
history_get_history_state
history_get_time
history_inhibit_expansion_function
history_is_stifled
history_length
history_list
history_max_entries
history_no_expand_chars
history_quotes_inhibit_expansion
history_search
history_search_delimiter_chars
history_search_pos
history_search_prefix
history_set_history_state
history_set_pos
history_subst_char
history_tokenize
history_total_bytes
history_truncate_file
history_word_delimiters
history_write_timestamps
max_input_history
next_history
previous_history
read_history
read_history_range
readline
readline_echoing_p
readline_internal_char
readline_internal_setup
readline_internal_teardown
readline_top_level
remove_history
replace_history_entry
rl_abort
rl_add_defun
rl_add_funmap_entry
rl_add_undo
rl_alphabetic
rl_already_prompted
rl_arg_sign
rl_arrow_keys
rl_attempted_completion_function
rl_attempted_completion_over
rl_backward
rl_backward_byte
rl_backward_char
rl_backward_char_search
rl_backward_kill_line
rl_backward_kill_word
rl_backward_word
rl_basic_quote_characters
rl_basic_word_break_characters
rl_beg_of_line
rl_begin_undo_group
rl_beginning_of_history
rl_bind_key
rl_bind_key_if_unbound
rl_bind_key_if_unbound_in_map
rl_bind_key_in_map
rl_bind_keyseq
rl_bind_keyseq_if_unbound
rl_bind_keyseq_if_unbound_in_map
rl_bind_keyseq_in_map
rl_binding_keymap
rl_blink_matching_paren
rl_byte_oriented
rl_call_last_kbd_macro
rl_callback_handler_install
rl_callback_handler_remove
rl_callback_read_char
rl_capitalize_word
rl_catch_signals
rl_catch_sigwinch
rl_char_is_quoted_p
rl_char_search
rl_character_len
rl_cleanup_after_signal
rl_clear_message
rl_clear_pending_input
rl_clear_screen
rl_clear_signals
rl_complete
rl_complete_internal
rl_complete_with_tilde_expansion
rl_completer_quote_characters
rl_completer_word_break_characters
rl_completion_append_character
rl_completion_display_matches_hook
rl_completion_entry_function
rl_completion_found_quote
rl_completion_mark_symlink_dirs
rl_completion_matches
rl_completion_mode
rl_completion_query_items
rl_completion_quote_character
rl_completion_suppress_append
rl_completion_suppress_quote
rl_completion_type
rl_completion_word_break_hook
rl_copy_backward_word
rl_copy_forward_word
rl_copy_keymap
rl_copy_region_to_kill
rl_copy_text
rl_crlf
rl_delete
rl_delete_horizontal_space
rl_delete_or_show_completions
rl_delete_text
rl_deprep_term_function
rl_deprep_terminal
rl_digit_argument
rl_ding
rl_directory_completion_hook
rl_directory_rewrite_hook
rl_discard_argument
rl_discard_keymap
rl_dispatching
rl_display_fixed
rl_display_match_list
rl_display_prompt
rl_do_lowercase_version
rl_do_undo
rl_done
rl_downcase_word
rl_dump_functions
rl_dump_macros
rl_dump_variables
rl_editing_mode
rl_emacs_editing_mode
rl_end
rl_end_kbd_macro
rl_end_of_history
rl_end_of_line
rl_end_undo_group
rl_erase_empty_line
rl_event_hook
rl_exchange_point_and_mark
rl_execute_next
rl_executing_keymap
rl_executing_macro
rl_expand_prompt
rl_explicit_arg
rl_extend_line_buffer
rl_filename_completion_desired
rl_filename_completion_function
rl_filename_dequoting_function
rl_filename_quote_characters
rl_filename_quoting_desired
rl_filename_quoting_function
rl_forced_update_display
rl_forward
rl_forward_byte
rl_forward_char
rl_forward_search_history
rl_forward_word
rl_free_line_state
rl_free_undo_list
rl_function_dumper
rl_function_of_keyseq
rl_funmap_names
rl_generic_bind
rl_get_keymap
rl_get_keymap_by_name
rl_get_keymap_name
rl_get_keymap_name_from_edit_mode
rl_get_next_history
rl_get_previous_history
rl_get_screen_size
rl_getc
rl_getc_function
rl_gnu_readline_p
rl_history_search_backward
rl_history_search_forward
rl_ignore_completion_duplicates
rl_ignore_some_completions_function
rl_inhibit_completion
rl_initialize
rl_initialize_funmap
rl_insert
rl_insert_close
rl_insert_comment
rl_insert_completions
rl_insert_mode
rl_insert_text
rl_instream
rl_invoking_keyseqs
rl_invoking_keyseqs_in_map
rl_key_sequence_length
rl_kill_full_line
rl_kill_line
rl_kill_region
rl_kill_text
rl_kill_word
rl_last_func
rl_library_version
rl_line_buffer
rl_line_buffer_len
rl_list_funmap_names
rl_macro_bind
rl_macro_dumper
rl_make_bare_keymap
rl_make_keymap
rl_mark
rl_maybe_replace_line
rl_maybe_save_line
rl_maybe_unsave_line
rl_menu_complete
rl_message
rl_modifying
rl_named_function
rl_newline
rl_noninc_forward_search
rl_noninc_forward_search_again
rl_noninc_reverse_search
rl_noninc_reverse_search_again
rl_num_chars_to_read
rl_numeric_arg
rl_on_new_line
rl_on_new_line_with_prompt
rl_outstream
rl_overwrite_mode
rl_parse_and_bind
rl_paste_from_clipboard
rl_pending_input
rl_point
rl_possible_completions
rl_pre_input_hook
rl_prep_term_function
rl_prep_terminal
rl_prompt
rl_push_macro_input
rl_quoted_insert
rl_re_read_init_file
rl_read_init_file
rl_read_key
rl_readline_name
rl_readline_state
rl_readline_version
rl_redisplay
rl_redisplay_function
rl_refresh_line
rl_replace_line
rl_reset_after_signal
rl_reset_line_state
rl_reset_terminal
rl_resize_terminal
rl_restart_output
rl_restore_prompt
rl_restore_state
rl_reverse_search_history
rl_revert_line
rl_rubout
rl_rubout_or_delete
rl_save_prompt
rl_save_state
rl_set_key
rl_set_keyboard_input_timeout
rl_set_keymap
rl_set_keymap_from_edit_mode
rl_set_mark
rl_set_paren_blink_timeout
rl_set_prompt
rl_set_retained_kills
rl_set_screen_size
rl_set_signals
rl_show_char
rl_special_prefixes
rl_start_kbd_macro
rl_startup_hook
rl_stop_output
rl_stuff_char
rl_tab_insert
rl_terminal_name
rl_tilde_expand
rl_translate_keyseq
rl_transpose_chars
rl_transpose_words
rl_tty_set_default_bindings
rl_tty_status
rl_unbind_command_in_map
rl_unbind_function_in_map
rl_unbind_key
rl_unbind_key_in_map
rl_undo_command
rl_undo_list
rl_universal_argument
rl_unix_filename_rubout
rl_unix_line_discard
rl_unix_word_rubout
rl_untranslate_keyseq
rl_upcase_word
rl_username_completion_function
rl_variable_bind
rl_variable_dumper
rl_vi_append_eol
rl_vi_append_mode
rl_vi_arg_digit
rl_vi_bWord
rl_vi_back_to_indent
rl_vi_bracktype
rl_vi_bword
rl_vi_change_case
rl_vi_change_char
rl_vi_change_to
rl_vi_char_search
rl_vi_check
rl_vi_column
rl_vi_complete
rl_vi_delete
rl_vi_delete_to
rl_vi_domove
rl_vi_eWord
rl_vi_editing_mode
rl_vi_end_word
rl_vi_eof_maybe
rl_vi_eword
rl_vi_fWord
rl_vi_fetch_history
rl_vi_first_print
rl_vi_fword
rl_vi_goto_mark
rl_vi_insert_beg
rl_vi_insertion_mode
rl_vi_match
rl_vi_movement_mode
rl_vi_next_word
rl_vi_overstrike
rl_vi_overstrike_delete
rl_vi_prev_word
rl_vi_put
rl_vi_redo
rl_vi_replace
rl_vi_search
rl_vi_search_again
rl_vi_set_mark
rl_vi_start_inserting
rl_vi_subst
rl_vi_tilde_expand
rl_vi_undo
rl_vi_yank_arg
rl_vi_yank_to
rl_visible_prompt_length
rl_visible_stats
rl_yank
rl_yank_last_arg
rl_yank_nth_arg
rl_yank_pop
sh_get_env_value
sh_get_home_dir
sh_set_lines_and_columns
sh_single_quote
stifle_history
tilde_additional_prefixes
tilde_additional_suffixes

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/usbmuxd.dll
.dll windows:6 windows x64 arch:x64

8b020d458c8a35923f6d1039243c6b98

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\a\1\s\x64\Release\usbmuxd.pdb

Imports

ws2_32

WSAStartup
send
socket
connect
getaddrinfo
getsockopt
htons
freeaddrinfo
ioctlsocket
setsockopt
shutdown
select
closesocket
WSAGetLastError
recv

kernel32

CreateThread
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
GetModuleFileNameA
RtlCaptureContext
ExitProcess
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
WaitForSingleObject
Sleep
CloseHandle

plist

plist_get_node_type
plist_from_xml
plist_free
plist_new_data
plist_dict_set_item
plist_new_string
plist_new_dict
plist_get_data_val
plist_dict_get_item
plist_array_get_size
plist_get_uint_val
plist_copy
plist_new_uint
plist_get_string_val
plist_array_get_item
plist_to_xml

vcruntime140

memset
memmove
memcpy
__std_type_info_destroy_list
__C_specific_handler
strrchr

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfprintf
__stdio_common_vsprintf
fflush
__acrt_iob_func

api-ms-win-crt-heap-l1-1-0

malloc
free
realloc

api-ms-win-crt-runtime-l1-1-0

_errno
perror
_cexit
strerror
_wassert
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table

api-ms-win-crt-string-l1-1-0

_strdup
strncmp
_stricmp
strncpy
strcmp

api-ms-win-crt-convert-l1-1-0

strtol

api-ms-win-crt-environment-l1-1-0

getenv

Exports

Exports

libusbmuxd_set_debug_level
libusbmuxd_set_use_inotify
usbmuxd_connect
usbmuxd_delete_pair_record
usbmuxd_device_list_free
usbmuxd_disconnect
usbmuxd_events_subscribe
usbmuxd_events_unsubscribe
usbmuxd_get_device
usbmuxd_get_device_by_udid
usbmuxd_get_device_list
usbmuxd_get_socket_type
usbmuxd_get_tcp_endpoint
usbmuxd_read_buid
usbmuxd_read_pair_record
usbmuxd_recv
usbmuxd_recv_timeout
usbmuxd_save_pair_record
usbmuxd_save_pair_record_with_device_id
usbmuxd_send
usbmuxd_set_socket_type
usbmuxd_set_tcp_endpoint
usbmuxd_subscribe
usbmuxd_unsubscribe

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/usbmuxd.exe
.exe windows:6 windows x64 arch:x64

65cf15f5f6e8d5e18921baf8200a0184

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\a\1\s\x64\Release\usbmuxd.pdb

Imports

ws2_32

ntohl
WSAGetLastError
WSAPoll
socket
inet_addr
WSAStartup
listen
htonl
htons
accept
closesocket
send
ntohs
recv
ioctlsocket
setsockopt
bind

libusb-1.0

libusb_get_string_descriptor_ascii
libusb_get_configuration
libusb_handle_events_timeout
libusb_hotplug_register_callback
libusb_close
libusb_get_bus_number
libusb_free_device_list
libusb_open
libusb_alloc_transfer
libusb_get_device_address
libusb_free_transfer
libusb_has_capability
libusb_get_max_packet_size
libusb_submit_transfer
libusb_release_interface
libusb_set_debug
libusb_cancel_transfer
libusb_free_config_descriptor
libusb_get_device_list
libusb_get_device_speed
libusb_init
libusb_claim_interface
libusb_get_active_config_descriptor
libusb_get_device_descriptor
libusb_exit
libusb_strerror
libusb_hotplug_deregister_callback

libusb0

usb_set_configuration
usb_find_devices
usb_get_busses
usb_open
usb_find_busses
usb_set_debug
usb_close
usb_get_string_simple
usb_init

pthreadvc3

pthread_mutex_lock
pthread_mutex_init
pthread_attr_setdetachstate
pthread_mutex_destroy
pthread_mutex_unlock
pthread_attr_init
pthread_create

plist

plist_get_string_val
plist_dict_remove_item
plist_get_data_val
plist_new_uint
plist_get_node_type
plist_new_bool
plist_from_xml
plist_new_dict
plist_copy
plist_get_uint_val
plist_dict_get_item
plist_to_xml
plist_from_bin
plist_array_append_item
plist_new_array
plist_new_string
plist_dict_set_item
plist_new_data
plist_free

imobiledevice

lockdownd_pair
idevice_free
lockdownd_start_session
lockdownd_validate_pair
lockdownd_service_descriptor_free
np_client_new
idevice_set_socket_type
lockdownd_client_new
np_observe_notifications
lockdownd_client_free
lockdownd_start_service
lockdownd_get_value
np_set_notify_callback
lockdownd_set_value
idevice_set_debug_level
np_client_free
lockdownd_query_type

kernel32

CreateMutexA
ReleaseMutex
GetLastError
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
SystemTimeToFileTime
GetSystemTime
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
Sleep

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW

ole32

CoTaskMemFree

getopt

optarg_a
getopt_long_a

vcruntime140

memmove
__C_specific_handler
__current_exception
__current_exception_context
memset
memcpy

api-ms-win-crt-heap-l1-1-0

free
realloc
_set_new_mode
malloc

api-ms-win-crt-string-l1-1-0

strncpy
strcmp
_strdup

api-ms-win-crt-runtime-l1-1-0

terminate
_register_onexit_function
strerror
_c_exit
_cexit
__p___argv
_exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
__p___argc
_set_app_type
_seh_filter_exe
_errno
_initialize_onexit_table
exit
_crt_atexit
_register_thread_local_exe_atexit_callback

api-ms-win-crt-stdio-l1-1-0

ftell
fclose
fseek
freopen
rewind
__stdio_common_vfprintf
__acrt_iob_func
fwrite
fread
_set_fmode
__p__commode
fopen
__stdio_common_vsprintf

api-ms-win-crt-utility-l1-1-0

rand
srand

api-ms-win-crt-filesystem-l1-1-0

_mkdir
remove
_stat64i32
_splitpath

api-ms-win-crt-time-l1-1-0

_localtime64
strftime
_time64

api-ms-win-crt-convert-l1-1-0

strtol

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/vcruntime140.dll
.dll windows:6 windows x64 arch:x64

f49ac71a58dd00b20fff27fd20515fff

Code Sign

33:00:00:00:9c:ee:fe:14:55:a9:5d:35:50:00:00:00:00:00:9c
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

30/03/2016, 19:21

Not After

30/06/2017, 19:21

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:5847-F761-4F70,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/06/2015, 17:42

Not After

04/09/2016, 17:42

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:64:47:84:94:86:db:41:19:38:00:00:00:00:00:64
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

28/10/2015, 20:31

Not After

28/01/2017, 20:31

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

23:7b:6e:43:e6:55:05:70:fc:88:6d:14:b2:4b:13:1e:b8:e6:10:57:4e:ff:8e:6d:18:5e:c1:70:77:4b:92:de
Signer

Actual PE Digest

23:7b:6e:43:e6:55:05:70:fc:88:6d:14:b2:4b:13:1e:b8:e6:10:57:4e:ff:8e:6d:18:5e:c1:70:77:4b:92:de

Digest Algorithm

sha256

PE Digest Matches

true

6d:a5:e4:2f:0d:0b:46:eb:a4:2e:59:fd:04:2b:60:fe:b9:f6:e2:45
Signer

Actual PE Digest

6d:a5:e4:2f:0d:0b:46:eb:a4:2e:59:fd:04:2b:60:fe:b9:f6:e2:45

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

vcruntime140.amd64.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

terminate
abort

api-ms-win-crt-string-l1-1-0

strcpy_s

api-ms-win-crt-heap-l1-1-0

malloc
_free_base
free
_malloc_base
_calloc_base

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf_s

api-ms-win-crt-convert-l1-1-0

atol

kernel32

SetLastError
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
RtlLookupFunctionEntry
GetModuleHandleW
GetModuleFileNameW
RtlUnwindEx
RtlPcToFileHeader
EncodePointer
RaiseException
InterlockedFlushSList
InterlockedPushEntrySList
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetLastError
TlsSetValue
InitializeCriticalSectionAndSpinCount
TlsAlloc
GetProcAddress
FreeLibrary
TlsGetValue
TlsFree
LoadLibraryExW

Exports

Exports

_CreateFrameInfo
_CxxThrowException
_FindAndUnlinkFrame
_IsExceptionObjectToBeDestroyed
_SetWinRTOutOfMemoryExceptionCallback
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__C_specific_handler
__C_specific_handler_noexcept
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__GetPlatformExceptionInfo
__NLG_Dispatch2
__NLG_Return2
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__TypeMatch
__current_exception
__current_exception_context
__intrinsic_setjmp
__intrinsic_setjmpex
__processing_throw
__report_gsfailure
__std_exception_copy
__std_exception_destroy
__std_terminate
__std_type_info_compare
__std_type_info_destroy_list
__std_type_info_hash
__std_type_info_name
__telemetry_main_invoke_trigger
__telemetry_main_return_trigger
__unDName
__unDNameEx
__uncaught_exception
__uncaught_exceptions
__vcrt_GetModuleFileNameW
__vcrt_GetModuleHandleW
__vcrt_InitializeCriticalSectionEx
__vcrt_LoadLibraryExW
_get_purecall_handler
_get_unexpected
_is_exception_typeof
_local_unwind
_purecall
_set_purecall_handler
_set_se_translator
longjmp
memchr
memcmp
memcpy
memmove
memset
set_unexpected
strchr
strrchr
strstr
unexpected
wcschr
wcsrchr
wcsstr

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 368B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/zip.dll
.dll windows:6 windows x64 arch:x64

3386326ccc36f5cbe32a47e0d8c005ba

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\libzip\x64-windows-rel\lib\zip.pdb

Imports

zlib1

deflate
crc32
zError
inflateInit2_
deflateInit2_
inflateEnd
inflate
deflateEnd

bz2

BZ2_bzDecompressEnd
BZ2_bzDecompress
BZ2_bzDecompressInit
BZ2_bzCompressEnd
BZ2_bzCompress
BZ2_bzCompressInit

bcrypt

BCryptFinishHash
BCryptHashData
BCryptCreateHash
BCryptGenRandom
BCryptEncrypt
BCryptGenerateSymmetricKey
BCryptCloseAlgorithmProvider
BCryptDestroyHash
BCryptDeriveKeyPBKDF2
BCryptOpenAlgorithmProvider
BCryptSetProperty
BCryptDestroyKey
BCryptGetProperty

advapi32

GetSecurityInfo

kernel32

IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
MoveFileExA
DeleteFileA
CreateFileA
MoveFileExW
DeleteFileW
CreateFileW
MultiByteToWideChar
LocalFree
GetTickCount
GetLastError
CloseHandle
WriteFile
SetFilePointerEx
RtlLookupFunctionEntry
GetFileSizeEx
GetFileType
GetFileTime
ReadFile

vcruntime140

memchr
strrchr
memcmp
memset
memcpy
__std_type_info_destroy_list
__C_specific_handler

api-ms-win-crt-heap-l1-1-0

calloc
free
realloc
malloc

api-ms-win-crt-time-l1-1-0

_mktime64
_localtime64
_time64

api-ms-win-crt-runtime-l1-1-0

_cexit
_initterm_e
_initterm
_errno
_execute_onexit_table
strerror
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll

api-ms-win-crt-stdio-l1-1-0

_mktemp
clearerr
ferror
_fileno
fopen
fread
fseek
ftell
fwrite
_creat
fclose
_dup
_close
__stdio_common_vsprintf
_setmode
__stdio_common_vswprintf

api-ms-win-crt-math-l1-1-0

_fdopen

api-ms-win-crt-string-l1-1-0

strcmp
_wcsdup
_stricmp
_strdup

api-ms-win-crt-filesystem-l1-1-0

remove
rename
_fstat64i32
_umask
_chmod
_stat64i32

Exports

Exports

zip_add
zip_add_dir
zip_close
zip_delete
zip_dir_add
zip_discard
zip_error_clear
zip_error_code_system
zip_error_code_zip
zip_error_fini
zip_error_get
zip_error_get_sys_type
zip_error_init
zip_error_init_with_code
zip_error_set
zip_error_strerror
zip_error_system_type
zip_error_to_data
zip_error_to_str
zip_fclose
zip_fdopen
zip_file_add
zip_file_error_clear
zip_file_error_get
zip_file_extra_field_delete
zip_file_extra_field_delete_by_id
zip_file_extra_field_get
zip_file_extra_field_get_by_id
zip_file_extra_field_set
zip_file_extra_fields_count
zip_file_extra_fields_count_by_id
zip_file_get_comment
zip_file_get_error
zip_file_get_external_attributes
zip_file_rename
zip_file_replace
zip_file_set_comment
zip_file_set_encryption
zip_file_set_external_attributes
zip_file_set_mtime
zip_file_strerror
zip_fopen
zip_fopen_encrypted
zip_fopen_index
zip_fopen_index_encrypted
zip_fread
zip_fseek
zip_ftell
zip_get_archive_comment
zip_get_archive_flag
zip_get_error
zip_get_file_comment
zip_get_name
zip_get_num_entries
zip_get_num_files
zip_libzip_version
zip_name_locate
zip_open
zip_open_from_source
zip_random
zip_register_progress_callback
zip_register_progress_callback_with_state
zip_rename
zip_replace
zip_set_archive_comment
zip_set_archive_flag
zip_set_default_password
zip_set_file_comment
zip_set_file_compression
zip_source_begin_write
zip_source_begin_write_cloning
zip_source_buffer
zip_source_buffer_create
zip_source_buffer_fragment
zip_source_buffer_fragment_create
zip_source_close
zip_source_commit_write
zip_source_error
zip_source_file
zip_source_file_create
zip_source_filep
zip_source_filep_create
zip_source_free
zip_source_function
zip_source_function_create
zip_source_is_deleted
zip_source_keep
zip_source_make_command_bitmap
zip_source_open
zip_source_read
zip_source_rollback_write
zip_source_seek
zip_source_seek_compute_offset
zip_source_seek_write
zip_source_stat
zip_source_tell
zip_source_tell_write
zip_source_win32a
zip_source_win32a_create
zip_source_win32handle
zip_source_win32handle_create
zip_source_win32w
zip_source_win32w_create
zip_source_write
zip_source_zip
zip_stat
zip_stat_index
zip_stat_init
zip_strerror
zip_unchange
zip_unchange_all
zip_unchange_archive

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ref/zlib1.dll
.dll windows:6 windows x64 arch:x64

3e00cc5294fc2fcbabd14c323443ba4e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\vcpkg\buildtrees\zlib\x64-windows-rel\zlib.pdb

Imports

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
memchr
memset
memcpy

api-ms-win-crt-stdio-l1-1-0

_wopen
_write
_read
_close
__stdio_common_vsprintf
_open
_lseeki64

api-ms-win-crt-heap-l1-1-0

malloc
free

api-ms-win-crt-convert-l1-1-0

wcstombs

api-ms-win-crt-runtime-l1-1-0

_errno
_cexit
strerror
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm

kernel32

GetSystemTimeAsFileTime
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
RtlCaptureContext
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent

Exports

Exports

adler32
adler32_combine
adler32_z
compress
compress2
compressBound
crc32
crc32_combine
crc32_z
deflate
deflateBound
deflateCopy
deflateEnd
deflateGetDictionary
deflateInit2_
deflateInit_
deflateParams
deflatePending
deflatePrime
deflateReset
deflateResetKeep
deflateSetDictionary
deflateSetHeader
deflateTune
get_crc_table
gzbuffer
gzclearerr
gzclose
gzclose_r
gzclose_w
gzdirect
gzdopen
gzeof
gzerror
gzflush
gzfread
gzfwrite
gzgetc
gzgetc_
gzgets
gzoffset
gzoffset64
gzopen
gzopen64
gzopen_w
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzseek64
gzsetparams
gztell
gztell64
gzungetc
gzvprintf
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCodesUsed
inflateCopy
inflateEnd
inflateGetDictionary
inflateGetHeader
inflateInit2_
inflateInit_
inflateMark
inflatePrime
inflateReset
inflateReset2
inflateResetKeep
inflateSetDictionary
inflateSync
inflateSyncPoint
inflateUndermine
inflateValidate
uncompress
uncompress2
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 198KB - Virtual size: 198KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 410KB - Virtual size: 410KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 24KB - Virtual size: 23KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

d616c61ea5b377f503af8db86d46bf25

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

gdi32

advapi32

crypt32

user32

kernel32

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-conio-l1-1-0

Exports

Exports

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 498KB - Virtual size: 498KB

.data Size: 292KB - Virtual size: 305KB

.pdata Size: 77KB - Virtual size: 76KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 18KB - Virtual size: 17KB

5c71640db8f86d26bff135d45f311cf6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

libeay32

kernel32

vcruntime140

api-ms-win-crt-time-l1-1-0

.text
Size: 198KB - Virtual size: 198KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 410KB - Virtual size: 410KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 24KB - Virtual size: 23KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 498KB - Virtual size: 498KB

.data
Size: 292KB - Virtual size: 305KB

.pdata
Size: 77KB - Virtual size: 76KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 18KB - Virtual size: 17KB

.text
Size: 237KB - Virtual size: 237KB

.rdata
Size: 41KB - Virtual size: 40KB

.data
Size: 60KB - Virtual size: 61KB

.pdata
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 3KB

.text
Size: 57KB - Virtual size: 57KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 3KB - Virtual size: 4KB

.pdata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 512B - Virtual size: 64B

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 1024B - Virtual size: 600B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 24B