f55e5c329f4d7b44247981f5aa4f8226_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f55e5c329f4d7b44247981f5aa4f8226_JaffaCakes118
Size

10.4MB
MD5

f55e5c329f4d7b44247981f5aa4f8226
SHA1

f0cf6e4fd7949ecef4feeab2f865dbc43b08ea8d
SHA256

4b51bf377fb4edc4d7c982c8f36033e860d565a212f677fb3d91c5c864ec6007
SHA512

45ad7bc0df5c69374cb5325d511147cc02ddadaf794f45a04af7266f5421b5fbef4b2b473980760ac1876c115afe523bf5bf94f82a9e8baef58f1550188d2098
SSDEEP

196608:3io4KX7Sff4LneoR2RbQoAKKdEUrq9EBKPbZdp3OXd8cD4H1TwNXD+PXJvHGWQhi:3iw7c2UbQBrvIlidzD4OMvJfGWQhN8

Score

3^/10

Malware Config

Signatures

Unsigned PE 5 IoCs

Checks for missing Authenticode signature.

resource
unpack001/2345Associate.exe
unpack001/2345SoftInstallAgent.exe
unpack001/2345SoftMgrShell.exe
unpack001/2345SoftMgrShell64.exe
unpack001/Uninstall.exe

Files

f55e5c329f4d7b44247981f5aa4f8226_JaffaCakes118
.7z
2345Associate.exe
.exe windows:5 windows x86 arch:x86

b2e24d00c146e0935e0e9e49346efbb5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\2345Associate.pdb

Imports

msvcp120

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?global@locale@std@@SA?AV12@ABV12@@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?_Winerror_map@std@@YAPBDH@Z
?flags@ios_base@std@@QBEHXZ
?fail@ios_base@std@@QBE_NXZ
?good@ios_base@std@@QBE_NXZ
?rdstate@ios_base@std@@QBEHXZ
??Bios_base@std@@QBE_NXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
?_Getname@_Locinfo@std@@QBEPBDXZ
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@HPBD@Z
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?setf@ios_base@std@@QAEHHH@Z
?setf@ios_base@std@@QAEHH@Z
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
_Nan
_Inf
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??7ios_base@std@@QBE_NXZ
??0_Container_base12@std@@QAE@XZ
??1_Container_base12@std@@QAE@XZ
?_Orphan_all@_Container_base12@std@@QAEXXZ
?_Orphan_all@_Container_base0@std@@QAEXXZ
??0id@locale@std@@QAE@I@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@_N@Z
?_Makeloc@_Locimp@locale@std@@CAPAV123@ABV_Locinfo@3@HPAV123@PBV23@@Z
?uncaught_exception@std@@YA_NXZ
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
?_BADOFF@std@@3_JB
?_Xruntime_error@std@@YAXPBD@Z

msvcr120

memcpy_s
_CxxThrowException
memset
memcpy
_controlfp_s
_invoke_watson
__crtSetUnhandledExceptionFilter
?terminate@@YAXXZ
_except_handler4_common
__CxxFrameHandler3
__crtTerminateProcess
__crtUnhandledException
_crt_debugger_hook
_commode
_fmode
_wcmdln
_initterm
_initterm_e
__setusermatherr
_configthreadlocale
_cexit
_exit
exit
__set_app_type
__wgetmainargs
_amsg_exit
__crtGetShowWindowMode
_XcptFilter
??1type_info@@UAE@XZ
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
swscanf_s
_vswprintf_c_l
sscanf
_localtime64
_mktime64
_wcsnicmp
_splitpath_s
_stricmp
toupper
tolower
memchr
strchr
calloc
_wtoi
fclose
fwrite
_except1
_lock_file
setvbuf
fsetpos
fgetc
fflush
_fseeki64
fgetpos
strstr
ungetc
_unlock_file
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
fputc
_time64
srand
rand
_errno
towupper
_vsnwprintf
wcsstr
??_U@YAPAXI@Z
towlower
wcschr
??_V@YAXPAX@Z
realloc
wcsrchr
malloc
free
atoi
??2@YAPAXI@Z
_hypot
??3@YAXPAX@Z
_purecall
memmove
sprintf
sprintf_s
_dtest
strpbrk
abort
modf
__iob_func
localeconv
fprintf

kernel32

CreateDirectoryW
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer
DeviceIoControl
InitializeCriticalSectionAndSpinCount
InterlockedExchangeAdd
GetCurrentProcess
LocalFileTimeToFileTime
GetSystemTime
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
DosDateTimeToFileTime
FileTimeToDosDateTime
lstrcmpiW
GetSystemInfo
LockResource
LoadResource
FindResourceW
GetFileTime
ReadFile
SetEndOfFile
GetFileSize
SetFileAttributesW
DeleteFileW
GetWindowsDirectoryW
RemoveDirectoryW
SetCurrentDirectoryW
MoveFileW
GetCurrentDirectoryW
GetTempPathW
lstrlenW
GetFileAttributesW
CopyFileW
GetSystemDirectoryW
SetFileTime
MoveFileExW
GetTempFileNameW
GetFullPathNameW
LocalFree
GlobalFree
GetVersionExW
GlobalAlloc
OpenProcess
GetProcessHeap
HeapFree
HeapAlloc
FindNextFileW
FindClose
GetModuleHandleW
LoadLibraryExW
GetVolumeInformationW
GetDiskFreeSpaceW
ExpandEnvironmentStringsW
GetShortPathNameW
GetFileAttributesExW
GetLongPathNameW
FindFirstFileW
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
TryEnterCriticalSection
ReleaseMutex
OpenMutexW
Sleep
WaitForSingleObject
CreateMutexW
MultiByteToWideChar
GetACP
WideCharToMultiByte
GetDriveTypeW
SearchPathW
GetUserDefaultLangID
QueryDosDeviceW
GetLogicalDriveStringsW
VirtualQuery
GetEnvironmentVariableW
GetCurrentProcessId
CloseHandle
GetCurrentThreadId
GetLocalTime
CreateFileW
GetModuleFileNameW
WriteFile
SetFilePointer
GetProcAddress
GetLastError
LoadLibraryW
FreeLibrary

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

Sections

.text
Size: 591KB - Virtual size: 590KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345Extract.dll
.dll windows:5 windows x86 arch:x86

86b9210ed74f63b9d24ef3fde573cad1

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

8d:7c:98:66:e4:3a:62:ef:53:c9:52:1e:c3:34:2b:cd:b0:61:fa:b5:bb:75:9a:2b:ec:ad:85:1a:0b:3d:42:48
Signer

Actual PE Digest

8d:7c:98:66:e4:3a:62:ef:53:c9:52:1e:c3:34:2b:cd:b0:61:fa:b5:bb:75:9a:2b:ec:ad:85:1a:0b:3d:42:48

Digest Algorithm

sha256

PE Digest Matches

true

13:ef:33:b9:10:58:f1:69:2b:09:3f:db:f1:f1:5c:2d:c7:15:de:ba
Signer

Actual PE Digest

13:ef:33:b9:10:58:f1:69:2b:09:3f:db:f1:f1:5c:2d:c7:15:de:ba

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\trunk\zhanlue\2345Extract\windows\bundles\Extract7z\bin\Win32\release_static\pdb\2345Extract.pdb

Imports

kernel32

SetFilePointer
ReadFile
CloseHandle
CompareStringW
FreeLibrary
GetLastError
GetProcAddress
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
LoadLibraryW
GetModuleHandleW
VirtualFree
VirtualAlloc
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InterlockedExchangeAdd
WaitForSingleObject
Sleep
ResetEvent
CreateEventW
FindFirstFileW
FindClose
FindNextFileW
FormatMessageW
LocalFree
CreateFileW
DosDateTimeToFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
WideCharToMultiByte
GetACP
MultiByteToWideChar
GetFileSize
GetVersionExW
GetSystemInfo
ResumeThread
HeapAlloc
HeapFree
GetProcessHeap
GetFullPathNameW
GetTempFileNameW
MoveFileExW
CreateDirectoryW
SetFileTime
GetFileAttributesW
lstrlenW
MoveFileW
DeleteFileW
SetFileAttributesW
SetEndOfFile
WriteFile
EncodePointer
DecodePointer
GetCommandLineA
IsDebuggerPresent
IsProcessorFeaturePresent
GetFileInformationByHandle
GetFileType
PeekNamedPipe
HeapReAlloc
GetSystemTimeAsFileTime
CreateThread
ExitThread
LoadLibraryExW
RaiseException
RtlUnwind
ExitProcess
GetModuleHandleExW
HeapSize
SetLastError
GetStdHandle
GetStartupInfoW
GetModuleFileNameA
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleFileNameW
IsValidCodePage
GetOEMCP
GetCPInfo
SetStdHandle
GetConsoleMode
ReadConsoleW
GetConsoleCP
SetFilePointerEx
GetStringTypeW
LCMapStringW
FlushFileBuffers
OutputDebugStringW
GetTimeZoneInformation
WriteConsoleW
SetEnvironmentVariableA
WaitForMultipleObjects
SetEvent

Exports

Exports

ExtractArchive
ExtractArchive2
FreeArchiveFileList
ListArchive
ListArchive2

Sections

.text
Size: 655KB - Virtual size: 654KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345MiniUI.dll
.dll windows:5 windows x86 arch:x86

0b7943a13cd13f6f34fb5907c45da678

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

17:eb:b7:91:35:5f:c9:58:fe:3f:84:65:2a:91:9b:9d:23:36:88:51:5a:8a:42:a6:5e:a1:07:ef:ef:2d:86:95
Signer

Actual PE Digest

17:eb:b7:91:35:5f:c9:58:fe:3f:84:65:2a:91:9b:9d:23:36:88:51:5a:8a:42:a6:5e:a1:07:ef:ef:2d:86:95

Digest Algorithm

sha256

PE Digest Matches

true

92:b2:db:72:cc:56:18:1a:68:56:a7:2b:f8:01:a6:fd:84:eb:db:74
Signer

Actual PE Digest

92:b2:db:72:cc:56:18:1a:68:56:a7:2b:f8:01:a6:fd:84:eb:db:74

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\dev\RCFL\bin\Win32\release\pdb\2345MiniUI.pdb

Imports

kernel32

GetVersionExW
MultiByteToWideChar
Sleep
InterlockedExchange
GetModuleFileNameW
LocalFree
TlsSetValue
TlsGetValue
TlsAlloc
MapViewOfFile
GetFileInformationByHandle
CreateSemaphoreW
ReleaseSemaphore
GetModuleHandleExA
HeapSetInformation
GetProcessHeaps
ExitProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
EncodePointer
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
OutputDebugStringW
IsDebuggerPresent
SetFileAttributesW
GetWindowsDirectoryW
RemoveDirectoryW
SetCurrentDirectoryW
GetCurrentDirectoryW
CopyFileW
GetSystemDirectoryW
CreateDirectoryW
MoveFileExW
GetFullPathNameW
FindNextFileW
FindClose
GetShortPathNameW
GetFileAttributesExW
GetLongPathNameW
FindFirstFileW
SearchPathW
OpenProcess
GetProcessHeap
HeapFree
HeapAlloc
InterlockedExchangeAdd
ExpandEnvironmentStringsW
lstrcpyW
lstrcatW
lstrlenW
GetFileAttributesW
GetFileTime
ReadFile
WriteFile
SetFileTime
GetDriveTypeW
OpenEventW
CreateEventW
ResetEvent
SetEvent
ResumeThread
WaitForSingleObject
InitializeCriticalSection
TryEnterCriticalSection
GetACP
WideCharToMultiByte
LocalAlloc
lstrcmpiW
InterlockedDecrement
InterlockedIncrement
MoveFileW
DeleteFileW
GetTempFileNameW
RaiseException
GetLastError
GetTempPathW
SetFilePointer
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
lstrcmpW
FlushInstructionCache
GetCurrentProcess
GetCurrentThreadId
SetLastError
EnterCriticalSection
LeaveCriticalSection
CloseHandle
CreateWaitableTimerW
SetWaitableTimer
QueryPerformanceCounter
QueryPerformanceFrequency
GetFileSize
GetFileSizeEx
GetSystemInfo
UnmapViewOfFile
CreateFileMappingW
MapViewOfFileEx
DecodePointer
FreeLibrary
GetProcAddress
MulDiv
LoadLibraryW
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
LockResource
LoadResource
SizeofResource
LoadLibraryExW
FindResourceW
GetModuleHandleW
CreateFileW
SetEndOfFile

user32

GetTopWindow
GetWindowThreadProcessId
GetLastActivePopup
GetWindow
IsDialogMessageW
DlgDirListW
DlgDirSelectExW
DlgDirListComboBoxW
DlgDirSelectComboBoxExW
SetScrollInfo
GetScrollInfo
ArrangeIconicWindows
WinHelpW
MonitorFromWindow
GetMonitorInfoW
DefWindowProcW
CallWindowProcW
RegisterClassExW
GetClassInfoExW
LoadCursorW
MsgWaitForMultipleObjects
UpdateLayeredWindow
SetRect
OffsetRect
SystemParametersInfoW
DrawIconEx
GetIconInfo
FillRect
GetDesktopWindow
DrawTextW
SetCaretPos
GetWindowLongW
LoadImageW
GetSystemMetrics
EqualRect
PtInRect
GetKeyState
GetClassNameW
IntersectRect
GetMessageW
TranslateMessage
DispatchMessageW
SetForegroundWindow
GetKeyboardState
ToAscii
GetCaretBlinkTime
EnumChildWindows
UnionRect
CloseClipboard
GetClipboardData
IsClipboardFormatAvailable
ReleaseCapture
GetSysColor
SetClipboardData
EmptyClipboard
GetAsyncKeyState
RegisterWindowMessageW
CharNextW
GetFocus
CreateAcceleratorTableW
DestroyAcceleratorTable
CreateDialogParamW
DialogBoxParamW
EndDialog
MapDialogRect
SetCursor
PeekMessageW
SetWindowWord
GetWindowWord
ChildWindowFromPointEx
ChildWindowFromPoint
MapWindowPoints
ScreenToClient
ClientToScreen
SetParent
GetParent
PostQuitMessage
GetCursorPos
SetWindowLongW
ShowCaret
HideCaret
CreateCaret
LoadBitmapW
GetClassLongW
TrackMouseEvent
UnregisterClassW
SetRectEmpty
IsRectEmpty
CopyRect
SendMessageW
SendNotifyMessageW
PostMessageW
CreateWindowExW
IsWindow
IsChild
DestroyWindow
ShowWindow
ShowWindowAsync
FlashWindow
RemovePropW
SetPropW
GetForegroundWindow
GetPropW
ShowOwnedPopups
MoveWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
DeferWindowPos
IsWindowVisible
IsIconic
BringWindowToTop
IsZoomed
GetDlgItem
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextW
GetDlgItemTextW
CheckDlgButton
CheckRadioButton
IsDlgButtonChecked
SendDlgItemMessageW
GetNextDlgGroupItem
GetNextDlgTabItem
GetDlgCtrlID
OpenClipboard
SetClipboardViewer
ChangeClipboardChain
SetFocus
SetCapture
SetTimer
KillTimer
IsWindowUnicode
EnableWindow
IsWindowEnabled
GetMenu
SetMenu
HiliteMenuItem
DrawMenuBar
GetSystemMenu
UpdateWindow
SetActiveWindow
GetDC
MessageBoxW
GetDCEx
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
GetUpdateRect
GetUpdateRgn
SetWindowRgn
GetWindowRgn
InvalidateRect
ValidateRect
InvalidateRgn
ValidateRgn
RedrawWindow
LockWindowUpdate
ScrollWindow
ScrollWindowEx
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
EnableScrollBar
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
GetClientRect
GetWindowRect
AdjustWindowRectEx
SetWindowContextHelpId
GetWindowContextHelpId

gdi32

GetRgnBox
SetWorldTransform
CreateCompatibleBitmap
ExtTextOutW
SetTextColor
SetBkColor
PtInRegion
CreateRoundRectRgn
EnumFontsW
GetTextMetricsW
SetViewportOrgEx
GetMapMode
CreateFontIndirectW
GetClipBox
CreateSolidBrush
SetGraphicsMode
GetStockObject
BitBlt
GetDIBits
CreateDCW
GetObjectW
SelectObject
CreateCompatibleDC
CreatePolygonRgn
DeleteObject
CreateRectRgnIndirect
CreateDIBSection
GetDeviceCaps
DeleteDC
SetMapMode
AddFontMemResourceEx
RemoveFontMemResourceEx
SetBkMode
SetTextAlign
GetTextFaceW
GdiFlush
GetGlyphIndicesW
EnumFontFamiliesExW
GetCharABCWidthsW
GetFontData
GetGlyphOutlineW
GetOutlineTextMetricsW
GetFontUnicodeRanges
GetTextExtentPointI

advapi32

RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey

shell32

DragQueryFileW
DragFinish
DragAcceptFiles

ole32

CoCreateGuid
CoTaskMemRealloc
OleLockRunning
OleUninitialize
OleInitialize
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoGetClassObject
CreateStreamOnHGlobal

oleaut32

SysFreeString
SysStringLen
VariantInit
VariantClear
VarUI4FromStr
DispCallFunc
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
SysAllocStringLen
SysAllocString

msvcp120

?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?global@locale@std@@SA?AV12@ABV12@@Z
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_New_Locimp@_Locimp@locale@std@@CAPAV123@_N@Z
?_Makeloc@_Locimp@locale@std@@CAPAV123@ABV_Locinfo@3@HPAV123@PBV23@@Z
?uncaught_exception@std@@YA_NXZ
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?_Xruntime_error@std@@YAXPBD@Z
?_BADOFF@std@@3_JB
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??0id@locale@std@@QAE@I@Z
_Do_call
_Call_onceEx
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?_Swap_all@_Container_base12@std@@QAEXAAU12@@Z
??1_Container_base12@std@@QAE@XZ
?_Winerror_map@std@@YAPBDH@Z
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?flags@ios_base@std@@QBEHXZ
?fail@ios_base@std@@QBE_NXZ
?good@ios_base@std@@QBE_NXZ
?rdstate@ios_base@std@@QBEHXZ
??Bios_base@std@@QBE_NXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
?_Getname@_Locinfo@std@@QBEPBDXZ
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@HPBD@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?_Xinvalid_argument@std@@YAXPBD@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?_Syserror_map@std@@YAPBDH@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ

shlwapi

StrToIntA
ord12
PathFindFileNameW

comctl32

_TrackMouseEvent

msimg32

AlphaBlend

msvcr120

_libm_sse2_exp_precise
wcsncpy
wcscpy_s
log2f
_fileno
_get_osfhandle
_access
_mkdir
_stat64i32
rewind
ftell
fseek
fgets
sprintf
isalnum
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
_exit
_vsnprintf_s
strspn
strncmp
strcspn
copysignf
realloc
atof
_gmtime64
__iob_func
abort
strerror
frexp
modf
_CIatan2
_libm_sse2_acos_precise
__clean_type_info_names_internal
_initterm_e
_initterm
_malloc_crt
_amsg_exit
__CppXcptFilter
__crtTerminateProcess
__crtUnhandledException
_crt_debugger_hook
_except_handler4_common
_except1
??1type_info@@UAE@XZ
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
_vswprintf_c_l
_wtoi
_time64
srand
rand
_splitpath_s
?terminate@@YAXXZ
towupper
_vsnwprintf
towlower
wcschr
_beginthreadex
fwrite
_lock_file
setvbuf
fsetpos
fgetc
fflush
_fseeki64
fgetpos
ungetc
_unlock_file
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
fputc
toupper
tolower
strchr
memmove_s
wcsstr
_control87
calloc
_CIfmod
strtod
_stricmp
floor
ispunct
isspace
isdigit
isalpha
_snprintf
_vsnprintf
_errno
strstr
wcsncpy_s
printf
fprintf
fopen
feof
ceil
_libm_sse2_cos_precise
roundf
_setjmp3
longjmp
fread
fclose
_wfopen
strtoul
strtol
memchr
_libm_sse2_sqrt_precise
_recalloc
swprintf_s
__RTDynamicCast
malloc
??3@YAXPAX@Z
_purecall
??2@YAPAXI@Z
memmove
round
_hypot
free
??_V@YAXPAX@Z
_CxxThrowException
__CxxFrameHandler3
memcpy
memset
_nextafter
_libm_sse2_pow_precise
_libm_sse2_sin_precise
wcsnlen
memcpy_s

winmm

timeGetTime

gdiplus

GdipCreateHBITMAPFromBitmap
GdipSetCompositingMode
GdipGetPropertyItem
GdipAddPathRectangleI
GdipAddPathBezierI
GdipAddPathArcI
GdipAddPathLineI
GdipSetStringFormatTrimming
GdipGetStringFormatLineAlign
GdipSetStringFormatLineAlign
GdipGetPropertyItemSize
GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipCombineRegionRegion
GdipCombineRegionPath
GdipGetStringFormatAlign
GdipSetStringFormatAlign
GdipSetStringFormatFlags
GdipCloneStringFormat
GdipDeleteStringFormat
GdipStringFormatGetGenericTypographic
GdipMeasureString
GdipDrawString
GdipGetFontSize
GdipGetFontStyle
GdipGetFamily
GdipDeleteFont
GdipCreateFont
GdipGetLineSpacing
GdipGetCellDescent
GdipGetCellAscent
GdipGetEmHeight
GdipGetFamilyName
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipEndContainer
GdipBeginContainer2
GdipRestoreGraphics
GdipSaveGraphics
GdipSetClipRegion
GdipSetClipRectI
GdipDrawImageRectRectI
GdipDrawImageRectRect
GdipFillPath
GdipFillEllipse
GdipFillRectangleI
GdipGraphicsClear
GdipDrawPath
GdipDrawRectangle
GdipCreateRegionPath
GdipDrawLine
GdipRotateWorldTransform
GdipScaleWorldTransform
GdipTranslateWorldTransform
GdipMultiplyWorldTransform
GdipGetInterpolationMode
GdipSetInterpolationMode
GdipGetTextRenderingHint
GdipSetTextRenderingHint
GdipSetPixelOffsetMode
GdipGetSmoothingMode
GdipSetSmoothingMode
GdipSetCompositingQuality
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetImageAttributesWrapMode
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipCloneBitmapArea
GdipGetImageGraphicsContext
GdipSetPenDashStyle
GdipDeletePen
GdipCreatePen1
GdipSetLineWrapMode
GdipSetLinePresetBlend
GdipCreateLineBrushI
GdipCreateSolidFill
GdipCreateTexture
GdipDeleteBrush
GdipCloneBrush
GdipTransformRegion
GdipDeleteRegion
GdipCloneRegion
GdipGetPathWorldBounds
GdipAddPathString
ord1
GdipClosePathFigure
GdipDeletePath
GdipCreatePath
GdipSetLineTransform
GdipGetLineTransform
GdipSetTextureTransform
GdipGetTextureTransform
GdipGetBrushType
GdipGetMatrixElements
GdipDeleteMatrix
GdipCreateMatrix2
GdipCreateMatrix
GdipCloneBitmapAreaI
GdipGetImagePixelFormat
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipCloneImage
GdipFree
GdipAlloc
GdipDrawArcI
GdipAddPathEllipseI
GdipGetClipBoundsI
GdipCreateBitmapFromFile

usp10

ScriptItemize
ScriptShape
ScriptFreeCache

imm32

ImmNotifyIME
ImmGetCompositionStringW
ImmAssociateContextEx
ImmReleaseContext
ImmGetContext
ImmSetCompositionWindow

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

wininet

InternetSetOptionW
InternetQueryOptionW

Exports

Exports

??0?$CDialogImpl@VRCMiniUIDialog@RC@@VRCMiniAtlWindow@@@ATL@@QAE@ABV01@@Z
??0?$CDialogImpl@VRCMiniUIDialog@RC@@VRCMiniAtlWindow@@@ATL@@QAE@XZ
??0?$CDialogImplBaseT@VRCMiniAtlWindow@@@ATL@@QAE@ABV01@@Z
??0?$CDialogImplBaseT@VRCMiniAtlWindow@@@ATL@@QAE@XZ
??0?$CWindowImpl@VRCMiniUISimpleWindow@RC@@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@QAE@ABV01@@Z
??0?$CWindowImpl@VRCMiniUISimpleWindow@RC@@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@QAE@XZ
??0?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@QAE@ABV01@@Z
??0?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@QAE@XZ
??0?$CWindowImplRoot@VRCMiniAtlWindow@@@ATL@@QAE@ABV01@@Z
??0?$CWindowImplRoot@VRCMiniAtlWindow@@@ATL@@QAE@XZ
??0RCAnimationPanelEndedCallBack@RC@@QAE@ABV01@@Z
??0RCAnimationPanelEndedCallBack@RC@@QAE@XZ
??0RCMenuWndPos@RCMiniUIComboBoxMenu@RC@@QAE@HHHHH@Z
??0RCMenuWndPos@RCMiniUIComboBoxMenu@RC@@QAE@XZ
??0RCMiniAtlWindow@@QAE@PAUHWND__@@@Z
??0RCMiniUI2DMatrix@RC@@QAE@XZ
??0RCMiniUIAlphaAnimation@RC@@QAE@PAVRCMiniUIAnimationView@1@EE@Z
??0RCMiniUIAnimateSkin@RC@@QAE@XZ
??0RCMiniUIAnimation@RC@@QAE@ABV01@@Z
??0RCMiniUIAnimation@RC@@QAE@II@Z
??0RCMiniUIAnimationContainer@RC@@QAE@PAVRCMiniUIView@1@@Z
??0RCMiniUIAnimationDelegate@RC@@QAE@ABV01@@Z
??0RCMiniUIAnimationDelegate@RC@@QAE@XZ
??0RCMiniUIAnimationListener@RC@@QAE@ABV01@@Z
??0RCMiniUIAnimationListener@RC@@QAE@XZ
??0RCMiniUIAnimationPanel@RC@@QAE@XZ
??0RCMiniUIAnimationView@RC@@QAE@XZ
??0RCMiniUIApngSkin@RC@@QAE@XZ
??0RCMiniUIApngSkinDynamic@RC@@QAE@XZ
??0RCMiniUIAppModule@RC@@IAE@XZ
??0RCMiniUIBitmap@RC@@QAE@ABV01@@Z
??0RCMiniUIBitmap@RC@@QAE@XZ
??0RCMiniUIBmpPoolInterface@RC@@QAE@ABV01@@Z
??0RCMiniUIBmpPoolInterface@RC@@QAE@XZ
??0RCMiniUIBounceWndHandler@RC@@QAE@AAVRCMiniUIDialogView@1@@Z
??0RCMiniUIBoxPanel@RC@@QAE@XZ
??0RCMiniUIBrush@RC@@QAE@ABV01@@Z
??0RCMiniUIBrush@RC@@QAE@XZ
??0RCMiniUIButton@RC@@QAE@XZ
??0RCMiniUIButtonListener@RC@@QAE@ABV01@@Z
??0RCMiniUIButtonListener@RC@@QAE@XZ
??0RCMiniUICanvas@RC@@QAE@PAVRCMiniUIRendTarget@1@@Z
??0RCMiniUICanvasPathClipGuard@RC@@QAE@PAVRCMiniUICanvas@1@PAVRCMiniUIPath@1@@Z
??0RCMiniUICanvasRectClipGuard@RC@@QAE@PAVRCMiniUICanvas@1@ABUtagRECT@@@Z
??0RCMiniUICanvasStateGuard@RC@@QAE@PAVRCMiniUICanvas@1@@Z
??0RCMiniUICanvasStateGuard@RC@@QAE@PAVRCMiniUICanvas@1@E@Z
??0RCMiniUIComboBox@RC@@QAE@XZ
??0RCMiniUIComboBoxItem@RC@@QAE@XZ
??0RCMiniUIComboBoxMenu@RC@@QAE@XZ
??0RCMiniUIComboboxModel@RC@@QAE@ABV01@@Z
??0RCMiniUIComboboxModel@RC@@QAE@XZ
??0RCMiniUIComboboxObserver@RC@@QAE@ABV01@@Z
??0RCMiniUIComboboxObserver@RC@@QAE@XZ
??0RCMiniUIDialog@RC@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0RCMiniUIDialog@RC@@QAE@I@Z
??0RCMiniUIDialogInitParam@RC@@QAE@ABV01@@Z
??0RCMiniUIDialogInitParam@RC@@QAE@XZ
??0RCMiniUIDialogView@RC@@QAE@XZ
??0RCMiniUIDlgFile@RC@@QAE@XZ
??0RCMiniUIEditView@RC@@QAE@XZ
??0RCMiniUIEditViewDelegate@RC@@QAE@ABV01@@Z
??0RCMiniUIEditViewDelegate@RC@@QAE@XZ
??0RCMiniUIFontPoolInterface@RC@@QAE@ABV01@@Z
??0RCMiniUIFontPoolInterface@RC@@QAE@XZ
??0RCMiniUIFrameWindow@RC@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0RCMiniUIFrameWindow@RC@@QAE@I@Z
??0RCMiniUIGifBtn@RC@@QAE@XZ
??0RCMiniUIGifDecoder@RC@@QAE@ABV01@@Z
??0RCMiniUIGifDecoder@RC@@QAE@XZ
??0RCMiniUIGifSkin@RC@@QAE@XZ
??0RCMiniUIGifSkinDynamic@RC@@QAE@XZ
??0RCMiniUIGifView@RC@@QAE@XZ
??0RCMiniUIGifViewObserver@RC@@QAE@ABV01@@Z
??0RCMiniUIGifViewObserver@RC@@QAE@XZ
??0RCMiniUIIconBtn@RC@@QAE@XZ
??0RCMiniUIImageBtn@RC@@QAE@XZ
??0RCMiniUIImageStatic@RC@@QAE@XZ
??0RCMiniUIImageView@RC@@QAE@XZ
??0RCMiniUILimitStatic@RC@@QAE@XZ
??0RCMiniUILine@RC@@QAE@XZ
??0RCMiniUIListBox@RC@@QAE@XZ
??0RCMiniUIListCtrl@RC@@QAE@XZ
??0RCMiniUIManner@RC@@AAE@XZ
??0RCMiniUIManner@RC@@QAE@ABV01@@Z
??0RCMiniUIMannerInterface@RC@@QAE@ABV01@@Z
??0RCMiniUIMannerInterface@RC@@QAE@XZ
??0RCMiniUIMenu@RC@@QAE@XZ
??0RCMiniUIMenuItem@RC@@QAE@XZ
??0RCMiniUIMouseInOutAnimate@RC@@QAE@XZ
??0RCMiniUIMouseInOutAnimateListener@RC@@QAE@ABV01@@Z
??0RCMiniUIMouseInOutAnimateListener@RC@@QAE@XZ
??0RCMiniUIMouseKeyHandler@RC@@QAE@AAVRCMiniUIDialogView@1@AA_N@Z
??0RCMiniUIMultiStatic@RC@@QAE@XZ
??0RCMiniUIMultiTextImageBtn@RC@@QAE@XZ
??0RCMiniUIObject@RC@@QAE@ABV01@@Z
??0RCMiniUIObject@RC@@QAE@XZ
??0RCMiniUIPanel@RC@@QAE@XZ
??0RCMiniUIPath@RC@@QAE@ABV01@@Z
??0RCMiniUIPath@RC@@QAE@XZ
??0RCMiniUIPngGroupSkin@RC@@QAE@XZ
??0RCMiniUIPngPoolInterface@RC@@QAE@ABV01@@Z
??0RCMiniUIPngPoolInterface@RC@@QAE@XZ
??0RCMiniUIPngSkin@RC@@QAE@XZ
??0RCMiniUIPngStretchSkin@RC@@QAE@XZ
??0RCMiniUIPngTileSkin@RC@@QAE@XZ
??0RCMiniUIPreMsgHandler@RC@@QAE@AAVRCMiniUIDialogView@1@@Z
??0RCMiniUIProgress@RC@@QAE@XZ
??0RCMiniUIProgressObserver@RC@@QAE@ABV01@@Z
??0RCMiniUIProgressObserver@RC@@QAE@XZ
??0RCMiniUIRadioBtn@RC@@QAE@XZ
??0RCMiniUIRadioGroup@RC@@QAE@XZ
??0RCMiniUIRealWnd@RC@@QAE@XZ
??0RCMiniUIRenderFactory@RC@@QAE@ABV01@@Z
??0RCMiniUIRenderFactory@RC@@QAE@XZ
??0RCMiniUIRenderFactoryD2D@RC@@QAE@ABV01@@Z
??0RCMiniUIRenderFactoryD2D@RC@@QAE@XZ
??0RCMiniUIRenderFactoryGdip@RC@@QAE@ABV01@@Z
??0RCMiniUIRenderFactoryGdip@RC@@QAE@XZ
??0RCMiniUIRenderFactorySkia@RC@@QAE@ABV01@@Z
??0RCMiniUIRenderFactorySkia@RC@@QAE@XZ
??0RCMiniUIRepeatAnimation@RC@@QAE@ABV01@@Z
??0RCMiniUIRepeatAnimation@RC@@QAE@II@Z
??0RCMiniUIResourceLoaderInterface@RC@@QAE@ABV01@@Z
??0RCMiniUIResourceLoaderInterface@RC@@QAE@XZ
??0RCMiniUIResourceManager@RC@@AAE@XZ
??0RCMiniUIResourceManager@RC@@QAE@ABV01@@Z
??0RCMiniUIResourceManagerInterface@RC@@QAE@ABV01@@Z
??0RCMiniUIResourceManagerInterface@RC@@QAE@XZ
??0RCMiniUIRichEdit@RC@@QAE@XZ
??0RCMiniUIRichText@RC@@QAE@XZ
??0RCMiniUIRichTextAttr@RC@@QAE@ABV01@@Z
??0RCMiniUIRichTextAttr@RC@@QAE@XZ
??0RCMiniUIRootView@RC@@QAE@PAVRCMiniUIWindow@1@@Z
??0RCMiniUIRotateAnimation@RC@@QAE@PAVRCMiniUIAnimationView@1@MM@Z
??0RCMiniUIRotateView@RC@@QAE@XZ
??0RCMiniUIRuntimeClass@RC@@AAE@ABU01@@Z
??0RCMiniUIRuntimeClass@RC@@QAE@PBDP6APAVRCMiniUIObject@1@XZPAU01@@Z
??0RCMiniUISCrollBarSkin@RC@@QAE@XZ
??0RCMiniUIScaleAnimation@RC@@QAE@PAVRCMiniUIAnimationView@1@NN@Z
??0RCMiniUIScrollView@RC@@QAE@XZ
??0RCMiniUIShadowParam@RC@@QAE@XZ
??0RCMiniUISimpleWindow@RC@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0RCMiniUISimpleWindow@RC@@QAE@I@Z
??0RCMiniUISkin@RC@@QAE@XZ
??0RCMiniUISkinPoolInterface@RC@@QAE@ABV01@@Z
??0RCMiniUISkinPoolInterface@RC@@QAE@XZ
??0RCMiniUISlideAnimation@RC@@QAE@ABV01@@Z
??0RCMiniUISlideAnimation@RC@@QAE@II@Z
??0RCMiniUISlideShowAnimator@RC@@QAE@ABV01@@Z
??0RCMiniUISlideShowAnimator@RC@@QAE@PAVRCMiniUIView@1@@Z
??0RCMiniUISlideShowAnimatorObserver@RC@@QAE@ABV01@@Z
??0RCMiniUISlideShowAnimatorObserver@RC@@QAE@XZ
??0RCMiniUIStringAttribute@RC@@QAE@ABV01@@Z
??0RCMiniUIStringAttribute@RC@@QAE@XZ
??0RCMiniUIStringPoolInterface@RC@@QAE@ABV01@@Z
??0RCMiniUIStringPoolInterface@RC@@QAE@XZ
??0RCMiniUIStripeProgress@RC@@QAE@XZ
??0RCMiniUIStyle@RC@@QAE@ABV01@@Z
??0RCMiniUIStyle@RC@@QAE@XZ
??0RCMiniUIStylePoolInterface@RC@@QAE@ABV01@@Z
??0RCMiniUIStylePoolInterface@RC@@QAE@XZ
??0RCMiniUITab@RC@@QAE@XZ
??0RCMiniUITabCtrl@RC@@QAE@XZ
??0RCMiniUITableItemPanel@RC@@QAE@XZ
??0RCMiniUITableModel@RC@@QAE@ABV01@@Z
??0RCMiniUITableModel@RC@@QAE@XZ
??0RCMiniUITextInputClient@RC@@QAE@ABV01@@Z
??0RCMiniUITextInputClient@RC@@QAE@XZ
??0RCMiniUITextView@RC@@QAE@XZ
??0RCMiniUITransformAnimation@RC@@QAE@ABV01@@Z
??0RCMiniUITransformAnimation@RC@@QAE@PAVRCMiniUIAnimationView@1@I@Z
??0RCMiniUITransformAnimationSet@RC@@QAE@PAVRCMiniUIAnimationView@1@@Z
??0RCMiniUITransformView@RC@@QAE@XZ
??0RCMiniUITransformViewListener@RC@@QAE@ABV01@@Z
??0RCMiniUITransformViewListener@RC@@QAE@XZ
??0RCMiniUITranslateAnimation@RC@@QAE@PAVRCMiniUIAnimationView@1@ABUtagPOINT@@1@Z
??0RCMiniUITreeNode@RC@@IAE@XZ
??0RCMiniUITreeView@RC@@QAE@XZ
??0RCMiniUITreeViewObserver@RC@@QAE@ABV01@@Z
??0RCMiniUITreeViewObserver@RC@@QAE@XZ
??0RCMiniUITurn3DListener@RC@@QAE@ABV01@@Z
??0RCMiniUITurn3DListener@RC@@QAE@XZ
??0RCMiniUITurn3DView@RC@@QAE@XZ
??0RCMiniUIView@RC@@QAE@XZ
??0RCMiniUIWebBrowser@RC@@QAE@XZ
??0RCMiniUIWebEventCallback@RC@@QAE@ABV01@@Z
??0RCMiniUIWebEventCallback@RC@@QAE@XZ
??0RCMiniUIWindow@RC@@QAE@ABV01@@Z
??0RCMiniUIWindow@RC@@QAE@XZ
??0RCMiniUiImgChkBox@RC@@QAE@XZ
??0TMiniUIObjClassInit@RC@@QAE@PAURCMiniUIRuntimeClass@1@@Z
??1?$CDialogImpl@VRCMiniUIDialog@RC@@VRCMiniAtlWindow@@@ATL@@UAE@XZ
??1?$CDialogImplBaseT@VRCMiniAtlWindow@@@ATL@@UAE@XZ
??1?$CWindowImpl@VRCMiniUISimpleWindow@RC@@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@UAE@XZ
??1?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@UAE@XZ
??1?$CWindowImplRoot@VRCMiniAtlWindow@@@ATL@@UAE@XZ
??1RCAnimationPanelEndedCallBack@RC@@UAE@XZ
??1RCMiniUIAlphaAnimation@RC@@UAE@XZ
??1RCMiniUIAnimateSkin@RC@@UAE@XZ
??1RCMiniUIAnimation@RC@@UAE@XZ
??1RCMiniUIAnimationContainer@RC@@UAE@XZ
??1RCMiniUIAnimationDelegate@RC@@UAE@XZ
??1RCMiniUIAnimationListener@RC@@MAE@XZ
??1RCMiniUIAnimationPanel@RC@@UAE@XZ
??1RCMiniUIAnimationView@RC@@UAE@XZ
??1RCMiniUIApngSkin@RC@@UAE@XZ
??1RCMiniUIApngSkinDynamic@RC@@UAE@XZ
??1RCMiniUIAppModule@RC@@QAE@XZ
??1RCMiniUIBitmap@RC@@UAE@XZ
??1RCMiniUIBmpPoolInterface@RC@@UAE@XZ
??1RCMiniUIBounceWndHandler@RC@@QAE@XZ
??1RCMiniUIBoxPanel@RC@@UAE@XZ
??1RCMiniUIBrush@RC@@UAE@XZ
??1RCMiniUIButton@RC@@UAE@XZ
??1RCMiniUIButtonListener@RC@@MAE@XZ
??1RCMiniUICanvas@RC@@QAE@XZ
??1RCMiniUICanvasPathClipGuard@RC@@QAE@XZ
??1RCMiniUICanvasRectClipGuard@RC@@QAE@XZ
??1RCMiniUICanvasStateGuard@RC@@QAE@XZ
??1RCMiniUIComboBox@RC@@UAE@XZ
??1RCMiniUIComboBoxItem@RC@@UAE@XZ
??1RCMiniUIComboBoxMenu@RC@@UAE@XZ
??1RCMiniUIComboboxModel@RC@@MAE@XZ
??1RCMiniUIComboboxObserver@RC@@MAE@XZ
??1RCMiniUIDialog@RC@@UAE@XZ
??1RCMiniUIDialogInitParam@RC@@QAE@XZ
??1RCMiniUIDialogView@RC@@UAE@XZ
??1RCMiniUIDlgFile@RC@@UAE@XZ
??1RCMiniUIEditView@RC@@UAE@XZ
??1RCMiniUIEditViewDelegate@RC@@UAE@XZ
??1RCMiniUIFontPoolInterface@RC@@UAE@XZ
??1RCMiniUIFrameWindow@RC@@UAE@XZ
??1RCMiniUIGifBtn@RC@@UAE@XZ
??1RCMiniUIGifDecoder@RC@@UAE@XZ
??1RCMiniUIGifSkin@RC@@UAE@XZ
??1RCMiniUIGifSkinDynamic@RC@@UAE@XZ
??1RCMiniUIGifView@RC@@UAE@XZ
??1RCMiniUIGifViewObserver@RC@@UAE@XZ
??1RCMiniUIIconBtn@RC@@UAE@XZ
??1RCMiniUIImageBtn@RC@@UAE@XZ
??1RCMiniUIImageStatic@RC@@UAE@XZ
??1RCMiniUIImageView@RC@@UAE@XZ
??1RCMiniUILimitStatic@RC@@UAE@XZ
??1RCMiniUILine@RC@@UAE@XZ
??1RCMiniUIListBox@RC@@UAE@XZ
??1RCMiniUIListCtrl@RC@@UAE@XZ
??1RCMiniUIManner@RC@@EAE@XZ
??1RCMiniUIMannerInterface@RC@@UAE@XZ
??1RCMiniUIMenu@RC@@UAE@XZ
??1RCMiniUIMenuItem@RC@@UAE@XZ
??1RCMiniUIMouseInOutAnimate@RC@@UAE@XZ
??1RCMiniUIMouseInOutAnimateListener@RC@@UAE@XZ
??1RCMiniUIMultiStatic@RC@@UAE@XZ
??1RCMiniUIMultiTextImageBtn@RC@@UAE@XZ
??1RCMiniUIObject@RC@@UAE@XZ
??1RCMiniUIPanel@RC@@UAE@XZ
??1RCMiniUIPath@RC@@UAE@XZ
??1RCMiniUIPngGroupSkin@RC@@UAE@XZ
??1RCMiniUIPngPoolInterface@RC@@UAE@XZ
??1RCMiniUIPngSkin@RC@@UAE@XZ
??1RCMiniUIPngStretchSkin@RC@@UAE@XZ
??1RCMiniUIPngTileSkin@RC@@UAE@XZ
??1RCMiniUIProgress@RC@@UAE@XZ
??1RCMiniUIProgressObserver@RC@@UAE@XZ
??1RCMiniUIRadioBtn@RC@@UAE@XZ
??1RCMiniUIRadioGroup@RC@@QAE@XZ
??1RCMiniUIRealWnd@RC@@UAE@XZ
??1RCMiniUIRenderFactory@RC@@UAE@XZ
??1RCMiniUIRenderFactoryD2D@RC@@UAE@XZ
??1RCMiniUIRenderFactoryGdip@RC@@UAE@XZ
??1RCMiniUIRenderFactorySkia@RC@@UAE@XZ
??1RCMiniUIRepeatAnimation@RC@@UAE@XZ
??1RCMiniUIResourceLoaderInterface@RC@@UAE@XZ
??1RCMiniUIResourceManager@RC@@EAE@XZ
??1RCMiniUIResourceManagerInterface@RC@@UAE@XZ
??1RCMiniUIRichEdit@RC@@UAE@XZ
??1RCMiniUIRichText@RC@@UAE@XZ
??1RCMiniUIRichTextAttr@RC@@QAE@XZ
??1RCMiniUIRootView@RC@@UAE@XZ
??1RCMiniUIRotateAnimation@RC@@UAE@XZ
??1RCMiniUIRotateView@RC@@UAE@XZ
??1RCMiniUIRuntimeClass@RC@@QAE@XZ
??1RCMiniUISCrollBarSkin@RC@@UAE@XZ
??1RCMiniUIScaleAnimation@RC@@UAE@XZ
??1RCMiniUIScrollView@RC@@UAE@XZ
??1RCMiniUIShadowParam@RC@@QAE@XZ
??1RCMiniUISimpleWindow@RC@@UAE@XZ
??1RCMiniUISkin@RC@@UAE@XZ
??1RCMiniUISkinPoolInterface@RC@@UAE@XZ
??1RCMiniUISlideAnimation@RC@@UAE@XZ
??1RCMiniUISlideShowAnimator@RC@@UAE@XZ
??1RCMiniUISlideShowAnimatorObserver@RC@@UAE@XZ
??1RCMiniUIStringAttribute@RC@@QAE@XZ
??1RCMiniUIStringPoolInterface@RC@@UAE@XZ
??1RCMiniUIStripeProgress@RC@@UAE@XZ
??1RCMiniUIStyle@RC@@UAE@XZ
??1RCMiniUIStylePoolInterface@RC@@UAE@XZ
??1RCMiniUITab@RC@@UAE@XZ
??1RCMiniUITabCtrl@RC@@UAE@XZ
??1RCMiniUITableItemPanel@RC@@UAE@XZ
??1RCMiniUITableModel@RC@@UAE@XZ
??1RCMiniUITextInputClient@RC@@UAE@XZ
??1RCMiniUITextView@RC@@UAE@XZ
??1RCMiniUITransformAnimation@RC@@UAE@XZ
??1RCMiniUITransformAnimationSet@RC@@UAE@XZ
??1RCMiniUITransformView@RC@@UAE@XZ
??1RCMiniUITransformViewListener@RC@@UAE@XZ
??1RCMiniUITranslateAnimation@RC@@UAE@XZ
??1RCMiniUITreeNode@RC@@MAE@XZ
??1RCMiniUITreeView@RC@@UAE@XZ
??1RCMiniUITurn3DListener@RC@@MAE@XZ
??1RCMiniUITurn3DView@RC@@UAE@XZ
??1RCMiniUIView@RC@@UAE@XZ
??1RCMiniUIWebBrowser@RC@@UAE@XZ
??1RCMiniUIWebEventCallback@RC@@UAE@XZ
??1RCMiniUIWindow@RC@@UAE@XZ
??1RCMiniUiImgChkBox@RC@@UAE@XZ
??4?$CDialogImpl@VRCMiniUIDialog@RC@@VRCMiniAtlWindow@@@ATL@@QAEAAV01@ABV01@@Z
??4?$CDialogImplBaseT@VRCMiniAtlWindow@@@ATL@@QAEAAV01@ABV01@@Z
??4?$CWindowImpl@VRCMiniUISimpleWindow@RC@@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@QAEAAV01@ABV01@@Z
??4?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@QAEAAV01@ABV01@@Z
??4?$CWindowImplRoot@VRCMiniAtlWindow@@@ATL@@QAEAAV01@ABV01@@Z
??4RCAnimationPanelEndedCallBack@RC@@QAEAAV01@ABV01@@Z
??4RCMenuWndPos@RCMiniUIComboBoxMenu@RC@@QAEAAV012@ABV012@@Z
??4RCMiniAtlWindow@@QAEAAV0@ABV0@@Z
??4RCMiniAtlWindow@@QAEAAV0@PAUHWND__@@@Z
??4RCMiniUI2DMatrix@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIAnimation@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIAnimationDelegate@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIAnimationListener@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIBitmap@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIBmpPoolInterface@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIBrush@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIButtonListener@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIComboboxModel@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIComboboxObserver@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIDPIUtils@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIDialogInitParam@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIEditViewDelegate@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIFontPoolInterface@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIGifDecoder@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIGifViewObserver@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIManner@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIMannerInterface@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIMouseInOutAnimateListener@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIObject@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIObjectFactory@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIPath@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIPngPoolInterface@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIProgressObserver@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIRenderFactory@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIRenderFactoryD2D@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIRenderFactoryGdip@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIRenderFactorySkia@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIRepeatAnimation@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIResourceLoaderInterface@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIResourceManager@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIResourceManagerInterface@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIRichTextAttr@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIShadowParam@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUISkinPoolInterface@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUISlideAnimation@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUISlideShowAnimator@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUISlideShowAnimatorObserver@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIStringAttribute@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIStringPoolInterface@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIStyle@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIStylePoolInterface@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUITableModel@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUITextInputClient@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUITransformAnimation@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUITransformViewListener@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUITreeViewObserver@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUITurn3DListener@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUITween@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIUtils@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIWebEventCallback@RC@@QAEAAV01@ABV01@@Z
??4RCMiniUIWindow@RC@@QAEAAV01@ABV01@@Z
??4TMiniUIObjClassInit@RC@@QAEAAU01@ABU01@@Z
??BRCMiniAtlWindow@@QBEPAUHWND__@@XZ
??_7RCAnimationPanelEndedCallBack@RC@@6B@
??_7RCMiniUIAlphaAnimation@RC@@6B@
??_7RCMiniUIAnimateSkin@RC@@6B@
??_7RCMiniUIAnimation@RC@@6B@
??_7RCMiniUIAnimationContainer@RC@@6B@
??_7RCMiniUIAnimationDelegate@RC@@6B@
??_7RCMiniUIAnimationListener@RC@@6B@
??_7RCMiniUIAnimationPanel@RC@@6B@
??_7RCMiniUIAnimationPanel@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIAnimationPanel@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIAnimationView@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIAnimationView@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIApngSkin@RC@@6B@
??_7RCMiniUIApngSkinDynamic@RC@@6B@
??_7RCMiniUIBitmap@RC@@6B@
??_7RCMiniUIBmpPoolInterface@RC@@6B@
??_7RCMiniUIBounceWndHandler@RC@@6B@
??_7RCMiniUIBoxPanel@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIBoxPanel@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIBrush@RC@@6B@
??_7RCMiniUIButton@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIButton@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIButtonListener@RC@@6B@
??_7RCMiniUIComboBox@RC@@6B@
??_7RCMiniUIComboBox@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIComboBox@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIComboBoxItem@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIComboBoxItem@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIComboBoxMenu@RC@@6B?$CWindowImpl@VRCMiniUISimpleWindow@RC@@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@@
??_7RCMiniUIComboBoxMenu@RC@@6BRCMiniUIDialogView@1@@
??_7RCMiniUIComboboxModel@RC@@6B@
??_7RCMiniUIComboboxObserver@RC@@6B@
??_7RCMiniUIDialog@RC@@6B?$CDialogImpl@VRCMiniUIDialog@RC@@VRCMiniAtlWindow@@@ATL@@@
??_7RCMiniUIDialog@RC@@6BRCMiniUIDialogView@1@@
??_7RCMiniUIDialogView@RC@@6B@
??_7RCMiniUIDlgFile@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIDlgFile@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIEditView@RC@@6B@
??_7RCMiniUIEditView@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIEditView@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIEditViewDelegate@RC@@6B@
??_7RCMiniUIFontPoolInterface@RC@@6B@
??_7RCMiniUIFrameWindow@RC@@6B?$CWindowImpl@VRCMiniUISimpleWindow@RC@@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@@
??_7RCMiniUIFrameWindow@RC@@6BCIdleHandler@WTL@@@
??_7RCMiniUIFrameWindow@RC@@6BCMessageFilter@WTL@@@
??_7RCMiniUIFrameWindow@RC@@6BRCMiniUIDialogView@1@@
??_7RCMiniUIGifBtn@RC@@6B@
??_7RCMiniUIGifBtn@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIGifBtn@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIGifDecoder@RC@@6B@
??_7RCMiniUIGifSkin@RC@@6B@
??_7RCMiniUIGifSkinDynamic@RC@@6B@
??_7RCMiniUIGifView@RC@@6B@
??_7RCMiniUIGifView@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIGifView@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIGifViewObserver@RC@@6B@
??_7RCMiniUIIconBtn@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIIconBtn@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIImageBtn@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIImageBtn@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIImageStatic@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIImageStatic@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIImageView@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIImageView@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUILimitStatic@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUILimitStatic@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUILine@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUILine@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIListBox@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIListBox@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIListCtrl@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIListCtrl@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIManner@RC@@6B@
??_7RCMiniUIMannerInterface@RC@@6B@
??_7RCMiniUIMenu@RC@@6B?$CWindowImpl@VRCMiniUISimpleWindow@RC@@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@@
??_7RCMiniUIMenu@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIMenu@RC@@6BRCMiniUIDialogView@1@@
??_7RCMiniUIMenu@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIMenuItem@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIMenuItem@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIMouseInOutAnimate@RC@@6B@
??_7RCMiniUIMouseInOutAnimate@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIMouseInOutAnimate@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIMouseInOutAnimateListener@RC@@6B@
??_7RCMiniUIMultiStatic@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIMultiStatic@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIMultiTextImageBtn@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIMultiTextImageBtn@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIObject@RC@@6B@
??_7RCMiniUIPanel@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIPanel@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIPath@RC@@6B@
??_7RCMiniUIPngGroupSkin@RC@@6B@
??_7RCMiniUIPngPoolInterface@RC@@6B@
??_7RCMiniUIPngSkin@RC@@6B@
??_7RCMiniUIPngStretchSkin@RC@@6B@
??_7RCMiniUIPngTileSkin@RC@@6B@
??_7RCMiniUIProgress@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIProgress@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIProgressObserver@RC@@6B@
??_7RCMiniUIRadioBtn@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIRadioBtn@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIRealWnd@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIRealWnd@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIRenderFactory@RC@@6B@
??_7RCMiniUIRenderFactoryD2D@RC@@6B@
??_7RCMiniUIRenderFactoryGdip@RC@@6B@
??_7RCMiniUIRenderFactorySkia@RC@@6B@
??_7RCMiniUIRepeatAnimation@RC@@6B@
??_7RCMiniUIResourceLoaderInterface@RC@@6B@
??_7RCMiniUIResourceManager@RC@@6B@
??_7RCMiniUIResourceManagerInterface@RC@@6B@
??_7RCMiniUIRichEdit@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIRichEdit@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIRichText@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIRichText@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIRootView@RC@@6BRCFastPaintHelper@1@@
??_7RCMiniUIRootView@RC@@6BRCMiniUIObject@1@@
??_7RCMiniUIRotateAnimation@RC@@6B@
??_7RCMiniUIRotateView@RC@@6B@

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 624KB - Virtual size: 623KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345SafeDispatcher.dll
.dll windows:5 windows x86 arch:x86

484271f43e952be6ed47b69cc3524c8c

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

1a:63:76:ab:ff:3e:16:2e:4a:18:75:89:de:6b:45:8a:3f:97:95:4d:74:91:ab:4a:1f:5f:59:9f:ae:96:48:ef
Signer

Actual PE Digest

1a:63:76:ab:ff:3e:16:2e:4a:18:75:89:de:6b:45:8a:3f:97:95:4d:74:91:ab:4a:1f:5f:59:9f:ae:96:48:ef

Digest Algorithm

sha256

PE Digest Matches

true

90:63:18:cf:55:e7:36:55:0a:25:6a:6c:0c:08:aa:5c:d5:e2:88:0d
Signer

Actual PE Digest

90:63:18:cf:55:e7:36:55:0a:25:6a:6c:0c:08:aa:5c:d5:e2:88:0d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\2345SafeDispatcher.pdb

Imports

kernel32

OutputDebugStringW
GetModuleHandleW
GetLastError
WaitForMultipleObjects
GetCurrentThreadId
SetFilePointer
WriteFile
GetModuleFileNameW
CreateFileW
GetLocalTime
CloseHandle
GetCurrentProcessId
TryEnterCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
WaitForSingleObject
ResumeThread
SetEvent
Sleep
ResetEvent
CreateEventW
OpenEventW
WideCharToMultiByte
GetACP
MultiByteToWideChar
SearchPathW
CreateMutexW
OpenMutexW
ReleaseMutex
FindFirstFileW
GetLongPathNameW
GetFileAttributesExW
GetShortPathNameW
GetDriveTypeW
InterlockedExchangeAdd
HeapAlloc
HeapFree
GetProcessHeap
OpenProcess
GlobalAlloc
GetVersionExW
GetProcAddress
GlobalFree
LocalFree
GetFullPathNameW
GetTempFileNameW
MoveFileExW
CreateDirectoryW
SetFileTime
GetSystemDirectoryW
CopyFileW
GetFileAttributesW
lstrlenW
GetTempPathW
GetCurrentDirectoryW
MoveFileW
SetCurrentDirectoryW
RemoveDirectoryW
GetWindowsDirectoryW
DeleteFileW
SetFileAttributesW
FindClose
FindNextFileW
GetFileSize
SetEndOfFile
ReadFile
GetFileTime
FreeLibrary
LoadLibraryW
FindResourceW
LoadResource
LockResource
GetSystemInfo
lstrcmpiW
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer

user32

RegisterClassW
DefWindowProcW
IsWindow
UnregisterClassW
DestroyWindow
SendMessageW
CreateWindowExW

msvcp120

??0_Locinfo@std@@QAE@HPBD@Z
?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
??0id@locale@std@@QAE@I@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
?_BADOFF@std@@3_JB
?_Xruntime_error@std@@YAXPBD@Z
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?uncaught_exception@std@@YA_NXZ
?_Makeloc@_Locimp@locale@std@@CAPAV123@ABV_Locinfo@3@HPAV123@PBV23@@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@_N@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?global@locale@std@@SA?AV12@ABV12@@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?flags@ios_base@std@@QBEHXZ
?fail@ios_base@std@@QBE_NXZ
?good@ios_base@std@@QBE_NXZ
?rdstate@ios_base@std@@QBEHXZ
??Bios_base@std@@QBE_NXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
?_Getname@_Locinfo@std@@QBEPBDXZ
??1_Locinfo@std@@QAE@XZ

msvcr120

fclose
memcpy
memmove
_purecall
??3@YAXPAX@Z
_hypot
??2@YAPAXI@Z
atoi
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABV01@@Z
wcschr
towlower
wcsstr
??_V@YAXPAX@Z
_vsnwprintf
towupper
_beginthreadex
_errno
rand
srand
_time64
fputc
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
_unlock_file
ungetc
strstr
fgetpos
_fseeki64
fflush
fgetc
fsetpos
setvbuf
_lock_file
memcpy_s
fwrite
memset
_stricmp
free
malloc
_splitpath_s
strchr
memchr
tolower
toupper
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
?terminate@@YAXXZ
__clean_type_info_names_internal
__RTDynamicCast
__CxxFrameHandler3
_CxxThrowException

Exports

Exports

CreateObject

Sections

.text
Size: 283KB - Virtual size: 282KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345Soft/data/2345Font
2345Soft/data/2345SoftClass.dat
2345Soft/data/2345SoftOption.dat
2345Soft/data/2345SoftUninst2.dat
2345Soft/data/CA01.dat
2345Soft/icon/DefaultSoft.ico
2345Soft/icon/SoftUninstall.ico
2345Soft/icon/SoftUpdateRemind.ico
2345SoftBox.dll
.dll windows:5 windows x86 arch:x86

7f5388fa17e8a42ff85b8c8969eacc40

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

cc:10:58:85:7c:34:18:7f:c0:08:e0:88:89:0c:ef:de:d7:00:f0:c1:2b:99:e0:86:fc:08:d9:ac:38:13:79:65
Signer

Actual PE Digest

cc:10:58:85:7c:34:18:7f:c0:08:e0:88:89:0c:ef:de:d7:00:f0:c1:2b:99:e0:86:fc:08:d9:ac:38:13:79:65

Digest Algorithm

sha256

PE Digest Matches

true

93:8b:69:91:08:fe:6d:71:35:eb:16:3a:bb:eb:7a:11:c4:3c:0e:ec
Signer

Actual PE Digest

93:8b:69:91:08:fe:6d:71:35:eb:16:3a:bb:eb:7a:11:c4:3c:0e:ec

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\2345SoftBox.pdb

Imports

kernel32

FreeLibrary
HeapAlloc
HeapFree
GetProcessHeap
GlobalAlloc
LoadLibraryW
GetProcAddress
GlobalFree
LocalFree
GetLogicalDriveStringsW
GetDiskFreeSpaceW
GetVolumeInformationW
GetSystemDirectoryW
GetWindowsDirectoryW
lstrcmpW
FindFirstFileW
GetModuleHandleW
FindClose
LocalAlloc
DeviceIoControl
FindNextFileW
GetPrivateProfileStringW
CreateJobObjectW
CreateRemoteThread
IsProcessInJob
AssignProcessToJobObject
GetVersionExW
QueryInformationJobObject
VirtualAllocEx
GetModuleHandleA
TerminateJobObject
WriteProcessMemory
ResumeThread
InterlockedExchange
WritePrivateProfileSectionW
WritePrivateProfileStringW
GetPrivateProfileIntW
LockFile
FlushViewOfFile
UnlockFile
InterlockedCompareExchange
HeapCompact
CreateFileA
HeapReAlloc
GetFullPathNameA
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
IsDebuggerPresent
EncodePointer
GlobalMemoryStatusEx
QueryPerformanceFrequency
QueryPerformanceCounter
GetFileSizeEx
lstrcpyW
lstrcatW
LocalFileTimeToFileTime
GetVersion
OpenProcess
GetCurrentProcess
GetDriveTypeW
GetEnvironmentVariableW
GetCurrentProcessId
GetCurrentThreadId
GetLocalTime
GetModuleFileNameW
OutputDebugStringW
SetFilePointer
CreateFileW
WriteFile
GetTickCount
Sleep
CloseHandle
CreatePipe
WaitForMultipleObjects
GetStdHandle
ReadFile
lstrcpynW
OpenThread
WaitForSingleObject
CreateProcessW
PeekNamedPipe
DeleteCriticalSection
DecodePointer
GetLastError
RaiseException
GetSystemTime
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
DosDateTimeToFileTime
FileTimeToDosDateTime
QueryDosDeviceW
SwitchToThread
SetLastError
FormatMessageW
SetFileAttributesW
DeleteFileW
RemoveDirectoryW
SetCurrentDirectoryW
MoveFileW
GetCurrentDirectoryW
GetTempPathW
lstrlenW
CopyFileW
CreateDirectoryW
MoveFileExW
GetTempFileNameW
GetFullPathNameW
LoadLibraryA
GetFileAttributesW
TerminateProcess
OpenFileMappingW
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
GetFileTime
SetFileTime
SetEndOfFile
GetFileSize
lstrcmpiW
GetSystemInfo
LockResource
LoadResource
FindResourceW
LoadLibraryExW
MultiByteToWideChar
GetACP
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
TryEnterCriticalSection
InterlockedExchangeAdd
OpenEventW
CreateEventW
ResetEvent
SetEvent
GetShortPathNameW
GetFileAttributesExW
GetLongPathNameW
SearchPathW
WideCharToMultiByte
ReleaseMutex
OpenMutexW
CreateMutexW
UnlockFileEx
FormatMessageA
HeapDestroy
GetFileAttributesA
HeapCreate
HeapValidate
FlushFileBuffers
HeapSize
LockFileEx
CreateFileMappingA
GetDiskFreeSpaceA
OutputDebugStringA
GetExitCodeProcess
ExpandEnvironmentStringsW
GetVersionExA
GetTempPathA
AreFileApisANSI
DeleteFileA
EnumResourceNamesW
SizeofResource
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx

user32

DestroyIcon
PrivateExtractIconsW
EnumChildWindows
IsWindowVisible
GetWindowThreadProcessId
LoadImageW
CreateIconFromResourceEx
GetIconInfo
LookupIconIdFromDirectoryEx
GetDesktopWindow
ReleaseDC
GetWindowTextW
GetDC
GetWindowTextLengthW
OpenDesktopW
FindWindowW
GetActiveWindow
DestroyWindow
IsWindow
SendMessageW
CreateDesktopW
CloseDesktop
UnregisterClassW
EnumDesktopWindows

gdi32

DeleteObject
CreateFontIndirectW
SelectObject
GetTextExtentPointW
GetObjectW
GetTextExtentExPointW
GetStockObject

advapi32

LookupPrivilegeValueW
IsValidSid
SetEntriesInAclW
SetNamedSecurityInfoW
RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegEnumValueW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
ConvertSidToStringSidW
GetLengthSid
FreeSid
AllocateAndInitializeSid
EqualSid
AdjustTokenPrivileges
RegOpenKeyExW
GetTokenInformation
RegQueryValueExW
OpenProcessToken

shell32

SHGetSpecialFolderLocation
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
ShellExecuteExW
DuplicateIcon
ShellExecuteW
SHGetSpecialFolderPathW
SHFileOperationW
SHGetDesktopFolder
ExtractIconExW
SHChangeNotify
ord727
SHGetFolderPathW

ole32

CoTaskMemFree
CoInitialize
CoUninitialize
CoCreateInstance
CreateStreamOnHGlobal

msvcp120

?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?flags@ios_base@std@@QBEHXZ
?fail@ios_base@std@@QBE_NXZ
?good@ios_base@std@@QBE_NXZ
?rdstate@ios_base@std@@QBEHXZ
??Bios_base@std@@QBE_NXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Getname@_Locinfo@std@@QBEPBDXZ
??0_Locinfo@std@@QAE@HPBD@Z
?setf@ios_base@std@@QAEHH@Z
?setf@ios_base@std@@QAEHHH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??7ios_base@std@@QBE_NXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
??0id@locale@std@@QAE@I@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_Orphan_all@_Container_base12@std@@QAEXXZ
??1_Container_base12@std@@QAE@XZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
??0_Container_base12@std@@QAE@XZ
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?id@?$ctype@_W@std@@2V0locale@2@A
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?id@?$collate@_W@std@@2V0locale@2@A
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
??_7facet@locale@std@@6B@
_Wcscoll
_Wcsxfrm
??_7_Facet_base@std@@6B@
?c_str@?$_Yarn@D@std@@QBEPBDXZ
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@_W@std@@QBEPB_WPA_WPB_W@Z
?tolower@?$ctype@_W@std@@QBE_W_W@Z
?is@?$ctype@_W@std@@QBE_NF_W@Z
??1facet@locale@std@@MAE@XZ
??0facet@locale@std@@IAE@I@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
??Bid@locale@std@@QAEIXZ
??1_Facet_base@std@@UAE@XZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@PBD@Z
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
?_BADOFF@std@@3_JB
?_Xruntime_error@std@@YAXPBD@Z
?uncaught_exception@std@@YA_NXZ
?_Makeloc@_Locimp@locale@std@@CAPAV123@ABV_Locinfo@3@HPAV123@PBV23@@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@_N@Z
?global@locale@std@@SA?AV12@ABV12@@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
_Nan
_Inf
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z

msvcr120

_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__CxxFrameHandler3
_except_handler4_common
__clean_type_info_names_internal
_amsg_exit
__CppXcptFilter
??1type_info@@UAE@XZ
__dllonexit
_calloc_crt
_unlock
_lock
isalnum
wcstoul
swscanf_s
sscanf
_vswprintf_c_l
wcsrchr
_wcsicmp
wcsncpy
_wcsnicmp
?terminate@@YAXXZ
toupper
tolower
memchr
calloc
_errno
_localtime64
_mktime64
_beginthreadex
_time64
srand
rand
towupper
wcsstr
towlower
wcschr
sprintf
_lock_file
setvbuf
fsetpos
fgetc
fflush
_fseeki64
fgetpos
strstr
ungetc
_unlock_file
fputc
strchr
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
_ui64tow_s
_wtoi64
atof
iswxdigit
_vsnwprintf
fopen
_wtoi
_splitpath_s
_stricmp
fclose
fseek
ftell
fwrite
fread
rewind
_wfopen_s
realloc
wcstol
malloc
atoi
memcpy_s
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
_wtof
??_V@YAXPAX@Z
free
??2@YAPAXI@Z
_hypot
??3@YAXPAX@Z
_purecall
memmove
_recalloc
memset
memmove_s
abort
modf
sprintf_s
__iob_func
localeconv
fprintf
_dtest
strpbrk
memcpy
strncmp
qsort
_localtime64_s
_msize
_endthreadex
strrchr
strcspn
_CxxThrowException
__RTDynamicCast
_libm_sse2_pow_precise
_libm_sse2_sqrt_precise
_onexit
_except1

shlwapi

PathIsDirectoryW
PathFileExistsW
SHDeleteKeyW
StrToIntW
PathRemoveFileSpecW
UrlEscapeW

wininet

InternetGetConnectedState
InternetSetOptionW
InternetCrackUrlW

iphlpapi

GetAdaptersInfo

gdiplus

GdipAlloc
GdipDisposeImage
GdipCreateHICONFromBitmap
GdipCloneImage
GdipFree
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

oleaut32

VariantClear
SysAllocString

Exports

Exports

?CreateSoftInstallModule@RC@@YAPAVRCSoftInstallModuleIF@1@XZ
?CreateStatisticsModule@RC@@YAPAVRCStatisticsModuleIF@1@XZ
?ReleaseSoftInstallModule@RC@@YAXXZ
?ReleaseStatisticsModule@RC@@YAXXZ
CreateObject
ReleaseObject

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 504KB - Virtual size: 503KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345SoftInstallAgent.exe
.exe windows:5 windows x86 arch:x86

a5dd6b0bd17ec4b4ba714abe8d436c66

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\2345SoftInstallAgent.pdb

Imports

kernel32

GetModuleFileNameW
GetCurrentThreadId
GetCurrentProcessId
FreeLibrary
HeapAlloc
HeapFree
GetProcessHeap
LoadLibraryW
LocalFree
IsDebuggerPresent
IsProcessorFeaturePresent
EncodePointer
DecodePointer
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetACP
FindFirstFileW
GetFileAttributesExW
GetEnvironmentVariableW
GetLastError
GetStdHandle
GetNamedPipeInfo
GetProcAddress
GetPrivateProfileStringW
GetModuleHandleW
LocalFileTimeToFileTime
CloseHandle
GetCurrentDirectoryW
MultiByteToWideChar
CreateFileW
ReadFile
GetFileAttributesW
WideCharToMultiByte
WriteFile
SetFileTime
CreateDirectoryW
SystemTimeToFileTime
SetFilePointer
FormatMessageW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetFileSize
FindNextFileW
FindClose
SetFileAttributesW
RemoveDirectoryW
DeleteFileW
SetEndOfFile
GetFileSizeEx
ReleaseMutex
WaitForSingleObject
CreateMutexW
GetVersionExW
DeleteCriticalSection

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW

ole32

CoTaskMemFree

msvcr120

_except1
_controlfp_s
_invoke_watson
__crtSetUnhandledExceptionFilter
?terminate@@YAXXZ
_except_handler4_common
_commode
_fmode
_initterm
_initterm_e
__setusermatherr
_configthreadlocale
_ismbblead
_cexit
_exit
exit
modf
__set_app_type
__getmainargs
_amsg_exit
__crtGetShowWindowMode
_XcptFilter
??1type_info@@UAE@XZ
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
__crtTerminateProcess
__crtUnhandledException
_crt_debugger_hook
fclose
fseek
ftell
fwrite
fread
rewind
_wfopen_s
memcpy_s
??_V@YAXPAX@Z
??_U@YAPAXI@Z
wcscpy_s
_purecall
memmove
??2@YAPAXI@Z
??3@YAXPAX@Z
wcsstr
_vswprintf
wcsncpy
malloc
calloc
free
sprintf_s
sprintf
_dtest
strpbrk
memcpy
memset
_CxxThrowException
__CxxFrameHandler3
_acmdln
wcschr
towlower
_vsnwprintf
towupper
_errno
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABV01@@Z
strstr
_wcsicmp

msvcp120

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
??1_Container_base12@std@@QAE@XZ
?_BADOFF@std@@3_JB
?uncaught_exception@std@@YA_NXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

Exports

Exports

CheckSignerInfo

Sections

.text
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345SoftInstallHelper.dll
.dll windows:5 windows x86 arch:x86

5ad0b1a745e1843f0d4f1133a6980c81

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

5f:f7:88:74:c3:46:1f:da:03:ae:d0:65:b0:77:1c:22:af:8f:d4:22:ac:58:09:e9:94:1d:b5:9c:a1:9a:48:d9
Signer

Actual PE Digest

5f:f7:88:74:c3:46:1f:da:03:ae:d0:65:b0:77:1c:22:af:8f:d4:22:ac:58:09:e9:94:1d:b5:9c:a1:9a:48:d9

Digest Algorithm

sha256

PE Digest Matches

true

92:79:a3:09:3f:23:07:57:c8:43:78:eb:c7:f8:23:ea:ee:91:28:78
Signer

Actual PE Digest

92:79:a3:09:3f:23:07:57:c8:43:78:eb:c7:f8:23:ea:ee:91:28:78

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\2345SoftInstallHelper.pdb

Imports

dbghelp

ImageDirectoryEntryToData

kernel32

EnterCriticalSection
WriteConsoleW
UnmapViewOfFile
MapViewOfFileEx
InitializeCriticalSectionAndSpinCount
RaiseException
GetLastError
CreateFileMappingW
DecodePointer
DeleteCriticalSection
CloseHandle
VirtualQuery
GetCurrentProcess
Module32FirstW
VirtualProtect
CreateToolhelp32Snapshot
Module32NextW
GetCurrentProcessId
WriteProcessMemory
SetStdHandle
SetFilePointerEx
GetConsoleMode
GetConsoleCP
CreateFileW
WideCharToMultiByte
GetACP
MultiByteToWideChar
CreateDirectoryW
GetFileAttributesW
WriteFile
InitializeCriticalSection
LeaveCriticalSection
FlushFileBuffers
IsDebuggerPresent
OutputDebugStringW
HeapFree
EncodePointer
GetCommandLineA
GetCurrentThreadId
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
RtlUnwind
GetProcessHeap
ExitProcess
GetModuleHandleExW
GetProcAddress
HeapSize
HeapAlloc
SetLastError
GetStdHandle
GetFileType
GetStartupInfoW
GetModuleFileNameA
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsValidCodePage
GetOEMCP
GetCPInfo
GetStringTypeW
HeapReAlloc
GetModuleFileNameW
LoadLibraryExW
LCMapStringW

shell32

SHBrowseForFolderW
SHBrowseForFolderA
SHGetDesktopFolder

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345SoftInstaller.dll
.dll windows:5 windows x86 arch:x86

51a316dfb55d505cd4428e12b31fbc6b

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

20:7a:fc:ed:98:88:71:09:63:b1:43:95:37:6d:50:4e:e0:50:99:24:a3:e2:ca:44:5d:6d:a1:70:44:cd:ce:1e
Signer

Actual PE Digest

20:7a:fc:ed:98:88:71:09:63:b1:43:95:37:6d:50:4e:e0:50:99:24:a3:e2:ca:44:5d:6d:a1:70:44:cd:ce:1e

Digest Algorithm

sha256

PE Digest Matches

true

45:49:4b:fb:74:fc:30:17:60:ae:be:27:a4:ab:a3:3d:b8:cf:36:bd
Signer

Actual PE Digest

45:49:4b:fb:74:fc:30:17:60:ae:be:27:a4:ab:a3:3d:b8:cf:36:bd

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\2345SoftInstaller.pdb

Imports

kernel32

GetExitCodeProcess
TerminateProcess
QueryInformationJobObject
InterlockedExchange
PostQueuedCompletionStatus
CreateIoCompletionPort
ResumeThread
Sleep
GetCurrentProcess
GetModuleFileNameW
LoadLibraryW
GetLogicalDriveStringsW
lstrcpynW
GetNamedPipeInfo
AssignProcessToJobObject
CreateJobObjectW
WideCharToMultiByte
GetACP
MultiByteToWideChar
FindFirstFileW
GetLongPathNameW
GetFileAttributesExW
SetEvent
ResetEvent
CreateEventW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
QueryDosDeviceW
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
EncodePointer
InterlockedExchangeAdd
ReadFile
GetFileSize
GetQueuedCompletionStatus
CreateProcessW
SetInformationJobObject
lstrlenA
lstrcmpA
lstrcmpiA
GetCurrentProcessId
GetCurrentThreadId
GetLocalTime
GetPrivateProfileIntW
CreateFileW
WriteFile
GetPrivateProfileStringW
GetTickCount
OutputDebugStringW
CreateDirectoryW
SetFilePointer
WriteProcessMemory
CloseHandle
CreateFileMappingW
VirtualAllocEx
MoveFileW
GetProcAddress
VirtualFreeEx
OpenProcess
CreateRemoteThread
GetModuleHandleW
WaitForSingleObject
MapViewOfFileEx
UnmapViewOfFile
DeleteCriticalSection
DecodePointer
GetLastError
GetStdHandle
FindClose
lstrlenW
GetFileAttributesW
FindResourceW
LoadResource
GetVersionExW
LockResource
lstrcmpiW
GetFullPathNameW
InitializeCriticalSectionAndSpinCount

user32

GetParent
EnumWindows
GetWindowTextW
GetClassNameW
EnumChildWindows
FindWindowExW
GetDlgCtrlID
GetWindowInfo
OffsetRect
IsWindowVisible
CloseDesktop
SetForegroundWindow
ClientToScreen
GetWindowDC
ReleaseDC
GetDesktopWindow
GetForegroundWindow
GetWindowThreadProcessId
IsWindow
SendMessageW
GetWindowTextLengthW
CopyRect
OpenDesktopW
EnumDesktopWindows
SendMessageTimeoutW

gdi32

MoveToEx
LineTo
DeleteObject
CreatePen
BitBlt
DeleteDC
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetBitmapBits
GetObjectW

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW

ole32

CoTaskMemFree

msvcp120

?uncaught_exception@std@@YA_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1_Container_base12@std@@QAE@XZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?_BADOFF@std@@3_JB

msvcr120

_errno
_beginthreadex
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABV01@@Z
strstr
_wcsnicmp
sprintf
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
__clean_type_info_names_internal
memcpy
__CxxFrameHandler3
_CxxThrowException
strpbrk
towupper
_vsnwprintf
_dtest
towlower
wcschr
?terminate@@YAXXZ
wcscpy_s
fclose
fseek
ftell
fwrite
fread
rewind
_wfopen_s
_vswprintf_c_l
memcpy_s
malloc
??_V@YAXPAX@Z
atoi
free
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
memmove
sprintf_s
modf
memset
_wcsicmp
_except1

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Exports

Exports

CreateObject

Sections

.text
Size: 281KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345SoftMgrShell.exe
.exe windows:5 windows x86 arch:x86

e32de5400ad098b4acb0b15f331de418

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release_static\pdb\2345SoftMgrShell.pdb

Imports

kernel32

FreeLibrary
LoadLibraryW
GetProcAddress
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
SearchPathW
GetFileAttributesW
LoadLibraryA
ExpandEnvironmentStringsW
FindFirstFileW
CreateFileW
GetLastError
GetLongPathNameW
GetFileAttributesExW
GetShortPathNameW
TryEnterCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetVersionExW
lstrlenW
lstrcmpiW
lstrcatW
lstrcpyW
GetDriveTypeW
GetFileSizeEx
CloseHandle
SetFilePointer
SetEndOfFile
WriteFile
ReadFile
DeleteFileW
GetFullPathNameW
GetTempFileNameW
MoveFileExW
CreateDirectoryW
SetFileTime
GetSystemDirectoryW
CopyFileW
GetTempPathW
GetCurrentDirectoryW
MoveFileW
SetCurrentDirectoryW
RemoveDirectoryW
GetWindowsDirectoryW
SetFileAttributesW
FindClose
FindNextFileW
GetFileSize
GetFileTime
CreateMutexW
WaitForSingleObject
Sleep
OpenMutexW
ReleaseMutex
FormatMessageW
LocalFree
HeapAlloc
HeapFree
GetProcessHeap
OpenProcess
GlobalAlloc
GlobalFree
GetCurrentThreadId
FindResourceW
LoadResource
LockResource
GetSystemInfo
EncodePointer
DecodePointer
GetCommandLineW
IsDebuggerPresent
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
ExitProcess
GetModuleHandleExW
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
HeapSize
SetLastError
GetCurrentThread
GetStdHandle
GetFileType
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
CreateEventW
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetTickCount
CreateSemaphoreW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
FatalAppExitA
SetConsoleCtrlHandler
HeapReAlloc
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
OutputDebugStringW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
SetStdHandle
WriteConsoleW
FlushFileBuffers

Sections

.text
Size: 362KB - Virtual size: 361KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345SoftMgrShell64.exe
.exe windows:5 windows x64 arch:x64

27eee6c656cd08b314317b60c9e8bafc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

F:\branches\5.1\softmgr\main\bin\x64\release_static\pdb\2345SoftMgrShell64.pdb

Imports

kernel32

FreeLibrary
LoadLibraryW
GetProcAddress
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
SearchPathW
GetFileAttributesW
LoadLibraryA
ExpandEnvironmentStringsW
FindFirstFileW
CreateFileW
GetLastError
GetLongPathNameW
GetFileAttributesExW
GetShortPathNameW
TryEnterCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetVersionExW
lstrlenW
lstrcmpiW
lstrcatW
lstrcpyW
GetDriveTypeW
GetFileSizeEx
CloseHandle
SetFilePointer
SetEndOfFile
WriteFile
ReadFile
DeleteFileW
GetFullPathNameW
GetTempFileNameW
MoveFileExW
CreateDirectoryW
SetFileTime
GetSystemDirectoryW
CopyFileW
GetTempPathW
GetCurrentDirectoryW
MoveFileW
SetCurrentDirectoryW
RemoveDirectoryW
GetWindowsDirectoryW
SetFileAttributesW
FindClose
FindNextFileW
GetFileSize
GetFileTime
CreateMutexW
WaitForSingleObject
Sleep
OpenMutexW
ReleaseMutex
FormatMessageW
LocalFree
HeapAlloc
HeapFree
GetProcessHeap
OpenProcess
GlobalAlloc
GlobalFree
GetCurrentThreadId
FindResourceW
LoadResource
LockResource
GetSystemInfo
EncodePointer
DecodePointer
GetCommandLineW
IsDebuggerPresent
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
RtlPcToFileHeader
RaiseException
RtlLookupFunctionEntry
RtlUnwindEx
ExitProcess
GetModuleHandleExW
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
HeapSize
SetLastError
GetCurrentThread
GetStdHandle
GetFileType
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
CreateEventW
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetTickCount
CreateSemaphoreW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
FatalAppExitA
SetConsoleCtrlHandler
HeapReAlloc
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
OutputDebugStringW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
SetStdHandle
WriteConsoleW
FlushFileBuffers

Sections

.text
Size: 364KB - Virtual size: 363KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
2345SoftRI.dll
.dll windows:5 windows x86 arch:x86

11961afdf7ecda9cecf33530401cdd09

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

8b:5e:cc:8a:5f:77:d4:d7:09:24:8c:4a:46:82:2f:38:24:3e:c7:60:5f:0c:f2:8a:4a:77:5e:bf:0a:57:cc:49
Signer

Actual PE Digest

8b:5e:cc:8a:5f:77:d4:d7:09:24:8c:4a:46:82:2f:38:24:3e:c7:60:5f:0c:f2:8a:4a:77:5e:bf:0a:57:cc:49

Digest Algorithm

sha256

PE Digest Matches

true

7a:bd:c3:4b:0f:bc:ef:ff:bb:ae:b4:c1:4f:69:33:ed:c4:8c:88:5b
Signer

Actual PE Digest

7a:bd:c3:4b:0f:bc:ef:ff:bb:ae:b4:c1:4f:69:33:ed:c4:8c:88:5b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

FreeLibrary
LoadLibraryW
GetProcAddress
LocalAlloc
GetCurrentProcessId
LocalFree
GetTickCount
lstrcpynW
WaitForSingleObject
GetExitCodeProcess
GetLastError
CloseHandle
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
FlushInstructionCache
RaiseException
SetLastError
EnterCriticalSection
DecodePointer
DeleteCriticalSection
GetCurrentThreadId
VirtualFree
VirtualAlloc
LoadLibraryA
GetModuleHandleA
Sleep
GetModuleHandleW
GetFileAttributesW
ExpandEnvironmentStringsW
CreateProcessW
WaitForMultipleObjects
HeapAlloc
HeapFree
GetProcessHeap
OpenProcess
GetVersionExW
QueryDosDeviceW
FindResourceW
LoadResource
LockResource
GetSystemInfo
lstrcmpiW
InitializeCriticalSection
SetEvent
ResetEvent
CreateEventW
FindFirstFileW
CreateFileW
GetLongPathNameW
GetFileAttributesExW
ResumeThread
GetEnvironmentVariableW
LoadLibraryExW
GetFileSize
SetFilePointer
SetEndOfFile
SetFileTime
WriteFile
ReadFile
GetFileTime
WideCharToMultiByte
GetACP
MultiByteToWideChar
lstrlenW
GetFileSizeEx
GetModuleFileNameW
FindClose
FindNextFileW
GetLogicalDriveStringsW
FileTimeToSystemTime
GetFullPathNameW
MoveFileExW
CreateDirectoryW
GetSystemDirectoryW
GetTempPathW
GetCurrentDirectoryW
MoveFileW
RemoveDirectoryW
SetFileAttributesW
InterlockedExchangeAdd
FormatMessageW
InterlockedExchange
CreateMutexW
ReleaseMutex
InterlockedPushEntrySList
DeviceIoControl
ReadConsoleW
WriteConsoleW
SetStdHandle
FlushFileBuffers
SetFilePointerEx
GetConsoleMode
GetConsoleCP
OutputDebugStringW
GetTimeZoneInformation
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetModuleFileNameA
GetFileType
HeapReAlloc
GetOEMCP
IsValidCodePage
GetStdHandle
HeapSize
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
RtlUnwind
TerminateProcess
GetCurrentProcess
SetEnvironmentVariableA
InitializeSListHead
InterlockedPopEntrySList
DeleteFileW
GlobalMemoryStatusEx
ExitThread
CreateThread
GetCommandLineA
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
IsDebuggerPresent
GetModuleHandleExW
ExitProcess
EncodePointer
GetStringTypeW
VirtualQuery
GetSystemTimeAsFileTime
GetModuleHandleA
CreateEventA
GetModuleFileNameW
LoadLibraryA
FreeLibrary
TerminateProcess
GetCurrentProcess
GetSystemInfo
CreateToolhelp32Snapshot
Thread32First
GetCurrentProcessId
GetCurrentThreadId
OpenThread
Thread32Next
CloseHandle
SuspendThread
ResumeThread
WriteProcessMemory
VirtualAlloc
VirtualProtect
VirtualFree
GetProcessAffinityMask
SetProcessAffinityMask
GetCurrentThread
SetThreadAffinityMask
Sleep
GetTickCount
GlobalFree
GetProcAddress
LocalAlloc
LocalFree
ExitProcess
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetModuleHandleW
LoadResource
MultiByteToWideChar
FindResourceExW
FindResourceExA
WideCharToMultiByte
GetThreadLocale
GetUserDefaultLCID
GetSystemDefaultLCID
EnumResourceNamesA
EnumResourceNamesW
EnumResourceLanguagesA
EnumResourceLanguagesW
EnumResourceTypesA
EnumResourceTypesW
CreateFileW
LoadLibraryW
GetLastError
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetCommandLineA
RaiseException
RtlUnwind
HeapFree
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
QueryPerformanceCounter
HeapReAlloc
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
WriteFile
SetFilePointer
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
SetStdHandle
LocalAlloc
LocalFree
GetModuleFileNameW
GetProcessAffinityMask
SetProcessAffinityMask
SetThreadAffinityMask
Sleep
ExitProcess
FreeLibrary
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

wsprintfW
DestroyIcon
CallWindowProcW
DefWindowProcW
IsMenu
TrackPopupMenu
RegisterWindowMessageW
KillTimer
GetSubMenu
SetForegroundWindow
GetMenuDefaultItem
LoadMenuW
GetCursorPos
SetMenuDefaultItem
CreateWindowExW
SendMessageW
DestroyMenu
DestroyWindow
GetMessageW
PostQuitMessage
LoadImageW
UnregisterClassW
PostMessageW
LoadCursorW
GetClassInfoExW
TranslateMessage
RegisterClassExW
GetWindowLongW
EnableMenuItem
SetWindowLongW
IsWindow
DispatchMessageW
GetUserObjectInformationW
CharUpperBuffW
MessageBoxW
GetProcessWindowStation
GetProcessWindowStation
GetUserObjectInformationW

shell32

Shell_NotifyIconW

wtsapi32

WTSSendMessageW

Exports

Exports

CanInstallBrowser
CanInstallCustomProduct
CanInstallHaoZip
CanInstallIME
CanInstallPic
CanInstallSafe
FixSoftware
Initialize
InstallBrowser
InstallCustomProduct
InstallHaoZip
InstallIme
InstallPic
InstallSafe
ProtectInstallBrowser
ProtectInstallCustomProduct
ProtectInstallHaoZip
ProtectInstallIME
ProtectInstallPic
ProtectInstallSafe
SetDllInternalData
SetProductVersion
UnInitialize
\~*��3�.CXov�a?_��\s�%�Ѥ��A\�Z��9�ٌ��~^�m��gF)��Q�ل�j+�Fյ��-�;n� ��T�yaV#�k~�N��Y!��C)��ǥ��F��R*Q��핽��V^EQ��hE5��"x�_��)�'��9�j��0�y��x��m� ˱�Q1�!�ܔd+�>6�4��:/Pń��(vHt҆T�dIM�Rfo�cԹ��Ǉsa<=��D26�)��设��Q�H4��Lh��f��|�fm#��jJ�\�h��K�7�ՙ=� �$c#�� &�w��F�h��(�k9�r��*쑱r��6>mDw��m�Mi�n(N��X��s /Cl�s zH��P��$u\}��d�7�=j� ��>ݦ*N��`]K`&�_h��;��ӗ=98h�� @�{��7?I�x�'��N�&� v3��cW(pX��;�A� ֠y�bBy^��|��Y^�C��i�p�?P��C��/��"z�A��I�|!<�O�e$dy�B6��[�J��m,'|,O>��[�i�[ZLx0��wʀ�6�V��:L�檲n *vEnjM�i�2��M��Y(�bmɮ�(��?w��#��y!� ��7\��t�z6��{��xb�# ��OC��Irse��C��lp�S³x��"B'��>�(��d�ǃ��W��" ʐ��G�hEfl٦�@��DXQ��+�sE@�];V�9v--�ݫӓرPUL��(��:�E�3�fA�{�^�b]�3�]v\t}�2yVC: 㠧reu&S��ے��O��T��Q��>1�w��H��j�D��q0ߞ��B^d��ԜlmB}��F_Rk�0�˺��_m�@7��C��<��7�;��/p��#ލ`k��B��m�*�j��Wݛ��P�k�ٌ�p�ХHu�mI-cy.ӌ�tG��V��I+�A��=��bu��@8-n�� 貐�S��$�w��J�=ԏ2"/,B��x��P�P�VܼP��Y��MYB��i��=&�db��%FW�鹀��dՅk�.(�I�(�שּׁs��SS��f��cty��}�(A��bb��<Eм��7f>��j��,�R��r �[2��!��qw�n-�� h�%�RrD�b1��?��q��P{�wƞ��)��p$��`�*�WN��;ݫ�ٞ��s)<��|��5L1R��命�Ԃ�%̃[�=Hڃ*]��1_R�?pz*� C�ĳllK��ו߉��KTt��,��7�d��1��%}�VfE��<S��nW�OAf�1��m�L�28z�i~�=��1}��lUw��q�DƱ��jb��۬>��ox��ST�ܝ��-��=�� `h�J�bg�P3�fc�*�T��Ss��r �χ]O�Be�kGT� ��q��جw6s7�Ϭ�Ԏ�]�U�0Lk��ݪ��:�~Z��ս��n�?(�D��X�b��μ��!�+G�U�Q�oY�Z��&矦�W.v��gՏ�v�>,x�P�t�>�8E&\�l ʶ?��+�8��GV�˶� ��^Q�� b5�q~��]a��J� X��w�NS6Y��H��ҝCIb�,)��1�S�!�G�*B��Ë�7��sjF��c1c��S�Z &��j�7�3�k��6j��}�"hT��1��M�՗��V��3�x��s��sXIi�e��%d�c�� i ��j"pvY?�� F��^G��7��%�[�L�e�\��d¨��p�mF��H(&��_t��Ξ5��z��+t��n�Nؒ��ʰx?��b��Pgv��$��k�4��t��I��'.��>��!ڂa�в4Y��E��R�95�j�=j�)��m��S|Z��A�|\��!�7aVs#�/^x��3��Ez ��|Lvd՛��Pݚ� ��@��.;��w � ��R��=�ZD�~.�N� [xE*�~��+K��k)+`��x!��F�꣒��h�� &�( .JW.�Ndr��D8�4`x��X1��g��9��ND�?餓K6ƚ� �b�M��c@9��(�,��M<�o��\��H��.�a��%�%�n��`V"ِw�U&��H:��YT��X)"��n�kǝU�1��- -x�m�(ƹ #�LhQ�(�^O�Gk��0̢X2|�E��hө�2��צ�$�x�U��~��5��c�0�[��Ulx��`7I�_��8'L�&wW�t�>"��ٺp�>�i�n#��,��R��a��%�h{��:J�a�W��u�1�"��N-I�^P�~&��RҲ��|+]�H��7��,�g8<&�뛈n��$�=b��Ξ�kRq^�u��*�߁��@ۡ�j��ר[� z�Q:��] )�D�v�V��1b�v؏�H-W��v�RX��R��E��+&��P�bD�/yR�YkF��RWC��l6Q�ӔֱsW� l��cG�\�a@D��uۏhO+�ƚ�^��j��L;�o��"uWd�jV��S��@b��g�v� xu��/��c�ś�C �J��x;��5_�|G�D��2ɶ @�^��Ù*��(��+��@@vQ�h��I�P<^�Z{��F:Wc��4N*LI�b�>� Em�$ ��`��;0^$ 鵁�S�ZC3%Ø�k�f�\��>��g;��4�N�\�@�> +[��`�1�0��{��n]�}f��<#Y\ب2~A��.��'e��dr�݄"{f�J��#m��#+�Y�o��A��Z�P�>cB�P5o�粏�X�֯�GwyU��

Sections

.text
Size: - Virtual size: 938KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bin0
Size: - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bin1
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
2345SoftUninstall.dll
.dll windows:5 windows x86 arch:x86

7789c2cd2099ccef81857cc3b3826c10

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

af:c0:36:2c:ae:9d:17:0a:8c:e3:3d:b3:8f:85:6e:0d:43:b6:13:e1:78:7d:53:3a:25:9b:a3:35:12:7d:3f:dd
Signer

Actual PE Digest

af:c0:36:2c:ae:9d:17:0a:8c:e3:3d:b3:8f:85:6e:0d:43:b6:13:e1:78:7d:53:3a:25:9b:a3:35:12:7d:3f:dd

Digest Algorithm

sha256

PE Digest Matches

true

60:1f:d8:d7:00:1e:df:f0:49:3e:3e:f4:7d:0f:85:1e:89:02:f4:d7
Signer

Actual PE Digest

60:1f:d8:d7:00:1e:df:f0:49:3e:3e:f4:7d:0f:85:1e:89:02:f4:d7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\2345SoftUninstall.pdb

Imports

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

kernel32

GetModuleHandleW
GetProcAddress
FindClose
LocalAlloc
DeviceIoControl
FindNextFileW
LocalFree
ExpandEnvironmentStringsW
CreateJobObjectW
CreateRemoteThread
OpenProcess
IsProcessInJob
Sleep
AssignProcessToJobObject
WaitForSingleObject
GetExitCodeProcess
QueryInformationJobObject
VirtualAllocEx
GetModuleHandleA
TerminateJobObject
WriteProcessMemory
GetCurrentProcess
GetPrivateProfileStringW
WritePrivateProfileSectionW
WritePrivateProfileStringW
GetPrivateProfileIntW
FreeLibrary
LoadLibraryW
GetTickCount
GetVersionExW
GetLogicalDriveStringsW
LocalFileTimeToFileTime
GetSystemTime
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
DosDateTimeToFileTime
FileTimeToDosDateTime
SizeofResource
EnumResourceNamesW
GetVersion
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
CreateProcessW
GetDriveTypeW
FindFirstFileW
GetWindowsDirectoryW
WaitForMultipleObjects
OpenThread
GetCurrentProcessId
GetCurrentThreadId
GetLocalTime
CreateFileW
GetModuleFileNameW
WriteFile
OutputDebugStringW
SetFilePointer
CloseHandle
CreateEventW
SetEvent
GetDiskFreeSpaceExW
InterlockedExchange
GetSystemDirectoryW
DeleteCriticalSection
DecodePointer
GetLastError
RaiseException
InitializeCriticalSectionAndSpinCount
GetDiskFreeSpaceW
GetVolumeInformationW
SetLastError
ResumeThread
EncodePointer
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
InitializeCriticalSection
ResetEvent
OpenEventW
SearchPathW
InterlockedExchangeAdd
WideCharToMultiByte
GetACP
MultiByteToWideChar
CreateMutexW
OpenMutexW
ReleaseMutex
GetLongPathNameW
GetFileAttributesExW
GetShortPathNameW
GetEnvironmentVariableW
FindResourceW
LoadResource
LockResource
GetSystemInfo
lstrcmpiW
GetFileSize
SetEndOfFile
SetFileTime
ReadFile
GetFileTime
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
GlobalMemoryStatusEx
OpenFileMappingW
TerminateProcess
GetFileAttributesW
LoadLibraryA
HeapAlloc
HeapFree
GetProcessHeap
GlobalAlloc
GlobalFree
DeleteFileW
GetFullPathNameW
GetTempFileNameW
MoveFileExW
CreateDirectoryW
CopyFileW
lstrlenW
GetTempPathW
GetCurrentDirectoryW
MoveFileW
SetCurrentDirectoryW
RemoveDirectoryW
SetFileAttributesW
FormatMessageW
LoadLibraryExW
QueryDosDeviceW
lstrcatW
lstrcpyW
GetFileSizeEx

user32

FindWindowW
DestroyWindow
PrivateExtractIconsW
LoadImageW
CreateIconFromResourceEx
GetIconInfo
LookupIconIdFromDirectoryEx
DestroyIcon
GetActiveWindow
IsWindow
ReleaseDC
SendMessageW
UnregisterClassW
CloseDesktop
OpenDesktopW
IsWindowVisible
EnumChildWindows
GetWindowTextW
GetDC
GetWindowTextLengthW
GetWindowThreadProcessId
EnumDesktopWindows
GetDesktopWindow

gdi32

SelectObject
GetTextExtentPointW
GetObjectW
GetTextExtentExPointW
GetStockObject
CreateFontIndirectW
DeleteObject

advapi32

RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegSetValueExW
EqualSid
GetLengthSid
RegCloseKey
AdjustTokenPrivileges
RegOpenKeyExW
FreeSid
IsValidSid
RegEnumValueW
SetEntriesInAclW
AllocateAndInitializeSid
LookupPrivilegeValueW
SetNamedSecurityInfoW
GetTokenInformation
OpenProcessToken
ConvertSidToStringSidW

shell32

ExtractIconExW
SHChangeNotify
ord727
SHGetPathFromIDListW
SHGetMalloc
SHGetFileInfoW
SHGetSpecialFolderLocation
ShellExecuteExW
SHFileOperationW
SHGetDesktopFolder
SHGetFolderPathW
DuplicateIcon
ShellExecuteW
SHGetSpecialFolderPathW

ole32

CreateStreamOnHGlobal
CoCreateInstance
CoUninitialize
CoInitialize
CoTaskMemFree

shlwapi

PathRemoveFileSpecW
SHDeleteKeyW

msvcp120

?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?flags@ios_base@std@@QBEHXZ
?fail@ios_base@std@@QBE_NXZ
?good@ios_base@std@@QBE_NXZ
?rdstate@ios_base@std@@QBEHXZ
??Bios_base@std@@QBE_NXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Getname@_Locinfo@std@@QBEPBDXZ
??0_Locinfo@std@@QAE@HPBD@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?global@locale@std@@SA?AV12@ABV12@@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@_N@Z
?_Makeloc@_Locimp@locale@std@@CAPAV123@ABV_Locinfo@3@HPAV123@PBV23@@Z
?uncaught_exception@std@@YA_NXZ
?_Xruntime_error@std@@YAXPBD@Z
?_BADOFF@std@@3_JB
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??0_Locinfo@std@@QAE@PBD@Z
??1_Locinfo@std@@QAE@XZ
??1_Facet_base@std@@UAE@XZ
??Bid@locale@std@@QAEIXZ
?_Incref@facet@locale@std@@UAEXXZ
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
??0facet@locale@std@@IAE@I@Z
??1facet@locale@std@@MAE@XZ
?is@?$ctype@_W@std@@QBE_NF_W@Z
?tolower@?$ctype@_W@std@@QBE_W_W@Z
?tolower@?$ctype@_W@std@@QBEPB_WPA_WPB_W@Z
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?c_str@?$_Yarn@D@std@@QBEPBDXZ
??_7_Facet_base@std@@6B@
_Wcsxfrm
_Wcscoll
??_7facet@locale@std@@6B@
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?id@?$collate@_W@std@@2V0locale@2@A
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?id@?$ctype@_W@std@@2V0locale@2@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
??0_Container_base12@std@@QAE@XZ
??1_Container_base12@std@@QAE@XZ
?_Orphan_all@_Container_base12@std@@QAEXXZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
??0id@locale@std@@QAE@I@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?setf@ios_base@std@@QAEHHH@Z
?setf@ios_base@std@@QAEHH@Z
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ

msvcr120

sprintf
sscanf
swscanf_s
wcsrchr
wcstoul
isalnum
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
__CxxFrameHandler3
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
__clean_type_info_names_internal
_wcsicmp
wcsncpy
_wcsnicmp
_splitpath_s
_stricmp
?terminate@@YAXXZ
toupper
tolower
memchr
_localtime64
_mktime64
_beginthreadex
_lock_file
setvbuf
fsetpos
fgetc
fflush
_fseeki64
fgetpos
strstr
ungetc
_unlock_file
fputc
_time64
srand
rand
_errno
calloc
_vswprintf_c_l
towupper
wcsstr
towlower
wcschr
memmove_s
memset
_recalloc
ftell
fwrite
rewind
_wfopen_s
memcpy_s
realloc
strchr
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
_ui64tow_s
_wtoi64
fclose
fseek
iswxdigit
_vsnwprintf
fread
??_V@YAXPAX@Z
_except1
malloc
_wtof
_wtoi
atoi
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
??2@YAPAXI@Z
_hypot
_purecall
free
memmove
??3@YAXPAX@Z
memcpy
sprintf_s
_dtest
strpbrk
abort
modf
wcstol
_CxxThrowException
__RTDynamicCast
_libm_sse2_pow_precise
_libm_sse2_sqrt_precise
fopen

gdiplus

GdipDisposeImage
GdipAlloc
GdipCreateBitmapFromStream
GdipFree
GdipCreateHICONFromBitmap
GdipCloneImage
GdipCreateBitmapFromStreamICM

oleaut32

VariantClear
SysAllocString

wininet

InternetGetConnectedState

iphlpapi

GetAdaptersInfo

Exports

Exports

CreateObject

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FileAssociate.dll
.dll windows:6 windows x86 arch:x86

9d68cb5b5bfb1459e5a2867867202d2b

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

85:ff:88:73:85:ea:5f:7e:28:12:72:95:64:73:ac:01:64:95:90:4f:fc:86:06:13:40:a4:08:d5:ab:df:20:f5
Signer

Actual PE Digest

85:ff:88:73:85:ea:5f:7e:28:12:72:95:64:73:ac:01:64:95:90:4f:fc:86:06:13:40:a4:08:d5:ab:df:20:f5

Digest Algorithm

sha256

PE Digest Matches

true

35:42:79:c5:0d:bc:88:de:ee:39:42:9c:c6:67:98:ab:19:96:55:ed
Signer

Actual PE Digest

35:42:79:c5:0d:bc:88:de:ee:39:42:9c:c6:67:98:ab:19:96:55:ed

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\Release\pdb\FileAssociate.pdb

Imports

wininet

InternetCheckConnectionW

msvcp120

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
??1_Container_base12@std@@QAE@XZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_BADOFF@std@@3_JB
?uncaught_exception@std@@YA_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

msvcr120

memmove
_purecall
??3@YAXPAX@Z
_time64
??2@YAPAXI@Z
free
??_V@YAXPAX@Z
memcpy_s
atoi
_stricmp
_splitpath_s
_wfopen_s
malloc
rewind
fread
fwrite
ftell
fseek
fclose
_wtoi
_vsnwprintf
wcsrchr
realloc
wcschr
towlower
wcsstr
towupper
_errno
rand
srand
?terminate@@YAXXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABV01@@Z
_except1
strstr
_mktime64
_localtime64
_beginthreadex
calloc
strchr
memchr
tolower
toupper
isalnum
_wcsnicmp
wcsncpy
_wcsicmp
sprintf
_vswprintf_c_l
swscanf_s
wcstoul
modf
sprintf_s
_dtest
_CxxThrowException
__RTDynamicCast
strcspn
strrchr
_endthreadex
_msize
_localtime64_s
qsort
strncmp
memcpy
_wcsupr
round
memset
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
__CxxFrameHandler3
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
__clean_type_info_names_internal

2345miniui

?CreateCanvas@RCMiniUIRenderFactorySkia@RC@@UAEPAVRCMiniUICanvas@2@HH_N@Z
??0RCMiniUIRenderFactorySkia@RC@@QAE@XZ
??1RCMiniUIRenderFactorySkia@RC@@UAE@XZ
?Initialize@RCMiniUIRenderFactorySkia@RC@@UAE_NXZ
?CreateBitmap@RCMiniUIRenderFactorySkia@RC@@UAEPAVRCMiniUIBitmap@2@XZ
?GetGlobalStylePool@RCMiniUIManner@RC@@SAPAVRCMiniUIStylePoolInterface@2@XZ
?GetGlobalSkinPool@RCMiniUIManner@RC@@SAPAVRCMiniUISkinPoolInterface@2@XZ
?GetGolobalFontPool@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIFontPoolInterface@2@XZ
?Instance@RCMiniUIAppModule@RC@@SAAAV12@XZ
?Init@RCMiniUIAppModule@RC@@QAEXPAUHINSTANCE__@@@Z
?Term@RCMiniUIAppModule@RC@@QAEXXZ
?SetRenderFactory@RCMiniUIAppModule@RC@@QAE_NPAVRCMiniUIRenderFactory@2@@Z
?MoveWindow@RCMiniAtlWindow@@QAEHPBUtagRECT@@H@Z
?GetClientRect@RCMiniAtlWindow@@QBEHPAUtagRECT@@@Z
?ClientToScreen@RCMiniAtlWindow@@QBEHPAUtagRECT@@@Z
?GetLocalBounds@RCMiniUIView@RC@@QBE?AUtagRECT@@XZ
?width@RCMiniUIView@RC@@QBEHXZ
?GetViewByID@RCMiniUIView@RC@@QBEPAV12@H@Z
?SetUserData@RCMiniUIBoxPanel@RC@@QAEXPAX@Z
?GetUserData@RCMiniUIBoxPanel@RC@@QAEPAXXZ
?CreateViewByString@RCMiniUIObjectFactory@RC@@SAPAVRCMiniUIView@2@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?AddChildPanel@RCMiniUIListBox@RC@@QAEXPAVRCMiniUIBoxPanel@2@@Z
?RemoveAllChildPanel@RCMiniUIListBox@RC@@QAEXXZ
?GetChildPanelAt@RCMiniUIListBox@RC@@QAEPAVRCMiniUIBoxPanel@2@I@Z
?SetShowText@RCMiniUILimitStatic@RC@@QAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4RCLimitStaticType@12@H_N@Z
?SetWindowTimer@RCMiniUIWindow@RC@@QAEXII@Z
?KillWindowTimer@RCMiniUIWindow@RC@@QAEXI@Z
?SchedulePaint@RCMiniUIDialogView@RC@@QAEX_N@Z
?OnEsc@RCMiniUIDialogView@RC@@UAEXXZ
?OnEnter@RCMiniUIDialogView@RC@@UAEXXZ
?BeforeWindowDestroy@RCMiniUIDialogView@RC@@UAEXXZ
?OnFirstLayouted@RCMiniUIDialogView@RC@@UAEXXZ
?OnDropFiles@RCMiniUIDialogView@RC@@UAEXABV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@std@@@Z
?OnMouseEnterDialog@RCMiniUIDialogView@RC@@UAEXXZ
?OnMouseLeaveDialog@RCMiniUIDialogView@RC@@UAEXXZ
?OnAnimateShowEnded@RCMiniUIDialogView@RC@@UAEXXZ
?OnAnimateHideEnded@RCMiniUIDialogView@RC@@UAEXXZ
?OnDialogSkinChanged@RCMiniUIDialogView@RC@@UAEXXZ
?ProcessWindowMessage@RCMiniUISimpleWindow@RC@@UAEHPAUHWND__@@IIJAAJK@Z
?GetWindowProc@?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@UAEP6GJPAUHWND__@@IIJ@ZXZ
?OnFinalMessage@?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@UAEXPAUHWND__@@@Z
?ShowWindow@RCMiniAtlWindow@@QAEHH@Z
?SetIcon@RCMiniAtlWindow@@QAEPAUHICON__@@PAU2@H@Z
?ReflectNotifications@?$CWindowImplRoot@VRCMiniAtlWindow@@@ATL@@QAEJIIJAAH@Z
?SetText@RCMiniUIRichText@RC@@QAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetMinValue@RCMiniUIProgress@RC@@QAEIXZ
?GetMaxValue@RCMiniUIProgress@RC@@QAEIXZ
?SetValue@RCMiniUIProgress@RC@@QAEXI_N@Z
??0RCMiniUISimpleWindow@RC@@QAE@I@Z
??1RCMiniUISimpleWindow@RC@@UAE@XZ
?GetHWND@RCMiniUISimpleWindow@RC@@UAEPAUHWND__@@XZ
?ResetImage@RCMiniUIImageView@RC@@QAE_NPAVRCMiniUIBitmap@2@@Z
?GetGolobalPngPool@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIPngPoolInterface@2@XZ
?GetGolobalStringPool@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIStringPoolInterface@2@XZ
?GetRootView@RCMiniUIDialogView@RC@@UAEPAVRCMiniUIView@2@XZ
?GetToolTip@RCMiniUIDialogView@RC@@UAEAAV?$CToolTipCtrlT@VCWindow@ATL@@@WTL@@XZ
?WindowDefKeyPressed@RCMiniUIDialogView@RC@@UAE_NIII@Z
?OnMouseMoveInDialog@RCMiniUIDialogView@RC@@UAEXABVCPoint@WTL@@I@Z
?OnDialogTimer@RCMiniUIDialogView@RC@@UAE_NIPAX@Z
?GetViewByID@RCMiniUIDialogView@RC@@QBEPAVRCMiniUIView@2@H@Z
?DestroyWindow@?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@QAEHXZ
?GetWindowRect@RCMiniAtlWindow@@QBEHPAUtagRECT@@@Z
?IsWindow@RCMiniAtlWindow@@QBEHXZ
?CenterWindow@RCMiniAtlWindow@@QAEHPAUHWND__@@@Z
?Create@RCMiniUISimpleWindow@RC@@QAEPAUHWND__@@PAU3@KK@Z

kernel32

SetFileAttributesW
DeleteFileW
MoveFileW
GetCurrentDirectoryW
GetTempPathW
lstrlenW
CreateDirectoryW
FindClose
GetFullPathNameW
LoadLibraryA
GetFileAttributesW
GetDiskFreeSpaceW
CreateEventW
ResetEvent
SetEvent
ResumeThread
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
TryEnterCriticalSection
GetFileTime
ReadFile
SetFileTime
SetEndOfFile
GetFileSize
lstrcmpiW
GetSystemInfo
LockResource
GetVersionExW
LoadResource
FindResourceW
ReleaseMutex
OpenMutexW
CreateMutexW
GetExitCodeProcess
FindNextFileW
ExpandEnvironmentStringsW
GetFileAttributesExW
GetLongPathNameW
FindFirstFileW
MultiByteToWideChar
GetACP
WideCharToMultiByte
Sleep
MoveFileExW
QueryDosDeviceW
GetLogicalDriveStringsW
VirtualQuery
GetEnvironmentVariableW
WaitForMultipleObjects
WaitForSingleObject
GetPrivateProfileStringW
GetModuleHandleW
GetWindowsDirectoryW
GetSystemDirectoryW
LocalFree
GlobalFree
LoadLibraryExW
SwitchToThread
FormatMessageW
InterlockedExchangeAdd
SystemTimeToFileTime
DeleteFileA
AreFileApisANSI
GetTempPathA
GetVersionExA
OutputDebugStringA
GetDiskFreeSpaceA
FileTimeToSystemTime
GetSystemTime
GetFileSizeEx
QueryPerformanceCounter
CreateFileMappingA
LockFileEx
HeapSize
FlushFileBuffers
HeapValidate
HeapCreate
GetFileAttributesA
HeapDestroy
FormatMessageA
UnlockFileEx
WaitForSingleObjectEx
QueryPerformanceFrequency
InterlockedExchange
SetLastError
GlobalMemoryStatusEx
DeviceIoControl
EncodePointer
IsDebuggerPresent
LockFile
FlushViewOfFile
UnlockFile
InterlockedCompareExchange
HeapCompact
CreateFileA
HeapReAlloc
GetFullPathNameA
MulDiv
IsBadStringPtrW
InterlockedDecrement
InterlockedIncrement
IsBadWritePtr
IsBadReadPtr
GlobalUnlock
SizeofResource
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
OpenEventW
CreateProcessW
GlobalLock
FreeResource
GetTempFileNameW
InitializeCriticalSectionAndSpinCount
GetLastError
DecodePointer
DeleteCriticalSection
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
GetCurrentThreadId
CloseHandle
GetCurrentProcessId
GetTickCount
WriteFile
CreateFileW
SetFilePointer
OutputDebugStringW
GetModuleFileNameW
GetLocalTime
FreeLibrary
HeapAlloc
HeapFree
GetProcessHeap
OpenProcess
GlobalAlloc
LoadLibraryW
GetProcAddress

user32

LoadIconW
DefWindowProcW
SystemParametersInfoW
CopyRect
GetDesktopWindow
SetWindowPos
ShowWindow
MoveWindow
GetMessageW
TranslateMessage
PeekMessageW
PostThreadMessageW
DispatchMessageW
GetWindowLongW
GetClassNameW
GetMonitorInfoW
KillTimer
SendMessageW
IsWindow
GetWindowRect
MonitorFromPoint
SetForegroundWindow
WindowFromPoint
SetRectEmpty
IsRectEmpty
SetMenuItemInfoW
DestroyMenu
UpdateWindow
IsWindowVisible
InsertMenuW
CreateWindowExW
GetMenuItemCount
CreatePopupMenu
GetCursorPos
SetWindowLongW
AppendMenuW
LoadMenuW
InvalidateRect
IntersectRect
SetRect
RegisterClassExW
InflateRect
GetUpdateRect
PtInRect
BeginPaint
GetMenuItemInfoW
SetFocus
IsWindowEnabled
GetMenuStringW
LoadCursorW
GetFocus
DeleteMenu
GetSubMenu
GetDC
PostMessageW
IsIconic
IsMenu
ScreenToClient
RemovePropW
SetTimer
UpdateLayeredWindow
DestroyWindow
ClientToScreen
EndPaint
GetSystemMetrics
ReleaseCapture
GetCapture
WaitMessage
GetKeyState
SetCapture
EqualRect
MonitorFromRect
GetKeyNameTextW
MapVirtualKeyExW
GetKeyboardLayout
DrawIconEx
DrawTextW
FillRect
GetClientRect
ReleaseDC

advapi32

OpenProcessToken
GetTokenInformation
EqualSid
AllocateAndInitializeSid
FreeSid

ole32

CoTaskMemFree
RegisterDragDrop
RevokeDragDrop
CreateStreamOnHGlobal
OleUninitialize
OleInitialize

shell32

ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFolderPathW

comctl32

ord17
InitCommonControlsEx

gdi32

SetBkMode
CreateFontIndirectW
DeleteDC
SetTextColor
CreateDIBSection
GetTextExtentPointW
GetObjectW
CreatePen
CreateSolidBrush
ExtCreatePen
MoveToEx
BitBlt
LineTo
DeleteObject
SelectObject
SelectClipRgn
CreateCompatibleDC
CreateCompatibleBitmap
CreateRectRgn

gdiplus

GdiplusShutdown
GdipSetImageAttributesColorKeys
GdipCreateBitmapFromHBITMAP
GdipGetImageWidth
GdipFillRectangleI
GdipCreateFromHDC
GdipCreateHBITMAPFromBitmap
GdiplusStartup
GdipFree
GdipCreateBitmapFromStream
GdipAlloc
GdipDisposeImage
GdipCloneImage
GdipGetImageHeight
GdipLoadImageFromFile
GdipCreateBitmapFromResource
GdipDisposeImageAttributes
GdipDeleteBrush
GdipCloneBrush
GdipDrawImageRectRectI
GdipCreateBitmapFromScan0
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipSetSmoothingMode
GdipCreateSolidFill
GdipCreateImageAttributes

Exports

Exports

HandleFileAssoc

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 257KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SoftDataCenter.dll
.dll windows:5 windows x86 arch:x86

6409dccb438ce67ea2c56a35d8f26a01

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

b4:28:77:6e:13:f9:e1:f3:d7:ba:cd:1d:88:91:ad:aa:76:8e:74:91:b8:9d:b0:40:f3:dc:94:e2:79:8a:2d:94
Signer

Actual PE Digest

b4:28:77:6e:13:f9:e1:f3:d7:ba:cd:1d:88:91:ad:aa:76:8e:74:91:b8:9d:b0:40:f3:dc:94:e2:79:8a:2d:94

Digest Algorithm

sha256

PE Digest Matches

true

58:89:83:4a:fb:a6:d4:d1:92:05:cb:e1:e6:48:40:bb:8b:3b:ac:33
Signer

Actual PE Digest

58:89:83:4a:fb:a6:d4:d1:92:05:cb:e1:e6:48:40:bb:8b:3b:ac:33

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\SoftDataCenter.pdb

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

FreeLibrary
HeapAlloc
HeapFree
GetProcessHeap
GlobalAlloc
LoadLibraryW
GetProcAddress
GlobalFree
LocalFree
GetLogicalDriveStringsW
GetDiskFreeSpaceW
GetVolumeInformationW
GetSystemDirectoryW
GetWindowsDirectoryW
GetModuleHandleW
GetPrivateProfileStringW
GetFileTime
lstrcmpW
FindFirstFileW
CreateProcessW
FindClose
LocalAlloc
DeviceIoControl
FindNextFileW
WritePrivateProfileSectionW
WritePrivateProfileStringW
GetPrivateProfileIntW
CreateJobObjectW
CreateRemoteThread
IsProcessInJob
Sleep
AssignProcessToJobObject
GetVersionExW
GetExitCodeProcess
QueryInformationJobObject
VirtualAllocEx
GetModuleHandleA
TerminateJobObject
WriteProcessMemory
WaitForMultipleObjects
FileTimeToDosDateTime
FormatMessageW
SetFileAttributesW
DeleteFileW
RemoveDirectoryW
SetCurrentDirectoryW
MoveFileW
GetCurrentDirectoryW
GetTempPathW
lstrlenW
GetFileAttributesW
CopyFileW
CreateDirectoryW
OpenThread
SizeofResource
EnumResourceNamesW
DeleteFileA
AreFileApisANSI
ExpandEnvironmentStringsW
GetVersion
OpenProcess
GetCurrentProcess
GetDriveTypeW
GetEnvironmentVariableW
GetCurrentProcessId
GetCurrentThreadId
GetLocalTime
GetModuleFileNameW
OutputDebugStringW
SetFilePointer
CreateFileW
WriteFile
CloseHandle
CreateEventW
ResetEvent
InterlockedExchange
GetBinaryTypeW
FileTimeToSystemTime
SetEvent
WaitForSingleObject
DeleteCriticalSection
DecodePointer
GetLastError
RaiseException
InitializeCriticalSectionAndSpinCount
DosDateTimeToFileTime
SystemTimeToFileTime
FileTimeToLocalFileTime
GetTempPathA
GetVersionExA
OutputDebugStringA
GetDiskFreeSpaceA
CreateFileMappingA
LoadLibraryA
LockFileEx
HeapSize
FlushFileBuffers
HeapValidate
HeapCreate
GetFileAttributesA
HeapDestroy
FormatMessageA
UnlockFileEx
GetTickCount
WaitForSingleObjectEx
LockFile
UnlockFile
InterlockedCompareExchange
HeapCompact
CreateFileA
ResumeThread
GetSystemTime
HeapReAlloc
GetFullPathNameA
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
EncodePointer
LocalFileTimeToFileTime
CreateMutexW
OpenMutexW
ReleaseMutex
WideCharToMultiByte
SearchPathW
TryEnterCriticalSection
InitializeCriticalSection
LeaveCriticalSection
FlushViewOfFile
EnterCriticalSection
GetLongPathNameW
GetFileAttributesExW
GetShortPathNameW
InterlockedExchangeAdd
GetACP
MultiByteToWideChar
OpenEventW
LoadLibraryExW
FindResourceW
LoadResource
LockResource
GetSystemInfo
lstrcmpiW
QueryDosDeviceW
GetFileSize
SetEndOfFile
SetFileTime
ReadFile
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
OpenFileMappingW
TerminateProcess
GetFullPathNameW
GetTempFileNameW
MoveFileExW

user32

IsWindow
ReleaseDC
GetDesktopWindow
DestroyWindow
OpenDesktopW
IsWindowVisible
CloseDesktop
GetWindowThreadProcessId
FindWindowW
SendMessageW
GetActiveWindow
UnregisterClassW
EnumDesktopWindows
GetWindowTextLengthW
DestroyIcon
LookupIconIdFromDirectoryEx
GetIconInfo
CreateIconFromResourceEx
LoadImageW
PrivateExtractIconsW
GetDC
EnumChildWindows
GetWindowTextW

gdi32

DeleteObject
CreateFontIndirectW
SelectObject
GetTextExtentPointW
GetObjectW
GetTextExtentExPointW
GetStockObject

advapi32

AdjustTokenPrivileges
IsValidSid
SetEntriesInAclW
SetNamedSecurityInfoW
RegSetValueExW
RegEnumKeyExW
RegEnumValueW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
ConvertSidToStringSidW
GetLengthSid
FreeSid
AllocateAndInitializeSid
EqualSid
RegOpenKeyExW
LookupPrivilegeValueW
RegQueryValueExW
GetTokenInformation
OpenProcessToken
RegCloseKey
RegQueryInfoKeyW

shell32

SHGetPathFromIDListW
SHChangeNotify
SHGetDesktopFolder
SHFileOperationW
ShellExecuteExW
SHGetSpecialFolderLocation
SHGetFileInfoW
SHGetMalloc
ExtractIconExW
DuplicateIcon
ShellExecuteW
SHGetSpecialFolderPathW
ord727

ole32

CreateStreamOnHGlobal
CoTaskMemFree
CoInitialize
CoUninitialize
CoCreateInstance

msvcp120

?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXXZ
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?getloc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QBE?AVlocale@2@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?epptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?egptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?eback@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??7ios_base@std@@QBE_NXZ
?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?unshift@?$codecvt@_WDH@std@@QBEHAAHPAD1AAPAD@Z
?out@?$codecvt@_WDH@std@@QBEHAAHPB_W1AAPB_WPAD3AAPAD@Z
?in@?$codecvt@_WDH@std@@QBEHAAHPBD1AAPBDPA_W3AAPA_W@Z
?_Orphan_all@_Container_base12@std@@QAEXXZ
??1_Container_base12@std@@QAE@XZ
??0_Container_base12@std@@QAE@XZ
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?id@?$ctype@_W@std@@2V0locale@2@A
?id@?$collate@_W@std@@2V0locale@2@A
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
??_7facet@locale@std@@6B@
_Wcscoll
_Wcsxfrm
??_7_Facet_base@std@@6B@
?c_str@?$_Yarn@D@std@@QBEPBDXZ
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@_W@std@@QBEPB_WPA_WPB_W@Z
?tolower@?$ctype@_W@std@@QBE_W_W@Z
?is@?$ctype@_W@std@@QBE_NF_W@Z
??1facet@locale@std@@MAE@XZ
??0facet@locale@std@@IAE@I@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
??1_Facet_base@std@@UAE@XZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@PBD@Z
?_Xruntime_error@std@@YAXPBD@Z
?uncaught_exception@std@@YA_NXZ
?_Makeloc@_Locimp@locale@std@@CAPAV123@ABV_Locinfo@3@HPAV123@PBV23@@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@_N@Z
?global@locale@std@@SA?AV12@ABV12@@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPAPA_W0PAH001@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?flags@ios_base@std@@QBEHXZ
?good@ios_base@std@@QBE_NXZ
??Bios_base@std@@QBE_NXZ
?_Getname@_Locinfo@std@@QBEPBDXZ
??0_Locinfo@std@@QAE@HPBD@Z
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z
??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@
?id@?$codecvt@_WDH@std@@2V0locale@2@A
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
??Bid@locale@std@@QAEIXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
?rdstate@ios_base@std@@QBEHXZ
?fail@ios_base@std@@QBE_NXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?_BADOFF@std@@3_JB
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
?_Orphan_all@_Container_base0@std@@QAEXXZ
??0id@locale@std@@QAE@I@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ

msvcr120

atof
rand
srand
_time64
wcschr
towlower
wcsstr
towupper
_beginthreadex
_errno
_mktime64
_localtime64
_wcsnicmp
calloc
memchr
tolower
toupper
?terminate@@YAXXZ
sscanf
_vswprintf_c_l
swscanf_s
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__CxxFrameHandler3
_except_handler4_common
__clean_type_info_names_internal
strstr
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
strchr
_ui64tow_s
_wtoi64
iswxdigit
_vsnwprintf
fopen
_wtoi
_splitpath_s
_stricmp
fseek
ftell
fread
rewind
_wfopen_s
realloc
wcstol
malloc
_wtof
??_V@YAXPAX@Z
fgetwc
ungetwc
fputwc
atoi
fclose
fwrite
memcpy_s
_lock_file
setvbuf
fsetpos
fgetc
fflush
_fseeki64
fgetpos
ungetc
_unlock_file
??0exception@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
fputc
free
??2@YAPAXI@Z
_hypot
??3@YAXPAX@Z
_purecall
memmove
_except1
_recalloc
memset
memmove_s
strncmp
qsort
_localtime64_s
_msize
_endthreadex
strrchr
strcspn
memcpy
wcsrchr
_CxxThrowException
__RTDynamicCast
_libm_sse2_pow_precise
_libm_sse2_sqrt_precise
sprintf

shlwapi

PathRemoveFileSpecW
SHDeleteKeyW

wininet

InternetGetConnectedState

iphlpapi

GetAdaptersInfo

gdiplus

GdipDisposeImage
GdipAlloc
GdipCreateBitmapFromStream
GdipCreateHICONFromBitmap
GdipCloneImage
GdipFree
GdipCreateBitmapFromStreamICM

oleaut32

VariantClear
SysAllocString

Exports

Exports

CreateObject
ReleaseObject

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 308KB - Virtual size: 307KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SoftMgr.dll
.dll windows:5 windows x86 arch:x86

40da8d6cf23b70364ec64557dd602f21

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:2a:31:4e:f7:7d:12:87:a6:39:1f:b9:a4:82:90:de:8e:d2:f0:c5:d5:8e:ab:c0:dc:64:94:43:e7:25:f6:0f
Signer

Actual PE Digest

0d:2a:31:4e:f7:7d:12:87:a6:39:1f:b9:a4:82:90:de:8e:d2:f0:c5:d5:8e:ab:c0:dc:64:94:43:e7:25:f6:0f

Digest Algorithm

sha256

PE Digest Matches

true

03:1f:aa:48:8f:0b:50:d2:43:46:9a:84:cc:37:dc:8d:e7:dd:e3:b2
Signer

Actual PE Digest

03:1f:aa:48:8f:0b:50:d2:43:46:9a:84:cc:37:dc:8d:e7:dd:e3:b2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\SoftMgr.pdb

Imports

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

ws2_32

inet_addr
WSACleanup
WSAStartup
WSCDeinstallProvider
gethostbyname

mprapi

MprConfigServerConnect
MprConfigGetFriendlyName

iphlpapi

GetIfEntry
GetAdaptersInfo
GetInterfaceInfo
GetBestInterface

kernel32

LockResource
InitializeCriticalSection
SetEvent
ResetEvent
LoadResource
FindResourceW
CreateEventW
InitializeCriticalSectionAndSpinCount
RaiseException
GetLastError
DecodePointer
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
GetCurrentProcess
GetProcessTimes
WaitForMultipleObjects
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetDriveTypeW
CreateFileA
CloseHandle
LeaveCriticalSection
FlushInstructionCache
SetLastError
EnterCriticalSection
FreeLibrary
CreateProcessW
LoadLibraryW
GetProcAddress
LocalAlloc
TryEnterCriticalSection
GetEnvironmentVariableW
GetSystemDirectoryW
GetModuleHandleW
MultiByteToWideChar
lstrcmpiW
OpenProcess
CreateFileW
GetVersion
WideCharToMultiByte
SetFilePointer
OutputDebugStringW
WriteFile
GetModuleFileNameW
GetLocalTime
GetVersionExW
SwitchToThread
OpenThread
GetLogicalDriveStringsW
GetDiskFreeSpaceW
GetVolumeInformationW
FileTimeToSystemTime
HeapAlloc
HeapFree
GetProcessHeap
GlobalAlloc
GlobalFree
FindFirstFileW
WaitForSingleObject
FindClose
DeviceIoControl
FindNextFileW
GetPrivateProfileStringW
Sleep
lstrcpyW
CreateJobObjectW
CreateRemoteThread
IsProcessInJob
AssignProcessToJobObject
GetExitCodeProcess
QueryInformationJobObject
VirtualAllocEx
GetModuleHandleA
TerminateJobObject
WriteProcessMemory
ResumeThread
lstrcmpW
GetWindowsDirectoryW
WritePrivateProfileSectionW
WritePrivateProfileStringW
GetPrivateProfileIntW
InterlockedExchange
GlobalLock
MulDiv
lstrlenW
GlobalUnlock
MoveFileW
DeleteFileW
LoadLibraryA
GetFileAttributesW
InterlockedExchangeAdd
GetShortPathNameW
GetFileAttributesExW
GetLongPathNameW
LocalFree
SearchPathW
EnumResourceNamesW
IsBadStringPtrW
IsBadWritePtr
IsBadReadPtr
SizeofResource
FreeResource
VirtualQuery
GetSystemInfo
LoadLibraryExW
CreateMutexW
OpenMutexW
ReleaseMutex
lstrcatW
QueryDosDeviceW
GetFileSize
SetEndOfFile
SetFileTime
ExpandEnvironmentStringsW
OpenEventW
ReadFile
GetFileTime
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
OpenFileMappingW
TerminateProcess
GetFullPathNameW
GetTempFileNameW
MoveFileExW
CreateDirectoryW
CopyFileW
GetTempPathW
GetCurrentDirectoryW
SetCurrentDirectoryW
RemoveDirectoryW
SetFileAttributesW
GetFileSizeEx
FileTimeToDosDateTime
DosDateTimeToFileTime
SystemTimeToFileTime
FileTimeToLocalFileTime
GetSystemTime
LocalFileTimeToFileTime
GetComputerNameW
FormatMessageW
GlobalMemoryStatusEx
IsDebuggerPresent
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
IsProcessorFeaturePresent
VirtualAlloc
VirtualFree
EncodePointer
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetThreadContext
HeapReAlloc
SetThreadContext
InterlockedCompareExchange
Thread32First
HeapDestroy
HeapCreate
Thread32Next
VirtualProtect
CreateToolhelp32Snapshot
SuspendThread
GetACP

user32

GetAsyncKeyState
LoadIconW
FindWindowW
GetWindowLongW
SetForegroundWindow
GetWindowRect
SetWindowPos
ShowWindow
DestroyWindow
GetWindow
EnableWindow
GetClassNameW
GetWindowTextW
GetKeyState
DefWindowProcW
CallWindowProcW
PrivateExtractIconsW
LoadImageW
CreateIconFromResourceEx
GetIconInfo
LookupIconIdFromDirectoryEx
MonitorFromPoint
DrawIconEx
GetKeyboardLayout
MapVirtualKeyExW
GetKeyNameTextW
MonitorFromRect
EqualRect
WaitMessage
GetCapture
RemovePropW
IsMenu
GetSubMenu
DeleteMenu
GetMenuStringW
IsWindowEnabled
GetMenuItemInfoW
SetPropW
GetActiveWindow
FindWindowExW
SendMessageW
GetWindowThreadProcessId
SetFocus
PtInRect
OffsetRect
GetCursorPos
CopyRect
MoveWindow
GetParent
PostMessageW
IsWindow
UnregisterClassW
WindowFromPoint
ClientToScreen
DestroyAcceleratorTable
PostQuitMessage
CharNextW
FillRect
IsChild
SetCapture
InvalidateRgn
CreateAcceleratorTableW
GetDlgItem
GetSysColor
ReleaseCapture
GetMessageW
TranslateMessage
PeekMessageW
PostThreadMessageW
DispatchMessageW
EnumDesktopWindows
EnumChildWindows
OpenDesktopW
CloseDesktop
RegisterWindowMessageW
DestroyIcon
IsIconic
AttachThreadInput
GetForegroundWindow
BringWindowToTop
SystemParametersInfoW
MonitorFromWindow
GetDesktopWindow
AllowSetForegroundWindow
SwitchToThisWindow
MapWindowPoints
GetMonitorInfoW
SetRectEmpty
GetWindowTextLengthW
UpdateWindow
GetDlgCtrlID
SetWindowTextW
SetCursor
DrawTextW
RedrawWindow
FrameRect
GetFocus
GetClassLongW
InvalidateRect
GetSystemMetrics
IsWindowVisible
IsRectEmpty
CallNextHookEx
SetWindowsHookExW
UnhookWindowsHookEx
ScreenToClient
EndPaint
UpdateLayeredWindow
GetWindowDC
LoadCursorW
BeginPaint
GetClassInfoExW
GetDC
RegisterClassExW
ReleaseDC
CreateWindowExW
SetTimer
KillTimer
GetClientRect
SetWindowLongW
SetMenuItemInfoW
DestroyMenu
InsertMenuW
GetMenuItemCount
CreatePopupMenu
AppendMenuW
LoadMenuW
IntersectRect
SetRect
InflateRect
GetUpdateRect

gdi32

CreateRectRgn
LineTo
MoveToEx
ExtCreatePen
Rectangle
CreateDIBSection
GetTextMetricsW
SelectClipRgn
GetTextExtentExPointW
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
GetDeviceCaps
GetTextExtentPointW
GetObjectW
CreateFontIndirectW
GetStockObject
BitBlt
SetViewportOrgEx
SetTextColor
SetBkColor
SetBkMode
ExtTextOutW
CreatePen
CreateSolidBrush
DeleteObject
SelectObject

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumValueW
RegSetValueExW
SetNamedSecurityInfoW
SetEntriesInAclW
IsValidSid
ConvertSidToStringSidW
RegQueryValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
OpenProcessToken
GetTokenInformation
LookupPrivilegeValueW
AdjustTokenPrivileges
EqualSid
AllocateAndInitializeSid
FreeSid
GetLengthSid

shell32

SHGetFileInfoW
SHGetMalloc
ExtractIconExW
Shell_NotifyIconW
DuplicateIcon
SHGetSpecialFolderPathA
SHGetFolderPathW
ord727
SHGetSpecialFolderLocation
ShellExecuteW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetPathFromIDListA
SHChangeNotify
SHGetDesktopFolder
SHFileOperationW
ShellExecuteExW
SHGetSpecialFolderPathW

ole32

OleLockRunning
CLSIDFromProgID
StringFromGUID2
OleInitialize
OleUninitialize
CoGetClassObject
CoTaskMemAlloc
CreateStreamOnHGlobal
CoTaskMemFree
CoInitialize
CoUninitialize
CLSIDFromString
StringFromCLSID
CoInitializeSecurity
CoCreateInstance
RevokeDragDrop
RegisterDragDrop

oleaut32

VariantChangeType
SysAllocString
VariantClear
VariantInit
SysAllocStringByteLen
SysStringByteLen
DispCallFunc
SysStringLen
LoadTypeLi
SysAllocStringLen
CreateErrorInfo
SetErrorInfo
GetErrorInfo
LoadRegTypeLi
OleCreateFontIndirect
SysFreeString

msvcp120

??Bios_base@std@@QBE_NXZ
?rdstate@ios_base@std@@QBEHXZ
?good@ios_base@std@@QBE_NXZ
?fail@ios_base@std@@QBE_NXZ
?flags@ios_base@std@@QBEHXZ
?width@ios_base@std@@QBE_JXZ
?width@ios_base@std@@QAE_J_J@Z
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
_Nan
_Inf
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??7ios_base@std@@QBE_NXZ
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?setf@ios_base@std@@QAEHHH@Z
?setf@ios_base@std@@QAEHH@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?global@locale@std@@SA?AV12@ABV12@@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@_N@Z
?_Makeloc@_Locimp@locale@std@@CAPAV123@ABV_Locinfo@3@HPAV123@PBV23@@Z
?uncaught_exception@std@@YA_NXZ
?_Xruntime_error@std@@YAXPBD@Z
?_BADOFF@std@@3_JB
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??0_Locinfo@std@@QAE@PBD@Z
??1_Locinfo@std@@QAE@XZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
??1_Facet_base@std@@UAE@XZ
??Bid@locale@std@@QAEIXZ
?_Incref@facet@locale@std@@UAEXXZ
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
??0facet@locale@std@@IAE@I@Z
??1facet@locale@std@@MAE@XZ
?is@?$ctype@_W@std@@QBE_NF_W@Z
?tolower@?$ctype@_W@std@@QBE_W_W@Z
?tolower@?$ctype@_W@std@@QBEPB_WPA_WPB_W@Z
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?c_str@?$_Yarn@D@std@@QBEPBDXZ
??_7_Facet_base@std@@6B@
_Wcsxfrm
_Wcscoll
??_7facet@locale@std@@6B@
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?id@?$collate@_W@std@@2V0locale@2@A
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?id@?$ctype@_W@std@@2V0locale@2@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
??0_Container_base12@std@@QAE@XZ
??1_Container_base12@std@@QAE@XZ
?_Orphan_all@_Container_base12@std@@QAEXXZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
??0id@locale@std@@QAE@I@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?_Getname@_Locinfo@std@@QBEPBDXZ
??0_Locinfo@std@@QAE@HPBD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

shlwapi

PathFileExistsW
PathAppendW
StrStrIW
StrToIntW
SHDeleteKeyW
PathRemoveFileSpecW
StrCpyNW
PathIsNetworkPathW
PathIsDirectoryW

comctl32

_TrackMouseEvent

msvcr120

__clean_type_info_names_internal
_except_handler4_common
__CxxFrameHandler3
__crtTerminateProcess
__crtUnhandledException
_crt_debugger_hook
_initterm_e
_initterm
_malloc_crt
_amsg_exit
__CppXcptFilter
??1type_info@@UAE@XZ
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
memmove_s
wcstoul
swscanf_s
sscanf
isalnum
wcsrchr
sprintf
_localtime64_s
_vswprintf_c_l
wcsncpy
calloc
_wcsnicmp
_lock_file
setvbuf
fsetpos
fgetc
fflush
_fseeki64
fgetpos
_except1
_unlock_file
fputc
toupper
tolower
memchr
strstr
_localtime64
_mktime64
_beginthreadex
?terminate@@YAXXZ
_time64
srand
rand
_errno
towupper
towlower
wcschr
fwrite
rewind
_wfopen_s
setlocale
fputws
_wfopen
ftell
memset
_CxxThrowException
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
memcpy_s
strchr
??0exception@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
_ui64tow_s
_wtoi64
atof
fclose
fseek
iswxdigit
_vsnwprintf
fread
fopen
_splitpath_s
_stricmp
atoi
realloc
wcstol
malloc
_wtof
wcsstr
_wcsicmp
_itow
_wtoi
_recalloc
swprintf_s
??2@YAPAXI@Z
_hypot
_purecall
??_V@YAXPAX@Z
free
memmove
??3@YAXPAX@Z
abort
modf
sprintf_s
__iob_func
localeconv
fprintf
_dtest
strpbrk
round
_wcsupr
memcpy
__RTDynamicCast
_libm_sse2_pow_precise
_libm_sse2_sqrt_precise
ungetc

2345miniui

?OnBlur@RCMiniUIBoxPanel@RC@@UAEXXZ
?NeedDelete@RCMiniUIBoxPanel@RC@@UAE_NXZ
?NotifyEnterExitChild@RCMiniUIBoxPanel@RC@@MAE_NPAVRCMiniUIView@2@0@Z
?GetState@RCMiniUIButton@RC@@QBE?AW4ButtonState@12@XZ
?GetButtonListener@RCMiniUIButton@RC@@QBEPAVRCMiniUIButtonListener@2@XZ
?Load@RCMiniUIButton@RC@@UAE_NABVRCXmlNode@2@@Z
?OnMousePressed@RCMiniUIButton@RC@@UAE_NIABUtagPOINT@@_N@Z
?OnMouseReleased@RCMiniUIButton@RC@@UAE_NIABUtagPOINT@@_N@Z
?OnMouseEntered@RCMiniUIButton@RC@@UAE_NABUtagPOINT@@@Z
?OnMouseExited@RCMiniUIButton@RC@@UAE_NABUtagPOINT@@@Z
?SetCurSel@RCMiniUITabCtrl@RC@@QAE_NH@Z
?SetChecked@RCMiniUiImgChkBox@RC@@QAEX_N@Z
?IsItemEnable@RCMiniUIDialogView@RC@@QAE_NI@Z
?SetShowText@RCMiniUILimitStatic@RC@@QAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@W4RCLimitStaticType@12@H_N@Z
?GetItemText@RCMiniUIDialogView@RC@@QAE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@I@Z
?EnableItem@RCMiniUIDialogView@RC@@QAE_NI_N@Z
?AddChildView@RCMiniUIView@RC@@QAEXPAV12@@Z
?CreateViewByString@RCMiniUIObjectFactory@RC@@SAPAVRCMiniUIView@2@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?ProcessWindowMessage@RCMiniUIFrameWindow@RC@@UAEHPAUHWND__@@IIJAAJK@Z
??BRCMiniAtlWindow@@QBEPAUHWND__@@XZ
?PostMessageW@RCMiniAtlWindow@@QAEHIIJ@Z
?SetWindowTextW@RCMiniAtlWindow@@QAEHPB_W@Z
?IsIconic@RCMiniAtlWindow@@QBEHXZ
?SetTimer@RCMiniAtlWindow@@QAEIIIP6GXPAUHWND__@@IIK@Z@Z
?KillTimer@RCMiniAtlWindow@@QAEHI@Z
?GetDlgItem@RCMiniAtlWindow@@QBE?AV1@H@Z
?SetIcon@RCMiniAtlWindow@@QAEPAUHICON__@@PAU2@H@Z
?CenterWindow@RCMiniAtlWindow@@QAEHPAUHWND__@@@Z
?GetCurSel@RCMiniUITabCtrl@RC@@QAEHXZ
?DoModal@RCMiniUIDialog@RC@@QAEHPAUHWND__@@J@Z
?GetGlobalManager@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIResourceManagerInterface@2@XZ
?GetGolobalStringPool@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIStringPoolInterface@2@XZ
??0RCMiniUIFrameWindow@RC@@QAE@I@Z
??1RCMiniUIFrameWindow@RC@@UAE@XZ
?GetHWND@RCMiniUIFrameWindow@RC@@UAEPAUHWND__@@XZ
?PreTranslateMessage@RCMiniUIFrameWindow@RC@@UAEHPAUtagMSG@@@Z
?OnIdle@RCMiniUIFrameWindow@RC@@UAEHXZ
?BeforeWindowDestroy@RCMiniUIDialogView@RC@@UAEXXZ
?ProcessWindowMessage@RCMiniUISimpleWindow@RC@@UAEHPAUHWND__@@IIJAAJK@Z
?GetWindowProc@?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@UAEP6GJPAUHWND__@@IIJ@ZXZ
?OnFinalMessage@?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@UAEXPAUHWND__@@@Z
?GetWindowRect@RCMiniAtlWindow@@QBEHPAUtagRECT@@@Z
?ShowWindow@RCMiniAtlWindow@@QAEHH@Z
?IsWindowVisible@RCMiniAtlWindow@@QBEHXZ
?IsWindow@RCMiniAtlWindow@@QBEHXZ
?ShowWindowAsync@RCMiniAtlWindow@@QAEHH@Z
?GetScreenBounds@RCMiniUIView@RC@@QBE?AUtagRECT@@XZ
?GetWidgetWindow@RCMiniUIView@RC@@QBEPAVRCMiniUIWindow@2@XZ
??0RCMiniUISimpleWindow@RC@@QAE@I@Z
??1RCMiniUISimpleWindow@RC@@UAE@XZ
?GetHWND@RCMiniUISimpleWindow@RC@@UAEPAUHWND__@@XZ
?WindowDefKeyPressed@RCMiniUIDialogView@RC@@UAE_NIII@Z
?IsChecked@RCMiniUiImgChkBox@RC@@QAE_NXZ
?GetCheckedID@RCMiniUIRadioGroup@RC@@QAEII@Z
?GetGolobalRadioGroup@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIRadioGroup@2@XZ
?OnEsc@RCMiniUIDialogView@RC@@UAEXXZ
?OnEnter@RCMiniUIDialogView@RC@@UAEXXZ
?OnFirstLayouted@RCMiniUIDialogView@RC@@UAEXXZ
?OnDropFiles@RCMiniUIDialogView@RC@@UAEXABV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@std@@@Z
?OnMouseEnterDialog@RCMiniUIDialogView@RC@@UAEXXZ
?OnMouseLeaveDialog@RCMiniUIDialogView@RC@@UAEXXZ
?OnAnimateShowEnded@RCMiniUIDialogView@RC@@UAEXXZ
?OnAnimateHideEnded@RCMiniUIDialogView@RC@@UAEXXZ
?OnDialogSkinChanged@RCMiniUIDialogView@RC@@UAEXXZ
?ProcessWindowMessage@RCMiniUIDialog@RC@@UAEHPAUHWND__@@IIJAAJK@Z
?EndDialog@?$CDialogImpl@VRCMiniUIDialog@RC@@VRCMiniAtlWindow@@@ATL@@QAEHH@Z
?GetDialogProc@?$CDialogImplBaseT@VRCMiniAtlWindow@@@ATL@@UAEP6GHPAUHWND__@@IIJ@ZXZ
?OnFinalMessage@?$CDialogImplBaseT@VRCMiniAtlWindow@@@ATL@@UAEXPAUHWND__@@@Z
?ReflectNotifications@?$CWindowImplRoot@VRCMiniAtlWindow@@@ATL@@QAEJIIJAAH@Z
?SetText@RCMiniUIRichText@RC@@QAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
??0RCMiniUIDialog@RC@@QAE@I@Z
??1RCMiniUIDialog@RC@@UAE@XZ
?GetHWND@RCMiniUIDialog@RC@@UAEPAUHWND__@@XZ
?WindowDefKeyPressed@RCMiniUIDialog@RC@@EAE_NIII@Z
?GetRootView@RCMiniUIDialogView@RC@@UAEPAVRCMiniUIView@2@XZ
?GetToolTip@RCMiniUIDialogView@RC@@UAEAAV?$CToolTipCtrlT@VCWindow@ATL@@@WTL@@XZ
?OnMouseMoveInDialog@RCMiniUIDialogView@RC@@UAEXABVCPoint@WTL@@I@Z
?OnDialogTimer@RCMiniUIDialogView@RC@@UAE_NIPAX@Z
?GetViewByID@RCMiniUIDialogView@RC@@QBEPAVRCMiniUIView@2@H@Z
?DestroyWindow@?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@QAEHXZ
?Create@RCMiniUISimpleWindow@RC@@QAEPAUHWND__@@PAU3@KK@Z
?RunFrameWindow@RCMiniUIFrameWindow@RC@@QAEXH@Z
?GetStyle@RCMiniUIView@RC@@QAEAAVRCMiniUIStyle@2@XZ
?ResetImageFromFile@RCMiniUIImageView@RC@@QAE_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?BreakStatusToLink@RCMiniUiImgChkBox@RC@@QAEXXZ
?AddStatusFromLinker@RCMiniUiImgChkBox@RC@@QAEXPAV12@@Z
?IsHalfChecked@RCMiniUiImgChkBox@RC@@QAE_NXZ
?SetButtonListener@RCMiniUIButton@RC@@QAEXPAVRCMiniUIButtonListener@2@@Z
?GetChildPanelCount@RCMiniUIListBox@RC@@QAEHXZ
?GetChildPanelAt@RCMiniUIListBox@RC@@QAEPAVRCMiniUIBoxPanel@2@I@Z
?AddChildPanel@RCMiniUIListBox@RC@@QAEXPAVRCMiniUIBoxPanel@2@@Z
?GetUserData@RCMiniUIBoxPanel@RC@@QAEPAXXZ
?SetUserData@RCMiniUIBoxPanel@RC@@QAEXPAX@Z
?SchedulePaintListBox@RCMiniUIBoxPanel@RC@@QAEXXZ
?SetPanelVisible@RCMiniUIBoxPanel@RC@@QAEX_N@Z
?GetPanelVisible@RCMiniUIBoxPanel@RC@@QAE_NXZ
?GetParent@RCMiniUIView@RC@@QBEPAV12@XZ
?GetChildViewAt@RCMiniUIView@RC@@QBEPAV12@I@Z
??_7RCMiniUIButtonListener@RC@@6B@
??0RCMiniUIButtonListener@RC@@QAE@XZ
??1RCMiniUIButtonListener@RC@@MAE@XZ
?ButtonDbClick@RCMiniUIButtonListener@RC@@UAEXPAVRCMiniUIButton@2@@Z
?HitTest@RCMiniUIButton@RC@@UBE_NABUtagPOINT@@@Z
?Paint@RCMiniUIButton@RC@@UAEXPAVRCMiniUICanvas@2@@Z
?OnKeyPressed@RCMiniUIButton@RC@@UAE_NIII@Z
?SetEnabled@RCMiniUIButton@RC@@UAEX_N@Z
?GetDrawFontAttr@RCMiniUIButton@RC@@UAE?AVRCMiniUIStringAttribute@2@XZ
?ButtonPressing@RCMiniUIButtonListener@RC@@UAEXPAVRCMiniUIButton@2@@Z
?SetItemVisible@RCMiniUIDialogView@RC@@QAE_NI_N@Z
?SetItemText@RCMiniUIDialogView@RC@@QAE_NIABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?Stop@RCMiniUIGifView@RC@@QAEXXZ
?Play@RCMiniUIGifView@RC@@QAEXXZ
?AddChildNode@RCMiniUITreeNode@RC@@QAEXPAV12@@Z
?GetChecked@RCMiniUITreeNode@RC@@QAEHXZ
?SetChecked@RCMiniUITreeNode@RC@@QAEX_N@Z
?SetHasChild@RCMiniUITreeNode@RC@@QAEX_N@Z
?SetExpand@RCMiniUITreeNode@RC@@QAEX_N@Z
?GetContentText@RCMiniUITreeNode@RC@@QAE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?CreateInstance@RCMiniUITreeNode@RC@@SAPAV12@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@4@@Z
?SetObserver@RCMiniUITreeView@RC@@QAEXPAVRCMiniUITreeViewObserver@2@@Z
?AddChildNode@RCMiniUITreeView@RC@@QAEXPAVRCMiniUITreeNode@2@@Z
?GetDC@RCMiniAtlWindow@@QAEPAUHDC__@@XZ
??_7RCMiniUITreeViewObserver@RC@@6B@
??0RCMiniUITreeViewObserver@RC@@QAE@XZ
?OnTreeNodeSelect@RCMiniUITreeViewObserver@RC@@UAEXPAVRCMiniUITreeNode@2@@Z
?ValueBetween@RCMiniUITween@RC@@SA?AUtagRECT@@NABU3@0@Z
?RemoveAllChildView@RCMiniUIView@RC@@QAEXXZ
?GetViewByID@RCMiniUIView@RC@@QBEPAV12@H@Z
?GetBounds@RCMiniUIView@RC@@QBE?AUtagRECT@@XZ
?MoveWindow@RCMiniUIView@RC@@QAEXABUtagRECT@@_N@Z
?SetSubId@RCMiniUIImageView@RC@@QAEXH@Z
?SetSelect@RCMiniUIButton@RC@@QAEX_N@Z
?IsSelect@RCMiniUIButton@RC@@QAE_NXZ
?ScrollToPanel@RCMiniUIListBox@RC@@QAEXPAVRCMiniUIBoxPanel@2@@Z
?AppendTextAttribute@RCMiniUIRichText@RC@@QAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@HK@Z
?SetTextAttribute@RCMiniUIRichText@RC@@QAE_NIABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@HK@Z
?GetTextAttribute@RCMiniUIRichText@RC@@QAE_NIAAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AAHAAK@Z
?AddChildViewToPanel@RCMiniUIBoxPanel@RC@@QAEXPAVRCMiniUIView@2@@Z
?ConvertPointToView@RCMiniUIView@RC@@SAXPBV12@0PAVCPoint@WTL@@@Z
?IsFocused@RCMiniUIView@RC@@QAE_NXZ
?GetLocalBounds@RCMiniUIView@RC@@QBE?AUtagRECT@@XZ
?GetID@RCMiniUIView@RC@@QBEHXZ
?SetID@RCMiniUIView@RC@@QAEXH@Z
?GetFontName@RCMiniUIRichTextAttr@RC@@QBEABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
??1RCMiniUIRichTextAttr@RC@@QAE@XZ
??0RCMiniUIRichTextAttr@RC@@QAE@XZ
?GetTextDetailAttribute@RCMiniUIRichText@RC@@QAE_NIAAVRCMiniUIRichTextAttr@2@@Z
?ScrollToPanel@RCMiniUIListBox@RC@@QAEXI_N@Z
?RemoveAllChildPanel@RCMiniUIListBox@RC@@QAEXXZ
?ConvertPointFromWindow@RCMiniUIView@RC@@SAXPBV12@PAVCPoint@WTL@@@Z
?IsPlaying@RCMiniUIGifView@RC@@QAE_NXZ
?RemoveChildPanel@RCMiniUIListBox@RC@@QAEXPAVRCMiniUIBoxPanel@2@_N@Z
?ConvertPointToScreen@RCMiniUIView@RC@@SAXPBV12@PAVCPoint@WTL@@@Z
?InsertTextAttribute@RCMiniUIRichText@RC@@QAEXIABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@HK@Z
?ResetSkin@RCMiniUIImageView@RC@@QAE_NPAUHICON__@@@Z
?SetTextColor@RCMiniUITextView@RC@@QAEXW4TextColorType@12@K@Z
?ButtonPressed@RCMiniUIButtonListener@RC@@UAEXPAVRCMiniUIButton@2@@Z
?GetFontName@RCMiniUIStringAttribute@RC@@QBEABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?CalculateYOffset@RCMiniUIBoxPanel@RC@@QAEHXZ
?GetParentListBox@RCMiniUIBoxPanel@RC@@QAEPAVRCMiniUIListBox@2@XZ
?SetExpand@RCMiniUIBoxPanel@RC@@QAEX_N@Z
?GetExpand@RCMiniUIBoxPanel@RC@@QAE_NXZ
?GetAllHeight@RCMiniUIBoxPanel@RC@@QAEHXZ
?SetOnePanelHeight@RCMiniUIBoxPanel@RC@@QAEXI@Z
?GetClientRectPos@RCMiniUIScrollView@RC@@QBE?AVCPoint@WTL@@XZ
?SetClientRectPos@RCMiniUIScrollView@RC@@QAE?AVCPoint@WTL@@ABV34@_N@Z
?CalcFitTextLen@RCMiniUITextView@RC@@SAHABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@ABVRCMiniUIStyle@2@IAAUtagSIZE@@@Z
?SetNeedLayout@RCMiniUIView@RC@@QAEX_N@Z
?height@RCMiniUIView@RC@@QBEHXZ
?SetItemStringAttribute@RCMiniUIDialogView@RC@@QAE_NIABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@0@Z
?GetWindow@RCMiniAtlWindow@@QBE?AV1@I@Z
?SetValue@RCMiniUIProgress@RC@@QAEXI_N@Z
?AddChildPanel@RCMiniUIListBox@RC@@QAEXHPAVRCMiniUIBoxPanel@2@@Z
?AddChildViewToPanel@RCMiniUIBoxPanel@RC@@QAEXHPAVRCMiniUIView@2@@Z
?GetGlobalStylePool@RCMiniUIManner@RC@@SAPAVRCMiniUIStylePoolInterface@2@XZ
?GetMaxValue@RCMiniUIProgress@RC@@QAEIXZ
?GetMinValue@RCMiniUIProgress@RC@@QAEIXZ
??1RCMiniUIStyle@RC@@UAE@XZ
??4RCMiniUIStyle@RC@@QAEAAV01@ABV01@@Z
??0RCMiniUIStyle@RC@@QAE@XZ
?HexStringToColor@RCMiniUIObject@RC@@SAKPBD@Z
?SetStyle@RCMiniUIView@RC@@QAEXABVRCMiniUIStyle@2@@Z
??0TMiniUIObjClassInit@RC@@QAE@PAURCMiniUIRuntimeClass@1@@Z
??1RCMiniUIRuntimeClass@RC@@QAE@XZ
??0RCMiniUIRuntimeClass@RC@@QAE@PBDP6APAVRCMiniUIObject@1@XZPAU01@@Z
?CalcSize@RCMiniUIButton@RC@@MAE?AUtagSIZE@@XZ
?GetDrawTexColor@RCMiniUIButton@RC@@UAEKXZ
?GetDrawBgColor@RCMiniUIButton@RC@@UAEKXZ
?OnFocus@RCMiniUIBoxPanel@RC@@UAEXW4RCMiniUIFocusChangeReason@2@@Z
?SetAttribute@RCMiniUIBoxPanel@RC@@UAEJPBD0H@Z
?Layout@RCMiniUIBoxPanel@RC@@UAEXXZ
?LoadChilds@RCMiniUIBoxPanel@RC@@UAE_NABVRCXmlNode@2@@Z
??1RCMiniUIBoxPanel@RC@@UAE@XZ
??0RCMiniUIBoxPanel@RC@@QAE@XZ
?GetTooltipMaxWidth@RCMiniUITextView@RC@@UAEHXZ
?SetTooltipMaxWidth@RCMiniUITextView@RC@@UAEXH@Z
?GetTooltipText@RCMiniUITextView@RC@@UBE?BV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?SetTooltipText@RCMiniUITextView@RC@@UAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetInnerTextSize@RCMiniUITextView@RC@@UAE?AUtagSIZE@@XZ
?SetInnerText@RCMiniUITextView@RC@@UAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?SetInnerText@RCMiniUITextView@RC@@UAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@_N@Z
?GetInnerText@RCMiniUITextView@RC@@UBE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?KillMiniUITimer@RCMiniUIView@RC@@UAEXE@Z
?SetMiniUITimer@RCMiniUIView@RC@@UAEIEI@Z
?IsPaintChildrenTrivial@RCMiniUIView@RC@@UAE_NXZ
?MayItBePaintStart@RCMiniUIView@RC@@UAE_NXZ
?PaintChildren@RCMiniUIView@RC@@UAEXPAVRCMiniUICanvas@2@AAV?$vector@PAVRCMiniUIView@RC@@V?$allocator@PAVRCMiniUIView@RC@@@std@@@std@@@Z
?SchedulePaint@RCMiniUIView@RC@@UAEXABUtagRECT@@_N@Z
?SchedulePaint@RCMiniUIView@RC@@UAEXXZ
?OnMiniUITimer@RCMiniUIView@RC@@UAEXE@Z
?GetCursorForPoint@RCMiniUIView@RC@@UAEPAUHICON__@@IABUtagPOINT@@@Z
?OnCharInput@RCMiniUIView@RC@@UAE_NI@Z
?OnKeyReleased@RCMiniUIView@RC@@UAE_NIII@Z
?OnMouseWheel@RCMiniUIView@RC@@UAE_NIABUtagPOINT@@H@Z
?OnMouseMoved@RCMiniUIView@RC@@UAE_NIABUtagPOINT@@@Z
?OnMouseDragged@RCMiniUIView@RC@@UAE_NIABUtagPOINT@@@Z
?GetViewForPoint@RCMiniUIView@RC@@UAEPAV12@ABUtagPOINT@@@Z
?OnChildViewIDChanged@RCMiniUIView@RC@@UAEXPAV12@H@Z
?HasDottedLine@RCMiniUIView@RC@@UBE_NXZ
?SetDottedLine@RCMiniUIView@RC@@UAEX_N@Z
?HasLightFrame@RCMiniUIView@RC@@UBE_NXZ
?SetLightFrame@RCMiniUIView@RC@@UAEX_N@Z
?SetSkin@RCMiniUIView@RC@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?IsEnabled@RCMiniUIView@RC@@UBE_NXZ
?IsVisible@RCMiniUIView@RC@@UBE_NXZ
?SetVisible@RCMiniUIView@RC@@UAEX_N@Z
?ResetState@RCMiniUIView@RC@@UAEXXZ
?LayoutChild@RCMiniUIView@RC@@UAEXXZ
?OnLoadFinished@RCMiniUIView@RC@@UAEXXZ
?ReadXmlAttribute@RCMiniUIView@RC@@UAEXABVRCXmlNode@2@@Z
?SetFocus@RCMiniUIView@RC@@UAEXXZ
?ConvertRectToWindow@RCMiniUIView@RC@@SAXPBV12@PAVCRect@WTL@@@Z
?CalcTextSize@RCMiniUITextView@RC@@SA?AUtagSIZE@@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@ABVRCMiniUIStyle@2@@Z

wininet

FindCloseUrlCache
InternetSetOptionW
InternetQueryOptionW
InternetGetConnectedState
DeleteUrlCacheEntryW
FindNextUrlCacheEntryW
FindFirstUrlCacheEntryW

gdiplus

GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipGetImageWidth
GdipCloneImage
GdipCreateFromHDC
GdipCreateBitmapFromFile
GdipCreateHICONFromBitmap
GdipAlloc
GdipDeleteGraphics
GdipGetImageHeight
GdipCreateBitmapFromFileICM
GdipFree
GdipDrawImageRectRect
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipCreateBitmapFromResource
GdipDeleteBrush
GdipCloneBrush
GdipDrawImageRectRectI
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipSetSmoothingMode
GdipCreateSolidFill
GdipDisposeImageAttributes
GdipSetImageAttributesColorKeys
GdipCreateBitmapFromHBITMAP
GdipCreateImageAttributes
GdipCreateHBITMAPFromBitmap
GdipFillRectangleI
GdipDisposeImage

Exports

Exports

CheckSignerInfo
CreateObject
ReleaseObject

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 571KB - Virtual size: 570KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SoftMgrMain.dll
.dll windows:5 windows x86 arch:x86

0e9577ead32822b46074a5355724d33f

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:5a:ea:67:cc:ac:ee:65:27:7c:11:e3:7c:2d:59:60:d2:96:b0:94:ed:1f:e5:e6:03:41:cc:df:21:a6:b4:03
Signer

Actual PE Digest

01:5a:ea:67:cc:ac:ee:65:27:7c:11:e3:7c:2d:59:60:d2:96:b0:94:ed:1f:e5:e6:03:41:cc:df:21:a6:b4:03

Digest Algorithm

sha256

PE Digest Matches

true

5a:31:6b:c6:66:bc:f6:f3:79:7e:ce:75:c0:34:70:98:82:f4:a4:d5
Signer

Actual PE Digest

5a:31:6b:c6:66:bc:f6:f3:79:7e:ce:75:c0:34:70:98:82:f4:a4:d5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\Release\pdb\SoftMgrMain.pdb

Imports

kernel32

FileTimeToSystemTime
LoadLibraryExW
FindNextFileW
SetFileAttributesW
RemoveDirectoryW
QueryDosDeviceW
FormatMessageW
GetTickCount
InterlockedExchange
FindClose
SetLastError
GetFileTime
GetLogicalDriveStringsW
VirtualQuery
GetEnvironmentVariableW
GetSystemDirectoryW
GetProcAddress
GetPrivateProfileStringW
GetCurrentProcessId
CloseHandle
GetCurrentThreadId
GetLocalTime
CreateFileW
MoveFileW
GetCurrentDirectoryW
GetTempPathW
SetFileTime
GetModuleFileNameW
MoveFileExW
GetFullPathNameW
InterlockedExchangeAdd
DeleteFileW
SetEndOfFile
GetFileSizeEx
lstrlenW
GetFileSize
ReadFile
OpenProcess
GetFileAttributesExW
GetLongPathNameW
FindFirstFileW
ReleaseMutex
CreateMutexW
MultiByteToWideChar
GetACP
WideCharToMultiByte
OpenEventW
CreateEventW
ResetEvent
Sleep
SetEvent
LocalFree
WaitForMultipleObjects
CreateProcessW
ResumeThread
WaitForSingleObject
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
lstrcmpiW
GetSystemInfo
LockResource
GetVersionExW
LoadResource
FindResourceW
ExpandEnvironmentStringsW
GetFileAttributesW
DeviceIoControl
EncodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
WriteFile
OutputDebugStringW
LoadLibraryW
SetFilePointer
FreeLibrary
GetModuleHandleW
DeleteCriticalSection
DecodePointer
GetLastError
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
CreateDirectoryW
GlobalMemoryStatusEx

user32

FindWindowW
SendMessageW
UnregisterClassW
DefWindowProcW
PostMessageW
DispatchMessageW
RegisterClassW
CreateWindowExW
IsWindow
PeekMessageW
TranslateMessage
GetMessageW
DestroyWindow

advapi32

RegSetValueExW
RegCloseKey
RegCreateKeyExW

shell32

SHGetPathFromIDListW
SHGetSpecialFolderLocation
ShellExecuteW
SHChangeNotify
SHGetFolderPathW

ole32

CoCreateInstance
CoTaskMemFree

oleaut32

VariantClear
SysAllocString

msvcp120

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xbad_function_call@std@@YAXXZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_BADOFF@std@@3_JB
?uncaught_exception@std@@YA_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

msvcr120

__clean_type_info_names_internal
_except_handler4_common
__crtTerminateProcess
__crtUnhandledException
_crt_debugger_hook
__CxxFrameHandler3
_initterm_e
_initterm
_malloc_crt
_amsg_exit
__CppXcptFilter
??1type_info@@UAE@XZ
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
wcstoul
swscanf_s
sprintf
tolower
memchr
_splitpath_s
_stricmp
_wcsicmp
wcsncpy
_wcsnicmp
_vswprintf_c_l
calloc
?terminate@@YAXXZ
_localtime64
_mktime64
strstr
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
_time64
srand
rand
_errno
towupper
_vsnwprintf
wcsstr
towlower
wcschr
_beginthreadex
wcsrchr
malloc
_wtoi
??0exception@std@@QAE@ABV01@@Z
atoi
??_V@YAXPAX@Z
free
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
memmove
memset
memcpy
sprintf_s
_dtest
modf
_CxxThrowException
_except1

2345miniui

?SetRenderFactory@RCMiniUIAppModule@RC@@QAE_NPAVRCMiniUIRenderFactory@2@@Z
?Init@RCMiniUIAppModule@RC@@QAEXPAUHINSTANCE__@@@Z
?Instance@RCMiniUIAppModule@RC@@SAAAV12@XZ
?GetGolobalStringPool@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIStringPoolInterface@2@XZ
?GetGolobalFontPool@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIFontPoolInterface@2@XZ
?GetGlobalSkinPool@RCMiniUIManner@RC@@SAPAVRCMiniUISkinPoolInterface@2@XZ
?GetGlobalStylePool@RCMiniUIManner@RC@@SAPAVRCMiniUIStylePoolInterface@2@XZ
?CreateBitmap@RCMiniUIRenderFactorySkia@RC@@UAEPAVRCMiniUIBitmap@2@XZ
?CreateCanvas@RCMiniUIRenderFactorySkia@RC@@UAEPAVRCMiniUICanvas@2@HH_N@Z
?Initialize@RCMiniUIRenderFactorySkia@RC@@UAE_NXZ
??1RCMiniUIRenderFactorySkia@RC@@UAE@XZ
??0RCMiniUIRenderFactorySkia@RC@@QAE@XZ
?Term@RCMiniUIAppModule@RC@@QAEXXZ

gdiplus

GdiplusShutdown
GdiplusStartup

Exports

Exports

CheckSignerInfo
CreateObject
ReleaseObject

Sections

.text
Size: 675KB - Virtual size: 675KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SoftMgrMenu.dll
.dll regsvr32 windows:5 windows x86 arch:x86

3e159dc89e4e5b78b12f38e0fc37ceb1

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

45:8a:50:a3:4f:03:a7:0b:91:01:60:f7:2c:4c:29:dc:00:d0:a8:a6:11:aa:0f:55:b4:80:c0:7f:76:81:8b:95
Signer

Actual PE Digest

45:8a:50:a3:4f:03:a7:0b:91:01:60:f7:2c:4c:29:dc:00:d0:a8:a6:11:aa:0f:55:b4:80:c0:7f:76:81:8b:95

Digest Algorithm

sha256

PE Digest Matches

true

8c:be:23:60:6f:06:e1:cc:53:14:41:4a:22:b6:72:5a:2c:46:35:4d
Signer

Actual PE Digest

8c:be:23:60:6f:06:e1:cc:53:14:41:4a:22:b6:72:5a:2c:46:35:4d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release_static\pdb\SoftMgrMenu.pdb

Imports

kernel32

GetCurrentProcess
OpenProcess
CreateFileW
CloseHandle
ExpandEnvironmentStringsW
LockResource
SetFilePointer
OutputDebugStringW
WriteFile
GetCurrentThreadId
GetCurrentProcessId
LocalFree
GetLogicalDriveStringsW
SetEnvironmentVariableA
WriteConsoleW
SetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetConsoleCP
FlushFileBuffers
GetTimeZoneInformation
GetStringTypeW
GetCPInfo
GetOEMCP
IsValidCodePage
SetFilePointerEx
ReadConsoleW
GetConsoleMode
FreeEnvironmentStringsW
GetEnvironmentVariableW
QueryPerformanceCounter
GetModuleFileNameA
InitializeCriticalSection
GetSystemDirectoryW
GetPrivateProfileStringW
LoadLibraryW
GetProcessHeap
HeapFree
HeapAlloc
GlobalUnlock
lstrcpynW
WideCharToMultiByte
GlobalLock
lstrcpynA
GetVersion
DeleteCriticalSection
lstrcmpiW
DecodePointer
EnterCriticalSection
GetProcAddress
GetLastError
RaiseException
MultiByteToWideChar
GetModuleFileNameW
LeaveCriticalSection
EncodePointer
SizeofResource
InitializeCriticalSectionAndSpinCount
GetModuleHandleW
InterlockedDecrement
InterlockedIncrement
LoadLibraryExW
LoadResource
FreeLibrary
GetFileType
RtlUnwind
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapSize
GetStdHandle
AreFileApisANSI
GetModuleHandleExW
ExitProcess
ExitThread
CreateThread
GetSystemTimeAsFileTime
HeapReAlloc
GetCommandLineA
FileTimeToSystemTime
GetFileTime
IsProcessorFeaturePresent
GetFileSizeEx
GlobalMemoryStatusEx
SetLastError
InterlockedExchange
DeviceIoControl
ResumeThread
InterlockedExchangeAdd
WaitForMultipleObjects
GetTickCount
FindResourceW
GetEnvironmentStringsW
IsDebuggerPresent
GetACP
WaitForSingleObject
SetEvent
Sleep
ResetEvent
CreateEventW
FindFirstFileW
GetLongPathNameW
GetFileAttributesExW
GetVersionExW
GetSystemInfo
ReadFile
GetFileSize
QueryDosDeviceW
CreateMutexW
ReleaseMutex
GetFullPathNameW
CreateDirectoryW
SetFileTime
GetFileAttributesW
lstrlenW
GetTempPathW
GetCurrentDirectoryW
DeleteFileW
FindClose
FindNextFileW
SetEndOfFile
FormatMessageW

user32

DestroyMenu
GetMenuItemCount
CreatePopupMenu
CharNextW
InsertMenuItemW
IsMenu
SetMenuItemInfoW
DestroyIcon
GetMenuInfo
LoadStringW
GetMenuItemInfoW
DrawIconEx
LoadImageW
GetDesktopWindow
SetRect
GetDC
GetIconInfo
ReleaseDC

gdi32

SelectObject
DeleteDC
CreateDIBSection
GetDIBits
SetBkColor
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
ExtTextOutW

advapi32

RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW

shell32

SHGetPathFromIDListW
ShellExecuteExW
DragQueryFileW
SHGetFolderPathW
SHGetSpecialFolderLocation

ole32

CoCreateInstance
CoTaskMemRealloc
StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
ReleaseStgMedium

oleaut32

VarUI4FromStr

shlwapi

PathIsNetworkPathW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 724KB - Virtual size: 724KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SoftMgrMenu64.dll
.dll regsvr32 windows:5 windows x64 arch:x64

f51a007dd284c8da5f819bde0aafbaff

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

08:5c:c5:57:0d:7d:36:30:5b:b3:ea:de:9b:d7:5c:cc:f4:19:eb:93:55:af:27:49:ef:e9:8c:90:8f:b3:0a:d4
Signer

Actual PE Digest

08:5c:c5:57:0d:7d:36:30:5b:b3:ea:de:9b:d7:5c:cc:f4:19:eb:93:55:af:27:49:ef:e9:8c:90:8f:b3:0a:d4

Digest Algorithm

sha256

PE Digest Matches

true

a1:14:c1:fa:99:6b:b1:37:82:63:58:b6:96:23:9d:50:97:a7:d3:4d
Signer

Actual PE Digest

a1:14:c1:fa:99:6b:b1:37:82:63:58:b6:96:23:9d:50:97:a7:d3:4d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\x64\release_static\pdb\SoftMgrMenu64.pdb

Imports

kernel32

OpenProcess
CreateFileW
CloseHandle
ExpandEnvironmentStringsW
LockResource
SetFilePointer
OutputDebugStringW
WriteFile
GetCurrentThreadId
GetCurrentProcessId
LocalFree
GetLogicalDriveStringsW
SetEnvironmentVariableA
WriteConsoleW
SetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetConsoleCP
FlushFileBuffers
GetTimeZoneInformation
GetStringTypeW
GetCPInfo
GetOEMCP
IsValidCodePage
SetFilePointerEx
ReadConsoleW
GetConsoleMode
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcess
GetModuleFileNameA
GetEnvironmentVariableW
InitializeCriticalSection
GetSystemDirectoryW
GetPrivateProfileStringW
LoadLibraryW
GetProcessHeap
HeapFree
HeapAlloc
GlobalUnlock
lstrcpynW
WideCharToMultiByte
GlobalLock
lstrcpynA
GetVersion
DeleteCriticalSection
lstrcmpiW
DecodePointer
EnterCriticalSection
GetProcAddress
GetLastError
RaiseException
MultiByteToWideChar
GetModuleFileNameW
LeaveCriticalSection
EncodePointer
SizeofResource
InitializeCriticalSectionAndSpinCount
GetModuleHandleW
LoadLibraryExW
LoadResource
FreeLibrary
GetFileType
RtlPcToFileHeader
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
HeapSize
RtlUnwindEx
GetStdHandle
AreFileApisANSI
GetModuleHandleExW
ExitProcess
ExitThread
GetTickCount
FormatMessageW
FileTimeToSystemTime
CreateThread
GetSystemTimeAsFileTime
HeapReAlloc
GetCommandLineA
IsProcessorFeaturePresent
GetFileSizeEx
GlobalMemoryStatusEx
SetLastError
DeviceIoControl
ResumeThread
FindResourceW
QueryPerformanceCounter
IsDebuggerPresent
GetACP
WaitForSingleObject
SetEvent
Sleep
ResetEvent
CreateEventW
FindFirstFileW
GetLongPathNameW
GetFileAttributesExW
GetVersionExW
GetSystemInfo
ReadFile
GetFileSize
QueryDosDeviceW
CreateMutexW
ReleaseMutex
GetFullPathNameW
CreateDirectoryW
SetFileTime
GetFileAttributesW
lstrlenW
GetTempPathW
GetCurrentDirectoryW
DeleteFileW
FindClose
FindNextFileW
SetEndOfFile
GetFileTime
WaitForMultipleObjects

user32

DestroyMenu
GetMenuItemCount
CreatePopupMenu
CharNextW
InsertMenuItemW
IsMenu
SetMenuItemInfoW
DestroyIcon
GetMenuInfo
LoadStringW
GetMenuItemInfoW
DrawIconEx
LoadImageW
GetDesktopWindow
SetRect
GetDC
GetIconInfo
ReleaseDC

gdi32

SelectObject
DeleteDC
CreateDIBSection
GetDIBits
SetBkColor
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
ExtTextOutW

advapi32

RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW

shell32

SHGetPathFromIDListW
ShellExecuteExW
DragQueryFileW
SHGetFolderPathW
SHGetSpecialFolderLocation

ole32

CoCreateInstance
CoTaskMemRealloc
StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
ReleaseStgMedium

oleaut32

VarUI4FromStr

shlwapi

PathIsNetworkPathW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 719KB - Virtual size: 718KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SoftMgrUI.dll
.dll windows:5 windows x86 arch:x86

f7e9e26717f6287d1c1f0f2a9ad53c46

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

f3:fe:27:a1:e7:f6:ed:4b:61:c5:a3:88:d5:a9:9b:7b:b1:a8:76:5c:bc:2a:7c:2a:95:18:35:ea:4a:2c:d6:e4
Signer

Actual PE Digest

f3:fe:27:a1:e7:f6:ed:4b:61:c5:a3:88:d5:a9:9b:7b:b1:a8:76:5c:bc:2a:7c:2a:95:18:35:ea:4a:2c:d6:e4

Digest Algorithm

sha256

PE Digest Matches

true

79:69:af:8c:72:00:53:94:a0:b6:53:83:b5:c1:de:35:1a:56:b4:c4
Signer

Actual PE Digest

79:69:af:8c:72:00:53:94:a0:b6:53:83:b5:c1:de:35:1a:56:b4:c4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\SoftMgrUI.pdb

Imports

kernel32

InitializeCriticalSectionAndSpinCount
RaiseException
GetLastError
DecodePointer
DeleteCriticalSection
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
EncodePointer
LeaveCriticalSection
EnterCriticalSection
OutputDebugStringW
IsDebuggerPresent
IsProcessorFeaturePresent

user32

UnregisterClassW

oleaut32

SysFreeString

msvcr120

memmove_s
?terminate@@YAXXZ
_lock
_unlock
memset
__dllonexit
_onexit
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
__clean_type_info_names_internal
_recalloc
_hypot
??_V@YAXPAX@Z
free
??3@YAXPAX@Z
_calloc_crt
__CxxFrameHandler3

Exports

Exports

CreateObject
DestroyObject

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 394KB - Virtual size: 393KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SoftMgrUn.dll
.dll windows:5 windows x86 arch:x86

1a059876256ff94cd077b4d1bfb8aa99

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

53:aa:1d:34:09:71:07:d9:26:5f:9d:de:15:d0:89:fb:0f:77:bc:52:8b:cd:8e:91:2f:76:cd:06:c3:e4:38:3a
Signer

Actual PE Digest

53:aa:1d:34:09:71:07:d9:26:5f:9d:de:15:d0:89:fb:0f:77:bc:52:8b:cd:8e:91:2f:76:cd:06:c3:e4:38:3a

Digest Algorithm

sha256

PE Digest Matches

true

6a:86:e9:68:01:34:13:cc:5b:1f:0d:75:a5:a4:8b:ad:46:e9:8e:d1
Signer

Actual PE Digest

6a:86:e9:68:01:34:13:cc:5b:1f:0d:75:a5:a4:8b:ad:46:e9:8e:d1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\release\pdb\SoftMgrUn.pdb

Imports

kernel32

CreateProcessW
CreateJobObjectW
Sleep
AssignProcessToJobObject
CloseHandle
ResumeThread
MapViewOfFile
UnmapViewOfFile
GetLastError
CreateFileMappingW
HeapAlloc
HeapFree
GetProcessHeap
GetProcAddress
GetCurrentThreadId
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetModuleHandleW
EncodePointer
DecodePointer
CreateThread
ExitThread
LoadLibraryExW
GetCommandLineA
IsDebuggerPresent
IsProcessorFeaturePresent
RaiseException
RtlUnwind
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
WideCharToMultiByte
HeapSize
SetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetStdHandle
GetFileType
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
WriteFile
GetModuleFileNameW
GetStringTypeW
HeapReAlloc
LCMapStringW
OutputDebugStringW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
SetStdHandle
WriteConsoleW
FlushFileBuffers
CreateFileW

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SoftNotify.dll
.dll windows:5 windows x86 arch:x86

6da66c3cd98c1e11a77e576222008bfc

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

97:26:49:78:93:e4:d8:0e:6f:da:d9:fa:04:17:19:91:07:87:db:91:ef:3b:9b:45:f2:5a:e3:a3:69:ff:36:20
Signer

Actual PE Digest

97:26:49:78:93:e4:d8:0e:6f:da:d9:fa:04:17:19:91:07:87:db:91:ef:3b:9b:45:f2:5a:e3:a3:69:ff:36:20

Digest Algorithm

sha256

PE Digest Matches

true

79:01:a2:28:5b:fc:a0:3e:4f:91:73:aa:c1:5c:79:cc:ab:f2:da:98
Signer

Actual PE Digest

79:01:a2:28:5b:fc:a0:3e:4f:91:73:aa:c1:5c:79:cc:ab:f2:da:98

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\branches\5.1\softmgr\main\bin\Win32\Release\pdb\SoftNotify.pdb

Imports

crypt32

CertFreeCertificateContext
CryptQueryObject
CertCloseStore
CryptMsgGetParam
CertFindCertificateInStore
CertGetNameStringW
CryptMsgClose
CryptDecodeObject

kernel32

InitializeCriticalSectionAndSpinCount
GetTickCount
GetCurrentThreadId
GetModuleHandleW
CloseHandle
QueryPerformanceFrequency
IsBadStringPtrW
IsBadWritePtr
IsBadReadPtr
SizeofResource
FreeResource
GetSystemTimeAsFileTime
QueryPerformanceCounter
EncodePointer
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
IsDebuggerPresent
GlobalMemoryStatusEx
FormatMessageW
Sleep
OpenProcess
GetProcessHeap
WaitForSingleObject
HeapFree
InterlockedDecrement
InterlockedIncrement
HeapAlloc
DeleteCriticalSection
DecodePointer
SetFileAttributesW
RemoveDirectoryW
MoveFileW
GetCurrentDirectoryW
GetTempPathW
CreateDirectoryW
MoveFileExW
GetTempFileNameW
GetFullPathNameW
DeleteFileW
GetFileSizeEx
OpenFileMappingW
UnmapViewOfFile
MapViewOfFile
GetFileTime
ReadFile
SetFileTime
SetEndOfFile
GetFileSize
lstrcatW
QueryDosDeviceW
LoadLibraryExW
InitializeCriticalSection
ReleaseMutex
CreateMutexW
InterlockedExchangeAdd
MultiByteToWideChar
GetACP
WideCharToMultiByte
GetFileAttributesExW
GetLongPathNameW
lstrcmpiW
GetSystemInfo
LockResource
LoadResource
FindResourceW
OpenEventW
CreateEventW
ResetEvent
GetFileAttributesW
GetLastError
FreeLibrary
SetEvent
LoadLibraryW
GetProcAddress
SetFilePointer
OutputDebugStringW
WriteFile
GetModuleFileNameW
CreateFileW
GetLocalTime
GetCurrentProcessId
GetEnvironmentVariableW
GetCurrentProcess
ExpandEnvironmentStringsW
GetVersionExW
GlobalAlloc
GlobalFree
LocalFree
GetLogicalDriveStringsW
GetPrivateProfileStringW
lstrcmpW
FindFirstFileW
CreateProcessW
FindClose
LocalAlloc
DeviceIoControl
FindNextFileW
GetSystemDirectoryW
GetWindowsDirectoryW
InterlockedExchange
LeaveCriticalSection
FlushInstructionCache
SetLastError
EnterCriticalSection
WaitForMultipleObjects
GetExitCodeProcess
RaiseException
ResumeThread
GlobalLock
MulDiv
lstrlenW
GlobalUnlock
FileTimeToSystemTime
CreateFileMappingW
FileTimeToLocalFileTime
GetComputerNameW
lstrcmpA
lstrcpyW

user32

GetMonitorInfoW
SetWindowTextW
GetWindow
GetWindowTextW
SetFocus
WindowFromPoint
SetRect
GetParent
GetFocus
IsIconic
GetWindowRect
GetWindowTextLengthW
SendMessageW
TranslateMessage
GetForegroundWindow
SystemParametersInfoW
ReleaseDC
GetDC
EnumWindows
IsWindowEnabled
DefWindowProcW
CallWindowProcW
RegisterClassExW
GetClassNameW
SetWindowLongW
GetClassInfoExW
LoadCursorW
MonitorFromPoint
DrawTextW
DrawIconEx
GetKeyboardLayout
MapVirtualKeyExW
GetDesktopWindow
GetCursorPos
IsWindow
FindWindowExW
CreateWindowExW
CopyRect
MoveWindow
GetWindowThreadProcessId
UnregisterClassW
AttachThreadInput
PtInRect
FindWindowW
PostMessageW
DestroyWindow
IsWindowVisible
AdjustWindowRectEx
ShowWindow
SetWindowPos
GetWindowLongW
GetMenu
GetClientRect
GetKeyState
GetSystemMetrics
PostQuitMessage
PeekMessageW
LoadIconW
KillTimer
GetMessageW
SetTimer
EndPaint
ClientToScreen
DestroyAcceleratorTable
ScreenToClient
CharNextW
RegisterWindowMessageW
FillRect
IsChild
SetCapture
InvalidateRgn
CreateAcceleratorTableW
BeginPaint
InvalidateRect
GetDlgItem
RedrawWindow
GetSysColor
ReleaseCapture
GetDlgCtrlID
SetRectEmpty
IsRectEmpty
SetMenuItemInfoW
DestroyMenu
UpdateWindow
InsertMenuW
GetMenuItemCount
CreatePopupMenu
AppendMenuW
LoadMenuW
IntersectRect
InflateRect
GetUpdateRect
GetMenuItemInfoW
GetMenuStringW
DeleteMenu
GetSubMenu
IsMenu
RemovePropW
UpdateLayeredWindow
GetCapture
WaitMessage
EqualRect
MonitorFromRect
GetKeyNameTextW
DispatchMessageW

gdi32

SelectObject
SetBkMode
BitBlt
DeleteDC
GetDeviceCaps
SetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
ExtTextOutW
CreateSolidBrush
CreateDIBSection
GetTextExtentPointW
GetObjectW
GetStockObject
CreateFontIndirectW
DeleteObject
CreateRectRgn
SelectClipRgn
LineTo
MoveToEx
ExtCreatePen
CreatePen
SetTextColor

advapi32

RegCloseKey

shell32

SHGetSpecialFolderPathW
SHGetFolderPathW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHChangeNotify
SHAppBarMessage

ole32

RegisterDragDrop
RevokeDragDrop
CoTaskMemAlloc
CoGetClassObject
OleUninitialize
OleInitialize
StringFromGUID2
CLSIDFromString
CLSIDFromProgID
OleLockRunning
CreateStreamOnHGlobal
CoTaskMemFree
CoCreateInstance

oleaut32

SysStringByteLen
SysAllocStringByteLen
VariantClear
DispCallFunc
LoadTypeLi
VariantInit
SysAllocStringLen
OleCreateFontIndirect
LoadRegTypeLi
SysAllocString
SysFreeString
SysStringLen

msvcp120

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?uncaught_exception@std@@YA_NXZ
?_BADOFF@std@@3_JB
??1_Container_base12@std@@QAE@XZ
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z

2345miniui

?OnMouseMoveInDialog@RCMiniUIDialogView@RC@@UAEXABVCPoint@WTL@@I@Z
?RunFrameWindow@RCMiniUIFrameWindow@RC@@QAEXH@Z
?Create@RCMiniUISimpleWindow@RC@@QAEPAUHWND__@@PAU3@KK@Z
?IsWindow@RCMiniAtlWindow@@QBEHXZ
?PostMessageW@RCMiniAtlWindow@@QAEHIIJ@Z
??1RCMiniUIDialogInitParam@RC@@QAE@XZ
??0RCMiniUIDialogInitParam@RC@@QAE@XZ
?GetInitParam@RCMiniUIDialogView@RC@@QAEXAAVRCMiniUIDialogInitParam@2@@Z
?SetInitParam@RCMiniUIDialogView@RC@@QAEXABVRCMiniUIDialogInitParam@2@@Z
?WindowDefKeyPressed@RCMiniUIDialogView@RC@@UAE_NIII@Z
?CalcTextSize@RCMiniUITextView@RC@@SA?AUtagSIZE@@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@ABVRCMiniUIStyle@2@@Z
?IsWindowVisible@RCMiniAtlWindow@@QBEHXZ
?SetIcon@RCMiniAtlWindow@@QAEPAUHICON__@@PAU2@H@Z
?AnimationStarted@RCMiniUIAnimationDelegate@RC@@UAEXPBVRCMiniUIAnimation@2@@Z
??1RCMiniUISlideShowAnimatorObserver@RC@@UAE@XZ
?ButtonPressing@RCMiniUIButtonListener@RC@@UAEXPAVRCMiniUIButton@2@@Z
?ButtonPressed@RCMiniUIButtonListener@RC@@UAEXPAVRCMiniUIButton@2@@Z
?ButtonDbClick@RCMiniUIButtonListener@RC@@UAEXPAVRCMiniUIButton@2@@Z
??1RCMiniUIButtonListener@RC@@MAE@XZ
??_7RCMiniUISlideShowAnimatorObserver@RC@@6B@
??_7RCMiniUIButtonListener@RC@@6B@
?SetNeedLayout@RCMiniUIView@RC@@QAEX_N@Z
?GetViewByID@RCMiniUIView@RC@@QBEPAV12@H@Z
?GetParent@RCMiniUIView@RC@@QBEPAV12@XZ
?SetUserData@RCMiniUIBoxPanel@RC@@QAEXPAX@Z
?GetUserData@RCMiniUIBoxPanel@RC@@QAEPAXXZ
??0RCMiniUIAnimation@RC@@QAE@II@Z
??1RCMiniUIAnimation@RC@@UAE@XZ
?SetDuration@RCMiniUIAnimation@RC@@QAEXI@Z
?SetAnimationType@RCMiniUIAnimation@RC@@QAEXI@Z
?GetDelegate@RCMiniUIAnimation@RC@@QAEPAVRCMiniUIAnimationDelegate@2@XZ
?GetCurrentValue@RCMiniUIAnimation@RC@@UBENXZ
?Start@RCMiniUIAnimation@RC@@UAEXXZ
?Stop@RCMiniUIAnimation@RC@@UAEXXZ
?Step@RCMiniUIAnimation@RC@@UAEX_J@Z
?AnimateToState@RCMiniUIAnimation@RC@@UAEXN@Z
?CreateViewByString@RCMiniUIObjectFactory@RC@@SAPAVRCMiniUIView@2@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
??0RCMiniUIStyle@RC@@QAE@XZ
??4RCMiniUIStyle@RC@@QAEAAV01@ABV01@@Z
??1RCMiniUIStyle@RC@@UAE@XZ
?AddChildPanel@RCMiniUIListBox@RC@@QAEXHPAVRCMiniUIBoxPanel@2@@Z
?GetChildPanelAt@RCMiniUIListBox@RC@@QAEPAVRCMiniUIBoxPanel@2@I@Z
?GetChildPanelCount@RCMiniUIListBox@RC@@QAEHXZ
??0RCMiniUISlideShowAnimator@RC@@QAE@PAVRCMiniUIView@1@@Z
??1RCMiniUISlideShowAnimator@RC@@UAE@XZ
?SetSlideDirection@RCMiniUISlideShowAnimator@RC@@QAEXW4RCMiniUISlideDirection@12@_N@Z
?SetObserver@RCMiniUISlideShowAnimator@RC@@QAEXPAVRCMiniUISlideShowAnimatorObserver@2@@Z
?AnimationProgressed@RCMiniUISlideShowAnimator@RC@@UAEXPBVRCMiniUIAnimation@2@@Z
?AnimationEnded@RCMiniUISlideShowAnimator@RC@@UAEXPBVRCMiniUIAnimation@2@@Z
?AnimationCanceled@RCMiniUISlideShowAnimator@RC@@UAEXPBVRCMiniUIAnimation@2@@Z
?AddAnimationAndDelegate@RCMiniUIAnimationView@RC@@QAE_NPAVRCMiniUIAnimation@2@PAVRCMiniUIAnimationDelegate@2@@Z
?GetAnimation@RCMiniUIAnimationView@RC@@QBEPAVRCMiniUIAnimation@2@I@Z
?Play@RCMiniUIAnimationView@RC@@QAEXI@Z
?ResetImageFromFile@RCMiniUIImageView@RC@@QAE_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetGlobalStylePool@RCMiniUIManner@RC@@SAPAVRCMiniUIStylePoolInterface@2@XZ
?GetGolobalStringPool@RCMiniUIResourceManager@RC@@SAPAVRCMiniUIStringPoolInterface@2@XZ
?ProcessWindowMessage@RCMiniUISimpleWindow@RC@@UAEHPAUHWND__@@IIJAAJK@Z
?ClientToScreen@RCMiniAtlWindow@@QBEHPAUtagRECT@@@Z
?GetBounds@RCMiniUIView@RC@@QBE?AUtagRECT@@XZ
?SetText@RCMiniUIRichText@RC@@QAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
??0RCMiniUISimpleWindow@RC@@QAE@I@Z
??1RCMiniUISimpleWindow@RC@@UAE@XZ
?GetHWND@RCMiniUISimpleWindow@RC@@UAEPAUHWND__@@XZ
??BRCMiniAtlWindow@@QBEPAUHWND__@@XZ
?GetWindowRect@RCMiniAtlWindow@@QBEHPAUtagRECT@@@Z
?GetDlgItem@RCMiniAtlWindow@@QBE?AV1@H@Z
?GetViewByID@RCMiniUIDialogView@RC@@QBEPAVRCMiniUIView@2@H@Z
?OnEsc@RCMiniUIDialogView@RC@@UAEXXZ
?OnEnter@RCMiniUIDialogView@RC@@UAEXXZ
?OnDropFiles@RCMiniUIDialogView@RC@@UAEXABV?$vector@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@V?$allocator@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@2@@std@@@Z
?OnMouseEnterDialog@RCMiniUIDialogView@RC@@UAEXXZ
?OnMouseLeaveDialog@RCMiniUIDialogView@RC@@UAEXXZ
?OnAnimateShowEnded@RCMiniUIDialogView@RC@@UAEXXZ
?OnAnimateHideEnded@RCMiniUIDialogView@RC@@UAEXXZ
?OnDialogSkinChanged@RCMiniUIDialogView@RC@@UAEXXZ
?ProcessWindowMessage@RCMiniUIFrameWindow@RC@@UAEHPAUHWND__@@IIJAAJK@Z
?GetWindowProc@?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@UAEP6GJPAUHWND__@@IIJ@ZXZ
?DestroyWindow@?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@QAEHXZ
?OnFinalMessage@?$CWindowImplBaseT@VRCMiniAtlWindow@@V?$CWinTraits@$0FGAAAAAA@$0A@@ATL@@@ATL@@UAEXPAUHWND__@@@Z
?ShowWindow@RCMiniAtlWindow@@QAEHH@Z
?ReflectNotifications@?$CWindowImplRoot@VRCMiniAtlWindow@@@ATL@@QAEJIIJAAH@Z
??0RCMiniUIFrameWindow@RC@@QAE@I@Z
??1RCMiniUIFrameWindow@RC@@UAE@XZ
?GetHWND@RCMiniUIFrameWindow@RC@@UAEPAUHWND__@@XZ
?OnIdle@RCMiniUIFrameWindow@RC@@UAEHXZ
?SetWindowTimer@RCMiniUIWindow@RC@@QAEXII@Z
?KillWindowTimer@RCMiniUIWindow@RC@@QAEXI@Z
?GetRootView@RCMiniUIDialogView@RC@@UAEPAVRCMiniUIView@2@XZ
?GetToolTip@RCMiniUIDialogView@RC@@UAEAAV?$CToolTipCtrlT@VCWindow@ATL@@@WTL@@XZ

shlwapi

StrToIntW

comctl32

_TrackMouseEvent

msvcr120

_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__CxxFrameHandler3
__clean_type_info_names_internal
_except_handler4_common
_except1
__CppXcptFilter
??1type_info@@UAE@XZ
swscanf_s
wcstoul
modf
sprintf_s
_dtest
strpbrk
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
round
_wcsupr
memcpy
isalnum
sprintf
_vswprintf_c_l
__RTDynamicCast
_amsg_exit
??3@YAXPAX@Z
memmove
free
??_V@YAXPAX@Z
_purecall
??2@YAPAXI@Z
_time64
atoi
_wtof
malloc
memcpy_s
_stricmp
_splitpath_s
_wfopen_s
rewind
fread
fwrite
ftell
fseek
fclose
_vsnwprintf
_wtoi
swprintf_s
_recalloc
??0exception@std@@QAE@ABV01@@Z
strchr
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
_CxxThrowException
memset
_swprintf
wcschr
towlower
wcsstr
towupper
_mktime64
_localtime64
_beginthreadex
rand
srand
_errno
strstr
memchr
tolower
toupper
calloc
wcsrchr
_wcsnicmp
?terminate@@YAXXZ
wcsncpy
_wcsicmp

gdiplus

GdipFree
GdipCreateBitmapFromStream
GdipAlloc
GdipDisposeImage
GdipCloneImage
GdipFillRectangleI
GdipCreateFromHDC
GdipCreateHBITMAPFromBitmap
GdipCreateImageAttributes
GdipCreateBitmapFromHBITMAP
GdipSetImageAttributesColorKeys
GdipDisposeImageAttributes
GdipCreateSolidFill
GdipSetSmoothingMode
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipGetImageHeight
GdipLoadImageFromFile
GdipCreateBitmapFromScan0
GdipDrawImageRectRectI
GdipCloneBrush
GdipDeleteBrush
GdipGetImageWidth
GdipCreateBitmapFromResource

Exports

Exports

CheckSignerInfo
CreateObject
ReleaseObject

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Uninstall.exe
.exe windows:5 windows x86 arch:x86

bf58b055975d05f1d6f5948746dae11a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpW
lstrcmpiW
lstrlenA
GetPrivateProfileStringW
WritePrivateProfileStringW
MoveFileW
MultiByteToWideChar
WideCharToMultiByte
CreateFileW
GetFileSize
GetTickCount
GetModuleFileNameW
GetProcAddress
GetCommandLineW
SetEnvironmentVariableW
WriteFile
GetTempPathW
SetErrorMode
GetCurrentProcess
GetCurrentProcessId
ExitProcess
GetVersion
GetWindowsDirectoryW
LoadLibraryW
CopyFileW
GetDiskFreeSpaceW
CreateThread
GlobalLock
GlobalUnlock
FormatMessageW
lstrlenW
CreateDirectoryW
GetTempFileNameW
RemoveDirectoryW
CreateProcessW
GetSystemDirectoryW
GetModuleHandleA
lstrcmpiA
lstrcpyA
lstrcpyW
lstrcatW
MoveFileExW
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
VirtualQuery
RtlUnwind
IsProcessorFeaturePresent
MulDiv
LocalFree
GlobalFree
GlobalAlloc
LoadLibraryExW
GetModuleHandleW
FreeLibrary
GetExitCodeProcess
Sleep
WaitForSingleObject
GetLastError
CloseHandle
SetFileTime
SetFilePointer
SetFileAttributesW
ReadFile
GetShortPathNameW
GetFullPathNameW
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
CompareFileTime
SearchPathW
SetCurrentDirectoryW
lstrcpynW
ExpandEnvironmentStringsW

user32

ScreenToClient
GetSysColor
GetWindowLongW
SetClassLongW
LoadBitmapW
LoadCursorW
SystemParametersInfoW
wsprintfA
DispatchMessageW
PeekMessageW
SetDlgItemTextW
GetDlgItemTextW
SetCursor
CharPrevW
MessageBoxIndirectW
GetSystemMetrics
IsWindowEnabled
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
CheckDlgButton
EndDialog
DialogBoxParamW
GetWindowRect
TrackPopupMenu
AppendMenuW
EnableMenuItem
CreatePopupMenu
CharNextA
GetSystemMenu
IsWindowVisible
SetWindowPos
CreateWindowExW
GetClassInfoW
RegisterClassW
CallWindowProcW
GetMessagePos
CharNextW
SetWindowTextW
SetTimer
CreateDialogParamW
DestroyWindow
PostMessageW
LoadImageW
FindWindowExW
SetWindowLongW
InvalidateRect
ReleaseDC
GetDC
DefWindowProcW
DrawTextW
BeginPaint
EndPaint
GetClientRect
SetForegroundWindow
EnableWindow
GetDlgItem
ShowWindow
IsWindow
PostQuitMessage
SendMessageTimeoutW
SendMessageW
wsprintfW
FillRect
ExitWindowsEx

gdi32

SetBkColor
GetDeviceCaps
SetTextColor
SetBkMode
SelectObject
DeleteObject
CreateBrushIndirect
CreateFontIndirectW

shell32

SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFileInfoW
SHFileOperationW
ShellExecuteW
SHGetSpecialFolderLocation

advapi32

RegEnumValueW
OpenProcessToken
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
SetFileSecurityW
LookupPrivilegeValueW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
AdjustTokenPrivileges

comctl32

ImageList_Create
ImageList_Destroy
ImageList_AddMasked
ord17

ole32

OleUninitialize
OleInitialize
CoCreateInstance
CoTaskMemFree

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndata
Size: - Virtual size: 280KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/FileInfo.dll
.dll windows:5 windows x86 arch:x86

15ad1816051c192d2175d06bafd00e87

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

f9:a9:5d:99:a0:28:22:ad:49:38:6c:47:dd:06:d1:00:ae:a9:44:18:93:df:28:1e:79:e2:16:ed:2d:23:5d:d3
Signer

Actual PE Digest

f9:a9:5d:99:a0:28:22:ad:49:38:6c:47:dd:06:d1:00:ae:a9:44:18:93:df:28:1e:79:e2:16:ed:2d:23:5d:d3

Digest Algorithm

sha256

PE Digest Matches

true

40:ba:00:9a:24:78:ea:8d:66:9b:21:b1:88:d2:b9:ec:48:76:a8:70
Signer

Actual PE Digest

40:ba:00:9a:24:78:ea:8d:66:9b:21:b1:88:d2:b9:ec:48:76:a8:70

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\MyProject\softmgr\main\install\FileInfo\build_temp\Release\FileInfo.pdb

Imports

kernel32

GlobalFree
lstrcpyW
GetFileSize
SetFilePointer
WriteFile
CreateFileW
GetModuleFileNameW
CreateProcessW
GetModuleHandleW
GetExitCodeProcess
GetProcAddress
LocalFree
FindFirstFileW
GetLongPathNameW
GetFileAttributesExW
SetEvent
ResetEvent
CreateEventW
HeapAlloc
HeapFree
GetProcessHeap
GetVersionExW
GetCurrentThreadId
FreeLibrary
LoadLibraryW
FindResourceW
LoadResource
LockResource
lstrcmpiW
GetFullPathNameW
GetTempFileNameW
CreateDirectoryW
SetFileTime
lstrlenW
GetTempPathW
RemoveDirectoryW
GetWindowsDirectoryW
MultiByteToWideChar
FindNextFileW
SetEndOfFile
ReadFile
LoadLibraryExW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetPrivateProfileStringW
GetCurrentProcess
WritePrivateProfileStringW
InitializeCriticalSectionAndSpinCount
OutputDebugStringW
ExitThread
CreateThread
DeviceIoControl
InterlockedExchange
lstrcpynW
WideCharToMultiByte
GlobalAlloc
GetCurrentProcessId
CloseHandle
CreateToolhelp32Snapshot
Process32NextW
Process32FirstW
TerminateProcess
OpenProcess
WaitForSingleObject
GetEnvironmentVariableW
SetFileAttributesW
DeleteFileW
GetLastError
GetFileAttributesW
Sleep
MoveFileExW
InterlockedExchangeAdd
GetComputerNameW
ResumeThread
ReleaseMutex
SetEnvironmentVariableA
FlushFileBuffers
WriteConsoleW
SetStdHandle
CreateMutexW
FindClose
EncodePointer
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
GetCommandLineA
GetSystemTimeAsFileTime
HeapReAlloc
RaiseException
RtlUnwind
ExitProcess
GetModuleHandleExW
HeapSize
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetTickCount
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStdHandle
GetFileType
GetModuleFileNameA
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetFilePointerEx
CompareStringW
LCMapStringW
ReadConsoleW

user32

MessageBoxW

advapi32

RegCreateKeyExW
RegSetValueExW
RegCloseKey

shell32

SHGetPathFromIDListW
SHGetSpecialFolderLocation
ShellExecuteW

ole32

CoCreateInstance
CoTaskMemFree

oleaut32

VariantClear
SysAllocString

Exports

Exports

CheckInstallerInstance
CheckUserID_01
CheckUserID_02
CheckUserID_03
CheckUserID_04
DeleteInstallFile
ExecWaitAdmin
FindProcess
GetDelSoftMgrFile
GetInstallDir
IsValidUserID
KillProcess
MyRemoveDirectory
PrepareDelSoftMgrFile
RecordSoftMgrUninstallTime
RecoverUnknowFileToDefault
RemoveSoftManageQuickLink
SendUninstallStat
ShowUninstallDlg

Sections

.text
Size: 375KB - Virtual size: 374KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:6 windows x86 arch:x86

127a02894b36e3dd18bd638b1758f9f7

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

63:b4:d4:81:05:76:53:2e:1b:10:b9:9d:39:89:4c:78
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

23/05/2013, 00:00

Not After

22/05/2016, 23:59

Subject

CN=2345.com,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=总办,O=2345.com,L=上海,ST=上海,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:09:3b:78:60:96:da:37:bb:a4:51:94:46:c8:96:78
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

68:ce:1f:91:55:ae:39:ae:c9:b5:de:6b:56:51:b3:cf
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/02/2016, 00:00

Not After

22/05/2016, 23:59

Subject

CN=2345.com,OU=总办,O=2345.com,L=上海,ST=上海,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

54:f3:7d:a1:71:67:51:bc:6a:8d:0a:d2:74:b2:8b:13
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

12/01/2016, 00:00

Not After

11/04/2027, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G1,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

1b:66:40:eb:91:35:f2:95:09:96:6f:91:a8:28:70:22:ca:10:6c:57:06:be:36:ab:80:ec:d2:15:a7:60:33:07
Signer

Actual PE Digest

1b:66:40:eb:91:35:f2:95:09:96:6f:91:a8:28:70:22:ca:10:6c:57:06:be:36:ab:80:ec:d2:15:a7:60:33:07

Digest Algorithm

sha256

PE Digest Matches

true

3e:52:c4:af:8e:53:87:0f:b9:81:f8:39:f0:a3:2e:4b:d0:7c:a9:19
Signer

Actual PE Digest

3e:52:c4:af:8e:53:87:0f:b9:81:f8:39:f0:a3:2e:4b:d0:7c:a9:19

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalSize
GlobalFree
lstrcpynW
lstrcpyW
VirtualAlloc
VirtualFree
VirtualProtect
FreeLibrary
GetModuleHandleW
GetProcAddress
lstrlenW
LoadLibraryW
MultiByteToWideChar
WideCharToMultiByte
GetLastError

user32

wsprintfW

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 926B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 640B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libcurl_x86.dll
.dll windows:6 windows x86 arch:x86

a996403d816908e79c3d6e0ea1cbe2e2

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

Issuer

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/05/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

11/02/2011, 12:00

Not After

10/02/2026, 12:00

Subject

CN=DigiCert Assured ID Code Signing CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2019, 00:00

Not After

08/05/2020, 12:00

Subject

CN=Shanghai 2345 Mobile Technology Co.\, Ltd.,OU=IT,O=Shanghai 2345 Mobile Technology Co.\, Ltd.,L=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

bb:3d:5d:d0:3d:03:0c:f0:87:df:14:f2:aa:0c:72:df:8c:d9:98:18:d5:38:5f:b0:41:c4:b6:30:aa:34:bb:f2
Signer

Actual PE Digest

bb:3d:5d:d0:3d:03:0c:f0:87:df:14:f2:aa:0c:72:df:8c:d9:98:18:d5:38:5f:b0:41:c4:b6:30:aa:34:bb:f2

Digest Algorithm

sha256

PE Digest Matches

true

a7:48:82:7f:c5:56:56:93:12:51:c6:18:5d:ed:72:18:9b:74:1b:0e
Signer

Actual PE Digest

a7:48:82:7f:c5:56:56:93:12:51:c6:18:5d:ed:72:18:9b:74:1b:0e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\dev\RCFL\vendor\depends\curl\out\bin\Win32\release_static\pdb\libcurl_x86.pdb

Imports

ws2_32

bind
closesocket
connect
getpeername
getsockopt
htons
ntohs
recv
setsockopt
socket
WSASetLastError
WSAIoctl
getaddrinfo
freeaddrinfo
gethostname
accept
WSAGetLastError
listen
ioctlsocket
__WSAFDIsSet
select
send
WSAStartup
WSACleanup
recvfrom
sendto
getsockname
shutdown
htonl
ntohl
gethostbyname
getservbyname

wldap32

ord145
ord219
ord301
ord147
ord133
ord79
ord142
ord167
ord127
ord27
ord26
ord118
ord41
ord208
ord216
ord14
ord46

crypt32

CertOpenStore
CertCloseStore
CertEnumCertificatesInStore
CertFindCertificateInStore
CertDuplicateCertificateContext
CertFreeCertificateContext
CertGetCertificateContextProperty

kernel32

FindNextFileA
SystemTimeToTzSpecificLocalTime
GetDriveTypeW
FindFirstFileExW
FindClose
RaiseException
ReadConsoleW
SetStdHandle
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetModuleFileNameW
GetProcessHeap
RtlUnwind
FatalAppExitA
CreateSemaphoreW
GetStartupInfoW
FindFirstFileA
GetFullPathNameA
HeapSize
SetEndOfFile
WriteConsoleW
GetCurrentDirectoryW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SleepEx
MultiByteToWideChar
WideCharToMultiByte
WaitForSingleObject
CloseHandle
ExpandEnvironmentStringsA
Sleep
GetLastError
SetLastError
FormatMessageA
VerSetConditionMask
FreeLibrary
GetProcAddress
LoadLibraryW
GetModuleHandleW
GetSystemDirectoryW
QueryPerformanceFrequency
VerifyVersionInfoW
WaitForMultipleObjects
GetFileType
GetStdHandle
ReadFile
PeekNamedPipe
GetTickCount
QueryPerformanceCounter
FlushConsoleInputBuffer
WriteFile
GetCurrentThreadId
GetModuleHandleA
GetCurrentProcessId
GlobalMemoryStatus
LoadLibraryA
GetSystemTime
SystemTimeToFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
CreateEventW
SetCurrentDirectoryW
GetFullPathNameW
SetEnvironmentVariableA
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
GetStringTypeW
OutputDebugStringW
GetTimeZoneInformation
CreateFileW
SetFileAttributesW
GetFileAttributesExW
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
GetConsoleCP
IsDebuggerPresent
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
EncodePointer
DecodePointer
CreateThread
ExitThread
LoadLibraryExW
HeapFree
HeapAlloc
HeapReAlloc
SetFilePointerEx
FileTimeToLocalFileTime
GetFileInformationByHandle
FileTimeToSystemTime
GetCommandLineA
SetConsoleCtrlHandler
GetConsoleMode
GetNumberOfConsoleInputEvents
PeekConsoleInputA
ReadConsoleInputA
SetConsoleMode
ExitProcess
GetModuleHandleExW
AreFileApisANSI
GetCurrentThread
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlushFileBuffers

user32

ReleaseDC
GetDC
GetDesktopWindow
MessageBoxA
GetUserObjectInformationW
GetProcessWindowStation

gdi32

DeleteObject
GetDeviceCaps
GetDIBits
GetObjectA
CreateCompatibleBitmap

advapi32

RegisterEventSourceA
CryptEnumProvidersA
CryptSignHashA
CryptDestroyHash
CryptCreateHash
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptReleaseContext
CryptAcquireContextA
ReportEventA
DeregisterEventSource

Exports

Exports

curl_easy_cleanup
curl_easy_duphandle
curl_easy_escape
curl_easy_getinfo
curl_easy_init
curl_easy_pause
curl_easy_perform
curl_easy_recv
curl_easy_reset
curl_easy_send
curl_easy_setopt
curl_easy_strerror
curl_easy_unescape
curl_easy_upkeep
curl_escape
curl_formadd
curl_formfree
curl_formget
curl_free
curl_getdate
curl_getenv
curl_global_cleanup
curl_global_init
curl_global_init_mem
curl_global_sslset
curl_maprintf
curl_mfprintf
curl_mime_addpart
curl_mime_data
curl_mime_data_cb
curl_mime_encoder
curl_mime_filedata
curl_mime_filename
curl_mime_free
curl_mime_headers
curl_mime_init
curl_mime_name
curl_mime_subparts
curl_mime_type
curl_mprintf
curl_msnprintf
curl_msprintf
curl_multi_add_handle
curl_multi_assign
curl_multi_cleanup
curl_multi_fdset
curl_multi_info_read
curl_multi_init
curl_multi_perform
curl_multi_remove_handle
curl_multi_setopt
curl_multi_socket
curl_multi_socket_action
curl_multi_socket_all
curl_multi_strerror
curl_multi_timeout
curl_multi_wait
curl_mvaprintf
curl_mvfprintf
curl_mvprintf
curl_mvsnprintf
curl_mvsprintf
curl_pushheader_byname
curl_pushheader_bynum
curl_share_cleanup
curl_share_init
curl_share_setopt
curl_share_strerror
curl_slist_append
curl_slist_free_all
curl_strequal
curl_strnequal
curl_unescape
curl_url
curl_url_cleanup
curl_url_dup
curl_url_get
curl_url_set
curl_version
curl_version_info

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 330KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcp120.dll
.dll windows:6 windows x86 arch:x86

6ccda270a497a2c5a36a7f385cc9910d

Code Sign

33:00:00:00:34:24:31:40:c9:a0:c1:79:8d:00:00:00:00:00:34
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

27/03/2013, 20:08

Not After

27/06/2014, 20:08

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:B8EC-30A4-7144,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/01/2013, 22:33

Not After

24/04/2014, 22:33

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:1a:77:bb:74:b3:07:d1:16:b8:00:00:00:00:00:1a
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/09/2013, 17:41

Not After

24/12/2014, 17:41

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

97:5a:aa:89:27:9c:94:dc:e4:67:63:18:68:67:90:14:d7:11:ec:ba:93:b9:38:95:4c:40:24:22:95:55:18:13
Signer

Actual PE Digest

97:5a:aa:89:27:9c:94:dc:e4:67:63:18:68:67:90:14:d7:11:ec:ba:93:b9:38:95:4c:40:24:22:95:55:18:13

Digest Algorithm

sha256

PE Digest Matches

true

72:5e:30:95:db:09:9c:26:03:aa:27:a0:ee:5c:0c:1f:e9:33:d5:3e
Signer

Actual PE Digest

72:5e:30:95:db:09:9c:26:03:aa:27:a0:ee:5c:0c:1f:e9:33:d5:3e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcp120.i386.pdb

Imports

msvcr120

?what@exception@std@@UBEPBDXZ
_CxxThrowException
__CxxFrameHandler3
fclose
fflush
fgetc
fgetpos
fsetpos
_fseeki64
fwrite
setvbuf
ungetc
_lock_file
_unlock_file
memcpy_s
memset
_fsopen
fseek
_wfsopen
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?Alloc@Concurrency@@YAPAXI@Z
?Free@Concurrency@@YAXPAX@Z
?_ScheduleTask@_CurrentScheduler@details@Concurrency@@SAXP6AXPAX@Z0@Z
??0invalid_operation@Concurrency@@QAE@PBD@Z
??0critical_section@Concurrency@@QAE@XZ
??1critical_section@Concurrency@@QAE@XZ
??0event@Concurrency@@QAE@XZ
??1event@Concurrency@@QAE@XZ
?wait@event@Concurrency@@QAEII@Z
?set@event@Concurrency@@QAEXXZ
ldexp
sprintf_s
strcspn
wcslen
_Strftime
_Wcsftime
strcmp
setlocale
_malloc_crt
_realloc_crt
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
fgetwc
fputwc
ungetwc
__uncaught_exception
_errno
memcmp
_wcsdup
___lc_locale_name_func
___lc_collate_cp_func
__crtCompareStringA
__crtLCMapStringA
___lc_codepage_func
_ismbblead
remove
rename
_wremove
strcpy_s
wcscpy_s
_wgetcwd
_wchdir
_wmkdir
_wrmdir
??1bad_cast@std@@UAE@XZ
_getcwd
_chdir
_mkdir
_rmdir
__crtIsPackagedApp
__crtCreateSymbolicLinkW
__crtGetFileInformationByHandleEx
__crtSetFileInformationByHandle
_calloc_crt
??0_Condition_variable@details@Concurrency@@QAE@XZ
??1_Condition_variable@details@Concurrency@@QAE@XZ
?wait@_Condition_variable@details@Concurrency@@QAEXAAVcritical_section@3@@Z
?wait_for@_Condition_variable@details@Concurrency@@QAE_NAAVcritical_section@3@I@Z
?notify_one@_Condition_variable@details@Concurrency@@QAEXXZ
?notify_all@_Condition_variable@details@Concurrency@@QAEXXZ
__crtSleep
_beginthreadex
_endthreadex
?lock@critical_section@Concurrency@@QAEXXZ
?try_lock@critical_section@Concurrency@@QAE_NXZ
?try_lock_for@critical_section@Concurrency@@QAE_NI@Z
?unlock@critical_section@Concurrency@@QAEXXZ
?terminate@@YAXXZ
__crtFlsAlloc
__crtFlsFree
__crtFlsGetValue
__crtFlsSetValue
calloc
??0operation_timed_out@Concurrency@@QAE@XZ
?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z
??0invalid_link_target@Concurrency@@QAE@PBD@Z
??0message_not_found@Concurrency@@QAE@XZ
?_Trace_agents@Concurrency@@YAXW4Agents_EventType@1@_JZZ
??0bad_target@Concurrency@@QAE@XZ
??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
?_Yield@_Context@details@Concurrency@@SAXXZ
?_UnderlyingYield@details@Concurrency@@YAXXZ
?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ
?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ
?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ
??1_SpinLock@details@Concurrency@@QAE@XZ
??0_SpinLock@details@Concurrency@@QAE@ACJ@Z
?Log2@details@Concurrency@@YAKI@Z
_lock
_unlock
__pctype_func
isupper
__crtGetLocaleInfoEx
islower
__crtLCMapStringW
isspace
tolower
memchr
sqrt
isdigit
isxdigit
isalnum
__crtCompareStringW
__dllonexit
_onexit
??1type_info@@UAE@XZ
__CppXcptFilter
_amsg_exit
_initterm
_initterm_e
_except_handler4_common
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__clean_type_info_names_internal
??0bad_cast@std@@QAE@ABV01@@Z
_W_Gettnames
_W_Getmonths
_W_Getdays
_Gettnames
_Getmonths
_Getdays
localeconv
??0bad_cast@std@@QAE@PBD@Z
??_V@YAXPAX@Z
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@XZ
memmove
strlen
memcpy
malloc
free
___mb_cur_max_func
_purecall
rand_s
fputs
fputc
__iob_func
abort
log
__crtInitializeCriticalSectionEx
??3@YAXPAX@Z
??2@YAPAXI@Z
_wrename

kernel32

GetCurrentProcessId
QueryPerformanceCounter
IsDebuggerPresent
IsProcessorFeaturePresent
GetStringTypeW
GetSystemTimeAsFileTime
GetExitCodeThread
GetCurrentThreadId
GetCurrentThread
GetCurrentProcess
WaitForSingleObject
DuplicateHandle
AreFileApisANSI
CreateHardLinkW
CopyFileW
GetLastError
CloseHandle
GetFileInformationByHandle
GetFileAttributesExW
GetDiskFreeSpaceExW
FindNextFileW
FindFirstFileExW
FindClose
CreateFileW
WideCharToMultiByte
MultiByteToWideChar
DecodePointer
EncodePointer
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
DisableThreadLibraryCalls

Exports

Exports

??$_Getvals@_W@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z
??$_Getvals@_W@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z
??$_Getvals@_W@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z
??0?$_Yarn@D@std@@QAE@ABV01@@Z
??0?$_Yarn@D@std@@QAE@PBD@Z
??0?$_Yarn@D@std@@QAE@XZ
??0?$_Yarn@_W@std@@QAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@ABV01@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@ABV01@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@ABV01@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@DDH@std@@QAE@I@Z
??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@GDH@std@@QAE@I@Z
??0?$codecvt@_WDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@_WDH@std@@QAE@I@Z
??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@D@std@@QAE@PBF_NI@Z
??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@G@std@@QAE@I@Z
??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@_W@std@@QAE@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
??0Init@ios_base@std@@QAE@XZ
??0_Concurrent_queue_base_v4@details@Concurrency@@IAE@I@Z
??0_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@ABV_Concurrent_queue_base_v4@12@@Z
??0_Container_base12@std@@QAE@ABU01@@Z
??0_Container_base12@std@@QAE@XZ
??0_Facet_base@std@@QAE@ABV01@@Z
??0_Facet_base@std@@QAE@XZ
??0_Init_locks@std@@QAE@XZ
??0_Locimp@locale@std@@AAE@ABV012@@Z
??0_Locimp@locale@std@@AAE@_N@Z
??0_Locinfo@std@@QAE@HPBD@Z
??0_Locinfo@std@@QAE@PBD@Z
??0_Lockit@std@@QAE@H@Z
??0_Lockit@std@@QAE@XZ
??0_Pad@std@@QAE@ABV01@@Z
??0_Pad@std@@QAE@XZ
??0_Runtime_object@details@Concurrency@@QAE@H@Z
??0_Runtime_object@details@Concurrency@@QAE@XZ
??0_Timevec@std@@QAE@ABV01@@Z
??0_Timevec@std@@QAE@PAX@Z
??0_UShinit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??0agent@Concurrency@@QAE@AAVScheduleGroup@1@@Z
??0agent@Concurrency@@QAE@AAVScheduler@1@@Z
??0agent@Concurrency@@QAE@XZ
??0codecvt_base@std@@QAE@I@Z
??0ctype_base@std@@QAE@I@Z
??0facet@locale@std@@IAE@I@Z
??0id@locale@std@@QAE@I@Z
??0ios_base@std@@IAE@XZ
??0time_base@std@@QAE@I@Z
??1?$_Yarn@D@std@@QAE@XZ
??1?$_Yarn@_W@std@@QAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$codecvt@DDH@std@@MAE@XZ
??1?$codecvt@GDH@std@@MAE@XZ
??1?$codecvt@_WDH@std@@MAE@XZ
??1?$ctype@D@std@@MAE@XZ
??1?$ctype@G@std@@MAE@XZ
??1?$ctype@_W@std@@MAE@XZ
??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
??1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
??1Init@ios_base@std@@QAE@XZ
??1_Concurrent_queue_base_v4@details@Concurrency@@MAE@XZ
??1_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@XZ
??1_Concurrent_vector_base_v4@details@Concurrency@@IAE@XZ
??1_Container_base12@std@@QAE@XZ
??1_Facet_base@std@@UAE@XZ
??1_Init_locks@std@@QAE@XZ
??1_Locimp@locale@std@@MAE@XZ
??1_Locinfo@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??1_Pad@std@@QAE@XZ
??1_Timevec@std@@QAE@XZ
??1_UShinit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1agent@Concurrency@@UAE@XZ
??1codecvt_base@std@@UAE@XZ
??1ctype_base@std@@UAE@XZ
??1facet@locale@std@@MAE@XZ
??1ios_base@std@@UAE@XZ
??1time_base@std@@UAE@XZ
??4?$_Iosb@H@std@@QAEAAV01@ABV01@@Z
??4?$_Yarn@D@std@@QAEAAV01@ABV01@@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
??4?$_Yarn@_W@std@@QAEAAV01@PB_W@Z
??4?$basic_iostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_iostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_istream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_istream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_ostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_ostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z
??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEAAV01@ABV01@@Z
??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEAAV01@ABV01@@Z
??4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEAAV01@ABV01@@Z
??4Init@ios_base@std@@QAEAAV012@ABV012@@Z
??4_Container_base0@std@@QAEAAU01@ABU01@@Z
??4_Container_base12@std@@QAEAAU01@ABU01@@Z
??4_Facet_base@std@@QAEAAV01@ABV01@@Z
??4_Init_locks@std@@QAEAAV01@ABV01@@Z
??4_Pad@std@@QAEAAV01@ABV01@@Z
??4_Timevec@std@@QAEAAV01@ABV01@@Z
??4_UShinit@std@@QAEAAV01@ABV01@@Z
??4_Winit@std@@QAEAAV01@ABV01@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_K@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_K@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
??7ios_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
??Bios_base@std@@QBE_NXZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$codecvt@DDH@std@@6B@
??_7?$codecvt@GDH@std@@6B@
??_7?$codecvt@_WDH@std@@6B@
??_7?$ctype@D@std@@6B@
??_7?$ctype@G@std@@6B@
??_7?$ctype@_W@std@@6B@
??_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7_Facet_base@std@@6B@
??_7_Locimp@locale@std@@6B@
??_7_Pad@std@@6B@
??_7codecvt_base@std@@6B@
??_7ctype_base@std@@6B@
??_7facet@locale@std@@6B@
??_7ios_base@std@@6B@
??_7time_base@std@@6B@
??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@
??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@
??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@
??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@
??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@
??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@
??_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@
??_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@
??_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@
??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@
??_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@
??_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@
??_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_istream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ
??_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_F?$codecvt@DDH@std@@QAEXXZ
??_F?$codecvt@GDH@std@@QAEXXZ
??_F?$codecvt@_WDH@std@@QAEXXZ
??_F?$ctype@D@std@@QAEXXZ
??_F?$ctype@G@std@@QAEXXZ
??_F?$ctype@_W@std@@QAEXXZ
??_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
??_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
??_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
??_F_Locinfo@std@@QAEXXZ
??_F_Timevec@std@@QAEXXZ
??_Fcodecvt_base@std@@QAEXXZ
??_Fctype_base@std@@QAEXXZ
??_Ffacet@locale@std@@QAEXXZ
??_Fid@locale@std@@QAEXXZ
??_Ftime_base@std@@QAEXXZ
?GetNextAsyncId@platform@details@Concurrency@@YAIXZ
?NFS_Allocate@details@Concurrency@@YAPAXIIPAX@Z
?NFS_Free@details@Concurrency@@YAXPAX@Z
?NFS_GetLineSize@details@Concurrency@@YAIXZ
?_10@placeholders@std@@3V?$_Ph@$09@2@A
?_11@placeholders@std@@3V?$_Ph@$0L@@2@A
?_12@placeholders@std@@3V?$_Ph@$0M@@2@A
?_13@placeholders@std@@3V?$_Ph@$0N@@2@A
?_14@placeholders@std@@3V?$_Ph@$0O@@2@A
?_15@placeholders@std@@3V?$_Ph@$0P@@2@A
?_16@placeholders@std@@3V?$_Ph@$0BA@@2@A
?_17@placeholders@std@@3V?$_Ph@$0BB@@2@A
?_18@placeholders@std@@3V?$_Ph@$0BC@@2@A
?_19@placeholders@std@@3V?$_Ph@$0BD@@2@A
?_1@placeholders@std@@3V?$_Ph@$00@2@A
?_20@placeholders@std@@3V?$_Ph@$0BE@@2@A
?_2@placeholders@std@@3V?$_Ph@$01@2@A
?_3@placeholders@std@@3V?$_Ph@$02@2@A
?_4@placeholders@std@@3V?$_Ph@$03@2@A
?_5@placeholders@std@@3V?$_Ph@$04@2@A
?_6@placeholders@std@@3V?$_Ph@$05@2@A
?_7@placeholders@std@@3V?$_Ph@$06@2@A
?_8@placeholders@std@@3V?$_Ph@$07@2@A
?_9@placeholders@std@@3V?$_Ph@$08@2@A
?_Addcats@_Locinfo@std@@QAEAAV12@HPBD@Z
?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
?_Addstd@ios_base@std@@SAXPAV12@@Z
?_Advance@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXXZ
?_Assign@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXABV123@@Z
?_Atexit@@YAXP6AXXZ@Z
?_BADOFF@std@@3_JB
?_Byte_reverse_table@details@Concurrency@@3QBEB
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?_C_str@?$_Yarn@_W@std@@QBEPB_WXZ
?_Callfns@ios_base@std@@AAEXW4event@12@@Z
?_Clocptr@_Locimp@locale@std@@0PAV123@A
?_Close_dir@sys@tr2@std@@YAXPAX@Z
?_Copy_file@sys@tr2@std@@YAHPBD0_N@Z
?_Copy_file@sys@tr2@std@@YAHPB_W0_N@Z
?_Current_get@sys@tr2@std@@YAPADAAY0BAE@D@Z
?_Current_get@sys@tr2@std@@YAPA_WAAY0BAE@_W@Z
?_Current_set@sys@tr2@std@@YA_NPBD@Z
?_Current_set@sys@tr2@std@@YA_NPB_W@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Donarrow@?$ctype@G@std@@IBEDGD@Z
?_Donarrow@?$ctype@_W@std@@IBED_WD@Z
?_Dowiden@?$ctype@G@std@@IBEGD@Z
?_Dowiden@?$ctype@_W@std@@IBE_WD@Z
?_Empty@?$_Yarn@D@std@@QBE_NXZ
?_Empty@?$_Yarn@_W@std@@QBE_NXZ
?_Equivalent@sys@tr2@std@@YAHPBD0@Z
?_Equivalent@sys@tr2@std@@YAHPB_W0@Z
?_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADDH@Z
?_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADDH@Z
?_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADDH@Z
?_File_size@sys@tr2@std@@YA_KPBD@Z
?_File_size@sys@tr2@std@@YA_KPB_W@Z
?_Findarr@ios_base@std@@AAEAAU_Iosarray@12@H@Z
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?_Fiopen@std@@YAPAU_iobuf@@PBGHH@Z
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBDIIII@Z
?_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AAVios_base@2@GPBDIIII@Z
?_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBDIIII@Z
?_Future_error_map@std@@YAPBDH@Z
?_GetCombinableSize@details@Concurrency@@YAIXZ
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$codecvt@GDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getcat@facet@locale@std@@SAIPAPBV123@PBV23@@Z
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
?_Getctype@_Locinfo@std@@QBE?AU_Ctypevec@@XZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_Getdateorder@_Locinfo@std@@QBEHXZ
?_Getdays@_Locinfo@std@@QBEPBDXZ
?_Getfalse@_Locinfo@std@@QBEPBDXZ
?_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z
?_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z
?_Getffld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z
?_Getffldx@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z
?_Getffldx@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z
?_Getffldx@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z
?_Getfmt@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
?_Getfmt@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
?_Getfmt@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Getifld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1HABVlocale@2@@Z
?_Getifld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1HABVlocale@2@@Z
?_Getifld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1HABVlocale@2@@Z
?_Getint@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@0HHAAHABV?$ctype@D@2@@Z
?_Getint@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@0HHAAHABV?$ctype@G@2@@Z
?_Getint@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@0HHAAHABV?$ctype@_W@2@@Z

Sections

.text
Size: 391KB - Virtual size: 390KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcr120.dll
.dll windows:6 windows x86 arch:x86

aa8d086deb6960b10f8791df466a5610

Code Sign

33:00:00:00:34:24:31:40:c9:a0:c1:79:8d:00:00:00:00:00:34
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

27/03/2013, 20:08

Not After

27/06/2014, 20:08

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:B8EC-30A4-7144,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/01/2013, 22:33

Not After

24/04/2014, 22:33

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:1a:77:bb:74:b3:07:d1:16:b8:00:00:00:00:00:1a
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/09/2013, 17:41

Not After

24/12/2014, 17:41

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:82:cf:f8:a2:0e:57:bd:cc:0a:76:cf:1e:4f:c9:43:8c:94:65:03:5e:34:db:a7:06:0b:42:ee:a6:9d:c2:88
Signer

Actual PE Digest

0a:82:cf:f8:a2:0e:57:bd:cc:0a:76:cf:1e:4f:c9:43:8c:94:65:03:5e:34:db:a7:06:0b:42:ee:a6:9d:c2:88

Digest Algorithm

sha256

PE Digest Matches

true

3f:08:90:50:77:63:e4:04:ba:19:2c:b1:94:32:e7:d0:82:51:35:78
Signer

Actual PE Digest

3f:08:90:50:77:63:e4:04:ba:19:2c:b1:94:32:e7:d0:82:51:35:78

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr120.i386.pdb

Imports

kernel32

EncodePointer
DecodePointer
RaiseException
GetLastError
ExitProcess
GetModuleHandleW
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
GetCommandLineA
GetCommandLineW
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetModuleFileNameA
SetLastError
GetCurrentThread
GetModuleFileNameW
IsProcessorFeaturePresent
GetStdHandle
WriteFile
FindClose
FindFirstFileExA
FindNextFileA
FindFirstFileExW
FindNextFileW
CloseHandle
CreateThread
ExitThread
ResumeThread
LoadLibraryExW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
Beep
Sleep
GetFullPathNameA
GetCurrentProcessId
GetFileAttributesExW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
MoveFileExW
RemoveDirectoryW
GetDriveTypeW
DeleteFileW
SetEnvironmentVariableA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryW
SetEnvironmentVariableW
WaitForSingleObject
GetExitCodeProcess
CreateProcessA
FreeLibrary
LoadLibraryExA
CreateProcessW
ReadFile
GetTempPathA
GetTempPathW
DuplicateHandle
GetCurrentProcess
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetLocalTime
LocalFileTimeToFileTime
SetFileTime
SystemTimeToFileTime
SetLocalTime
InterlockedPopEntrySList
InterlockedFlushSList
QueryDepthSList
InterlockedPushEntrySList
CreateTimerQueue
SetEvent
WaitForSingleObjectEx
UnregisterWait
TlsGetValue
SignalObjectAndWait
TlsSetValue
SetThreadPriority
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetNumaHighestNodeNumber
RegisterWaitForSingleObject
GetLogicalProcessorInformation
RtlCaptureStackBackTrace
GetThreadPriority
GetProcessAffinityMask
SetThreadAffinityMask
TlsAlloc
DeleteTimerQueueTimer
TlsFree
SwitchToThread
TryEnterCriticalSection
SetProcessAffinityMask
VirtualFree
GetVersionExW
VirtualAlloc
VirtualProtect
InitializeSListHead
ReleaseSemaphore
UnregisterWaitEx
LoadLibraryW
OutputDebugStringW
FreeLibraryAndExitThread
GetModuleHandleA
GetThreadTimes
CreateEventW
GetStringTypeW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
HeapFree
HeapAlloc
GetProcessHeap
HeapReAlloc
HeapSize
HeapQueryInformation
HeapValidate
HeapCompact
HeapWalk
GetSystemInfo
VirtualQuery
GetFileType
GetStartupInfoW
FileTimeToLocalFileTime
GetFileInformationByHandle
PeekNamedPipe
CreateFileW
GetConsoleMode
ReadConsoleW
GetConsoleCP
SetFilePointerEx
FlushFileBuffers
CreatePipe
SetStdHandle
GetNumberOfConsoleInputEvents
PeekConsoleInputA
ReadConsoleInputA
SetConsoleMode
ReadConsoleInputW
WriteConsoleW
SetEndOfFile
LockFileEx
UnlockFileEx
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
TerminateProcess
GetTickCount
CreateSemaphoreW
SetConsoleCtrlHandler
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
OutputDebugStringA

Exports

Exports

$I10_OUTPUT
??0?$_SpinWait@$00@details@Concurrency@@QAE@P6AXXZ@Z
??0?$_SpinWait@$0A@@details@Concurrency@@QAE@P6AXXZ@Z
??0SchedulerPolicy@Concurrency@@QAA@IZZ
??0SchedulerPolicy@Concurrency@@QAE@ABV01@@Z
??0SchedulerPolicy@Concurrency@@QAE@XZ
??0_Cancellation_beacon@details@Concurrency@@QAE@XZ
??0_Condition_variable@details@Concurrency@@QAE@XZ
??0_Context@details@Concurrency@@QAE@PAVContext@2@@Z
??0_Interruption_exception@details@Concurrency@@QAE@PBD@Z
??0_Interruption_exception@details@Concurrency@@QAE@XZ
??0_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ
??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_ReaderWriterLock@details@Concurrency@@QAE@XZ
??0_ReentrantBlockingLock@details@Concurrency@@QAE@XZ
??0_ReentrantLock@details@Concurrency@@QAE@XZ
??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_Scheduler@details@Concurrency@@QAE@PAVScheduler@2@@Z
??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_SpinLock@details@Concurrency@@QAE@ACJ@Z
??0_StructuredTaskCollection@details@Concurrency@@QAE@PAV_CancellationTokenState@12@@Z
??0_TaskCollection@details@Concurrency@@QAE@PAV_CancellationTokenState@12@@Z
??0_TaskCollection@details@Concurrency@@QAE@XZ
??0_Timer@details@Concurrency@@IAE@I_N@Z
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0__non_rtti_object@std@@QAE@PBD@Z
??0bad_cast@std@@AAE@PBQBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_target@Concurrency@@QAE@PBD@Z
??0bad_target@Concurrency@@QAE@XZ
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0context_self_unblock@Concurrency@@QAE@PBD@Z
??0context_self_unblock@Concurrency@@QAE@XZ
??0context_unblock_unbalanced@Concurrency@@QAE@PBD@Z
??0context_unblock_unbalanced@Concurrency@@QAE@XZ
??0critical_section@Concurrency@@QAE@XZ
??0default_scheduler_exists@Concurrency@@QAE@PBD@Z
??0default_scheduler_exists@Concurrency@@QAE@XZ
??0event@Concurrency@@QAE@XZ
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??0improper_lock@Concurrency@@QAE@PBD@Z
??0improper_lock@Concurrency@@QAE@XZ
??0improper_scheduler_attach@Concurrency@@QAE@PBD@Z
??0improper_scheduler_attach@Concurrency@@QAE@XZ
??0improper_scheduler_detach@Concurrency@@QAE@PBD@Z
??0improper_scheduler_detach@Concurrency@@QAE@XZ
??0improper_scheduler_reference@Concurrency@@QAE@PBD@Z
??0improper_scheduler_reference@Concurrency@@QAE@XZ
??0invalid_link_target@Concurrency@@QAE@PBD@Z
??0invalid_link_target@Concurrency@@QAE@XZ
??0invalid_multiple_scheduling@Concurrency@@QAE@PBD@Z
??0invalid_multiple_scheduling@Concurrency@@QAE@XZ
??0invalid_operation@Concurrency@@QAE@PBD@Z
??0invalid_operation@Concurrency@@QAE@XZ
??0invalid_oversubscribe_operation@Concurrency@@QAE@PBD@Z
??0invalid_oversubscribe_operation@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_key@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_key@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_value@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_value@Concurrency@@QAE@XZ
??0message_not_found@Concurrency@@QAE@PBD@Z
??0message_not_found@Concurrency@@QAE@XZ
??0missing_wait@Concurrency@@QAE@PBD@Z
??0missing_wait@Concurrency@@QAE@XZ
??0nested_scheduler_missing_detach@Concurrency@@QAE@PBD@Z
??0nested_scheduler_missing_detach@Concurrency@@QAE@XZ
??0operation_timed_out@Concurrency@@QAE@PBD@Z
??0operation_timed_out@Concurrency@@QAE@XZ
??0reader_writer_lock@Concurrency@@QAE@XZ
??0scheduler_not_attached@Concurrency@@QAE@PBD@Z
??0scheduler_not_attached@Concurrency@@QAE@XZ
??0scheduler_resource_allocation_error@Concurrency@@QAE@J@Z
??0scheduler_resource_allocation_error@Concurrency@@QAE@PBDJ@Z
??0scheduler_worker_creation_error@Concurrency@@QAE@J@Z
??0scheduler_worker_creation_error@Concurrency@@QAE@PBDJ@Z
??0scoped_lock@critical_section@Concurrency@@QAE@AAV12@@Z
??0scoped_lock@reader_writer_lock@Concurrency@@QAE@AAV12@@Z
??0scoped_lock_read@reader_writer_lock@Concurrency@@QAE@AAV12@@Z
??0task_canceled@Concurrency@@QAE@PBD@Z
??0task_canceled@Concurrency@@QAE@XZ
??0unsupported_os@Concurrency@@QAE@PBD@Z
??0unsupported_os@Concurrency@@QAE@XZ
??1SchedulerPolicy@Concurrency@@QAE@XZ
??1_Cancellation_beacon@details@Concurrency@@QAE@XZ
??1_Condition_variable@details@Concurrency@@QAE@XZ
??1_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ
??1_ReentrantBlockingLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_SpinLock@details@Concurrency@@QAE@XZ
??1_StructuredTaskCollection@details@Concurrency@@QAE@XZ
??1_TaskCollection@details@Concurrency@@QAE@XZ
??1_Timer@details@Concurrency@@MAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1critical_section@Concurrency@@QAE@XZ
??1event@Concurrency@@QAE@XZ
??1exception@std@@UAE@XZ
??1reader_writer_lock@Concurrency@@QAE@XZ
??1scoped_lock@critical_section@Concurrency@@QAE@XZ
??1scoped_lock@reader_writer_lock@Concurrency@@QAE@XZ
??1scoped_lock_read@reader_writer_lock@Concurrency@@QAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??2@YAPAXIHPBDH@Z
??3@YAXPAX@Z
??3@YAXPAXHPBDH@Z
??4?$_SpinWait@$00@details@Concurrency@@QAEAAV012@ABV012@@Z
??4?$_SpinWait@$0A@@details@Concurrency@@QAEAAV012@ABV012@@Z
??4SchedulerPolicy@Concurrency@@QAEAAV01@ABV01@@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4exception@std@@QAEAAV01@ABV01@@Z
??8type_info@@QBE_NABV0@@Z
??9type_info@@QBE_NABV0@@Z
??_7__non_rtti_object@std@@6B@
??_7bad_cast@std@@6B@
??_7bad_typeid@std@@6B@
??_7exception@std@@6B@
??_F?$_SpinWait@$00@details@Concurrency@@QAEXXZ
??_F?$_SpinWait@$0A@@details@Concurrency@@QAEXXZ
??_F_Context@details@Concurrency@@QAEXXZ
??_F_Scheduler@details@Concurrency@@QAEXXZ
??_Fbad_cast@std@@QAEXXZ
??_Fbad_typeid@std@@QAEXXZ
??_U@YAPAXI@Z
??_U@YAPAXIHPBDH@Z
??_V@YAXPAX@Z
??_V@YAXPAXHPBDH@Z
?Alloc@Concurrency@@YAPAXI@Z
?Block@Context@Concurrency@@SAXXZ
?CaptureCallstack@platform@details@Concurrency@@YAIPAPAXII@Z
?Create@CurrentScheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z
?Create@Scheduler@Concurrency@@SAPAV12@ABVSchedulerPolicy@2@@Z
?CreateResourceManager@Concurrency@@YAPAUIResourceManager@1@XZ
?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@AAVlocation@2@@Z
?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@XZ
?CurrentContext@Context@Concurrency@@SAPAV12@XZ
?Detach@CurrentScheduler@Concurrency@@SAXXZ
?DisableTracing@Concurrency@@YAJXZ
?EnableTracing@Concurrency@@YAJXZ
?Free@Concurrency@@YAXPAX@Z
?Get@CurrentScheduler@Concurrency@@SAPAVScheduler@2@XZ
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?GetExecutionContextId@Concurrency@@YAIXZ
?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ
?GetOSVersion@Concurrency@@YA?AW4OSVersion@IResourceManager@1@XZ
?GetPolicy@CurrentScheduler@Concurrency@@SA?AVSchedulerPolicy@2@XZ
?GetPolicyValue@SchedulerPolicy@Concurrency@@QBEIW4PolicyElementKey@2@@Z
?GetProcessorCount@Concurrency@@YAIXZ
?GetProcessorNodeCount@Concurrency@@YAIXZ
?GetSchedulerId@Concurrency@@YAIXZ
?GetSharedTimerQueue@details@Concurrency@@YAPAXXZ
?Id@Context@Concurrency@@SAIXZ
?Id@CurrentScheduler@Concurrency@@SAIXZ
?IsAvailableLocation@CurrentScheduler@Concurrency@@SA_NABVlocation@2@@Z
?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ
?Log2@details@Concurrency@@YAKI@Z
?Oversubscribe@Context@Concurrency@@SAX_N@Z
?RegisterShutdownEvent@CurrentScheduler@Concurrency@@SAXPAX@Z
?ResetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXXZ
?ScheduleGroupId@Context@Concurrency@@SAIXZ
?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z
?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0AAVlocation@2@@Z
?SetConcurrencyLimits@SchedulerPolicy@Concurrency@@QAEXII@Z
?SetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z
?SetPolicyValue@SchedulerPolicy@Concurrency@@QAEIW4PolicyElementKey@2@I@Z
?VirtualProcessorId@Context@Concurrency@@SAIXZ
?Yield@Context@Concurrency@@SAXXZ
?_Abort@_StructuredTaskCollection@details@Concurrency@@AAEXXZ
?_Acquire@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Acquire@_NonReentrantPPLLock@details@Concurrency@@QAEXPAX@Z
?_Acquire@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Acquire@_ReentrantLock@details@Concurrency@@QAEXXZ
?_Acquire@_ReentrantPPLLock@details@Concurrency@@QAEXPAX@Z
?_AcquireRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_AcquireWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_Cancel@_StructuredTaskCollection@details@Concurrency@@QAEXXZ
?_Cancel@_TaskCollection@details@Concurrency@@QAEXXZ
?_CheckTaskCollection@_UnrealizedChore@details@Concurrency@@IAEXXZ
?_CleanupToken@_StructuredTaskCollection@details@Concurrency@@AAEXXZ
?_ConcRT_CoreAssert@details@Concurrency@@YAXPBD0H@Z
?_ConcRT_Trace@details@Concurrency@@YAXHPB_WZZ
?_Confirm_cancel@_Cancellation_beacon@details@Concurrency@@QAE_NXZ
?_Copy_str@exception@std@@AAEXPBD@Z
?_CurrentContext@_Context@details@Concurrency@@SA?AV123@XZ
?_Current_node@location@Concurrency@@SA?AV12@XZ
?_Destroy@_AsyncTaskCollection@details@Concurrency@@EAEXXZ
?_DoYield@?$_SpinWait@$00@details@Concurrency@@IAEXXZ
?_DoYield@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ
?_Get@_CurrentScheduler@details@Concurrency@@SA?AV_Scheduler@23@XZ
?_GetConcRTTraceInfo@Concurrency@@YAPBU_CONCRT_TRACE_INFO@details@1@XZ
?_GetConcurrency@details@Concurrency@@YAIXZ
?_GetCurrentInlineDepth@_StackGuard@details@Concurrency@@CAAAIXZ
?_GetNumberOfVirtualProcessors@_CurrentScheduler@details@Concurrency@@SAIXZ
?_GetScheduler@_Scheduler@details@Concurrency@@QAEPAVScheduler@3@XZ
?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ
?_IsCanceling@_StructuredTaskCollection@details@Concurrency@@QAE_NXZ
?_IsCanceling@_TaskCollection@details@Concurrency@@QAE_NXZ
?_IsSynchronouslyBlocked@_Context@details@Concurrency@@QBE_NXZ
?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_NewCollection@_AsyncTaskCollection@details@Concurrency@@SAPAV123@PAV_CancellationTokenState@23@@Z
?_NumberOfSpins@?$_SpinWait@$00@details@Concurrency@@IAEKXZ
?_NumberOfSpins@?$_SpinWait@$0A@@details@Concurrency@@IAEKXZ
?_Oversubscribe@_Context@details@Concurrency@@SAX_N@Z
?_Reference@_Scheduler@details@Concurrency@@QAEIXZ
?_Release@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Release@_NonReentrantPPLLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantPPLLock@details@Concurrency@@QAEXXZ
?_Release@_Scheduler@details@Concurrency@@QAEIXZ
?_ReleaseRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_ReleaseWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_ReportUnobservedException@details@Concurrency@@YAXXZ
?_Reset@?$_SpinWait@$00@details@Concurrency@@IAEXXZ
?_Reset@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ
?_RunAndWait@_StructuredTaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z
?_RunAndWait@_TaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z
?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z
?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@PAVlocation@3@@Z
?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z
?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@PAVlocation@3@@Z
?_ScheduleTask@_CurrentScheduler@details@Concurrency@@SAXP6AXPAX@Z0@Z
?_SetSpinCount@?$_SpinWait@$00@details@Concurrency@@QAEXI@Z
?_SetSpinCount@?$_SpinWait@$0A@@details@Concurrency@@QAEXI@Z
?_SetUnobservedExceptionHandler@details@Concurrency@@YAXP6AXXZ@Z
?_ShouldSpinAgain@?$_SpinWait@$00@details@Concurrency@@IAE_NXZ
?_ShouldSpinAgain@?$_SpinWait@$0A@@details@Concurrency@@IAE_NXZ
?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ
?_SpinOnce@?$_SpinWait@$0A@@details@Concurrency@@QAE_NXZ
?_SpinYield@Context@Concurrency@@SAXXZ
?_Start@_Timer@details@Concurrency@@IAEXXZ
?_Stop@_Timer@details@Concurrency@@IAEXXZ
?_Tidy@exception@std@@AAEXXZ
?_Trace_agents@Concurrency@@YAXW4Agents_EventType@1@_JZZ
?_Trace_ppl_function@Concurrency@@YAXABU_GUID@@EW4ConcRT_EventType@1@@Z
?_TryAcquire@_NonReentrantBlockingLock@details@Concurrency@@QAE_NXZ
?_TryAcquire@_ReentrantBlockingLock@details@Concurrency@@QAE_NXZ
?_TryAcquire@_ReentrantLock@details@Concurrency@@QAE_NXZ
?_TryAcquireWrite@_ReaderWriterLock@details@Concurrency@@QAE_NXZ
?_Type_info_dtor@type_info@@CAXPAV1@@Z
?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z
?_UnderlyingYield@details@Concurrency@@YAXXZ
?_ValidateExecute@@YAHP6GHXZ@Z
?_ValidateRead@@YAHPBXI@Z
?_ValidateWrite@@YAHPAXI@Z
?_Value@_SpinCount@details@Concurrency@@SAIXZ
?_Yield@_Context@details@Concurrency@@SAXXZ
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrCompare@@YA_NPBX0@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrCopyException@@YAXPAXPBX1@Z
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?__ExceptionPtrSwap@@YAXPAX0@Z
?__ExceptionPtrToBool@@YA_NPBX@Z
?_inconsistency@@YAXXZ
?_invalid_parameter@@YAXPBG00II@Z
?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
?_open@@YAHPBDHH@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZH@Z
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?_sopen@@YAHPBDHHH@Z
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?_wopen@@YAHPB_WHH@Z
?_wsopen@@YAHPB_WHHH@Z
?before@type_info@@QBE_NABV1@@Z
?current@location@Concurrency@@SA?AV12@XZ
?from_numa_node@location@Concurrency@@SA?AV12@G@Z
?get_error_code@scheduler_resource_allocation_error@Concurrency@@QBEJXZ
?lock@critical_section@Concurrency@@QAEXXZ
?lock@reader_writer_lock@Concurrency@@QAEXXZ
?lock_read@reader_writer_lock@Concurrency@@QAEXXZ
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
?native_handle@critical_section@Concurrency@@QAEAAV12@XZ
?notify_all@_Condition_variable@details@Concurrency@@QAEXXZ
?notify_one@_Condition_variable@details@Concurrency@@QAEXXZ
?raw_name@type_info@@QBEPBDXZ
?reset@event@Concurrency@@QAEXXZ
?set@event@Concurrency@@QAEXXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_task_execution_resources@Concurrency@@YAXGPAU_GROUP_AFFINITY@@@Z
?set_task_execution_resources@Concurrency@@YAXK@Z
?set_terminate@@YAP6AXXZH@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZH@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?swprintf@@YAHPAGIPBGZZ
?swprintf@@YAHPA_WIPB_WZZ
?terminate@@YAXXZ
?try_lock@critical_section@Concurrency@@QAE_NXZ
?try_lock@reader_writer_lock@Concurrency@@QAE_NXZ
?try_lock_for@critical_section@Concurrency@@QAE_NI@Z
?try_lock_read@reader_writer_lock@Concurrency@@QAE_NXZ
?unexpected@@YAXXZ
?unlock@critical_section@Concurrency@@QAEXXZ
?unlock@reader_writer_lock@Concurrency@@QAEXXZ
?vswprintf@@YAHPA_WIPB_WPAD@Z
?wait@Concurrency@@YAXI@Z
?wait@_Condition_variable@details@Concurrency@@QAEXAAVcritical_section@3@@Z
?wait@event@Concurrency@@QAEII@Z
?wait_for@_Condition_variable@details@Concurrency@@QAE_NAAVcritical_section@3@I@Z
?wait_for_multiple@event@Concurrency@@SAIPAPAV12@I_NI@Z
?what@exception@std@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CRT_RTC_INITW
_Cbuild
_CreateFrameInfo
_CxxThrowException
_EH_prolog
_FCbuild
_FindAndUnlinkFrame
_Getdays
_Getmonths
_Gettnames
_HUGE
_IsExceptionObjectToBeDestroyed
_LCbuild
_NLG_Dispatch2
_NLG_Return
_NLG_Return2
_SetWinRTOutOfMemoryExceptionCallback
_Strftime
_W_Getdays
_W_Getmonths
_W_Gettnames
_Wcsftime
_XcptFilter
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__CppXcptFilter
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__GetPlatformExceptionInfo
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__STRINGTOLD_L
__TypeMatch
___lc_codepage_func
___lc_collate_cp_func
___lc_locale_name_func
___mb_cur_max_func
___mb_cur_max_l_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__clean_type_info_names_internal
__control87_2
__create_locale
__crtCompareStringA
__crtCompareStringEx
__crtCompareStringW
__crtCreateEventExW
__crtCreateSemaphoreExW
__crtCreateSymbolicLinkW
__crtEnumSystemLocalesEx
__crtFlsAlloc
__crtFlsFree
__crtFlsGetValue
__crtFlsSetValue
__crtGetDateFormatEx
__crtGetFileInformationByHandleEx
__crtGetLocaleInfoEx
__crtGetShowWindowMode
__crtGetTickCount64
__crtGetTimeFormatEx
__crtGetUserDefaultLocaleName
__crtInitializeCriticalSectionEx
__crtIsPackagedApp
__crtIsValidLocaleName
__crtLCMapStringA
__crtLCMapStringEx
__crtLCMapStringW
__crtSetFileInformationByHandle
__crtSetThreadStackGuarantee
__crtSetUnhandledExceptionFilter
__crtSleep
__crtTerminateProcess
__crtUnhandledException
__daylight
__dllonexit
__doserrno
__dstbias
__fpecode
__free_locale
__get_current_locale
__get_flsindex
__get_tlsindex
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__iswcsym
__iswcsymf
__lconv
__lconv_init
__libm_sse2_acos
__libm_sse2_acosf
__libm_sse2_asin
__libm_sse2_asinf
__libm_sse2_atan
__libm_sse2_atan2
__libm_sse2_atanf
__libm_sse2_cos
__libm_sse2_cosf
__libm_sse2_exp
__libm_sse2_expf
__libm_sse2_log
__libm_sse2_log10
__libm_sse2_log10f
__libm_sse2_logf
__libm_sse2_pow
__libm_sse2_powf
__libm_sse2_sin
__libm_sse2_sinf
__libm_sse2_tan
__libm_sse2_tanf
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__report_gsfailure
__set_app_type
__setlc_active

Sections

.text
Size: 880KB - Virtual size: 880KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2e24d00c146e0935e0e9e49346efbb5

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcp120

msvcr120

kernel32

version

Sections

.text Size: 591KB - Virtual size: 590KB

.rdata Size: 121KB - Virtual size: 121KB

.data Size: 2KB - Virtual size: 3KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 31KB - Virtual size: 31KB

86b9210ed74f63b9d24ef3fde573cad1

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44Certificate

Extended Key Usages

Key Usages

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bdCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9cCertificate

Extended Key Usages

Key Usages

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate

Extended Key Usages

Key Usages

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate

Extended Key Usages

Key Usages

8d:7c:98:66:e4:3a:62:ef:53:c9:52:1e:c3:34:2b:cd:b0:61:fa:b5:bb:75:9a:2b:ec:ad:85:1a:0b:3d:42:48Signer

13:ef:33:b9:10:58:f1:69:2b:09:3f:db:f1:f1:5c:2d:c7:15:de:baSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 655KB - Virtual size: 654KB

.rdata Size: 152KB - Virtual size: 152KB

.data Size: 21KB - Virtual size: 63KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 38KB - Virtual size: 37KB

0b7943a13cd13f6f34fb5907c45da678

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44Certificate

Extended Key Usages

Key Usages

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bdCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

.text
Size: 591KB - Virtual size: 590KB

.rdata
Size: 121KB - Virtual size: 121KB

.data
Size: 2KB - Virtual size: 3KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 31KB - Virtual size: 31KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

8d:7c:98:66:e4:3a:62:ef:53:c9:52:1e:c3:34:2b:cd:b0:61:fa:b5:bb:75:9a:2b:ec:ad:85:1a:0b:3d:42:48
Signer

13:ef:33:b9:10:58:f1:69:2b:09:3f:db:f1:f1:5c:2d:c7:15:de:ba
Signer

.text
Size: 655KB - Virtual size: 654KB

.rdata
Size: 152KB - Virtual size: 152KB

.data
Size: 21KB - Virtual size: 63KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 38KB - Virtual size: 37KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

17:eb:b7:91:35:5f:c9:58:fe:3f:84:65:2a:91:9b:9d:23:36:88:51:5a:8a:42:a6:5e:a1:07:ef:ef:2d:86:95
Signer

92:b2:db:72:cc:56:18:1a:68:56:a7:2b:f8:01:a6:fd:84:eb:db:74
Signer

.text
Size: 2.7MB - Virtual size: 2.7MB

.rdata
Size: 624KB - Virtual size: 623KB

.data
Size: 17KB - Virtual size: 37KB

.tls
Size: 512B - Virtual size: 2B

_RDATA
Size: 512B - Virtual size: 288B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 132KB - Virtual size: 132KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

0d:70:a1:7d:75:6f:ec:88:85:9a:29:46:be:d7:69:44
Certificate

0f:a8:49:06:15:d7:00:a0:be:21:76:fd:c5:ec:6d:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

01:40:74:8d:43:58:a1:47:81:d6:a9:c3:07:b3:aa:9c
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate