x-opera-setup[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

x-opera-setup.exe
Size

91.6MB
MD5

ecc5bcc5177ce792cdbaff45063f659d
SHA1

a4900955518e94c5787b22f351e2675d397ec876
SHA256

229287506b7a8afe4fcd5c999c6b122ec03d93f50af54e4bbab6c1d68b6d7981
SHA512

67e5d22e49059a14d86aacfa64b3e276d1a2f37f906c5a63ac0e35da23cf8b4b54e4b681af212d985d1fed68d1c135dfce184c882528157cf96a622060884378
SSDEEP

1572864:Sb7WVxVq1o4a9HdpQP3weshJZxCMyUUy7YrROZVx+gbARxqRQYk9Wr:SPWVxVq1odsNsO5UULlUTbIxqB8Wr

Score

5^/10

upx

Malware Config

Signatures

AutoIT Executable 2 IoCs

AutoIT scripts compiled to PE executables.

resource	yara_rule
static1/unpack002/out.upx	autoit_exe
static1/unpack003/out.upx	autoit_exe

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/AppData/Clear.exe	upx
static1/unpack001/AppData/opera_autoupdate.exe	upx
static1/unpack001/X-Opera.exe	upx

Unsigned PE 11 IoCs

Checks for missing Authenticode signature.

resource
x-opera-setup.exe
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/$PLUGINSDIR/StartMenu.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/AppData/Clear.exe
unpack002/out.upx
unpack001/AppData/d3dcompiler_47.dll
unpack001/AppData/opera_autoupdate.exe
unpack003/out.upx
unpack001/X-Opera.exe
unpack001/uninstall.exe

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/uninstall.exe	nsis_installer_1
static1/unpack001/uninstall.exe	nsis_installer_2

Files

x-opera-setup.exe
.exe windows:4 windows x86 arch:x86

3abe302b6d9a1256e6a915429af4ffd2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetEnvironmentVariableA
Sleep
GetTickCount
GetCommandLineA
lstrlenA
GetVersion
SetErrorMode
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GetWindowsDirectoryA
SetCurrentDirectoryA
GetLastError
CreateDirectoryA
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
ReadFile
WriteFile
lstrcpyA
MoveFileExA
lstrcatA
GetSystemDirectoryA
GetProcAddress
GetExitCodeProcess
WaitForSingleObject
CompareFileTime
SetFileAttributesA
GetFileAttributesA
GetShortPathNameA
MoveFileA
GetFullPathNameA
SetFileTime
SearchPathA
CloseHandle
lstrcmpiA
CreateThread
GlobalLock
lstrcmpA
FindFirstFileA
FindNextFileA
DeleteFileA
SetFilePointer
GetPrivateProfileStringA
FindClose
MultiByteToWideChar
FreeLibrary
MulDiv
WritePrivateProfileStringA
LoadLibraryExA
GetModuleHandleA
GlobalAlloc
GlobalFree
ExpandEnvironmentStringsA

user32

ScreenToClient
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
PostQuitMessage
GetWindowRect
EnableMenuItem
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
ReleaseDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndDialog
RegisterClassA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
GetDC
CreateDialogParamA
SetTimer
GetDlgItem
SetWindowLongA
SetForegroundWindow
LoadImageA
IsWindow
SendMessageTimeoutA
FindWindowExA
OpenClipboard
TrackPopupMenu
AppendMenuA
EndPaint
DestroyWindow
wsprintfA
ShowWindow
SetWindowTextA

gdi32

SelectObject
SetBkMode
CreateFontIndirectA
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
ShellExecuteExA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
SHFileOperationA

advapi32

AdjustTokenPrivileges
RegCreateKeyExA
RegOpenKeyExA
SetFileSecurityA
OpenProcessToken
LookupPrivilegeValueA
RegEnumValueA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegEnumKeyA

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_Destroy
ord17

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
CoCreateInstance

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

610235b90207a63ccf481f0d4375d329

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetPrivateProfileIntA
GetCurrentDirectoryA
MultiByteToWideChar
GetPrivateProfileStringA
SetCurrentDirectoryA
GetModuleHandleA
lstrcmpiA
WritePrivateProfileStringA
lstrcatA
lstrcpynA
GlobalFree
lstrlenA
lstrcpyA
GlobalUnlock
GlobalAlloc
GlobalLock

user32

MapWindowPoints
PtInRect
CloseClipboard
LoadCursorA
GetDlgCtrlID
OpenClipboard
GetClientRect
SetWindowRgn
DrawFocusRect
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
DrawTextA
SetCursor
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
CallWindowProcA
PostMessageA
MessageBoxA
GetSysColor
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
GetWindowLongA
EnableMenuItem
GetSystemMenu
GetClipboardData
LoadIconA

gdi32

DeleteObject
CombineRgn
SetTextColor
GetDIBits
SelectObject
CreateRectRgn
GetObjectA
CreateCompatibleDC

shell32

SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
SHGetDesktopFolder

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/StartMenu.dll
.dll windows:4 windows x86 arch:x86

17fb6a8708b9c0bb2d5d8687870eb415

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcatA
FindClose
FindNextFileA
lstrcmpA
GetModuleHandleA
lstrcmpiA
MulDiv
lstrcpynA
GlobalAlloc
lstrcpyA
FindFirstFileA
GlobalFree

user32

GetMessageA
TranslateMessage
PostMessageA
DispatchMessageA
GetDlgItem
GetWindowLongA
CheckDlgButton
ShowWindow
LoadIconA
GetClientRect
MoveWindow
DestroyWindow
GetWindowRect
ReleaseDC
GetDC
EnableWindow
SetWindowTextA
SendMessageA
IsDlgButtonChecked
GetWindowTextA
CreateDialogParamA
SetWindowLongA
wsprintfA
ScreenToClient
IsDialogMessageA
CallWindowProcA

gdi32

GetTextMetricsA
SelectObject

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA

ole32

CoTaskMemFree

Exports

Exports

Init
Select
Show

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 568B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

8c8a576201f68de1a3f26fc723b9f30f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MultiByteToWideChar
GlobalFree
GlobalSize
lstrcpynA
lstrcpyA
GetProcAddress
VirtualFree
FreeLibrary
lstrlenA
LoadLibraryA
GetModuleHandleA
GlobalAlloc
WideCharToMultiByte
VirtualAlloc
VirtualProtect
GetLastError

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 867B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-wizard.bmp
AppData/Clear.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 508KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 264KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 514KB - Virtual size: 513KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
AppData/Plugins/manifest.json
AppData/Plugins/pepflashplayer.dll
.dll windows:6 windows x86 arch:x86

08102b71f14647f676e2184bd1ae418d

Code Sign

0d:2c:ac:cd:3e:9e:ec:06:73:84:10:ba:31:bf:65:95
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

31/01/2019, 00:00

Not After

03/02/2021, 12:00

Subject

SERIALNUMBER=2748129,CN=Adobe Inc.,OU=Flash Player,O=Adobe Inc.,L=San Jose,ST=ca,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

40:a6:3c:ac:80:a9:0e:2d:02:ab:45:70:1f:f0:e6:7a:98:df:81:e9:cd:7a:42:50:f5:81:ed:8c:41:f2:58:c9
Signer

Actual PE Digest

40:a6:3c:ac:80:a9:0e:2d:02:ab:45:70:1f:f0:e6:7a:98:df:81:e9:cd:7a:42:50:f5:81:ed:8c:41:f2:58:c9

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\r\ws\St_Make\code\products\player\pepper\gypbuild\Release\pepflashplayer.pdb

Imports

crypt32

CertCloseStore
CertVerifySubjectCertificateContext
CertCreateCertificateContext
CertFreeCertificateContext
CryptGetMessageCertificates
CryptVerifyMessageSignature
CertCompareCertificate
CertFindCertificateInStore

shlwapi

UrlCanonicalizeW
ord12
AssocQueryStringW

gdiplus

GdipFree
GdipAlloc
GdiplusStartup
GdiplusShutdown
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawImageRect
GdipSetInterpolationMode
GdipGetImageWidth
GdipDeleteGraphics

kernel32

DebugBreak
OutputDebugStringA
TlsAlloc
TlsFree
CloseHandle
SetEvent
ResetEvent
WaitForSingleObject
SleepEx
CreateEventW
QueueUserAPC
CreateThread
OpenThread
SetThreadPriority
ExitThread
GetCurrentProcessId
VirtualQuery
GetFileSizeEx
ReadFile
SetFilePointerEx
WriteFile
GetCurrentProcess
GetWindowsDirectoryW
GetVersionExW
GetModuleFileNameW
GetModuleHandleW
GetModuleHandleExW
GetProcAddress
CreateFileW
GetLastError
ConnectNamedPipe
DisconnectNamedPipe
GetTickCount
MultiByteToWideChar
DeleteFileW
GetFileAttributesW
GetFileSize
SetLastError
ReleaseMutex
CreateMutexA
CreateProcessW
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
WideCharToMultiByte
CreateDirectoryW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesExW
RemoveDirectoryW
GetSystemTimeAsFileTime
QueryPerformanceCounter
QueryPerformanceFrequency
HeapAlloc
HeapFree
HeapSize
GetProcessHeap
GetSystemTime
SystemTimeToFileTime
GetTimeZoneInformation
DecodePointer
RaiseException
TlsSetValue
ReleaseSemaphore
CreateSemaphoreW
GetProcessAffinityMask
FreeLibrary
LoadLibraryA
VirtualAlloc
VirtualFree
CreateEventA
SetWaitableTimer
CancelWaitableTimer
GetCurrentThread
WaitForMultipleObjects
CreateWaitableTimerA
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
RtlCaptureStackBackTrace
GetNumberFormatW
GetCurrencyFormatW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapCreate
HeapDestroy
HeapLock
HeapUnlock
HeapWalk
VirtualProtect
IsDebuggerPresent
GetProcessTimes
GlobalMemoryStatusEx
SetSystemTime
GetModuleFileNameA
FileTimeToSystemTime
GetACP
ResumeThread
CreateWaitableTimerW
CreateTimerQueueTimer
DeleteTimerQueueTimer
GetStdHandle
GetFileType
GlobalMemoryStatus
LoadLibraryW
FlushConsoleInputBuffer
SetCurrentDirectoryW
GetCurrentDirectoryW
GetTempFileNameW
GetFullPathNameW
CopyFileW
MoveFileExW
FlushFileBuffers
SetEndOfFile
EncodePointer
GetStringTypeW
GetCPInfo
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
InitializeSListHead
GetStartupInfoW
OutputDebugStringW
lstrlenW
lstrcpynW
LocalFree
LocalAlloc
GetNativeSystemInfo
InterlockedDecrement
TlsGetValue
GetCurrentThreadId
SwitchToThread
Sleep
DeleteCriticalSection
InterlockedIncrement
DeviceIoControl
CreateFileA
WriteConsoleW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VerSetConditionMask
VerifyVersionInfoW
FormatMessageA
ExpandEnvironmentStringsA
GetLocaleInfoW
GetSystemInfo
InitializeCriticalSectionAndSpinCount
FindNextFileA
FindFirstFileExA
GetConsoleCP
CreateProcessA
GetExitCodeProcess
HeapReAlloc
SetConsoleMode
ReadConsoleInputA
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetDriveTypeW
SetConsoleCtrlHandler
ReadConsoleW
GetConsoleMode
FreeLibraryAndExitThread
ExitProcess
SetStdHandle
InterlockedFlushSList
RtlUnwind
LoadLibraryExW

user32

SetRectEmpty
GetCursorPos
EnumDisplayMonitors
GetMonitorInfoW
GetMonitorInfoA
GetDC
MessageBoxW
GetUserObjectInformationW
GetProcessWindowStation
GetForegroundWindow
WaitForInputIdle
wsprintfW
GetSystemMetrics
MonitorFromRect
EnumDisplayDevicesA
GetWindowRect
GetClientRect
WindowFromDC

advapi32

GetTokenInformation
DeregisterEventSource
RegisterEventSourceW
ReportEventW
CryptAcquireContextW
CryptGenRandom
SystemFunction036
OpenProcessToken
GetSidSubAuthority
GetSidSubAuthorityCount
IsValidSid
CryptEncrypt
CryptImportKey
CryptExportKey
CryptDestroyKey
CryptGenKey
CryptReleaseContext

ole32

CoTaskMemAlloc
CoSetProxyBlanket
CoTaskMemFree
CoUninitialize
CoInitialize
CoCreateInstance
CoFreeUnusedLibraries

shell32

SHGetFolderPathW
ShellExecuteW
ShellExecuteExW
ord165
SHCreateDirectoryExW

oleaut32

SysFreeString
SysStringLen
VariantInit
VariantClear
SysAllocString

gdi32

SelectObject
EnumFontFamiliesExW
DeleteObject
DeleteDC
CreateFontIndirectW
CreateCompatibleDC
GetFontData
CreateDCW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

ws2_32

bind
getsockname
WSACleanup
ntohl
htons
ntohs
htonl
WSAGetLastError
WSASetLastError
shutdown
send
recv
closesocket
getsockopt
select
setsockopt
WSAIoctl
ioctlsocket
gethostname

psapi

GetProcessImageFileNameW
GetProcessMemoryInfo

winmm

timeKillEvent
timeSetEvent
timeGetTime

Exports

Exports

IAEModule_AEModule_PutKernel
IAEModule_IAEKernel_LoadModule
IAEModule_IAEKernel_UnloadModule
PPP_GetInterface
PPP_InitializeBroker
PPP_InitializeModule
PPP_ShutdownBroker
PPP_ShutdownModule
curl_easy_cleanup
curl_easy_duphandle
curl_easy_escape
curl_easy_getinfo
curl_easy_init
curl_easy_pause
curl_easy_perform
curl_easy_recv
curl_easy_reset
curl_easy_send
curl_easy_setopt
curl_easy_strerror
curl_easy_unescape
curl_escape
curl_formadd
curl_formfree
curl_formget
curl_free
curl_getdate
curl_getenv
curl_global_cleanup
curl_global_init
curl_global_init_mem
curl_maprintf
curl_mfprintf
curl_mprintf
curl_msnprintf
curl_msprintf
curl_multi_add_handle
curl_multi_assign
curl_multi_cleanup
curl_multi_fdset
curl_multi_info_read
curl_multi_init
curl_multi_perform
curl_multi_remove_handle
curl_multi_setopt
curl_multi_socket
curl_multi_socket_action
curl_multi_socket_all
curl_multi_strerror
curl_multi_timeout
curl_multi_wait
curl_mvaprintf
curl_mvfprintf
curl_mvprintf
curl_mvsnprintf
curl_mvsprintf
curl_share_cleanup
curl_share_init
curl_share_setopt
curl_share_strerror
curl_slist_append
curl_slist_free_all
curl_strequal
curl_strnequal
curl_unescape

Sections

.text
Size: 12.3MB - Virtual size: 12.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 801KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 13B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 497KB - Virtual size: 497KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/d3dcompiler_47.dll
.dll windows:10 windows x86 arch:x86

0f31485cd3d6d36b416b744fa9701f28

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D3DCompiler_47.pdb

Imports

msvcrt

__dllonexit
_unlock
strncpy_s
malloc
_strnicmp
atoi
isdigit
_lock
??1type_info@@UAE@XZ
_initterm
_amsg_exit
_XcptFilter
_callnewh
_isnan
_purecall
__isascii
_clearfp
_controlfp
_strdup
_mbstrlen
_vsnwprintf
strtoul
isxdigit
isalpha
atof
strchr
setlocale
strnlen
_onexit
modf
isspace
wcsncmp
wcsncpy_s
_wcsicmp
memcpy
memset
fclose
bsearch
qsort
strcat_s
_except_handler4_common
_CxxThrowException
_snwprintf_s
__unDName
fread
fseek
_wfsopen
wcstoul
_fileno
sscanf_s
_filelengthi64
towlower
_wcsnicmp
_wsplitpath_s
wcscpy_s
wcsncat_s
wcsrchr
swprintf_s
_wmakepath_s
time
_wcsdup
_wgetenv
_wfullpath
_chsize_s
_close
_read
_write
_lseeki64
_get_osfhandle
_open_osfhandle
wcscat_s
ftell
_mbscmp
_memicmp
toupper
_atoi64
_errno
strtod
__CxxFrameHandler3
_strtoui64
?terminate@@YAXXZ
strstr
ceil
strrchr
tolower
_finite
_fpclass
memmove
strcpy_s
memcpy_s
isalnum
getenv
free
_stricmp
sprintf_s
_vsnprintf
strncmp
_wsopen
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_ftol2
_ftol2_sse
floor

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
HeapCreate
lstrcmpiA
CreateFileA
LCMapStringW
FlushViewOfFile
MapViewOfFileEx
SetFilePointer
InitializeCriticalSectionAndSpinCount
ExpandEnvironmentStringsW
DeviceIoControl
SetFilePointerEx
SetEndOfFile
GetFileType
DeleteFileW
GetFileAttributesW
SetFileAttributesW
SetLastError
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetFileSize
LocalFree
LocalAlloc
DisableThreadLibraryCalls
MultiByteToWideChar
WideCharToMultiByte
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
OutputDebugStringA
HeapAlloc
GetProcessHeap
HeapFree
WriteFile
FreeLibrary
VirtualFree
VirtualAlloc
GetSystemInfo
CreateFileW
GetLastError
GetFileSizeEx
ReadFile
CloseHandle
Sleep
TlsAlloc
TlsSetValue
HeapDestroy
TlsGetValue
TlsFree
GetFullPathNameW
GetFullPathNameA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
GetProcAddress
LoadLibraryExW

advapi32

RegOpenKeyExW
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExW
CryptDestroyHash
RegCloseKey

rpcrt4

UuidCreate

Exports

Exports

D3DAssemble
D3DCompile
D3DCompile2
D3DCompileFromFile
D3DCompressShaders
D3DCreateBlob
D3DCreateFunctionLinkingGraph
D3DCreateLinker
D3DDecompressShaders
D3DDisassemble
D3DDisassemble10Effect
D3DDisassemble11Trace
D3DDisassembleRegion
D3DGetBlobPart
D3DGetDebugInfo
D3DGetInputAndOutputSignatureBlob
D3DGetInputSignatureBlob
D3DGetOutputSignatureBlob
D3DGetTraceInstructionOffsets
D3DLoadModule
D3DPreprocess
D3DReadFileToBlob
D3DReflect
D3DReflectLibrary
D3DReturnFailure1
D3DSetBlobPart
D3DStripShader
D3DWriteBlobToFile
DebugSetMute

Sections

.text
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/icudtl.dat
AppData/installation_status.json
AppData/installer_prefs.json
AppData/libEGL.dll
.dll windows:5 windows x86 arch:x86

ecadf61e50ed499e76a9b050ab8fff13

Code Sign

05:f4:21:0d:b2:b2:83:a3:2f:f2:ae:d2:9f:cb:68:a4
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

17/06/2019, 00:00

Not After

17/06/2022, 12:00

Subject

SERIALNUMBER=916 368 127,CN=Opera Software AS,O=Opera Software AS,L=Oslo,C=NO,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4f

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a7:e2:7f:6b:47:19:c2:8c:c1:ce:8c:62:37:4e:00:16:0d:9d:09:d2:a8:40:d6:0e:14:6a:a7:b8:1b:45:e2:91
Signer

Actual PE Digest

a7:e2:7f:6b:47:19:c2:8c:c1:ce:8c:62:37:4e:00:16:0d:9d:09:d2:a8:40:d6:0e:14:6a:a7:b8:1b:45:e2:91

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

libEGL.dll.pdb

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DecodePointer
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSync
eglCopyBuffers
eglCreateContext
eglCreateDeviceANGLE
eglCreateImage
eglCreateImageKHR
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurface
eglCreatePlatformPixmapSurfaceEXT
eglCreatePlatformWindowSurface
eglCreatePlatformWindowSurfaceEXT
eglCreateStreamKHR
eglCreateStreamProducerD3DTextureANGLE
eglCreateSync
eglCreateWindowSurface
eglDebugMessageControlKHR
eglDestroyContext
eglDestroyImage
eglDestroyImageKHR
eglDestroyStreamKHR
eglDestroySurface
eglDestroySync
eglDupNativeFenceFDANDROID
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetMscRateANGLE
eglGetNativeClientBufferANDROID
eglGetPlatformDisplay
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttrib
eglGetSyncValuesCHROMIUM
eglInitialize
eglLabelObjectKHR
eglMakeCurrent
eglPostSubBufferNV
eglPresentationTimeANDROID
eglProgramCacheGetAttribANGLE
eglProgramCachePopulateANGLE
eglProgramCacheQueryANGLE
eglProgramCacheResizeANGLE
eglQueryAPI
eglQueryContext
eglQueryDebugKHR
eglQueryDeviceAttribEXT
eglQueryDeviceStringEXT
eglQueryDisplayAttribANGLE
eglQueryDisplayAttribEXT
eglQueryStreamKHR
eglQueryStreamu64KHR
eglQueryString
eglQueryStringiANGLE
eglQuerySurface
eglQuerySurfacePointerANGLE
eglReleaseDeviceANGLE
eglReleaseTexImage
eglReleaseThread
eglSetBlobCacheFuncsANDROID
eglStreamAttribKHR
eglStreamConsumerAcquireKHR
eglStreamConsumerGLTextureExternalAttribsNV
eglStreamConsumerGLTextureExternalKHR
eglStreamConsumerReleaseKHR
eglStreamPostD3DTextureANGLE
eglSurfaceAttrib
eglSwapBuffers
eglSwapBuffersWithDamageKHR
eglSwapInterval
eglTerminate
eglWaitClient
eglWaitGL
eglWaitNative
eglWaitSync

Sections

.text
Size: 226KB - Virtual size: 226KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 254B

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/libGLESv2.dll
.dll windows:5 windows x86 arch:x86

e2e927a16571c2ce3604e6d383e14fde

Code Sign

05:f4:21:0d:b2:b2:83:a3:2f:f2:ae:d2:9f:cb:68:a4
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

17/06/2019, 00:00

Not After

17/06/2022, 12:00

Subject

SERIALNUMBER=916 368 127,CN=Opera Software AS,O=Opera Software AS,L=Oslo,C=NO,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4f

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c6:71:cd:9e:cf:27:2f:82:60:fd:ae:38:19:08:46:ca:10:0b:21:f0:01:a3:93:1c:37:48:1d:50:0b:28:9c:4f
Signer

Actual PE Digest

c6:71:cd:9e:cf:27:2f:82:60:fd:ae:38:19:08:46:ca:10:0b:21:f0:01:a3:93:1c:37:48:1d:50:0b:28:9c:4f

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

libGLESv2.dll.pdb

Imports

user32

CreateWindowExA
CreateWindowExW
DefWindowProcA
DestroyWindow
GetClientRect
GetDC
GetWindowThreadProcessId
InvalidateRect
IsIconic
IsWindow
LoadCursorA
RegisterClassA
ReleaseDC
UnregisterClassA
WindowFromDC

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
CreateThread
DecodePointer
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsSetValue
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlUnwind
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualProtect
VirtualQuery
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

dxgi

CreateDXGIFactory1

gdi32

ChoosePixelFormat
DescribePixelFormat
GetPixelFormat
SetPixelFormat
SwapBuffers

Exports

Exports

??0PlatformMethods@angle@@QAE@XZ
??4PlatformMethods@angle@@QAEAAU01@$$QAU01@@Z
??4PlatformMethods@angle@@QAEAAU01@ABU01@@Z
?ActiveShaderProgram@gl@@YGXII@Z
?ActiveShaderProgramContextANGLE@gl@@YGXPAXII@Z
?ActiveTexture@gl@@YGXI@Z
?ActiveTextureContextANGLE@gl@@YGXPAXI@Z
?AlphaFunc@gl@@YGXIM@Z
?AlphaFuncContextANGLE@gl@@YGXPAXIM@Z
?AlphaFuncx@gl@@YGXIH@Z
?AlphaFuncxContextANGLE@gl@@YGXPAXIH@Z
?AttachShader@gl@@YGXII@Z
?AttachShaderContextANGLE@gl@@YGXPAXII@Z
?BeginQuery@gl@@YGXII@Z
?BeginQueryContextANGLE@gl@@YGXPAXII@Z
?BeginQueryEXT@gl@@YGXII@Z
?BeginQueryEXTContextANGLE@gl@@YGXPAXII@Z
?BeginTransformFeedback@gl@@YGXI@Z
?BeginTransformFeedbackContextANGLE@gl@@YGXPAXI@Z
?BindAttribLocation@gl@@YGXIIPBD@Z
?BindAttribLocationContextANGLE@gl@@YGXPAXIIPBD@Z
?BindBuffer@gl@@YGXII@Z
?BindBufferBase@gl@@YGXIII@Z
?BindBufferBaseContextANGLE@gl@@YGXPAXIII@Z
?BindBufferContextANGLE@gl@@YGXPAXII@Z
?BindBufferRange@gl@@YGXIIIJJ@Z
?BindBufferRangeContextANGLE@gl@@YGXPAXIIIJJ@Z
?BindFragDataLocationEXT@gl@@YGXIIPBD@Z
?BindFragDataLocationEXTContextANGLE@gl@@YGXPAXIIPBD@Z
?BindFragDataLocationIndexedEXT@gl@@YGXIIIPBD@Z
?BindFragDataLocationIndexedEXTContextANGLE@gl@@YGXPAXIIIPBD@Z
?BindFramebuffer@gl@@YGXII@Z
?BindFramebufferContextANGLE@gl@@YGXPAXII@Z
?BindFramebufferOES@gl@@YGXII@Z
?BindFramebufferOESContextANGLE@gl@@YGXPAXII@Z
?BindImageTexture@gl@@YGXIIHEHII@Z
?BindImageTextureContextANGLE@gl@@YGXPAXIIHEHII@Z
?BindProgramPipeline@gl@@YGXI@Z
?BindProgramPipelineContextANGLE@gl@@YGXPAXI@Z
?BindRenderbuffer@gl@@YGXII@Z
?BindRenderbufferContextANGLE@gl@@YGXPAXII@Z
?BindRenderbufferOES@gl@@YGXII@Z
?BindRenderbufferOESContextANGLE@gl@@YGXPAXII@Z
?BindSampler@gl@@YGXII@Z
?BindSamplerContextANGLE@gl@@YGXPAXII@Z
?BindTexture@gl@@YGXII@Z
?BindTextureContextANGLE@gl@@YGXPAXII@Z
?BindTransformFeedback@gl@@YGXII@Z
?BindTransformFeedbackContextANGLE@gl@@YGXPAXII@Z
?BindUniformLocationCHROMIUM@gl@@YGXIHPBD@Z
?BindUniformLocationCHROMIUMContextANGLE@gl@@YGXPAXIHPBD@Z
?BindVertexArray@gl@@YGXI@Z
?BindVertexArrayContextANGLE@gl@@YGXPAXI@Z
?BindVertexArrayOES@gl@@YGXI@Z
?BindVertexArrayOESContextANGLE@gl@@YGXPAXI@Z
?BindVertexBuffer@gl@@YGXIIJH@Z
?BindVertexBufferContextANGLE@gl@@YGXPAXIIJH@Z
?BlendBarrier@gl@@YGXXZ
?BlendBarrierContextANGLE@gl@@YGXPAX@Z
?BlendColor@gl@@YGXMMMM@Z
?BlendColorContextANGLE@gl@@YGXPAXMMMM@Z
?BlendEquation@gl@@YGXI@Z
?BlendEquationContextANGLE@gl@@YGXPAXI@Z
?BlendEquationSeparate@gl@@YGXII@Z
?BlendEquationSeparateContextANGLE@gl@@YGXPAXII@Z
?BlendEquationSeparatei@gl@@YGXIII@Z
?BlendEquationSeparateiContextANGLE@gl@@YGXPAXIII@Z
?BlendEquationSeparateiEXT@gl@@YGXIII@Z
?BlendEquationSeparateiEXTContextANGLE@gl@@YGXPAXIII@Z
?BlendEquationSeparateiOES@gl@@YGXIII@Z
?BlendEquationSeparateiOESContextANGLE@gl@@YGXPAXIII@Z
?BlendEquationi@gl@@YGXII@Z
?BlendEquationiContextANGLE@gl@@YGXPAXII@Z
?BlendEquationiEXT@gl@@YGXII@Z
?BlendEquationiEXTContextANGLE@gl@@YGXPAXII@Z
?BlendEquationiOES@gl@@YGXII@Z
?BlendEquationiOESContextANGLE@gl@@YGXPAXII@Z
?BlendFunc@gl@@YGXII@Z
?BlendFuncContextANGLE@gl@@YGXPAXII@Z
?BlendFuncSeparate@gl@@YGXIIII@Z
?BlendFuncSeparateContextANGLE@gl@@YGXPAXIIII@Z
?BlendFuncSeparatei@gl@@YGXIIIII@Z
?BlendFuncSeparateiContextANGLE@gl@@YGXPAXIIIII@Z
?BlendFuncSeparateiEXT@gl@@YGXIIIII@Z
?BlendFuncSeparateiEXTContextANGLE@gl@@YGXPAXIIIII@Z
?BlendFuncSeparateiOES@gl@@YGXIIIII@Z
?BlendFuncSeparateiOESContextANGLE@gl@@YGXPAXIIIII@Z
?BlendFunci@gl@@YGXIII@Z
?BlendFunciContextANGLE@gl@@YGXPAXIII@Z
?BlendFunciEXT@gl@@YGXIII@Z
?BlendFunciEXTContextANGLE@gl@@YGXPAXIII@Z
?BlendFunciOES@gl@@YGXIII@Z
?BlendFunciOESContextANGLE@gl@@YGXPAXIII@Z
?BlitFramebuffer@gl@@YGXHHHHHHHHII@Z
?BlitFramebufferANGLE@gl@@YGXHHHHHHHHII@Z
?BlitFramebufferANGLEContextANGLE@gl@@YGXPAXHHHHHHHHII@Z
?BlitFramebufferContextANGLE@gl@@YGXPAXHHHHHHHHII@Z
?BufferData@gl@@YGXIJPBXI@Z
?BufferDataContextANGLE@gl@@YGXPAXIJPBXI@Z
?BufferStorageMemEXT@gl@@YGXIJI_K@Z
?BufferStorageMemEXTContextANGLE@gl@@YGXPAXIJI_K@Z
?BufferSubData@gl@@YGXIJJPBX@Z
?BufferSubDataContextANGLE@gl@@YGXPAXIJJPBX@Z
?CheckFramebufferStatus@gl@@YGII@Z
?CheckFramebufferStatusContextANGLE@gl@@YGIPAXI@Z
?CheckFramebufferStatusOES@gl@@YGII@Z
?CheckFramebufferStatusOESContextANGLE@gl@@YGIPAXI@Z
?Clear@gl@@YGXI@Z
?ClearBufferfi@gl@@YGXIHMH@Z
?ClearBufferfiContextANGLE@gl@@YGXPAXIHMH@Z
?ClearBufferfv@gl@@YGXIHPBM@Z
?ClearBufferfvContextANGLE@gl@@YGXPAXIHPBM@Z
?ClearBufferiv@gl@@YGXIHPBH@Z
?ClearBufferivContextANGLE@gl@@YGXPAXIHPBH@Z
?ClearBufferuiv@gl@@YGXIHPBI@Z
?ClearBufferuivContextANGLE@gl@@YGXPAXIHPBI@Z
?ClearColor@gl@@YGXMMMM@Z
?ClearColorContextANGLE@gl@@YGXPAXMMMM@Z
?ClearColorx@gl@@YGXHHHH@Z
?ClearColorxContextANGLE@gl@@YGXPAXHHHH@Z
?ClearContextANGLE@gl@@YGXPAXI@Z
?ClearDepthf@gl@@YGXM@Z
?ClearDepthfContextANGLE@gl@@YGXPAXM@Z
?ClearDepthx@gl@@YGXH@Z
?ClearDepthxContextANGLE@gl@@YGXPAXH@Z
?ClearStencil@gl@@YGXH@Z
?ClearStencilContextANGLE@gl@@YGXPAXH@Z
?ClientActiveTexture@gl@@YGXI@Z
?ClientActiveTextureContextANGLE@gl@@YGXPAXI@Z
?ClientWaitSync@gl@@YGIPAU__GLsync@@I_K@Z
?ClientWaitSyncContextANGLE@gl@@YGIPAXPAU__GLsync@@I_K@Z
?ClipPlanef@gl@@YGXIPBM@Z
?ClipPlanefContextANGLE@gl@@YGXPAXIPBM@Z
?ClipPlanex@gl@@YGXIPBH@Z
?ClipPlanexContextANGLE@gl@@YGXPAXIPBH@Z
?Color4f@gl@@YGXMMMM@Z
?Color4fContextANGLE@gl@@YGXPAXMMMM@Z
?Color4ub@gl@@YGXEEEE@Z
?Color4ubContextANGLE@gl@@YGXPAXEEEE@Z
?Color4x@gl@@YGXHHHH@Z
?Color4xContextANGLE@gl@@YGXPAXHHHH@Z
?ColorMask@gl@@YGXEEEE@Z
?ColorMaskContextANGLE@gl@@YGXPAXEEEE@Z
?ColorMaski@gl@@YGXIEEEE@Z
?ColorMaskiContextANGLE@gl@@YGXPAXIEEEE@Z
?ColorMaskiEXT@gl@@YGXIEEEE@Z
?ColorMaskiEXTContextANGLE@gl@@YGXPAXIEEEE@Z
?ColorMaskiOES@gl@@YGXIEEEE@Z
?ColorMaskiOESContextANGLE@gl@@YGXPAXIEEEE@Z
?ColorPointer@gl@@YGXHIHPBX@Z
?ColorPointerContextANGLE@gl@@YGXPAXHIHPBX@Z
?CompileShader@gl@@YGXI@Z
?CompileShaderContextANGLE@gl@@YGXPAXI@Z
?CompressedCopyTextureCHROMIUM@gl@@YGXII@Z
?CompressedCopyTextureCHROMIUMContextANGLE@gl@@YGXPAXII@Z
?CompressedTexImage2D@gl@@YGXIHIHHHHPBX@Z
?CompressedTexImage2DContextANGLE@gl@@YGXPAXIHIHHHHPBX@Z
?CompressedTexImage2DRobustANGLE@gl@@YGXIHIHHHHHPBX@Z
?CompressedTexImage2DRobustANGLEContextANGLE@gl@@YGXPAXIHIHHHHHPBX@Z
?CompressedTexImage3D@gl@@YGXIHIHHHHHPBX@Z
?CompressedTexImage3DContextANGLE@gl@@YGXPAXIHIHHHHHPBX@Z
?CompressedTexImage3DOES@gl@@YGXIHIHHHHHPBX@Z
?CompressedTexImage3DOESContextANGLE@gl@@YGXPAXIHIHHHHHPBX@Z
?CompressedTexImage3DRobustANGLE@gl@@YGXIHIHHHHHHPBX@Z
?CompressedTexImage3DRobustANGLEContextANGLE@gl@@YGXPAXIHIHHHHHHPBX@Z
?CompressedTexSubImage2D@gl@@YGXIHHHHHIHPBX@Z
?CompressedTexSubImage2DContextANGLE@gl@@YGXPAXIHHHHHIHPBX@Z
?CompressedTexSubImage2DRobustANGLE@gl@@YGXIHHHHHIHHPBX@Z
?CompressedTexSubImage2DRobustANGLEContextANGLE@gl@@YGXPAXIHHHHHIHHPBX@Z
?CompressedTexSubImage3D@gl@@YGXIHHHHHHHIHPBX@Z
?CompressedTexSubImage3DContextANGLE@gl@@YGXPAXIHHHHHHHIHPBX@Z
?CompressedTexSubImage3DOES@gl@@YGXIHHHHHHHIHPBX@Z
?CompressedTexSubImage3DOESContextANGLE@gl@@YGXPAXIHHHHHHHIHPBX@Z
?CompressedTexSubImage3DRobustANGLE@gl@@YGXIHHHHHHHIHHPBX@Z
?CompressedTexSubImage3DRobustANGLEContextANGLE@gl@@YGXPAXIHHHHHHHIHHPBX@Z
?CopyBufferSubData@gl@@YGXIIJJJ@Z
?CopyBufferSubDataContextANGLE@gl@@YGXPAXIIJJJ@Z
?CopyImageSubData@gl@@YGXIIHHHHIIHHHHHHH@Z
?CopyImageSubDataContextANGLE@gl@@YGXPAXIIHHHHIIHHHHHHH@Z
?CopySubTexture3DANGLE@gl@@YGXIHIIHHHHHHHHHHEEE@Z
?CopySubTexture3DANGLEContextANGLE@gl@@YGXPAXIHIIHHHHHHHHHHEEE@Z
?CopySubTextureCHROMIUM@gl@@YGXIHIIHHHHHHHEEE@Z
?CopySubTextureCHROMIUMContextANGLE@gl@@YGXPAXIHIIHHHHHHHEEE@Z
?CopyTexImage2D@gl@@YGXIHIHHHHH@Z
?CopyTexImage2DContextANGLE@gl@@YGXPAXIHIHHHHH@Z
?CopyTexSubImage2D@gl@@YGXIHHHHHHH@Z
?CopyTexSubImage2DContextANGLE@gl@@YGXPAXIHHHHHHH@Z
?CopyTexSubImage3D@gl@@YGXIHHHHHHHH@Z
?CopyTexSubImage3DContextANGLE@gl@@YGXPAXIHHHHHHHH@Z
?CopyTexSubImage3DOES@gl@@YGXIHHHHHHHH@Z
?CopyTexSubImage3DOESContextANGLE@gl@@YGXPAXIHHHHHHHH@Z
?CopyTexture3DANGLE@gl@@YGXIHIIHHIEEE@Z
?CopyTexture3DANGLEContextANGLE@gl@@YGXPAXIHIIHHIEEE@Z
?CopyTextureCHROMIUM@gl@@YGXIHIIHHIEEE@Z
?CopyTextureCHROMIUMContextANGLE@gl@@YGXPAXIHIIHHIEEE@Z
?CoverageModulationCHROMIUM@gl@@YGXI@Z
?CoverageModulationCHROMIUMContextANGLE@gl@@YGXPAXI@Z
?CreateMemoryObjectsEXT@gl@@YGXHPAI@Z
?CreateMemoryObjectsEXTContextANGLE@gl@@YGXPAXHPAI@Z
?CreateProgram@gl@@YGIXZ
?CreateProgramContextANGLE@gl@@YGIPAX@Z
?CreateShader@gl@@YGII@Z
?CreateShaderContextANGLE@gl@@YGIPAXI@Z
?CreateShaderProgramv@gl@@YGIIHPBQBD@Z
?CreateShaderProgramvContextANGLE@gl@@YGIPAXIHPBQBD@Z
?CullFace@gl@@YGXI@Z
?CullFaceContextANGLE@gl@@YGXPAXI@Z
?CurrentPaletteMatrixOES@gl@@YGXI@Z
?CurrentPaletteMatrixOESContextANGLE@gl@@YGXPAXI@Z
?DebugMessageCallback@gl@@YGXP6GXIIIIHPBDPBX@Z1@Z
?DebugMessageCallbackContextANGLE@gl@@YGXPAXP6GXIIIIHPBDPBX@Z2@Z
?DebugMessageCallbackKHR@gl@@YGXP6GXIIIIHPBDPBX@Z1@Z
?DebugMessageCallbackKHRContextANGLE@gl@@YGXPAXP6GXIIIIHPBDPBX@Z2@Z
?DebugMessageControl@gl@@YGXIIIHPBIE@Z
?DebugMessageControlContextANGLE@gl@@YGXPAXIIIHPBIE@Z
?DebugMessageControlKHR@gl@@YGXIIIHPBIE@Z
?DebugMessageControlKHRContextANGLE@gl@@YGXPAXIIIHPBIE@Z
?DebugMessageInsert@gl@@YGXIIIIHPBD@Z
?DebugMessageInsertContextANGLE@gl@@YGXPAXIIIIHPBD@Z
?DebugMessageInsertKHR@gl@@YGXIIIIHPBD@Z
?DebugMessageInsertKHRContextANGLE@gl@@YGXPAXIIIIHPBD@Z
?DeleteBuffers@gl@@YGXHPBI@Z
?DeleteBuffersContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteFencesNV@gl@@YGXHPBI@Z
?DeleteFencesNVContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteFramebuffers@gl@@YGXHPBI@Z
?DeleteFramebuffersContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteFramebuffersOES@gl@@YGXHPBI@Z
?DeleteFramebuffersOESContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteMemoryObjectsEXT@gl@@YGXHPBI@Z
?DeleteMemoryObjectsEXTContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteProgram@gl@@YGXI@Z
?DeleteProgramContextANGLE@gl@@YGXPAXI@Z
?DeleteProgramPipelines@gl@@YGXHPBI@Z
?DeleteProgramPipelinesContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteQueries@gl@@YGXHPBI@Z
?DeleteQueriesContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteQueriesEXT@gl@@YGXHPBI@Z
?DeleteQueriesEXTContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteRenderbuffers@gl@@YGXHPBI@Z
?DeleteRenderbuffersContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteRenderbuffersOES@gl@@YGXHPBI@Z
?DeleteRenderbuffersOESContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteSamplers@gl@@YGXHPBI@Z
?DeleteSamplersContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteSemaphoresEXT@gl@@YGXHPBI@Z
?DeleteSemaphoresEXTContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteShader@gl@@YGXI@Z
?DeleteShaderContextANGLE@gl@@YGXPAXI@Z
?DeleteSync@gl@@YGXPAU__GLsync@@@Z
?DeleteSyncContextANGLE@gl@@YGXPAXPAU__GLsync@@@Z
?DeleteTextures@gl@@YGXHPBI@Z
?DeleteTexturesContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteTransformFeedbacks@gl@@YGXHPBI@Z
?DeleteTransformFeedbacksContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteVertexArrays@gl@@YGXHPBI@Z
?DeleteVertexArraysContextANGLE@gl@@YGXPAXHPBI@Z
?DeleteVertexArraysOES@gl@@YGXHPBI@Z
?DeleteVertexArraysOESContextANGLE@gl@@YGXPAXHPBI@Z
?DepthFunc@gl@@YGXI@Z
?DepthFuncContextANGLE@gl@@YGXPAXI@Z
?DepthMask@gl@@YGXE@Z
?DepthMaskContextANGLE@gl@@YGXPAXE@Z
?DepthRangef@gl@@YGXMM@Z
?DepthRangefContextANGLE@gl@@YGXPAXMM@Z
?DepthRangex@gl@@YGXHH@Z
?DepthRangexContextANGLE@gl@@YGXPAXHH@Z
?DetachShader@gl@@YGXII@Z
?DetachShaderContextANGLE@gl@@YGXPAXII@Z
?Disable@gl@@YGXI@Z
?DisableClientState@gl@@YGXI@Z
?DisableClientStateContextANGLE@gl@@YGXPAXI@Z
?DisableContextANGLE@gl@@YGXPAXI@Z
?DisableExtensionANGLE@gl@@YGXPBD@Z
?DisableExtensionANGLEContextANGLE@gl@@YGXPAXPBD@Z
?DisableVertexAttribArray@gl@@YGXI@Z
?DisableVertexAttribArrayContextANGLE@gl@@YGXPAXI@Z
?Disablei@gl@@YGXII@Z
?DisableiContextANGLE@gl@@YGXPAXII@Z
?DisableiEXT@gl@@YGXII@Z
?DisableiEXTContextANGLE@gl@@YGXPAXII@Z
?DisableiOES@gl@@YGXII@Z
?DisableiOESContextANGLE@gl@@YGXPAXII@Z
?DiscardFramebufferEXT@gl@@YGXIHPBI@Z
?DiscardFramebufferEXTContextANGLE@gl@@YGXPAXIHPBI@Z
?DispatchCompute@gl@@YGXIII@Z
?DispatchComputeContextANGLE@gl@@YGXPAXIII@Z
?DispatchComputeIndirect@gl@@YGXJ@Z
?DispatchComputeIndirectContextANGLE@gl@@YGXPAXJ@Z
?DrawArrays@gl@@YGXIHH@Z
?DrawArraysContextANGLE@gl@@YGXPAXIHH@Z
?DrawArraysIndirect@gl@@YGXIPBX@Z
?DrawArraysIndirectContextANGLE@gl@@YGXPAXIPBX@Z
?DrawArraysInstanced@gl@@YGXIHHH@Z
?DrawArraysInstancedANGLE@gl@@YGXIHHH@Z
?DrawArraysInstancedANGLEContextANGLE@gl@@YGXPAXIHHH@Z
?DrawArraysInstancedBaseInstanceANGLE@gl@@YGXIHHHI@Z
?DrawArraysInstancedBaseInstanceANGLEContextANGLE@gl@@YGXPAXIHHHI@Z
?DrawArraysInstancedContextANGLE@gl@@YGXPAXIHHH@Z
?DrawArraysInstancedEXT@gl@@YGXIHHH@Z
?DrawArraysInstancedEXTContextANGLE@gl@@YGXPAXIHHH@Z
?DrawBuffers@gl@@YGXHPBI@Z
?DrawBuffersContextANGLE@gl@@YGXPAXHPBI@Z
?DrawBuffersEXT@gl@@YGXHPBI@Z
?DrawBuffersEXTContextANGLE@gl@@YGXPAXHPBI@Z
?DrawElements@gl@@YGXIHIPBX@Z
?DrawElementsBaseVertex@gl@@YGXIHIPBXH@Z
?DrawElementsBaseVertexContextANGLE@gl@@YGXPAXIHIPBXH@Z
?DrawElementsBaseVertexEXT@gl@@YGXIHIPBXH@Z
?DrawElementsBaseVertexEXTContextANGLE@gl@@YGXPAXIHIPBXH@Z
?DrawElementsBaseVertexOES@gl@@YGXIHIPBXH@Z
?DrawElementsBaseVertexOESContextANGLE@gl@@YGXPAXIHIPBXH@Z
?DrawElementsContextANGLE@gl@@YGXPAXIHIPBX@Z
?DrawElementsIndirect@gl@@YGXIIPBX@Z
?DrawElementsIndirectContextANGLE@gl@@YGXPAXIIPBX@Z
?DrawElementsInstanced@gl@@YGXIHIPBXH@Z
?DrawElementsInstancedANGLE@gl@@YGXIHIPBXH@Z
?DrawElementsInstancedANGLEContextANGLE@gl@@YGXPAXIHIPBXH@Z
?DrawElementsInstancedBaseVertex@gl@@YGXIHIPBXHH@Z
?DrawElementsInstancedBaseVertexBaseInstanceANGLE@gl@@YGXIHIPBXHHI@Z
?DrawElementsInstancedBaseVertexBaseInstanceANGLEContextANGLE@gl@@YGXPAXIHIPBXHHI@Z
?DrawElementsInstancedBaseVertexContextANGLE@gl@@YGXPAXIHIPBXHH@Z
?DrawElementsInstancedBaseVertexEXT@gl@@YGXIHIPBXHH@Z
?DrawElementsInstancedBaseVertexEXTContextANGLE@gl@@YGXPAXIHIPBXHH@Z
?DrawElementsInstancedBaseVertexOES@gl@@YGXIHIPBXHH@Z
?DrawElementsInstancedBaseVertexOESContextANGLE@gl@@YGXPAXIHIPBXHH@Z
?DrawElementsInstancedContextANGLE@gl@@YGXPAXIHIPBXH@Z
?DrawElementsInstancedEXT@gl@@YGXIHIPBXH@Z
?DrawElementsInstancedEXTContextANGLE@gl@@YGXPAXIHIPBXH@Z
?DrawRangeElements@gl@@YGXIIIHIPBX@Z
?DrawRangeElementsBaseVertex@gl@@YGXIIIHIPBXH@Z
?DrawRangeElementsBaseVertexContextANGLE@gl@@YGXPAXIIIHIPBXH@Z
?DrawRangeElementsBaseVertexEXT@gl@@YGXIIIHIPBXH@Z
?DrawRangeElementsBaseVertexEXTContextANGLE@gl@@YGXPAXIIIHIPBXH@Z
?DrawRangeElementsBaseVertexOES@gl@@YGXIIIHIPBXH@Z
?DrawRangeElementsBaseVertexOESContextANGLE@gl@@YGXPAXIIIHIPBXH@Z
?DrawRangeElementsContextANGLE@gl@@YGXPAXIIIHIPBX@Z
?DrawTexfOES@gl@@YGXMMMMM@Z
?DrawTexfOESContextANGLE@gl@@YGXPAXMMMMM@Z
?DrawTexfvOES@gl@@YGXPBM@Z
?DrawTexfvOESContextANGLE@gl@@YGXPAXPBM@Z
?DrawTexiOES@gl@@YGXHHHHH@Z
?DrawTexiOESContextANGLE@gl@@YGXPAXHHHHH@Z
?DrawTexivOES@gl@@YGXPBH@Z
?DrawTexivOESContextANGLE@gl@@YGXPAXPBH@Z
?DrawTexsOES@gl@@YGXFFFFF@Z
?DrawTexsOESContextANGLE@gl@@YGXPAXFFFFF@Z
?DrawTexsvOES@gl@@YGXPBF@Z
?DrawTexsvOESContextANGLE@gl@@YGXPAXPBF@Z
?DrawTexxOES@gl@@YGXHHHHH@Z
?DrawTexxOESContextANGLE@gl@@YGXPAXHHHHH@Z
?DrawTexxvOES@gl@@YGXPBH@Z
?DrawTexxvOESContextANGLE@gl@@YGXPAXPBH@Z
?EGLImageTargetRenderbufferStorageOES@gl@@YGXIPAX@Z
?EGLImageTargetRenderbufferStorageOESContextANGLE@gl@@YGXPAXI0@Z
?EGLImageTargetTexture2DOES@gl@@YGXIPAX@Z
?EGLImageTargetTexture2DOESContextANGLE@gl@@YGXPAXI0@Z
?Enable@gl@@YGXI@Z
?EnableClientState@gl@@YGXI@Z
?EnableClientStateContextANGLE@gl@@YGXPAXI@Z
?EnableContextANGLE@gl@@YGXPAXI@Z
?EnableVertexAttribArray@gl@@YGXI@Z
?EnableVertexAttribArrayContextANGLE@gl@@YGXPAXI@Z
?Enablei@gl@@YGXII@Z
?EnableiContextANGLE@gl@@YGXPAXII@Z
?EnableiEXT@gl@@YGXII@Z
?EnableiEXTContextANGLE@gl@@YGXPAXII@Z
?EnableiOES@gl@@YGXII@Z
?EnableiOESContextANGLE@gl@@YGXPAXII@Z
?EndQuery@gl@@YGXI@Z
?EndQueryContextANGLE@gl@@YGXPAXI@Z
?EndQueryEXT@gl@@YGXI@Z
?EndQueryEXTContextANGLE@gl@@YGXPAXI@Z
?EndTransformFeedback@gl@@YGXXZ
?EndTransformFeedbackContextANGLE@gl@@YGXPAX@Z
?FenceSync@gl@@YGPAU__GLsync@@II@Z
?FenceSyncContextANGLE@gl@@YGPAU__GLsync@@PAXII@Z
?Finish@gl@@YGXXZ
?FinishContextANGLE@gl@@YGXPAX@Z
?FinishFenceNV@gl@@YGXI@Z
?FinishFenceNVContextANGLE@gl@@YGXPAXI@Z
?Flush@gl@@YGXXZ
?FlushContextANGLE@gl@@YGXPAX@Z
?FlushMappedBufferRange@gl@@YGXIJJ@Z
?FlushMappedBufferRangeContextANGLE@gl@@YGXPAXIJJ@Z
?FlushMappedBufferRangeEXT@gl@@YGXIJJ@Z
?FlushMappedBufferRangeEXTContextANGLE@gl@@YGXPAXIJJ@Z
?Fogf@gl@@YGXIM@Z
?FogfContextANGLE@gl@@YGXPAXIM@Z
?Fogfv@gl@@YGXIPBM@Z
?FogfvContextANGLE@gl@@YGXPAXIPBM@Z
?Fogx@gl@@YGXIH@Z
?FogxContextANGLE@gl@@YGXPAXIH@Z
?Fogxv@gl@@YGXIPBH@Z
?FogxvContextANGLE@gl@@YGXPAXIPBH@Z
?FramebufferParameteri@gl@@YGXIIH@Z
?FramebufferParameteriContextANGLE@gl@@YGXPAXIIH@Z
?FramebufferRenderbuffer@gl@@YGXIIII@Z
?FramebufferRenderbufferContextANGLE@gl@@YGXPAXIIII@Z
?FramebufferRenderbufferOES@gl@@YGXIIII@Z
?FramebufferRenderbufferOESContextANGLE@gl@@YGXPAXIIII@Z
?FramebufferTexture2D@gl@@YGXIIIIH@Z
?FramebufferTexture2DContextANGLE@gl@@YGXPAXIIIIH@Z
?FramebufferTexture2DMultisampleEXT@gl@@YGXIIIIHH@Z
?FramebufferTexture2DMultisampleEXTContextANGLE@gl@@YGXPAXIIIIHH@Z
?FramebufferTexture2DOES@gl@@YGXIIIIH@Z
?FramebufferTexture2DOESContextANGLE@gl@@YGXPAXIIIIH@Z
?FramebufferTexture3DOES@gl@@YGXIIIIHH@Z
?FramebufferTexture3DOESContextANGLE@gl@@YGXPAXIIIIHH@Z
?FramebufferTexture@gl@@YGXIIIH@Z
?FramebufferTextureContextANGLE@gl@@YGXPAXIIIH@Z
?FramebufferTextureEXT@gl@@YGXIIIH@Z
?FramebufferTextureEXTContextANGLE@gl@@YGXPAXIIIH@Z
?FramebufferTextureLayer@gl@@YGXIIIHH@Z
?FramebufferTextureLayerContextANGLE@gl@@YGXPAXIIIHH@Z
?FramebufferTextureMultiviewOVR@gl@@YGXIIIHHH@Z
?FramebufferTextureMultiviewOVRContextANGLE@gl@@YGXPAXIIIHHH@Z
?FrontFace@gl@@YGXI@Z
?FrontFaceContextANGLE@gl@@YGXPAXI@Z
?Frustumf@gl@@YGXMMMMMM@Z
?FrustumfContextANGLE@gl@@YGXPAXMMMMMM@Z
?Frustumx@gl@@YGXHHHHHH@Z
?FrustumxContextANGLE@gl@@YGXPAXHHHHHH@Z
?GenBuffers@gl@@YGXHPAI@Z
?GenBuffersContextANGLE@gl@@YGXPAXHPAI@Z
?GenFencesNV@gl@@YGXHPAI@Z
?GenFencesNVContextANGLE@gl@@YGXPAXHPAI@Z
?GenFramebuffers@gl@@YGXHPAI@Z
?GenFramebuffersContextANGLE@gl@@YGXPAXHPAI@Z
?GenFramebuffersOES@gl@@YGXHPAI@Z
?GenFramebuffersOESContextANGLE@gl@@YGXPAXHPAI@Z
?GenProgramPipelines@gl@@YGXHPAI@Z
?GenProgramPipelinesContextANGLE@gl@@YGXPAXHPAI@Z
?GenQueries@gl@@YGXHPAI@Z
?GenQueriesContextANGLE@gl@@YGXPAXHPAI@Z
?GenQueriesEXT@gl@@YGXHPAI@Z
?GenQueriesEXTContextANGLE@gl@@YGXPAXHPAI@Z
?GenRenderbuffers@gl@@YGXHPAI@Z
?GenRenderbuffersContextANGLE@gl@@YGXPAXHPAI@Z
?GenRenderbuffersOES@gl@@YGXHPAI@Z
?GenRenderbuffersOESContextANGLE@gl@@YGXPAXHPAI@Z
?GenSamplers@gl@@YGXHPAI@Z
?GenSamplersContextANGLE@gl@@YGXPAXHPAI@Z
?GenSemaphoresEXT@gl@@YGXHPAI@Z
?GenSemaphoresEXTContextANGLE@gl@@YGXPAXHPAI@Z
?GenTextures@gl@@YGXHPAI@Z
?GenTexturesContextANGLE@gl@@YGXPAXHPAI@Z
?GenTransformFeedbacks@gl@@YGXHPAI@Z
?GenTransformFeedbacksContextANGLE@gl@@YGXPAXHPAI@Z
?GenVertexArrays@gl@@YGXHPAI@Z
?GenVertexArraysContextANGLE@gl@@YGXPAXHPAI@Z
?GenVertexArraysOES@gl@@YGXHPAI@Z
?GenVertexArraysOESContextANGLE@gl@@YGXPAXHPAI@Z
?GenerateMipmap@gl@@YGXI@Z
?GenerateMipmapContextANGLE@gl@@YGXPAXI@Z
?GenerateMipmapOES@gl@@YGXI@Z
?GenerateMipmapOESContextANGLE@gl@@YGXPAXI@Z
?GetActiveAttrib@gl@@YGXIIHPAH0PAIPAD@Z
?GetActiveAttribContextANGLE@gl@@YGXPAXIIHPAH1PAIPAD@Z
?GetActiveUniform@gl@@YGXIIHPAH0PAIPAD@Z
?GetActiveUniformBlockName@gl@@YGXIIHPAHPAD@Z
?GetActiveUniformBlockNameContextANGLE@gl@@YGXPAXIIHPAHPAD@Z
?GetActiveUniformBlockiv@gl@@YGXIIIPAH@Z
?GetActiveUniformBlockivContextANGLE@gl@@YGXPAXIIIPAH@Z
?GetActiveUniformBlockivRobustANGLE@gl@@YGXIIIHPAH0@Z
?GetActiveUniformBlockivRobustANGLEContextANGLE@gl@@YGXPAXIIIHPAH1@Z
?GetActiveUniformContextANGLE@gl@@YGXPAXIIHPAH1PAIPAD@Z
?GetActiveUniformsiv@gl@@YGXIHPBIIPAH@Z
?GetActiveUniformsivContextANGLE@gl@@YGXPAXIHPBIIPAH@Z
?GetAttachedShaders@gl@@YGXIHPAHPAI@Z
?GetAttachedShadersContextANGLE@gl@@YGXPAXIHPAHPAI@Z
?GetAttribLocation@gl@@YGHIPBD@Z
?GetAttribLocationContextANGLE@gl@@YGHPAXIPBD@Z
?GetBooleani_v@gl@@YGXIIPAE@Z
?GetBooleani_vContextANGLE@gl@@YGXPAXIIPAE@Z
?GetBooleani_vRobustANGLE@gl@@YGXIIHPAHPAE@Z
?GetBooleani_vRobustANGLEContextANGLE@gl@@YGXPAXIIHPAHPAE@Z
?GetBooleanv@gl@@YGXIPAE@Z
?GetBooleanvContextANGLE@gl@@YGXPAXIPAE@Z
?GetBooleanvRobustANGLE@gl@@YGXIHPAHPAE@Z
?GetBooleanvRobustANGLEContextANGLE@gl@@YGXPAXIHPAHPAE@Z
?GetBufferParameteri64v@gl@@YGXIIPA_J@Z
?GetBufferParameteri64vContextANGLE@gl@@YGXPAXIIPA_J@Z
?GetBufferParameteri64vRobustANGLE@gl@@YGXIIHPAHPA_J@Z
?GetBufferParameteri64vRobustANGLEContextANGLE@gl@@YGXPAXIIHPAHPA_J@Z
?GetBufferParameteriv@gl@@YGXIIPAH@Z
?GetBufferParameterivContextANGLE@gl@@YGXPAXIIPAH@Z
?GetBufferParameterivRobustANGLE@gl@@YGXIIHPAH0@Z
?GetBufferParameterivRobustANGLEContextANGLE@gl@@YGXPAXIIHPAH1@Z
?GetBufferPointerv@gl@@YGXIIPAPAX@Z
?GetBufferPointervContextANGLE@gl@@YGXPAXIIPAPAX@Z
?GetBufferPointervOES@gl@@YGXIIPAPAX@Z
?GetBufferPointervOESContextANGLE@gl@@YGXPAXIIPAPAX@Z
?GetBufferPointervRobustANGLE@gl@@YGXIIHPAHPAPAX@Z
?GetBufferPointervRobustANGLEContextANGLE@gl@@YGXPAXIIHPAHPAPAX@Z
?GetClipPlanef@gl@@YGXIPAM@Z
?GetClipPlanefContextANGLE@gl@@YGXPAXIPAM@Z
?GetClipPlanex@gl@@YGXIPAH@Z
?GetClipPlanexContextANGLE@gl@@YGXPAXIPAH@Z
?GetDebugMessageLog@gl@@YGIIHPAI000PAHPAD@Z

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 899KB - Virtual size: 898KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 153KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 292B

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/localization/be.pak
AppData/localization/bg.pak
AppData/localization/bn.pak
AppData/localization/ca.pak
AppData/localization/cs.pak
AppData/localization/da.pak
AppData/localization/de.pak
AppData/localization/el.pak
AppData/localization/en-GB.pak
AppData/localization/en-US.pak
AppData/localization/es-419.pak
AppData/localization/es.pak
AppData/localization/fi.pak
AppData/localization/fil.pak
AppData/localization/fr-CA.pak
AppData/localization/fr.pak
AppData/localization/hi.pak
AppData/localization/hr.pak
AppData/localization/hu.pak
AppData/localization/id.pak
AppData/localization/it.pak
AppData/localization/ja.pak
AppData/localization/ko.pak
AppData/localization/lt.pak
AppData/localization/lv.pak
AppData/localization/ms.pak
AppData/localization/nb.pak
AppData/localization/nl.pak
AppData/localization/pl.pak
AppData/localization/pt-BR.pak
AppData/localization/pt-PT.pak
AppData/localization/ro.pak
AppData/localization/ru.pak
AppData/localization/sk.pak
AppData/localization/sr.pak
AppData/localization/sv.pak
AppData/localization/sw.pak
AppData/localization/ta.pak
AppData/localization/te.pak
AppData/localization/th.pak
AppData/localization/tr.pak
AppData/localization/uk.pak
AppData/localization/vi.pak
AppData/localization/zh-CN.pak
AppData/localization/zh-TW.pak
AppData/opera.exe
.exe windows:5 windows x86 arch:x86

34d287213505c592fdce3094f76f2def

Code Sign

05:f4:21:0d:b2:b2:83:a3:2f:f2:ae:d2:9f:cb:68:a4
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

17/06/2019, 00:00

Not After

17/06/2022, 12:00

Subject

SERIALNUMBER=916 368 127,CN=Opera Software AS,O=Opera Software AS,L=Oslo,C=NO,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4f

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a7:02:65:26:18:d4:20:61:1a:ad:a0:e0:9e:30:ba:8a:4f:c3:60:86:8f:94:62:1e:9e:ba:45:87:48:6d:7d:ce
Signer

Actual PE Digest

a7:02:65:26:18:d4:20:61:1a:ad:a0:e0:9e:30:ba:8a:4f:c3:60:86:8f:94:62:1e:9e:ba:45:87:48:6d:7d:ce

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

opera.exe.pdb

Imports

opera_elf

SignalInitializeCrashReporting

kernel32

AcquireSRWLockExclusive
AssignProcessToJobObject
CloseHandle
CompareStringW
CreateEventW
CreateFileMappingW
CreateFileW
CreateIoCompletionPort
CreateJobObjectW
CreateMutexW
CreateNamedPipeW
CreateProcessW
CreateRemoteThread
CreateThread
DebugBreak
DecodePointer
DeleteCriticalSection
DeleteProcThreadAttributeList
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesEx
EnumSystemLocalesW
ExitProcess
ExpandEnvironmentStringsW
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentProcessorNumber
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetDriveTypeW
GetEnvironmentStringsW
GetEnvironmentVariableW
GetFileAttributesW
GetFileSizeEx
GetFileType
GetFullPathNameW
GetHandleInformation
GetLastError
GetLocalTime
GetLocaleInfoW
GetLongPathNameW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetProcAddress
GetProcessHandleCount
GetProcessHeaps
GetProcessTimes
GetProductInfo
GetQueuedCompletionStatus
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadId
GetThreadPriority
GetTickCount
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultLangID
GetUserDefaultLocaleName
GetVersionExW
GetWindowsDirectoryW
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSetInformation
HeapSize
InitOnceExecuteOnce
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeProcThreadAttributeList
InitializeSListHead
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
K32QueryWorkingSetEx
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalFree
MapViewOfFile
MultiByteToWideChar
OutputDebugStringA
PostQueuedCompletionStatus
ProcessIdToSessionId
QueryDosDeviceW
QueryPerformanceCounter
QueryPerformanceFrequency
QueryThreadCycleTime
RaiseException
ReadConsoleW
ReadFile
ReadProcessMemory
RegisterWaitForSingleObject
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureStackBackTrace
RtlUnwind
SearchPathW
SetCurrentDirectoryW
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetHandleInformation
SetInformationJobObject
SetLastError
SetProcessDEPPolicy
SetProcessShutdownParameters
SetStdHandle
SetThreadAffinityMask
SetThreadPriority
SetUnhandledExceptionFilter
SignalObjectAndWait
Sleep
SleepConditionVariableSRW
SwitchToThread
TerminateJobObject
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
UnmapViewOfFile
UnregisterWait
UnregisterWaitEx
UpdateProcThreadAttribute
VirtualAllocEx
VirtualFree
VirtualFreeEx
VirtualProtect
VirtualProtectEx
VirtualQuery
VirtualQueryEx
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteProcessMemory
lstrlenW

shell32

CommandLineToArgvW
SHGetFolderPathW
SHGetKnownFolderPath

user32

CloseDesktop
CloseWindowStation
CreateDesktopW
CreateWindowStationW
GetProcessWindowStation
GetThreadDesktop
GetUserObjectInformationW
SetProcessDPIAware
SetProcessWindowStation

winmm

timeGetTime

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Exports

Exports

GetHandleVerifier
IsSandboxedProcess

Sections

.text
Size: 607KB - Virtual size: 606KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 243B

.rsrc
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/opera.pak
AppData/opera_100_percent.pak
AppData/opera_125_percent.pak
AppData/opera_150_percent.pak
AppData/opera_200_percent.pak
AppData/opera_250_percent.pak
AppData/opera_autoupdate.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 448KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 263KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 512KB - Virtual size: 512KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
AppData/opera_browser.dll
.dll windows:5 windows x86 arch:x86

95734ccf867b47378980f7df6d2c7ee4

Code Sign

05:f4:21:0d:b2:b2:83:a3:2f:f2:ae:d2:9f:cb:68:a4
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

17/06/2019, 00:00

Not After

17/06/2022, 12:00

Subject

SERIALNUMBER=916 368 127,CN=Opera Software AS,O=Opera Software AS,L=Oslo,C=NO,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4f

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

91:19:90:06:52:dd:0f:af:2c:ad:13:95:a0:f5:cf:38:b3:c6:3c:37:40:95:49:e0:b7:e8:5c:ce:af:85:dc:85
Signer

Actual PE Digest

91:19:90:06:52:dd:0f:af:2c:ad:13:95:a0:f5:cf:38:b3:c6:3c:37:40:95:49:e0:b7:e8:5c:ce:af:85:dc:85

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

opera_browser.dll.pdb

Imports

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AllocConsole
AreFileApisANSI
AssignProcessToJobObject
AttachConsole
CallbackMayRunLong
CancelIo
CancelIoEx
CheckRemoteDebuggerPresent
ClearCommError
CloseHandle
CloseThreadpool
CloseThreadpoolWork
CompareStringW
ConnectNamedPipe
CopyFileW
CreateDirectoryW
CreateEventW
CreateFileA
CreateFileMappingW
CreateFileW
CreateHardLinkW
CreateIoCompletionPort
CreateJobObjectW
CreateMutexW
CreateNamedPipeW
CreatePipe
CreateProcessW
CreateSemaphoreA
CreateSemaphoreW
CreateThread
CreateThreadpool
CreateThreadpoolWork
CreateToolhelp32Snapshot
DebugBreak
DecodePointer
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeleteProcThreadAttributeList
DeviceIoControl
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesEx
EnumSystemLocalesW
EscapeCommFunction
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FileTimeToSystemTime
FindClose
FindCloseChangeNotification
FindFirstChangeNotificationW
FindFirstFileExA
FindFirstFileExW
FindFirstFileW
FindFirstVolumeW
FindNextFileA
FindNextFileW
FindNextVolumeW
FindResourceW
FindVolumeClose
FlushFileBuffers
FlushInstructionCache
FlushViewOfFile
FormatMessageA
FormatMessageW
FreeConsole
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommModemStatus
GetCommState
GetCommandLineA
GetCommandLineW
GetComputerNameExW
GetComputerNameW
GetConsoleCP
GetConsoleDisplayMode
GetConsoleMode
GetCurrencyFormatEx
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatEx
GetDateFormatW
GetDiskFreeSpaceA
GetDiskFreeSpaceExW
GetDiskFreeSpaceW
GetDriveTypeW
GetDynamicTimeZoneInformation
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileSize
GetFileSizeEx
GetFileTime
GetFileType
GetFinalPathNameByHandleW
GetFullPathNameA
GetFullPathNameW
GetGeoInfoW
GetHandleInformation
GetLastError
GetLocalTime
GetLocaleInfoEx
GetLocaleInfoW
GetLogicalDriveStringsW
GetLogicalDrives
GetLongPathNameW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetNumberFormatEx
GetOEMCP
GetOverlappedResult
GetPriorityClass
GetPrivateProfileStringW
GetProcAddress
GetProcessAffinityMask
GetProcessHeap
GetProcessId
GetProcessTimes
GetProductInfo
GetQueuedCompletionStatus
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemInfo
GetSystemPowerStatus
GetSystemTime
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTempPathW
GetThreadContext
GetThreadId
GetThreadPreferredUILanguages
GetThreadPriority
GetThreadTimes
GetTickCount
GetTimeFormatEx
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultLangID
GetUserDefaultUILanguage
GetUserGeoID
GetVersion
GetVersionExW
GetVolumeInformationW
GetVolumeNameForVolumeMountPointW
GetVolumePathNameW
GetVolumePathNamesForVolumeNameW
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalAlloc
GlobalFree
GlobalLock
GlobalMemoryStatusEx
GlobalSize
GlobalUnlock
HeapAlloc
HeapCompact
HeapCreate
HeapDestroy
HeapFree
HeapLock
HeapReAlloc
HeapSetInformation
HeapSize
HeapUnlock
HeapValidate
HeapWalk
InitOnceBeginInitialize
InitOnceComplete
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
InitializeProcThreadAttributeList
InitializeSListHead
InitializeSRWLock
InterlockedFlushSList
InterlockedPopEntrySList
InterlockedPushEntrySList
IsDebuggerPresent
IsProcessInJob
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
K32EmptyWorkingSet
K32EnumProcessModules
K32GetModuleFileNameExW
K32GetModuleInformation
K32GetPerformanceInfo
K32GetProcessMemoryInfo
K32QueryWorkingSetEx
LCIDToLocaleName
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LocaleNameToLCID
LockFile
LockFileEx
LockResource
MapViewOfFile
Module32FirstW
Module32NextW
MoveFileExW
MoveFileW
MultiByteToWideChar
OpenEventW
OpenMutexW
OpenProcess
OpenThread
OutputDebugStringA
OutputDebugStringW
PeekNamedPipe
PostQueuedCompletionStatus
PowerClearRequest
PowerCreateRequest
PowerSetRequest
Process32FirstW
Process32NextW
ProcessIdToSessionId
PurgeComm
QueryDosDeviceW
QueryFullProcessImageNameW
QueryInformationJobObject
QueryPerformanceCounter
QueryPerformanceFrequency
QueryThreadCycleTime
QueryUnbiasedInterruptTime
RaiseException
RaiseFailFastException
ReadConsoleW
ReadFile
ReadProcessMemory
RegisterWaitForSingleObject
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ReleaseSemaphore
RemoveDirectoryW
ReplaceFileW
ResetEvent
ResolveLocaleName
ResumeThread
RtlCaptureStackBackTrace
RtlUnwind
SetCommMask
SetCommState
SetCommTimeouts
SetConsoleCtrlHandler
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetFilePointerEx
SetFileTime
SetHandleInformation
SetInformationJobObject
SetLastError
SetNamedPipeHandleState
SetPriorityClass
SetProcessAffinityMask
SetProcessDEPPolicy
SetStdHandle
SetThreadAffinityMask
SetThreadPriority
SetThreadpoolThreadMaximum
SetThreadpoolThreadMinimum
SetUnhandledExceptionFilter
SizeofResource
Sleep
SleepConditionVariableCS
SleepConditionVariableSRW
SleepEx
SubmitThreadpoolWork
SuspendThread
SwitchToThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TransactNamedPipe
TryAcquireSRWLockExclusive
TryEnterCriticalSection
TzSpecificLocalTimeToSystemTime
UnhandledExceptionFilter
UnlockFile
UnlockFileEx
UnmapViewOfFile
UnregisterWaitEx
UpdateProcThreadAttribute
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitCommEvent
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WaitForThreadpoolWorkCallbacks
WaitNamedPipeW
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrcmpA
lstrcmpiA
lstrcmpiW

user32

AdjustWindowRectEx
AllowSetForegroundWindow
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcW
CharNextW
CharUpperW
ClientToScreen
ClipCursor
CloseClipboard
CloseDesktop
CloseTouchInputHandle
CloseWindowStation
CopyImage
CountClipboardFormats
CreateCaret
CreateIconIndirect
CreatePopupMenu
CreateWindowExW
DefRawInputProc
DefWindowProcW
DestroyCaret
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DispatchMessageW
DisplayConfigGetDeviceInfo
DrawEdge
DrawFocusRect
DrawFrameControl
DrawIcon
DrawIconEx
EmptyClipboard
EnableMenuItem
EnableWindow
EndPaint
EnumChildWindows
EnumClipboardFormats
EnumDisplayDevicesW
EnumDisplayMonitors
EnumDisplaySettingsExW
EnumDisplaySettingsW
EnumThreadWindows
EnumWindows
EqualRect
FillRect
FindWindowExW
FindWindowW
FlashWindowEx
FrameRect
GetActiveWindow
GetAncestor
GetAsyncKeyState
GetCapture
GetCaretBlinkTime
GetClassInfoExW
GetClassLongW
GetClassNameW
GetClientRect
GetClipboardData
GetClipboardFormatNameW
GetClipboardSequenceNumber
GetCursorInfo
GetCursorPos
GetDC
GetDesktopWindow
GetDisplayConfigBufferSizes
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetGuiResources
GetIconInfo
GetKeyState
GetKeyboardLayout
GetKeyboardLayoutList
GetKeyboardLayoutNameW
GetKeyboardState
GetLastInputInfo
GetLayeredWindowAttributes
GetMenuInfo
GetMenuItemInfoW
GetMessageExtraInfo
GetMessagePos
GetMessageTime
GetMonitorInfoW
GetParent
GetProcessWindowStation
GetPropW
GetQueueStatus
GetRawInputData
GetRawInputDeviceInfoW
GetRawInputDeviceList
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetThreadDesktop
GetUserObjectInformationW
GetWindow
GetWindowDC
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowRgn
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
InflateRect
InsertMenuItemW
IntersectRect
InvalidateRect
InvertRect
IsChild
IsClipboardFormatAvailable
IsIconic
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadCursorW
LoadIconW
LoadImageW
MapVirtualKeyExW
MapVirtualKeyW
MapWindowPoints
MessageBoxA
MessageBoxW
MonitorFromPoint
MonitorFromRect
MonitorFromWindow
MoveWindow
MsgWaitForMultipleObjectsEx
NotifyWinEvent
OffsetRect
OpenClipboard
OpenInputDesktop
OpenWindowStationA
PeekMessageW
PostMessageW
PostQuitMessage
PostThreadMessageW
PrintWindow
QueryDisplayConfig
RedrawWindow
RegisterClassExW
RegisterClassW
RegisterClipboardFormatW
RegisterDeviceNotificationW
RegisterHotKey
RegisterPowerSettingNotification
RegisterRawInputDevices
RegisterTouchWindow
ReleaseCapture
ReleaseDC
RemovePropW
ScreenToClient
SendInput
SendMessageTimeoutW
SendMessageW
SendNotifyMessageW
SetCapture
SetCaretPos
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetKeyboardState
SetMenuDefaultItem
SetMenuInfo
SetMenuItemInfoW
SetParent
SetProcessDPIAware
SetProcessWindowStation
SetPropW
SetRect
SetRectEmpty
SetThreadDesktop
SetTimer
SetWinEventHook
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextW
SetWindowsHookExW
ShowCursor
ShowWindow
SystemParametersInfoW
ToUnicodeEx
TrackMouseEvent
TrackPopupMenu
TranslateMessage
UnhookWinEvent
UnhookWindowsHookEx
UnregisterClassW
UnregisterDeviceNotification
UnregisterHotKey
UnregisterPowerSettingNotification
UpdateLayeredWindow
VkKeyScanExW
WaitForInputIdle
WindowFromPoint

winmm

midiInAddBuffer
midiInClose
midiInGetDevCapsW
midiInGetNumDevs
midiInOpen
midiInPrepareHeader
midiInReset
midiInStart
midiInUnprepareHeader
midiOutClose
midiOutGetDevCapsW
midiOutGetNumDevs
midiOutLongMsg
midiOutOpen
midiOutPrepareHeader
midiOutReset
midiOutShortMsg
midiOutUnprepareHeader
timeBeginPeriod
timeEndPeriod
timeGetTime
waveInGetNumDevs
waveOutClose
waveOutGetNumDevs
waveOutOpen
waveOutPause
waveOutPrepareHeader
waveOutReset
waveOutRestart
waveOutUnprepareHeader
waveOutWrite

oleaut32

LoadRegTypeLi
LoadTypeLi
SafeArrayAccessData
SafeArrayCreate
SafeArrayCreateVector
SafeArrayDestroy
SafeArrayGetVartype
SafeArrayPutElement
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringByteLen
SysStringLen
VarCmp
VarUI4FromStr
VariantClear
VariantCopy
VariantInit
VariantTimeToSystemTime

dxgi

CreateDXGIFactory1
CreateDXGIFactory

ws2_32

WSACloseEvent
WSACreateEvent
WSAEnumNameSpaceProvidersW
WSAEnumNetworkEvents
WSAEventSelect
WSAGetLastError
WSAGetOverlappedResult
WSAIoctl
WSALookupServiceBeginW
WSALookupServiceEnd
WSALookupServiceNextW
WSARecvFrom
WSAResetEvent
WSASend
WSASendTo
WSASetEvent
WSASetServiceW
WSASocketW
WSAStartup
WSAWaitForMultipleEvents
WSCEnumProtocols
WSCGetProviderPath
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostname
getpeername
getsockname
getsockopt
htonl
htons
inet_ntop
inet_pton
ioctlsocket
listen
ntohl
ntohs
recv
recvfrom
send
sendto
setsockopt
shutdown
socket

iphlpapi

CancelIPChangeNotify
FreeMibTable
GetAdaptersAddresses
GetIfTable2
GetInterfaceInfo
IpReleaseAddress
IpRenewAddress
NotifyAddrChange

gdi32

AddFontMemResourceEx
BeginPath
BitBlt
CancelDC
ChoosePixelFormat
CloseEnhMetaFile
CloseFigure
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCW
CreateDIBSection
CreateEnhMetaFileW
CreateFontA
CreateFontIndirectA
CreateFontIndirectW
CreateFontW
CreatePen
CreateRectRgn
CreateRectRgnIndirect
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile
DeleteObject
EndDoc
EndPage
EndPath
EnumEnhMetaFile
EnumFontFamiliesExA
EnumFontFamiliesExW
EqualRgn
ExtCreatePen
ExtEscape
ExtTextOutW
FillPath
GdiAlphaBlend
GdiComment
GdiFlush
GetCharABCWidthsW
GetCharWidthW
GetClipBox
GetClipRgn
GetCurrentObject
GetDIBits
GetDeviceCaps
GetEnhMetaFileBits
GetEnhMetaFileHeader
GetFontData
GetFontUnicodeRanges
GetGlyphIndicesW
GetGlyphOutlineW
GetICMProfileW
GetObjectType
GetObjectW
GetOutlineTextMetricsW
GetRegionData
GetRgnBox
GetStockObject
GetTextExtentPointI
GetTextFaceA
GetTextFaceW
GetTextMetricsW
GetWorldTransform
IntersectClipRect
LineTo
ModifyWorldTransform
MoveToEx
PlayEnhMetaFile
PlayEnhMetaFileRecord
PolyBezierTo
RemoveFontMemResourceEx
RestoreDC
SaveDC
SelectClipPath
SelectClipRgn
SelectObject
SetAbortProc
SetArcDirection
SetBkColor
SetBkMode
SetBrushOrgEx
SetDCBrushColor
SetDCPenColor
SetDIBits
SetDIBitsToDevice
SetEnhMetaFileBits
SetGraphicsMode
SetMiterLimit
SetPixelFormat
SetPolyFillMode
SetROP2
SetRectRgn
SetStretchBltMode
SetTextAlign
SetTextColor
SetWorldTransform
StartDocW
StartPage
StretchBlt
StretchDIBits
StrokeAndFillPath
StrokePath
SwapBuffers
WidenPath

shlwapi

AssocQueryStringW
ord437
PathFindExtensionW
PathFindFileNameW
PathMatchSpecW
PathRemoveExtensionW
ord12
SHDeleteKeyW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

shell32

CommandLineToArgvW
DragQueryFileW
SHAppBarMessage
SHAssocEnumHandlersForProtocolByApplication
SHChangeNotify
ord4
ord2
SHCreateAssociationRegistration
SHCreateItemFromParsingName
SHGetDesktopFolder
SHGetFileInfoW
SHGetFolderPathW
SHGetKnownFolderPath
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
SHGetStockIconInfo
SHOpenFolderAndSelectItems
SHOpenWithDialog
SHQueryUserNotificationState
ShellExecuteA
ShellExecuteExW
ShellExecuteW

secur32

AcquireCredentialsHandleA
AcquireCredentialsHandleW
CompleteAuthToken
DeleteSecurityContext
FreeContextBuffer
FreeCredentialsHandle
GetUserNameExW
InitializeSecurityContextA
InitializeSecurityContextW
LsaConnectUntrusted
LsaDeregisterLogonProcess
LsaFreeReturnBuffer
LsaLogonUser
QueryContextAttributesW
QuerySecurityPackageInfoW

netapi32

NetApiBufferFree
NetUserGetInfo

cryptui

CryptUIDlgCertMgr
CryptUIDlgViewCertificateW

oleacc

AccessibleChildren
AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject
WindowFromAccessibleObject

uiautomationcore

UiaGetReservedMixedAttributeValue
UiaGetReservedNotSupportedValue
UiaHostProviderFromHwnd
UiaRaiseAutomationEvent
UiaRaiseAutomationPropertyChangedEvent
UiaRaiseStructureChangedEvent
UiaReturnRawElementProvider

comctl32

InitCommonControlsEx

wtsapi32

WTSFreeMemory
WTSQuerySessionInformationW
WTSRegisterSessionNotification
WTSUnRegisterSessionNotification

hid

HidD_FreePreparsedData
HidD_GetAttributes
HidD_GetPreparsedData
HidD_GetProductString
HidD_GetSerialNumberString
HidP_GetButtonCaps
HidP_GetCaps
HidP_GetValueCaps

wintrust

CryptCATAdminAcquireContext
CryptCATAdminCalcHashFromFileHandle
CryptCATAdminEnumCatalogFromHash
CryptCATAdminReleaseCatalogContext
CryptCATAdminReleaseContext
CryptCATCatalogInfoFromContext
WinVerifyTrust

crypt32

CertAddCertificateContextToStore
CertAddEncodedCertificateToStore
CertCloseStore
CertCompareCertificateName
CertCreateCertificateChainEngine
CertDuplicateCertificateContext
CertFindCertificateInStore
CertFindChainInStore
CertFindExtension
CertFreeCertificateChain
CertFreeCertificateChainEngine
CertFreeCertificateContext
CertGetCertificateChain
CertGetCertificateContextProperty
CertGetIntendedKeyUsage
CertGetIssuerCertificateFromStore
CertGetNameStringW
CertOpenStore
CertOpenSystemStoreW
CertSetCertificateContextProperty
CertVerifyCertificateChainPolicy
CertVerifyTimeValidity
CryptAcquireCertificatePrivateKey
CryptDecodeObject
CryptDecodeObjectEx
CryptHashCertificate
CryptInstallOIDFunctionAddress
CryptMsgClose
CryptMsgGetParam
CryptProtectData
CryptQueryObject
CryptUnprotectData
CryptVerifyCertificateSignatureEx

dwmapi

DwmDefWindowProc
DwmExtendFrameIntoClientArea
DwmGetCompositionTimingInfo
DwmGetWindowAttribute
DwmIsCompositionEnabled
DwmSetWindowAttribute

urlmon

CoInternetCreateSecurityManager

credui

CredUIPromptForCredentialsW
CredUIPromptForWindowsCredentialsW

d3d11

D3D11CreateDevice

comdlg32

ChooseColorW
PrintDlgExW

wininet

GetUrlCacheEntryInfoExW

opera_elf

DumpProcessWithoutCrash
GetUserDataDirectoryThunk

userenv

CreateEnvironmentBlock
DestroyEnvironmentBlock

dwrite

DWriteCreateFactory

uxtheme

CloseThemeData
DrawThemeBackground
ord47
GetThemeBackgroundContentRect
GetThemePartSize
OpenThemeData

winspool.drv

ClosePrinter
DeviceCapabilitiesW
DocumentPropertiesW
EnumPrintersW
ord203
GetPrinterDriverW
GetPrinterW
OpenPrinterW

dbghelp

StackWalk64
SymCleanup
SymFromAddr
SymFunctionTableAccess64
SymGetLineFromAddr64
SymGetModuleBase64
SymGetSearchPathW
SymInitialize
SymSetOptions
SymSetSearchPathW

usp10

ScriptFreeCache
ScriptItemize
ScriptShape

winhttp

WinHttpCloseHandle
WinHttpGetIEProxyConfigForCurrentUser
WinHttpGetProxyForUrl
WinHttpOpen
WinHttpSetTimeouts

ncrypt

NCryptFreeObject
NCryptGetProperty
NCryptSignHash

d3d9

Direct3DCreate9Ex

dxva2

DXVA2CreateDirect3DDeviceManager9
DXVA2CreateVideoService

imm32

ImmAssociateContextEx
ImmGetCompositionStringW
ImmGetContext
ImmGetConversionStatus
ImmGetIMEFileNameW
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionWindow
ImmSetOpenStatus

dhcpcsvc

DhcpCApiInitialize
DhcpRequestParams

Exports

Exports

ChromeMain
GetHandleVerifier
IsSandboxedProcess
VR_GetGenericInterface
VR_GetInitToken
VR_GetRuntimePath
VR_GetStringForHmdError
VR_GetVRInitErrorAsEnglishDescription
VR_GetVRInitErrorAsSymbol
VR_InitInternal
VR_InitInternal2
VR_IsHmdPresent
VR_IsInterfaceVersionValid
VR_IsRuntimeInstalled
VR_RuntimePath
VR_ShutdownInternal

Sections

.text
Size: 83.4MB - Virtual size: 83.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13.2MB - Virtual size: 13.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 263KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 217B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 387B

CPADinfo
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/opera_elf.dll
.dll windows:5 windows x86 arch:x86

9bd20111941a9205113dabb4ff1c69f2

Code Sign

05:f4:21:0d:b2:b2:83:a3:2f:f2:ae:d2:9f:cb:68:a4
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

17/06/2019, 00:00

Not After

17/06/2022, 12:00

Subject

SERIALNUMBER=916 368 127,CN=Opera Software AS,O=Opera Software AS,L=Oslo,C=NO,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4f

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

73:a1:9e:f4:d5:b0:a8:e7:c5:b5:96:b5:1c:12:a8:60:1f:60:5c:99:47:12:4c:ec:a1:44:90:3f:1a:0e:f0:23
Signer

Actual PE Digest

73:a1:9e:f4:d5:b0:a8:e7:c5:b5:96:b5:1c:12:a8:60:1f:60:5c:99:47:12:4c:ec:a1:44:90:3f:1a:0e:f0:23

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

opera_elf.dll.pdb

Imports

kernel32

AcquireSRWLockExclusive
AssignProcessToJobObject
CloseHandle
CompareStringW
CopyFileW
CreateDirectoryW
CreateEventW
CreateFileW
CreateMutexW
CreatePipe
CreateProcessW
DecodePointer
DeleteCriticalSection
DeleteFileW
DeleteProcThreadAttributeList
DeviceIoControl
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExpandEnvironmentStringsW
FindClose
FindFirstFileExW
FindNextFileW
FindResourceW
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetDriveTypeW
GetEnvironmentStringsW
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesExW
GetFileAttributesW
GetFileSizeEx
GetFileType
GetFullPathNameW
GetHandleInformation
GetLastError
GetLocalTime
GetLocaleInfoW
GetLogicalDrives
GetModuleFileNameW
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetProcAddress
GetProcessId
GetProcessTimes
GetProductInfo
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadId
GetThreadPriority
GetTickCount
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetVersionExW
GetWindowsDirectoryW
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitOnceExecuteOnce
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
InitializeProcThreadAttributeList
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
LoadResource
LocalAlloc
LocalFree
MoveFileExW
MultiByteToWideChar
OpenEventW
OutputDebugStringA
OutputDebugStringW
QueryPerformanceCounter
QueryPerformanceFrequency
QueryThreadCycleTime
RaiseException
ReadConsoleW
ReadFile
RegisterWaitForSingleObject
ReleaseMutex
ReleaseSRWLockExclusive
RemoveDirectoryW
ResetEvent
RtlCaptureStackBackTrace
RtlUnwind
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFileAttributesW
SetFilePointerEx
SetHandleInformation
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
UnregisterWaitEx
UpdateProcThreadAttribute
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrcmpiW

Exports

Exports

DumpProcessWithoutCrash
GetHandleVerifier
GetUserDataDirectoryThunk
SignalInitializeCrashReporting

Sections

.text
Size: 629KB - Virtual size: 629KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 269B

CPADinfo
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/profile/data/AutofillStrikeDatabase/CURRENT
AppData/profile/data/AutofillStrikeDatabase/LOG
AppData/profile/data/AutofillStrikeDatabase/LOG.old
AppData/profile/data/AutofillStrikeDatabase/MANIFEST-000001
AppData/profile/data/Bookmarks
AppData/profile/data/BookmarksExtras
AppData/profile/data/BudgetDatabase/CURRENT
AppData/profile/data/BudgetDatabase/LOG
AppData/profile/data/BudgetDatabase/LOG.old
AppData/profile/data/BudgetDatabase/MANIFEST-000001
AppData/profile/data/CURRENT
AppData/profile/data/Cookies
AppData/profile/data/Current Session
AppData/profile/data/Current Tabs
AppData/profile/data/Extension Rules/000003.log
AppData/profile/data/Extension Rules/CURRENT
AppData/profile/data/Extension Rules/LOG
AppData/profile/data/Extension Rules/MANIFEST-000001
AppData/profile/data/Extension State/000003.log
AppData/profile/data/Extension State/CURRENT
AppData/profile/data/Extension State/LOG
AppData/profile/data/Extension State/LOG.old
AppData/profile/data/Extension State/MANIFEST-000001
AppData/profile/data/Favicons
AppData/profile/data/History
AppData/profile/data/History Provider Cache
AppData/profile/data/IndexedDB/chrome-extension_obhaigpnhcioanniiaepcgkdilopflbb_0.indexeddb.leveldb/000003.log
AppData/profile/data/IndexedDB/chrome-extension_obhaigpnhcioanniiaepcgkdilopflbb_0.indexeddb.leveldb/CURRENT
AppData/profile/data/IndexedDB/chrome-extension_obhaigpnhcioanniiaepcgkdilopflbb_0.indexeddb.leveldb/LOG
AppData/profile/data/IndexedDB/chrome-extension_obhaigpnhcioanniiaepcgkdilopflbb_0.indexeddb.leveldb/LOG.old
AppData/profile/data/IndexedDB/chrome-extension_obhaigpnhcioanniiaepcgkdilopflbb_0.indexeddb.leveldb/MANIFEST-000001
AppData/profile/data/Jump List Icons/105c0816-55b4-415d-a12b-6772f0c3e9ac.tmp
AppData/profile/data/Jump List Icons/6ac4184a-4d9d-465e-a357-9d9f080cc8fb.tmp
AppData/profile/data/Jump List Icons/ea2fa2b7-d225-456e-b285-b16d38a50249.tmp
AppData/profile/data/Jump List IconsOld/21378473-8f95-48a7-b282-d4025dc8a322.tmp
AppData/profile/data/Jump List IconsOld/55e883b0-bf3e-4987-9b18-c0db783abc6a.tmp
AppData/profile/data/Jump List IconsOld/9a25e965-0924-4ab0-a569-e38b18c15b15.tmp
AppData/profile/data/Last Session
AppData/profile/data/Last Tabs
AppData/profile/data/Local State
AppData/profile/data/Local Storage/leveldb/000003.log
AppData/profile/data/Local Storage/leveldb/CURRENT
AppData/profile/data/Local Storage/leveldb/LOG
AppData/profile/data/Local Storage/leveldb/LOG.old
AppData/profile/data/Local Storage/leveldb/MANIFEST-000001
AppData/profile/data/Login Data
AppData/profile/data/MANIFEST-000006
AppData/profile/data/Network Action Predictor
AppData/profile/data/Network Persistent State
AppData/profile/data/Network Persistent State.backup
AppData/profile/data/PartnerRules
AppData/profile/data/Platform Notifications/CURRENT
AppData/profile/data/Platform Notifications/LOG
AppData/profile/data/Platform Notifications/LOG.old
AppData/profile/data/Platform Notifications/MANIFEST-000001
AppData/profile/data/Preferences
AppData/profile/data/Preferences.backup
AppData/profile/data/QuotaManager
AppData/profile/data/Registry/Opera.reg
AppData/profile/data/Reporting and NEL
AppData/profile/data/Secure Preferences
AppData/profile/data/Secure Preferences.backup
AppData/profile/data/Session Storage/000003.log
AppData/profile/data/Session Storage/CURRENT
AppData/profile/data/Session Storage/LOG
AppData/profile/data/Session Storage/LOG.old
AppData/profile/data/Session Storage/MANIFEST-000001
AppData/profile/data/Sessions/session_4b6a1eb6-e646-4251-9372-bbf100559b69.raw
AppData/profile/data/Sessions/session_b0d196fe-8b79-4560-a733-0d6523eed637.raw
AppData/profile/data/Sessions/session_ccb3bac6-e52d-4eae-bccc-afb4e64041ec.raw
AppData/profile/data/Shortcuts
AppData/profile/data/Site Characteristics Database/000003.log
AppData/profile/data/Site Characteristics Database/CURRENT
AppData/profile/data/Site Characteristics Database/LOG
AppData/profile/data/Site Characteristics Database/LOG.old
AppData/profile/data/Site Characteristics Database/MANIFEST-000001
AppData/profile/data/Sync Data/LevelDB/000003.log
AppData/profile/data/Sync Data/LevelDB/CURRENT
AppData/profile/data/Sync Data/LevelDB/LOG
AppData/profile/data/Sync Data/LevelDB/LOG.old
AppData/profile/data/Sync Data/LevelDB/MANIFEST-000001
AppData/profile/data/TransportSecurity
AppData/profile/data/VideoDecodeStats/000003.log
AppData/profile/data/VideoDecodeStats/CURRENT
AppData/profile/data/VideoDecodeStats/LOG
AppData/profile/data/VideoDecodeStats/MANIFEST-000001
AppData/profile/data/Visited Links
AppData/profile/data/Web Data
AppData/profile/data/au_global_storage
AppData/profile/data/au_global_storage.backup
AppData/profile/data/browser.js
AppData/profile/data/databases/Databases.db
AppData/profile/data/default_partner_content.json
AppData/profile/data/dictionaries/en-US-9-0.bdic
AppData/profile/data/dictionaries/ru-RU-3-0.bdic
AppData/profile/data/rhs.dat
.gz
rich_hints.338_onjfa2D.json
AppData/profile/data/shared_proto_db/metadata/000003.log
AppData/profile/data/shared_proto_db/metadata/CURRENT
AppData/profile/data/shared_proto_db/metadata/LOG
AppData/profile/data/shared_proto_db/metadata/LOG.old
AppData/profile/data/shared_proto_db/metadata/MANIFEST-000001
AppData/profile/data/siteprefs.json
AppData/profile/data/themes/rain-04.zip
.zip
cover.jpg
.jpg
first_frame_start_page.jpeg
.jpg
persona.ini
raindrops.webm
AppData/resources/013E742B-287B-4228-A0B9-BD617E4E02A4.ico
AppData/resources/07593226-C5C5-438B-86BE-3F6361CD5B10.ico
AppData/resources/0CD5F3A0-8BF6-11E2-9E96-0800200C9A66.ico
AppData/resources/1AF2CDD0-8BF3-11E2-9E96-0800200C9A66.ico
AppData/resources/1CF37043-6733-479C-9086-7B21A2292DDA.ico
AppData/resources/2A3F5C20-8BF5-11E2-9E96-0800200C9A66.ico
AppData/resources/2F8F0E41-F521-45A4-9691-F664AFAFE67F.ico
AppData/resources/3B6191A0-8BF3-11E2-9E96-0800200C9A66.ico
AppData/resources/3BFDFA54-5DD6-4DFF-8B6C-C1715F306D6B.ico
AppData/resources/4C95ADC1-5FD9-449D-BC75-77CA217403AE.ico
AppData/resources/5BBBDD5B-EDC7-4168-9F5D-290AF826E716.ico
AppData/resources/66DD4BB6-A3BA-4B11-AF7A-F4BF23E073B2.ico
AppData/resources/6D3582E1-6013-429F-BB34-C75B90CDD1F8.ico
AppData/resources/76C397A8-9E8E-4706-8203-BD2878E9C618.ico
AppData/resources/8D754F20-8BF5-11E2-9E96-0800200C9A66.ico
AppData/resources/AD2FD2BD-0727-4AF7-8917-AAED8627ED47.ico
AppData/resources/B478FE0C-0761-41C3-946F-CD1340356039.ico
AppData/resources/C665D993-1B49-4C2E-962C-BEB19993BB86.ico
AppData/resources/CCCED631-6DA2-4060-9824-95737E64350C.ico
AppData/resources/CFCE84E5-9A95-4B3F-B8E4-3E98CF7EE6C5.ico
AppData/resources/CFD4BE41-4C6D-496A-ADDB-4095DFA1DD0E.ico
AppData/resources/F3F34CBB-24FF-4830-9E87-1663E7A0A5EE.ico
AppData/resources/F98D4D4C-8AA7-4619-A1E7-AC89B24558DD.ico
AppData/resources/FDC2CCAB-E8F9-4620-91DD-B0B67285997C.ico
AppData/resources/FF57F01A-0718-44B7-8A1F-8B15BC33A50B.ico
AppData/resources/FFF3F819-B6CE-4DE6-B4E4-8E2618ABC0D9.ico
AppData/resources/ab_tests.json
AppData/resources/browser.js
.js
AppData/resources/default_partner_content.json
AppData/resources/eula_desktop_eea.txt
AppData/resources/eula_desktop_row.txt
AppData/resources/facebook_icon.ico
AppData/resources/partner_speeddials.json
AppData/resources/promotion_extension_1/_locales/en/messages.json
AppData/resources/standard_themes/art_1.zip
.zip
art.jpg
.jpg
persona.ini
AppData/resources/standard_themes/art_2.zip
.zip
art.jpg
.jpg
persona.ini
AppData/resources/standard_themes/default_dark_theme.zip
.zip
art.jpg
.jpg
persona.ini
AppData/resources/standard_themes/default_theme.zip
.zip
art.jpg
.jpg
persona.ini
AppData/resources/vk_icon.ico
AppData/snapshot_blob.bin
AppData/swiftshader/libEGL.dll
.dll windows:5 windows x86 arch:x86

b7c0ca2c7eadf6e169e6d987180f93a8

Code Sign

05:f4:21:0d:b2:b2:83:a3:2f:f2:ae:d2:9f:cb:68:a4
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

17/06/2019, 00:00

Not After

17/06/2022, 12:00

Subject

SERIALNUMBER=916 368 127,CN=Opera Software AS,O=Opera Software AS,L=Oslo,C=NO,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4f

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:27:5f:ea:92:df:7b:2f:a4:67:64:f9:73:7b:2c:d8:83:1f:60:0d:50:e0:89:de:57:ed:f6:5a:46:23:53:6b
Signer

Actual PE Digest

0d:27:5f:ea:92:df:7b:2f:a4:67:64:f9:73:7b:2c:d8:83:1f:60:0d:50:e0:89:de:57:ed:f6:5a:46:23:53:6b

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

libEGL.dll.pdb

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DecodePointer
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

user32

GetClientRect
GetDC
IsWindow
ReleaseDC

gdi32

GetDeviceCaps

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSyncKHR
eglCopyBuffers
eglCreateContext
eglCreateImageKHR
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurfaceEXT
eglCreatePlatformWindowSurfaceEXT
eglCreateSyncKHR
eglCreateWindowSurface
eglDestroyContext
eglDestroyImageKHR
eglDestroySurface
eglDestroySyncKHR
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttribKHR
eglInitialize
eglMakeCurrent
eglQueryAPI
eglQueryContext
eglQueryString
eglQuerySurface
eglReleaseTexImage
eglReleaseThread
eglSurfaceAttrib
eglSwapBuffers
eglSwapInterval
eglTerminate
eglWaitClient
eglWaitGL
eglWaitNative
libEGL_swiftshader

Sections

.text
Size: 243KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 246B

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/swiftshader/libGLESv2.dll
.dll windows:5 windows x86 arch:x86

dd73e6044bb65bc4902760ed35fffde1

Code Sign

05:f4:21:0d:b2:b2:83:a3:2f:f2:ae:d2:9f:cb:68:a4
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

17/06/2019, 00:00

Not After

17/06/2022, 12:00

Subject

SERIALNUMBER=916 368 127,CN=Opera Software AS,O=Opera Software AS,L=Oslo,C=NO,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4f

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

82:de:24:d1:48:91:7b:b1:a8:cc:4e:d4:0d:cb:88:39:5c:48:cb:c6:75:9b:23:b9:fa:2c:b8:03:ec:2a:61:f1
Signer

Actual PE Digest

82:de:24:d1:48:91:7b:b1:a8:cc:4e:d4:0d:cb:88:39:5c:48:cb:c6:75:9b:23:b9:fa:2c:b8:03:ec:2a:61:f1

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

libGLESv2.dll.pdb

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventA
CreateEventW
CreateFileW
CreateThread
DecodePointer
DeleteCriticalSection
DeleteFileW
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FileTimeToSystemTime
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FlushInstructionCache
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetDriveTypeW
GetEnvironmentStringsW
GetFileAttributesW
GetFileInformationByHandle
GetFileSizeEx
GetFileType
GetFullPathNameW
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessAffinityMask
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
MultiByteToWideChar
OutputDebugStringA
PeekNamedPipe
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
RemoveDirectoryW
ResetEvent
RtlUnwind
SetConsoleTextAttribute
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualProtect
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

user32

ChangeDisplaySettingsA
ClientToScreen
GetClientRect
GetDC
GetSystemMetrics
GetWindowLongA
GetWindowRect
ReleaseDC
SetRect
SetWindowLongA
SetWindowPos

gdi32

CreateCompatibleDC
CreateDIBSection
DeleteDC
DeleteObject
GetDeviceGammaRamp
SelectObject
SetDeviceGammaRamp
StretchBlt

ws2_32

WSACleanup
WSAStartup
accept
bind
closesocket
getaddrinfo
listen
recv
select
send
socket

Exports

Exports

glActiveTexture
glAttachShader
glBeginQuery
glBeginQueryEXT
glBeginTransformFeedback
glBindAttribLocation
glBindBuffer
glBindBufferBase
glBindBufferRange
glBindFramebuffer
glBindFramebufferOES
glBindRenderbuffer
glBindRenderbufferOES
glBindSampler
glBindTexture
glBindTransformFeedback
glBindVertexArray
glBindVertexArrayOES
glBlendColor
glBlendEquation
glBlendEquationSeparate
glBlendFunc
glBlendFuncSeparate
glBlitFramebuffer
glBlitFramebufferANGLE
glBufferData
glBufferSubData
glCheckFramebufferStatus
glCheckFramebufferStatusOES
glClear
glClearBufferfi
glClearBufferfv
glClearBufferiv
glClearBufferuiv
glClearColor
glClearDepthf
glClearStencil
glClientWaitSync
glColorMask
glCompileShader
glCompressedTexImage2D
glCompressedTexImage3D
glCompressedTexSubImage2D
glCompressedTexSubImage3D
glCopyBufferSubData
glCopyTexImage2D
glCopyTexSubImage2D
glCopyTexSubImage3D
glCreateProgram
glCreateShader
glCullFace
glDeleteBuffers
glDeleteFencesNV
glDeleteFramebuffers
glDeleteFramebuffersOES
glDeleteProgram
glDeleteQueries
glDeleteQueriesEXT
glDeleteRenderbuffers
glDeleteRenderbuffersOES
glDeleteSamplers
glDeleteShader
glDeleteSync
glDeleteTextures
glDeleteTransformFeedbacks
glDeleteVertexArrays
glDeleteVertexArraysOES
glDepthFunc
glDepthMask
glDepthRangef
glDetachShader
glDisable
glDisableVertexAttribArray
glDrawArrays
glDrawArraysInstanced
glDrawBuffers
glDrawBuffersEXT
glDrawElements
glDrawElementsInstanced
glDrawRangeElements
glEGLImageTargetRenderbufferStorageOES
glEGLImageTargetTexture2DOES
glEnable
glEnableVertexAttribArray
glEndQuery
glEndQueryEXT
glEndTransformFeedback
glFenceSync
glFinish
glFinishFenceNV
glFlush
glFlushMappedBufferRange
glFramebufferRenderbuffer
glFramebufferRenderbufferOES
glFramebufferTexture2D
glFramebufferTexture2DOES
glFramebufferTextureLayer
glFrontFace
glGenBuffers
glGenFencesNV
glGenFramebuffers
glGenFramebuffersOES
glGenQueries
glGenQueriesEXT
glGenRenderbuffers
glGenRenderbuffersOES
glGenSamplers
glGenTextures
glGenTransformFeedbacks
glGenVertexArrays
glGenVertexArraysOES
glGenerateMipmap
glGenerateMipmapOES
glGetActiveAttrib
glGetActiveUniform
glGetActiveUniformBlockName
glGetActiveUniformBlockiv
glGetActiveUniformsiv
glGetAttachedShaders
glGetAttribLocation
glGetBooleanv
glGetBufferParameteri64v
glGetBufferParameteriv
glGetBufferPointerv
glGetError
glGetFenceivNV
glGetFloatv
glGetFragDataLocation
glGetFramebufferAttachmentParameteriv
glGetFramebufferAttachmentParameterivOES
glGetGraphicsResetStatusEXT
glGetInteger64i_v
glGetInteger64v
glGetIntegeri_v
glGetIntegerv
glGetInternalformativ
glGetProgramBinary
glGetProgramInfoLog
glGetProgramiv
glGetQueryObjectuiv
glGetQueryObjectuivEXT
glGetQueryiv
glGetQueryivEXT
glGetRenderbufferParameteriv
glGetRenderbufferParameterivOES
glGetSamplerParameterfv
glGetSamplerParameteriv
glGetShaderInfoLog
glGetShaderPrecisionFormat
glGetShaderSource
glGetShaderiv
glGetString
glGetStringi
glGetSynciv
glGetTexParameterfv
glGetTexParameteriv
glGetTransformFeedbackVarying
glGetUniformBlockIndex
glGetUniformIndices
glGetUniformLocation
glGetUniformfv
glGetUniformiv
glGetUniformuiv
glGetVertexAttribIiv
glGetVertexAttribIuiv
glGetVertexAttribPointerv
glGetVertexAttribfv
glGetVertexAttribiv
glGetnUniformfvEXT
glGetnUniformivEXT
glHint
glInvalidateFramebuffer
glInvalidateSubFramebuffer
glIsBuffer
glIsEnabled
glIsFenceNV
glIsFramebuffer
glIsFramebufferOES
glIsProgram
glIsQuery
glIsQueryEXT
glIsRenderbuffer
glIsRenderbufferOES
glIsSampler
glIsShader
glIsSync
glIsTexture
glIsTransformFeedback
glIsVertexArray
glIsVertexArrayOES
glLineWidth
glLinkProgram
glMapBufferRange
glPauseTransformFeedback
glPixelStorei
glPolygonOffset
glProgramBinary
glProgramParameteri
glReadBuffer
glReadPixels
glReadnPixelsEXT
glReleaseShaderCompiler
glRenderbufferStorage
glRenderbufferStorageMultisample
glRenderbufferStorageMultisampleANGLE
glRenderbufferStorageOES
glResumeTransformFeedback
glSampleCoverage
glSamplerParameterf
glSamplerParameterfv
glSamplerParameteri
glSamplerParameteriv
glScissor
glSetFenceNV
glShaderBinary
glShaderSource
glStencilFunc
glStencilFuncSeparate
glStencilMask
glStencilMaskSeparate
glStencilOp
glStencilOpSeparate
glTestFenceNV
glTexImage2D
glTexImage3D
glTexImage3DOES
glTexParameterf
glTexParameterfv
glTexParameteri
glTexParameteriv
glTexStorage2D
glTexStorage3D
glTexSubImage2D
glTexSubImage3D
glTransformFeedbackVaryings
glUniform1f
glUniform1fv
glUniform1i
glUniform1iv
glUniform1ui
glUniform1uiv
glUniform2f
glUniform2fv
glUniform2i
glUniform2iv
glUniform2ui
glUniform2uiv
glUniform3f
glUniform3fv
glUniform3i
glUniform3iv
glUniform3ui
glUniform3uiv
glUniform4f
glUniform4fv
glUniform4i
glUniform4iv
glUniform4ui
glUniform4uiv
glUniformBlockBinding
glUniformMatrix2fv
glUniformMatrix2x3fv
glUniformMatrix2x4fv
glUniformMatrix3fv
glUniformMatrix3x2fv
glUniformMatrix3x4fv
glUniformMatrix4fv
glUniformMatrix4x2fv
glUniformMatrix4x3fv
glUnmapBuffer
glUseProgram
glValidateProgram
glVertexAttrib1f
glVertexAttrib1fv
glVertexAttrib2f
glVertexAttrib2fv
glVertexAttrib3f
glVertexAttrib3fv
glVertexAttrib4f
glVertexAttrib4fv
glVertexAttribDivisor
glVertexAttribI4i
glVertexAttribI4iv
glVertexAttribI4ui
glVertexAttribI4uiv
glVertexAttribIPointer
glVertexAttribPointer
glViewport
glWaitSync
libGLESv2_swiftshader

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 310KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 21B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 348B

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/v8_context_snapshot.bin
AppData/win10_share_handler.dll
.dll windows:5 windows x86 arch:x86

2bcf8083ab6563482c12c3bfa43dda17

Code Sign

05:f4:21:0d:b2:b2:83:a3:2f:f2:ae:d2:9f:cb:68:a4
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

17/06/2019, 00:00

Not After

17/06/2022, 12:00

Subject

SERIALNUMBER=916 368 127,CN=Opera Software AS,O=Opera Software AS,L=Oslo,C=NO,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4f

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

b1:86:78:4d:71:40:7d:2c:ce:77:23:52:b0:67:4d:25:c5:ca:49:0a:74:5d:7d:c6:d8:c4:f6:86:33:10:aa:bf
Signer

Actual PE Digest

b1:86:78:4d:71:40:7d:2c:ce:77:23:52:b0:67:4d:25:c5:ca:49:0a:74:5d:7d:c6:d8:c4:f6:86:33:10:aa:bf

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

win10_share_handler.dll.pdb

Imports

api-ms-win-core-winrt-l1-1-0

RoGetActivationFactory

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DecodePointer
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExpandEnvironmentStringsW
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetHandleInformation
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetProcAddress
GetProductInfo
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetVersionExW
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitOnceExecuteOnce
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureStackBackTrace
RtlUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateStringReference

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

winmm

timeGetTime

Exports

Exports

CreateWin10ShareHandlerImpl
DestroyWin10ShareHandlerImpl
GetHandleVerifier

Sections

.text
Size: 309KB - Virtual size: 309KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 241B

.rsrc
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AppData/win8_importing.dll
.dll windows:5 windows x86 arch:x86

8ecd255eee71338ca32784e23935ea66

Code Sign

05:f4:21:0d:b2:b2:83:a3:2f:f2:ae:d2:9f:cb:68:a4
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

17/06/2019, 00:00

Not After

17/06/2022, 12:00

Subject

SERIALNUMBER=916 368 127,CN=Opera Software AS,O=Opera Software AS,L=Oslo,C=NO,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024e4f

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d5:63:05:0f:fa:20:cb:48:bb:5c:79:d6:20:be:eb:f7:ca:0a:bb:dd:2c:7c:65:c0:10:63:53:ef:00:61:da:3b
Signer

Actual PE Digest

d5:63:05:0f:fa:20:cb:48:bb:5c:79:d6:20:be:eb:f7:ca:0a:bb:dd:2c:7c:65:c0:10:63:53:ef:00:61:da:3b

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

win8_importing.dll.pdb

Imports

api-ms-win-core-winrt-l1-1-0

RoActivateInstance

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateStringReference
WindowsGetStringRawBuffer

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DecodePointer
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleMode
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

Exports

Exports

?DestroyPasswordVaultCredentials@win8_importing@@YAXPAUPasswordVaultCredentials@1@@Z
?ImportPasswordVaultCredentials@win8_importing@@YA_NPAPAUPasswordVaultCredentials@1@PAI@Z

Sections

.text
Size: 225KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 242B

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
X-Opera.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 472KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
X-Opera.ini
uninstall.exe
.exe windows:4 windows x86 arch:x86

3abe302b6d9a1256e6a915429af4ffd2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetEnvironmentVariableA
Sleep
GetTickCount
GetCommandLineA
lstrlenA
GetVersion
SetErrorMode
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GetWindowsDirectoryA
SetCurrentDirectoryA
GetLastError
CreateDirectoryA
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
ReadFile
WriteFile
lstrcpyA
MoveFileExA
lstrcatA
GetSystemDirectoryA
GetProcAddress
GetExitCodeProcess
WaitForSingleObject
CompareFileTime
SetFileAttributesA
GetFileAttributesA
GetShortPathNameA
MoveFileA
GetFullPathNameA
SetFileTime
SearchPathA
CloseHandle
lstrcmpiA
CreateThread
GlobalLock
lstrcmpA
FindFirstFileA
FindNextFileA
DeleteFileA
SetFilePointer
GetPrivateProfileStringA
FindClose
MultiByteToWideChar
FreeLibrary
MulDiv
WritePrivateProfileStringA
LoadLibraryExA
GetModuleHandleA
GlobalAlloc
GlobalFree
ExpandEnvironmentStringsA

user32

ScreenToClient
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
PostQuitMessage
GetWindowRect
EnableMenuItem
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
ReleaseDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndDialog
RegisterClassA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
GetDC
CreateDialogParamA
SetTimer
GetDlgItem
SetWindowLongA
SetForegroundWindow
LoadImageA
IsWindow
SendMessageTimeoutA
FindWindowExA
OpenClipboard
TrackPopupMenu
AppendMenuA
EndPaint
DestroyWindow
wsprintfA
ShowWindow
SetWindowTextA

gdi32

SelectObject
SetBkMode
CreateFontIndirectA
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
ShellExecuteExA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
SHFileOperationA

advapi32

AdjustTokenPrivileges
RegCreateKeyExA
RegOpenKeyExA
SetFileSecurityA
OpenProcessToken
LookupPrivilegeValueA
RegEnumValueA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegEnumKeyA

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_Destroy
ord17

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
CoCreateInstance

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3abe302b6d9a1256e6a915429af4ffd2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 149KB

.ndata Size: - Virtual size: 40KB

.rsrc Size: 17KB - Virtual size: 17KB

610235b90207a63ccf481f0d4375d329

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1KB - Virtual size: 1KB

17fb6a8708b9c0bb2d5d8687870eb415

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

Exports

Exports

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 5KB

.rsrc Size: 512B - Virtual size: 296B

.reloc Size: 1024B - Virtual size: 568B

8c8a576201f68de1a3f26fc723b9f30f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 1024B - Virtual size: 867B

.data Size: 512B - Virtual size: 104B

.reloc Size: 1024B - Virtual size: 636B

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 508KB

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 149KB

.ndata
Size: - Virtual size: 40KB

.rsrc
Size: 17KB - Virtual size: 17KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 5KB

.rsrc
Size: 512B - Virtual size: 296B

.reloc
Size: 1024B - Virtual size: 568B

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 867B

.data
Size: 512B - Virtual size: 104B

.reloc
Size: 1024B - Virtual size: 636B

UPX0
Size: - Virtual size: 508KB

UPX1
Size: 264KB - Virtual size: 268KB

.rsrc
Size: 66KB - Virtual size: 68KB

.text
Size: 514KB - Virtual size: 513KB

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 26KB - Virtual size: 105KB

.rsrc
Size: 74KB - Virtual size: 73KB

0d:2c:ac:cd:3e:9e:ec:06:73:84:10:ba:31:bf:65:95
Certificate

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

40:a6:3c:ac:80:a9:0e:2d:02:ab:45:70:1f:f0:e6:7a:98:df:81:e9:cd:7a:42:50:f5:81:ed:8c:41:f2:58:c9
Signer

.text
Size: 12.3MB - Virtual size: 12.3MB

.rodata
Size: 4KB - Virtual size: 4KB

.rdata
Size: 3.5MB - Virtual size: 3.5MB

.data
Size: 801KB - Virtual size: 1.7MB

.tls
Size: 512B - Virtual size: 13B

.gfids
Size: 1024B - Virtual size: 648B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 497KB - Virtual size: 497KB