t[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

t.rar
Size

14.7MB
MD5

d27202d50ca0cbcf53b1d0c52b1c83da
SHA1

d437ec174cae1133503169c8bf656a6d6117381d
SHA256

174e6e28792c78757e63ec03650e85e639c16825aab6a93adc8db0327bc91db7
SHA512

c90f199f292a8be6eec2a847f15e074929f3993f3fa8164432b09fcdbe735925e0160bb0ce41f96978c69a168a0a1fdd98bba409114b7f253731ca358e9b496e
SSDEEP

393216:Hpd2Fl0+xfHZuqzDZw8CX13G9AiavN+fsGiMBDTTnj:rgNpHZM8COCesGiMNX

Score

7^/10

themida

Malware Config

Signatures

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
static1/unpack001/t/hook.dll	themida

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/t/hook.dll
unpack001/t/injector.exe

Files

t.rar
.rar
t/discord_voice.rar
.rar
capture_helper.exe
.exe windows:6 windows x64 arch:x64

b480bc4b77616640a8e65de66fa4ec00

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

05/03/2024, 00:00

Not After

03/04/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

05/03/2024, 00:00

Not After

03/04/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

6d:66:8c:55:14:77:01:80:2b:b7:72:42:3a:0a:84:64:97:ae:30:27:71:a4:1d:e5:5c:ac:cf:8e:34:82:33:e6
Signer

Actual PE Digest

6d:66:8c:55:14:77:01:80:2b:b7:72:42:3a:0a:84:64:97:ae:30:27:71:a4:1d:e5:5c:ac:cf:8e:34:82:33:e6

Digest Algorithm

sha256

PE Digest Matches

true

78:73:be:18:5e:35:27:f3:17:b2:6f:54:66:2b:63:94:f9:c1:3e:3a
Signer

Actual PE Digest

78:73:be:18:5e:35:27:f3:17:b2:6f:54:66:2b:63:94:f9:c1:3e:3a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

helper.pdb

Imports

bcryptprimitives

ProcessPrng

api-ms-win-core-synch-l1-2-0

WakeByAddressSingle
WaitOnAddress
WakeByAddressAll

kernel32

WideCharToMultiByte
GetConsoleOutputCP
HeapSize
LCMapStringW
CreateToolhelp32Snapshot
GetLastError
Module32FirstW
Module32NextW
GetModuleHandleExW
GetModuleFileNameW
CloseHandle
FreeEnvironmentStringsW
AddVectoredExceptionHandler
SetThreadStackGuarantee
GetCurrentThread
WaitForSingleObject
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetLastError
GetCurrentDirectoryW
GetEnvironmentStringsW
GetEnvironmentVariableW
SetEnvironmentVariableW
GetCommandLineW
FlushFileBuffers
GetCurrentProcess
SetFilePointerEx
GetStdHandle
GetCurrentProcessId
TerminateProcess
HeapFree
HeapReAlloc
lstrlenW
ReleaseMutex
GetProcessHeap
HeapAlloc
FindNextFileW
FindClose
CreateFileW
GetConsoleMode
GetFileType
GetModuleHandleW
FormatMessageW
ExitProcess
MultiByteToWideChar
WriteConsoleW
GetModuleHandleA
GetProcAddress
WaitForSingleObjectEx
LoadLibraryA
CreateMutexA
CompareStringW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
GetStringTypeW
SetStdHandle
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetCommandLineA
WriteFile
RtlPcToFileHeader
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
EncodePointer
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
RtlUnwindEx

ntdll

RtlNtStatusToDosError
NtWriteFile

Sections

.text
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
discord_voice.node
.dll windows:6 windows x64 arch:x64

7f9d03dababaef80f8a1f690ce9bb6d6

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:61:7a:7c:42:23:07:5b:71:ed:d2:b5:83:20:ee:b7
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

08/04/2024, 00:00

Not After

03/05/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,OU=Select or enter,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:61:7a:7c:42:23:07:5b:71:ed:d2:b5:83:20:ee:b7
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

08/04/2024, 00:00

Not After

03/05/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,OU=Select or enter,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

be:46:57:45:95:f1:d7:52:c6:c5:a4:d0:70:9e:b2:49:f0:37:fb:95:8a:5a:8b:62:f6:af:e1:e4:db:d6:17:1a
Signer

Actual PE Digest

be:46:57:45:95:f1:d7:52:c6:c5:a4:d0:70:9e:b2:49:f0:37:fb:95:8a:5a:8b:62:f6:af:e1:e4:db:d6:17:1a

Digest Algorithm

sha256

PE Digest Matches

true

4b:8b:6d:51:ac:40:80:7f:ed:f7:ce:67:7c:0d:67:67:96:f9:1c:81
Signer

Actual PE Digest

4b:8b:6d:51:ac:40:80:7f:ed:f7:ce:67:7c:0d:67:67:96:f9:1c:81

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

B:\b\discord_desktop\build_x64\obj\discord_desktop\native_modules\discord_voice\_b\discord_voice.node.pdb

Imports

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AreFileApisANSI
CloseHandle
CompareStringEx
CompareStringOrdinal
CompareStringW
CreateDirectoryW
CreateEventA
CreateEventExW
CreateEventW
CreateFileMappingA
CreateFileW
CreateJobObjectW
CreateMutexA
CreateNamedPipeW
CreateProcessW
CreateSemaphoreW
CreateThread
CreateWaitableTimerExW
DebugBreak
DecodePointer
DeleteCriticalSection
DeleteFileW
DeleteProcThreadAttributeList
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FindClose
FindFirstFileExW
FindFirstFileW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FormatMessageA
FormatMessageW
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetEnvironmentVariableW
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileInformationByHandleEx
GetFileSizeEx
GetFileType
GetFullPathNameW
GetLastError
GetLocaleInfoEx
GetLocaleInfoW
GetLogicalProcessorInformation
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetPriorityClass
GetProcAddress
GetProcessHeap
GetProcessTimes
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetSystemTimePreciseAsFileTime
GetThreadGroupAffinity
GetThreadId
GetThreadPriority
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetVersionExW
GetWindowsDirectoryW
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitOnceBeginInitialize
InitOnceComplete
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
InitializeProcThreadAttributeList
InitializeSListHead
InitializeSRWLock
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
K32GetProcessMemoryInfo
LCMapStringEx
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
MapViewOfFile
MoveFileExW
MultiByteToWideChar
OpenFileMappingA
OpenProcess
OutputDebugStringA
ProcessIdToSessionId
QueryFullProcessImageNameW
QueryPerformanceCounter
QueryPerformanceFrequency
QueueUserAPC
RaiseException
ReadConsoleW
ReadFile
ReadFileEx
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ReleaseSemaphore
ResetEvent
ResumeThread
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetConsoleMode
SetEndOfFile
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileInformationByHandle
SetFilePointerEx
SetInformationJobObject
SetLastError
SetStdHandle
SetThreadErrorMode
SetThreadPriority
SetThreadStackGuarantee
SetUnhandledExceptionFilter
SetWaitableTimer
Sleep
SleepConditionVariableCS
SleepConditionVariableSRW
SleepEx
SwitchToThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
TzSpecificLocalTimeToSystemTime
UnhandledExceptionFilter
UnmapViewOfFile
UpdateProcThreadAttribute
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualProtect
VirtualQuery
WTSGetActiveConsoleSessionId
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteFileEx
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW

ws2_32

WSAGetLastError
freeaddrinfo
getaddrinfo
htonl
htons

qwave

QOSAddSocketToFlow
QOSCloseHandle
QOSCreateHandle
QOSRemoveSocketFromFlow

ole32

CoCreateInstance
CoIncrementMTAUsage
CoInitializeEx
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
PropVariantClear
StringFromGUID2

ffmpeg

av_buffer_create
av_buffer_get_opaque
av_buffer_make_writable
av_channel_layout_copy
av_dict_get
av_dict_set
av_frame_alloc
av_frame_free
av_frame_get_buffer
av_frame_make_writable
av_frame_unref
av_free
av_guess_format
av_image_check_size
av_init_packet
av_interleaved_write_frame
av_malloc
av_new_packet
av_packet_alloc
av_packet_free
av_packet_ref
av_packet_rescale_ts
av_packet_unref
av_read_frame
av_realloc_f
av_rescale_q
av_seek_frame
av_strerror
av_write_trailer
avcodec_align_dimensions
avcodec_alloc_context3
avcodec_find_decoder
avcodec_find_encoder
avcodec_free_context
avcodec_open2
avcodec_parameters_copy
avcodec_parameters_to_context
avcodec_receive_frame
avcodec_receive_packet
avcodec_send_frame
avcodec_send_packet
avformat_alloc_context
avformat_alloc_output_context2
avformat_close_input
avformat_find_stream_info
avformat_free_context
avformat_new_stream
avformat_open_input
avformat_write_header
avio_alloc_context
avio_close
avio_open

openh264-2.2.0-win64

WelsCreateSVCEncoder
WelsDestroySVCEncoder

user32

BringWindowToTop
ClientToScreen
CloseDesktop
CopyIcon
DestroyIcon
DispatchMessageW
DisplayConfigGetDeviceInfo
DrawIcon
EnumChildWindows
EnumDisplayDevicesW
EnumDisplaySettingsExW
EnumDisplaySettingsW
EnumWindows
FindWindowExW
GetAncestor
GetAsyncKeyState
GetClassNameW
GetClientRect
GetCursorInfo
GetDC
GetDisplayConfigBufferSizes
GetIconInfo
GetLayeredWindowAttributes
GetMonitorInfoA
GetMonitorInfoW
GetSystemMetrics
GetThreadDesktop
GetUserObjectInformationW
GetWindow
GetWindowDC
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowRgn
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
IsIconic
IsWindow
IsWindowVisible
KillTimer
MonitorFromPoint
MonitorFromRect
MonitorFromWindow
MsgWaitForMultipleObjectsEx
OpenInputDesktop
PeekMessageW
PostThreadMessageW
PrintWindow
QueryDisplayConfig
ReleaseDC
SendMessageTimeoutW
SetForegroundWindow
SetProcessDpiAwarenessContext
SetRectEmpty
SetThreadDesktop
SetTimer
TranslateMessage
WindowFromPoint

mediapipe

media_pipe_get_last_error_message
media_pipe_gpu_buffer_create_opengl
media_pipe_gpu_buffer_destroy
media_pipe_gpu_buffer_get_opengl_name
media_pipe_graph_create
media_pipe_graph_destroy
media_pipe_graph_run_on_gpu_thread
media_pipe_graph_set_egl
media_pipe_graph_set_side_packet_int
media_pipe_graph_start
media_pipe_graph_submit_gpu
media_pipe_graph_terminate
media_pipe_graph_wait_next
media_pipe_initialize_egl
media_pipe_initialize_opengl
media_pipe_packet_destroy
media_pipe_packet_get_gpu_buffer
media_pipe_packet_get_timestamp
media_pipe_set_resource_provider
media_pipe_string_buffer_set_data

d3d11

CreateDirect3D11DeviceFromDXGIDevice
D3D11CreateDevice

oleaut32

GetErrorInfo
OleCreatePropertyFrame
SetErrorInfo
SysAllocString
SysFreeString
SysStringLen
VariantClear
VariantInit

shlwapi

PathFindFileNameW
PathRemoveFileSpecW

shell32

SHQueryUserNotificationState

advapi32

AdjustTokenPrivileges
ConvertSidToStringSidA
ConvertStringSecurityDescriptorToSecurityDescriptorA
GetTokenInformation
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
SystemFunction036

ncrypt

NCryptCreatePersistedKey
NCryptExportKey
NCryptFinalizeKey
NCryptOpenKey
NCryptOpenStorageProvider
NCryptSetProperty

dxgi

CreateDXGIFactory1

avrt

AvRevertMmThreadCharacteristics
AvSetMmThreadCharacteristicsA
AvSetMmThreadCharacteristicsW

winmm

mixerClose
mixerGetControlDetailsW
mixerGetDevCapsW
mixerGetID
mixerGetLineControlsW
mixerGetLineInfoW
mixerGetNumDevs
mixerOpen
mixerSetControlDetails
timeBeginPeriod
timeEndPeriod
timeGetTime
timeKillEvent
timeSetEvent
waveInAddBuffer
waveInClose
waveInGetDevCapsW
waveInGetErrorTextW
waveInGetID
waveInGetNumDevs
waveInGetPosition
waveInMessage
waveInOpen
waveInPrepareHeader
waveInReset
waveInStart
waveInStop
waveInUnprepareHeader
waveOutClose
waveOutGetDevCapsW
waveOutGetErrorTextW
waveOutGetID
waveOutGetNumDevs
waveOutGetPosition
waveOutGetVolume
waveOutMessage
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutSetVolume
waveOutUnprepareHeader
waveOutWrite

msdmo

MoFreeMediaType
MoInitMediaType

gdi32

BitBlt
CreateCompatibleDC
CreateDCA
CreateDIBSection
CreateRectRgn
DeleteDC
DeleteObject
GetCurrentObject
GetDeviceCaps
GetObjectW
GetRgnBox
SelectObject

api-ms-win-core-synch-l1-2-0

WaitOnAddress
WakeByAddressAll
WakeByAddressSingle

ntdll

NtReadFile
NtWriteFile
RtlNtStatusToDosError

bcryptprimitives

ProcessPrng

dwmapi

DwmGetWindowAttribute

api-ms-win-core-winrt-l1-1-0

RoGetActivationFactory

Exports

Exports

??0ConnectionInfo@discord@@QEAA@$$QEAU01@@Z
??0ConnectionInfo@discord@@QEAA@AEBU01@@Z
??0ConnectionInfo@discord@@QEAA@XZ
??0DeviceDescription@media@discord@@QEAA@XZ
??0Discord@@QEAA@UDiscordConfig@@@Z
??0DiscordConfig@@QEAA@$$QEAU0@@Z
??0DiscordConfig@@QEAA@AEBU0@@Z
??0DiscordConfig@@QEAA@XZ
??0EncryptionSettings@discord@@QEAA@$$QEAU01@@Z
??0EncryptionSettings@discord@@QEAA@AEBU01@@Z
??0EncryptionSettings@discord@@QEAA@XZ
??0FrameOp@stats@discord@@QEAA@XZ
??0MediaEngine@discord@@QEAA@$$QEAV01@@Z
??0MediaEngine@discord@@QEAA@AEBV01@@Z
??0MediaEngine@discord@@QEAA@V?$shared_ptr@VThreadedEventLoop@uv@discord@@@std@@AEBUEngineConfig@media@1@@Z
??0Packet@stats@discord@@QEAA@XZ
??0VideoFrameI420@media@discord@@QEAA@AEBV012@@Z
??0VideoFrameI420@media@discord@@QEAA@PEAVVideoFrameBuffer@webrtc@@HW4VideoInputDeviceFacing@12@_J@Z
??0VideoFrameI420@media@discord@@QEAA@PEAVVideoFrameBuffer@webrtc@@H_J@Z
??0VideoFrameRgba@media@discord@@QEAA@$$QEAV012@@Z
??0VideoFrameRgba@media@discord@@QEAA@AEBV012@@Z
??0VideoFrameRgba@media@discord@@QEAA@V?$shared_ptr@VVideoFrameBuffer@media@discord@@@std@@@Z
??0VideoInputDeviceDescription@media@discord@@QEAA@XZ
??0VideoInputInitializationInfo@media@discord@@QEAA@XZ
??0VideoSend@stats@discord@@QEAA@XZ
??1ConnectionInfo@discord@@QEAA@XZ
??1Discord@@QEAA@XZ
??1DiscordConfig@@QEAA@XZ
??1EncryptionSettings@discord@@QEAA@XZ
??1MediaEngine@discord@@QEAA@XZ
??1VideoFrameI420@media@discord@@QEAA@XZ
??1VideoFrameRgba@media@discord@@QEAA@XZ
??4ConnectionInfo@discord@@QEAAAEAU01@$$QEAU01@@Z
??4ConnectionInfo@discord@@QEAAAEAU01@AEBU01@@Z
??4DeviceDescription@media@discord@@QEAAAEAU012@$$QEAU012@@Z
??4DeviceDescription@media@discord@@QEAAAEAU012@AEBU012@@Z
??4DiscordConfig@@QEAAAEAU0@$$QEAU0@@Z
??4DiscordConfig@@QEAAAEAU0@AEBU0@@Z
??4EncryptionSettings@discord@@QEAAAEAU01@$$QEAU01@@Z
??4EncryptionSettings@discord@@QEAAAEAU01@AEBU01@@Z
??4FrameOp@stats@discord@@QEAAAEAU012@$$QEAU012@@Z
??4FrameOp@stats@discord@@QEAAAEAU012@AEBU012@@Z
??4MediaEngine@discord@@QEAAAEAV01@$$QEAV01@@Z
??4MediaEngine@discord@@QEAAAEAV01@AEBV01@@Z
??4Packet@stats@discord@@QEAAAEAU012@$$QEAU012@@Z
??4Packet@stats@discord@@QEAAAEAU012@AEBU012@@Z
??4VideoFrameI420@media@discord@@QEAAAEAV012@AEBV012@@Z
??4VideoFrameRgba@media@discord@@QEAAAEAV012@$$QEAV012@@Z
??4VideoFrameRgba@media@discord@@QEAAAEAV012@AEBV012@@Z
??4VideoInputDeviceDescription@media@discord@@QEAAAEAU012@$$QEAU012@@Z
??4VideoInputDeviceDescription@media@discord@@QEAAAEAU012@AEBU012@@Z
??4VideoInputInitializationInfo@media@discord@@QEAAAEAU012@$$QEAU012@@Z
??4VideoInputInitializationInfo@media@discord@@QEAAAEAU012@AEBU012@@Z
??4VideoSend@stats@discord@@QEAAAEAU012@$$QEAU012@@Z
??4VideoSend@stats@discord@@QEAAAEAU012@AEBU012@@Z
??8DeviceDescription@media@discord@@QEBA_NAEBU012@@Z
??9DeviceDescription@media@discord@@QEBA_NAEBU012@@Z
??_FDiscord@@QEAAXXZ
?AcquireAudioEngine@Discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?AddDirectVideoOutputSink@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?AddLogCallback@Discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z@std@@H@Z
?ApplyMediaFilterSettings@Discord@@QEAAXV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UFilterSettings@discord@@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UFilterSettings@discord@@@std@@@2@@std@@V?$function@$$A6AXXZ@3@@Z
?ApplySettings@Connection@speed_test@discord@@QEAAXAEBUSpeedTestConnectionSettings@3@@Z
?ApplySettings@Connection@voice@discord@@QEAAXAEBUConnectionSettings@3@@Z
?ClearDesktopSource@Connection@voice@discord@@QEAAXXZ
?ClearGoLiveDevices@Connection@voice@discord@@QEAAXXZ
?Connect@Discord@@QEAA?AV?$shared_ptr@VConnection@voice@discord@@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@AEBUBridgeConnectionOptions@discord@@V?$function@$$A6AXAEBUConnectionInfo@discord@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@3@V?$function@$$A6AXI@Z@3@V?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBF_KH2IAEA_N@Z@3@@Z
?ConnectSpeedTest@Discord@@QEAA?AV?$shared_ptr@VConnection@speed_test@discord@@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@AEBUBridgeSpeedTestConnectionOptions@discord@@V?$function@$$A6AXAEBUConnectionInfo@discord@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@3@@Z
?ConnectToLog@Discord@@QEAA?AV?$shared_ptr@VConnection@voice@discord@@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@V?$function@$$A6AXAEBUConnectionInfo@discord@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@3@@Z
?ConnectUser@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEAV?$vector@IV?$allocator@I@std@@@5@_NM2@Z
?DisableUserVideo@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z
?DisconnectUser@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?EnableBuiltInAEC@Discord@@QEAAX_N@Z
?ExecuteSecureFramesTransition@Connection@voice@discord@@QEAAXG@Z
?FastUdpReconnect@Connection@voice@discord@@QEAAXXZ
?GetAudioSubsystem@Discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z@std@@@Z
?GetCodecCapabilities@Discord@@QEBAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?GetCodecSurvey@Discord@@QEBAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?GetDesktopSources@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@std@@@Z
?GetDevices@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UDeviceDescription@media@discord@@V?$allocator@UDeviceDescription@media@discord@@@std@@@std@@0AEBV?$vector@UVideoInputDeviceDescription@media@discord@@V?$allocator@UVideoInputDeviceDescription@media@discord@@@std@@@2@@Z@std@@@Z
?GetEncryptionModes@Connection@speed_test@discord@@QEAAXV?$function@$$A6AXAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@std@@@Z
?GetEncryptionModes@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@std@@@Z
?GetFrameOpStats@Connection@voice@discord@@QEAAXV?$function@$$A6AXUFrameOp@stats@discord@@@Z@std@@@Z
?GetMLSKeyPackage@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$vector@EV?$allocator@E@std@@@std@@@Z@std@@@Z
?GetNetworkOverhead@Connection@speed_test@discord@@QEAAXV?$function@$$A6AX_K@Z@std@@@Z
?GetPacketStats@Connection@voice@discord@@QEAAXV?$function@$$A6AXUPacket@stats@discord@@@Z@std@@@Z
?GetPlayoutDevices@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UDeviceDescription@media@discord@@V?$allocator@UDeviceDescription@media@discord@@@std@@@std@@@Z@std@@@Z
?GetRecordingDevices@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UDeviceDescription@media@discord@@V?$allocator@UDeviceDescription@media@discord@@@std@@@std@@@Z@std@@@Z
?GetScreenPreviews@Discord@@QEAAX_K0V?$function@$$A6AXAEBV?$vector@USourcePreview@media@discord@@V?$allocator@USourcePreview@media@discord@@@std@@@std@@@Z@std@@@Z
?GetStats@Connection@voice@discord@@QEAAXV?$function@$$A6AXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@W4StatsFilter@23@@Z
?GetSupportedBandwidthEstimationExperiments@Discord@@QEBAXV?$function@$$A6AXAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@std@@@Z
?GetSupportedVideoCodecs@Discord@@QEBAXV?$function@$$A6AXAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@std@@@Z
?GetUserMuteState@Connection@voice@discord@@QEAA_NAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?GetUserPlayoutVolume@Connection@voice@discord@@QEAAMAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?GetVideoInputDevices@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UVideoInputDeviceDescription@media@discord@@V?$allocator@UVideoInputDeviceDescription@media@discord@@@std@@@std@@@Z@std@@@Z
?GetVideoSendStats@Connection@voice@discord@@QEAAXV?$function@$$A6AXUVideoSend@stats@discord@@@Z@std@@@Z
?GetWindowPreviews@Discord@@QEAAX_K0V?$function@$$A6AXAEBV?$vector@USourcePreview@media@discord@@V?$allocator@USourcePreview@media@discord@@@std@@@std@@@Z@std@@@Z
?IsRemoteUserSpeaking@Connection@voice@discord@@QEAA_NAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?MuteUser@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z
?PingVoiceThread@Discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?PrepareMLSCommitTransition@Connection@voice@discord@@QEAAXGV?$vector@EV?$allocator@E@std@@@std@@V?$function@$$A6AX_NG@Z@5@@Z
?PrepareSecureFramesEpoch@Connection@voice@discord@@QEAAX_KG0@Z
?PrepareSecureFramesTransition@Connection@voice@discord@@QEAAXGGV?$function@$$A6AXXZ@std@@@Z
?ProcessMLSProposals@Connection@voice@discord@@QEAAXV?$vector@EV?$allocator@E@std@@@std@@V?$function@$$A6AXAEBV?$vector@EV?$allocator@E@std@@@std@@@Z@5@@Z
?ProcessMLSWelcome@Connection@voice@discord@@QEAAXGV?$vector@EV?$allocator@E@std@@@std@@V?$function@$$A6AX_NG@Z@5@@Z
?RankRtcRegions@Discord@@QEAAXV?$vector@URtcRegionWithIps@discord@@V?$allocator@URtcRegionWithIps@discord@@@std@@@std@@V?$function@$$A6AXV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@3@@Z
?ReleaseAudioEngine@Discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?RemoveDirectVideoOutputSink@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?SetAecDump@Discord@@QEAAX_N@Z
?SetAudioInputEnabled@Discord@@QEAAX_N@Z
?SetAutomaticGainControl@Discord@@QEAAXH@Z
?SetAutomaticGainControl@Discord@@QEAAX_N@Z
?SetAv1Enabled@Discord@@QEAAX_N@Z
?SetClipRecordUser@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4ClipDataType@23@_N@Z
?SetDesktopSource@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4DesktopCapturerType@3@UDesktopSourceOptions@23@@Z
?SetDesktopSourceStatusCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?SetDeviceChangeCallback@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UDeviceDescription@media@discord@@V?$allocator@UDeviceDescription@media@discord@@@std@@@std@@0AEBV?$vector@UVideoInputDeviceDescription@media@discord@@V?$allocator@UVideoInputDeviceDescription@media@discord@@@std@@@2@@Z@std@@@Z
?SetDuckingPreference@Discord@@QEAAX_N@Z
?SetEchoCancellation@Discord@@QEAAXH@Z
?SetEchoCancellation@Discord@@QEAAX_N@Z
?SetGoLiveDevices@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?SetH264Enabled@Discord@@QEAAX_N@Z
?SetH265Enabled@Discord@@QEAAX_N@Z
?SetHasFullbandPerformance@Discord@@QEAAX_N@Z
?SetIdleJitterBufferFlush@Discord@@QEAAX_N@Z
?SetKeepAliveChannel@Discord@@QEAAX_N@Z
?SetLocalVoiceLevelChangedCallback@Discord@@QEAAXAEBV?$function@$$A6AXMI@Z@std@@@Z
?SetLoopback@Discord@@QEAAX_NAEBV?$function@$$A6AXMI@Z@std@@@Z
?SetMaxSyncDelayOverride@Discord@@QEAAXH@Z
?SetMicVolume@Discord@@QEAAXM@Z
?SetNoAudioInputCallback@Discord@@QEAAXV?$function@$$A6AX_N@Z@std@@@Z
?SetNoAudioInputThreshold@Discord@@QEAAXM@Z
?SetNoiseCancellation@Discord@@QEAAX_N@Z
?SetNoiseSuppression@Discord@@QEAAXH@Z
?SetNoiseSuppression@Discord@@QEAAX_N@Z
?SetOnDesktopSourceEnded@Connection@voice@discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?SetOnFirstFrameCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I0@Z@std@@@Z
?SetOnMLSFailureCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z@std@@@Z
?SetOnSoundshareCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AX_N@Z@std@@@Z
?SetOnSoundshareEndedCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?SetOnSoundshareFailedCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXIV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z@std@@@Z
?SetOnVideoCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I0AEBV?$vector@UStreamParameters@discord@@V?$allocator@UStreamParameters@discord@@@std@@@2@@Z@std@@@Z
?SetOnVideoEncoderFallbackCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?SetPTTActive@Connection@voice@discord@@QEAAX_N0@Z
?SetPlayoutDevice@Discord@@QEAAXH@Z
?SetPlayoutDevice@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?SetRecordingDevice@Discord@@QEAAXH@Z
?SetRecordingDevice@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?SetRemoteUserCanHavePriority@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z
?SetRemoteUserSpeaking@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I_N@Z
?SetSecureFramesStateUpdateCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXUSecureFramesStateUpdate@secure_frames@discord@@@Z@std@@@Z
?SetSpeakerVolume@Discord@@QEAAXM@Z
?SetUserPlayoutPan@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@MM@Z
?SetUserPlayoutVolume@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@M@Z
?SetVideoBroadcast@Connection@voice@discord@@QEAAX_N@Z
?SetVideoInputDevice@Discord@@QEAAXH@Z
?SetVideoInputDevice@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?SetVideoInputInitializationCallback@Discord@@QEAAXV?$function@$$A6AXAEBUVideoInputInitializationInfo@media@discord@@@Z@std@@@Z
?SetVideoMaxBitrateBucket@Connection@voice@discord@@QEAAXH@Z
?SetVideoOutputSink@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$function@$$A6A_NAEBVVideoFrameRgba@media@discord@@@Z@3@@Z
?SetVoiceThreadPriority@Discord@@QEAAXH@Z
?SignalVideoOutputSinkReady@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?StartReplay@Connection@voice@discord@@QEAAXXZ
?StartSamplesLocalPlayback@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HMV?$vector@V?$vector@MV?$allocator@M@std@@@std@@V?$allocator@V?$vector@MV?$allocator@M@std@@@std@@@2@@5@V?$function@$$A6AXHV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@5@@Z
?StartSpeedTestReceiver@Connection@speed_test@discord@@QEAAXV?$function@$$A6AXXZ@std@@_J@Z
?StartSpeedTestSender@Connection@speed_test@discord@@QEAAXV?$function@$$A6AXHV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@_K11@Z
?StopAllSamplesLocalPlayback@Connection@voice@discord@@QEAAXXZ
?StopSamplesLocalPlayback@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?StopSpeedTestReceiver@Connection@speed_test@discord@@QEAAXV?$function@$$A6AXHV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?StopSpeedTestSender@Connection@speed_test@discord@@QEAAXXZ
?UpdateAudioSession@Discord@@QEAAX_NV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?UpdateMLSExternalSender@Connection@voice@discord@@QEAAXV?$vector@EV?$allocator@E@std@@@std@@@Z
?WriteAudioDebugState@Discord@@QEAAXXZ
?WriteConsoleLog@Discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?buffer@VideoFrameI420@media@discord@@QEBAPEAVVideoFrameBuffer@webrtc@@XZ
?bytesPerPixel@VideoFrameRgba@media@discord@@QEBAHXZ
?data@VideoFrameRgba@media@discord@@QEBAPEBEXZ
?dataU@VideoFrameI420@media@discord@@QEBAPEBEXZ
?dataV@VideoFrameI420@media@discord@@QEBAPEBEXZ
?dataY@VideoFrameI420@media@discord@@QEBAPEBEXZ
?engine@MediaEngine@discord@@QEBA?AV?$shared_ptr@VEngine@media@discord@@@std@@XZ
?height@VideoFrameI420@media@discord@@QEBAHXZ
?height@VideoFrameRgba@media@discord@@QEBAHXZ
?ok@VideoFrameI420@media@discord@@QEBA_NXZ
?ok@VideoFrameRgba@media@discord@@QEBA_NXZ
?rotation@VideoFrameI420@media@discord@@QEBAHXZ
?sourceFacing@VideoFrameI420@media@discord@@QEBA?AW4VideoInputDeviceFacing@23@XZ
?strideU@VideoFrameI420@media@discord@@QEBAHXZ
?strideV@VideoFrameI420@media@discord@@QEBAHXZ
?strideY@VideoFrameI420@media@discord@@QEBAHXZ
?timestamp_us@VideoFrameI420@media@discord@@QEBA_JXZ
?width@VideoFrameI420@media@discord@@QEBAHXZ
?width@VideoFrameRgba@media@discord@@QEBAHXZ
napi_register_module_v1
node_api_module_get_api_version_v1

Sections

.text
Size: 14.2MB - Virtual size: 14.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 1014KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 72B

.rodata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 777B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 116B

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

malloc_h
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
gpu_encoder_helper.exe
.exe windows:6 windows x64 arch:x64

b3e3ae2a64e3bf025c8e45e72a7f7ee5

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

05/03/2024, 00:00

Not After

03/04/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

05/03/2024, 00:00

Not After

03/04/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

4b:48:72:a6:f9:63:35:60:9e:4b:c7:e4:5f:c6:9c:96:89:f0:16:d7:a1:7e:e3:84:ed:f1:f4:e5:21:15:14:02
Signer

Actual PE Digest

4b:48:72:a6:f9:63:35:60:9e:4b:c7:e4:5f:c6:9c:96:89:f0:16:d7:a1:7e:e3:84:ed:f1:f4:e5:21:15:14:02

Digest Algorithm

sha256

PE Digest Matches

true

83:1d:7c:90:43:22:50:a1:e4:4e:d0:95:63:13:48:00:e8:ac:6a:0e
Signer

Actual PE Digest

83:1d:7c:90:43:22:50:a1:e4:4e:d0:95:63:13:48:00:e8:ac:6a:0e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

gpu_encoder_helper.pdb

Imports

api-ms-win-core-synch-l1-2-0

WakeByAddressAll
WakeByAddressSingle
WaitOnAddress

kernel32

SetConsoleTextAttribute
LoadLibraryW
GetProcessHeap
HeapAlloc
HeapFree
LoadLibraryExA
FreeLibrary
SetThreadErrorMode
GetConsoleOutputCP
HeapSize
LCMapStringW
CompareStringW
GetLastError
FlsFree
FormatMessageW
LoadLibraryA
GetProcAddress
FlsAlloc
WaitForSingleObject
GetConsoleScreenBufferInfo
SetStdHandle
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetCommandLineA
GetModuleHandleExW
WriteFile
RtlPcToFileHeader
LoadLibraryExW
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
CloseHandle
SetConsoleMode
FlsGetValue
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
EncodePointer
RtlUnwindEx
GetCurrentThreadId
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetConsoleMode
GetCurrentProcess
GetModuleHandleA
GetStringTypeW
FlsSetValue
ReadConsoleW
WideCharToMultiByte
WriteConsoleW
MultiByteToWideChar
GetFileAttributesW
lstrlenW
ExitProcess
GetModuleFileNameW
GetFileType
GetCurrentThread
RtlCaptureContext
RtlLookupFunctionEntry
ReleaseMutex
WaitForSingleObjectEx
CreateMutexA
FreeEnvironmentStringsW
AddVectoredExceptionHandler
SetThreadStackGuarantee
SwitchToThread
QueryPerformanceCounter
RtlVirtualUnwind
SetLastError
GetCurrentDirectoryW
GetEnvironmentStringsW
GetEnvironmentVariableW
SetEnvironmentVariableW
SetEndOfFile
GetCommandLineW
FlushFileBuffers
SetFilePointerEx
ReadFile
FindFirstFileW
GetFileInformationByHandleEx
GetStdHandle
GetCurrentProcessId
CreateFileW
TerminateProcess
FindClose
HeapReAlloc
FindNextFileW

advapi32

RegEnumKeyExW
RegCloseKey
RegQueryInfoKeyW
RegQueryValueExW
RegOpenKeyExW

d3d11

D3D11CreateDevice

oleaut32

SysFreeString
SysStringLen
GetErrorInfo

ntdll

RtlNtStatusToDosError
NtWriteFile

Sections

.text
Size: 585KB - Virtual size: 585KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
index.js
.js
mediapipe.dll
.dll windows:6 windows x64 arch:x64

c131ba9dca7624ac089c3aa733ea2eaf

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

05/03/2024, 00:00

Not After

03/04/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

05/03/2024, 00:00

Not After

03/04/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

50:90:7f:b3:91:df:a1:00:67:3e:0c:65:41:f3:44:b2:71:cf:c2:a0:18:94:fb:ed:5a:a2:3a:1a:71:af:90:e5
Signer

Actual PE Digest

50:90:7f:b3:91:df:a1:00:67:3e:0c:65:41:f3:44:b2:71:cf:c2:a0:18:94:fb:ed:5a:a2:3a:1a:71:af:90:e5

Digest Algorithm

sha256

PE Digest Matches

true

dd:87:7e:37:11:ab:8e:25:7d:d0:29:83:11:da:a5:f8:0e:5f:2a:74
Signer

Actual PE Digest

dd:87:7e:37:11:ab:8e:25:7d:d0:29:83:11:da:a5:f8:0e:5f:2a:74

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\users\agent\_bazel_agent\qhmpxrhq\execroot\mediapipe\bazel-out\x64_windows-opt\bin\mediapipe\discord\mediapipe.pdb

Imports

dbghelp

UnDecorateSymbolName
SymFromAddr
SymInitialize
SymCleanup
SymSetOptions

kernel32

GetEnvironmentStringsW
WriteConsoleW
FreeEnvironmentStringsW
DeleteFileW
EncodePointer
GetProcAddress
LoadLibraryA
GetCurrentDirectoryW
FindClose
FindNextFileW
GetLastError
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InitOnceExecuteOnce
CloseHandle
SetEvent
ResetEvent
ReleaseMutex
WaitForSingleObject
CreateMutexW
CreateEventW
CreateThread
GetSystemInfo
HeapAlloc
HeapFree
GetProcessHeap
GetLogicalProcessorInformationEx
GetModuleHandleW
GetMaximumProcessorGroupCount
GetMaximumProcessorCount
GetStdHandle
WriteFile
IsDebuggerPresent
FindFirstFileExW
GetFullPathNameW
GetTempPathA
OutputDebugStringA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetWindowsDirectoryA
GetComputerNameA
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
RtlCaptureStackBackTrace
GetCurrentThreadId
GetSystemTimeAsFileTime
Sleep
GetCurrentProcess
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeConditionVariable
WakeConditionVariable
SleepConditionVariableSRW
GetModuleHandleA
VirtualAlloc
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
InitializeSListHead
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
InitializeCriticalSectionEx
TryEnterCriticalSection
InitOnceBeginInitialize
InitOnceComplete
GetStringTypeW
SwitchToThread
GetExitCodeThread
GetNativeSystemInfo
QueryPerformanceFrequency
WakeAllConditionVariable
SleepConditionVariableCS
RtlUnwind
DecodePointer
LCMapStringEx
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringEx
GetCPInfo
GetCommandLineW
InterlockedPushEntrySList
InterlockedFlushSList
RtlPcToFileHeader
RaiseException
RtlUnwindEx
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
SetEnvironmentVariableW
GetFileAttributesExW
CreateFileW
GetFileType
GetDriveTypeW
GetFileInformationByHandle
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
DuplicateHandle
ReadFile
GetConsoleMode
ReadConsoleW
GetConsoleOutputCP
ExitThread
FreeLibraryAndExitThread
CreateProcessW
SetConsoleCtrlHandler
GetModuleFileNameW
HeapReAlloc
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
SetStdHandle
SetEndOfFile
SetFilePointerEx
HeapSize
GetFileSizeEx
IsValidCodePage
GetACP
GetOEMCP
GetExitCodeProcess
CreatePipe
GetTimeZoneInformation
GetCommandLineA

Exports

Exports

??$MakeCheckOpValueString@C@google@@YAXPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEBC@Z
??$MakeCheckOpValueString@D@google@@YAXPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEBD@Z
??$MakeCheckOpValueString@E@google@@YAXPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEBE@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@W4_Uninitialized@1@_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@AEBV01@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0CheckOpMessageBuilder@base@google@@QEAA@PEBD@Z
??0ErrnoLogMessage@google@@QEAA@PEBDHHHP8LogMessage@1@EAAXXZ@Z
??0LogMessage@google@@QEAA@PEBDH@Z
??0LogMessage@google@@QEAA@PEBDHAEBUCheckOpString@1@@Z
??0LogMessage@google@@QEAA@PEBDHH@Z
??0LogMessage@google@@QEAA@PEBDHHHP801@EAAXXZ@Z
??0LogMessage@google@@QEAA@PEBDHHPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0LogMessage@google@@QEAA@PEBDHHPEAV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
??0LogMessage@google@@QEAA@PEBDHHPEAVLogSink@1@_N@Z
??0LogMessageFatal@google@@QEAA@PEBDH@Z
??0LogMessageFatal@google@@QEAA@PEBDHAEBUCheckOpString@1@@Z
??0LogMessageVoidify@google@@QEAA@XZ
??0LogSink@google@@QEAA@AEBV01@@Z
??0LogSink@google@@QEAA@XZ
??0LogStream@LogMessage@google@@QEAA@PEADHH@Z
??0LogStreamBuf@base_logging@google@@QEAA@$$QEAV012@@Z
??0LogStreamBuf@base_logging@google@@QEAA@AEBV012@@Z
??0LogStreamBuf@base_logging@google@@QEAA@PEADH@Z
??0Logger@base@google@@QEAA@AEBV012@@Z
??0Logger@base@google@@QEAA@XZ
??0NullStream@google@@QEAA@PEBDHAEBUCheckOpString@1@@Z
??0NullStream@google@@QEAA@XZ
??0NullStreamFatal@google@@QEAA@PEBDHAEBUCheckOpString@1@@Z
??0NullStreamFatal@google@@QEAA@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1CheckOpMessageBuilder@base@google@@QEAA@XZ
??1ErrnoLogMessage@google@@QEAA@XZ
??1LogMessage@google@@QEAA@XZ
??1LogMessageFatal@google@@QEAA@XZ
??1LogSink@google@@UEAA@XZ
??1LogStream@LogMessage@google@@UEAA@XZ
??1LogStreamBuf@base_logging@google@@UEAA@XZ
??1Logger@base@google@@UEAA@XZ
??1NullStream@google@@UEAA@XZ
??1NullStreamFatal@google@@UEAA@XZ
??4?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAAEAV01@AEBV01@@Z
??4CheckOpMessageBuilder@base@google@@QEAAAEAV012@AEBV012@@Z
??4LogMessageVoidify@google@@QEAAAEAV01@$$QEAV01@@Z
??4LogMessageVoidify@google@@QEAAAEAV01@AEBV01@@Z
??4LogSink@google@@QEAAAEAV01@AEBV01@@Z
??4LogStreamBuf@base_logging@google@@QEAAAEAV012@$$QEAV012@@Z
??4LogStreamBuf@base_logging@google@@QEAAAEAV012@AEBV012@@Z
??4Logger@base@google@@QEAAAEAV012@AEBV012@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV?$basic_ios@DU?$char_traits@D@std@@@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_N@Z
??6google@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBW4PRIVATE_Counter@0@@Z
??ILogMessageVoidify@google@@QEAAXAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@@Z
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@
??_7LogSink@google@@6B@
??_7LogStream@LogMessage@google@@6B@
??_7LogStreamBuf@base_logging@google@@6B@
??_7Logger@base@google@@6B@
??_7NullStream@google@@6B@
??_7NullStreamFatal@google@@6B@
??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@
??_8LogStream@LogMessage@google@@7B@
??_8NullStream@google@@7B@
??_8NullStreamFatal@google@@7B@
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??_DLogStream@LogMessage@google@@QEAAXXZ
??_DNullStream@google@@QEAAXXZ
??_DNullStreamFatal@google@@QEAAXXZ
?AddLogSink@google@@YAXPEAVLogSink@1@@Z
?CheckstrcasecmpfalseImpl@google@@YAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD00@Z
?CheckstrcasecmptrueImpl@google@@YAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD00@Z
?CheckstrcmpfalseImpl@google@@YAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD00@Z
?CheckstrcmptrueImpl@google@@YAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD00@Z
?Demangle@google@@YA_NPEBDPEADH@Z
?DisableLogCleaner@google@@YAXXZ
?EnableLogCleaner@google@@YAXH@Z
?FLAGS_alsologtostderr@fLB@@3_NA
?FLAGS_colorlogtostderr@fLB@@3_NA
?FLAGS_log_dir@fLS@@3AEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@EA
?FLAGS_log_link@fLS@@3AEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@EA
?FLAGS_log_prefix@fLB@@3_NA
?FLAGS_logbuflevel@fLI@@3HA
?FLAGS_logbufsecs@fLI@@3HA
?FLAGS_logfile_mode@fLI@@3HA
?FLAGS_logtostderr@fLB@@3_NA
?FLAGS_max_log_size@fLI@@3HA
?FLAGS_minloglevel@fLI@@3HA
?FLAGS_stderrthreshold@fLI@@3HA
?FLAGS_stop_logging_if_full_disk@fLB@@3_NA
?FLAGS_v@fLI@@3HA
?Fail@LogMessage@google@@SAXXZ
?Flush@LogMessage@google@@QEAAXXZ
?FlushLogFiles@google@@YAXH@Z
?FlushLogFilesUnsafe@google@@YAXH@Z
?ForVar1@CheckOpMessageBuilder@base@google@@QEAAPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@XZ
?ForVar2@CheckOpMessageBuilder@base@google@@QEAAPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@XZ
?GetExistingTempDirectories@google@@YAXPEAV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
?GetLogSeverityName@google@@YAPEBDH@Z
?GetLogger@base@google@@YAPEAVLogger@12@H@Z
?GetLoggingDirectories@google@@YAAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?GetStackTrace@google@@YAHPEAPEAXHH@Z
?Init@LogMessage@google@@AEAAXPEBDHHP812@EAAXXZ@Z
?InitGoogleLogging@google@@YAXPEBD@Z
?InitVLOG3__@google@@YA_NPEAPEAHPEAHPEBDH@Z
?InstallFailureFunction@google@@YAXP6AXXZ@Z
?InstallFailureSignalHandler@google@@YAXXZ
?InstallFailureWriter@google@@YAXP6AXPEBDH@Z@Z
?IsFailureSignalHandlerInstalled@glog_internal_namespace_@google@@YA_NXZ
?LogSeverityNames@google@@3QBQEBDB
?LogToStderr@google@@YAXXZ
?NewString@CheckOpMessageBuilder@base@google@@QEAAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?RawLog__@google@@YAXHPEBDH0ZZ
?RecordCrashReason@LogMessage@google@@AEAAXPEAUCrashReason@glog_internal_namespace_@2@@Z
?RemoveLogSink@google@@YAXPEAVLogSink@1@@Z
?ReprintFatalMessage@google@@YAXXZ
?SafeFNMatch_@glog_internal_namespace_@google@@YA_NPEBD_K01@Z
?SaveOrSendToLog@LogMessage@google@@AEAAXXZ
?SendEmail@google@@YA_NPEBD00@Z
?SendToLog@LogMessage@google@@QEAAXXZ
?SendToSink@LogMessage@google@@AEAAXXZ
?SendToSinkAndLog@LogMessage@google@@AEAAXXZ
?SendToSyslogAndLog@LogMessage@google@@QEAAXXZ
?SetEmailLogging@google@@YAXHPEBD@Z
?SetLogDestination@google@@YAXHPEBD@Z
?SetLogFilenameExtension@google@@YAXPEBD@Z
?SetLogSymlink@google@@YAXHPEBD@Z
?SetLogger@base@google@@YAXHPEAVLogger@12@@Z
?SetStderrLogging@google@@YAXH@Z
?SetVLOGLevel@google@@YAHPEBDH@Z
?ShutdownGoogleLogging@google@@YAXXZ
?StrError@google@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
?Symbolize@google@@YA_NPEAXPEADH@Z
?ToString@LogSink@google@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HPEBDHPEBUtm@@0_K@Z
?ToString@LogSink@google@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HPEBDHPEBUtm@@0_KH@Z
?TruncateLogFile@google@@YAXPEBD_J1@Z
?TruncateStdoutStderr@google@@YAXXZ
?WaitTillSent@LogSink@google@@UEAAXXZ
?WriteToStringAndLog@LogMessage@google@@AEAAXXZ
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAPEAD0PEAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?copyfmt@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAAEAV12@AEBV12@@Z
?ctr@LogStream@LogMessage@google@@QEBAHXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAADD@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?g_logging_fail_func@google@@3P6AXXZEA
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?in_avail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JXZ
?init@?$basic_ios@DU?$char_traits@D@std@@@std@@IEAAXPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@_N@Z
?kMaxLogMessageLen@LogMessage@google@@2_KB
?localtime_r@@YAPEAUtm@@PEB_JPEAU1@@Z
?move@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAX$$QEAV12@@Z
?move@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXAEAV12@@Z
?narrow@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADDD@Z
?num_messages@LogMessage@google@@SA_JH@Z
?num_messages_@LogMessage@google@@0PA_JA
?opfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA_NXZ
?osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?overflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?overflow@LogStreamBuf@base_logging@google@@UEAAHH@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pbase@LogStream@LogMessage@google@@QEBAPEADXZ
?pbase@LogStreamBuf@base_logging@google@@QEBAPEADXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?pcount@LogStream@LogMessage@google@@QEBA_KXZ
?pcount@LogStreamBuf@base_logging@google@@QEBA_KXZ
?posix_strerror_r@google@@YAHHPEAD_K@Z
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?preserved_errno@LogMessage@google@@QEBAHXZ
?pubimbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
?pubseekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?pubseekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?pubsetbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAPEAV12@PEAD_J@Z
?pubsync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@PEAV32@@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?safe_vsnprintf@@YAHPEAD_KPEBD0@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@V?$fpos@U_Mbstatet@@@2@@Z
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?self@LogStream@LogMessage@google@@QEBAPEAV123@XZ
?send@LogSink@google@@UEAAXHPEBD0HPEBUtm@@0_KH@Z
?set_ctr@LogStream@LogMessage@google@@QEAAXH@Z
?set_rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sputbackc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?str@LogStream@LogMessage@google@@QEBAPEADXZ
?stream@LogMessage@google@@QEAAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@XZ
?stream@NullStream@google@@QEAAAEAV12@XZ
?sungetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?swap@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXAEAV12@@Z
?swap@?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?swap@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@PEAV32@@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
TfLiteGlCompileOptionsDefault
TfLiteGpuDelegateBindBufferToTensor
TfLiteGpuDelegateCreate
TfLiteGpuDelegateDelete
TfLiteGpuDelegateGetModelMetadata
TfLiteGpuDelegateOptionsDefault
media_pipe_get_last_error_message
media_pipe_gpu_buffer_create_opengl
media_pipe_gpu_buffer_destroy
media_pipe_gpu_buffer_get_opengl_name
media_pipe_graph_create
media_pipe_graph_destroy
media_pipe_graph_run_on_gpu_thread
media_pipe_graph_set_egl
media_pipe_graph_set_side_packet_int
media_pipe_graph_start
media_pipe_graph_submit_gpu
media_pipe_graph_terminate
media_pipe_graph_wait_next
media_pipe_initialize_egl
media_pipe_initialize_opengl
media_pipe_packet_destroy
media_pipe_packet_get_gpu_buffer
media_pipe_packet_get_timestamp
media_pipe_set_resource_provider
media_pipe_string_buffer_set_data

Sections

.text
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 929KB - Virtual size: 928KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
node_modules/.yarn-integrity
openh264-2.2.0-win64.dll
.dll windows:6 windows x64 arch:x64

98f946cee94de86ddbd8fd8f37522dfe

Code Sign

01:99:3e:38:97:0d:e6:08:8d:e6:b6:cb:39:bb:ee:24
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06/03/2020, 00:00

Not After

07/02/2023, 12:00

Subject

CN=Cisco WebEx LLC,O=Cisco WebEx LLC,L=San Jose,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:99:3e:38:97:0d:e6:08:8d:e6:b6:cb:39:bb:ee:24
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06/03/2020, 00:00

Not After

07/02/2023, 12:00

Subject

CN=Cisco WebEx LLC,O=Cisco WebEx LLC,L=San Jose,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:93:da:4b:92:e2:96:d2:a4:dd:58:1c:2a:fa:6e:b4:a7:d6:7d:a4:ba:b1:d4:37:29:ab:ce:84:2a:71:dd:96
Signer

Actual PE Digest

d3:93:da:4b:92:e2:96:d2:a4:dd:58:1c:2a:fa:6e:b4:a7:d6:7d:a4:ba:b1:d4:37:29:ab:ce:84:2a:71:dd:96

Digest Algorithm

sha256

PE Digest Matches

true

7c:45:91:4a:c1:e8:11:0e:29:d6:07:e2:de:a5:ea:8f:15:1f:56:ab
Signer

Actual PE Digest

7c:45:91:4a:c1:e8:11:0e:29:d6:07:e2:de:a5:ea:8f:15:1f:56:ab

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\Jenkins_Home\workspace\video-codec\openh264\openh264-build-ut-windows\openh264\openh264.pdb

Imports

kernel32

QueryPerformanceCounter
QueryPerformanceFrequency
CloseHandle
SetEvent
ResetEvent
ReleaseSemaphore
WaitForSingleObject
CreateEventA
CreateSemaphoreA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
Sleep
CreateThread
GetSystemInfo
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
IsDebuggerPresent
GetStartupInfoW
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
RtlUnwindEx
RtlPcToFileHeader
RaiseException
InterlockedFlushSList
GetLastError
SetLastError
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
MultiByteToWideChar
WideCharToMultiByte
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
LCMapStringW
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
GetStdHandle
GetFileType
GetFileSizeEx
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetStringTypeW
CreateFileW
SetStdHandle
HeapSize
HeapReAlloc
WriteConsoleW

Exports

Exports

WelsCreateDecoder
WelsCreateSVCEncoder
WelsDestroyDecoder
WelsDestroySVCEncoder
WelsGetCodecVersion
WelsGetCodecVersionEx

Sections

.text
Size: 750KB - Virtual size: 750KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
t/hook.dll
.dll windows:6 windows x64 arch:x64

fc8a5754f1fbe8934b51a4726e74eaac

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

advapi32

CryptReleaseContext
CryptAcquireContextA
CryptGetHashParam
CryptGenRandom
CryptCreateHash
CryptHashData
CryptDestroyHash
CryptDestroyKey
CryptImportKey
CryptEncrypt

crypt32

CertFindExtension
CertCloseStore
CertEnumCertificatesInStore
CertFindCertificateInStore
CertFreeCertificateChain
CertGetCertificateChain
CertFreeCertificateChainEngine
CertCreateCertificateChainEngine
CryptQueryObject
CertGetNameStringA
CertOpenStore
CertAddCertificateContextToStore
CryptDecodeObjectEx
PFXImportCertStore
CryptStringToBinaryA
CertFreeCertificateContext

imm32

ImmSetCandidateWindow
ImmReleaseContext
ImmGetContext
ImmSetCompositionWindow

iphlpapi

GetAdaptersInfo

kernel32

CloseHandle
HeapAlloc
HeapDestroy
GetThreadContext
FlushInstructionCache
SetThreadContext
OpenThread
MoveFileExA
CreateThread
SetConsoleTextAttribute
GetStdHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SleepEx
GetSystemDirectoryA
VerifyVersionInfoA
GetTickCount
GetProcAddress
GetEnvironmentVariableA
GetFileType
ReadFile
Thread32Next
WaitForMultipleObjects
SetLastError
GetLastError
CreateFileA
GetFileSizeEx
QueryPerformanceFrequency
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetCurrentProcess
HeapFree
VirtualProtect
HeapCreate
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualFree
GetConsoleWindow
GetModuleHandleW
FreeConsole
Sleep
HeapReAlloc
ResumeThread
CreateToolhelp32Snapshot
SuspendThread
GetCurrentThreadId
FormatMessageA
Thread32First
GlobalUnlock
WideCharToMultiByte
GlobalLock
GlobalFree
LoadLibraryA
MultiByteToWideChar
GetLocaleInfoA
GetModuleHandleA
AllocConsole
GetCurrentProcessId
AttachConsole
GlobalAlloc
QueryPerformanceCounter
FreeLibrary
PeekNamedPipe
VerSetConditionMask
WaitForSingleObjectEx
RtlLookupFunctionEntry

msvcp140

?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??Bios_base@std@@QEBA_NXZ
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ
?do_encoding@?$codecvt@_SDU_Mbstatet@@@std@@MEBAHXZ
??4?$_Iosb@H@std@@QEAAAEAV01@$$QEAV01@@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPEBD@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ
?do_encoding@?$codecvt@_SDU_Mbstatet@@@std@@MEBAHXZ

normaliz

IdnToAscii

shell32

ShellExecuteA

user32

SetWindowLongW
DefWindowProcW
DestroyWindow
GetCursorPos
CreateWindowExW
UnregisterClassW
SetLayeredWindowAttributes
ShowWindow
GetAsyncKeyState
DispatchMessageW
PeekMessageW
SetWindowDisplayAffinity
TranslateMessage
RegisterClassExW
UpdateWindow
OpenClipboard
SetCursorPos
ReleaseCapture
IsWindowUnicode
GetClientRect
SetCursor
SetCapture
CloseClipboard
LoadCursorW
GetForegroundWindow
MessageBoxA
GetKeyboardLayout
TrackMouseEvent
GetWindowLongW
PostQuitMessage
MoveWindow
EmptyClipboard
GetClipboardData
SetClipboardData
GetKeyState
GetMessageExtraInfo
ScreenToClient
GetCapture
ClientToScreen

vcruntime140

__std_type_info_destroy_list
_CxxThrowException
__C_specific_handler
memcmp
memcpy
memset
memcpy
__std_exception_copy
__std_exception_destroy
strchr
strstr
__std_terminate
wcsstr
memchr
strrchr

vcruntime140_1

__CxxFrameHandler4

wldap32

ldap_first_entry
ldap_err2stringA
ldap_msgfree
ldap_search_sA
ldap_bind_sA
ldap_simple_bind_sA
ldap_first_attributeA
ldap_set_optionA
ldap_unbind_s
ldap_get_dnA
ldap_memfreeA
ldap_sslinitA
ber_free
ldap_next_entry
ldap_value_freeW
ldap_next_attributeA
ldap_initA
ldap_get_values_lenA

ws2_32

listen
htonl
accept
select
WSACleanup
WSAStartup
WSAIoctl
WSASetLastError
socket
setsockopt
htons
ioctlsocket
getsockopt
getsockname
getpeername
connect
bind
getaddrinfo
FreeAddrInfoW
WSAGetLastError
send
recv
closesocket
htons
recvfrom
sendto
gethostname
htonl
__WSAFDIsSet

ucrtbase

atof
strtoul
atoi
strtol
_strtoi64
_access
_stat64
_fstat64
_unlink
calloc
malloc
free
realloc
_callnewh
pow
sinf
sqrt
log10f
log10
log
fmaxf
fmodf
floor
exp
cosf
cos
ceilf
acosf
sqrtf
_errno
_invalid_parameter_noinfo_noreturn
_beginthreadex
strerror
_getpid
__sys_nerr
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
exit
_write
_close
__stdio_common_vsprintf
_open
fread
ftell
_read
_lseeki64
__stdio_common_vsscanf
fclose
fgets
fputc
fseek
fwrite
fopen
freopen
__stdio_common_vfprintf
fputs
fflush
__acrt_iob_func
_wfopen
feof
strncmp
strcmp
strspn
isupper
_mbsdup
tolower
isspace
strncpy
strcspn
strpbrk
_gmtime64
_time64
qsort

d3d9

Direct3DCreate9

Sections

.text
Size: 716KB - Virtual size: 716KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 164KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.SCY
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
t/injector.exe
.exe windows:6 windows x64 arch:x64

8f18ef3a00bfd699ac5d69caeb261960

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Users\jumpo\Downloads\Development\Injector\x64\Release\Injector.pdb

Imports

kernel32

GetModuleFileNameA
WriteProcessMemory
WaitForSingleObject
OpenProcess
CreateToolhelp32Snapshot
Process32NextW
LoadLibraryA
Process32FirstW
CloseHandle
GetProcAddress
VirtualAllocEx
GetModuleHandleW
CreateRemoteThread
VirtualFreeEx
FreeConsole
AllocConsole
GetLocaleInfoEx
FormatMessageA
LocalFree
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
AreFileApisANSI
GetLastError
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
WideCharToMultiByte
MultiByteToWideChar
GetFileInformationByHandleEx
CreateFileW

msvcp140

?_Xout_of_range@std@@YAXPEBD@Z
?_Winerror_map@std@@YAHH@Z
?_Xlength_error@std@@YAXPEBD@Z
?_Syserror_map@std@@YAPEBDH@Z

vcruntime140_1

__CxxFrameHandler4

vcruntime140

memcpy
__std_exception_destroy
__std_exception_copy
__std_terminate
__C_specific_handler
_CxxThrowException
__current_exception
memmove
__current_exception_context
memset

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode
_callnewh
malloc

api-ms-win-crt-string-l1-1-0

_wcsicmp

api-ms-win-crt-runtime-l1-1-0

_register_thread_local_exe_atexit_callback
_c_exit
_cexit
_crt_atexit
__p___argc
_exit
_register_onexit_function
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_set_app_type
_seh_filter_exe
terminate
exit
_initialize_onexit_table
abort
__p___argv
_invalid_parameter_noinfo_noreturn

api-ms-win-crt-locale-l1-1-0

_configthreadlocale
___lc_codepage_func

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
t/leaked hook.txt

Sharing

General

Malware Config

Signatures

Files

b480bc4b77616640a8e65de66fa4ec00

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3eCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3eCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

6d:66:8c:55:14:77:01:80:2b:b7:72:42:3a:0a:84:64:97:ae:30:27:71:a4:1d:e5:5c:ac:cf:8e:34:82:33:e6Signer

78:73:be:18:5e:35:27:f3:17:b2:6f:54:66:2b:63:94:f9:c1:3e:3aSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

bcryptprimitives

api-ms-win-core-synch-l1-2-0

kernel32

ntdll

Sections

.text Size: 170KB - Virtual size: 169KB

.rdata Size: 73KB - Virtual size: 73KB

.data Size: 3KB - Virtual size: 7KB

.pdata Size: 9KB - Virtual size: 9KB

_RDATA Size: 512B - Virtual size: 500B

.reloc Size: 3KB - Virtual size: 2KB

7f9d03dababaef80f8a1f690ce9bb6d6

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

09:61:7a:7c:42:23:07:5b:71:ed:d2:b5:83:20:ee:b7Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

09:61:7a:7c:42:23:07:5b:71:ed:d2:b5:83:20:ee:b7Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

6d:66:8c:55:14:77:01:80:2b:b7:72:42:3a:0a:84:64:97:ae:30:27:71:a4:1d:e5:5c:ac:cf:8e:34:82:33:e6
Signer

78:73:be:18:5e:35:27:f3:17:b2:6f:54:66:2b:63:94:f9:c1:3e:3a
Signer

.text
Size: 170KB - Virtual size: 169KB

.rdata
Size: 73KB - Virtual size: 73KB

.data
Size: 3KB - Virtual size: 7KB

.pdata
Size: 9KB - Virtual size: 9KB

_RDATA
Size: 512B - Virtual size: 500B

.reloc
Size: 3KB - Virtual size: 2KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:61:7a:7c:42:23:07:5b:71:ed:d2:b5:83:20:ee:b7
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

09:61:7a:7c:42:23:07:5b:71:ed:d2:b5:83:20:ee:b7
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

be:46:57:45:95:f1:d7:52:c6:c5:a4:d0:70:9e:b2:49:f0:37:fb:95:8a:5a:8b:62:f6:af:e1:e4:db:d6:17:1a
Signer

4b:8b:6d:51:ac:40:80:7f:ed:f7:ce:67:7c:0d:67:67:96:f9:1c:81
Signer

.text
Size: 14.2MB - Virtual size: 14.2MB

.rdata
Size: 2.6MB - Virtual size: 2.6MB

.data
Size: 120KB - Virtual size: 1014KB

.pdata
Size: 288KB - Virtual size: 287KB

.00cfg
Size: 512B - Virtual size: 40B

.gxfg
Size: 15KB - Virtual size: 14KB

.retplne
Size: 512B - Virtual size: 72B

.rodata
Size: 2KB - Virtual size: 2KB

.tls
Size: 1024B - Virtual size: 777B

.voltbl
Size: 512B - Virtual size: 116B

_RDATA
Size: 512B - Virtual size: 244B

malloc_h
Size: 512B - Virtual size: 304B

.reloc
Size: 66KB - Virtual size: 65KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0b:da:c8:cd:cf:55:16:86:3a:b3:01:8a:9f:9d:32:3e
Certificate