punk33[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

punk33.zip
Size

22.3MB
MD5

f9935227d5bae395d6a7e4941b681ce0
SHA1

5ef10595776ea6a64b842858c511b742f52f2b93
SHA256

b6d702859add0720caf7160f47d8262591ddfba8979bf2d06b78dd1651ea57f9
SHA512

caeb12d5f9d80b2394c10406baa1999345393f2329f439eb01777883e7e67852abc285bfd73813b53ef4605a6bf6a727f733fc7d5aa2f9f461e7fac2ea7bcfa3
SSDEEP

393216:D7I6fE17oiGgXwx0Et1ryxzWterfMMartGCwerzveckYvc6uzZ10I1OMCwgb:rfE53G/D/3terfMMar8de/vxXvJut10f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Aquile Reader.exe

Files

punk33.zip
.zip
Aquile Reader.exe
.exe windows:6 windows x86 arch:x86

c1a56dd2884ebae2645c18b421ad3aee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
WriteConsoleW
WerSetFlags
WerGetFlags
WaitForMultipleObjects
WaitForSingleObject
VirtualQuery
VirtualFree
VirtualAlloc
TlsAlloc
SwitchToThread
SuspendThread
SetWaitableTimer
SetUnhandledExceptionFilter
SetThreadPriority
SetProcessPriorityBoost
SetEvent
SetErrorMode
SetConsoleCtrlHandler
ResumeThread
RaiseFailFastException
PostQueuedCompletionStatus
LoadLibraryW
LoadLibraryExW
SetThreadContext
GetThreadContext
GetSystemInfo
GetSystemDirectoryA
GetStdHandle
GetQueuedCompletionStatusEx
GetProcessAffinityMask
GetProcAddress
GetErrorMode
GetEnvironmentStringsW
GetCurrentThreadId
GetConsoleMode
FreeEnvironmentStringsW
ExitProcess
DuplicateHandle
CreateWaitableTimerExW
CreateWaitableTimerA
CreateThread
CreateIoCompletionPort
CreateEventA
CloseHandle
AddVectoredExceptionHandler

Sections

.text
Size: 17.1MB - Virtual size: 17.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23.3MB - Virtual size: 23.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.8MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 917KB - Virtual size: 917KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.symtab
Size: 512B - Virtual size: 4B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Qt5CoreVBox.dll
.dll windows:6 windows x64 arch:x64

6d44a16d5801e1cdb9b3ba4cb45314b0

Code Sign

51:ca:00:98:16:fd:bd:80:f1:20:e0:15:ee:75:82:3e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

23/12/2013, 00:00

Not After

22/12/2016, 23:59

Subject

CN=Oracle Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=VirtualBox,O=Oracle Corporation,L=Redwood Shores,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:da:c0:e5:de:9a:96:a5:13:21:09:0d:b2:7e:0b:a1:e1:f7:92:ec
Certificate

Issuer

CN=VirtualBox for Legacy Windows Only Timestamp CA SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Not Before

01/01/2014, 00:00

Not After

31/12/2014, 23:59

Subject

CN=VirtualBox for Legacy Windows Only Timestamp Kludge 2014 SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:52:65:06:cc:82:88:11:7d:a6:be:d3:a5:ab:ec:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/02/2021, 00:00

Not After

16/04/2024, 23:59

Subject

CN=Oracle Corporation,OU=VirtualBox,O=Oracle Corporation,L=Redwood City,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:5e:ac:14:25:de:13:f2:51:ec:e8:48:70:ff:e9:f7:be:1f:4f:74:68:cb:c4:05:07:2d:9c:29:73:a2:62:30
Signer

Actual PE Digest

08:5e:ac:14:25:de:13:f2:51:ec:e8:48:70:ff:e9:f7:be:1f:4f:74:68:cb:c4:05:07:2d:9c:29:73:a2:62:30

Digest Algorithm

sha256

PE Digest Matches

true

49:f7:8e:24:5f:b7:ce:2f:74:2b:63:50:c7:a3:4a:54:ce:1d:58:8a
Signer

Actual PE Digest

49:f7:8e:24:5f:b7:ce:2f:74:2b:63:50:c7:a3:4a:54:ce:1d:58:8a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

r:\tinderbox\win-qt-5.15\out\qtbase\lib\Qt5CoreVBox.pdb

Imports

mpr

WNetGetUniversalNameW

userenv

GetUserProfileDirectoryW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

netapi32

NetApiBufferFree
NetShareEnum

ws2_32

WSACleanup
WSAAsyncSelect
gethostname
WSAStartup

advapi32

RegCreateKeyExW
GetSidSubAuthorityCount
GetSidSubAuthority
BuildTrusteeWithSidW
GetNamedSecurityInfoW
GetEffectiveRightsFromAclW
LookupAccountSidW
MapGenericMask
GetTokenInformation
GetLengthSid
FreeSid
DuplicateToken
CopySid
AllocateAndInitializeSid
AccessCheck
OpenProcessToken
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
SystemFunction036
RegEnumKeyExW
RegQueryInfoKeyW
RegFlushKey
RegDeleteKeyW
RegDeleteValueW
RegEnumValueW
RegSetValueExW

kernel32

VirtualFree
ReleaseMutex
CreateMutexW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
GetNativeSystemInfo
GetModuleFileNameW
GetModuleHandleExW
OutputDebugStringW
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetConsoleWindow
GetModuleHandleW
GetProcAddress
CloseHandle
DuplicateHandle
GetLastError
SetEvent
WaitForSingleObject
CreateEventW
Sleep
WaitForMultipleObjects
SwitchToThread
CreateThread
GetCurrentThread
GetCurrentThreadId
SetThreadPriority
GetThreadPriority
TerminateThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemInfo
WaitForSingleObjectEx
ResetEvent
GetStartupInfoW
CompareStringEx
GetDateFormatW
GetTimeFormatW
GetLocaleInfoW
GetCurrencyFormatW
GetUserDefaultLCID
GetUserPreferredUILanguages
CompareStringW
LCMapStringW
GetSystemTime
GetLocalTime
GetTimeZoneInformation
GetGeoInfoW
GetUserGeoID
CreateFileW
GetFileAttributesExW
FindCloseChangeNotification
FindFirstChangeNotificationW
FindNextChangeNotification
GetDriveTypeW
GetStdHandle
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetFilePointer
ConnectNamedPipe
CreateNamedPipeW
GetExitCodeProcess
CreateProcessW
GetProcessId
FlushFileBuffers
GetFileType
GetLogicalDrives
GetVolumeInformationW
ReadFile
SetEndOfFile
SetFilePointerEx
WriteFile
SetErrorMode
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
OpenProcess
FreeLibrary
LoadLibraryA
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
DeleteFileW
FindClose
FindFirstFileW
GetFileAttributesW
GetFileInformationByHandle
GetFullPathNameW
GetLongPathNameW
RemoveDirectoryW
SetFileTime
GetTempPathW
GetVolumePathNamesForVolumeNameW
DeviceIoControl
LocalFree
CopyFileW
MoveFileW
MoveFileExW
TzSpecificLocalTimeToSystemTime
FileTimeToSystemTime
SystemTimeToFileTime
GetFileInformationByHandleEx
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetVolumePathNameW
GetVolumeNameForVolumeMountPointW
ReadFileEx
PeekNamedPipe
CancelIoEx
SleepEx
WriteFileEx
GetSystemDirectoryW
LoadLibraryW
GetCommandLineW
GetCurrentProcessId
FormatMessageW
QueryPerformanceCounter
QueryPerformanceFrequency
GetTickCount64
UnregisterWaitEx
RegisterWaitForSingleObject
VirtualQuery
OpenFileMappingW
ReleaseSemaphore
CreateSemaphoreW
MultiByteToWideChar
WideCharToMultiByte
VirtualAlloc

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoTaskMemFree
CoCreateGuid

shell32

SHCreateItemFromParsingName
SHFileOperationW
CommandLineToArgvW
SHGetKnownFolderPath

user32

SetTimer
KillTimer
GetWindowLongPtrW
SetWindowLongPtrW
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
CharNextExA
MsgWaitForMultipleObjectsEx
MessageBoxW
RegisterDeviceNotificationW
UnregisterDeviceNotification
GetQueueStatus
DestroyWindow
CreateWindowExW
UnregisterClassW
RegisterClassW
DefWindowProcW
PeekMessageW
DispatchMessageW
TranslateMessage
GetWindowThreadProcessId
EnumWindows
PostThreadMessageW
PostMessageW

winmm

timeKillEvent
timeSetEvent

msvcp140

?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?_Syserror_map@std@@YAPEBDH@Z
?_Xbad_function_call@std@@YAXXZ
?_Throw_future_error@std@@YAXAEBVerror_code@1@@Z
??0_Lockit@std@@QEAA@H@Z
??1_Lockit@std@@QEAA@XZ
?_Xbad_alloc@std@@YAXXZ
?id@?$ctype@D@std@@2V0locale@2@A
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?tolower@?$ctype@D@std@@QEBADD@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?classic@locale@std@@SAAEBV12@XZ
??Bid@locale@std@@QEAA_KXZ
?_Xlength_error@std@@YAXPEBD@Z

msvcp140_1

_Aligned_get_default_resource

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
__current_exception_context
__current_exception
strrchr
__std_exception_copy
__std_exception_destroy
_CxxThrowException
wcschr
memcpy
memmove
memset
_purecall
__std_terminate
memcmp
memchr
strchr

vcruntime140_1

__CxxFrameHandler4

api-ms-win-crt-runtime-l1-1-0

exit
abort
_errno
_initialize_narrow_environment
_initterm
_initialize_onexit_table
_register_onexit_function
_configure_narrow_argv
_execute_onexit_table
_seh_filter_dll
_endthreadex
_initterm_e
_crt_atexit
__p___argv
__p___argc
terminate
_invalid_parameter_noinfo_noreturn
_cexit
strerror

api-ms-win-crt-heap-l1-1-0

_callnewh
realloc
calloc
free
malloc

api-ms-win-crt-environment-l1-1-0

__p__environ
_wgetdcwd
_putenv_s
getenv_s
_wgetenv_s

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vswprintf
_fileno
_write
_get_osfhandle
_open_osfhandle
_read
_close
fwrite
_fseeki64
fread
fgets
feof
fclose
_ftelli64
_open
_lseeki64
_wopen
__stdio_common_vsprintf
fflush
__stdio_common_vfprintf
fputs
__stdio_common_vsnprintf_s
__acrt_iob_func

api-ms-win-crt-time-l1-1-0

_mktime64
_tzset
_get_timezone
_get_tzname
_localtime64_s

api-ms-win-crt-math-l1-1-0

ceil
floor
floorf
sin
cos
atan2
hypot
ceilf
log10
_fdclass
round
_dclass
acos
asin
pow
sqrt

api-ms-win-crt-string-l1-1-0

strcpy_s
strncpy
strcmp
strncpy_s
strncmp

api-ms-win-crt-utility-l1-1-0

rand
srand
rand_s

api-ms-win-crt-convert-l1-1-0

wcstombs

api-ms-win-crt-filesystem-l1-1-0

_getdrive
_waccess
_wchmod

Exports

Exports

??$qbswap@$01@@YAPEAXPEBX_JPEAX@Z
??$qbswap@$03@@YAPEAXPEBX_JPEAX@Z
??$qbswap@$07@@YAPEAXPEBX_JPEAX@Z
??0?$QList@VQItemSelectionRange@@@@QEAA@$$QEAV0@@Z
??0?$QList@VQItemSelectionRange@@@@QEAA@AEBV0@@Z
??0?$QList@VQItemSelectionRange@@@@QEAA@V?$initializer_list@VQItemSelectionRange@@@std@@@Z
??0?$QList@VQItemSelectionRange@@@@QEAA@XZ
??0?$QVector@VQPoint@@@@QEAA@$$QEAV0@@Z
??0?$QVector@VQPoint@@@@QEAA@AEBV0@@Z
??0?$QVector@VQPoint@@@@QEAA@H@Z
??0?$QVector@VQPoint@@@@QEAA@HAEBVQPoint@@@Z
??0?$QVector@VQPoint@@@@QEAA@U?$QArrayDataPointerRef@VQPoint@@@@@Z
??0?$QVector@VQPoint@@@@QEAA@V?$initializer_list@VQPoint@@@std@@@Z
??0?$QVector@VQPoint@@@@QEAA@XZ
??0?$QVector@VQPointF@@@@QEAA@$$QEAV0@@Z
??0?$QVector@VQPointF@@@@QEAA@AEBV0@@Z
??0?$QVector@VQPointF@@@@QEAA@H@Z
??0?$QVector@VQPointF@@@@QEAA@HAEBVQPointF@@@Z
??0?$QVector@VQPointF@@@@QEAA@U?$QArrayDataPointerRef@VQPointF@@@@@Z
??0?$QVector@VQPointF@@@@QEAA@V?$initializer_list@VQPointF@@@std@@@Z
??0?$QVector@VQPointF@@@@QEAA@XZ
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@$$QEAV0@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@AEBV0@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@H@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@HAEBVQXmlStreamAttribute@@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@U?$QArrayDataPointerRef@VQXmlStreamAttribute@@@@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@V?$initializer_list@VQXmlStreamAttribute@@@std@@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@XZ
??0Connection@QMetaObject@@AEAA@PEAX@Z
??0Connection@QMetaObject@@QEAA@$$QEAV01@@Z
??0Connection@QMetaObject@@QEAA@AEBV01@@Z
??0Connection@QMetaObject@@QEAA@XZ
??0ConverterState@QTextCodec@@QEAA@V?$QFlags@W4ConversionFlag@QTextCodec@@@@@Z
??0ExceptionHolder@QtPrivate@@QEAA@AEBV01@@Z
??0ExceptionHolder@QtPrivate@@QEAA@PEAVQException@@@Z
??0ExceptionStore@QtPrivate@@QEAA@$$QEAV01@@Z
??0ExceptionStore@QtPrivate@@QEAA@AEBV01@@Z
??0ExceptionStore@QtPrivate@@QEAA@XZ
??0QAbstractAnimation@@IEAA@AEAVQAbstractAnimationPrivate@@PEAVQObject@@@Z
??0QAbstractAnimation@@QEAA@PEAVQObject@@@Z
??0QAbstractAnimationTimer@@QEAA@XZ
??0QAbstractDynamicMetaObject@@QEAA@AEBU0@@Z
??0QAbstractDynamicMetaObject@@QEAA@XZ
??0QAbstractEventDispatcher@@IEAA@AEAVQAbstractEventDispatcherPrivate@@PEAVQObject@@@Z
??0QAbstractEventDispatcher@@QEAA@PEAVQObject@@@Z
??0QAbstractEventDispatcherPrivate@@QEAA@XZ
??0QAbstractFileEngine@@IEAA@AEAVQAbstractFileEnginePrivate@@@Z
??0QAbstractFileEngine@@IEAA@XZ
??0QAbstractFileEngineHandler@@QEAA@AEBV0@@Z
??0QAbstractFileEngineHandler@@QEAA@XZ
??0QAbstractFileEngineIterator@@QEAA@V?$QFlags@W4Filter@QDir@@@@AEBVQStringList@@@Z
??0QAbstractItemModel@@IEAA@AEAVQAbstractItemModelPrivate@@PEAVQObject@@@Z
??0QAbstractItemModel@@QEAA@PEAVQObject@@@Z
??0QAbstractItemModelPrivate@@QEAA@XZ
??0QAbstractListModel@@IEAA@AEAVQAbstractItemModelPrivate@@PEAVQObject@@@Z
??0QAbstractListModel@@QEAA@PEAVQObject@@@Z
??0QAbstractMetaCallEvent@@QEAA@AEBV0@@Z
??0QAbstractMetaCallEvent@@QEAA@PEBVQObject@@HPEAVQSemaphore@@@Z
??0QAbstractNativeEventFilter@@QEAA@XZ
??0QAbstractProxyModel@@IEAA@AEAVQAbstractProxyModelPrivate@@PEAVQObject@@@Z
??0QAbstractProxyModel@@QEAA@PEAVQObject@@@Z
??0QAbstractProxyModelPrivate@@QEAA@XZ
??0QAbstractState@@IEAA@AEAVQAbstractStatePrivate@@PEAVQState@@@Z
??0QAbstractState@@IEAA@PEAVQState@@@Z
??0QAbstractTableModel@@IEAA@AEAVQAbstractItemModelPrivate@@PEAVQObject@@@Z
??0QAbstractTableModel@@QEAA@PEAVQObject@@@Z
??0QAbstractTransition@@IEAA@AEAVQAbstractTransitionPrivate@@PEAVQState@@@Z
??0QAbstractTransition@@QEAA@PEAVQState@@@Z
??0QAbstractTransitionPrivate@@QEAA@XZ
??0QAnimationDriver@@IEAA@AEAVQAnimationDriverPrivate@@PEAVQObject@@@Z
??0QAnimationDriver@@QEAA@PEAVQObject@@@Z
??0QAnimationDriverPrivate@@QEAA@XZ
??0QAnimationGroup@@IEAA@AEAVQAnimationGroupPrivate@@PEAVQObject@@@Z
??0QAnimationGroup@@QEAA@PEAVQObject@@@Z
??0QArrayData@@QEAA@XZ
??0QAssociativeIterable@@QEAA@VQAssociativeIterableImpl@QtMetaTypePrivate@@@Z
??0QBasicMutex@@QEAA@XZ
??0QBasicTimer@@QEAA@$$QEAV0@@Z
??0QBasicTimer@@QEAA@AEBV0@@Z
??0QBasicTimer@@QEAA@XZ
??0QBinaryJsonValue@@AEAA@PEAVMutableData@QBinaryJsonPrivate@@PEAVBase@2@AEBVValue@2@@Z
??0QBinaryJsonValue@@QEAA@$$QEAV0@@Z
??0QBinaryJsonValue@@QEAA@AEBVQBinaryJsonArray@@@Z
??0QBinaryJsonValue@@QEAA@AEBVQBinaryJsonObject@@@Z
??0QBinaryJsonValue@@QEAA@N@Z
??0QBinaryJsonValue@@QEAA@VQString@@@Z
??0QBinaryJsonValue@@QEAA@W4Type@QJsonValue@@@Z
??0QBinaryJsonValue@@QEAA@_N@Z
??0QBitArray@@QEAA@$$QEAV0@@Z
??0QBitArray@@QEAA@AEBV0@@Z
??0QBitArray@@QEAA@H_N@Z
??0QBitArray@@QEAA@XZ
??0QBitRef@@AEAA@AEAVQBitArray@@H@Z
??0QBuffer@@QEAA@PEAVQByteArray@@PEAVQObject@@@Z
??0QBuffer@@QEAA@PEAVQObject@@@Z
??0QByteArray@@QEAA@$$QEAV0@@Z
??0QByteArray@@QEAA@AEBV0@@Z
??0QByteArray@@QEAA@HD@Z
??0QByteArray@@QEAA@HW4Initialization@Qt@@@Z
??0QByteArray@@QEAA@PEBDH@Z
??0QByteArray@@QEAA@UQByteArrayDataPtr@@@Z
??0QByteArray@@QEAA@XZ
??0QByteArrayMatcher@@QEAA@AEBV0@@Z
??0QByteArrayMatcher@@QEAA@AEBVQByteArray@@@Z
??0QByteArrayMatcher@@QEAA@PEBDH@Z
??0QByteArrayMatcher@@QEAA@XZ
??0QByteRef@@AEAA@AEAVQByteArray@@H@Z
??0QCalendar@@QEAA@VQLatin1String@@@Z
??0QCalendar@@QEAA@VQStringView@@@Z
??0QCalendar@@QEAA@W4System@0@@Z
??0QCalendar@@QEAA@XZ
??0QCalendarBackend@@IEAA@AEBVQString@@W4System@QCalendar@@@Z
??0QCalendarBackend@@QEAA@AEBV0@@Z
??0QCborArray@@AEAA@AEAVQCborContainerPrivate@@@Z
??0QCborArray@@QEAA@AEBV0@@Z
??0QCborArray@@QEAA@V?$initializer_list@VQCborValue@@@std@@@Z
??0QCborArray@@QEAA@XZ
??0QCborMap@@AEAA@AEAVQCborContainerPrivate@@@Z
??0QCborMap@@QEAA@AEBV0@@Z
??0QCborMap@@QEAA@V?$initializer_list@U?$QPair@VQCborValue@@V1@@@@std@@@Z
??0QCborMap@@QEAA@XZ
??0QCborStreamReader@@QEAA@AEBVQByteArray@@@Z
??0QCborStreamReader@@QEAA@PEAVQIODevice@@@Z
??0QCborStreamReader@@QEAA@PEBD_J@Z
??0QCborStreamReader@@QEAA@PEBE_J@Z
??0QCborStreamReader@@QEAA@XZ
??0QCborStreamWriter@@QEAA@PEAVQByteArray@@@Z
??0QCborStreamWriter@@QEAA@PEAVQIODevice@@@Z
??0QCborValue@@QEAA@$$QEAV0@@Z
??0QCborValue@@QEAA@$$QEAVQCborArray@@@Z
??0QCborValue@@QEAA@$$QEAVQCborMap@@@Z
??0QCborValue@@QEAA@$$T@Z
??0QCborValue@@QEAA@AEBV0@@Z
??0QCborValue@@QEAA@AEBVQByteArray@@@Z
??0QCborValue@@QEAA@AEBVQCborArray@@@Z
??0QCborValue@@QEAA@AEBVQCborMap@@@Z
??0QCborValue@@QEAA@AEBVQDateTime@@@Z
??0QCborValue@@QEAA@AEBVQRegularExpression@@@Z
??0QCborValue@@QEAA@AEBVQString@@@Z
??0QCborValue@@QEAA@AEBVQUrl@@@Z
??0QCborValue@@QEAA@AEBVQUuid@@@Z
??0QCborValue@@QEAA@H@Z
??0QCborValue@@QEAA@I@Z
??0QCborValue@@QEAA@N@Z
??0QCborValue@@QEAA@PEBD@Z
??0QCborValue@@QEAA@VQLatin1String@@@Z
??0QCborValue@@QEAA@VQStringView@@@Z
??0QCborValue@@QEAA@W4QCborKnownTags@@AEBV0@@Z
??0QCborValue@@QEAA@W4QCborSimpleType@@@Z
??0QCborValue@@QEAA@W4QCborTag@@AEBV0@@Z
??0QCborValue@@QEAA@W4Type@0@@Z
??0QCborValue@@QEAA@XZ
??0QCborValue@@QEAA@_J@Z
??0QCborValue@@QEAA@_N@Z
??0QCborValueRef@@AEAA@PEAVQCborContainerPrivate@@_J@Z
??0QCborValueRef@@AEAA@XZ
??0QChar@@QEAA@D@Z
??0QChar@@QEAA@E@Z
??0QChar@@QEAA@EE@Z
??0QChar@@QEAA@F@Z
??0QChar@@QEAA@G@Z
??0QChar@@QEAA@H@Z
??0QChar@@QEAA@I@Z
??0QChar@@QEAA@UQLatin1Char@@@Z
??0QChar@@QEAA@W4SpecialCharacter@0@@Z
??0QChar@@QEAA@XZ
??0QChar@@QEAA@_S@Z
??0QChar@@QEAA@_W@Z
??0QCharRef@@AEAA@AEAVQString@@H@Z
??0QChildEvent@@QEAA@AEBV0@@Z
??0QChildEvent@@QEAA@W4Type@QEvent@@PEAVQObject@@@Z
??0QCollator@@QEAA@$$QEAV0@@Z
??0QCollator@@QEAA@AEBV0@@Z
??0QCollator@@QEAA@AEBVQLocale@@@Z
??0QCollator@@QEAA@XZ
??0QCollatorSortKey@@IEAA@PEAVQCollatorSortKeyPrivate@@@Z
??0QCollatorSortKey@@QEAA@AEBV0@@Z
??0QCommandLineOption@@QEAA@AEBV0@@Z
??0QCommandLineOption@@QEAA@AEBVQString@@000@Z
??0QCommandLineOption@@QEAA@AEBVQString@@@Z
??0QCommandLineOption@@QEAA@AEBVQStringList@@@Z
??0QCommandLineOption@@QEAA@AEBVQStringList@@AEBVQString@@11@Z
??0QCommandLineParser@@QEAA@XZ
??0QConcatenateTablesProxyModel@@QEAA@PEAVQObject@@@Z
??0QContiguousCacheData@@QEAA@XZ
??0QCoreApplication@@IEAA@AEAVQCoreApplicationPrivate@@@Z
??0QCoreApplication@@QEAA@AEAHPEAPEADH@Z
??0QCoreApplicationPrivate@@QEAA@AEAHPEAPEADI@Z
??0QCryptographicHash@@QEAA@W4Algorithm@0@@Z
??0QDaemonThread@@QEAA@PEAVQObject@@@Z
??0QDataStream@@QEAA@AEBVQByteArray@@@Z
??0QDataStream@@QEAA@PEAVQByteArray@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??0QDataStream@@QEAA@PEAVQIODevice@@@Z
??0QDataStream@@QEAA@XZ
??0QDate@@AEAA@_J@Z
??0QDate@@QEAA@HHH@Z
??0QDate@@QEAA@HHHVQCalendar@@@Z
??0QDate@@QEAA@XZ
??0QDateTime@@QEAA@$$QEAV0@@Z
??0QDateTime@@QEAA@AEBV0@@Z
??0QDateTime@@QEAA@AEBVQDate@@@Z
??0QDateTime@@QEAA@AEBVQDate@@AEBVQTime@@AEBVQTimeZone@@@Z
??0QDateTime@@QEAA@AEBVQDate@@AEBVQTime@@W4TimeSpec@Qt@@@Z
??0QDateTime@@QEAA@AEBVQDate@@AEBVQTime@@W4TimeSpec@Qt@@H@Z
??0QDateTime@@QEAA@XZ
??0QDateTimeParser@@QEAA@AEBV0@@Z
??0QDateTimeParser@@QEAA@W4Type@QMetaType@@W4Context@0@AEBVQCalendar@@@Z
??0QDeadlineTimer@@QEAA@W4ForeverConstant@0@W4TimerType@Qt@@@Z
??0QDeadlineTimer@@QEAA@W4TimerType@Qt@@@Z
??0QDeadlineTimer@@QEAA@_JW4TimerType@Qt@@@Z
??0QDebug@@QEAA@$$QEAV0@@Z
??0QDebug@@QEAA@AEBV0@@Z
??0QDebug@@QEAA@PEAVQIODevice@@@Z
??0QDebug@@QEAA@PEAVQString@@@Z
??0QDebug@@QEAA@W4QtMsgType@@@Z
??0QDebugStateSaver@@QEAA@AEAVQDebug@@@Z
??0QDeferredDeleteEvent@@QEAA@AEBV0@@Z
??0QDeferredDeleteEvent@@QEAA@XZ
??0QDir@@IEAA@AEAVQDirPrivate@@@Z
??0QDir@@QEAA@AEBV0@@Z
??0QDir@@QEAA@AEBVQString@@0V?$QFlags@W4SortFlag@QDir@@@@V?$QFlags@W4Filter@QDir@@@@@Z
??0QDir@@QEAA@AEBVQString@@@Z
??0QDirIterator@@QEAA@AEBVQDir@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDirIterator@@QEAA@AEBVQString@@AEBVQStringList@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDirIterator@@QEAA@AEBVQString@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDirIterator@@QEAA@AEBVQString@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDynamicMetaObjectData@@QEAA@AEBU0@@Z
??0QDynamicMetaObjectData@@QEAA@XZ
??0QDynamicPropertyChangeEvent@@QEAA@AEBV0@@Z
??0QDynamicPropertyChangeEvent@@QEAA@AEBVQByteArray@@@Z
??0QEasingCurve@@QEAA@$$QEAV0@@Z
??0QEasingCurve@@QEAA@AEBV0@@Z
??0QEasingCurve@@QEAA@W4Type@0@@Z
??0QElapsedTimer@@QEAA@XZ
??0QEvent@@QEAA@AEBV0@@Z
??0QEvent@@QEAA@W4Type@0@@Z
??0QEventDispatcherWin32@@IEAA@AEAVQEventDispatcherWin32Private@@PEAVQObject@@@Z
??0QEventDispatcherWin32@@QEAA@PEAVQObject@@@Z
??0QEventDispatcherWin32Private@@QEAA@XZ
??0QEventLoop@@QEAA@PEAVQObject@@@Z
??0QEventLoopLocker@@QEAA@PEAVQEventLoop@@@Z
??0QEventLoopLocker@@QEAA@PEAVQThread@@@Z
??0QEventLoopLocker@@QEAA@XZ
??0QEventTransition@@IEAA@AEAVQEventTransitionPrivate@@PEAVQObject@@W4Type@QEvent@@PEAVQState@@@Z
??0QEventTransition@@IEAA@AEAVQEventTransitionPrivate@@PEAVQState@@@Z
??0QEventTransition@@QEAA@PEAVQObject@@W4Type@QEvent@@PEAVQState@@@Z
??0QEventTransition@@QEAA@PEAVQState@@@Z
??0QEventTransitionPrivate@@QEAA@XZ
??0QException@@QEAA@AEBV0@@Z
??0QException@@QEAA@XZ
??0QFSFileEngine@@IEAA@AEAVQFSFileEnginePrivate@@@Z
??0QFSFileEngine@@QEAA@AEBVQString@@@Z
??0QFSFileEngine@@QEAA@XZ
??0QFactoryInterface@@QEAA@AEBU0@@Z
??0QFactoryInterface@@QEAA@XZ
??0QFactoryLoader@@QEAA@PEBDAEBVQString@@W4CaseSensitivity@Qt@@@Z
??0QFile@@IEAA@AEAVQFilePrivate@@PEAVQObject@@@Z
??0QFile@@QEAA@AEBVQString@@@Z
??0QFile@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QFile@@QEAA@PEAVQObject@@@Z
??0QFile@@QEAA@XZ
??0QFileDevice@@IEAA@AEAVQFileDevicePrivate@@PEAVQObject@@@Z
??0QFileDevice@@IEAA@PEAVQObject@@@Z
??0QFileDevice@@IEAA@XZ
??0QFileInfo@@QEAA@AEBV0@@Z
??0QFileInfo@@QEAA@AEBVQDir@@AEBVQString@@@Z
??0QFileInfo@@QEAA@AEBVQFile@@@Z
??0QFileInfo@@QEAA@AEBVQString@@@Z
??0QFileInfo@@QEAA@PEAVQFileInfoPrivate@@@Z
??0QFileInfo@@QEAA@XZ
??0QFileSelector@@QEAA@PEAVQObject@@@Z
??0QFileSelectorPrivate@@QEAA@XZ
??0QFileSystemWatcher@@QEAA@AEBVQStringList@@PEAVQObject@@@Z
??0QFileSystemWatcher@@QEAA@PEAVQObject@@@Z
??0QFinalState@@IEAA@AEAVQFinalStatePrivate@@PEAVQState@@@Z
??0QFinalState@@QEAA@PEAVQState@@@Z
??0QFinalStatePrivate@@QEAA@XZ
??0QFutureInterfaceBase@@QEAA@AEBV0@@Z
??0QFutureInterfaceBase@@QEAA@W4State@0@@Z
??0QFutureWatcherBase@@QEAA@PEAVQObject@@@Z
??0QGenericArgument@@QEAA@PEBDPEBX@Z
??0QGenericReturnArgument@@QEAA@PEBDPEAX@Z
??0QGregorianCalendar@@QEAA@$$QEAV0@@Z
??0QGregorianCalendar@@QEAA@AEBV0@@Z
??0QGregorianCalendar@@QEAA@XZ
??0QHashData@@QEAA@XZ
??0QHijriCalendar@@IEAA@AEBVQString@@W4System@QCalendar@@@Z
??0QHijriCalendar@@QEAA@$$QEAV0@@Z
??0QHijriCalendar@@QEAA@AEBV0@@Z
??0QHistoryState@@QEAA@PEAVQState@@@Z
??0QHistoryState@@QEAA@W4HistoryType@0@PEAVQState@@@Z
??0QIODevice@@IEAA@AEAVQIODevicePrivate@@PEAVQObject@@@Z
??0QIODevice@@QEAA@PEAVQObject@@@Z
??0QIODevice@@QEAA@XZ
??0QIODevicePrivate@@QEAA@XZ
??0QIdentityProxyModel@@IEAA@AEAVQIdentityProxyModelPrivate@@PEAVQObject@@@Z
??0QIdentityProxyModel@@QEAA@PEAVQObject@@@Z
??0QIslamicCivilCalendar@@QEAA@$$QEAV0@@Z
??0QIslamicCivilCalendar@@QEAA@AEBV0@@Z
??0QIslamicCivilCalendar@@QEAA@XZ
??0QItemSelection@@QEAA@$$QEAV0@@Z
??0QItemSelection@@QEAA@AEBV0@@Z
??0QItemSelection@@QEAA@AEBVQModelIndex@@0@Z
??0QItemSelection@@QEAA@XZ
??0QItemSelectionModel@@IEAA@AEAVQItemSelectionModelPrivate@@PEAVQAbstractItemModel@@@Z
??0QItemSelectionModel@@QEAA@PEAVQAbstractItemModel@@@Z
??0QItemSelectionModel@@QEAA@PEAVQAbstractItemModel@@PEAVQObject@@@Z
??0QItemSelectionRange@@QEAA@$$QEAV0@@Z
??0QItemSelectionRange@@QEAA@AEBV0@@Z
??0QItemSelectionRange@@QEAA@AEBVQModelIndex@@0@Z
??0QItemSelectionRange@@QEAA@AEBVQModelIndex@@@Z
??0QItemSelectionRange@@QEAA@XZ
??0QJalaliCalendar@@QEAA@$$QEAV0@@Z
??0QJalaliCalendar@@QEAA@AEBV0@@Z
??0QJalaliCalendar@@QEAA@XZ
??0QJsonArray@@AEAA@PEAVQCborContainerPrivate@@@Z
??0QJsonArray@@QEAA@$$QEAV0@@Z
??0QJsonArray@@QEAA@AEBV0@@Z
??0QJsonArray@@QEAA@V?$initializer_list@VQJsonValue@@@std@@@Z
??0QJsonArray@@QEAA@XZ
??0QJsonDocument@@AEAA@AEBVQCborValue@@@Z
??0QJsonDocument@@QEAA@$$QEAV0@@Z
??0QJsonDocument@@QEAA@AEBV0@@Z
??0QJsonDocument@@QEAA@AEBVQJsonArray@@@Z
??0QJsonDocument@@QEAA@AEBVQJsonObject@@@Z
??0QJsonDocument@@QEAA@XZ
??0QJsonObject@@AEAA@PEAVQCborContainerPrivate@@@Z
??0QJsonObject@@QEAA@$$QEAV0@@Z
??0QJsonObject@@QEAA@AEBV0@@Z
??0QJsonObject@@QEAA@V?$initializer_list@U?$QPair@VQString@@VQJsonValue@@@@@std@@@Z
??0QJsonObject@@QEAA@XZ
??0QJsonValue@@QEAA@$$QEAV0@@Z
??0QJsonValue@@QEAA@AEBV0@@Z
??0QJsonValue@@QEAA@AEBVQJsonArray@@@Z
??0QJsonValue@@QEAA@AEBVQJsonObject@@@Z
??0QJsonValue@@QEAA@AEBVQString@@@Z
??0QJsonValue@@QEAA@H@Z
??0QJsonValue@@QEAA@N@Z
??0QJsonValue@@QEAA@PEBD@Z
??0QJsonValue@@QEAA@VQLatin1String@@@Z
??0QJsonValue@@QEAA@W4Type@0@@Z
??0QJsonValue@@QEAA@_J@Z
??0QJsonValue@@QEAA@_N@Z
??0QJsonValueRef@@QEAA@PEAVQJsonArray@@H@Z
??0QJsonValueRef@@QEAA@PEAVQJsonObject@@H@Z
??0QJulianCalendar@@QEAA@$$QEAV0@@Z
??0QJulianCalendar@@QEAA@AEBV0@@Z
??0QJulianCalendar@@QEAA@XZ
??0QLibrary@@QEAA@AEBVQString@@0PEAVQObject@@@Z
??0QLibrary@@QEAA@AEBVQString@@HPEAVQObject@@@Z
??0QLibrary@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QLibrary@@QEAA@PEAVQObject@@@Z
??0QLibraryInfo@@AEAA@XZ
??0QLine@@QEAA@AEBVQPoint@@0@Z
??0QLine@@QEAA@HHHH@Z
??0QLine@@QEAA@XZ
??0QLineF@@QEAA@AEBVQLine@@@Z
??0QLineF@@QEAA@AEBVQPointF@@0@Z
??0QLineF@@QEAA@NNNN@Z
??0QLineF@@QEAA@XZ
??0QLocale@@AEAA@AEAVQLocalePrivate@@@Z
??0QLocale@@QEAA@AEBV0@@Z
??0QLocale@@QEAA@AEBVQString@@@Z
??0QLocale@@QEAA@W4Language@0@W4Country@0@@Z
??0QLocale@@QEAA@W4Language@0@W4Script@0@W4Country@0@@Z
??0QLocale@@QEAA@XZ
??0QLocalePrivate@@QEAA@XZ
??0QLockFile@@QEAA@AEBVQString@@@Z
??0QLoggingCategory@@QEAA@PEBD@Z
??0QLoggingCategory@@QEAA@PEBDW4QtMsgType@@@Z
??0QMapDataBase@@QEAA@XZ
??0QMessageAuthenticationCode@@QEAA@W4Algorithm@QCryptographicHash@@AEBVQByteArray@@@Z
??0QMessageLogger@@QEAA@PEBDH00@Z
??0QMessageLogger@@QEAA@PEBDH0@Z
??0QMessageLogger@@QEAA@XZ
??0QMetaCallEvent@@QEAA@AEBV0@@Z
??0QMetaCallEvent@@QEAA@GGP6AXPEAVQObject@@W4Call@QMetaObject@@HPEAPEAX@ZPEBV1@H2PEAVQSemaphore@@@Z
??0QMetaCallEvent@@QEAA@GGP6AXPEAVQObject@@W4Call@QMetaObject@@HPEAPEAX@ZPEBV1@HH@Z
??0QMetaCallEvent@@QEAA@PEAVQSlotObjectBase@QtPrivate@@PEBVQObject@@HH@Z
??0QMetaCallEvent@@QEAA@PEAVQSlotObjectBase@QtPrivate@@PEBVQObject@@HPEAPEAXPEAVQSemaphore@@@Z
??0QMetaClassInfo@@QEAA@XZ
??0QMetaEnum@@QEAA@XZ
??0QMetaEnumBuilder@@AEAA@PEBVQMetaObjectBuilder@@H@Z
??0QMetaEnumBuilder@@QEAA@XZ
??0QMetaMethod@@QEAA@XZ
??0QMetaMethodBuilder@@AEAA@PEBVQMetaObjectBuilder@@H@Z
??0QMetaMethodBuilder@@QEAA@XZ
??0QMetaObjectBuilder@@QEAA@PEBUQMetaObject@@V?$QFlags@W4AddMember@QMetaObjectBuilder@@@@@Z
??0QMetaObjectBuilder@@QEAA@XZ
??0QMetaProperty@@QEAA@XZ
??0QMetaPropertyBuilder@@AEAA@PEBVQMetaObjectBuilder@@H@Z
??0QMetaPropertyBuilder@@QEAA@XZ
??0QMetaStringTable@@QEAA@$$QEAV0@@Z
??0QMetaStringTable@@QEAA@AEBV0@@Z
??0QMetaStringTable@@QEAA@AEBVQByteArray@@@Z
??0QMetaType@@AEAA@AEBV0@@Z
??0QMetaType@@AEAA@W4ExtensionFlag@0@PEBVQMetaTypeInterface@@P6APEAXHPEAXPEBX@ZP6AXH2@ZP6AXAEAVQDataStream@@3@ZP6AX62@ZP6APEAX23@ZP6AX2@ZIIHPEBUQMetaObject@@@Z
??0QMetaType@@QEAA@H@Z
??0QMilankovicCalendar@@QEAA@$$QEAV0@@Z
??0QMilankovicCalendar@@QEAA@AEBV0@@Z
??0QMilankovicCalendar@@QEAA@XZ
??0QMimeData@@QEAA@XZ
??0QMimeDatabase@@QEAA@XZ
??0QMimeType@@QEAA@AEBV0@@Z
??0QMimeType@@QEAA@AEBVQMimeTypePrivate@@@Z
??0QMimeType@@QEAA@XZ
??0QModelIndex@@AEAA@HHPEAXPEBVQAbstractItemModel@@@Z
??0QModelIndex@@AEAA@HH_KPEBVQAbstractItemModel@@@Z
??0QModelIndex@@QEAA@XZ
??0QMutex@@QEAA@W4RecursionMode@0@@Z
??0QMutex@@QEAA@XZ
??0QMutexLocker@@QEAA@PEAVQBasicMutex@@@Z
??0QMutexLocker@@QEAA@PEAVQRecursiveMutex@@@Z
??0QNonContiguousByteDevice@@IEAA@XZ
??0QObject@@IEAA@AEAVQObjectPrivate@@PEAV0@@Z
??0QObject@@QEAA@PEAV0@@Z
??0QObjectCleanupHandler@@QEAA@XZ
??0QObjectData@@QEAA@XZ
??0QObjectPrivate@@QEAA@H@Z
??0QObjectUserData@@QEAA@XZ
??0QOperatingSystemVersion@@QEAA@W4OSType@0@HHH@Z
??0QParallelAnimationGroup@@IEAA@AEAVQParallelAnimationGroupPrivate@@PEAVQObject@@@Z
??0QParallelAnimationGroup@@QEAA@PEAVQObject@@@Z
??0QPauseAnimation@@QEAA@HPEAVQObject@@@Z
??0QPauseAnimation@@QEAA@PEAVQObject@@@Z
??0QPersistentModelIndex@@QEAA@$$QEAV0@@Z
??0QPersistentModelIndex@@QEAA@AEBV0@@Z
??0QPersistentModelIndex@@QEAA@AEBVQModelIndex@@@Z
??0QPersistentModelIndex@@QEAA@XZ
??0QPluginLoader@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QPluginLoader@@QEAA@PEAVQObject@@@Z
??0QPoint@@QEAA@HH@Z
??0QPoint@@QEAA@XZ
??0QPointF@@QEAA@AEBVQPoint@@@Z
??0QPointF@@QEAA@NN@Z
??0QPointF@@QEAA@XZ
??0QProcess@@QEAA@PEAVQObject@@@Z
??0QProcessEnvironment@@QEAA@AEBV0@@Z
??0QProcessEnvironment@@QEAA@XZ
??0QPropertyAnimation@@QEAA@PEAVQObject@@@Z
??0QPropertyAnimation@@QEAA@PEAVQObject@@AEBVQByteArray@@0@Z
??0QRandomGenerator@@QEAA@AEAVseed_seq@std@@@Z
??0QRandomGenerator@@QEAA@AEBV0@@Z
??0QRandomGenerator@@QEAA@PEBI0@Z
??0QReadLocker@@QEAA@PEAVQReadWriteLock@@@Z
??0QReadWriteLock@@QEAA@W4RecursionMode@0@@Z
??0QRect@@QEAA@AEBVQPoint@@0@Z
??0QRect@@QEAA@AEBVQPoint@@AEBVQSize@@@Z
??0QRect@@QEAA@HHHH@Z
??0QRect@@QEAA@XZ
??0QRectF@@QEAA@AEBVQPointF@@0@Z
??0QRectF@@QEAA@AEBVQPointF@@AEBVQSizeF@@@Z
??0QRectF@@QEAA@AEBVQRect@@@Z
??0QRectF@@QEAA@NNNN@Z
??0QRectF@@QEAA@XZ
??0QRecursiveMutex@@QEAA@XZ
??0QRegExp@@QEAA@AEBV0@@Z
??0QRegExp@@QEAA@AEBVQString@@W4CaseSensitivity@Qt@@W4PatternSyntax@0@@Z
??0QRegExp@@QEAA@XZ
??0QRegularExpression@@AEAA@AEAUQRegularExpressionPrivate@@@Z
??0QRegularExpression@@QEAA@AEBV0@@Z
??0QRegularExpression@@QEAA@AEBVQString@@V?$QFlags@W4PatternOption@QRegularExpression@@@@@Z
??0QRegularExpression@@QEAA@XZ
??0QRegularExpressionMatch@@AEAA@AEAUQRegularExpressionMatchPrivate@@@Z
??0QRegularExpressionMatch@@QEAA@AEBV0@@Z
??0QRegularExpressionMatch@@QEAA@XZ
??0QRegularExpressionMatchIterator@@AEAA@AEAUQRegularExpressionMatchIteratorPrivate@@@Z
??0QRegularExpressionMatchIterator@@QEAA@AEBV0@@Z
??0QRegularExpressionMatchIterator@@QEAA@XZ
??0QResource@@QEAA@AEBVQString@@AEBVQLocale@@@Z
??0QRomanCalendar@@IEAA@AEBVQString@@W4System@QCalendar@@@Z
??0QRomanCalendar@@QEAA@$$QEAV0@@Z
??0QRomanCalendar@@QEAA@AEBV0@@Z
??0QRunnable@@QEAA@AEBV0@@Z
??0QRunnable@@QEAA@XZ
??0QSaveFile@@QEAA@AEBVQString@@@Z
??0QSaveFile@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QSaveFile@@QEAA@PEAVQObject@@@Z
??0QSemaphore@@QEAA@H@Z
??0QSequentialAnimationGroup@@IEAA@AEAVQSequentialAnimationGroupPrivate@@PEAVQObject@@@Z
??0QSequentialAnimationGroup@@QEAA@PEAVQObject@@@Z
??0QSequentialIterable@@QEAA@VQSequentialIterableImpl@QtMetaTypePrivate@@@Z
??0QSettings@@QEAA@AEBVQString@@0PEAVQObject@@@Z
??0QSettings@@QEAA@AEBVQString@@W4Format@0@PEAVQObject@@@Z
??0QSettings@@QEAA@PEAVQObject@@@Z
??0QSettings@@QEAA@W4Format@0@W4Scope@0@AEBVQString@@2PEAVQObject@@@Z
??0QSettings@@QEAA@W4Scope@0@AEBVQString@@1PEAVQObject@@@Z
??0QSettings@@QEAA@W4Scope@0@PEAVQObject@@@Z
??0QSharedData@@QEAA@AEBV0@@Z
??0QSharedData@@QEAA@XZ
??0QSharedMemory@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QSharedMemory@@QEAA@PEAVQObject@@@Z
??0QSignalMapper@@QEAA@PEAVQObject@@@Z
??0QSignalTransition@@QEAA@PEAVQState@@@Z
??0QSignalTransition@@QEAA@PEBVQObject@@PEBDPEAVQState@@@Z
??0QSize@@QEAA@HH@Z
??0QSize@@QEAA@XZ
??0QSizeF@@QEAA@AEBVQSize@@@Z
??0QSizeF@@QEAA@NN@Z
??0QSizeF@@QEAA@XZ

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtmimed
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SystemEx.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:5b:2f:ef:63:1a:86:9c:b5:99:97:32:fa:03:c4:29
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

04/04/2023, 00:00

Not After

22/06/2024, 23:59

Subject

SERIALNUMBER=2019191556,CN=Smartly Dressed Games Ltd.,O=Smartly Dressed Games Ltd.,L=Calgary,ST=Alberta,C=CA,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#1307416c6265727461,1.3.6.1.4.1.311.60.2.1.3=#13024341

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9b:d5:2d:fb:35:36:ad:88:00:0c:63:c4:c5:ef:37:00:61:53:fe:f6:b4:ad:bf:5a:5e:61:2c:be:b0:82:ed:55
Signer

Actual PE Digest

9b:d5:2d:fb:35:36:ad:88:00:0c:63:c4:c5:ef:37:00:61:53:fe:f6:b4:ad:bf:5a:5e:61:2c:be:b0:82:ed:55

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\Unturned\Library\Bee\artifacts\1900b0aP.dag\SystemEx.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unity.Postprocessing.Runtime.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:5b:2f:ef:63:1a:86:9c:b5:99:97:32:fa:03:c4:29
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

04/04/2023, 00:00

Not After

22/06/2024, 23:59

Subject

SERIALNUMBER=2019191556,CN=Smartly Dressed Games Ltd.,O=Smartly Dressed Games Ltd.,L=Calgary,ST=Alberta,C=CA,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#1307416c6265727461,1.3.6.1.4.1.311.60.2.1.3=#13024341

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

17:01:c0:8f:4e:73:c3:e4:42:f2:8e:ba:c5:2c:a8:ed:a0:fb:31:20:15:a2:51:44:9a:57:04:31:4a:ef:8f:52
Signer

Actual PE Digest

17:01:c0:8f:4e:73:c3:e4:42:f2:8e:ba:c5:2c:a8:ed:a0:fb:31:20:15:a2:51:44:9a:57:04:31:4a:ef:8f:52

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\Unturned\Library\Bee\artifacts\1900b0aP.dag\Unity.Postprocessing.Runtime.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UnityEngine.TextCoreModule.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:5b:2f:ef:63:1a:86:9c:b5:99:97:32:fa:03:c4:29
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

04/04/2023, 00:00

Not After

22/06/2024, 23:59

Subject

SERIALNUMBER=2019191556,CN=Smartly Dressed Games Ltd.,O=Smartly Dressed Games Ltd.,L=Calgary,ST=Alberta,C=CA,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#1307416c6265727461,1.3.6.1.4.1.311.60.2.1.3=#13024341

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

25:1e:d6:e4:b8:99:28:c9:20:d1:51:5d:b2:7e:ad:26:5f:e9:12:09:c2:da:a1:09:10:dd:21:87:b8:41:d5:e4
Signer

Actual PE Digest

25:1e:d6:e4:b8:99:28:c9:20:d1:51:5d:b2:7e:ad:26:5f:e9:12:09:c2:da:a1:09:10:dd:21:87:b8:41:d5:e4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

UnityEngine.TextCoreModule.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VBoxAuthSimple.dll
.dll windows:6 windows x64 arch:x64

e0c5e267866e5f87978b8a38626da834

Code Sign

51:ca:00:98:16:fd:bd:80:f1:20:e0:15:ee:75:82:3e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

23/12/2013, 00:00

Not After

22/12/2016, 23:59

Subject

CN=Oracle Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=VirtualBox,O=Oracle Corporation,L=Redwood Shores,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:da:c0:e5:de:9a:96:a5:13:21:09:0d:b2:7e:0b:a1:e1:f7:92:ec
Certificate

Issuer

CN=VirtualBox for Legacy Windows Only Timestamp CA SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Not Before

01/01/2014, 00:00

Not After

31/12/2014, 23:59

Subject

CN=VirtualBox for Legacy Windows Only Timestamp Kludge 2014 SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:52:65:06:cc:82:88:11:7d:a6:be:d3:a5:ab:ec:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/02/2021, 00:00

Not After

16/04/2024, 23:59

Subject

CN=Oracle Corporation,OU=VirtualBox,O=Oracle Corporation,L=Redwood City,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ab:d6:08:b7:97:28:8b:ba:63:c3:ec:d0:f5:7c:74:68:69:26:4c:39:99:bc:95:1e:7e:56:1d:c6:c7:69:d7:42
Signer

Actual PE Digest

ab:d6:08:b7:97:28:8b:ba:63:c3:ec:d0:f5:7c:74:68:69:26:4c:39:99:bc:95:1e:7e:56:1d:c6:c7:69:d7:42

Digest Algorithm

sha256

PE Digest Matches

true

f6:27:07:81:51:66:0a:06:fd:83:f0:7e:7d:da:b9:e5:41:43:98:8a
Signer

Actual PE Digest

f6:27:07:81:51:66:0a:06:fd:83:f0:7e:7d:da:b9:e5:41:43:98:8a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\tinderboxa\win-7.0\out\win.amd64\release\obj\VBoxAuthSimple\VBoxAuthSimple.pdb

Imports

vcruntime140

_CxxThrowException
__std_exception_destroy
__std_exception_copy
__std_type_info_destroy_list
memset
__C_specific_handler
strchr
__std_terminate

vcruntime140_1

__CxxFrameHandler4

ole32

CoCreateInstance

vboxrt

??1RTCString@@UEAA@XZ
RTUtf16Cmp
RTSha256ToString
RTSha256
RTUuidToStr
??0RTCString@@QEAA@XZ
RTUtf16Len
RTStrNLen
RTStrFormatV
RTStrToUtf16ExTag
RTStrCalcUtf16LenEx
RTLogRelGetDefaultInstanceEx
RTLogLoggerEx

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_execute_onexit_table
_cexit
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm
_initterm_e
_register_onexit_function

kernel32

TerminateProcess
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetCurrentProcess
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

oleaut32

SysFreeString
SysReAllocStringLen
SysAllocStringLen
SysAllocString
SysStringLen
SysAllocStringByteLen

api-ms-win-crt-heap-l1-1-0

free

Exports

Exports

AuthEntry

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VBoxCAPI.dll
.dll windows:6 windows x64 arch:x64

4038221943263d7cb2f39d368390abb7

Code Sign

51:ca:00:98:16:fd:bd:80:f1:20:e0:15:ee:75:82:3e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

23/12/2013, 00:00

Not After

22/12/2016, 23:59

Subject

CN=Oracle Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=VirtualBox,O=Oracle Corporation,L=Redwood Shores,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:da:c0:e5:de:9a:96:a5:13:21:09:0d:b2:7e:0b:a1:e1:f7:92:ec
Certificate

Issuer

CN=VirtualBox for Legacy Windows Only Timestamp CA SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Not Before

01/01/2014, 00:00

Not After

31/12/2014, 23:59

Subject

CN=VirtualBox for Legacy Windows Only Timestamp Kludge 2014 SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:52:65:06:cc:82:88:11:7d:a6:be:d3:a5:ab:ec:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/02/2021, 00:00

Not After

16/04/2024, 23:59

Subject

CN=Oracle Corporation,OU=VirtualBox,O=Oracle Corporation,L=Redwood City,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f9:23:e7:96:06:1a:73:1c:b3:d3:fa:20:bc:c3:35:97:03:61:a3:7e:de:c1:17:77:6f:9e:cf:3f:23:10:77:b1
Signer

Actual PE Digest

f9:23:e7:96:06:1a:73:1c:b3:d3:fa:20:bc:c3:35:97:03:61:a3:7e:de:c1:17:77:6f:9e:cf:3f:23:10:77:b1

Digest Algorithm

sha256

PE Digest Matches

true

5d:cc:00:b5:56:63:f4:cc:93:61:02:0f:da:e3:7d:19:ba:a0:a5:6f
Signer

Actual PE Digest

5d:cc:00:b5:56:63:f4:cc:93:61:02:0f:da:e3:7d:19:ba:a0:a5:6f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\tinderboxa\win-7.0\out\win.amd64\release\obj\VBoxCAPI\VBoxCAPI.pdb

Imports

vcruntime140

__std_exception_destroy
_CxxThrowException
__std_type_info_destroy_list
__C_specific_handler
memset
__std_exception_copy
memcpy

ole32

CoInitializeEx
CoCreateInstance
CoUninitialize
CoInitializeSecurity

oleaut32

GetErrorInfo
SetErrorInfo
SafeArrayCreateVector
SafeArrayGetVartype
SafeArrayUnaccessData
SysAllocString
SafeArrayAccessData
SysFreeString
SafeArrayDestroy

vboxrt

RTStrToUtf16Tag
RTStrFree
RTR3InitDll
RTUtf16Free
RTUtf16Len
RTUtf16ToUtf8Tag
RTUuidFromStr
RTLogRelGetDefaultInstanceEx
RTLogLoggerEx
RTLdrLoad
RTLdrGetSymbol
RTPathAppend
RTPathAppPrivateArch
RTErrConvertFromWin32
RTThreadSelf

api-ms-win-crt-heap-l1-1-0

malloc
free
_callnewh

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm
_cexit
_seh_filter_dll
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv

kernel32

InitializeSListHead
GetCurrentThread
DuplicateHandle
CloseHandle
GetProcAddress
GetModuleHandleExW
VirtualProtect
CreateMutexW
SetLastError
GetLastError
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
GetCurrentProcess
GetModuleHandleW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

rpcrt4

CStdStubBuffer_Invoke

vcruntime140_1

__CxxFrameHandler4

user32

DispatchMessageW
PostThreadMessageW
TranslateMessage
GetMessageW
MsgWaitForMultipleObjects
PeekMessageW

Exports

Exports

VBoxGetCAPIFunctions

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VBoxDbg.dll
.dll windows:6 windows x64 arch:x64

ac54ad3fb95bce0de2d867e5cf1186cb

Code Sign

51:ca:00:98:16:fd:bd:80:f1:20:e0:15:ee:75:82:3e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

23/12/2013, 00:00

Not After

22/12/2016, 23:59

Subject

CN=Oracle Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=VirtualBox,O=Oracle Corporation,L=Redwood Shores,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:da:c0:e5:de:9a:96:a5:13:21:09:0d:b2:7e:0b:a1:e1:f7:92:ec
Certificate

Issuer

CN=VirtualBox for Legacy Windows Only Timestamp CA SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Not Before

01/01/2014, 00:00

Not After

31/12/2014, 23:59

Subject

CN=VirtualBox for Legacy Windows Only Timestamp Kludge 2014 SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:52:65:06:cc:82:88:11:7d:a6:be:d3:a5:ab:ec:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/02/2021, 00:00

Not After

16/04/2024, 23:59

Subject

CN=Oracle Corporation,OU=VirtualBox,O=Oracle Corporation,L=Redwood City,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9b:21:6c:54:89:4f:a2:38:ed:28:a4:0b:2c:84:79:c1:8e:6a:bd:70:5e:9c:a4:f5:a9:02:95:eb:eb:46:18:e7
Signer

Actual PE Digest

9b:21:6c:54:89:4f:a2:38:ed:28:a4:0b:2c:84:79:c1:8e:6a:bd:70:5e:9c:a4:f5:a9:02:95:eb:eb:46:18:e7

Digest Algorithm

sha256

PE Digest Matches

true

f6:f0:ae:2d:9b:62:7d:bc:3c:a1:d3:94:80:34:cc:5b:84:98:40:c7
Signer

Actual PE Digest

f6:f0:ae:2d:9b:62:7d:bc:3c:a1:d3:94:80:34:cc:5b:84:98:40:c7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\tinderboxa\win-7.0\out\win.amd64\release\obj\VBoxDbg\VBoxDbg.pdb

Imports

vboxrt

RTLogRelGetDefaultInstanceEx
RTLogLoggerEx
g_aRTUniUpperRanges
g_aRTUniLowerRanges
RTMemDupExTag
RTUtf16GetCpExInternal
RTUtf16ToUtf8ExTag
RTUtf16Len
RTStrNLen
RTStrFormatV
RTStrGetCpExInternal
RTStrToUtf16ExTag
RTStrCalcUtf16LenEx
RTMemDupTag
RTMemAllocZTag
RTStrSimplePatternMultiMatch
RTLogPrintf
RTLogRelPrintf
?toUInt32@RTCString@@QEBAIXZ
?strip@RTCString@@QEAAAEAV1@XZ
??1RTCString@@UEAA@XZ
??0RTCString@@QEAA@XZ
RTStrPrintf
RTMemReallocTag
RTSemEventWait
RTSemEventSignal
RTSemEventDestroy
RTSemEventCreate
RTCritSectDelete
RTCritSectLeave
RTCritSectEnter
RTCritSectInit
RTThreadWait
RTThreadCreate
ASMAtomicXchgU8
RTThreadNativeSelf
RTMemFree
RTMemAllocTag

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__std_exception_copy
__C_specific_handler
__std_exception_destroy
__std_type_info_destroy_list
__std_terminate
memcpy
memmove
strchr
memcmp
memset
_CxxThrowException

qt5corevbox

?activate@QMetaObject@@SAXPEAVQObject@@PEBU1@HPEAPEAX@Z
?staticMetaObject@QObject@@2UQMetaObject@@B
?qt_metacall@QObject@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QObject@@UEAAPEAXPEBD@Z
?dynamicMetaObject@QObjectData@@QEBAPEAUQMetaObject@@XZ
?supportedDropActions@QAbstractItemModel@@UEBA?AV?$QFlags@W4DropAction@Qt@@@@XZ
?supportedDragActions@QAbstractItemModel@@UEBA?AV?$QFlags@W4DropAction@Qt@@@@XZ
?submit@QAbstractItemModel@@UEAA_NXZ
?span@QAbstractItemModel@@UEBA?AVQSize@@AEBVQModelIndex@@@Z
?sort@QAbstractItemModel@@UEAAXHW4SortOrder@Qt@@@Z
?sibling@QAbstractItemModel@@UEBA?AVQModelIndex@@HHAEBV2@@Z
??0QString@@QEAA@XZ
??1QString@@QEAA@XZ
??0QString@@QEAA@$$QEAV0@@Z
??4QString@@QEAAAEAV0@$$QEAV0@@Z
?fromUtf16@QString@@SA?AV1@PEBGH@Z
??1Connection@QMetaObject@@QEAA@XZ
??0QObject@@QEAA@PEAV0@@Z
??1QObject@@UEAA@XZ
?connect@QObject@@SA?AVConnection@QMetaObject@@PEBV1@PEBD01W4ConnectionType@Qt@@@Z
??0QRect@@QEAA@HHHH@Z
?x@QRect@@QEBAHXZ
?y@QRect@@QEBAHXZ
?width@QRect@@QEBAHXZ
?height@QRect@@QEBAHXZ
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?connectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?disconnectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?event@QObject@@UEAA_NPEAVQEvent@@@Z
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
??0QChar@@QEAA@UQLatin1Char@@@Z
??1QByteArray@@QEAA@XZ
?constData@QByteArray@@QEBAPEBDXZ
?arg@QString@@QEBA?AV1@AEBV1@HVQChar@@@Z
?toUtf8@QString@@QEGBA?AVQByteArray@@XZ
?fromAscii_helper@QString@@CAPEAU?$QTypedArrayData@G@@PEBDH@Z
?installEventFilter@QObject@@QEAAXPEAV1@@Z
?parent@QObject@@QEBAPEAV1@XZ
??0QSize@@QEAA@HH@Z
?width@QSize@@QEBAHXZ
?height@QSize@@QEBAHXZ
??0QString@@QEAA@AEBV0@@Z
?append@QString@@QEAAAEAV1@AEBV1@@Z
?fromUtf8@QString@@SA?AV1@PEBDH@Z
??8@YA_NAEBVQString@@0@Z
?isNull@QString@@QEBA_NXZ
?cast@QMetaObject@@QEBAPEAVQObject@@PEAV2@@Z
?tr@QMetaObject@@QEBA?AVQString@@PEBD0H@Z
?sender@QObject@@IEBAPEAV1@XZ
?setWidth@QSize@@QEAAXH@Z
?setHeight@QSize@@QEAAXH@Z
??0QVariant@@QEAA@XZ
??1QVariant@@QEAA@XZ
??0QVariant@@QEAA@H@Z
??0QVariant@@QEAA@I@Z
?toInt@QVariant@@QEBAHPEA_N@Z
?toUInt@QVariant@@QEBAIPEA_N@Z
??0QTimer@@QEAA@PEAVQObject@@@Z
??1QTimer@@UEAA@XZ
?start@QTimer@@QEAAXH@Z
??0QEvent@@QEAA@W4Type@0@@Z
??1QEvent@@UEAA@XZ
?postEvent@QCoreApplication@@SAXPEAVQObject@@PEAVQEvent@@H@Z
?metaObject@QTimer@@UEBAPEBUQMetaObject@@XZ
?qt_metacall@QTimer@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QTimer@@UEAAPEAXPEBD@Z
?timerEvent@QTimer@@MEAAXPEAVQTimerEvent@@@Z
?deallocate@QArrayData@@SAXPEAU1@_K1@Z
?sharedNull@QArrayData@@SAPEAU1@XZ
??4QString@@QEAAAEAV0@AEBV0@@Z
??YQString@@QEAAAEAV0@PEBD@Z
??8QString@@QEBA_NPEBD@Z
?dispose@QListData@@SAXPEAUData@1@@Z
?isEmpty@QListData@@QEBA_NXZ
?at@QListData@@QEBAPEAPEAXH@Z
??0QVariant@@QEAA@AEBVQString@@@Z
??0QModelIndex@@QEAA@XZ
?column@QModelIndex@@QEBAHXZ
?internalPointer@QModelIndex@@QEBAPEAXXZ
?model@QModelIndex@@QEBAPEBVQAbstractItemModel@@XZ
?isValid@QModelIndex@@QEBA_NXZ
??8QModelIndex@@QEBA_NAEBV0@@Z
?tr@QAbstractItemModel@@SA?AVQString@@PEBD0H@Z
??0QAbstractItemModel@@QEAA@PEAVQObject@@@Z
??1QAbstractItemModel@@UEAA@XZ
?flags@QAbstractItemModel@@UEBA?AV?$QFlags@W4ItemFlag@Qt@@@@AEBVQModelIndex@@@Z
?dataChanged@QAbstractItemModel@@QEAAXAEBVQModelIndex@@0AEBV?$QVector@H@@@Z
?createIndex@QAbstractItemModel@@IEBA?AVQModelIndex@@HHPEAX@Z
?beginInsertRows@QAbstractItemModel@@IEAAXAEBVQModelIndex@@HH@Z
?endInsertRows@QAbstractItemModel@@IEAAXXZ
?beginRemoveRows@QAbstractItemModel@@IEAAXAEBVQModelIndex@@HH@Z
?endRemoveRows@QAbstractItemModel@@IEAAXXZ
?beginResetModel@QAbstractItemModel@@IEAAXXZ
?endResetModel@QAbstractItemModel@@IEAAXXZ
?stop@QTimer@@QEAAXXZ
?buddy@QAbstractItemModel@@UEBA?AVQModelIndex@@AEBV2@@Z
?canDropMimeData@QAbstractItemModel@@UEBA_NPEBVQMimeData@@W4DropAction@Qt@@HHAEBVQModelIndex@@@Z
?canFetchMore@QAbstractItemModel@@UEBA_NAEBVQModelIndex@@@Z
?dropMimeData@QAbstractItemModel@@UEAA_NPEBVQMimeData@@W4DropAction@Qt@@HHAEBVQModelIndex@@@Z
?fetchMore@QAbstractItemModel@@UEAAXAEBVQModelIndex@@@Z
?insertColumns@QAbstractItemModel@@UEAA_NHHAEBVQModelIndex@@@Z
?insertRows@QAbstractItemModel@@UEAA_NHHAEBVQModelIndex@@@Z
?itemData@QAbstractItemModel@@UEBA?AV?$QMap@HVQVariant@@@@AEBVQModelIndex@@@Z
?match@QAbstractItemModel@@UEBA?AV?$QList@VQModelIndex@@@@AEBVQModelIndex@@HAEBVQVariant@@HV?$QFlags@W4MatchFlag@Qt@@@@@Z
?metaObject@QAbstractItemModel@@UEBAPEBUQMetaObject@@XZ
?mimeData@QAbstractItemModel@@UEBAPEAVQMimeData@@AEBV?$QList@VQModelIndex@@@@@Z
?mimeTypes@QAbstractItemModel@@UEBA?AVQStringList@@XZ
?moveColumns@QAbstractItemModel@@UEAA_NAEBVQModelIndex@@HH0H@Z
?moveRows@QAbstractItemModel@@UEAA_NAEBVQModelIndex@@HH0H@Z
?qt_metacall@QAbstractItemModel@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QAbstractItemModel@@UEAAPEAXPEBD@Z
?removeColumns@QAbstractItemModel@@UEAA_NHHAEBVQModelIndex@@@Z
?removeRows@QAbstractItemModel@@UEAA_NHHAEBVQModelIndex@@@Z
?revert@QAbstractItemModel@@UEAAXXZ
?roleNames@QAbstractItemModel@@UEBA?AV?$QHash@HVQByteArray@@@@XZ
?setData@QAbstractItemModel@@UEAA_NAEBVQModelIndex@@AEBVQVariant@@H@Z
?setHeaderData@QAbstractItemModel@@UEAA_NHW4Orientation@Qt@@AEBVQVariant@@H@Z
?setItemData@QAbstractItemModel@@UEAA_NAEBVQModelIndex@@AEBV?$QMap@HVQVariant@@@@@Z

qt5guivbox

?clipboard@QGuiApplication@@SAPEAVQClipboard@@XZ
?setText@QClipboard@@QEAAXAEBVQString@@W4Mode@1@@Z
??0QKeySequence@@QEAA@W4StandardKey@0@@Z
?modifiers@QKeyEvent@@QEBA?AV?$QFlags@W4KeyboardModifier@Qt@@@@XZ
??1QIcon@@QEAA@XZ
??0QIcon@@QEAA@XZ
?atEnd@QTextCursor@@QEBA_NXZ
?clearSelection@QTextCursor@@QEAAXXZ
?hasSelection@QTextCursor@@QEBA_NXZ
?movePosition@QTextCursor@@QEAA_NW4MoveOperation@1@W4MoveMode@1@H@Z
?setStyleHint@QFont@@QEAAXW4StyleHint@1@W4StyleStrategy@1@@Z
?availableGeometry@QScreen@@QEBA?AVQRect@@XZ
?screenAt@QGuiApplication@@SAPEAVQScreen@@AEBVQPoint@@@Z
??0QFont@@QEAA@AEBV0@@Z
??1QFont@@QEAA@XZ
?setFamily@QFont@@QEAAXAEBVQString@@@Z
?pointSize@QFont@@QEBAHXZ
?setPointSize@QFont@@QEAAXH@Z
??1QTextCursor@@QEAA@XZ
?setStyleStrategy@QFont@@QEAAXW4StyleStrategy@1@@Z
??0QKeySequence@@QEAA@AEBVQString@@W4SequenceFormat@0@@Z
??0QKeySequence@@QEAA@HHHH@Z
??1QKeySequence@@QEAA@XZ
?setUndoRedoEnabled@QTextDocument@@QEAAX_N@Z
??0QTextCursor@@QEAA@AEBV0@@Z
?insertText@QTextCursor@@QEAAXAEBVQString@@@Z

qt5widgetsvbox

?staticMetaObject@QTreeView@@2UQMetaObject@@B
?qt_metacall@QTreeView@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QTreeView@@UEAAPEAXPEBD@Z
?staticMetaObject@QComboBox@@2UQMetaObject@@B
?staticMetaObject@QTextEdit@@2UQMetaObject@@B
?staticMetaObject@QWidget@@2UQMetaObject@@B
?qt_metacall@QTextEdit@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QTextEdit@@UEAAPEAXPEBD@Z
?wheelEvent@QMenu@@MEAAXPEAVQWheelEvent@@@Z
?wheelEvent@QAbstractSpinBox@@MEAAXPEAVQWheelEvent@@@Z
?wheelEvent@QAbstractScrollArea@@MEAAXPEAVQWheelEvent@@@Z
??0QWidget@@QEAA@PEAV0@V?$QFlags@W4WindowType@Qt@@@@@Z
??1QWidget@@UEAA@XZ
?frameSize@QWidget@@QEBA?AVQSize@@XZ
?size@QWidget@@QEBA?AVQSize@@XZ
?setWindowTitle@QWidget@@QEAAXAEBVQString@@@Z
?windowTitle@QWidget@@QEBA?AVQString@@XZ
?show@QWidget@@QEAAXXZ
?move@QWidget@@QEAAXAEBVQPoint@@@Z
?resize@QWidget@@QEAAXHH@Z
?windowState@QWidget@@QEBA?AV?$QFlags@W4WindowState@Qt@@@@XZ
?setWindowState@QWidget@@QEAAXV?$QFlags@W4WindowState@Qt@@@@@Z
?parentWidget@QWidget@@QEBAPEAV1@XZ
?event@QWidget@@MEAA_NPEAVQEvent@@@Z
?actionEvent@QWidget@@MEAAXPEAVQActionEvent@@@Z
?changeEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?closeEvent@QWidget@@MEAAXPEAVQCloseEvent@@@Z
?contextMenuEvent@QWidget@@MEAAXPEAVQContextMenuEvent@@@Z
?devType@QWidget@@UEBAHXZ
?dragEnterEvent@QWidget@@MEAAXPEAVQDragEnterEvent@@@Z
?dragLeaveEvent@QWidget@@MEAAXPEAVQDragLeaveEvent@@@Z
?dragMoveEvent@QWidget@@MEAAXPEAVQDragMoveEvent@@@Z
?dropEvent@QWidget@@MEAAXPEAVQDropEvent@@@Z
?enterEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?focusInEvent@QWidget@@MEAAXPEAVQFocusEvent@@@Z
?focusNextPrevChild@QWidget@@MEAA_N_N@Z
?focusOutEvent@QWidget@@MEAAXPEAVQFocusEvent@@@Z
?hasHeightForWidth@QWidget@@UEBA_NXZ
?heightForWidth@QWidget@@UEBAHH@Z
?hideEvent@QWidget@@MEAAXPEAVQHideEvent@@@Z
?initPainter@QWidget@@MEBAXPEAVQPainter@@@Z
?inputMethodEvent@QWidget@@MEAAXPEAVQInputMethodEvent@@@Z
?inputMethodQuery@QWidget@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?keyPressEvent@QWidget@@MEAAXPEAVQKeyEvent@@@Z
?keyReleaseEvent@QWidget@@MEAAXPEAVQKeyEvent@@@Z
?leaveEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?metaObject@QWidget@@UEBAPEBUQMetaObject@@XZ
?metric@QWidget@@MEBAHW4PaintDeviceMetric@QPaintDevice@@@Z
?minimumSizeHint@QWidget@@UEBA?AVQSize@@XZ
?mouseDoubleClickEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?moveEvent@QWidget@@MEAAXPEAVQMoveEvent@@@Z
?nativeEvent@QWidget@@MEAA_NAEBVQByteArray@@PEAXPEAJ@Z
?paintEngine@QWidget@@UEBAPEAVQPaintEngine@@XZ
?paintEvent@QWidget@@MEAAXPEAVQPaintEvent@@@Z
?qt_metacall@QWidget@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QWidget@@UEAAPEAXPEBD@Z
?redirected@QWidget@@MEBAPEAVQPaintDevice@@PEAVQPoint@@@Z
?resizeEvent@QWidget@@MEAAXPEAVQResizeEvent@@@Z
?setVisible@QWidget@@UEAAX_N@Z
?sharedPainter@QWidget@@MEBAPEAVQPainter@@XZ
?showEvent@QWidget@@MEAAXPEAVQShowEvent@@@Z
?sizeHint@QWidget@@UEBA?AVQSize@@XZ
?tabletEvent@QWidget@@MEAAXPEAVQTabletEvent@@@Z
?wheelEvent@QWidget@@MEAAXPEAVQWheelEvent@@@Z
?setEnabled@QWidget@@QEAAX_N@Z
?setMaximumSize@QWidget@@QEAAXAEBVQSize@@@Z
?setFont@QWidget@@QEAAXAEBVQFont@@@Z
?setStyleSheet@QWidget@@QEAAXAEBVQString@@@Z
?setFocus@QWidget@@QEAAXW4FocusReason@Qt@@@Z
?hasFocus@QWidget@@QEBA_NXZ
?setTabOrder@QWidget@@SAXPEAV1@0@Z
?close@QWidget@@QEAA_NXZ
?resize@QWidget@@QEAAXAEBVQSize@@@Z
?setLayout@QWidget@@QEAAXPEAVQLayout@@@Z
?addAction@QWidget@@QEAAXPEAVQAction@@@Z
?setAttribute@QWidget@@QEAAXW4WidgetAttribute@Qt@@_N@Z
??0QTextEdit@@QEAA@PEAVQWidget@@@Z
??1QTextEdit@@UEAA@XZ
?document@QTextEdit@@QEBAPEAVQTextDocument@@XZ
?setTextCursor@QTextEdit@@QEAAXAEBVQTextCursor@@@Z
?textCursor@QTextEdit@@QEBA?AVQTextCursor@@XZ
?setReadOnly@QTextEdit@@QEAAX_N@Z
?setTextInteractionFlags@QTextEdit@@QEAAXV?$QFlags@W4TextInteractionFlag@Qt@@@@@Z
?setAutoFormatting@QTextEdit@@QEAAXV?$QFlags@W4AutoFormattingFlag@QTextEdit@@@@@Z
?setTabChangesFocus@QTextEdit@@QEAAX_N@Z
?ensureCursorVisible@QTextEdit@@QEAAXXZ
?createStandardContextMenu@QTextEdit@@QEAAPEAVQMenu@@XZ
?setOverwriteMode@QTextEdit@@QEAAX_N@Z
?setAcceptRichText@QTextEdit@@QEAAX_N@Z
?setPlainText@QTextEdit@@QEAAXAEBVQString@@@Z
??0QComboBox@@QEAA@PEAVQWidget@@@Z
??1QComboBox@@UEAA@XZ
?count@QComboBox@@QEBAHXZ
?setMaxCount@QComboBox@@QEAAXH@Z
?maxCount@QComboBox@@QEBAHXZ
?setDuplicatesEnabled@QComboBox@@QEAAX_N@Z
?setInsertPolicy@QComboBox@@QEAAXW4InsertPolicy@1@@Z
?setEditable@QComboBox@@QEAAX_N@Z
?setLineEdit@QComboBox@@QEAAXPEAVQLineEdit@@@Z
?lineEdit@QComboBox@@QEBAPEAVQLineEdit@@XZ
?setCompleter@QComboBox@@QEAAXPEAVQCompleter@@@Z
?currentText@QComboBox@@QEBA?AVQString@@XZ
?itemText@QComboBox@@QEBA?AVQString@@H@Z
?insertItem@QComboBox@@QEAAXHAEBVQIcon@@AEBVQString@@AEBVQVariant@@@Z
?removeItem@QComboBox@@QEAAXH@Z
?setCurrentIndex@QComboBox@@QEAAXH@Z
??0QAction@@QEAA@AEBVQString@@PEAVQObject@@@Z
??1QAction@@UEAA@XZ
?setShortcut@QAction@@QEAAXAEBVQKeySequence@@@Z
?setCheckable@QAction@@QEAAX_N@Z
?data@QAction@@QEBA?AVQVariant@@XZ
?setData@QAction@@QEAAXAEBVQVariant@@@Z
?isChecked@QAction@@QEBA_NXZ
?setChecked@QAction@@QEAAX_N@Z
??0QActionGroup@@QEAA@PEAVQObject@@@Z
??1QActionGroup@@UEAA@XZ
?addAction@QActionGroup@@QEAAPEAVQAction@@PEAV2@@Z
?setExclusive@QActionGroup@@QEAAX_N@Z
?addMenu@QMenu@@QEAAPEAV1@AEBVQString@@@Z
?addSeparator@QMenu@@QEAAPEAVQAction@@XZ
?exec@QMenu@@QEAAPEAVQAction@@AEBVQPoint@@PEAV2@@Z
??0QLabel@@QEAA@AEBVQString@@PEAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z
??1QLabel@@UEAA@XZ
?setAlignment@QLabel@@QEAAXV?$QFlags@W4AlignmentFlag@Qt@@@@@Z
?setContentsMargins@QLayout@@QEAAXHHHH@Z
?addWidget@QBoxLayout@@QEAAXPEAVQWidget@@HV?$QFlags@W4AlignmentFlag@Qt@@@@@Z
?setSpacing@QBoxLayout@@QEAAXH@Z
??0QHBoxLayout@@QEAA@XZ
??1QHBoxLayout@@UEAA@XZ
??0QVBoxLayout@@QEAA@XZ
??1QVBoxLayout@@UEAA@XZ
?addItem@QBoxLayout@@UEAAXPEAVQLayoutItem@@@Z
?canInsertFromMimeData@QTextEdit@@MEBA_NPEBVQMimeData@@@Z
?changeEvent@QComboBox@@MEAAXPEAVQEvent@@@Z
?changeEvent@QLabel@@MEAAXPEAVQEvent@@@Z
?changeEvent@QTextEdit@@MEAAXPEAVQEvent@@@Z
?childEvent@QLayout@@MEAAXPEAVQChildEvent@@@Z
?contextMenuEvent@QComboBox@@MEAAXPEAVQContextMenuEvent@@@Z
?contextMenuEvent@QLabel@@MEAAXPEAVQContextMenuEvent@@@Z
?controlTypes@QLayout@@UEBA?AV?$QFlags@W4ControlType@QSizePolicy@@@@XZ
?count@QBoxLayout@@UEBAHXZ
?createMimeDataFromSelection@QTextEdit@@MEBAPEAVQMimeData@@XZ
?doSetTextCursor@QTextEdit@@MEAAXAEBVQTextCursor@@@Z
?dragEnterEvent@QTextEdit@@MEAAXPEAVQDragEnterEvent@@@Z
?dragLeaveEvent@QTextEdit@@MEAAXPEAVQDragLeaveEvent@@@Z
?dragMoveEvent@QTextEdit@@MEAAXPEAVQDragMoveEvent@@@Z
?dropEvent@QTextEdit@@MEAAXPEAVQDropEvent@@@Z
?event@QAction@@MEAA_NPEAVQEvent@@@Z
?event@QComboBox@@UEAA_NPEAVQEvent@@@Z
?event@QLabel@@MEAA_NPEAVQEvent@@@Z
?event@QTextEdit@@MEAA_NPEAVQEvent@@@Z
?eventFilter@QAbstractScrollArea@@MEAA_NPEAVQObject@@PEAVQEvent@@@Z
?expandingDirections@QBoxLayout@@UEBA?AV?$QFlags@W4Orientation@Qt@@@@XZ
?focusInEvent@QComboBox@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QLabel@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QTextEdit@@MEAAXPEAVQFocusEvent@@@Z
?focusNextPrevChild@QLabel@@MEAA_N_N@Z
?focusNextPrevChild@QTextEdit@@MEAA_N_N@Z
?focusOutEvent@QComboBox@@MEAAXPEAVQFocusEvent@@@Z
?visualRegionForSelection@QTreeView@@MEBA?AVQRegion@@AEBVQItemSelection@@@Z
?focusOutEvent@QTextEdit@@MEAAXPEAVQFocusEvent@@@Z
?geometry@QLayout@@UEBA?AVQRect@@XZ
?hasHeightForWidth@QBoxLayout@@UEBA_NXZ
?heightForWidth@QBoxLayout@@UEBAHH@Z
?heightForWidth@QLabel@@UEBAHH@Z
?hideEvent@QComboBox@@MEAAXPEAVQHideEvent@@@Z
?hidePopup@QComboBox@@UEAAXXZ
?indexOf@QLayout@@UEBAHPEAVQWidget@@@Z
?inputMethodEvent@QComboBox@@MEAAXPEAVQInputMethodEvent@@@Z
?inputMethodEvent@QTextEdit@@MEAAXPEAVQInputMethodEvent@@@Z
?inputMethodQuery@QComboBox@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodQuery@QTextEdit@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?insertFromMimeData@QTextEdit@@MEAAXPEBVQMimeData@@@Z
?invalidate@QBoxLayout@@UEAAXXZ
?isEmpty@QLayout@@UEBA_NXZ
?itemAt@QBoxLayout@@UEBAPEAVQLayoutItem@@H@Z
?keyPressEvent@QComboBox@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QLabel@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QTextEdit@@MEAAXPEAVQKeyEvent@@@Z
?keyReleaseEvent@QComboBox@@MEAAXPEAVQKeyEvent@@@Z
?keyReleaseEvent@QTextEdit@@MEAAXPEAVQKeyEvent@@@Z
?layout@QLayout@@UEAAPEAV1@XZ
?loadResource@QTextEdit@@UEAA?AVQVariant@@HAEBVQUrl@@@Z
?maximumSize@QBoxLayout@@UEBA?AVQSize@@XZ
?metaObject@QAction@@UEBAPEBUQMetaObject@@XZ
?metaObject@QActionGroup@@UEBAPEBUQMetaObject@@XZ
?metaObject@QHBoxLayout@@UEBAPEBUQMetaObject@@XZ
?metaObject@QLabel@@UEBAPEBUQMetaObject@@XZ
?metaObject@QVBoxLayout@@UEBAPEBUQMetaObject@@XZ
?minimumHeightForWidth@QBoxLayout@@UEBAHH@Z
?minimumSize@QBoxLayout@@UEBA?AVQSize@@XZ
?minimumSizeHint@QAbstractScrollArea@@UEBA?AVQSize@@XZ
?minimumSizeHint@QComboBox@@UEBA?AVQSize@@XZ
?minimumSizeHint@QLabel@@UEBA?AVQSize@@XZ
?mouseDoubleClickEvent@QTextEdit@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QLabel@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QTextEdit@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QComboBox@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QLabel@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QTextEdit@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QComboBox@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QLabel@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QTextEdit@@MEAAXPEAVQMouseEvent@@@Z
?paintEvent@QComboBox@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QLabel@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QTextEdit@@MEAAXPEAVQPaintEvent@@@Z
?qt_metacall@QAction@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QActionGroup@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QHBoxLayout@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QLabel@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QVBoxLayout@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QAction@@UEAAPEAXPEBD@Z
?qt_metacast@QActionGroup@@UEAAPEAXPEBD@Z
?qt_metacast@QHBoxLayout@@UEAAPEAXPEBD@Z
?qt_metacast@QLabel@@UEAAPEAXPEBD@Z
?qt_metacast@QVBoxLayout@@UEAAPEAXPEBD@Z
?resizeEvent@QComboBox@@MEAAXPEAVQResizeEvent@@@Z
?resizeEvent@QTextEdit@@MEAAXPEAVQResizeEvent@@@Z
?scrollContentsBy@QTextEdit@@MEAAXHH@Z
?setGeometry@QBoxLayout@@UEAAXAEBVQRect@@@Z
?setupViewport@QAbstractScrollArea@@UEAAXPEAVQWidget@@@Z
?showEvent@QComboBox@@MEAAXPEAVQShowEvent@@@Z
?showEvent@QTextEdit@@MEAAXPEAVQShowEvent@@@Z
?showPopup@QComboBox@@UEAAXXZ
?sizeHint@QAbstractScrollArea@@UEBA?AVQSize@@XZ
?sizeHint@QBoxLayout@@UEBA?AVQSize@@XZ
?sizeHint@QComboBox@@UEBA?AVQSize@@XZ
?sizeHint@QLabel@@UEBA?AVQSize@@XZ
?spacerItem@QLayoutItem@@UEAAPEAVQSpacerItem@@XZ
?takeAt@QBoxLayout@@UEAAPEAVQLayoutItem@@H@Z
?timerEvent@QTextEdit@@MEAAXPEAVQTimerEvent@@@Z
?viewportEvent@QAbstractScrollArea@@MEAA_NPEAVQEvent@@@Z
?viewportSizeHint@QAbstractScrollArea@@MEBA?AVQSize@@XZ
?wheelEvent@QComboBox@@MEAAXPEAVQWheelEvent@@@Z
?wheelEvent@QTextEdit@@MEAAXPEAVQWheelEvent@@@Z
?widget@QLayoutItem@@UEAAPEAVQWidget@@XZ
?staticMetaObject@QAction@@2UQMetaObject@@B
?mapToGlobal@QWidget@@QEBA?AVQPoint@@AEBV2@@Z
?setContextMenuPolicy@QWidget@@QEAAXW4ContextMenuPolicy@Qt@@@Z
?setButtonSymbols@QAbstractSpinBox@@QEAAXW4ButtonSymbols@1@@Z
?setWrapping@QAbstractSpinBox@@QEAAX_N@Z
?setSelectionMode@QAbstractItemView@@QEAAXW4SelectionMode@1@@Z
?setSelectionBehavior@QAbstractItemView@@QEAAXW4SelectionBehavior@1@@Z
?currentIndex@QAbstractItemView@@QEBA?AVQModelIndex@@XZ
?setAlternatingRowColors@QAbstractItemView@@QEAAX_N@Z
?setCurrentIndex@QAbstractItemView@@QEAAXAEBVQModelIndex@@@Z
??0QTreeView@@QEAA@PEAVQWidget@@@Z
??1QTreeView@@UEAA@XZ
?setModel@QTreeView@@UEAAXPEAVQAbstractItemModel@@@Z
?setRootIndex@QTreeView@@UEAAXAEBVQModelIndex@@@Z
?header@QTreeView@@QEBAPEAVQHeaderView@@XZ
?setRootIsDecorated@QTreeView@@QEAAX_N@Z
?setItemsExpandable@QTreeView@@QEAAX_N@Z
?columnWidth@QTreeView@@QEBAHH@Z
?setColumnWidth@QTreeView@@QEAAXHH@Z
?isExpanded@QTreeView@@QEBA_NAEBVQModelIndex@@@Z
?setExpanded@QTreeView@@QEAAXAEBVQModelIndex@@_N@Z
?resizeColumnToContents@QTreeView@@QEAAXH@Z
?expandAll@QTreeView@@QEAAXXZ
?collapseAll@QTreeView@@QEAAXXZ
?setEnabled@QAction@@QEAAX_N@Z
??0QMenu@@QEAA@PEAVQWidget@@@Z
??1QMenu@@UEAA@XZ
??0QPushButton@@QEAA@AEBVQString@@PEAVQWidget@@@Z
??1QPushButton@@UEAA@XZ
??0QSpinBox@@QEAA@PEAVQWidget@@@Z
??1QSpinBox@@UEAA@XZ
?setSuffix@QSpinBox@@QEAAXAEBVQString@@@Z
?setSingleStep@QSpinBox@@QEAAXH@Z
?setMinimum@QSpinBox@@QEAAXH@Z
?setMaximum@QSpinBox@@QEAAXH@Z
?setValue@QSpinBox@@QEAAXH@Z
?actionEvent@QMenu@@MEAAXPEAVQActionEvent@@@Z
?changeEvent@QAbstractButton@@MEAAXPEAVQEvent@@@Z
?changeEvent@QAbstractSpinBox@@MEAAXPEAVQEvent@@@Z
?changeEvent@QFrame@@MEAAXPEAVQEvent@@@Z
?changeEvent@QMenu@@MEAAXPEAVQEvent@@@Z
?checkStateSet@QAbstractButton@@MEAAXXZ
?clear@QAbstractSpinBox@@UEAAXXZ
?closeEditor@QAbstractItemView@@MEAAXPEAVQWidget@@W4EndEditHint@QAbstractItemDelegate@@@Z
?closeEvent@QAbstractSpinBox@@MEAAXPEAVQCloseEvent@@@Z
?commitData@QAbstractItemView@@MEAAXPEAVQWidget@@@Z
?contextMenuEvent@QAbstractSpinBox@@MEAAXPEAVQContextMenuEvent@@@Z
?currentChanged@QTreeView@@MEAAXAEBVQModelIndex@@0@Z
?dataChanged@QTreeView@@UEAAXAEBVQModelIndex@@0AEBV?$QVector@H@@@Z
?doItemsLayout@QTreeView@@UEAAXXZ
?dragEnterEvent@QAbstractItemView@@MEAAXPEAVQDragEnterEvent@@@Z
?dragLeaveEvent@QAbstractItemView@@MEAAXPEAVQDragLeaveEvent@@@Z
?dragMoveEvent@QTreeView@@MEAAXPEAVQDragMoveEvent@@@Z
?drawBranches@QTreeView@@MEBAXPEAVQPainter@@AEBVQRect@@AEBVQModelIndex@@@Z
?drawRow@QTreeView@@MEBAXPEAVQPainter@@AEBVQStyleOptionViewItem@@AEBVQModelIndex@@@Z
?dropEvent@QAbstractItemView@@MEAAXPEAVQDropEvent@@@Z
?edit@QAbstractItemView@@MEAA_NAEBVQModelIndex@@W4EditTrigger@1@PEAVQEvent@@@Z
?editorDestroyed@QAbstractItemView@@MEAAXPEAVQObject@@@Z
?enterEvent@QMenu@@MEAAXPEAVQEvent@@@Z
?event@QAbstractItemView@@MEAA_NPEAVQEvent@@@Z
?event@QMenu@@MEAA_NPEAVQEvent@@@Z
?event@QPushButton@@MEAA_NPEAVQEvent@@@Z
?event@QSpinBox@@MEAA_NPEAVQEvent@@@Z
?eventFilter@QAbstractItemView@@MEAA_NPEAVQObject@@PEAVQEvent@@@Z
?fixup@QSpinBox@@MEBAXAEAVQString@@@Z
?focusInEvent@QAbstractItemView@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QAbstractSpinBox@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QPushButton@@MEAAXPEAVQFocusEvent@@@Z
?focusNextPrevChild@QAbstractItemView@@MEAA_N_N@Z
?focusNextPrevChild@QMenu@@MEAA_N_N@Z
?focusOutEvent@QAbstractItemView@@MEAAXPEAVQFocusEvent@@@Z
?focusOutEvent@QAbstractSpinBox@@MEAAXPEAVQFocusEvent@@@Z
?focusOutEvent@QPushButton@@MEAAXPEAVQFocusEvent@@@Z
?hideEvent@QAbstractSpinBox@@MEAAXPEAVQHideEvent@@@Z
?hideEvent@QMenu@@MEAAXPEAVQHideEvent@@@Z
?hitButton@QPushButton@@MEBA_NAEBVQPoint@@@Z
?horizontalOffset@QTreeView@@MEBAHXZ
?horizontalScrollbarAction@QTreeView@@MEAAXH@Z
?horizontalScrollbarValueChanged@QAbstractItemView@@MEAAXH@Z
?indexAt@QTreeView@@UEBA?AVQModelIndex@@AEBVQPoint@@@Z
?inputMethodEvent@QAbstractItemView@@MEAAXPEAVQInputMethodEvent@@@Z
?inputMethodQuery@QAbstractItemView@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodQuery@QAbstractSpinBox@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?isIndexHidden@QTreeView@@MEBA_NAEBVQModelIndex@@@Z
?keyPressEvent@QAbstractSpinBox@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QMenu@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QPushButton@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QTreeView@@MEAAXPEAVQKeyEvent@@@Z
?keyReleaseEvent@QAbstractButton@@MEAAXPEAVQKeyEvent@@@Z
?keyReleaseEvent@QAbstractSpinBox@@MEAAXPEAVQKeyEvent@@@Z
?keyboardSearch@QTreeView@@UEAAXAEBVQString@@@Z
?leaveEvent@QMenu@@MEAAXPEAVQEvent@@@Z
?metaObject@QComboBox@@UEBAPEBUQMetaObject@@XZ
?metaObject@QMenu@@UEBAPEBUQMetaObject@@XZ
?metaObject@QPushButton@@UEBAPEBUQMetaObject@@XZ
?metaObject@QSpinBox@@UEBAPEBUQMetaObject@@XZ
?minimumSizeHint@QAbstractSpinBox@@UEBA?AVQSize@@XZ
?minimumSizeHint@QPushButton@@UEBA?AVQSize@@XZ
?mouseDoubleClickEvent@QTreeView@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QAbstractButton@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QAbstractSpinBox@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QMenu@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QTreeView@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QAbstractButton@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QAbstractSpinBox@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QMenu@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QTreeView@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QAbstractButton@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QAbstractSpinBox@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QMenu@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QTreeView@@MEAAXPEAVQMouseEvent@@@Z
?moveCursor@QTreeView@@MEAA?AVQModelIndex@@W4CursorAction@QAbstractItemView@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z
?nextCheckState@QAbstractButton@@MEAAXXZ
?paintEvent@QAbstractSpinBox@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QMenu@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QPushButton@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QTreeView@@MEAAXPEAVQPaintEvent@@@Z
?qt_metacall@QComboBox@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QMenu@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QPushButton@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QSpinBox@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QComboBox@@UEAAPEAXPEBD@Z
?qt_metacast@QMenu@@UEAAPEAXPEBD@Z
?qt_metacast@QPushButton@@UEAAPEAXPEBD@Z
?qt_metacast@QSpinBox@@UEAAPEAXPEBD@Z
?reset@QTreeView@@UEAAXXZ
?resizeEvent@QAbstractItemView@@MEAAXPEAVQResizeEvent@@@Z
?resizeEvent@QAbstractSpinBox@@MEAAXPEAVQResizeEvent@@@Z
?rowsAboutToBeRemoved@QTreeView@@MEAAXAEBVQModelIndex@@HH@Z
?rowsInserted@QTreeView@@MEAAXAEBVQModelIndex@@HH@Z
?scrollContentsBy@QTreeView@@MEAAXHH@Z
?scrollTo@QTreeView@@UEAAXAEBVQModelIndex@@W4ScrollHint@QAbstractItemView@@@Z
?selectAll@QTreeView@@UEAAXXZ
?selectedIndexes@QTreeView@@MEBA?AV?$QList@VQModelIndex@@@@XZ
?selectionChanged@QTreeView@@MEAAXAEBVQItemSelection@@0@Z
?selectionCommand@QAbstractItemView@@MEBA?AV?$QFlags@W4SelectionFlag@QItemSelectionModel@@@@AEBVQModelIndex@@PEBVQEvent@@@Z
?setSelection@QTreeView@@MEAAXAEBVQRect@@V?$QFlags@W4SelectionFlag@QItemSelectionModel@@@@@Z
?setSelectionModel@QTreeView@@UEAAXPEAVQItemSelectionModel@@@Z
?showEvent@QAbstractSpinBox@@MEAAXPEAVQShowEvent@@@Z
?sizeHint@QAbstractSpinBox@@UEBA?AVQSize@@XZ
?sizeHint@QMenu@@UEBA?AVQSize@@XZ
?sizeHint@QPushButton@@UEBA?AVQSize@@XZ
?sizeHintForColumn@QTreeView@@MEBAHH@Z
?sizeHintForRow@QAbstractItemView@@UEBAHH@Z
?startDrag@QAbstractItemView@@MEAAXV?$QFlags@W4DropAction@Qt@@@@@Z
?stepBy@QAbstractSpinBox@@UEAAXH@Z
?stepEnabled@QAbstractSpinBox@@MEBA?AV?$QFlags@W4StepEnabledFlag@QAbstractSpinBox@@@@XZ
?textFromValue@QSpinBox@@MEBA?AVQString@@H@Z
?timerEvent@QAbstractButton@@MEAAXPEAVQTimerEvent@@@Z
?timerEvent@QAbstractSpinBox@@MEAAXPEAVQTimerEvent@@@Z
?timerEvent@QMenu@@MEAAXPEAVQTimerEvent@@@Z
?timerEvent@QTreeView@@MEAAXPEAVQTimerEvent@@@Z
?updateEditorData@QAbstractItemView@@MEAAXXZ
?updateEditorGeometries@QAbstractItemView@@MEAAXXZ
?updateGeometries@QTreeView@@MEAAXXZ
?validate@QSpinBox@@MEBA?AW4State@QValidator@@AEAVQString@@AEAH@Z
?valueFromText@QSpinBox@@MEBAHAEBVQString@@@Z
?verticalOffset@QTreeView@@MEBAHXZ
?verticalScrollbarAction@QAbstractItemView@@MEAAXH@Z
?verticalScrollbarValueChanged@QTreeView@@MEAAXH@Z
?viewOptions@QAbstractItemView@@MEBA?AVQStyleOptionViewItem@@XZ
?viewportEvent@QTreeView@@MEAA_NPEAVQEvent@@@Z
?viewportSizeHint@QTreeView@@MEBA?AVQSize@@XZ
?visualRect@QTreeView@@UEBA?AVQRect@@AEBVQModelIndex@@@Z
?focusOutEvent@QLabel@@MEAAXPEAVQFocusEvent@@@Z

api-ms-win-crt-string-l1-1-0

strcmp
strncmp

api-ms-win-crt-heap-l1-1-0

free
malloc
_callnewh

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table
_initialize_narrow_environment
_execute_onexit_table
_crt_atexit
_cexit
_initterm
_seh_filter_dll
_initterm_e
_register_onexit_function
_configure_narrow_argv

kernel32

GetCurrentProcessId
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
RtlCaptureContext
QueryPerformanceCounter
IsDebuggerPresent

oleaut32

SysAllocStringLen
SysReAllocStringLen
SysStringLen
SysAllocStringByteLen
SysFreeString

Exports

Exports

DBGGuiAdjustRelativePos
DBGGuiCreate
DBGGuiCreateForVM
DBGGuiDestroy
DBGGuiSetMenu
DBGGuiSetParent
DBGGuiShowCommandLine
DBGGuiShowStatistics

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VBoxRT-x86.dll
.dll windows:6 windows x86 arch:x86

c6082545853befd83acc461e6b9aef08

Code Sign

51:ca:00:98:16:fd:bd:80:f1:20:e0:15:ee:75:82:3e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

23/12/2013, 00:00

Not After

22/12/2016, 23:59

Subject

CN=Oracle Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=VirtualBox,O=Oracle Corporation,L=Redwood Shores,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:da:c0:e5:de:9a:96:a5:13:21:09:0d:b2:7e:0b:a1:e1:f7:92:ec
Certificate

Issuer

CN=VirtualBox for Legacy Windows Only Timestamp CA SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Not Before

01/01/2014, 00:00

Not After

31/12/2014, 23:59

Subject

CN=VirtualBox for Legacy Windows Only Timestamp Kludge 2014 SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:52:65:06:cc:82:88:11:7d:a6:be:d3:a5:ab:ec:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/02/2021, 00:00

Not After

16/04/2024, 23:59

Subject

CN=Oracle Corporation,OU=VirtualBox,O=Oracle Corporation,L=Redwood City,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8e:79:4c:dd:49:80:21:04:d6:4d:02:3e:c7:68:25:bc:07:aa:11:68:55:d6:13:7d:50:6a:13:16:6b:45:a0:09
Signer

Actual PE Digest

8e:79:4c:dd:49:80:21:04:d6:4d:02:3e:c7:68:25:bc:07:aa:11:68:55:d6:13:7d:50:6a:13:16:6b:45:a0:09

Digest Algorithm

sha256

PE Digest Matches

true

b7:cb:57:f0:d8:28:82:93:ee:f1:ac:17:a6:0d:72:87:07:68:dc:d8
Signer

Actual PE Digest

b7:cb:57:f0:d8:28:82:93:ee:f1:ac:17:a6:0d:72:87:07:68:dc:d8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\tinderboxa\win-7.0\out\win.amd64\release\obj\VBoxRT-x86\VBoxRT-x86.pdb

Imports

vcruntime140

memcpy
wcsstr
__current_exception_context
__current_exception
_except_handler4_common
_purecall
strrchr
_CxxThrowException
__std_exception_destroy
__std_exception_copy
__CxxFrameHandler3
strstr
memchr
strchr
memmove
memset
__std_type_info_destroy_list

msvcp140

?_Xlength_error@std@@YAXPBD@Z

kernel32

Sleep
ReadConsoleW
ReadConsoleA
ConvertThreadToFiberEx
ConvertFiberToThread
FindNextFileA
FindFirstFileA
FindClose
CreateFiberEx
DeleteFiber
SwitchToFiber
VerifyVersionInfoW
VerSetConditionMask
SleepEx
GetLastError
GetCommandLineW
GetCurrentProcessId
WaitForMultipleObjectsEx
CloseHandle
SetEvent
ResetEvent
CreateEventW
GetFileType
GetConsoleMode
SetConsoleMode
WriteConsoleW
GetConsoleScreenBufferInfo
GlobalFree
SetLastError
GetEnvironmentVariableW
GetVersion
DeviceIoControl
GetStdHandle
GetNamedPipeInfo
GetLocaleInfoA
GetUserDefaultLCID
GetProcAddress
GetModuleHandleA
GetCurrentProcess
GetCurrentThread
GetModuleHandleW
GlobalMemoryStatus
GetTimeZoneInformation
VirtualProtect
VirtualLock
VirtualAlloc
VirtualFree
VirtualQuery
CreateDirectoryW
RemoveDirectoryW
SetFileAttributesW
ReadFile
WriteFile
CreateFileW
DeleteFileW
FlushFileBuffers
GetFileSize
LockFileEx
SetEndOfFile
SetFilePointer
SetFileTime
UnlockFile
DuplicateHandle
SetErrorMode
GetSystemDirectoryW
FreeLibrary
LoadLibraryExW
ConnectNamedPipe
DisconnectNamedPipe
PeekNamedPipe
CreateNamedPipeW
GetOverlappedResult
WaitForSingleObject
CreateEventA
LocalAlloc
LocalFree
GetSystemInfo
SetCurrentDirectoryW
GetCurrentDirectoryW
GetFileAttributesW
GetFullPathNameW
MoveFileExW
CreateFileA
CreateNamedPipeA
GetNamedPipeHandleStateA
WaitForSingleObjectEx
TerminateProcess
GetExitCodeProcess
ResumeThread
CreateProcessW
OpenProcess
ReadProcessMemory
WriteProcessMemory
GetProcessAffinityMask
OutputDebugStringA
GetModuleFileNameW
GetCurrentThreadId
SetThreadPriority
ReleaseMutex
CreateMutexA
WaitForMultipleObjects
ClearCommBreak
ClearCommError
EscapeCommFunction
GetCommModemStatus
GetCommState
PurgeComm
SetCommBreak
SetCommMask
SetCommState
SetCommTimeouts
WaitCommEvent
CreateFileMappingW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
RaiseException
TlsAlloc
TlsGetValue
TlsSetValue
GetThreadTimes
GetEnvironmentVariableA
FileTimeToLocalFileTime
GetSystemTime
GetLocalTime
GetTickCount
SystemTimeToFileTime
SetSystemTime
FileTimeToSystemTime
SetWaitableTimer
CancelWaitableTimer
TerminateThread
GetSystemTimeAsFileTime
CreateWaitableTimerA
TlsFree
CompareStringW
MultiByteToWideChar
WideCharToMultiByte
GetACP
GetConsoleCP
LoadLibraryW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
IsDebuggerPresent
QueryPerformanceCounter
InitializeSListHead
GetFullPathNameA
GetModuleFileNameA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
MoveFileExA
FormatMessageW
LoadLibraryA
GetSystemDirectoryA
QueryPerformanceFrequency
LoadLibraryExA

rpcrt4

UuidCreate

ntdll

NtReadFile
RtlGetLastWin32Error
NtDuplicateObject
NtDeviceIoControlFile
NtSetTimerResolution
NtQuerySection
NtClearEvent
RtlSubAuthoritySid
RtlInitializeSid
RtlAddAccessAllowedAce
NtCancelIoFile
RtlFreeUnicodeString
NtQuerySystemInformation
RtlGetNtProductType
NtResetEvent
RtlGetVersion
NtSetEvent
NtCreateEvent
NtWaitForSingleObject
NtQueryInformationProcess
NtOpenProcess
NtQueryDirectoryObject
NtQueryInformationFile
NtOpenDirectoryObject
NtQueryObject
NtQueryVolumeInformationFile
NtSetInformationFile
NtClose
NtQueryDirectoryFile
NtCreateFile
RtlReleasePebLock
RtlAcquirePebLock
RtlEqualSid
NtQueryTimerResolution
NtQuerySecurityObject
RtlAddAccessDeniedAce

api-ms-win-crt-string-l1-1-0

strncmp
strcmp
toupper
strspn
tolower
isdigit
strncpy
isspace
strpbrk
strcspn
_strdup

api-ms-win-crt-stdio-l1-1-0

_getcwd
__stdio_common_vsprintf
_write
fgets
_open
_dup
_read
fflush
fwrite
__stdio_common_vfprintf
_fileno
__acrt_iob_func
ftell
_isatty
_wopen
_wfopen
fopen
_close
__stdio_common_vsscanf
clearerr
_setmode
fputs
_lseeki64
fputc
fclose
feof
_open_osfhandle
_get_osfhandle
setvbuf
_ftelli64
_fseeki64
fseek
fread
fgetc
ferror

api-ms-win-crt-runtime-l1-1-0

__p___argc
_register_onexit_function
_execute_onexit_table
_crt_atexit
feholdexcept
fesetenv
_errno
_initialize_onexit_table
strerror
_initterm_e
_initterm
signal
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
terminate
raise
_endthreadex
__sys_errlist
__sys_nerr
_beginthreadex
_exit
strerror_s
_cexit
__p___argv
_wassert

api-ms-win-crt-convert-l1-1-0

strtod
_strtoi64
wcstombs
strtol
strtoul
atoi

api-ms-win-crt-heap-l1-1-0

realloc
_callnewh
free
calloc
malloc
_aligned_malloc
_aligned_free

api-ms-win-crt-environment-l1-1-0

_wputenv_s
_putenv_s
_putenv
_wputenv
_wgetenv
getenv

api-ms-win-crt-locale-l1-1-0

setlocale

api-ms-win-crt-math-l1-1-0

_fdopen

api-ms-win-crt-filesystem-l1-1-0

_access
_fstat64
_stat64
_unlink
_wstat64i32
_stat64i32

api-ms-win-crt-utility-l1-1-0

qsort
bsearch

api-ms-win-crt-time-l1-1-0

_time64
_gmtime64
strftime
_gmtime64_s

ws2_32

WSACleanup
WSAStartup
WSASetLastError
ntohs
WSAWaitForMultipleEvents
WSAResetEvent
WSAEventSelect
WSAEnumNetworkEvents
WSACreateEvent
WSACloseEvent
send
setsockopt
getsockopt
WSAIoctl
htons
__WSAFDIsSet
select
WSAGetLastError
accept
bind
getsockname
listen
htonl
closesocket
connect
recv
socket
gethostbyname
ioctlsocket

Exports

Exports

??0AttributeNode@xml@@IAE@PBVElementNode@1@PAVNode@1@PAURTLISTNODE@@PAU_xmlAttr@@@Z
??0ContentNode@xml@@IAE@PAVNode@1@PAURTLISTNODE@@PAU_xmlNode@@@Z
??0Document@xml@@QAE@ABV01@@Z
??0Document@xml@@QAE@XZ
??0EDocumentNotEmpty@xml@@QAE@$$QAV01@@Z
??0EDocumentNotEmpty@xml@@QAE@ABV01@@Z
??0EDocumentNotEmpty@xml@@QAE@PBD@Z
??0EDocumentNotEmpty@xml@@QAE@PBDI0@Z
??0EIPRTFailure@xml@@QAA@HPBDZZ
??0EIPRTFailure@xml@@QAE@$$QAV01@@Z
??0EIPRTFailure@xml@@QAE@ABV01@@Z
??0EInvalidArg@xml@@QAE@$$QAV01@@Z
??0EInvalidArg@xml@@QAE@ABV01@@Z
??0EInvalidArg@xml@@QAE@PBD@Z
??0EInvalidArg@xml@@QAE@PBDI0@Z
??0ENodeIsNotElement@xml@@QAE@$$QAV01@@Z
??0ENodeIsNotElement@xml@@QAE@ABV01@@Z
??0ENodeIsNotElement@xml@@QAE@PBD@Z
??0ENodeIsNotElement@xml@@QAE@PBDI0@Z
??0ENotImplemented@xml@@QAE@$$QAV01@@Z
??0ENotImplemented@xml@@QAE@ABV01@@Z
??0ENotImplemented@xml@@QAE@PBD@Z
??0ENotImplemented@xml@@QAE@PBDI0@Z
??0ElementNode@xml@@IAE@PBV01@PAVNode@1@PAURTLISTNODE@@PAU_xmlNode@@@Z
??0File@xml@@QAE@PAURTFILEINT@@PBD_N@Z
??0File@xml@@QAE@W4Mode@01@PBD_N@Z
??0GlobalLock@xml@@QAE@XZ
??0Input@xml@@QAE@$$QAV01@@Z
??0Input@xml@@QAE@ABV01@@Z
??0Input@xml@@QAE@XZ
??0LogicError@xml@@QAE@$$QAV01@@Z
??0LogicError@xml@@QAE@ABV01@@Z
??0LogicError@xml@@QAE@PBD@Z
??0LogicError@xml@@QAE@PBDI0@Z
??0MemoryBuf@xml@@QAE@PBDI0@Z
??0Node@xml@@IAE@W4EnumType@01@PAV01@PAURTLISTNODE@@PAU_xmlNode@@PAU_xmlAttr@@@Z
??0NodesLoop@xml@@QAE@ABVElementNode@1@PBD@Z
??0Output@xml@@QAE@$$QAV01@@Z
??0Output@xml@@QAE@ABV01@@Z
??0Output@xml@@QAE@XZ
??0RTCError@@QAE@ABV0@@Z
??0RTCError@@QAE@ABVRTCString@@@Z
??0RTCError@@QAE@PBD@Z
??0RTCRestAnyObject@@QAE@ABV0@@Z
??0RTCRestAnyObject@@QAE@XZ
??0RTCRestArrayBase@@QAE@XZ
??0RTCRestBinary@@QAE@XZ
??0RTCRestBinaryParameter@@QAE@XZ
??0RTCRestBinaryResponse@@QAE@XZ
??0RTCRestBool@@QAE@ABV0@@Z
??0RTCRestBool@@QAE@XZ
??0RTCRestBool@@QAE@_N@Z
??0RTCRestClientApiBase@@QAE@XZ
??0RTCRestClientRequestBase@@QAE@ABV0@@Z
??0RTCRestClientRequestBase@@QAE@XZ
??0RTCRestClientResponseBase@@QAE@ABV0@@Z
??0RTCRestClientResponseBase@@QAE@XZ
??0RTCRestDataObject@@QAE@ABV0@@Z
??0RTCRestDataObject@@QAE@XZ
??0RTCRestDate@@QAE@ABV0@@Z
??0RTCRestDate@@QAE@XZ
??0RTCRestDouble@@QAE@ABV0@@Z
??0RTCRestDouble@@QAE@N@Z
??0RTCRestDouble@@QAE@XZ
??0RTCRestInt16@@QAE@ABV0@@Z
??0RTCRestInt16@@QAE@F@Z
??0RTCRestInt16@@QAE@XZ
??0RTCRestInt32@@QAE@ABV0@@Z
??0RTCRestInt32@@QAE@H@Z
??0RTCRestInt32@@QAE@XZ
??0RTCRestInt64@@QAE@ABV0@@Z
??0RTCRestInt64@@QAE@XZ
??0RTCRestInt64@@QAE@_J@Z
??0RTCRestJsonCursor@@QAE@ABU0@@Z
??0RTCRestJsonCursor@@QAE@PAURTJSONVALINT@@PBD@Z
??0RTCRestJsonCursor@@QAE@PAURTJSONVALINT@@PBDPAU0@@Z
??0RTCRestJsonPrimaryCursor@@QAE@ABV0@@Z
??0RTCRestJsonPrimaryCursor@@QAE@PAURTJSONVALINT@@PBDPAURTERRINFO@@@Z
??0RTCRestObjectBase@@QAE@ABV0@@Z
??0RTCRestObjectBase@@QAE@XZ
??0RTCRestOutputBase@@QAE@ABV0@@Z
??0RTCRestOutputBase@@QAE@XZ
??0RTCRestOutputPrettyBase@@QAE@ABV0@@Z
??0RTCRestOutputPrettyBase@@QAE@XZ
??0RTCRestOutputPrettyToString@@QAE@ABV0@@Z
??0RTCRestOutputPrettyToString@@QAE@PAVRTCString@@_N@Z
??0RTCRestOutputToString@@QAE@PAVRTCString@@_N@Z
??0RTCRestPolyDataObject@@QAE@ABV0@@Z
??0RTCRestPolyDataObject@@QAE@XZ
??0RTCRestString@@QAE@ABV0@@Z
??0RTCRestString@@QAE@ABVRTCString@@@Z
??0RTCRestString@@QAE@PBD@Z
??0RTCRestString@@QAE@XZ
??0RTCRestStringEnumBase@@QAE@ABV0@@Z
??0RTCRestStringEnumBase@@QAE@XZ
??0RTCRestStringMapBase@@QAE@XZ
??0RTCString@@QAE@ABV0@@Z
??0RTCString@@QAE@ABV0@II@Z
??0RTCString@@QAE@ID@Z
??0RTCString@@QAE@PBD@Z
??0RTCString@@QAE@PBDI@Z
??0RTCString@@QAE@PBDPAD@Z
??0RTCString@@QAE@XZ
??0RuntimeError@xml@@QAE@$$QAV01@@Z
??0RuntimeError@xml@@QAE@ABV01@@Z
??0RuntimeError@xml@@QAE@PBD@Z
??0Stream@xml@@QAE@ABV01@@Z
??0Stream@xml@@QAE@XZ
??0XmlError@xml@@QAE@$$QAV01@@Z
??0XmlError@xml@@QAE@ABV01@@Z
??0XmlError@xml@@QAE@PAU_xmlError@@@Z
??0XmlFileParser@xml@@QAE@XZ
??0XmlFileWriter@xml@@QAE@AAVDocument@1@@Z
??0XmlMemParser@xml@@QAE@XZ
??0XmlMemWriter@xml@@QAE@XZ
??0XmlParserBase@xml@@IAE@XZ
??0XmlStringWriter@xml@@QAE@XZ
??1AttributeNode@xml@@UAE@XZ
??1ContentNode@xml@@UAE@XZ
??1Document@xml@@QAE@XZ
??1EDocumentNotEmpty@xml@@UAE@XZ
??1EIPRTFailure@xml@@UAE@XZ
??1EInvalidArg@xml@@UAE@XZ
??1ENodeIsNotElement@xml@@UAE@XZ
??1ENotImplemented@xml@@UAE@XZ
??1ElementNode@xml@@UAE@XZ
??1File@xml@@UAE@XZ
??1GlobalLock@xml@@QAE@XZ
??1Input@xml@@UAE@XZ
??1LogicError@xml@@UAE@XZ
??1MemoryBuf@xml@@UAE@XZ
??1Node@xml@@UAE@XZ
??1NodesLoop@xml@@QAE@XZ
??1Output@xml@@UAE@XZ
??1RTCError@@UAE@XZ
??1RTCRestAnyObject@@UAE@XZ
??1RTCRestArrayBase@@UAE@XZ
??1RTCRestBinary@@UAE@XZ
??1RTCRestBinaryParameter@@UAE@XZ
??1RTCRestBinaryResponse@@UAE@XZ
??1RTCRestBool@@UAE@XZ
??1RTCRestClientApiBase@@UAE@XZ
??1RTCRestClientRequestBase@@UAE@XZ
??1RTCRestClientResponseBase@@UAE@XZ
??1RTCRestDataObject@@UAE@XZ
??1RTCRestDate@@UAE@XZ
??1RTCRestDouble@@UAE@XZ
??1RTCRestInt16@@UAE@XZ
??1RTCRestInt32@@UAE@XZ
??1RTCRestInt64@@UAE@XZ
??1RTCRestJsonCursor@@QAE@XZ
??1RTCRestJsonPrimaryCursor@@UAE@XZ
??1RTCRestObjectBase@@UAE@XZ
??1RTCRestOutputBase@@UAE@XZ
??1RTCRestOutputPrettyBase@@UAE@XZ
??1RTCRestOutputPrettyToString@@UAE@XZ
??1RTCRestOutputToString@@UAE@XZ
??1RTCRestPolyDataObject@@UAE@XZ
??1RTCRestString@@UAE@XZ
??1RTCRestStringEnumBase@@UAE@XZ
??1RTCRestStringMapBase@@UAE@XZ
??1RTCString@@UAE@XZ
??1RuntimeError@xml@@UAE@XZ
??1Stream@xml@@UAE@XZ
??1XmlError@xml@@UAE@XZ
??1XmlFileParser@xml@@QAE@XZ
??1XmlFileWriter@xml@@QAE@XZ
??1XmlMemParser@xml@@QAE@XZ
??1XmlMemWriter@xml@@QAE@XZ
??1XmlParserBase@xml@@IAE@XZ
??4AttributeNode@xml@@QAEAAV01@ABV01@@Z
??4ContentNode@xml@@QAEAAV01@ABV01@@Z
??4Document@xml@@QAEAAV01@ABV01@@Z
??4EDocumentNotEmpty@xml@@QAEAAV01@$$QAV01@@Z
??4EDocumentNotEmpty@xml@@QAEAAV01@ABV01@@Z
??4EIPRTFailure@xml@@QAEAAV01@$$QAV01@@Z
??4EIPRTFailure@xml@@QAEAAV01@ABV01@@Z
??4EInvalidArg@xml@@QAEAAV01@$$QAV01@@Z
??4EInvalidArg@xml@@QAEAAV01@ABV01@@Z
??4ENodeIsNotElement@xml@@QAEAAV01@$$QAV01@@Z
??4ENodeIsNotElement@xml@@QAEAAV01@ABV01@@Z
??4ENotImplemented@xml@@QAEAAV01@$$QAV01@@Z
??4ENotImplemented@xml@@QAEAAV01@ABV01@@Z
??4ElementNode@xml@@QAEAAV01@ABV01@@Z
??4GlobalLock@xml@@QAEAAV01@ABV01@@Z
??4Input@xml@@QAEAAV01@$$QAV01@@Z
??4Input@xml@@QAEAAV01@ABV01@@Z
??4LogicError@xml@@QAEAAV01@$$QAV01@@Z
??4LogicError@xml@@QAEAAV01@ABV01@@Z
??4Node@xml@@QAEAAV01@ABV01@@Z
??4NodesLoop@xml@@QAEAAV01@ABV01@@Z
??4Output@xml@@QAEAAV01@$$QAV01@@Z
??4Output@xml@@QAEAAV01@ABV01@@Z
??4RTCError@@QAEXABV0@@Z
??4RTCRestAnyObject@@QAEAAV0@ABV0@@Z
??4RTCRestBool@@QAEAAV0@ABV0@@Z
??4RTCRestClientRequestBase@@QAEAAV0@ABV0@@Z
??4RTCRestClientResponseBase@@QAEAAV0@ABV0@@Z
??4RTCRestDataObject@@IAEAAV0@ABV0@@Z
??4RTCRestDate@@QAEAAV0@ABV0@@Z
??4RTCRestDouble@@QAEAAV0@ABV0@@Z
??4RTCRestInt16@@QAEAAV0@ABV0@@Z
??4RTCRestInt32@@QAEAAV0@ABV0@@Z
??4RTCRestInt64@@QAEAAV0@ABV0@@Z
??4RTCRestJsonCursor@@QAEAAU0@ABU0@@Z
??4RTCRestJsonPrimaryCursor@@QAEAAV0@ABV0@@Z
??4RTCRestObjectBase@@QAEAAV0@ABV0@@Z
??4RTCRestOutputBase@@QAEAAV0@ABV0@@Z
??4RTCRestOutputPrettyBase@@QAEAAV0@ABV0@@Z
??4RTCRestOutputPrettyToString@@QAEAAV0@ABV0@@Z
??4RTCRestPolyDataObject@@IAEAAV0@ABV0@@Z
??4RTCRestString@@QAEAAV0@ABV0@@Z
??4RTCRestString@@QAEAAV0@ABVRTCString@@@Z
??4RTCRestString@@QAEAAV0@PBD@Z
??4RTCRestStringEnumBase@@QAEAAV0@ABV0@@Z
??4RTCString@@QAEAAV0@ABV0@@Z
??4RTCString@@QAEAAV0@PBD@Z
??4RuntimeError@xml@@QAEAAV01@$$QAV01@@Z
??4RuntimeError@xml@@QAEAAV01@ABV01@@Z
??4Stream@xml@@QAEAAV01@ABV01@@Z
??4XmlError@xml@@QAEAAV01@$$QAV01@@Z
??4XmlError@xml@@QAEAAV01@ABV01@@Z
??4XmlFileParser@xml@@QAEAAV01@ABV01@@Z
??4XmlFileWriter@xml@@QAEAAV01@ABV01@@Z
??4XmlMemParser@xml@@QAEAAV01@ABV01@@Z
??4XmlMemWriter@xml@@QAEAAV01@ABV01@@Z
??4XmlParserBase@xml@@QAEAAV01@ABV01@@Z
??4XmlStringWriter@xml@@QAEAAV01@$$QAV01@@Z
??4XmlStringWriter@xml@@QAEAAV01@ABV01@@Z
??8RTCString@@QBE_NABV0@@Z
??8RTCString@@QBE_NPBD@Z
??9RTCString@@QBE_NABV0@@Z
??9RTCString@@QBE_NPBD@Z
??ARTCString@@QBEDI@Z
??H@YA?BVRTCString@@ABV0@0@Z
??H@YA?BVRTCString@@ABV0@PBD@Z
??H@YA?BVRTCString@@PBDABV0@@Z
??MRTCString@@QBE_NABV0@@Z
??MRTCString@@QBE_NPBD@Z
??ORTCString@@QBE_NABV0@@Z
??ORTCString@@QBE_NPBD@Z
??YRTCString@@QAEAAV0@ABV0@@Z
??YRTCString@@QAEAAV0@D@Z
??YRTCString@@QAEAAV0@PBD@Z
??_7AttributeNode@xml@@6B@
??_7ContentNode@xml@@6B@
??_7EDocumentNotEmpty@xml@@6B@
??_7EIPRTFailure@xml@@6B@
??_7EInvalidArg@xml@@6B@
??_7ENodeIsNotElement@xml@@6B@
??_7ENotImplemented@xml@@6B@
??_7ElementNode@xml@@6B@
??_7File@xml@@6BInput@1@@
??_7File@xml@@6BOutput@1@@
??_7File@xml@@6BStream@1@@
??_7Input@xml@@6B01@@
??_7Input@xml@@6BStream@1@@
??_7LogicError@xml@@6B@
??_7MemoryBuf@xml@@6BInput@1@@
??_7MemoryBuf@xml@@6BStream@1@@
??_7Node@xml@@6B@
??_7Output@xml@@6B01@@
??_7Output@xml@@6BStream@1@@
??_7RTCError@@6B@
??_7RTCRestAnyObject@@6B@
??_7RTCRestArrayBase@@6B@
??_7RTCRestBinary@@6B@
??_7RTCRestBinaryParameter@@6B@
??_7RTCRestBinaryResponse@@6B@
??_7RTCRestBool@@6B@
??_7RTCRestClientApiBase@@6B@
??_7RTCRestClientRequestBase@@6B@
??_7RTCRestClientResponseBase@@6B@
??_7RTCRestDataObject@@6B@
??_7RTCRestDate@@6B@
??_7RTCRestDouble@@6B@
??_7RTCRestInt16@@6B@
??_7RTCRestInt32@@6B@
??_7RTCRestInt64@@6B@
??_7RTCRestJsonPrimaryCursor@@6B@
??_7RTCRestObjectBase@@6B@
??_7RTCRestOutputBase@@6B@
??_7RTCRestOutputPrettyBase@@6B@
??_7RTCRestOutputPrettyToString@@6B@
??_7RTCRestOutputToString@@6B@
??_7RTCRestPolyDataObject@@6B@
??_7RTCRestString@@6BRTCRestObjectBase@@@
??_7RTCRestString@@6BRTCString@@@
??_7RTCRestStringEnumBase@@6B@
??_7RTCRestStringMapBase@@6B@
??_7RTCString@@6B@
??_7RuntimeError@xml@@6B@
??_7Stream@xml@@6B@
??_7XmlError@xml@@6B@
??_8File@xml@@7BInput@1@@
??_8File@xml@@7BOutput@1@@
??_8MemoryBuf@xml@@7B@
??_DFile@xml@@QAEXXZ
??_DMemoryBuf@xml@@QAEXXZ
??_FEDocumentNotEmpty@xml@@QAEXXZ
??_FEInvalidArg@xml@@QAEXXZ
??_FENodeIsNotElement@xml@@QAEXXZ
??_FENotImplemented@xml@@QAEXXZ
??_FLogicError@xml@@QAEXXZ
??_FRuntimeError@xml@@QAEXXZ
?CloseCallback@XmlFileParser@xml@@CAHPAX@Z
?CloseCallback@XmlFileWriter@xml@@SAHPAX@Z
?CloseCallback@XmlStringWriter@xml@@CAHPAX@Z
?Format@XmlError@xml@@SAPADPAU_xmlError@@@Z
?RTAsn1VideotexString_CheckSanity@@YAHPBURTASN1STRING@@IPAURTERRINFO@@PBD@Z
?RTAsn1VideotexString_Clone@@YAHPAURTASN1STRING@@PBU1@PBURTASN1ALLOCATORVTABLE@@@Z
?RTAsn1VideotexString_Compare@@YAHPBURTASN1STRING@@0@Z
?RTAsn1VideotexString_DecodeAsn1@@YAHPAURTASN1CURSOR@@IPAURTASN1STRING@@PBD@Z
?RTAsn1VideotexString_Delete@@YAXPAURTASN1STRING@@@Z
?RTAsn1VideotexString_Enum@@YAHPAURTASN1STRING@@P6AHPAURTASN1CORE@@PBDIPAX@_EI3@Z
?RTAsn1VideotexString_Init@@YAHPAURTASN1STRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrKeyCreateFromPemSection@@YAHPAPAURTCRKEYINT@@PBURTCRPEMSECTION@@IPBDPAURTERRINFO@@2@Z
?RTCrPkcs7ContentInfo_SetContent@@YAHPAURTCRPKCS7CONTENTINFO@@PBURTASN1OCTETSTRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrPkcs8PrivateKeyInfo_SetAttributes@@YAHPAURTCRPKCS8PRIVATEKEYINFO@@PBURTCRPKCS7ATTRIBUTES@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrRsaPrivateKey_SetOtherPrimeInfos@@YAHPAURTCRRSAPRIVATEKEY@@PBURTCRRSAOTHERPRIMEINFOS@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrStoreCertAddPkcs7@@YAHPAURTCRSTOREINT@@IPAURTCRPKCS7CERT@@PAURTERRINFO@@@Z
?RTCrTafCertPathControls_SetCertificate@@YAHPAURTCRTAFCERTPATHCONTROLS@@PBURTCRX509CERTIFICATE@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafCertPathControls_SetNameConstr@@YAHPAURTCRTAFCERTPATHCONTROLS@@PBURTCRX509NAMECONSTRAINTS@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafCertPathControls_SetPathLenConstraint@@YAHPAURTCRTAFCERTPATHCONTROLS@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafCertPathControls_SetPolicyFlags@@YAHPAURTCRTAFCERTPATHCONTROLS@@PBURTASN1BITSTRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafCertPathControls_SetPolicySet@@YAHPAURTCRTAFCERTPATHCONTROLS@@PBURTCRX509CERTIFICATEPOLICIES@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafTrustAnchorChoice_SetCertificate@@YAHPAURTCRTAFTRUSTANCHORCHOICE@@PBURTCRX509CERTIFICATE@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafTrustAnchorChoice_SetTaInfo@@YAHPAURTCRTAFTRUSTANCHORCHOICE@@PBURTCRTAFTRUSTANCHORINFO@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafTrustAnchorChoice_SetTbsCert@@YAHPAURTCRTAFTRUSTANCHORCHOICE@@PBURTCRX509TBSCERTIFICATE@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafTrustAnchorInfo_SetCertPath@@YAHPAURTCRTAFTRUSTANCHORINFO@@PBURTCRTAFCERTPATHCONTROLS@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafTrustAnchorInfo_SetExts@@YAHPAURTCRTAFTRUSTANCHORINFO@@PBURTCRX509EXTENSIONS@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTafTrustAnchorInfo_SetVersion@@YAHPAURTCRTAFTRUSTANCHORINFO@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTspAccuracy_SetMicros@@YAHPAURTCRTSPACCURACY@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTspAccuracy_SetMillis@@YAHPAURTCRTSPACCURACY@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTspAccuracy_SetSeconds@@YAHPAURTCRTSPACCURACY@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTspTstInfo_SetAccuracy@@YAHPAURTCRTSPTSTINFO@@PBURTCRTSPACCURACY@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTspTstInfo_SetExtensions@@YAHPAURTCRTSPTSTINFO@@PBURTCRX509EXTENSION@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTspTstInfo_SetNonce@@YAHPAURTCRTSPTSTINFO@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTspTstInfo_SetOrdering@@YAHPAURTCRTSPTSTINFO@@PBURTASN1BOOLEAN@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrTspTstInfo_SetTsa@@YAHPAURTCRTSPTSTINFO@@PBURTCRX509GENERALNAME@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509AttributeTypeAndValue_MatchAsRdnByRfc5280@@YA_NPBURTCRX509ATTRIBUTETYPEANDVALUE@@0@Z
?RTCrX509AuthorityKeyIdentifier_SetAuthorityCertIssuer@@YAHPAURTCRX509AUTHORITYKEYIDENTIFIER@@PBURTCRX509GENERALNAMES@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509AuthorityKeyIdentifier_SetAuthorityCertSerialNumber@@YAHPAURTCRX509AUTHORITYKEYIDENTIFIER@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509AuthorityKeyIdentifier_SetKeyIdentifier@@YAHPAURTCRX509AUTHORITYKEYIDENTIFIER@@PBURTASN1OCTETSTRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509BasicConstraints_SetCA@@YAHPAURTCRX509BASICCONSTRAINTS@@PBURTASN1BOOLEAN@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509BasicConstraints_SetPathLenConstraint@@YAHPAURTCRX509BASICCONSTRAINTS@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509Extension_SetCritical@@YAHPAURTCRX509EXTENSION@@PBURTASN1BOOLEAN@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralName_SetDirectoryName@@YAHPAURTCRX509GENERALNAME@@PBURTCRX509NAME@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralName_SetDnsType@@YAHPAURTCRX509GENERALNAME@@PBURTASN1STRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralName_SetEdiPartyName@@YAHPAURTCRX509GENERALNAME@@PBURTASN1DYNTYPE@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralName_SetIpAddress@@YAHPAURTCRX509GENERALNAME@@PBURTASN1OCTETSTRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralName_SetOtherName@@YAHPAURTCRX509GENERALNAME@@PBURTCRX509OTHERNAME@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralName_SetRegisteredId@@YAHPAURTCRX509GENERALNAME@@PBURTASN1OBJID@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralName_SetRfc822@@YAHPAURTCRX509GENERALNAME@@PBURTASN1STRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralName_SetUri@@YAHPAURTCRX509GENERALNAME@@PBURTASN1STRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralName_SetX400Address@@YAHPAURTCRX509GENERALNAME@@PBURTASN1DYNTYPE@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralSubtree_SetMaximum@@YAHPAURTCRX509GENERALSUBTREE@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509GeneralSubtree_SetMinimum@@YAHPAURTCRX509GENERALSUBTREE@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509NameConstraints_SetExcludedSubtrees@@YAHPAURTCRX509NAMECONSTRAINTS@@PBURTCRX509GENERALSUBTREES@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509NameConstraints_SetPermittedSubtrees@@YAHPAURTCRX509NAMECONSTRAINTS@@PBURTCRX509GENERALSUBTREES@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509OldAuthorityKeyIdentifier_SetAuthorityCertIssuer@@YAHPAURTCRX509OLDAUTHORITYKEYIDENTIFIER@@PBURTCRX509NAME@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509OldAuthorityKeyIdentifier_SetAuthorityCertSerialNumber@@YAHPAURTCRX509OLDAUTHORITYKEYIDENTIFIER@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509OldAuthorityKeyIdentifier_SetKeyIdentifier@@YAHPAURTCRX509OLDAUTHORITYKEYIDENTIFIER@@PBURTASN1OCTETSTRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509PolicyConstraints_SetInhibitPolicyMapping@@YAHPAURTCRX509POLICYCONSTRAINTS@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509PolicyConstraints_SetRequireExplicitPolicy@@YAHPAURTCRX509POLICYCONSTRAINTS@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509PolicyInformation_SetPolicyQualifiers@@YAHPAURTCRX509POLICYINFORMATION@@PBURTCRX509POLICYQUALIFIERINFOS@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509RelativeDistinguishedName_MatchByRfc5280@@YA_NPBURTCRX509ATTRIBUTETYPEANDVALUES@@0@Z
?RTCrX509TbsCertificate_SetExtensions@@YAHPAURTCRX509TBSCERTIFICATE@@PBURTCRX509EXTENSIONS@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509TbsCertificate_SetIssuerUniqueId@@YAHPAURTCRX509TBSCERTIFICATE@@PBURTASN1BITSTRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509TbsCertificate_SetSubjectUniqueId@@YAHPAURTCRX509TBSCERTIFICATE@@PBURTASN1BITSTRING@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTCrX509TbsCertificate_SetVersion@@YAHPAURTCRX509TBSCERTIFICATE@@PBURTASN1INTEGER@@PBURTASN1ALLOCATORVTABLE@@@Z
?RTLdrOpenVfsChainkLdr@@YAHPBDIW4RTLDRARCH@@PAPAURTLDRMODINTERNAL@@PAIPAURTERRINFO@@@Z
?RTVfsLockRetainDebug@@YAIPAURTVFSLOCKINTERNAL@@PBDI1@Z
?RTZipTarFsStreamSetModTime@@YAHPAURTVFSFSSTREAMINTERNAL@@PBURTTIMESPEC@@@Z
?ReadCallback@XmlFileParser@xml@@CAHPAXPADH@Z
?WriteCallback@XmlFileWriter@xml@@SAHPAXPBDH@Z
?WriteCallbackForReal@XmlStringWriter@xml@@CAHPAXPBDH@Z
?WriteCallbackForSize@XmlStringWriter@xml@@CAHPAXPBDH@Z
?addContent@ElementNode@xml@@QAEPAVContentNode@2@ABVRTCString@@@Z
?addContent@ElementNode@xml@@QAEPAVContentNode@2@PBD@Z
?addError@RTCRestClientResponseBase@@IAAHHPBDZZ
?addError@RTCRestJsonPrimaryCursor@@UAAHABURTCRestJsonCursor@@HPBDZZ
?append@RTCString@@QAEAAV1@ABV1@@Z
?append@RTCString@@QAEAAV1@ABV1@II@Z
?append@RTCString@@QAEAAV1@D@Z
?append@RTCString@@QAEAAV1@PBD@Z
?append@RTCString@@QAEAAV1@PBDI@Z
?appendCodePoint@RTCString@@QAEAAV1@I@Z
?appendCodePointNoThrow@RTCString@@QAEHI@Z
?appendNoThrow@RTCString@@QAEHABV1@@Z
?appendNoThrow@RTCString@@QAEHABV1@II@Z
?appendNoThrow@RTCString@@QAEHD@Z
?appendNoThrow@RTCString@@QAEHPBD@Z
?appendNoThrow@RTCString@@QAEHPBDI@Z
?appendPrintf@RTCString@@QAAAAV1@PBDZZ
?appendPrintfNoThrow@RTCString@@QAAHPBDZZ
?appendPrintfV@RTCString@@QAEAAV1@PBDPAD@Z
?appendPrintfVNoThrow@RTCString@@QAEHPBDPAD@Z
?appendWorker@RTCString@@IAEAAV1@PBDI@Z
?appendWorkerNoThrow@RTCString@@IAEHPBDI@Z
?assign@RTCRestString@@QAEAAV1@ABVRTCString@@@Z
?assign@RTCRestString@@QAEAAV1@ABVRTCString@@II@Z
?assign@RTCRestString@@QAEAAV1@ID@Z
?assign@RTCRestString@@QAEAAV1@PBD@Z
?assign@RTCRestString@@QAEAAV1@PBDI@Z
?assign@RTCString@@QAEAAV1@ABV1@@Z
?assign@RTCString@@QAEAAV1@ABV1@II@Z
?assign@RTCString@@QAEAAV1@ID@Z
?assign@RTCString@@QAEAAV1@PBD@Z
?assign@RTCString@@QAEAAV1@PBDI@Z
?assignCopy@RTCRestAnyObject@@QAEHABV1@@Z
?assignCopy@RTCRestAnyObject@@QAEHABV?$RTCRestArray@VRTCRestAnyObject@@@@@Z
?assignCopy@RTCRestAnyObject@@QAEHABV?$RTCRestStringMap@VRTCRestAnyObject@@@@@Z
?assignCopy@RTCRestAnyObject@@QAEHABVRTCRestBool@@@Z
?assignCopy@RTCRestAnyObject@@QAEHABVRTCRestDouble@@@Z
?assignCopy@RTCRestAnyObject@@QAEHABVRTCRestInt16@@@Z
?assignCopy@RTCRestAnyObject@@QAEHABVRTCRestInt32@@@Z
?assignCopy@RTCRestAnyObject@@QAEHABVRTCRestInt64@@@Z
?assignCopy@RTCRestAnyObject@@QAEHABVRTCRestString@@@Z
?assignCopy@RTCRestBinary@@UAEHABV1@@Z
?assignCopy@RTCRestBinary@@UAEHPBXI@Z
?assignCopy@RTCRestBinaryParameter@@UAEHABV1@@Z
?assignCopy@RTCRestBinaryParameter@@UAEHABVRTCRestBinary@@@Z
?assignCopy@RTCRestBinaryParameter@@UAEHPBXI@Z
?assignCopy@RTCRestBinaryResponse@@UAEHABV1@@Z
?assignCopy@RTCRestBinaryResponse@@UAEHABVRTCRestBinary@@@Z
?assignCopy@RTCRestBinaryResponse@@UAEHPBXI@Z
?assignCopy@RTCRestBool@@QAEHABV1@@Z
?assignCopy@RTCRestDataObject@@MAEHABV1@@Z
?assignCopy@RTCRestDate@@QAEHABV1@@Z
?assignCopy@RTCRestDouble@@QAEHABV1@@Z
?assignCopy@RTCRestInt16@@QAEHABV1@@Z
?assignCopy@RTCRestInt32@@QAEHABV1@@Z
?assignCopy@RTCRestInt64@@QAEHABV1@@Z
?assignCopy@RTCRestString@@QAEHABV1@@Z
?assignCopy@RTCRestString@@QAEHABVRTCString@@@Z
?assignCopy@RTCRestString@@QAEHPBD@Z
?assignCopy@RTCRestStringEnumBase@@QAEHABV1@@Z
?assignCopy@RTCRestStringEnumBase@@QAEHABVRTCString@@@Z
?assignCopy@RTCRestStringEnumBase@@QAEHPBD@Z
?assignNoThrow@RTCRestString@@QAEHABVRTCString@@@Z
?assignNoThrow@RTCRestString@@QAEHABVRTCString@@II@Z
?assignNoThrow@RTCRestString@@QAEHID@Z
?assignNoThrow@RTCRestString@@QAEHPBD@Z
?assignNoThrow@RTCRestString@@QAEHPBDI@Z
?assignNoThrow@RTCString@@QAEHABV1@@Z
?assignNoThrow@RTCString@@QAEHABV1@II@Z
?assignNoThrow@RTCString@@QAEHID@Z
?assignNoThrow@RTCString@@QAEHPBD@Z
?assignNoThrow@RTCString@@QAEHPBDI@Z
?assignNow@RTCRestDate@@QAEHW4kFormat@1@@Z
?assignNowRfc2822@RTCRestDate@@QAEHXZ
?assignNowRfc3339@RTCRestDate@@QAEHXZ
?assignNowRfc7131@RTCRestDate@@QAEHXZ
?assignReadOnly@RTCRestBinary@@UAEHPBXI@Z
?assignReadOnly@RTCRestBinaryParameter@@UAEHPBXI@Z
?assignReadOnly@RTCRestBinaryResponse@@UAEHPBXI@Z
?assignValue@RTCRestAnyObject@@QAEHABVRTCString@@@Z
?assignValue@RTCRestAnyObject@@QAEHF@Z
?assignValue@RTCRestAnyObject@@QAEHH@Z
?assignValue@RTCRestAnyObject@@QAEHN@Z
?assignValue@RTCRestAnyObject@@QAEHPBD@Z
?assignValue@RTCRestAnyObject@@QAEH_J@Z
?assignValue@RTCRestAnyObject@@QAEH_N@Z
?assignValue@RTCRestBool@@QAEX_N@Z
?assignValue@RTCRestDate@@QAEHPBURTTIMESPEC@@W4kFormat@1@@Z
?assignValue@RTCRestDouble@@QAEXN@Z
?assignValue@RTCRestInt16@@QAEXF@Z
?assignValue@RTCRestInt32@@QAEXH@Z
?assignValue@RTCRestInt64@@QAEX_J@Z
?assignValueRfc2822@RTCRestDate@@QAEHPBURTTIMESPEC@@@Z
?assignValueRfc3339@RTCRestDate@@QAEHPBURTTIMESPEC@@@Z
?assignValueRfc7131@RTCRestDate@@QAEHPBURTTIMESPEC@@@Z
?assignWriteable@RTCRestBinary@@UAEHPAXI@Z
?assignWriteable@RTCRestBinaryParameter@@UAEHPAXI@Z
?assignWriteable@RTCRestBinaryResponse@@UAEHPAXI@Z
?atBase@RTCRestArrayBase@@QAEPAVRTCRestObjectBase@@I@Z
?atBase@RTCRestArrayBase@@QBEPBVRTCRestObjectBase@@I@Z
?baseClone@RTCRestAnyObject@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestArrayBase@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestBinary@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestBinaryParameter@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestBinaryResponse@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestBool@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestDate@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestDouble@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestInt16@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestInt32@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestInt64@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestString@@UBEPAVRTCRestObjectBase@@XZ
?baseClone@RTCRestStringMapBase@@UBEPAVRTCRestObjectBase@@XZ
?begin@RTCRestStringMapBase@@QBE?AVConstIterator@1@XZ
?beginArray@RTCRestOutputBase@@UAEIXZ
?beginArray@RTCRestOutputPrettyBase@@UAEIXZ
?beginObject@RTCRestOutputBase@@UAEIXZ
?beginObject@RTCRestOutputPrettyBase@@UAEIXZ
?buildChildren@ElementNode@xml@@KAXPAV12@@Z
?c_str@RTCString@@QBEPBDXZ
?callDefaultLoader@GlobalLock@xml@@SAPAU_xmlParserInput@@PBD0PAU_xmlParserCtxt@@@Z
?capacity@RTCString@@QBEIXZ

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zero
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VBoxSupLib.dll
.dll windows:6 windows x64 arch:x64

890d1ba4282cec03928fce63ca7c3eae

Code Sign

51:ca:00:98:16:fd:bd:80:f1:20:e0:15:ee:75:82:3e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

23/12/2013, 00:00

Not After

22/12/2016, 23:59

Subject

CN=Oracle Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=VirtualBox,O=Oracle Corporation,L=Redwood Shores,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:da:c0:e5:de:9a:96:a5:13:21:09:0d:b2:7e:0b:a1:e1:f7:92:ec
Certificate

Issuer

CN=VirtualBox for Legacy Windows Only Timestamp CA SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Not Before

01/01/2014, 00:00

Not After

31/12/2014, 23:59

Subject

CN=VirtualBox for Legacy Windows Only Timestamp Kludge 2014 SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:52:65:06:cc:82:88:11:7d:a6:be:d3:a5:ab:ec:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/02/2021, 00:00

Not After

16/04/2024, 23:59

Subject

CN=Oracle Corporation,OU=VirtualBox,O=Oracle Corporation,L=Redwood City,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

98:06:c6:f7:d0:9e:4a:9a:14:e1:b4:dd:8e:be:4c:23:14:21:b3:cd:7c:59:17:26:d5:25:01:1b:d1:61:89:1d
Signer

Actual PE Digest

98:06:c6:f7:d0:9e:4a:9a:14:e1:b4:dd:8e:be:4c:23:14:21:b3:cd:7c:59:17:26:d5:25:01:1b:d1:61:89:1d

Digest Algorithm

sha256

PE Digest Matches

true

c1:ed:d5:d6:ee:54:90:e9:1f:f2:8b:aa:de:e2:8a:38:c6:e7:7e:d5
Signer

Actual PE Digest

c1:ed:d5:d6:ee:54:90:e9:1f:f2:8b:aa:de:e2:8a:38:c6:e7:7e:d5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\tinderboxa\win-7.0\out\win.amd64\release\obj\VBoxSupLib\VBoxSupLib.pdb

Imports

ntdll

RtlGetLastWin32Error
NtSetInformationThread

kernel32

GetModuleFileNameW
GetCurrentThread
SetLastError
LoadLibraryW

Exports

Exports

DllMainEntrypoint

Sections

.text
Size: 512B - Virtual size: 223B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 916B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
VBoxVMM.dll
.dll windows:6 windows x64 arch:x64

8444532afe329b878180e4f1e2aa0825

Code Sign

51:ca:00:98:16:fd:bd:80:f1:20:e0:15:ee:75:82:3e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

23/12/2013, 00:00

Not After

22/12/2016, 23:59

Subject

CN=Oracle Corporation,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=VirtualBox,O=Oracle Corporation,L=Redwood Shores,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22/02/2011, 19:25

Not After

22/02/2021, 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:da:c0:e5:de:9a:96:a5:13:21:09:0d:b2:7e:0b:a1:e1:f7:92:ec
Certificate

Issuer

CN=VirtualBox for Legacy Windows Only Timestamp CA SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Not Before

01/01/2014, 00:00

Not After

31/12/2014, 23:59

Subject

CN=VirtualBox for Legacy Windows Only Timestamp Kludge 2014 SHA1,O=Oracle Deutschland B.V. & Co. KG,L=Munich,ST=Bavaria,C=DE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:1c:b2:8a:00:00:00:00:00:26
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:41

Not After

15/04/2021, 19:51

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:52:65:06:cc:82:88:11:7d:a6:be:d3:a5:ab:ec:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/02/2021, 00:00

Not After

16/04/2024, 23:59

Subject

CN=Oracle Corporation,OU=VirtualBox,O=Oracle Corporation,L=Redwood City,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:9b:4d:91:16:12:95:c4:bc:15:16:79:2d:72:7b:d5:cb:62:2f:ed:82:67:d2:76:fb:8b:98:f2:af:59:cf:6f
Signer

Actual PE Digest

08:9b:4d:91:16:12:95:c4:bc:15:16:79:2d:72:7b:d5:cb:62:2f:ed:82:67:d2:76:fb:8b:98:f2:af:59:cf:6f

Digest Algorithm

sha256

PE Digest Matches

true

15:6c:73:4f:c2:d2:34:da:fe:2c:07:2d:d0:22:c5:7e:0a:30:84:67
Signer

Actual PE Digest

15:6c:73:4f:c2:d2:34:da:fe:2c:07:2d:d0:22:c5:7e:0a:30:84:67

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\tinderboxa\win-7.0\out\win.amd64\release\obj\VBoxVMM\VBoxVMM.pdb

Imports

vcruntime140

__C_specific_handler
_CxxThrowException
memset
longjmp
strstr
memmove
memcpy
strchr
memcmp
__std_type_info_destroy_list
__intrinsic_setjmp
memchr

vcruntime140_1

__CxxFrameHandler4

vboxrt

RTMemFree
RTMemSaferScramble
RTMemSaferUnscramble
RTMemSaferAllocZTag
RTMemSaferFree
RTStrFree
RTStrDupTag
RTStrAllocTag
RTStrAPrintfVTag
RTStrAPrintf2VTag
RTStrCmp
RTStrNCmp
RTStrSimplePatternMultiMatch
RTUtf16ToUtf8Tag
RTUuidClear
RTMpGetCount
RTMpGetCoreCount
RTMpGetOnlineSet
RTMpGetOnlineCount
RTMpGetPresentCount
ASMGetXcr0
SUPR3QueryVTCaps
SUPR3GetHwvirtMsrs
RTRandU64
RTStrStripL
RTAssertMsg1Weak
RTAssertMsg2Weak
RTAssertShouldPanic
ASMCpuIdExSlow
ASMFxSave
SUPR3QueryMicrocodeRev
RTStrICmp
RTStrToLower
RTStrToUInt32Full
RTMemDupExTag
RTMemReallocTag
ASMAtomicXchgU8
ASMAtomicBitClear
RTThreadSleep
RTSemEventCreate
RTSemEventDestroy
RTSemEventSignal
RTSemEventWait
RTSemEventMultiCreate
RTSemEventMultiDestroy
RTSemFastMutexCreate
RTSemFastMutexDestroy
RTSemFastMutexRequest
RTSemFastMutexRelease
RTStrPrintfV
RTStrmFlush
RTStrmPrintf
g_pStdErr
RTDbgSymbolDup
RTDbgLineDup
RTDbgCfgCreate
RTDbgCfgRelease
RTDbgCfgChangeString
RTDbgCfgChangeUInt
RTDbgAsCreate
RTDbgAsRetain
RTDbgAsRelease
RTDbgAsLockExcl
RTDbgAsUnlockExcl
RTDbgAsName
RTDbgAsModuleCount
RTDbgAsModuleLink
RTDbgAsModuleLinkSeg
RTDbgAsModuleUnlink
RTDbgAsModuleByIndex
RTDbgAsModuleByName
RTDbgAsModuleQueryMapByIndex
RTDbgAsSymbolByAddr
RTDbgAsSymbolByName
RTDbgAsLineByAddr
RTDbgModCreateFromImage
RTDbgModCreateFromMap
RTDbgModRelease
RTDbgModName
RTAvlPVInsert
RTAvlPVRemove
RTAvlPVGet
RTAvlPVDestroy
RTAvlU32Remove
RTAvlU32Get
RTSemRWCreate
RTSemRWDestroy
RTSemRWRequestRead
RTSemRWReleaseRead
RTSemRWRequestWrite
RTSemRWReleaseWrite
RTStrSpaceInsert
RTStrSpaceRemove
RTStrSpaceGet
RTEnvGetEx
RTMemTmpAllocZTag
RTMemTmpFree
RTPathAppend
RTPathAppPrivateNoArch
ASMBitFirstClear
ASMBitFirstSet
ASMBitNextSet
RTMemAllocZTag
RTMemPageAllocZTag
RTDbgSymbolFree
RTStrToUInt64Ex
RTFileOpen
RTFileClose
RTFileWrite
RTFileTell
RTStrCopy
RTLogPrintf
RTLogRelPrintfV
RTLogPrintfV
RTCritSectRwInit
RTCritSectRwEnterShared
RTCritSectRwLeaveShared
RTCritSectRwEnterExcl
RTCritSectRwLeaveExcl
RTCritSectRwDelete
RTGetOptFormatError
RTGetOptArgvFromString
RTGetOptArgvFree
RTStrmPrintfV
RTLogRelGetDefaultInstance
RTLogDefaultInstance
RTLogGroupSettings
RTLogFlags
RTLogDestinations
RTStrEnd
RTLdrArchName
RTLdrGetHostArch
RTLdrOpenInMemory
RTLdrClose
RTDbgModCreate
RTDbgModCreateFromPeImage
RTDbgModCreateFromMachOImage
RTDbgModSymbolAdd
RTErrInfoSetF
RTMemAllocZVarTag
RTPathFilenameEx
RTSortShell
SUPR3HardenedVerifyPlugIn
RTLdrGetSuff
RTLdrLoadEx
RTLdrGetSymbol
RTErrInfoSet
RTStrNICmp
RTDirOpenFiltered
RTDirClose
RTDirRead
RTPathExists
RTPathFilename
RTPathHasPath
RTPathTraverseList
RTPathAppPrivateArch
RTErrQueryDefine
RTStrFormatV
RTStrFormatU8
RTStrFormatU16
RTStrFormatU32
RTStrFormatU64
RTStrFormatU128
RTStrFormatU256
RTStrFormatU512
RTStrFormatR80u2
RTStrSpaceGetN
RTStrSpaceEnumerate
RTDbgLineFree
RTDbgAsModuleByAddr
RTDbgModImageSize
RTDbgModSegmentSize
RTDbgModUnwindFrame
RTStrCacheCreate
RTStrCacheDestroy
RTStrCacheEnter
RTStrCacheRelease
RTTimeNanoTS
RTTraceBufCarve
RTTraceBufEnumEntries
RTTraceBufGetEntrySize
RTTraceBufGetEntryCount
RTThreadYield
RTThreadCreate
RTThreadWait
RTThreadUserSignal
RTThreadUserWait
RTTraceLogWrCreateFile
RTTraceLogWrDestroy
RTTraceLogWrAddEvtDesc
RTTraceLogWrEvtAdd
RTTraceLogWrEvtAddL
SUPSemEventCreate
SUPSemEventClose
SUPSemEventSignal
SUPSemEventWaitNoResume
RTBldCfgVersion
RTStrPrintf2V
RTTimerCreateEx
RTTimerDestroy
RTTimerStart
RTTimerStop
RTStrmOpen
RTStrmClose
RTStrmPutStr
RTLogFlush
RTThreadGetExecutionTimeMilli
RTTimeMilliTS
RTPrintf
RTStrToUInt32Ex
RTSemEventMultiSignal
RTNetIPv4HdrChecksum
RTNetIPv4IsHdrValid
RTNetIPv4IsDHCPValid
g_abRTZero64K
ASMMultU64ByU32DivByU32
RTGetOptInit
RTGetOpt
RTStrToUInt64Full
ASMNopPause
RTMemPageFree
SUPR3CallVMMR0Ex
RTThreadNativeSelf
RTMemPageAllocTag
RTMemProtect
RTAvlULDestroy
RTCritSectInit
RTLogRelSetBuffering
RTCritSectLeave
RTCritSectDelete
RTMemReallocZTag
RTMemFreeZ
RTStrICmpAscii
RTSgBufInit
RTSgBufClone
RTSgBufCopyToBuf
RTSgBufCopyFromBuf
RTSgBufAdvance
RTAvlrU64Insert
RTAvlrU64Remove
RTAvlrU64RangeGet
RTAvlrU64GetBestFit
RTAvlrU64DoWithAll
RTAvlrU64Destroy
RTSpinlockCreate
RTSpinlockDestroy
RTSpinlockAcquire
RTSpinlockRelease
SUPSemEventWaitNsAbsIntr
SUPSemEventWaitNsRelIntr
SUPSemEventGetResolution
SUPSemEventMultiCreate
SUPSemEventMultiClose
SUPSemEventMultiSignal
SUPSemEventMultiReset
SUPSemEventMultiWaitNoResume
SUPSemEventMultiWaitNsAbsIntr
SUPSemEventMultiWaitNsRelIntr
SUPSemEventMultiGetResolution
RTStrPrintf2
RTStrIStr
SUPR3LoadModule
SUPR3FreeModule
SUPR3GetSymbolR0
SUPR3HardenedLdrLoadPlugIn
RTLdrGetSymbolEx
RTLdrSize
RTFileExists
RTMemTmpAllocTag
RTPathHasSuffix
RTPathJoinEx
RTPathSharedLibs
RTThreadFromNative
RTThreadGetName
RTLockValidatorRecExclDestroy
RTLockValidatorRecSharedDestroy
RTThreadCreateF
RTSemEventWaitNoResume
RTThreadSelf
RTThreadUserReset
RTSemEventMultiReset
RTSemEventMultiWait
RTSemEventMultiWaitNoResume
SUPR3GetPagingMode
SUPR3PageAlloc
ASMMemFirstNonZero
SUPR3PageFree
RTAvlU32Insert
RTAvlU32DoWithAll
RTMemDupTag
RTSystemQueryAvailableRam
RTAvloHCPhysGet
RTSha1
RTCrc32
RTCrc32Start
RTCrc32Process
RTCrc32Finish
RTFileDelete
RTFileSeek
RTFileRead
RTFileWriteAt
RTFileQuerySize
RTFileQueryFsSizes
RTUuidIsNull
RTZipDecompCreate
RTZipDecompress
RTZipDecompDestroy
RTZipBlockCompress
RTZipBlockDecompress
ASMAtomicXchgU16
SUPR3CallVMMR0
RTPrintfV
RTStrSimplePatternMatch
RTTimeNow
ASMAtomicCmpXchgU8
SUPGetCpuHzFromGipForAsyncMode
SUPReadTscWithDelta
RTTimerCreate
g_pSUPGlobalInfoPage
SUPR3Init
SUPR3InitEx
SUPR3Term
RTLogRelPrintf
RTThreadGetNative
RTTlsAllocEx
RTTlsFree
RTTlsGet
RTErrQueryMsgFull
RTEnvGet
RTTlsSet
SUPR3SetVMForFastIOCtl
SUPR3CallVMMR0Fast
RTLogGetDefaultInstance
RTLogGetDestinations
RTLogQueryBulk
RTLogBulkWrite
RTTimeProgramStartNanoTS
RTLogGetFlags
RTLogChangeFlags
RTLogChangeDestinations
RTLogLoggerV
RTStrmWriteEx
SUPR3QueryVTxSupported
RTAvloU32Insert
RTAvloU32Get
RTEnvExist
ASMAtomicUoOrU64
RTCrc32CProcess
RTLogDefaultInstanceEx
RTLogBulkNestedWrite
RTThreadUnblocked
RTThreadBlocking
RTLockValidatorRecExclReleaseOwnerUnchecked
RTStrFormatNumber
RTStrFormatTypeRegister
RTStrFormatTypeDeregister
ASMAtomicUoIncU32
SUPGetTscDeltaSlow
RTTimeNanoTSLegacySyncInvarNoDelta
RTTimeNanoTSLFenceSyncInvarNoDelta
RTTimeNanoTSLegacyAsyncUseApicId
RTTimeNanoTSLegacyAsyncUseApicIdExt0B
RTTimeNanoTSLegacyAsyncUseApicIdExt8000001E
RTTimeNanoTSLegacyAsyncUseRdtscp
RTTimeNanoTSLegacyAsyncUseRdtscpGroupChNumCl
RTTimeNanoTSLegacyAsyncUseIdtrLim
RTTimeNanoTSLegacySyncInvarWithDeltaUseApicId
RTTimeNanoTSLegacySyncInvarWithDeltaUseApicIdExt0B
RTTimeNanoTSLegacySyncInvarWithDeltaUseApicIdExt8000001E
RTTimeNanoTSLegacySyncInvarWithDeltaUseRdtscp
RTTimeNanoTSLegacySyncInvarWithDeltaUseIdtrLim
RTTimeNanoTSLFenceAsyncUseApicId
RTTimeNanoTSLFenceAsyncUseApicIdExt0B
RTTimeNanoTSLFenceAsyncUseApicIdExt8000001E
RTTimeNanoTSLFenceAsyncUseRdtscp
RTTimeNanoTSLFenceAsyncUseRdtscpGroupChNumCl
RTTimeNanoTSLFenceAsyncUseIdtrLim
RTTimeNanoTSLFenceSyncInvarWithDeltaUseApicId
RTTimeNanoTSLFenceSyncInvarWithDeltaUseApicIdExt0B
RTTimeNanoTSLFenceSyncInvarWithDeltaUseApicIdExt8000001E
RTTimeNanoTSLFenceSyncInvarWithDeltaUseRdtscp
RTTimeNanoTSLFenceSyncInvarWithDeltaUseIdtrLim
RTTimeSystemNanoTS
RTUuidCreate
RTUuidCompare
RTUuidToStr
RTUuidFromStr
RTMemCacheCreate
RTMemCacheDestroy
RTMemCacheAlloc
RTMemCacheFree
RTAvlrFileOffsetDestroy
RTFileSetSize
RTFileAioGetLimits
RTFileReadAt
RTFileFlush
RTFileAioReqCreate
RTFileAioReqDestroy
RTFileAioReqPrepareRead
RTFileAioReqPrepareWrite
RTFileAioReqPrepareFlush
RTFileAioReqGetUser
RTFileAioReqGetRC
RTFileAioCtxCreate
RTFileAioCtxDestroy
RTFileAioCtxAssociateWithFile
RTFileAioCtxSubmit
RTFileAioCtxWait
RTAvlrFileOffsetInsert
RTAvlrFileOffsetRemove
RTAvlrFileOffsetGetBestFit
RTAvlrFileOffsetRangeGet
RTCritSectInitEx
RTLdrLoadSystem
RTLdrGetSystemSymbol
RTLdrGetNativeHandle
RTErrInfoAddF
RTSystemGetNtBuildNo
RTUtf16CopyAscii
RTDbgCfgRetain
RTDbgCfgSetLogCallback
RTPathUserHome
RTLogQueryGroupSettings
RTLogQueryFlags
RTLogQueryDestinations
RTErrIsKnown
RTStrFormat
RTStrPrintfExV
RTDbgModDebugFile
RTDbgModImageFile
RTDbgModImageFileUsed
RTDbgModIsDeferred
RTDbgModIsExports
RTDbgModImageQueryProp
RTDbgModSegmentCount
RTDbgModSegmentByIndex
RTDbgModSegmentRva
RTDbgModSymbolCount
RTDbgModSymbolByOrdinal
RTStrSimplePatternNMatch
RTStrToUInt8Full
RTTimeSpecToString
RTRandU32
RTSocketRelease
RTTcpServerCreateEx
RTTcpServerDestroy
RTTcpServerListen2
RTTcpRead
RTTcpWrite
RTTcpSelectOne
RTSocketReadFrom
RTSocketWriteTo
RTSocketSelectOne
RTUdpCreateServerSocket
RTLocalIpcServerCreate
RTLocalIpcServerDestroy
RTLocalIpcServerListen
RTLocalIpcServerCancel
RTLocalIpcSessionClose
RTLocalIpcSessionRead
RTLocalIpcSessionWrite
RTLocalIpcSessionWaitForData
RTStrCatP
RTStrPrintHexBytes
RTStrConvertHexBytes
RTStrConvertHexBytesEx
RTStrPrintf
SUPR3ContFree
SUPR3ContAlloc
SUPR3PageFreeEx
SUPR3PageAllocEx
SUPR3IsDriverless
RTLogLoggerEx
RTLogRelGetDefaultInstanceEx
RTMemAllocTag
RTCritSectEnter

api-ms-win-crt-string-l1-1-0

strcmp
strncat
strncmp
strpbrk
strncpy

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm
_initialize_onexit_table
_seh_filter_dll
_cexit
_configure_narrow_argv
_initialize_narrow_environment
_execute_onexit_table
exit

api-ms-win-crt-heap-l1-1-0

free

api-ms-win-crt-stdio-l1-1-0

fgets
fopen
fclose

kernel32

TerminateProcess
GetCurrentProcess
IsDebuggerPresent
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
InitializeSListHead
DisableThreadLibraryCalls
GetLastError
SetLastError
GetSystemDirectoryW
VirtualProtect
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetFileAttributesW

Exports

Exports

?DBGFR3SelInfoValidateCS@@YAHPEBUDBGFSELINFO@@G@Z
?DBGFR3TraceQueryConfig@@YAHPEAUVM@@PEAD_K@Z
?GCMGetFixers@@YAHPEAUVM@@@Z
?PDMQueueAllocEx@@YAHPEAUVM@@_KPEAXPEAPEATPDMQUEUEITEMCORE@@@Z
?PDMR3CritSectRwSetSubClass@@YAIPEATPDMCRITSECTRW@@I@Z
?PGMR3DumpHierarchyHC@@YAHPEAUVM@@_K1_NIPEBUDBGFINFOHLP@@@Z
?VMMDoHmTest@@YAHPEAUVM@@@Z
APICGetTpr
APICSetTpr
APICUpdatePendingInterrupts
CFGMR3AreChildrenValid
CFGMR3AreValuesValid
CFGMR3ConstructDefaultTree
CFGMR3CopyTree
CFGMR3CreateTree
CFGMR3DestroyTree
CFGMR3Dump
CFGMR3DuplicateSubTree
CFGMR3Exists
CFGMR3GetChild
CFGMR3GetChildF
CFGMR3GetChildFV
CFGMR3GetFirstChild
CFGMR3GetFirstValue
CFGMR3GetName
CFGMR3GetNameLen
CFGMR3GetNextChild
CFGMR3GetNextValue
CFGMR3GetParent
CFGMR3GetParentEx
CFGMR3GetRoot
CFGMR3GetRootU
CFGMR3GetValueName
CFGMR3GetValueNameLen
CFGMR3GetValueType
CFGMR3Init
CFGMR3InsertBytes
CFGMR3InsertInteger
CFGMR3InsertNode
CFGMR3InsertNodeF
CFGMR3InsertNodeFV
CFGMR3InsertPassword
CFGMR3InsertPasswordN
CFGMR3InsertString
CFGMR3InsertStringF
CFGMR3InsertStringFV
CFGMR3InsertStringN
CFGMR3InsertStringW
CFGMR3InsertSubTree
CFGMR3InsertValue
CFGMR3QueryBool
CFGMR3QueryBoolDef
CFGMR3QueryBytes
CFGMR3QueryGCPtr
CFGMR3QueryGCPtrDef
CFGMR3QueryGCPtrS
CFGMR3QueryGCPtrSDef
CFGMR3QueryGCPtrU
CFGMR3QueryGCPtrUDef
CFGMR3QueryInteger
CFGMR3QueryIntegerDef
CFGMR3QueryPassword
CFGMR3QueryPasswordDef
CFGMR3QueryPort
CFGMR3QueryPortDef
CFGMR3QueryS16
CFGMR3QueryS16Def
CFGMR3QueryS32
CFGMR3QueryS32Def
CFGMR3QueryS64
CFGMR3QueryS64Def
CFGMR3QueryS8
CFGMR3QueryS8Def
CFGMR3QuerySInt
CFGMR3QuerySIntDef
CFGMR3QuerySize
CFGMR3QueryString
CFGMR3QueryStringAlloc
CFGMR3QueryStringAllocDef
CFGMR3QueryStringDef
CFGMR3QueryType
CFGMR3QueryU16
CFGMR3QueryU16Def
CFGMR3QueryU32
CFGMR3QueryU32Def
CFGMR3QueryU64
CFGMR3QueryU64Def
CFGMR3QueryU8
CFGMR3QueryU8Def
CFGMR3QueryUInt
CFGMR3QueryUIntDef
CFGMR3RemoveNode
CFGMR3RemoveValue
CFGMR3ReplaceSubTree
CFGMR3SetRestrictedRoot
CFGMR3Term
CFGMR3ValidateConfig
CPUMCpuIdCollectLeavesX86
CPUMCpuIdDetectX86VendorEx
CPUMCpuIdDetermineX86MicroarchEx
CPUMCpuVendorName
CPUMDeactivateGuestDebugState
CPUMGetGuestAddrWidths
CPUMGetGuestCPL
CPUMGetGuestCR0
CPUMGetGuestCR2
CPUMGetGuestCR3
CPUMGetGuestCR4
CPUMGetGuestCR8
CPUMGetGuestCRx
CPUMGetGuestCS
CPUMGetGuestCodeBits
CPUMGetGuestCpuId
CPUMGetGuestCpuVendor
CPUMGetGuestDR0
CPUMGetGuestDR1
CPUMGetGuestDR2
CPUMGetGuestDR3
CPUMGetGuestDR6
CPUMGetGuestDR7
CPUMGetGuestDRx
CPUMGetGuestDS
CPUMGetGuestDisMode
CPUMGetGuestEAX
CPUMGetGuestEBP
CPUMGetGuestEBX
CPUMGetGuestECX
CPUMGetGuestEDI
CPUMGetGuestEDX
CPUMGetGuestEFER
CPUMGetGuestEFlags
CPUMGetGuestEIP
CPUMGetGuestES
CPUMGetGuestESI
CPUMGetGuestESP
CPUMGetGuestEferMsrValidMask
CPUMGetGuestFS
CPUMGetGuestFlatPC
CPUMGetGuestFlatSP
CPUMGetGuestGDTR
CPUMGetGuestGS
CPUMGetGuestIDTR
CPUMGetGuestLDTR
CPUMGetGuestLdtrEx
CPUMGetGuestMicroarch
CPUMGetGuestMode
CPUMGetGuestMxCsrMask
CPUMGetGuestRIP
CPUMGetGuestSS
CPUMGetGuestScalableBusFrequency
CPUMGetGuestTR
CPUMGetHostCpuVendor
CPUMGetHostMicroarch
CPUMGetHyperCR3
CPUMGetHyperDR0
CPUMGetHyperDR1
CPUMGetHyperDR2
CPUMGetHyperDR3
CPUMGetHyperDR6
CPUMGetHyperDR7
CPUMIsGuestDebugStateActive
CPUMIsGuestEferMsrWriteValid
CPUMIsGuestFPUStateActive
CPUMIsGuestFPUStateLoaded
CPUMIsGuestIn64BitCode
CPUMIsGuestInLongMode
CPUMIsGuestInPAEMode
CPUMIsGuestInPagedProtectedMode
CPUMIsGuestInProtectedMode
CPUMIsGuestInRealMode
CPUMIsGuestInRealOrV86Mode
CPUMIsGuestNXEnabled
CPUMIsGuestPageSizeExtEnabled
CPUMIsGuestPagingEnabled
CPUMIsGuestR0WriteProtEnabled
CPUMIsHostFPUStateSaved
CPUMIsHostUsingSysCall
CPUMIsHostUsingSysEnter
CPUMIsHyperDebugStateActive
CPUMIsPatMsrValid
CPUMMicroarchName
CPUMQueryGuestCtxPtr
CPUMQueryGuestMsr
CPUMR3CpuIdDetectUnknownLeafMethod
CPUMR3CpuIdGetLeaf
CPUMR3CpuIdInsert
CPUMR3CpuIdUnknownLeafMethodName
CPUMR3DbGetEntries
CPUMR3DbGetEntryByIndex
CPUMR3DbGetEntryByName
CPUMR3DeterminHostMxCsrMask
CPUMR3DisasmInstrCPU
CPUMR3Init
CPUMR3InitCompleted
CPUMR3IsStateRestorePending
CPUMR3LogCpuIdAndMsrFeatures
CPUMR3MsrRangesInsert
CPUMR3Relocate
CPUMR3Reset
CPUMR3ResetCpu
CPUMR3SetCR4Feature
CPUMR3Term
CPUMRecalcHyperDRx
CPUMSetChangedFlags
CPUMSetGuestCR0
CPUMSetGuestCR2
CPUMSetGuestCR3
CPUMSetGuestCR4
CPUMSetGuestCS
CPUMSetGuestCpuIdPerCpuApicFeature
CPUMSetGuestDR0
CPUMSetGuestDR1
CPUMSetGuestDR2
CPUMSetGuestDR3
CPUMSetGuestDR6
CPUMSetGuestDR7
CPUMSetGuestDRx
CPUMSetGuestDS
CPUMSetGuestEAX
CPUMSetGuestEBP
CPUMSetGuestEBX
CPUMSetGuestECX
CPUMSetGuestEDI
CPUMSetGuestEDX
CPUMSetGuestEFER
CPUMSetGuestEFlags
CPUMSetGuestEIP
CPUMSetGuestES
CPUMSetGuestESI
CPUMSetGuestESP
CPUMSetGuestEferMsrNoChecks
CPUMSetGuestFS
CPUMSetGuestGDTR
CPUMSetGuestGS
CPUMSetGuestIDTR
CPUMSetGuestLDTR
CPUMSetGuestMsr
CPUMSetGuestSS
CPUMSetGuestTR
CPUMSetHyperCR3
CPUMSetHyperDR0
CPUMSetHyperDR1
CPUMSetHyperDR2
CPUMSetHyperDR3
CPUMSetHyperDR6
CPUMSetHyperDR7
CPUMSupportsXSave
DBGCCreate
DBGCDeregisterCommands
DBGCIoCreate
DBGCIoTerminate
DBGCRegisterCommands
DBGFR3AddrAdd
DBGFR3AddrFromFlat
DBGFR3AddrFromPhys
DBGFR3AddrFromSelInfoOff
DBGFR3AddrFromSelOff
DBGFR3AddrIsValid
DBGFR3AddrSub
DBGFR3AddrToHostPhys
DBGFR3AddrToPhys
DBGFR3AddrToVolatileR3Ptr
DBGFR3AsAdd
DBGFR3AsDelete
DBGFR3AsGetConfig
DBGFR3AsLineByAddr
DBGFR3AsLineByAddrA
DBGFR3AsLinkModule
DBGFR3AsLoadImage
DBGFR3AsLoadMap
DBGFR3AsQueryByName
DBGFR3AsQueryByPid
DBGFR3AsResolve
DBGFR3AsResolveAndRetain
DBGFR3AsSetAlias
DBGFR3AsSymbolByAddr
DBGFR3AsSymbolByAddrA
DBGFR3AsSymbolByName
DBGFR3AsUnlinkModuleByName
DBGFR3Attach
DBGFR3BpClear
DBGFR3BpDisable
DBGFR3BpEnable
DBGFR3BpEnum
DBGFR3BpOwnerCreate
DBGFR3BpOwnerDestroy
DBGFR3BpSetInt3
DBGFR3BpSetInt3Ex
DBGFR3BpSetMmio
DBGFR3BpSetMmioEx
DBGFR3BpSetPortIo
DBGFR3BpSetPortIoEx
DBGFR3BpSetREM
DBGFR3BpSetReg
DBGFR3BpSetRegEx
DBGFR3CoreWrite
DBGFR3CpuGetCount
DBGFR3CpuGetMode
DBGFR3CpuGetState
DBGFR3CpuIsIn64BitCode
DBGFR3CpuIsInV86Code
DBGFR3Detach
DBGFR3DisasInstrCurrentLogInternal
DBGFR3DisasInstrEx
DBGFR3DisasInstrLogInternal
DBGFR3Event
DBGFR3EventConfig
DBGFR3EventConfigEx
DBGFR3EventIsEnabled
DBGFR3EventQuery
DBGFR3EventSrc
DBGFR3EventSrcV
DBGFR3EventWait
DBGFR3FlowBbGetBranchAddress
DBGFR3FlowBbGetEndAddress
DBGFR3FlowBbGetFlags
DBGFR3FlowBbGetFollowingAddress
DBGFR3FlowBbGetInstrCount
DBGFR3FlowBbGetRefBb
DBGFR3FlowBbGetRefBbCount
DBGFR3FlowBbGetStartAddress
DBGFR3FlowBbGetType
DBGFR3FlowBbQueryBranchTbl
DBGFR3FlowBbQueryError
DBGFR3FlowBbQueryInstr
DBGFR3FlowBbQuerySuccessors
DBGFR3FlowBbRelease
DBGFR3FlowBbRetain
DBGFR3FlowBranchTblGetAddrAtSlot
DBGFR3FlowBranchTblGetSlots
DBGFR3FlowBranchTblGetStartAddress
DBGFR3FlowBranchTblItCreate
DBGFR3FlowBranchTblItDestroy
DBGFR3FlowBranchTblItNext
DBGFR3FlowBranchTblItReset
DBGFR3FlowBranchTblQueryAddresses
DBGFR3FlowBranchTblRelease
DBGFR3FlowBranchTblRetain
DBGFR3FlowCreate
DBGFR3FlowGetBbCount
DBGFR3FlowGetBranchTblCount
DBGFR3FlowGetCallInsnCount
DBGFR3FlowItCreate
DBGFR3FlowItDestroy
DBGFR3FlowItNext
DBGFR3FlowItReset
DBGFR3FlowQueryBbByAddress
DBGFR3FlowQueryBranchTblByAddress
DBGFR3FlowQueryStartBb
DBGFR3FlowRelease
DBGFR3FlowRetain
DBGFR3FlowTraceModAddProbe
DBGFR3FlowTraceModClear
DBGFR3FlowTraceModCreate
DBGFR3FlowTraceModCreateFromFlowGraph
DBGFR3FlowTraceModDisable
DBGFR3FlowTraceModEnable
DBGFR3FlowTraceModQueryReport
DBGFR3FlowTraceModRelease
DBGFR3FlowTraceModRetain
DBGFR3FlowTraceProbeCreate
DBGFR3FlowTraceProbeEntriesAdd
DBGFR3FlowTraceProbeRelease
DBGFR3FlowTraceProbeRetain
DBGFR3FlowTraceRecordGetAddr
DBGFR3FlowTraceRecordGetCpuId
DBGFR3FlowTraceRecordGetProbe
DBGFR3FlowTraceRecordGetSeqNo
DBGFR3FlowTraceRecordGetTimestamp
DBGFR3FlowTraceRecordGetValCommonCount
DBGFR3FlowTraceRecordGetValCount
DBGFR3FlowTraceRecordGetVals
DBGFR3FlowTraceRecordGetValsCommon
DBGFR3FlowTraceRecordRelease
DBGFR3FlowTraceRecordRetain
DBGFR3FlowTraceReportEnumRecords
DBGFR3FlowTraceReportGetRecordCount
DBGFR3FlowTraceReportQueryFiltered
DBGFR3FlowTraceReportQueryRecord
DBGFR3FlowTraceReportRelease
DBGFR3FlowTraceReportRetain
DBGFR3FormatBugCheck
DBGFR3Halt
DBGFR3Info
DBGFR3InfoDeregisterExternal
DBGFR3InfoEnum
DBGFR3InfoEx
DBGFR3InfoGenericGetOptError
DBGFR3InfoLogHlp
DBGFR3InfoLogRel
DBGFR3InfoLogRelHlp
DBGFR3InfoRegisterExternal
DBGFR3InfoRegisterExternalArgv
DBGFR3InfoStdErr
DBGFR3InjectNMI
DBGFR3InterruptConfigEx
DBGFR3InterruptHardwareConfig
DBGFR3InterruptHardwareIsEnabled
DBGFR3InterruptSoftwareConfig
DBGFR3InterruptSoftwareIsEnabled
DBGFR3IsHalted
DBGFR3LogModifyDestinations
DBGFR3LogModifyFlags
DBGFR3LogModifyGroups
DBGFR3MemRead
DBGFR3MemReadString
DBGFR3MemScan
DBGFR3MemWrite
DBGFR3ModInMem
DBGFR3OSDeregister
DBGFR3OSDetect
DBGFR3OSQueryInterface
DBGFR3OSQueryNameAndVersion
DBGFR3OSRegister
DBGFR3PagingDumpEx
DBGFR3PlugInLoad
DBGFR3PlugInLoadAll
DBGFR3PlugInUnload
DBGFR3PlugInUnloadAll
DBGFR3QueryWaitable
DBGFR3RegCpuName
DBGFR3RegCpuQueryU16
DBGFR3RegCpuQueryU32
DBGFR3RegCpuQueryU64
DBGFR3RegCpuQueryU8
DBGFR3RegCpuQueryXdtr
DBGFR3RegFormatValue
DBGFR3RegFormatValueEx
DBGFR3RegNmQuery
DBGFR3RegNmQueryAll
DBGFR3RegNmQueryAllCount
DBGFR3RegNmQueryU128
DBGFR3RegNmQueryU16
DBGFR3RegNmQueryU32
DBGFR3RegNmQueryU64
DBGFR3RegNmQueryU8
DBGFR3RegNmQueryXdtr
DBGFR3RegNmSet
DBGFR3RegNmSetBatch
DBGFR3RegNmValidate
DBGFR3RegPrintf
DBGFR3RegPrintfV
DBGFR3ReportBugCheck
DBGFR3Resume
DBGFR3SampleReportCreate
DBGFR3SampleReportDumpToFile
DBGFR3SampleReportRelease
DBGFR3SampleReportRetain
DBGFR3SampleReportStart
DBGFR3SampleReportStop
DBGFR3SelQueryInfo
DBGFR3StackWalkBegin
DBGFR3StackWalkBeginEx
DBGFR3StackWalkEnd
DBGFR3StackWalkNext
DBGFR3Step
DBGFR3StepEx
DBGFR3TermUVM
DBGFR3TraceConfig
DBGFR3TypeDeregister
DBGFR3TypeDumpEx
DBGFR3TypeQueryReg
DBGFR3TypeQuerySize
DBGFR3TypeQueryValByType
DBGFR3TypeRegister
DBGFR3TypeSetSize
DBGFR3TypeValDumpEx
DBGFR3TypeValFree
DISFormatYasm
DISFormatYasmEx
DISFormatYasmIsOddEncoding
DISGetParamSize
DISInstr
DISInstrEx
DISInstrWithPrefetchedBytes
DISInstrWithReader
EMAreHypercallInstructionsEnabled
EMR3FatalError
EMR3QueryExecutionPolicy
EMR3QueryMainExecutionEngine
EMR3SetExecutionPolicy
EMSetHypercallInstructionsEnabled
GCMIsEnabled
GIMGetMmio2Regions
GIMGetProvider
GIMIsEnabled
GIMR3GetDebugSetup
GIMR3GimDeviceRegister
GMMR3AllocatePagesCleanup
GMMR3AllocatePagesPerform
GMMR3AllocatePagesPrepare
GMMR3BalloonedPages
GMMR3CheckSharedModules
GMMR3FreeAllocatedPages
GMMR3FreeLargePage
GMMR3FreePagesCleanup
GMMR3FreePagesPerform
GMMR3FreePagesPrepare
GMMR3FreePagesRePrep
GMMR3InitialReservation

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1a56dd2884ebae2645c18b421ad3aee

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 17.1MB - Virtual size: 17.1MB

.rdata Size: 23.3MB - Virtual size: 23.3MB

.data Size: 1.8MB - Virtual size: 2.1MB

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 917KB - Virtual size: 917KB

.symtab Size: 512B - Virtual size: 4B

.rsrc Size: 73KB - Virtual size: 73KB

6d44a16d5801e1cdb9b3ba4cb45314b0

Code Sign

51:ca:00:98:16:fd:bd:80:f1:20:e0:15:ee:75:82:3eCertificate

Extended Key Usages

Key Usages

61:19:93:e4:00:00:00:00:00:1cCertificate

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

20:da:c0:e5:de:9a:96:a5:13:21:09:0d:b2:7e:0b:a1:e1:f7:92:ecCertificate

Extended Key Usages

Key Usages

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08Certificate

Extended Key Usages

Key Usages

61:1c:b2:8a:00:00:00:00:00:26Certificate

Key Usages

0f:52:65:06:cc:82:88:11:7d:a6:be:d3:a5:ab:ec:20Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

08:5e:ac:14:25:de:13:f2:51:ec:e8:48:70:ff:e9:f7:be:1f:4f:74:68:cb:c4:05:07:2d:9c:29:73:a2:62:30Signer

49:f7:8e:24:5f:b7:ce:2f:74:2b:63:50:c7:a3:4a:54:ce:1d:58:8aSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mpr

userenv

version

netapi32

ws2_32

advapi32

kernel32

ole32

shell32

user32

winmm

msvcp140

msvcp140_1

vcruntime140

vcruntime140_1

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

.text
Size: 17.1MB - Virtual size: 17.1MB

.rdata
Size: 23.3MB - Virtual size: 23.3MB

.data
Size: 1.8MB - Virtual size: 2.1MB

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 917KB - Virtual size: 917KB

.symtab
Size: 512B - Virtual size: 4B

.rsrc
Size: 73KB - Virtual size: 73KB

51:ca:00:98:16:fd:bd:80:f1:20:e0:15:ee:75:82:3e
Certificate

61:19:93:e4:00:00:00:00:00:1c
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

20:da:c0:e5:de:9a:96:a5:13:21:09:0d:b2:7e:0b:a1:e1:f7:92:ec
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

61:1c:b2:8a:00:00:00:00:00:26
Certificate

0f:52:65:06:cc:82:88:11:7d:a6:be:d3:a5:ab:ec:20
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

08:5e:ac:14:25:de:13:f2:51:ec:e8:48:70:ff:e9:f7:be:1f:4f:74:68:cb:c4:05:07:2d:9c:29:73:a2:62:30
Signer

49:f7:8e:24:5f:b7:ce:2f:74:2b:63:50:c7:a3:4a:54:ce:1d:58:8a
Signer

.text
Size: 2.9MB - Virtual size: 2.9MB

.rdata
Size: 2.3MB - Virtual size: 2.3MB

.data
Size: 14KB - Virtual size: 32KB

.pdata
Size: 136KB - Virtual size: 136KB

.qtmimed
Size: 315KB - Virtual size: 315KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 9KB - Virtual size: 9KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

01:5b:2f:ef:63:1a:86:9c:b5:99:97:32:fa:03:c4:29
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

9b:d5:2d:fb:35:36:ad:88:00:0c:63:c4:c5:ef:37:00:61:53:fe:f6:b4:ad:bf:5a:5e:61:2c:be:b0:82:ed:55
Signer

.text
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 1024B - Virtual size: 680B

.reloc
Size: 512B - Virtual size: 12B

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

01:5b:2f:ef:63:1a:86:9c:b5:99:97:32:fa:03:c4:29
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

17:01:c0:8f:4e:73:c3:e4:42:f2:8e:ba:c5:2c:a8:ed:a0:fb:31:20:15:a2:51:44:9a:57:04:31:4a:ef:8f:52
Signer

.text
Size: 143KB - Virtual size: 142KB

.rsrc
Size: 1024B - Virtual size: 760B

.reloc
Size: 512B - Virtual size: 12B

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

01:5b:2f:ef:63:1a:86:9c:b5:99:97:32:fa:03:c4:29
Certificate