Imagine_1[.]4[.]1_Unicode_Full[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Imagine_1.4.1_Unicode_Full.exe
Size

3.0MB
MD5

2f760f625867bda9abc7c58bc9c3b80d
SHA1

40ffc2880bfe6d24cfbe38310fcef1815bb4f3ac
SHA256

cde007a25e7a9bed3a36ac21863f980683be10589eff6412c239f5cf92d38795
SHA512

2544bc8011de2a6cea28e5b9fc33b8628dd33e7f32a7d5014ac3b505bf219e67c2ad2131bf0d93608cfa15613a88318f6de87cbed81db590b378407a0d8e82ca
SSDEEP

98304:amQJdUFrzY3QipYppDOBQ+yDD30PQKO0wD:9QUr0gHpObyDD35KO0wD

Score

3^/10

Malware Config

Signatures

Unsigned PE 44 IoCs

Checks for missing Authenticode signature.

resource
Imagine_1.4.1_Unicode_Full.exe
unpack001/$0/Imagine.dll
unpack001/$0/Imagine.exe
unpack001/$0/Imagine.wcx
unpack001/$0/Imagine.wlx
unpack001/$0/Plugin/7Z.plg
unpack001/$0/Plugin/ALZ.plg
unpack001/$0/Plugin/AVIF.plg
unpack001/$0/Plugin/BPG.plg
unpack001/$0/Plugin/CLIP.plg
unpack001/$0/Plugin/DCRaw.plg
unpack001/$0/Plugin/HDPhoto.plg
unpack001/$0/Plugin/HEIF.plg
unpack001/$0/Plugin/HV3.plg
unpack001/$0/Plugin/JBIG.plg
unpack001/$0/Plugin/JPEG2000.plg
unpack001/$0/Plugin/JPEGXL.plg
unpack001/$0/Plugin/OpenEXR.plg
unpack001/$0/Plugin/RAR.plg
unpack001/$0/Plugin/SVG.plg
unpack001/$0/Plugin/TGS.plg
unpack001/$0/Plugin/WebP.plg
unpack001/Imagine.dll
unpack001/Imagine.exe
unpack001/Imagine.wcx
unpack001/Imagine.wlx
unpack001/Plugin/7Z.plg
unpack001/Plugin/ALZ.plg
unpack001/Plugin/AVIF.plg
unpack001/Plugin/BPG.plg
unpack001/Plugin/CLIP.plg
unpack001/Plugin/DCRaw.plg
unpack001/Plugin/HDPhoto.plg
unpack001/Plugin/HEIF.plg
unpack001/Plugin/HV3.plg
unpack001/Plugin/JBIG.plg
unpack001/Plugin/JPEG2000.plg
unpack001/Plugin/JPEGXL.plg
unpack001/Plugin/OpenEXR.plg
unpack001/Plugin/RAR.plg
unpack001/Plugin/SVG.plg
unpack001/Plugin/TGS.plg
unpack001/Plugin/WebP.plg
unpack001/Uninstall.exe

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/Uninstall.exe	nsis_installer_1
static1/unpack001/Uninstall.exe	nsis_installer_2

Files

Imagine_1.4.1_Unicode_Full.exe
.exe windows:4 windows x86 arch:x86

57e98d9a5a72c8d7ad8fb7a6a58b3daf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
CreateFileA
GetFileSize
GetModuleFileNameA
ReadFile
GetCurrentProcess
CopyFileA
Sleep
GetTickCount
GetWindowsDirectoryA
GetTempPathA
GetCommandLineA
lstrlenA
GetVersion
SetErrorMode
lstrcpynA
ExitProcess
SetCurrentDirectoryA
GlobalLock
CreateThread
GetLastError
CreateDirectoryA
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
WriteFile
lstrcpyA
MoveFileExA
lstrcatA
GetSystemDirectoryA
GetProcAddress
GetExitCodeProcess
WaitForSingleObject
CompareFileTime
SetFileAttributesA
GetFileAttributesA
GetShortPathNameA
MoveFileA
GetFullPathNameA
SetFileTime
SearchPathA
CloseHandle
lstrcmpiA
GlobalUnlock
GetDiskFreeSpaceA
lstrcmpA
FindFirstFileA
FindNextFileA
DeleteFileA
SetFilePointer
GetPrivateProfileStringA
FindClose
MultiByteToWideChar
FreeLibrary
MulDiv
WritePrivateProfileStringA
LoadLibraryExA
GetModuleHandleA
GlobalAlloc
GlobalFree
ExpandEnvironmentStringsA

user32

ScreenToClient
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
PostQuitMessage
GetWindowRect
EnableMenuItem
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
ReleaseDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndDialog
RegisterClassA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
GetDC
CreateDialogParamA
SetTimer
GetDlgItem
SetWindowLongA
SetForegroundWindow
LoadImageA
IsWindow
SendMessageTimeoutA
FindWindowExA
OpenClipboard
TrackPopupMenu
AppendMenuA
EndPaint
DestroyWindow
wsprintfA
ShowWindow
SetWindowTextA

gdi32

SelectObject
SetBkMode
CreateFontIndirectA
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
ShellExecuteExA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
SHFileOperationA

advapi32

AdjustTokenPrivileges
RegCreateKeyExA
RegOpenKeyExA
SetFileSecurityA
OpenProcessToken
LookupPrivilegeValueA
RegEnumValueA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegEnumKeyA

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_Destroy
ord17

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
CoCreateInstance

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$0/Imagine.chm
.chm
$0/Imagine.dll
.dll regsvr32 windows:4 windows x86 arch:x86

8ef79fc63c594bc51c76f44c41e78272

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InitializeCriticalSection
SetErrorMode
DeleteCriticalSection
InterlockedExchange
SetFileTime
GetFileTime
GetPrivateProfileIntW
WritePrivateProfileStringW
LoadLibraryExW
Sleep
GetCommandLineW
Process32NextW
Module32NextW
Module32FirstW
GetCurrentProcessId
Process32FirstW
CreateToolhelp32Snapshot
GetExitCodeThread
CreateRemoteThread
GetDateFormatW
EnumDateFormatsW
GetTimeFormatW
EnumTimeFormatsW
GetEnvironmentVariableW
GetPrivateProfileStringW
GetPrivateProfileStructW
WritePrivateProfileStructW
GetFullPathNameW
GetFileInformationByHandle
SystemTimeToFileTime
GetShortPathNameW
GetCurrentThreadId
MoveFileW
OpenProcess
TerminateProcess
GetCurrentProcess
GetWindowsDirectoryW
GetVersionExW
LoadLibraryW
FreeLibrary
GetProfileStringW
FindFirstFileW
FindNextFileW
FindClose
FormatMessageW
CreateProcessW
GetLastError
ResumeThread
OpenFileMappingW
GetStartupInfoW
GetFileSize
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetDriveTypeA
GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
LCMapStringW
LCMapStringA
GetModuleHandleA
GetCurrentDirectoryA
SetEndOfFile
ExitProcess
GetStartupInfoA
GetStdHandle
SetHandleCount
GetLocalTime
GetSystemTime
GetTimeZoneInformation
DeleteFileA
RtlUnwind
GetVersion
GetCommandLineA
InterlockedIncrement
InterlockedDecrement
GetDriveTypeW
GetFileType
SetStdHandle
CreateFileA
HeapReAlloc
LoadLibraryA
RaiseException
FreeResource
FindResourceW
SizeofResource
LoadResource
LockResource
MulDiv
lstrcpynW
SetCurrentDirectoryW
GetFileAttributesW
GetTempPathW
GetModuleFileNameW
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
PeekNamedPipe
CompareFileTime
DeleteFileW
WriteFile
ReadFile
SetFilePointer
CreateFileW
FindFirstChangeNotificationW
SetEvent
TerminateThread
WaitForMultipleObjects
WaitForSingleObject
FindNextChangeNotification
ReleaseMutex
FindCloseChangeNotification
CreateMutexW
CreateEventW
CreateThread
CreateDirectoryW
UnmapViewOfFile
CreateFileMappingW
MapViewOfFile
CloseHandle
HeapAlloc
MultiByteToWideChar
DosDateTimeToFileTime
LocalFileTimeToFileTime
GetProcessHeap
HeapFree
lstrcmpW
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
WideCharToMultiByte
lstrcmpiW
lstrcatW
GetCurrentDirectoryW
lstrcpyW
lstrlenW
LocalFree
LocalAlloc
GetTickCount

user32

GetCursor
AttachThreadInput
WindowFromPoint
MessageBeep
UnregisterHotKey
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
WinHelpW
LoadStringW
GetSystemMenu
ShowScrollBar
GetAsyncKeyState
CreateAcceleratorTableW
UnhookWindowsHookEx
SetWindowsHookExW
CallNextHookEx
SetCursorPos
RegisterHotKey
EnumChildWindows
IsIconic
GetMessagePos
SetForegroundWindow
GetMenuItemRect
ChangeClipboardChain
SetClipboardViewer
MapVirtualKeyW
GetKeyNameTextW
GetWindowThreadProcessId
EnumWindows
WaitForInputIdle
GetScrollPos
PtInRect
DrawFrameControl
GetWindowTextLengthW
DrawStateW
GetIconInfo
CharNextW
WindowFromDC
GetForegroundWindow
DialogBoxIndirectParamW
GetClassNameW
InsertMenuItemW
SystemParametersInfoA
IsDialogMessageW
CreateDialogParamW
LoadIconW
IsWindowVisible
FindWindowW
wsprintfA
SendMessageA
IsWindowUnicode
SetWindowTextA
CheckRadioButton
MapWindowPoints
GetCursorPos
IsRectEmpty
InflateRect
GetWindowTextW
SystemParametersInfoW
GetDlgCtrlID
GetMenuItemCount
DeleteMenu
GetFocus
DrawEdge
GetSysColorBrush
ScreenToClient
GetDesktopWindow
GetWindowPlacement
SetWindowPlacement
IsZoomed
GetCapture
ReleaseCapture
SetCapture
AdjustWindowRectEx
GetMenu
PostQuitMessage
SetFocus
GetWindow
SetWindowTextW
ShowWindow
GetMessageW
TranslateMessage
DispatchMessageW
GetWindowRect
AppendMenuW
GetSubMenu
IsClipboardFormatAvailable
FillRect
SetCursor
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
RegisterClipboardFormatW
GetDlgItemTextW
SetTimer
KillTimer
BeginPaint
SetRect
OffsetRect
EndPaint
DefWindowProcW
GetClassInfoW
LoadCursorW
RegisterClassW
PostThreadMessageW
GetClassLongW
SetClassLongW
InvalidateRect
GetSystemMetrics
SetScrollInfo
SetMenuItemInfoW
CheckMenuItem
EnableMenuItem
TranslateAcceleratorW
DrawMenuBar
DestroyAcceleratorTable
LoadMenuW
SetMenu
GetDC
ReleaseDC
InsertMenuW
CreatePopupMenu
SetMenuDefaultItem
TrackPopupMenu
DestroyMenu
LoadImageW
DrawIconEx
UpdateWindow
DestroyWindow
CreateWindowExW
IsDlgButtonChecked
CheckDlgButton
SetDlgItemTextW
EnableWindow
DrawTextW
DrawFocusRect
GetSysColor
GetMenuItemInfoW
PeekMessageW
GetKeyState
GetWindowDC
CreateIconIndirect
GetScrollInfo
ClientToScreen
PostMessageW
MessageBoxW
GetDlgItemInt
SetDlgItemInt
SendDlgItemMessageW
GetParent
DestroyIcon
EndDialog
SetWindowPos
RemovePropW
GetPropW
CallWindowProcW
GetWindowLongW
SetPropW
GetClientRect
GetDlgItem
IsWindow
wsprintfW
SetWindowLongW
SendMessageW
DialogBoxParamW
GetMenuItemID

gdi32

CreateRectRgnIndirect
Rectangle
GetStockObject
CreateFontIndirectW
SetROP2
GetObjectA
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
SetMapMode
DeleteDC
CreateDCW
CreateSolidBrush
GetCurrentObject
SelectClipRgn
ExtTextOutW
SetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
CreateRectRgn
GetPaletteEntries
CreateHalftonePalette
AbortDoc
EndDoc
EndPage
StartPage
StartDocW
SetAbortProc
Polygon
CreateHatchBrush
GetObjectW
SetStretchBltMode
SetBrushOrgEx
GetDeviceCaps
GetTextExtentPoint32W
LPtoDP
SetBkMode
CreatePen
SelectObject
MoveToEx
LineTo
SetTextColor
BitBlt
SelectPalette
CreatePalette
StretchDIBits
RealizePalette
DeleteObject
CreateDIBSection
SetDIBitsToDevice
DeleteEnhMetaFile
PlayEnhMetaFile
GetEnhMetaFileHeader
SetEnhMetaFileBits
GetEnhMetaFileBits
CloseEnhMetaFile
CreateEnhMetaFileW
DeleteMetaFile
SetWinMetaFileBits
GetMetaFileBitsEx
SetMetaFileBitsEx
CloseMetaFile
CreateMetaFileW
GetICMProfileW
SetDIBits

comctl32

PropertySheetW
ord17
ImageList_DrawEx
ImageList_GetIcon
ImageList_GetIconSize
ImageList_Add
ImageList_Create
ImageList_BeginDrag
ImageList_EndDrag
ImageList_Destroy
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_ReplaceIcon

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetPluginInterface
adler32
compress
crc32
deflate
deflateEnd
deflateInit2_
deflateInit_
get_crc_table
inflate
inflateBackInit_
inflateEnd
inflateInit2_
inflateInit_
inflateSyncPoint
jpeg_CreateCompress
jpeg_CreateDecompress
jpeg_abort_compress
jpeg_abort_decompress
jpeg_destroy_compress
jpeg_destroy_decompress
jpeg_finish_compress
jpeg_finish_decompress
jpeg_mem_src
jpeg_read_header
jpeg_read_scanlines
jpeg_resync_to_restart
jpeg_set_defaults
jpeg_set_quality
jpeg_simple_progression
jpeg_start_compress
jpeg_start_decompress
jpeg_std_error
jpeg_stdio_dest
jpeg_stdio_src
jpeg_write_scanlines
uncompress

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 227KB - Virtual size: 227KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 281KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Imagine.exe
.exe windows:4 windows x86 arch:x86

359952f7236858b71497f85499e2614d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleHandleW
FreeLibrary
GetCommandLineW
GetLastError
LoadLibraryW
lstrcpyW
GetModuleFileNameW
LocalFree
FormatMessageW
GetStartupInfoW
GetProcAddress

user32

TranslateMessage
GetMessageW
MessageBoxW
DispatchMessageW

Sections

.text
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$0/Imagine.wcx
.dll windows:4 windows x86 arch:x86

5d63995d1bd61b212e35a61ebc32711a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryW
lstrcpyW
GetModuleFileNameW
FreeLibrary
FileTimeToDosDateTime
FileTimeToLocalFileTime
LocalAlloc
lstrcatW
LocalFree
lstrlenW

user32

GetForegroundWindow
wsprintfW

Exports

Exports

CanYouHandleThisFileW
CloseArchive
GetPackerCaps
OpenArchive
OpenArchiveW
PackFiles
PackFilesW
PackSetDefaultParams
ProcessFile
ProcessFileW
ReadHeader
ReadHeaderEx
ReadHeaderExW
SetChangeVolProc
SetChangeVolProcW
SetProcessDataProc
SetProcessDataProcW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Imagine.wlx
.dll windows:4 windows x86 arch:x86

a9ff84b50e81c54cd824f51e791b269f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryW
lstrcpyW
GetModuleFileNameW
FreeLibrary
GetProcAddress

Exports

Exports

ListGetDetectString
ListGetPreviewBitmapW
ListLoad
ListLoadNextW
ListLoadW
ListPrintW
ListSendCommand
ListSetDefaultParams

Sections

.text
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 495B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Language/Arabic.lng
$0/Language/Belarusian.lng
$0/Language/Bulgarian.lng
$0/Language/Croatian.lng
$0/Language/Czech.lng
$0/Language/Danish.lng
$0/Language/Estonian.lng
$0/Language/French.lng
$0/Language/German.lng
$0/Language/Hungarian.lng
$0/Language/Italiano.lng
$0/Language/Japanese.lng
$0/Language/Korean.lng
$0/Language/Nederlands.lng
$0/Language/Polish.lng
$0/Language/Portuguese (Brazil).lng
$0/Language/Portuguese (Portugal).lng
$0/Language/Romanian.lng
$0/Language/Russian.lng
$0/Language/SimplifiedChinese.lng
$0/Language/Slovenian.lng
$0/Language/Spanish.lng
$0/Language/Svenska.lng
$0/Language/TraditionalChinese.lng
$0/Language/Turkish.lng
$0/Language/Ukrainian.lng
$0/Language/Uzbek (O'zbekcha).lng
$0/PlugInst.inf
$0/Plugin/7Z.plg
.dll windows:4 windows x86 arch:x86

f31dbdb5cc23d854f9db8df69c99dd52

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
GetWindowLongA
EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA

kernel32

SetFilePointer
ReadFile
HeapAlloc
GetProcessHeap
HeapFree
GetLastError

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 414B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/ALZ.plg
.dll windows:4 windows x86 arch:x86

1a93a66d6991740d505ed4e5e50e766b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

DosDateTimeToFileTime
LocalFileTimeToFileTime
WideCharToMultiByte
GetFileSize
CreateFileA
CloseHandle
SetFilePointer
GetLastError
ReadFile
RtlUnwind
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
HeapReAlloc
IsBadWritePtr
InitializeCriticalSection
FlushFileBuffers
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetProcAddress
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
InterlockedDecrement
InterlockedIncrement
SetStdHandle
LCMapStringA
LCMapStringW

user32

DestroyIcon
GetWindowLongA
EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA

imagine

get_crc_table
inflateInit2_
inflate
inflateEnd
crc32

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/AVIF.plg
.dll windows:6 windows x86 arch:x86

a3a7d8941a799daeeea2a1ea430577c7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

kernel32

WriteConsoleW
CreateFileW
GetConsoleOutputCP
WriteFile
FlushFileBuffers
SetStdHandle
CloseHandle
WaitForSingleObject
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
GetCurrentThread
GetThreadGroupAffinity
InitOnceBeginInitialize
InitOnceComplete
GetModuleHandleW
GetProcAddress
WakeConditionVariable
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
InterlockedFlushSList
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
RaiseException
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetModuleFileNameW
HeapAlloc
HeapFree
LCMapStringW
GetStdHandle
GetFileType
DecodePointer
GetConsoleMode
SetFilePointerEx
HeapReAlloc
HeapSize
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetFileSizeEx
GetStringTypeW

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW
dav1d_apply_grain
dav1d_close
dav1d_data_create
dav1d_data_props_unref
dav1d_data_unref
dav1d_data_wrap
dav1d_data_wrap_user_data
dav1d_default_settings
dav1d_flush
dav1d_get_decode_error_data_props
dav1d_get_event_flags
dav1d_get_frame_delay
dav1d_get_picture
dav1d_open
dav1d_parse_sequence_header
dav1d_picture_unref
dav1d_send_data
dav1d_set_cpu_flags_mask
dav1d_version
dav1d_version_api

Sections

.text
Size: 940KB - Virtual size: 939KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/BPG.plg
.dll windows:6 windows x86 arch:x86

d7aa610f57c6373c9964104ff41a57bf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

kernel32

DecodePointer
WriteConsoleW
CloseHandle
CreateFileW
SetFilePointerEx
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
HeapReAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
LCMapStringW
GetProcessHeap
GetStdHandle
GetFileType
GetStringTypeW
HeapSize
SetStdHandle
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/CLIP.plg
.dll windows:4 windows x86 arch:x86

5f74552e235e6eac1cc3e283b613b745

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

Sleep
InitializeCriticalSection
InterlockedCompareExchange
DeleteCriticalSection
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
WideCharToMultiByte
MultiByteToWideChar
AreFileApisANSI
CloseHandle
ReadFile
GetLastError
SetFilePointer
WriteFile
SetEndOfFile
FlushFileBuffers
GetFileSize
UnlockFile
LockFile
LockFileEx
GetVersionExA
CreateFileA
CreateFileW
GetTempPathA
GetTempPathW
GetFileAttributesA
DeleteFileA
GetFileAttributesW
DeleteFileW
GetFullPathNameA
GetFullPathNameW
GetDiskFreeSpaceA
GetDiskFreeSpaceW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTime
GetSystemTimeAsFileTime
LocalFree
FormatMessageA
FormatMessageW
HeapAlloc
GetProcessHeap
HeapFree
HeapReAlloc
RtlUnwind

user32

SetWindowLongA
SetDlgItemTextA
SetDlgItemTextW
EndDialog
GetWindowLongA
DestroyIcon
DialogBoxParamA

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/DCRaw.plg
.dll windows:4 windows x86 arch:x86

5fdf941a6ce152bd9b791b411470b5d0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
CompareStringA
CompareStringW
InitializeCriticalSection
WriteConsoleA
InterlockedExchange
CloseHandle
CreateFileA
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
MultiByteToWideChar
Sleep
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetLastError
RaiseException
HeapReAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetCPInfo
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualAlloc
WriteFile
GetACP
GetOEMCP
SetStdHandle
GetConsoleCP
GetConsoleMode
ReadFile
SetFilePointer
FlushFileBuffers
GetTimeZoneInformation
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
HeapSize
LoadLibraryA
SetEnvironmentVariableA

user32

DialogBoxParamA
DestroyIcon
GetWindowLongA
EndDialog
SetWindowLongA
SetDlgItemTextW
SetDlgItemTextA

imagine

jpeg_abort_decompress
jpeg_start_decompress
jpeg_read_scanlines
jpeg_finish_decompress
jpeg_resync_to_restart
jpeg_std_error
jpeg_CreateDecompress
jpeg_mem_src
jpeg_read_header
jpeg_destroy_decompress

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 533KB - Virtual size: 532KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 553KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/HDPhoto.plg
.dll windows:4 windows x86 arch:x86

5e5fe3f3e1cc3c11907abea667b98f8d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
GetWindowLongA
EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA

kernel32

SetEndOfFile
FlushFileBuffers
GetTempFileNameA
GetTempPathA
RtlUnwind
GetCommandLineA
GetVersion
HeapAlloc
HeapFree
InterlockedDecrement
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetProcAddress
CloseHandle
ReadFile
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetStringTypeA
GetStringTypeW
CreateFileA
SetStdHandle

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/HEIF.plg
.dll windows:6 windows x86 arch:x86

946c2627198111b69b014501140c4b37

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

imagine

jpeg_destroy_decompress
jpeg_mem_src
jpeg_CreateDecompress
jpeg_std_error
jpeg_start_decompress
jpeg_read_scanlines
jpeg_finish_decompress
jpeg_read_header

avif.plg

dav1d_open
dav1d_close
dav1d_get_picture
dav1d_send_data
dav1d_picture_unref
dav1d_default_settings
dav1d_data_unref
dav1d_data_create

kernel32

CreateFileW
WriteConsoleW
GetProcessHeap
MultiByteToWideChar
CloseHandle
ReleaseMutex
WaitForSingleObject
CreateMutexA
CreateThread
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseSemaphore
CreateEventA
SignalObjectAndWait
CreateSemaphoreA
InitializeSListHead
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
IsDebuggerPresent
GetStartupInfoW
WideCharToMultiByte
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
TryEnterCriticalSection
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
GetCPInfo
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
WriteFile
GetConsoleOutputCP
GetConsoleMode
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetStdHandle
GetFileType
FlushFileBuffers
ReadFile
GetFileSizeEx
SetFilePointerEx
ReadConsoleW
SetStdHandle
HeapReAlloc
HeapSize
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 585KB - Virtual size: 584KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/HV3.plg
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/JBIG.plg
.dll windows:4 windows x86 arch:x86

95d2f3ae44f1c75a75af13ae009130ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA
DestroyIcon
GetWindowLongA

kernel32

RtlUnwind
HeapReAlloc
HeapFree
GetProcessHeap
HeapAlloc

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/JPEG2000.plg
.dll windows:4 windows x86 arch:x86

1dc365c6fc7f0b3712c943fe268a6c51

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
GetWindowLongA
EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA

kernel32

QueryPerformanceCounter
QueryPerformanceFrequency
RtlUnwind
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
InitializeCriticalSection
RaiseException
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
FlushFileBuffers
SetFilePointer
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
CloseHandle
SetStdHandle

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/JPEGXL.plg
.dll windows:6 windows x86 arch:x86

2dc11df5ad845a29bff5329288b14499

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

kernel32

WriteConsoleW
CreateFileW
HeapSize
SetStdHandle
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetExitCodeThread
GetNativeSystemInfo
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
TryEnterCriticalSection
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SleepConditionVariableSRW
WideCharToMultiByte
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
GetCPInfo
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetModuleFileNameW
HeapAlloc
HeapFree
LCMapStringW
GetStdHandle
GetFileType
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetFileSizeEx
SetFilePointerEx
HeapReAlloc

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 705KB - Virtual size: 705KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 267KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/OpenEXR.plg
.dll windows:4 windows x86 arch:x86

f6dfdce1bf8c1d2d9c59801d72f6c9d9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DialogBoxParamA
DestroyIcon
GetWindowLongA
EndDialog
SetWindowLongA
SetDlgItemTextW
SetDlgItemTextA

imagine

uncompress
compress

kernel32

InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CloseHandle
WaitForSingleObject
LocalFree
FormatMessageA
GetLastError
CreateSemaphoreA
ReleaseSemaphore
HeapAlloc
RtlUnwind
RaiseException
HeapFree
GetCurrentThreadId
GetCommandLineA
GetVersionExA
IsBadReadPtr
ExitThread
CreateThread
GetProcAddress
GetModuleHandleA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
SetUnhandledExceptionFilter
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
HeapSize
FlushFileBuffers
SetFilePointer
InterlockedExchange
VirtualQuery
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
LCMapStringA
LCMapStringW
SetStdHandle
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualProtect
GetSystemInfo
GetLocaleInfoW

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 577KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/RAR.plg
.dll windows:6 windows x86 arch:x86

50f4b9bd784dadcdbaa08cbb4ce63480

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

LocalFileTimeToFileTime
DosDateTimeToFileTime
VirtualQuery
VirtualProtect
GetSystemInfo
AreFileApisANSI
CompareStringW
MultiByteToWideChar
WideCharToMultiByte
GetCPInfo
IsDBCSLeadByte
GetLastError
SetLastError
Sleep
GetCurrentProcessId
FreeLibrary
GetProcAddress
FileTimeToLocalFileTime
GetSystemTime
SystemTimeToTzSpecificLocalTime
TzSpecificLocalTimeToSystemTime
FileTimeToSystemTime
SystemTimeToFileTime
GetCurrentDirectoryW
GetFullPathNameW
GetModuleFileNameW
FoldStringW
CloseHandle
CreateEventW
GetCurrentProcess
SetThreadPriority
GetSystemDirectoryW
LoadLibraryW
SetThreadExecutionState
GetVersionExW
CreateDirectoryW
CreateFileW
DeleteFileW
GetFileAttributesW
RemoveDirectoryW
SetFileAttributesW
SetFileTime
DeviceIoControl
MoveFileW
FindClose
FindFirstFileW
FindNextFileW
GetStdHandle
FlushFileBuffers
GetFileType
ReadFile
SetEndOfFile
SetFilePointer
WriteFile
GetConsoleMode
GetLongPathNameW
GetShortPathNameW
CreateHardLinkW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetEvent
ResetEvent
ReleaseSemaphore
WaitForSingleObject
CreateSemaphoreW
CreateThread
GetProcessAffinityMask
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
GetModuleHandleW
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
LocalFree
RtlUnwind
RaiseException
InterlockedFlushSList
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
ExitProcess
GetModuleHandleExW
QueryPerformanceFrequency
HeapFree
HeapReAlloc
HeapAlloc
LCMapStringW
SetStdHandle
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
SetFilePointerEx
GetStringTypeW
GetConsoleOutputCP
HeapSize
DecodePointer
WriteConsoleW
LoadLibraryExA

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/SVG.plg
.dll windows:6 windows x86 arch:x86

6e5a0a4399a8e260b1d06366ecdbb99e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

imagine

inflateEnd
inflate
inflateInit2_

kernel32

CreateFileW
WriteConsoleW
SetStdHandle
HeapSize
IsProcessorFeaturePresent
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
InitializeCriticalSectionEx
EncodePointer
DecodePointer
MultiByteToWideChar
WideCharToMultiByte
GetStringTypeW
GetCPInfo
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
LCMapStringW
GetStdHandle
GetFileType
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
HeapReAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/TGS.plg
.dll windows:6 windows x86 arch:x86

1e87e6534085365b380aca2b1b2d69dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

imagine

inflateEnd
inflate
inflateInit2_

kernel32

SetEndOfFile
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapSize
WriteConsoleW
SetEnvironmentVariableW
GetProcessHeap
MultiByteToWideChar
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetExitCodeThread
GetNativeSystemInfo
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
TryEnterCriticalSection
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SleepConditionVariableSRW
WideCharToMultiByte
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
GetCPInfo
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ReadFile
CreateFileW
GetFileType
ExitProcess
GetModuleFileNameW
HeapFree
HeapAlloc
GetStdHandle
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
ReadConsoleW
HeapReAlloc
SetStdHandle
GetTimeZoneInformation
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 430KB - Virtual size: 430KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/WebP.plg
.dll windows:4 windows x86 arch:x86

267512be2367eb1695cd3a038c285ea7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

InitializeCriticalSection
GetSystemInfo
VirtualProtect
GetStringTypeW
GetStringTypeA
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapAlloc
HeapFree
GetProcAddress
GetModuleHandleA
InterlockedExchange
VirtualQuery
ExitProcess
TerminateProcess
GetCurrentProcess
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
RaiseException
LCMapStringA
MultiByteToWideChar
LCMapStringW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetLocaleInfoA

user32

DialogBoxParamA
DestroyIcon
GetWindowLongA
EndDialog
SetWindowLongA
SetDlgItemTextW
SetDlgItemTextA

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 282KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$0/Plugin/dir.txt
$0/Readme.txt
$0/Whatsnew.txt
Imagine.chm
.chm
Imagine.dll
.dll regsvr32 windows:4 windows x86 arch:x86

8ef79fc63c594bc51c76f44c41e78272

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InitializeCriticalSection
SetErrorMode
DeleteCriticalSection
InterlockedExchange
SetFileTime
GetFileTime
GetPrivateProfileIntW
WritePrivateProfileStringW
LoadLibraryExW
Sleep
GetCommandLineW
Process32NextW
Module32NextW
Module32FirstW
GetCurrentProcessId
Process32FirstW
CreateToolhelp32Snapshot
GetExitCodeThread
CreateRemoteThread
GetDateFormatW
EnumDateFormatsW
GetTimeFormatW
EnumTimeFormatsW
GetEnvironmentVariableW
GetPrivateProfileStringW
GetPrivateProfileStructW
WritePrivateProfileStructW
GetFullPathNameW
GetFileInformationByHandle
SystemTimeToFileTime
GetShortPathNameW
GetCurrentThreadId
MoveFileW
OpenProcess
TerminateProcess
GetCurrentProcess
GetWindowsDirectoryW
GetVersionExW
LoadLibraryW
FreeLibrary
GetProfileStringW
FindFirstFileW
FindNextFileW
FindClose
FormatMessageW
CreateProcessW
GetLastError
ResumeThread
OpenFileMappingW
GetStartupInfoW
GetFileSize
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetDriveTypeA
GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
LCMapStringW
LCMapStringA
GetModuleHandleA
GetCurrentDirectoryA
SetEndOfFile
ExitProcess
GetStartupInfoA
GetStdHandle
SetHandleCount
GetLocalTime
GetSystemTime
GetTimeZoneInformation
DeleteFileA
RtlUnwind
GetVersion
GetCommandLineA
InterlockedIncrement
InterlockedDecrement
GetDriveTypeW
GetFileType
SetStdHandle
CreateFileA
HeapReAlloc
LoadLibraryA
RaiseException
FreeResource
FindResourceW
SizeofResource
LoadResource
LockResource
MulDiv
lstrcpynW
SetCurrentDirectoryW
GetFileAttributesW
GetTempPathW
GetModuleFileNameW
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
PeekNamedPipe
CompareFileTime
DeleteFileW
WriteFile
ReadFile
SetFilePointer
CreateFileW
FindFirstChangeNotificationW
SetEvent
TerminateThread
WaitForMultipleObjects
WaitForSingleObject
FindNextChangeNotification
ReleaseMutex
FindCloseChangeNotification
CreateMutexW
CreateEventW
CreateThread
CreateDirectoryW
UnmapViewOfFile
CreateFileMappingW
MapViewOfFile
CloseHandle
HeapAlloc
MultiByteToWideChar
DosDateTimeToFileTime
LocalFileTimeToFileTime
GetProcessHeap
HeapFree
lstrcmpW
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
WideCharToMultiByte
lstrcmpiW
lstrcatW
GetCurrentDirectoryW
lstrcpyW
lstrlenW
LocalFree
LocalAlloc
GetTickCount

user32

GetCursor
AttachThreadInput
WindowFromPoint
MessageBeep
UnregisterHotKey
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
WinHelpW
LoadStringW
GetSystemMenu
ShowScrollBar
GetAsyncKeyState
CreateAcceleratorTableW
UnhookWindowsHookEx
SetWindowsHookExW
CallNextHookEx
SetCursorPos
RegisterHotKey
EnumChildWindows
IsIconic
GetMessagePos
SetForegroundWindow
GetMenuItemRect
ChangeClipboardChain
SetClipboardViewer
MapVirtualKeyW
GetKeyNameTextW
GetWindowThreadProcessId
EnumWindows
WaitForInputIdle
GetScrollPos
PtInRect
DrawFrameControl
GetWindowTextLengthW
DrawStateW
GetIconInfo
CharNextW
WindowFromDC
GetForegroundWindow
DialogBoxIndirectParamW
GetClassNameW
InsertMenuItemW
SystemParametersInfoA
IsDialogMessageW
CreateDialogParamW
LoadIconW
IsWindowVisible
FindWindowW
wsprintfA
SendMessageA
IsWindowUnicode
SetWindowTextA
CheckRadioButton
MapWindowPoints
GetCursorPos
IsRectEmpty
InflateRect
GetWindowTextW
SystemParametersInfoW
GetDlgCtrlID
GetMenuItemCount
DeleteMenu
GetFocus
DrawEdge
GetSysColorBrush
ScreenToClient
GetDesktopWindow
GetWindowPlacement
SetWindowPlacement
IsZoomed
GetCapture
ReleaseCapture
SetCapture
AdjustWindowRectEx
GetMenu
PostQuitMessage
SetFocus
GetWindow
SetWindowTextW
ShowWindow
GetMessageW
TranslateMessage
DispatchMessageW
GetWindowRect
AppendMenuW
GetSubMenu
IsClipboardFormatAvailable
FillRect
SetCursor
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
RegisterClipboardFormatW
GetDlgItemTextW
SetTimer
KillTimer
BeginPaint
SetRect
OffsetRect
EndPaint
DefWindowProcW
GetClassInfoW
LoadCursorW
RegisterClassW
PostThreadMessageW
GetClassLongW
SetClassLongW
InvalidateRect
GetSystemMetrics
SetScrollInfo
SetMenuItemInfoW
CheckMenuItem
EnableMenuItem
TranslateAcceleratorW
DrawMenuBar
DestroyAcceleratorTable
LoadMenuW
SetMenu
GetDC
ReleaseDC
InsertMenuW
CreatePopupMenu
SetMenuDefaultItem
TrackPopupMenu
DestroyMenu
LoadImageW
DrawIconEx
UpdateWindow
DestroyWindow
CreateWindowExW
IsDlgButtonChecked
CheckDlgButton
SetDlgItemTextW
EnableWindow
DrawTextW
DrawFocusRect
GetSysColor
GetMenuItemInfoW
PeekMessageW
GetKeyState
GetWindowDC
CreateIconIndirect
GetScrollInfo
ClientToScreen
PostMessageW
MessageBoxW
GetDlgItemInt
SetDlgItemInt
SendDlgItemMessageW
GetParent
DestroyIcon
EndDialog
SetWindowPos
RemovePropW
GetPropW
CallWindowProcW
GetWindowLongW
SetPropW
GetClientRect
GetDlgItem
IsWindow
wsprintfW
SetWindowLongW
SendMessageW
DialogBoxParamW
GetMenuItemID

gdi32

CreateRectRgnIndirect
Rectangle
GetStockObject
CreateFontIndirectW
SetROP2
GetObjectA
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
SetMapMode
DeleteDC
CreateDCW
CreateSolidBrush
GetCurrentObject
SelectClipRgn
ExtTextOutW
SetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
CreateRectRgn
GetPaletteEntries
CreateHalftonePalette
AbortDoc
EndDoc
EndPage
StartPage
StartDocW
SetAbortProc
Polygon
CreateHatchBrush
GetObjectW
SetStretchBltMode
SetBrushOrgEx
GetDeviceCaps
GetTextExtentPoint32W
LPtoDP
SetBkMode
CreatePen
SelectObject
MoveToEx
LineTo
SetTextColor
BitBlt
SelectPalette
CreatePalette
StretchDIBits
RealizePalette
DeleteObject
CreateDIBSection
SetDIBitsToDevice
DeleteEnhMetaFile
PlayEnhMetaFile
GetEnhMetaFileHeader
SetEnhMetaFileBits
GetEnhMetaFileBits
CloseEnhMetaFile
CreateEnhMetaFileW
DeleteMetaFile
SetWinMetaFileBits
GetMetaFileBitsEx
SetMetaFileBitsEx
CloseMetaFile
CreateMetaFileW
GetICMProfileW
SetDIBits

comctl32

PropertySheetW
ord17
ImageList_DrawEx
ImageList_GetIcon
ImageList_GetIconSize
ImageList_Add
ImageList_Create
ImageList_BeginDrag
ImageList_EndDrag
ImageList_Destroy
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_ReplaceIcon

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetPluginInterface
adler32
compress
crc32
deflate
deflateEnd
deflateInit2_
deflateInit_
get_crc_table
inflate
inflateBackInit_
inflateEnd
inflateInit2_
inflateInit_
inflateSyncPoint
jpeg_CreateCompress
jpeg_CreateDecompress
jpeg_abort_compress
jpeg_abort_decompress
jpeg_destroy_compress
jpeg_destroy_decompress
jpeg_finish_compress
jpeg_finish_decompress
jpeg_mem_src
jpeg_read_header
jpeg_read_scanlines
jpeg_resync_to_restart
jpeg_set_defaults
jpeg_set_quality
jpeg_simple_progression
jpeg_start_compress
jpeg_start_decompress
jpeg_std_error
jpeg_stdio_dest
jpeg_stdio_src
jpeg_write_scanlines
uncompress

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 227KB - Virtual size: 227KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 281KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Imagine.exe
.exe windows:4 windows x86 arch:x86

359952f7236858b71497f85499e2614d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleHandleW
FreeLibrary
GetCommandLineW
GetLastError
LoadLibraryW
lstrcpyW
GetModuleFileNameW
LocalFree
FormatMessageW
GetStartupInfoW
GetProcAddress

user32

TranslateMessage
GetMessageW
MessageBoxW
DispatchMessageW

Sections

.text
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Imagine.wcx
.dll windows:4 windows x86 arch:x86

5d63995d1bd61b212e35a61ebc32711a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryW
lstrcpyW
GetModuleFileNameW
FreeLibrary
FileTimeToDosDateTime
FileTimeToLocalFileTime
LocalAlloc
lstrcatW
LocalFree
lstrlenW

user32

GetForegroundWindow
wsprintfW

Exports

Exports

CanYouHandleThisFileW
CloseArchive
GetPackerCaps
OpenArchive
OpenArchiveW
PackFiles
PackFilesW
PackSetDefaultParams
ProcessFile
ProcessFileW
ReadHeader
ReadHeaderEx
ReadHeaderExW
SetChangeVolProc
SetChangeVolProcW
SetProcessDataProc
SetProcessDataProcW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Imagine.wlx
.dll windows:4 windows x86 arch:x86

a9ff84b50e81c54cd824f51e791b269f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryW
lstrcpyW
GetModuleFileNameW
FreeLibrary
GetProcAddress

Exports

Exports

ListGetDetectString
ListGetPreviewBitmapW
ListLoad
ListLoadNextW
ListLoadW
ListPrintW
ListSendCommand
ListSetDefaultParams

Sections

.text
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 495B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Language/Arabic.lng
Language/Belarusian.lng
Language/Bulgarian.lng
Language/Croatian.lng
Language/Czech.lng
Language/Danish.lng
Language/Estonian.lng
Language/French.lng
Language/German.lng
Language/Hungarian.lng
Language/Italiano.lng
Language/Japanese.lng
Language/Korean.lng
Language/Nederlands.lng
Language/Polish.lng
Language/Portuguese (Brazil).lng
Language/Portuguese (Portugal).lng
Language/Romanian.lng
Language/Russian.lng
Language/SimplifiedChinese.lng
Language/Slovenian.lng
Language/Spanish.lng
Language/Svenska.lng
Language/TraditionalChinese.lng
Language/Turkish.lng
Language/Ukrainian.lng
Language/Uzbek (O'zbekcha).lng
PlugInst.inf
Plugin/7Z.plg
.dll windows:4 windows x86 arch:x86

f31dbdb5cc23d854f9db8df69c99dd52

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
GetWindowLongA
EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA

kernel32

SetFilePointer
ReadFile
HeapAlloc
GetProcessHeap
HeapFree
GetLastError

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 414B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/ALZ.plg
.dll windows:4 windows x86 arch:x86

1a93a66d6991740d505ed4e5e50e766b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

DosDateTimeToFileTime
LocalFileTimeToFileTime
WideCharToMultiByte
GetFileSize
CreateFileA
CloseHandle
SetFilePointer
GetLastError
ReadFile
RtlUnwind
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
HeapReAlloc
IsBadWritePtr
InitializeCriticalSection
FlushFileBuffers
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetProcAddress
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
InterlockedDecrement
InterlockedIncrement
SetStdHandle
LCMapStringA
LCMapStringW

user32

DestroyIcon
GetWindowLongA
EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA

imagine

get_crc_table
inflateInit2_
inflate
inflateEnd
crc32

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/AVIF.plg
.dll windows:6 windows x86 arch:x86

a3a7d8941a799daeeea2a1ea430577c7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

kernel32

WriteConsoleW
CreateFileW
GetConsoleOutputCP
WriteFile
FlushFileBuffers
SetStdHandle
CloseHandle
WaitForSingleObject
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
GetCurrentThread
GetThreadGroupAffinity
InitOnceBeginInitialize
InitOnceComplete
GetModuleHandleW
GetProcAddress
WakeConditionVariable
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
InterlockedFlushSList
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
RaiseException
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetModuleFileNameW
HeapAlloc
HeapFree
LCMapStringW
GetStdHandle
GetFileType
DecodePointer
GetConsoleMode
SetFilePointerEx
HeapReAlloc
HeapSize
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetFileSizeEx
GetStringTypeW

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW
dav1d_apply_grain
dav1d_close
dav1d_data_create
dav1d_data_props_unref
dav1d_data_unref
dav1d_data_wrap
dav1d_data_wrap_user_data
dav1d_default_settings
dav1d_flush
dav1d_get_decode_error_data_props
dav1d_get_event_flags
dav1d_get_frame_delay
dav1d_get_picture
dav1d_open
dav1d_parse_sequence_header
dav1d_picture_unref
dav1d_send_data
dav1d_set_cpu_flags_mask
dav1d_version
dav1d_version_api

Sections

.text
Size: 940KB - Virtual size: 939KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/BPG.plg
.dll windows:6 windows x86 arch:x86

d7aa610f57c6373c9964104ff41a57bf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

kernel32

DecodePointer
WriteConsoleW
CloseHandle
CreateFileW
SetFilePointerEx
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
HeapReAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
LCMapStringW
GetProcessHeap
GetStdHandle
GetFileType
GetStringTypeW
HeapSize
SetStdHandle
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/CLIP.plg
.dll windows:4 windows x86 arch:x86

5f74552e235e6eac1cc3e283b613b745

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

Sleep
InitializeCriticalSection
InterlockedCompareExchange
DeleteCriticalSection
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
WideCharToMultiByte
MultiByteToWideChar
AreFileApisANSI
CloseHandle
ReadFile
GetLastError
SetFilePointer
WriteFile
SetEndOfFile
FlushFileBuffers
GetFileSize
UnlockFile
LockFile
LockFileEx
GetVersionExA
CreateFileA
CreateFileW
GetTempPathA
GetTempPathW
GetFileAttributesA
DeleteFileA
GetFileAttributesW
DeleteFileW
GetFullPathNameA
GetFullPathNameW
GetDiskFreeSpaceA
GetDiskFreeSpaceW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTime
GetSystemTimeAsFileTime
LocalFree
FormatMessageA
FormatMessageW
HeapAlloc
GetProcessHeap
HeapFree
HeapReAlloc
RtlUnwind

user32

SetWindowLongA
SetDlgItemTextA
SetDlgItemTextW
EndDialog
GetWindowLongA
DestroyIcon
DialogBoxParamA

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/DCRaw.plg
.dll windows:4 windows x86 arch:x86

5fdf941a6ce152bd9b791b411470b5d0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
CompareStringA
CompareStringW
InitializeCriticalSection
WriteConsoleA
InterlockedExchange
CloseHandle
CreateFileA
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
MultiByteToWideChar
Sleep
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetLastError
RaiseException
HeapReAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetCPInfo
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualAlloc
WriteFile
GetACP
GetOEMCP
SetStdHandle
GetConsoleCP
GetConsoleMode
ReadFile
SetFilePointer
FlushFileBuffers
GetTimeZoneInformation
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
HeapSize
LoadLibraryA
SetEnvironmentVariableA

user32

DialogBoxParamA
DestroyIcon
GetWindowLongA
EndDialog
SetWindowLongA
SetDlgItemTextW
SetDlgItemTextA

imagine

jpeg_abort_decompress
jpeg_start_decompress
jpeg_read_scanlines
jpeg_finish_decompress
jpeg_resync_to_restart
jpeg_std_error
jpeg_CreateDecompress
jpeg_mem_src
jpeg_read_header
jpeg_destroy_decompress

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 533KB - Virtual size: 532KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 553KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/HDPhoto.plg
.dll windows:4 windows x86 arch:x86

5e5fe3f3e1cc3c11907abea667b98f8d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
GetWindowLongA
EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA

kernel32

SetEndOfFile
FlushFileBuffers
GetTempFileNameA
GetTempPathA
RtlUnwind
GetCommandLineA
GetVersion
HeapAlloc
HeapFree
InterlockedDecrement
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetProcAddress
CloseHandle
ReadFile
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetStringTypeA
GetStringTypeW
CreateFileA
SetStdHandle

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/HEIF.plg
.dll windows:6 windows x86 arch:x86

946c2627198111b69b014501140c4b37

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

imagine

jpeg_destroy_decompress
jpeg_mem_src
jpeg_CreateDecompress
jpeg_std_error
jpeg_start_decompress
jpeg_read_scanlines
jpeg_finish_decompress
jpeg_read_header

avif.plg

dav1d_open
dav1d_close
dav1d_get_picture
dav1d_send_data
dav1d_picture_unref
dav1d_default_settings
dav1d_data_unref
dav1d_data_create

kernel32

CreateFileW
WriteConsoleW
GetProcessHeap
MultiByteToWideChar
CloseHandle
ReleaseMutex
WaitForSingleObject
CreateMutexA
CreateThread
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseSemaphore
CreateEventA
SignalObjectAndWait
CreateSemaphoreA
InitializeSListHead
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
IsDebuggerPresent
GetStartupInfoW
WideCharToMultiByte
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
TryEnterCriticalSection
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
GetCPInfo
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
WriteFile
GetConsoleOutputCP
GetConsoleMode
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetStdHandle
GetFileType
FlushFileBuffers
ReadFile
GetFileSizeEx
SetFilePointerEx
ReadConsoleW
SetStdHandle
HeapReAlloc
HeapSize
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 585KB - Virtual size: 584KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/HV3.plg
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/JBIG.plg
.dll windows:4 windows x86 arch:x86

95d2f3ae44f1c75a75af13ae009130ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA
DestroyIcon
GetWindowLongA

kernel32

RtlUnwind
HeapReAlloc
HeapFree
GetProcessHeap
HeapAlloc

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/JPEG2000.plg
.dll windows:4 windows x86 arch:x86

1dc365c6fc7f0b3712c943fe268a6c51

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
GetWindowLongA
EndDialog
SetDlgItemTextW
SetDlgItemTextA
SetWindowLongA
DialogBoxParamA

kernel32

QueryPerformanceCounter
QueryPerformanceFrequency
RtlUnwind
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
InitializeCriticalSection
RaiseException
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
FlushFileBuffers
SetFilePointer
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
CloseHandle
SetStdHandle

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/JPEGXL.plg
.dll windows:6 windows x86 arch:x86

2dc11df5ad845a29bff5329288b14499

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

kernel32

WriteConsoleW
CreateFileW
HeapSize
SetStdHandle
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetExitCodeThread
GetNativeSystemInfo
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
TryEnterCriticalSection
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SleepConditionVariableSRW
WideCharToMultiByte
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
GetCPInfo
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetModuleFileNameW
HeapAlloc
HeapFree
LCMapStringW
GetStdHandle
GetFileType
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetFileSizeEx
SetFilePointerEx
HeapReAlloc

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 705KB - Virtual size: 705KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 267KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/OpenEXR.plg
.dll windows:4 windows x86 arch:x86

f6dfdce1bf8c1d2d9c59801d72f6c9d9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DialogBoxParamA
DestroyIcon
GetWindowLongA
EndDialog
SetWindowLongA
SetDlgItemTextW
SetDlgItemTextA

imagine

uncompress
compress

kernel32

InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CloseHandle
WaitForSingleObject
LocalFree
FormatMessageA
GetLastError
CreateSemaphoreA
ReleaseSemaphore
HeapAlloc
RtlUnwind
RaiseException
HeapFree
GetCurrentThreadId
GetCommandLineA
GetVersionExA
IsBadReadPtr
ExitThread
CreateThread
GetProcAddress
GetModuleHandleA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
SetUnhandledExceptionFilter
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
HeapSize
FlushFileBuffers
SetFilePointer
InterlockedExchange
VirtualQuery
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
LCMapStringA
LCMapStringW
SetStdHandle
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualProtect
GetSystemInfo
GetLocaleInfoW

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 577KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/RAR.plg
.dll windows:6 windows x86 arch:x86

50f4b9bd784dadcdbaa08cbb4ce63480

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

LocalFileTimeToFileTime
DosDateTimeToFileTime
VirtualQuery
VirtualProtect
GetSystemInfo
AreFileApisANSI
CompareStringW
MultiByteToWideChar
WideCharToMultiByte
GetCPInfo
IsDBCSLeadByte
GetLastError
SetLastError
Sleep
GetCurrentProcessId
FreeLibrary
GetProcAddress
FileTimeToLocalFileTime
GetSystemTime
SystemTimeToTzSpecificLocalTime
TzSpecificLocalTimeToSystemTime
FileTimeToSystemTime
SystemTimeToFileTime
GetCurrentDirectoryW
GetFullPathNameW
GetModuleFileNameW
FoldStringW
CloseHandle
CreateEventW
GetCurrentProcess
SetThreadPriority
GetSystemDirectoryW
LoadLibraryW
SetThreadExecutionState
GetVersionExW
CreateDirectoryW
CreateFileW
DeleteFileW
GetFileAttributesW
RemoveDirectoryW
SetFileAttributesW
SetFileTime
DeviceIoControl
MoveFileW
FindClose
FindFirstFileW
FindNextFileW
GetStdHandle
FlushFileBuffers
GetFileType
ReadFile
SetEndOfFile
SetFilePointer
WriteFile
GetConsoleMode
GetLongPathNameW
GetShortPathNameW
CreateHardLinkW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetEvent
ResetEvent
ReleaseSemaphore
WaitForSingleObject
CreateSemaphoreW
CreateThread
GetProcessAffinityMask
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
GetModuleHandleW
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
LocalFree
RtlUnwind
RaiseException
InterlockedFlushSList
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
ExitProcess
GetModuleHandleExW
QueryPerformanceFrequency
HeapFree
HeapReAlloc
HeapAlloc
LCMapStringW
SetStdHandle
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
SetFilePointerEx
GetStringTypeW
GetConsoleOutputCP
HeapSize
DecodePointer
WriteConsoleW
LoadLibraryExA

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/SVG.plg
.dll windows:6 windows x86 arch:x86

6e5a0a4399a8e260b1d06366ecdbb99e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

imagine

inflateEnd
inflate
inflateInit2_

kernel32

CreateFileW
WriteConsoleW
SetStdHandle
HeapSize
IsProcessorFeaturePresent
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
InitializeCriticalSectionEx
EncodePointer
DecodePointer
MultiByteToWideChar
WideCharToMultiByte
GetStringTypeW
GetCPInfo
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
LCMapStringW
GetStdHandle
GetFileType
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
HeapReAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/TGS.plg
.dll windows:6 windows x86 arch:x86

1e87e6534085365b380aca2b1b2d69dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

user32

DestroyIcon
SetWindowLongA
GetWindowLongA
SetDlgItemTextW
SetDlgItemTextA
EndDialog
DialogBoxParamA

imagine

inflateEnd
inflate
inflateInit2_

kernel32

SetEndOfFile
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapSize
WriteConsoleW
SetEnvironmentVariableW
GetProcessHeap
MultiByteToWideChar
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
CloseHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetExitCodeThread
GetNativeSystemInfo
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
TryEnterCriticalSection
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SleepConditionVariableSRW
WideCharToMultiByte
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
GetCPInfo
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ReadFile
CreateFileW
GetFileType
ExitProcess
GetModuleFileNameW
HeapFree
HeapAlloc
GetStdHandle
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
ReadConsoleW
HeapReAlloc
SetStdHandle
GetTimeZoneInformation
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 430KB - Virtual size: 430KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/WebP.plg
.dll windows:4 windows x86 arch:x86

267512be2367eb1695cd3a038c285ea7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteObject

kernel32

InitializeCriticalSection
GetSystemInfo
VirtualProtect
GetStringTypeW
GetStringTypeA
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapAlloc
HeapFree
GetProcAddress
GetModuleHandleA
InterlockedExchange
VirtualQuery
ExitProcess
TerminateProcess
GetCurrentProcess
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
RaiseException
LCMapStringA
MultiByteToWideChar
LCMapStringW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetLocaleInfoA

user32

DialogBoxParamA
DestroyIcon
GetWindowLongA
EndDialog
SetWindowLongA
SetDlgItemTextW
SetDlgItemTextA

Exports

Exports

ImaginePluginGetInfoA
ImaginePluginGetInfoW

Sections

.text
Size: 282KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugin/dir.txt
Readme.txt
Uninstall.exe
.exe windows:4 windows x86 arch:x86

57e98d9a5a72c8d7ad8fb7a6a58b3daf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
CreateFileA
GetFileSize
GetModuleFileNameA
ReadFile
GetCurrentProcess
CopyFileA
Sleep
GetTickCount
GetWindowsDirectoryA
GetTempPathA
GetCommandLineA
lstrlenA
GetVersion
SetErrorMode
lstrcpynA
ExitProcess
SetCurrentDirectoryA
GlobalLock
CreateThread
GetLastError
CreateDirectoryA
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
WriteFile
lstrcpyA
MoveFileExA
lstrcatA
GetSystemDirectoryA
GetProcAddress
GetExitCodeProcess
WaitForSingleObject
CompareFileTime
SetFileAttributesA
GetFileAttributesA
GetShortPathNameA
MoveFileA
GetFullPathNameA
SetFileTime
SearchPathA
CloseHandle
lstrcmpiA
GlobalUnlock
GetDiskFreeSpaceA
lstrcmpA
FindFirstFileA
FindNextFileA
DeleteFileA
SetFilePointer
GetPrivateProfileStringA
FindClose
MultiByteToWideChar
FreeLibrary
MulDiv
WritePrivateProfileStringA
LoadLibraryExA
GetModuleHandleA
GlobalAlloc
GlobalFree
ExpandEnvironmentStringsA

user32

ScreenToClient
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
PostQuitMessage
GetWindowRect
EnableMenuItem
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
ReleaseDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndDialog
RegisterClassA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
GetDC
CreateDialogParamA
SetTimer
GetDlgItem
SetWindowLongA
SetForegroundWindow
LoadImageA
IsWindow
SendMessageTimeoutA
FindWindowExA
OpenClipboard
TrackPopupMenu
AppendMenuA
EndPaint
DestroyWindow
wsprintfA
ShowWindow
SetWindowTextA

gdi32

SelectObject
SetBkMode
CreateFontIndirectA
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
ShellExecuteExA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
SHFileOperationA

advapi32

AdjustTokenPrivileges
RegCreateKeyExA
RegOpenKeyExA
SetFileSecurityA
OpenProcessToken
LookupPrivilegeValueA
RegEnumValueA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegEnumKeyA

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_Destroy
ord17

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
CoCreateInstance

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Whatsnew.txt

Sharing

General

Malware Config

Signatures

Files

57e98d9a5a72c8d7ad8fb7a6a58b3daf

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 106KB

.ndata Size: - Virtual size: 32KB

.rsrc Size: 6KB - Virtual size: 6KB

8ef79fc63c594bc51c76f44c41e78272

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

Exports

Exports

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 227KB - Virtual size: 227KB

.data Size: 31KB - Virtual size: 288KB

.rsrc Size: 281KB - Virtual size: 280KB

.reloc Size: 49KB - Virtual size: 48KB

359952f7236858b71497f85499e2614d

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 1024B - Virtual size: 624B

.rdata Size: 1024B - Virtual size: 540B

.rsrc Size: 10KB - Virtual size: 10KB

5d63995d1bd61b212e35a61ebc32711a

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: - Virtual size: 12B

.rsrc Size: 1024B - Virtual size: 808B

.reloc Size: 512B - Virtual size: 136B

a9ff84b50e81c54cd824f51e791b269f

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 1024B - Virtual size: 960B

.rdata Size: 512B - Virtual size: 495B

.data Size: - Virtual size: 8B

.rsrc Size: 1024B - Virtual size: 808B

.reloc Size: 512B - Virtual size: 80B

f31dbdb5cc23d854f9db8df69c99dd52

Headers

File Characteristics

Imports

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 106KB

.ndata
Size: - Virtual size: 32KB

.rsrc
Size: 6KB - Virtual size: 6KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 227KB - Virtual size: 227KB

.data
Size: 31KB - Virtual size: 288KB

.rsrc
Size: 281KB - Virtual size: 280KB

.reloc
Size: 49KB - Virtual size: 48KB

.text
Size: 1024B - Virtual size: 624B

.rdata
Size: 1024B - Virtual size: 540B

.rsrc
Size: 10KB - Virtual size: 10KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: - Virtual size: 12B

.rsrc
Size: 1024B - Virtual size: 808B

.reloc
Size: 512B - Virtual size: 136B

.text
Size: 1024B - Virtual size: 960B

.rdata
Size: 512B - Virtual size: 495B

.data
Size: - Virtual size: 8B

.rsrc
Size: 1024B - Virtual size: 808B

.reloc
Size: 512B - Virtual size: 80B

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: - Virtual size: 8KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 414B

.text
Size: 51KB - Virtual size: 50KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 15KB - Virtual size: 21KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 4KB

.text
Size: 940KB - Virtual size: 939KB

.rdata
Size: 147KB - Virtual size: 147KB

.data
Size: 2KB - Virtual size: 213KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 16KB - Virtual size: 15KB

.text
Size: 173KB - Virtual size: 172KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 2KB - Virtual size: 8KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 5KB - Virtual size: 5KB

.text
Size: 172KB - Virtual size: 171KB