15bf39761821829189acdfb8d7d285f4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

15bf39761821829189acdfb8d7d285f4_JaffaCakes118
Size

1.9MB
MD5

15bf39761821829189acdfb8d7d285f4
SHA1

4f7f8a60c1c4f1c059f86d73c0e278b4cd420464
SHA256

c4350c5d33ffe3f8599d03135d32903b4a567d2b75a2b67836e919db71f3712e
SHA512

85feba8392a95ffc15e25ca62647c28c4341d19091593c00a18f45224855ccdd472243e7d0acbd0731a3df3744e477750060e3bddaae999ffd3ea6ef7fd2e84c
SSDEEP

49152:RAMaKuZwi7vJD2ICJIyWT49+Uquo5fHDLtOu6c06t+zYLzW:zuZhzJXcmT49+UToptObZ6tHa

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 2 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/数据库管理器/NetDB.dll	acprotect
static1/unpack001/数据库管理器/sqlite3.dll	acprotect

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/数据库管理器/NetDB.dll	upx
static1/unpack001/数据库管理器/SqliteManager.exe	upx
static1/unpack001/数据库管理器/sqlite3.dll	upx

Unsigned PE 9 IoCs

Checks for missing Authenticode signature.

resource
unpack001/数据库管理器/DLGrid.dll
unpack001/数据库管理器/DL_DEBUG.dll
unpack001/数据库管理器/NetDB.dll
unpack002/out.upx
unpack001/数据库管理器/SqliteManager.exe
unpack003/out.upx
unpack001/数据库管理器/libmySQL.dll
unpack001/数据库管理器/sqlite3.dll
unpack004/out.upx

Files

15bf39761821829189acdfb8d7d285f4_JaffaCakes118
.rar
数据库管理器/DLGrid.dll
.dll windows:5 windows x86 arch:x86

71f6e0c2f98ed5ab188c12a8ae6749d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateEventA
SetEvent
WaitForSingleObject
GlobalAlloc
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
CloseHandle
GetTickCount
Sleep
MultiByteToWideChar
WideCharToMultiByte
HeapAlloc
GetLastError
HeapFree
HeapReAlloc
RtlUnwind
GetModuleHandleW
GetProcAddress
ExitProcess
GetCommandLineA
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapCreate
HeapDestroy
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
LoadLibraryA
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
HeapSize
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
ReadFile
SetFilePointer
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
GetProcessHeap
MulDiv
GlobalLock
GlobalUnlock
GetModuleHandleA
GetSystemInfo
GetVersionExA

user32

LoadIconA
CallWindowProcA
RegisterClassExA
LoadCursorA
IsWindow
EnableWindow
SetFocus
GetFocus
SetCapture
ReleaseCapture
SetClassLongA
ShowWindow
UpdateWindow
BeginPaint
EndPaint
FillRect
DrawTextA
CopyImage
SetScrollPos
SetScrollRange
GetScrollInfo
GetScrollPos
RegisterWindowMessageA
MessageBoxA
GetDlgCtrlID
GetClientRect
MoveWindow
DefWindowProcA
DestroyWindow
InvalidateRect
GetWindowLongA
SetWindowLongA
SendMessageA
mouse_event
SetWindowTextA
GetDesktopWindow
GetWindowTextLengthA
GetWindowTextA
CreateWindowExA

gdi32

GetObjectA
GetStockObject
PolylineTo
MoveToEx
CreatePen
StartPage
ResetDCA
DeleteDC
GetDeviceCaps
SetBkMode
SetBkColor
CreateSolidBrush
EndPage
EndDoc
SelectObject
DeleteObject
SetTextColor
StartDocA
CreateCompatibleDC
StretchBlt
BitBlt
CreateCompatibleBitmap
CreateDCA
CreateFontA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comdlg32

PrintDlgA

ole32

CreateStreamOnHGlobal

oleaut32

OleLoadPicture

winmm

timeSetEvent
timeKillEvent

Exports

Exports

??0_DLGrid@@QAE@ABV0@@Z
??0_DLGrid@@QAE@XZ
??0_鼎龙报表类@@QAE@ABV0@@Z
??0_鼎龙报表类@@QAE@XZ
??1_DLGrid@@QAE@XZ
??1_鼎龙报表类@@QAE@XZ
??4_DLGrid@@QAEAAV0@ABV0@@Z
??4_鼎龙报表类@@QAEAAV0@ABV0@@Z
??_7_DLGrid@@6B@
??_7_鼎龙报表类@@6B@
?AddCol@_DLGrid@@QAEJJ@Z
?AddItem@_DLGrid@@QAEXJPAD@Z
?AddLine@_DLGrid@@QAEXJJJJJ@Z
?AddRow@_DLGrid@@QAEJJ@Z
?BreakCell@_DLGrid@@QAE_NJJ@Z
?Build@_DLGrid@@QAEXXZ
?ClearCellData@_DLGrid@@QAEXJJJJ@Z
?ClearData@_DLGrid@@QAEXXZ
?ClearGridData@_DLGrid@@QAEXXZ
?CreateWindows@_DLGrid@@QAEPAUHWND__@@PAU2@KHHHHK@Z
?CutText@_DLGrid@@QAEXJJ@Z
?DeleteCol@_DLGrid@@QAEXJJ@Z
?DeleteRow@_DLGrid@@QAEXJJ@Z
?EnsureVisible@_DLGrid@@QAEXJJ@Z
?ForbidRefresh@_DLGrid@@QAEX_N@Z
?GetAdjustColWidth@_DLGrid@@QAE_NXZ
?GetAdjustRowHeight@_DLGrid@@QAE_NXZ
?GetAlign@_DLGrid@@QAEJJJ@Z
?GetBoolData@_DLGrid@@QAE_NJJ@Z
?GetCaretCol@_DLGrid@@QAEJXZ
?GetCaretRow@_DLGrid@@QAEJXZ
?GetCellBk@_DLGrid@@QAEJJJ@Z
?GetCellColWidth@_DLGrid@@QAEJJJ@Z
?GetCellInputType@_DLGrid@@QAEJJJ@Z
?GetCellRowHeight@_DLGrid@@QAEJJJ@Z
?GetCellTextColor@_DLGrid@@QAEJJJ@Z
?GetColCount@_DLGrid@@QAEJXZ
?GetColInputType@_DLGrid@@QAEJJ@Z
?GetColName@_DLGrid@@QAEPBDJ@Z
?GetColType@_DLGrid@@QAEJJ@Z
?GetColWidth@_DLGrid@@QAEJJ@Z
?GetData@_DLGrid@@QAEPBEJJAAJ@Z
?GetDefaults@_DLGrid@@QAEPBDJ@Z
?GetEdit@_DLGrid@@QAE_NXZ
?GetEndColCount@_DLGrid@@QAEJXZ
?GetEndRowCount@_DLGrid@@QAEJXZ
?GetEntireLineSelect@_DLGrid@@QAE_NXZ
?GetExtra@_DLGrid@@QAEJXZ
?GetFontAttr@_DLGrid@@QAEJJJ@Z
?GetFontAttr@_DLGrid@@QAEXJJJJJ@Z
?GetFontName@_DLGrid@@QAEPBDJJ@Z
?GetFontSize@_DLGrid@@QAEJJJ@Z
?GetForbid@_DLGrid@@QAE_NXZ
?GetHWND@_DLGrid@@QAEPAUHWND__@@XZ
?GetHeadBkColor@_DLGrid@@QAEJXZ
?GetHeadColCount@_DLGrid@@QAEJXZ
?GetHeadRowCount@_DLGrid@@QAEJXZ
?GetHeight@_DLGrid@@QAEJXZ
?GetLeft@_DLGrid@@QAEJXZ
?GetMark@_DLGrid@@QAEJXZ
?GetPrintAttr@_DLGrid@@QAE_NAAU_表格打印属性@@@Z
?GetReportEndRowCount@_DLGrid@@QAEJXZ
?GetReportHeadRowCount@_DLGrid@@QAEJXZ
?GetRowCount@_DLGrid@@QAEJXZ
?GetRowHeight@_DLGrid@@QAEJJ@Z
?GetSelectBK@_DLGrid@@QAEJXZ
?GetShowType@_DLGrid@@QAEJJ@Z
?GetTextData@_DLGrid@@QAEPBDJJ@Z
?GetTop@_DLGrid@@QAEJXZ
?GetVisible@_DLGrid@@QAE_NXZ
?GetWidth@_DLGrid@@QAEJXZ
?InsertCol@_DLGrid@@QAEJJJ@Z
?InsertRow@_DLGrid@@QAEJJJ@Z
?IsFocus@_DLGrid@@QAE_NXZ
?IsHaveLine@_DLGrid@@QAE_NJJJ@Z
?IsMergeCell@_DLGrid@@QAE_NJJPAU_表格区域@@@Z
?LoadTemplate@_DLGrid@@QAE_NPAD@Z
?MergeCell@_DLGrid@@QAEXJJJJ@Z
?PasteText@_DLGrid@@QAEXJJ@Z
?Print@_DLGrid@@QAE_NPAD00J@Z
?PrintPreview@_DLGrid@@QAE_NPAD@Z
?Query@_DLGrid@@QAEJJPAD000JJ@Z
?QuerySql@_DLGrid@@QAEJJPADJJ@Z
?RefreshCell@_DLGrid@@QAEXJJJJ@Z
?RefreshGrid@_DLGrid@@QAEXXZ
?RemoveAll@_DLGrid@@QAEXJ@Z
?RemoveLine@_DLGrid@@QAEXJJJJJ@Z
?SaveTemplate@_DLGrid@@QAE_NPAD@Z
?SelMaxCol@_DLGrid@@QAEJXZ
?SelMaxRow@_DLGrid@@QAEJXZ
?SelMinCol@_DLGrid@@QAEJXZ
?SelMinRow@_DLGrid@@QAEJXZ
?Select@_DLGrid@@QAEXJJJJ@Z
?SelectAll@_DLGrid@@QAEXXZ
?SetAdjustColWidth@_DLGrid@@QAEX_N@Z
?SetAdjustRowHeight@_DLGrid@@QAEX_N@Z
?SetAlign@_DLGrid@@QAEXJJJJJ@Z
?SetBoolData@_DLGrid@@QAE_NJJ_N@Z
?SetCaret@_DLGrid@@QAEXJJ@Z
?SetCellBk@_DLGrid@@QAEXJJJJJ@Z
?SetCellInputType@_DLGrid@@QAEXJJJJJ@Z
?SetCellTextColor@_DLGrid@@QAEXJJJJJ@Z
?SetColCount@_DLGrid@@QAEXJ@Z
?SetColInputType@_DLGrid@@QAEXJJJ@Z
?SetColName@_DLGrid@@QAEXJPBD@Z
?SetColType@_DLGrid@@QAEXJJ@Z
?SetColWidth@_DLGrid@@QAEXJJ@Z
?SetData@_DLGrid@@QAE_NJJPBEJ@Z
?SetDefaults@_DLGrid@@QAEXJPBD@Z
?SetEdit@_DLGrid@@QAEX_N@Z
?SetEndColCount@_DLGrid@@QAEXJ@Z
?SetEndData@_DLGrid@@QAEXXZ
?SetEndRowCount@_DLGrid@@QAEXJ@Z
?SetEntireLineSelect@_DLGrid@@QAEX_N@Z
?SetEvent@_DLGrid@@QAEJJPAX0J@Z
?SetExtra@_DLGrid@@QAEXJ@Z
?SetFocus@_DLGrid@@QAEPAUHWND__@@XZ
?SetFontName@_DLGrid@@QAEXJJJJPBD@Z
?SetFontSize@_DLGrid@@QAEXJJJJJ@Z
?SetFooter@_DLGrid@@QAE_NPADJ@Z
?SetFooterData@_DLGrid@@QAEXXZ
?SetForbid@_DLGrid@@QAE_N_N@Z
?SetHeadBkColor@_DLGrid@@QAEXJ@Z
?SetHeadColCount@_DLGrid@@QAEXJ@Z
?SetHeadData@_DLGrid@@QAEXXZ
?SetHeadRowCount@_DLGrid@@QAEXJ@Z
?SetHeader@_DLGrid@@QAE_NPADJ@Z
?SetHeaderData@_DLGrid@@QAEXXZ
?SetHeight@_DLGrid@@QAEXJ@Z
?SetLeft@_DLGrid@@QAEXJ@Z
?SetMark@_DLGrid@@QAEXJ@Z
?SetPrintAttr@_DLGrid@@QAE_NABU_表格打印属性@@@Z
?SetReportEndRowCount@_DLGrid@@QAEXJ@Z
?SetReportHeadRowCount@_DLGrid@@QAEXJ@Z
?SetRowCount@_DLGrid@@QAEXJ@Z
?SetRowHeight@_DLGrid@@QAEXJJ@Z
?SetSelectBK@_DLGrid@@QAEXJ@Z
?SetShowType@_DLGrid@@QAEXJJ@Z
?SetTextData@_DLGrid@@QAEJJJPBD@Z
?SetTop@_DLGrid@@QAEXJ@Z
?SetVisible@_DLGrid@@QAE_N_N@Z
?SetWidth@_DLGrid@@QAEXJ@Z
?TableSort@_DLGrid@@QAEXJJPADJJJJJJ@Z
?WindowProc@_DLGrid@@QAGJPAUHWND__@@IIJ@Z
?_OnCellDisplay@_DLGrid@@QAEJJJAAPAXAAJ1@Z
?_OnCellSelected@_DLGrid@@QAEXJJ@Z
?_OnColWidthChanged@_DLGrid@@QAEXJ@Z
?_OnEdit@_DLGrid@@QAE_NJJ@Z
?_OnEndEdit@_DLGrid@@QAEXJJ@Z
?_OnHScroll@_DLGrid@@QAEXJ@Z
?_OnHeaderClick@_DLGrid@@QAEXJJ@Z
?_OnHeaderDblClk@_DLGrid@@QAEXJJ@Z
?_OnKeyDown@_DLGrid@@QAE_NJJ@Z
?_OnLButtonClick@_DLGrid@@QAE_NHHH@Z
?_OnLButtonDblClk@_DLGrid@@QAE_NHHH@Z
?_OnLButtonDown@_DLGrid@@QAE_NHHH@Z
?_OnLButtonUp@_DLGrid@@QAE_NHHH@Z
?_OnListItemSelected@_DLGrid@@QAEXJJPAD@Z
?_OnMouseMove@_DLGrid@@QAE_NHHH@Z
?_OnMouseWheelRoll@_DLGrid@@QAE_NHH@Z
?_OnRButtonDblClk@_DLGrid@@QAE_NHHH@Z
?_OnRButtonDown@_DLGrid@@QAE_NHHH@Z
?_OnRButtonUp@_DLGrid@@QAE_NHHH@Z
?_OnRowHeightChanged@_DLGrid@@QAEXJ@Z
?_OnVScroll@_DLGrid@@QAEXJ@Z
?_列宽被改变@_鼎龙报表类@@QAEXJ@Z
?_列表项被选择@_鼎龙报表类@@QAEXJJPAD@Z
?_单元格被选中@_鼎龙报表类@@QAEXJJ@Z
?_即将显示单元格@_鼎龙报表类@@QAEJJJAAPAXAAJ1@Z
?_即将被编辑@_鼎龙报表类@@QAE_NJJ@Z
?_垂直滚动条位置被改变@_鼎龙报表类@@QAEXJ@Z
?_完成编辑@_鼎龙报表类@@QAEXJJ@Z
?_按下某键@_鼎龙报表类@@QAE_NJJ@Z
?_水平滚动条位置被改变@_鼎龙报表类@@QAEXJ@Z
?_行高被改变@_鼎龙报表类@@QAEXJ@Z
?_表头被单击@_鼎龙报表类@@QAEXJJ@Z
?_表头被双击@_鼎龙报表类@@QAEXJJ@Z
?_鼠标位置被移动@_鼎龙报表类@@QAE_NHHH@Z
?_鼠标右键被双击@_鼎龙报表类@@QAE_NHHH@Z
?_鼠标右键被按下@_鼎龙报表类@@QAE_NHHH@Z
?_鼠标右键被放开@_鼎龙报表类@@QAE_NHHH@Z
?_鼠标左键被单击@_鼎龙报表类@@QAE_NHHH@Z
?_鼠标左键被双击@_鼎龙报表类@@QAE_NHHH@Z
?_鼠标左键被按下@_鼎龙报表类@@QAE_NHHH@Z
?_鼠标左键被放开@_鼎龙报表类@@QAE_NHHH@Z
?_鼠标滚轮被滚动@_鼎龙报表类@@QAE_NHH@Z
?保存模板@_鼎龙报表类@@QAE_NPAD@Z
?保证显示@_鼎龙报表类@@QAEXJJ@Z
?全部选择@_鼎龙报表类@@QAEXXZ
?分解@_鼎龙报表类@@QAE_NJJ@Z
?创建控件@_鼎龙报表类@@QAEPAUHWND__@@PAU2@KABU_窗口矩形@@K@Z
?创建控件@_鼎龙报表类@@QAEPAUHWND__@@PAU2@KHHHHK@Z
?删线条@_鼎龙报表类@@QAEXJJJJJ@Z
?删除列@_鼎龙报表类@@QAEXJJ@Z
?删除行@_鼎龙报表类@@QAEXJJ@Z
?刷新单元格@_鼎龙报表类@@QAEXJJJJ@Z
?刷新显示@_鼎龙报表类@@QAEXXZ
?剪切文本@_鼎龙报表类@@QAEXJJ@Z
?加入列@_鼎龙报表类@@QAEJJ@Z
?加入行@_鼎龙报表类@@QAEJJ@Z
?加线条@_鼎龙报表类@@QAEXJJJJJ@Z
?取上翻页首行号@_鼎龙报表类@@IAEJJ@Z
?取光标列号@_鼎龙报表类@@QAEJXZ
?取光标行号@_鼎龙报表类@@QAEJXZ
?取列名@_鼎龙报表类@@QAEPBDJ@Z
?取列宽@_鼎龙报表类@@QAEJJ@Z
?取列数@_鼎龙报表类@@QAEJXZ
?取列类型@_鼎龙报表类@@QAEJJ@Z
?取列输入方式@_鼎龙报表类@@QAEJJ@Z
?取单元格列宽@_鼎龙报表类@@QAEJJJ@Z
?取单元格文字颜色@_鼎龙报表类@@QAEJJJ@Z
?取单元格矩形@_鼎龙报表类@@IAEXJJAAU_矩形坐标@@@Z
?取单元格背景颜色@_鼎龙报表类@@QAEJJJ@Z
?取单元格行高@_鼎龙报表类@@QAEJJJ@Z
?取单元格输入方式@_鼎龙报表类@@QAEJJJ@Z
?取可编辑@_鼎龙报表类@@QAE_NXZ
?取可视@_鼎龙报表类@@QAE_NXZ
?取可调列宽@_鼎龙报表类@@QAE_NXZ
?取可调行高@_鼎龙报表类@@QAE_NXZ
?取字体名@_鼎龙报表类@@QAEPBDJJ@Z
?取字体尺寸@_鼎龙报表类@@QAEJJJ@Z
?取字体属性@_鼎龙报表类@@QAEJJJ@Z
?取宽度@_鼎龙报表类@@QAEJXZ
?取对齐方式@_鼎龙报表类@@QAEJJJ@Z
?取左边@_鼎龙报表类@@QAEJXZ
?取打印列宽@_鼎龙报表类@@IAEJJ@Z
?取打印单元格宽度@_鼎龙报表类@@IAEJJJ@Z
?取打印单元格矩形@_鼎龙报表类@@IAEXJJAAU_矩形坐标@@@Z
?取打印单元格高度@_鼎龙报表类@@IAEJJJ@Z
?取打印属性@_鼎龙报表类@@QAE_NAAU_表格打印属性@@@Z
?取打印行高@_鼎龙报表类@@IAEJJ@Z
?取报表头行数@_鼎龙报表类@@QAEJXZ
?取报表尾行数@_鼎龙报表类@@QAEJXZ
?取数据@_鼎龙报表类@@QAEPBEJJAAJ@Z
?取整行选择@_鼎龙报表类@@QAE_NXZ
?取文本数据@_鼎龙报表类@@QAEPBDJJ@Z
?取显示方式@_鼎龙报表类@@QAEJJ@Z
?取标记@_鼎龙报表类@@QAEJXZ
?取禁止@_鼎龙报表类@@QAE_NXZ
?取窗口句柄@_鼎龙报表类@@QAEPAUHWND__@@XZ
?取线条宽度@_鼎龙报表类@@QAEJJJ@Z
?取线条样式@_鼎龙报表类@@QAEJJJ@Z
?取线条颜色@_鼎龙报表类@@QAEJJJ@Z
?取行数@_鼎龙报表类@@QAEJXZ
?取行高@_鼎龙报表类@@QAEJJ@Z
?取表头列数@_鼎龙报表类@@QAEJXZ
?取表头背景颜色@_鼎龙报表类@@QAEJXZ
?取表头行数@_鼎龙报表类@@QAEJXZ
?取表尾列数@_鼎龙报表类@@QAEJXZ
?取表尾行数@_鼎龙报表类@@QAEJXZ
?取边距@_鼎龙报表类@@QAEJXZ
?取选择区背景颜色@_鼎龙报表类@@QAEJXZ
?取选择终止列@_鼎龙报表类@@QAEJXZ
?取选择终止行@_鼎龙报表类@@QAEJXZ
?取选择起始列@_鼎龙报表类@@QAEJXZ
?取选择起始行@_鼎龙报表类@@QAEJXZ
?取逻辑数据@_鼎龙报表类@@QAE_NJJ@Z
?取页可显示列数@_鼎龙报表类@@IAEJJ@Z
?取页可显示行数@_鼎龙报表类@@IAEJJ@Z
?取顶边@_鼎龙报表类@@QAEJXZ
?取高度@_鼎龙报表类@@QAEJXZ
?取默认值@_鼎龙报表类@@QAEPBDJ@Z
?取鼠标处单元格@_鼎龙报表类@@IAE?AU_矩形坐标@@JJAAJ0@Z
?可有焦点@_鼎龙报表类@@QAE_NXZ
?合并@_鼎龙报表类@@QAEXJJJJ@Z
?打印@_鼎龙报表类@@QAE_NPAD00J@Z
?打印绘图@_鼎龙报表类@@IAEJPAUHDC__@@JJJJJJJ@Z
?打印预览@_鼎龙报表类@@QAE_NPAD@Z
?插入列@_鼎龙报表类@@QAEJJJ@Z
?插入行@_鼎龙报表类@@QAEJJJ@Z
?是否有线条@_鼎龙报表类@@QAE_NJJJ@Z
?是否被合并@_鼎龙报表类@@QAE_NJJPAU_表格区域@@@Z
?显示表行@_鼎龙报表类@@IAEXPAUHDC__@@PAUHBRUSH__@@1JK@Z
?构造函数@_鼎龙报表类@@QAEXXZ
?查询@_鼎龙报表类@@QAEJJPAD000JJ@Z
?查询SQL@_鼎龙报表类@@QAEJJPADJJ@Z
?消息过程@_鼎龙报表类@@UAEJPAUHWND__@@IIJ@Z
?添加下拉列表内容@_鼎龙报表类@@QAEXJPAD@Z
?清空下拉列表@_鼎龙报表类@@QAEXJ@Z
?清空单元格数据@_鼎龙报表类@@QAEXJJJJ@Z
?清空表格@_鼎龙报表类@@QAEXXZ
?清空记录@_鼎龙报表类@@QAEXXZ
?禁止刷新@_鼎龙报表类@@QAEX_N@Z
?粘贴文本@_鼎龙报表类@@QAEXJJ@Z
?置事件@_鼎龙报表类@@QAEJJPAX0J@Z
?置光标@_鼎龙报表类@@QAEXJJ@Z
?置列名@_鼎龙报表类@@QAEXJPBD@Z
?置列宽@_鼎龙报表类@@QAEXJJ@Z
?置列数@_鼎龙报表类@@QAEXJ@Z
?置列类型@_鼎龙报表类@@QAEXJJ@Z
?置列输入方式@_鼎龙报表类@@QAEXJJJ@Z
?置单元格文字颜色@_鼎龙报表类@@QAEXJJJJJ@Z
?置单元格背景颜色@_鼎龙报表类@@QAEXJJJJJ@Z
?置单元格输入方式@_鼎龙报表类@@QAEXJJJJJ@Z
?置可编辑@_鼎龙报表类@@QAEX_N@Z
?置可视@_鼎龙报表类@@QAE_N_N@Z
?置可调列宽@_鼎龙报表类@@QAEX_N@Z
?置可调行高@_鼎龙报表类@@QAEX_N@Z
?置字体名@_鼎龙报表类@@QAEXJJJJPBD@Z
?置字体尺寸@_鼎龙报表类@@QAEXJJJJJ@Z
?置字体属性@_鼎龙报表类@@QAEXJJJJJ@Z
?置宽度@_鼎龙报表类@@QAEXJ@Z
?置对齐方式@_鼎龙报表类@@QAEXJJJJJ@Z
?置左边@_鼎龙报表类@@QAEXJ@Z
?置打印属性@_鼎龙报表类@@QAE_NABU_表格打印属性@@@Z
?置报表头行数@_鼎龙报表类@@QAEXJ@Z
?置报表尾行数@_鼎龙报表类@@QAEXJ@Z
?置数据@_鼎龙报表类@@QAE_NJJPBEJ@Z
?置整行选择@_鼎龙报表类@@QAEX_N@Z
?置文本数据@_鼎龙报表类@@QAEJJJPBD@Z
?置显示方式@_鼎龙报表类@@QAEXJJ@Z
?置标记@_鼎龙报表类@@QAEXJ@Z
?置焦点@_鼎龙报表类@@QAEPAUHWND__@@XZ
?置禁止@_鼎龙报表类@@QAE_N_N@Z
?置线条宽度@_鼎龙报表类@@QAEXJJJJJ@Z
?置线条样式@_鼎龙报表类@@QAEXJJJJJ@Z
?置线条颜色@_鼎龙报表类@@QAEXJJJJJ@Z
?置行数@_鼎龙报表类@@QAEXJ@Z
?置行高@_鼎龙报表类@@QAEXJJ@Z
?置表头列数@_鼎龙报表类@@QAEXJ@Z
?置表头数据@_鼎龙报表类@@QAEXXZ
?置表头背景颜色@_鼎龙报表类@@QAEXJ@Z
?置表头行数@_鼎龙报表类@@QAEXJ@Z
?置表尾列数@_鼎龙报表类@@QAEXJ@Z
?置表尾数据@_鼎龙报表类@@QAEXXZ
?置表尾行数@_鼎龙报表类@@QAEXJ@Z
?置边距@_鼎龙报表类@@QAEXJ@Z
?置选择区背景颜色@_鼎龙报表类@@QAEXJ@Z
?置逻辑数据@_鼎龙报表类@@QAE_NJJ_N@Z
?置页头数据@_鼎龙报表类@@QAEXXZ
?置页尾数据@_鼎龙报表类@@QAEXXZ
?置页眉@_鼎龙报表类@@QAE_NPADJ@Z
?置页脚@_鼎龙报表类@@QAE_NPADJ@Z
?置顶边@_鼎龙报表类@@QAEXJ@Z
?置高度@_鼎龙报表类@@QAEXJ@Z
?置默认值@_鼎龙报表类@@QAEXJPBD@Z
?表格排序@_鼎龙报表类@@QAEXJJPADJJJJJJ@Z
?载入模板@_鼎龙报表类@@QAE_NPAD@Z
?选择区域@_鼎龙报表类@@QAEXJJJJ@Z
?重画@_鼎龙报表类@@IAEXXZ
_DLGrid_AddCol@8
_DLGrid_AddItem@12
_DLGrid_AddLine@24
_DLGrid_AddRow@8
_DLGrid_BreakCell@12
_DLGrid_Clear@4
_DLGrid_ClearCellData@20
_DLGrid_ClearData@4
_DLGrid_ClearGridData@4
_DLGrid_CreateWindows@32
_DLGrid_CutText@12
_DLGrid_DeleteCol@12
_DLGrid_DeleteRow@12
_DLGrid_EnsureVisible@12
_DLGrid_ForbidRefresh@8
_DLGrid_GetAdjustColWidth@4
_DLGrid_GetAdjustRowHeight@4
_DLGrid_GetAlign@12
_DLGrid_GetBoolData@12
_DLGrid_GetCaretCol@4
_DLGrid_GetCaretRow@4
_DLGrid_GetCellBk@12
_DLGrid_GetCellColWidth@12
_DLGrid_GetCellInputType@12
_DLGrid_GetCellRowHeight@12
_DLGrid_GetCellTextColor@12
_DLGrid_GetColCount@4
_DLGrid_GetColInputType@8
_DLGrid_GetColName@8
_DLGrid_GetColType@8
_DLGrid_GetColWidth@8
_DLGrid_GetData@16
_DLGrid_GetDefaults@8
_DLGrid_GetEdit@4
_DLGrid_GetEndColCount@4
_DLGrid_GetEndRowCount@4
_DLGrid_GetEntireLineSelect@4
_DLGrid_GetExtra@4
_DLGrid_GetFontAttr@12
_DLGrid_GetFontName@12
_DLGrid_GetFontSize@12
_DLGrid_GetForbid@4
_DLGrid_GetHWND@4
_DLGrid_GetHeadBkColor@4
_DLGrid_GetHeadColCount@4
_DLGrid_GetHeadRowCount@4
_DLGrid_GetHeight@4
_DLGrid_GetLeft@4
_DLGrid_GetMark@4
_DLGrid_GetPrintAttr@8
_DLGrid_GetReportEndRowCount@4
_DLGrid_GetReportHeadRowCount@4
_DLGrid_GetRowCount@4
_DLGrid_GetRowHeight@8
_DLGrid_GetSelectBK@4
_DLGrid_GetShowType@8
_DLGrid_GetTextData@12
_DLGrid_GetTop@4
_DLGrid_GetVisible@4
_DLGrid_GetWidth@4
_DLGrid_Init@4
_DLGrid_InsertCol@12
_DLGrid_InsertRow@12
_DLGrid_IsFocus@4
_DLGrid_IsHaveLine@16
_DLGrid_IsMergeCell@16
_DLGrid_LoadTemplate@8
_DLGrid_Make@0
_DLGrid_MergeCell@20
_DLGrid_PasteText@12
_DLGrid_Print@20
_DLGrid_PrintPreview@8
_DLGrid_Query@32
_DLGrid_QuerySql@20
_DLGrid_RefreshCell@20
_DLGrid_RefreshGrid@4
_DLGrid_RemoveAll@8
_DLGrid_RemoveLine@24
_DLGrid_SaveTemplate@8
_DLGrid_SelMaxCol@4
_DLGrid_SelMaxRow@4
_DLGrid_SelMinCol@4
_DLGrid_SelMinRow@4
_DLGrid_Select@20
_DLGrid_SelectAll@4
_DLGrid_SetAdjustColWidth@8
_DLGrid_SetAdjustRowHeight@8
_DLGrid_SetAlign@24
_DLGrid_SetBoolData@16
_DLGrid_SetCaret@12
_DLGrid_SetCellBk@24
_DLGrid_SetCellInputType@24
_DLGrid_SetCellTextColor@24
_DLGrid_SetColCount@8
_DLGrid_SetColInputType@16
_DLGrid_SetColName@12
_DLGrid_SetColType@12
_DLGrid_SetColWidth@12
_DLGrid_SetData@20
_DLGrid_SetDefaults@12
_DLGrid_SetEdit@8
_DLGrid_SetEndColCount@8
_DLGrid_SetEndData@4
_DLGrid_SetEndRowCount@8
_DLGrid_SetEntireLineSelect@8
_DLGrid_SetEvent@20
_DLGrid_SetExtra@8
_DLGrid_SetFocus@4
_DLGrid_SetFontAttr@24
_DLGrid_SetFontName@24
_DLGrid_SetFontSize@24
_DLGrid_SetFooter@12
_DLGrid_SetFooterData@4
_DLGrid_SetForbid@8
_DLGrid_SetHeadBkColor@8
_DLGrid_SetHeadColCount@8
_DLGrid_SetHeadData@4
_DLGrid_SetHeadRowCount@8
_DLGrid_SetHeader@12
_DLGrid_SetHeaderData@4
_DLGrid_SetHeight@8
_DLGrid_SetLeft@8
_DLGrid_SetMark@8
_DLGrid_SetPrintAttr@8
_DLGrid_SetReportEndRowCount@8
_DLGrid_SetReportHeadRowCount@8
_DLGrid_SetRowCount@8
_DLGrid_SetRowHeight@12
_DLGrid_SetSelectBK@8
_DLGrid_SetShowType@12
_DLGrid_SetTextData@16
_DLGrid_SetTop@8
_DLGrid_SetVisible@8
_DLGrid_SetWidth@8
_DLGrid_TableSort@40
_DLGrid_UnInit@0
__DLGrid_OnCellDisplay@24
__DLGrid_OnCellSelected@12
__DLGrid_OnColWidthChanged@8
__DLGrid_OnEdit@12
__DLGrid_OnEndEdit@12
__DLGrid_OnHScroll@8
__DLGrid_OnHeaderClick@12
__DLGrid_OnHeaderDblClk@12
__DLGrid_OnKeyDown@12
__DLGrid_OnLButtonClick@16
__DLGrid_OnLButtonDblClk@16
__DLGrid_OnLButtonDown@16
__DLGrid_OnLButtonUp@16
__DLGrid_OnListItemSelected@16
__DLGrid_OnMouseMove@16
__DLGrid_OnMouseWheelRoll@12
__DLGrid_OnRButtonDblClk@16
__DLGrid_OnRButtonDown@16
__DLGrid_OnRButtonUp@16
__DLGrid_OnRowHeightChanged@8
__DLGrid_OnVScroll@8

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
数据库管理器/DL_DEBUG.dll
.dll windows:5 windows x86 arch:x86

48fcfd81e2ba964da66471928be8abca

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
OutputDebugStringA
GetLocalTime
SetEvent
WaitForSingleObject
IsBadReadPtr
GetTickCount
WideCharToMultiByte
MultiByteToWideChar
IsBadWritePtr
CreateEventA
GetLastError
HeapReAlloc
HeapAlloc
HeapFree
GetCurrentThreadId
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WriteFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
CloseHandle
SetFilePointer
RtlUnwind
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
GetModuleHandleA
RaiseException
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapSize
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
InitializeCriticalSectionAndSpinCount
ReadFile
CreateFileA
LoadLibraryA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetEndOfFile
GetProcessHeap

user32

MessageBoxA

Exports

Exports

?Add_Del_Info@@YAXPADJ@Z
?calloc_DLdbg@@YAPAXIIPBDJ@Z
?checkmemoryout@@YAHXZ
?checkmemoryreveal@@YAHXZ
?delete_DLdbg@@YAXPAXPBDJ_N@Z
?free_DLdbg@@YAXPAXPBDJ@Z
?free_delete@@YAXPAX_N@Z
?malloc_DLdbg@@YAPAXIPBDJ@Z
?memcpy_DLdbg@@YAPAXPAXPBXIPBDJ@Z
?memmove_DLdbg@@YAPAXPAXPBXIPBDJ@Z
?memset_DLdbg@@YAPAXPAXHIPBDJ@Z
?new_DLdbg@@YAPAXIPBDJ_N@Z
?realloc_DLdbg@@YAPAXPAXIPBDJ@Z
?strcpy_DLdbg@@YAPADPADPBD1J@Z
?strlen_DLdbg@@YAIPBD0J@Z
?条件检测@@YAXJPBD0J@Z
?设置程序断点@@YAXXZ
?调试输出@@YAXPBDZZ
?输出调试文件@@YAXPBDZZ

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
数据库管理器/NetDB.dll
.dll windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

NetDB_Add
NetDB_Begin
NetDB_BindParameter
NetDB_CallBack
NetDB_Client_Count
NetDB_Close_DB
NetDB_Close_SQL
NetDB_Command
NetDB_Connect_Count
NetDB_CreateEnv
NetDB_Create_DB
NetDB_Create_SQL
NetDB_DB_Count
NetDB_DB_Rekey
NetDB_Del
NetDB_FieldCount
NetDB_FieldName
NetDB_FieldNumber
NetDB_FieldType
NetDB_Fix
NetDB_GetError
NetDB_Get_BigData
NetDB_Get_Bytes
NetDB_Get_DataLenth
NetDB_Get_Date
NetDB_Get_DefaultDB
NetDB_Get_DefaultEnv
NetDB_Get_Int64
NetDB_Get_Text
NetDB_Get_Value
NetDB_Get_VaryCount
NetDB_Init
NetDB_Is_Bof
NetDB_Is_DB
NetDB_Is_Eof
NetDB_Is_RecordData
NetDB_Is_SQL
NetDB_MoveFirst
NetDB_MoveLast
NetDB_MoveNext
NetDB_MovePreviou
NetDB_MoveRecord
NetDB_Net_Open
NetDB_Open
NetDB_Open_Table
NetDB_RecordCount
NetDB_Rekey
NetDB_Rollback
NetDB_SQLExecute
NetDB_SQL_Count
NetDB_Search
NetDB_Seek
NetDB_SendMessage
NetDB_ServerInfo
NetDB_SetMessageCallBack
NetDB_SetServer
NetDB_Set_Debug
NetDB_Set_DefaultDB
NetDB_Set_DefaultEnv
NetDB_Set_OutTime
NetDB_Submit
NetDB_Table_Add
NetDB_Table_Afresh
NetDB_Table_Del
NetDB_Table_Edit
NetDB_Table_Submit
NetDB_Table_UnDo
NetDB_Table_Update
NetDB_Tables
NetDB_UnEnv
NetDB_UnInit
NetDB_Update
NetDB_UpdateEx
NetDB_UpdateEx1
NetDB_Version
NetGrid_ADDDefaultValue
NetGrid_ADDField
NetGrid_ADDGrid
NetGrid_ADDdata
NetGrid_ClearGrid
NetGrid_ClearRecord
NetGrid_Close
NetGrid_Create
NetGrid_DataLength
NetGrid_DataType
NetGrid_FieldName
NetGrid_FieldType
NetGrid_GetBytes
NetGrid_GetColCount
NetGrid_GetCompleteColCount
NetGrid_GetCompleteRowCount
NetGrid_GetDate
NetGrid_GetGrid
NetGrid_GetGridLength
NetGrid_GetLogic
NetGrid_GetRowCount
NetGrid_GetTxt
NetGrid_GetTxtEx
NetGrid_GetValue
NetGrid_GetlongInteger
NetGrid_Init
NetGrid_Is_Bof
NetGrid_Is_Data
NetGrid_Is_Eof
NetGrid_MoveFirst
NetGrid_MoveLast
NetGrid_MoveNext
NetGrid_MovePreviou
NetGrid_MoveRecord
NetGrid_SetGrid
NetRS_ADDRS
NetRS_CheckRS
NetRS_Close
NetRS_Create
NetRS_DelRS
NetRS_GetBytes
NetRS_GetDate
NetRS_GetLogic
NetRS_GetRS
NetRS_GetRSCount
NetRS_GetRSLen
NetRS_GetTxt
NetRS_GetTxtEx
NetRS_GetValue
NetRS_GetlongInteger
NetRS_SetBytes
NetRS_SetRS
Records_Close
Records_Create
Records_DefaultType
Records_DefaultValue
Records_DefaultValueLen
Records_Del_Field
Records_Del_Record
Records_FieldCount
Records_FieldLength
Records_FieldName
Records_FieldNumber
Records_FieldType
Records_FieldValue
Records_Insert_Field
Records_Insert_Record
Records_Is_Bof
Records_Is_Eof
Records_Is_RecordData
Records_MoveFirst
Records_MoveLast
Records_MoveNext
Records_MovePreviou
Records_MoveRecord
Records_NonceType
Records_RecordCount
Records_RecordNumber
Records_Search
Records_Seek
Records_Set_DefaultValue
Records_Set_FieldName
Records_Set_FieldType
Records_Set_FieldValue

Sections

UPX0
Size: - Virtual size: 156KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 139KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 187KB - Virtual size: 186KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
数据库管理器/NetDB.ini
数据库管理器/SqliteDB.ico
数据库管理器/SqliteManager.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 793KB - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 496KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 391KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
数据库管理器/libmySQL.dll
.dll windows:4 windows x86 arch:x86

3f2264a358061fb23e0a678c916babfd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

getpeername
shutdown
closesocket
setsockopt
send
recv
inet_ntoa
select
__WSAFDIsSet
inet_addr
WSAStartup
WSACleanup
gethostbyname
getservbyname
ntohs
socket
WSAGetLastError
ioctlsocket
htons
connect

kernel32

GetDriveTypeA
GetCurrentDirectoryA
GetFullPathNameA
GetLocaleInfoW
LCMapStringW
LCMapStringA
LoadLibraryA
GetCurrentProcessId
GetTickCount
RaiseException
SetEnvironmentVariableA
GetOEMCP
GetACP
LeaveCriticalSection
EnterCriticalSection
GetLocaleInfoA
CloseHandle
SetNamedPipeHandleState
WaitNamedPipeA
CreateFileA
GetLastError
UnmapViewOfFile
WaitForSingleObject
MapViewOfFile
OpenFileMappingA
OpenEventA
InitializeCriticalSection
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetWindowsDirectoryA
GetCurrentThreadId
GetFileAttributesExA
SetEndOfFile
SetFilePointer
InterlockedIncrement
DeleteCriticalSection
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
CreateSemaphoreA
Sleep
ReadFile
WriteFile
WaitForMultipleObjects
GetFileInformationByHandle
PeekNamedPipe
SetEvent
CompareStringW
QueryPerformanceCounter
QueryPerformanceFrequency
ExitProcess
TerminateProcess
GetCurrentProcess
HeapFree
HeapAlloc
SetEnvironmentVariableW
GetFileAttributesA
SetStdHandle
GetFileType
WideCharToMultiByte
GetTimeZoneInformation
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
HeapReAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetVersionExA
RtlUnwind
SetHandleCount
GetStdHandle
GetStartupInfoA
SetLastError
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
FlushFileBuffers
VirtualProtect
GetSystemInfo
VirtualQuery
UnhandledExceptionFilter
GetCPInfo
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
InterlockedExchange
HeapSize
CompareStringA

advapi32

RegEnumValueA
RegCloseKey
RegOpenKeyExA
CryptReleaseContext
CryptAcquireContextA
CryptGenRandom

Exports

Exports

_dig_vec_lower
_dig_vec_upper
bmove_upp
client_errors
delete_dynamic
free_defaults
get_defaults_options
getopt_compare_strings
getopt_ull_limit_value
handle_options
init_dynamic_array
insert_dynamic
int2str
is_prefix
list_add
list_delete
load_defaults
modify_defaults_file
my_end
my_getopt_print_errors
my_init
my_malloc
my_memdup
my_no_flags_free
my_path
my_print_help
my_print_variables
my_realloc
my_strdup
myodbc_remove_escape
mysql_affected_rows
mysql_autocommit
mysql_change_user
mysql_character_set_name
mysql_close
mysql_commit
mysql_data_seek
mysql_debug
mysql_disable_reads_from_master
mysql_disable_rpl_parse
mysql_dump_debug_info
mysql_embedded
mysql_enable_reads_from_master
mysql_enable_rpl_parse
mysql_eof
mysql_errno
mysql_error
mysql_escape_string
mysql_fetch_field
mysql_fetch_field_direct
mysql_fetch_fields
mysql_fetch_lengths
mysql_fetch_row
mysql_field_count
mysql_field_seek
mysql_field_tell
mysql_free_result
mysql_get_character_set_info
mysql_get_client_info
mysql_get_client_version
mysql_get_host_info
mysql_get_parameters
mysql_get_proto_info
mysql_get_server_info
mysql_get_server_version
mysql_hex_string
mysql_info
mysql_init
mysql_insert_id
mysql_kill
mysql_list_dbs
mysql_list_fields
mysql_list_processes
mysql_list_tables
mysql_master_query
mysql_more_results
mysql_next_result
mysql_num_fields
mysql_num_rows
mysql_odbc_escape_string
mysql_options
mysql_ping
mysql_query
mysql_read_query_result
mysql_real_connect
mysql_real_escape_string
mysql_real_query
mysql_refresh
mysql_rollback
mysql_row_seek
mysql_row_tell
mysql_rpl_parse_enabled
mysql_rpl_probe
mysql_rpl_query_type
mysql_select_db
mysql_send_query
mysql_server_end
mysql_server_init
mysql_set_character_set
mysql_set_local_infile_default
mysql_set_local_infile_handler
mysql_set_server_option
mysql_shutdown
mysql_slave_query
mysql_sqlstate
mysql_ssl_set
mysql_stat
mysql_stmt_affected_rows
mysql_stmt_attr_get
mysql_stmt_attr_set
mysql_stmt_bind_param
mysql_stmt_bind_result
mysql_stmt_close
mysql_stmt_data_seek
mysql_stmt_errno
mysql_stmt_error
mysql_stmt_execute
mysql_stmt_fetch
mysql_stmt_fetch_column
mysql_stmt_field_count
mysql_stmt_free_result
mysql_stmt_init
mysql_stmt_insert_id
mysql_stmt_num_rows
mysql_stmt_param_count
mysql_stmt_param_metadata
mysql_stmt_prepare
mysql_stmt_reset
mysql_stmt_result_metadata
mysql_stmt_row_seek
mysql_stmt_row_tell
mysql_stmt_send_long_data
mysql_stmt_sqlstate
mysql_stmt_store_result
mysql_store_result
mysql_thread_end
mysql_thread_id
mysql_thread_init
mysql_thread_safe
mysql_use_result
mysql_warning_count
set_dynamic
strcend
strcont
strdup_root
strfill
strinstr
strmake
strmov
strxmov

Sections

.text
Size: 340KB - Virtual size: 339KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1004KB - Virtual size: 1013KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
数据库管理器/sqlite3.dll
.dll windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

sqlite3_aggregate_context
sqlite3_aggregate_count
sqlite3_auto_extension
sqlite3_backup_finish
sqlite3_backup_init
sqlite3_backup_pagecount
sqlite3_backup_remaining
sqlite3_backup_step
sqlite3_bind_blob
sqlite3_bind_blobA
sqlite3_bind_double
sqlite3_bind_int
sqlite3_bind_int64
sqlite3_bind_null
sqlite3_bind_parameter_count
sqlite3_bind_parameter_index
sqlite3_bind_parameter_name
sqlite3_bind_text
sqlite3_bind_text16
sqlite3_bind_value
sqlite3_bind_zeroblob
sqlite3_blob_bytes
sqlite3_blob_close
sqlite3_blob_open
sqlite3_blob_read
sqlite3_blob_reopen
sqlite3_blob_write
sqlite3_busy_handler
sqlite3_busy_timeout
sqlite3_changes
sqlite3_clear_bindings
sqlite3_close
sqlite3_closeA
sqlite3_collation_needed
sqlite3_collation_needed16
sqlite3_column_blob
sqlite3_column_blobA
sqlite3_column_bytes
sqlite3_column_bytes16
sqlite3_column_bytes16A
sqlite3_column_bytesA
sqlite3_column_count
sqlite3_column_countA
sqlite3_column_database_name
sqlite3_column_database_name16
sqlite3_column_decltype
sqlite3_column_decltype16
sqlite3_column_double
sqlite3_column_doubleA
sqlite3_column_int
sqlite3_column_int64
sqlite3_column_int64A
sqlite3_column_intA
sqlite3_column_name
sqlite3_column_name16
sqlite3_column_name16A
sqlite3_column_nameA
sqlite3_column_origin_name
sqlite3_column_origin_name16
sqlite3_column_table_name
sqlite3_column_table_name16
sqlite3_column_text
sqlite3_column_text16
sqlite3_column_text16A
sqlite3_column_textA
sqlite3_column_type
sqlite3_column_typeA
sqlite3_column_value
sqlite3_column_valueA
sqlite3_commit_hook
sqlite3_compileoption_get
sqlite3_compileoption_used
sqlite3_complete
sqlite3_complete16
sqlite3_config
sqlite3_context_db_handle
sqlite3_create_collation
sqlite3_create_collation16
sqlite3_create_collation_v2
sqlite3_create_function
sqlite3_create_function16
sqlite3_create_function_v2
sqlite3_create_module
sqlite3_create_module_v2
sqlite3_data_count
sqlite3_data_countA
sqlite3_db_config
sqlite3_db_handle
sqlite3_db_mutex
sqlite3_db_status
sqlite3_declare_vtab
sqlite3_enable_load_extension
sqlite3_enable_shared_cache
sqlite3_errcode
sqlite3_errmsg
sqlite3_errmsg16
sqlite3_exec
sqlite3_execA
sqlite3_expired
sqlite3_extended_errcode
sqlite3_extended_result_codes
sqlite3_file_control
sqlite3_finalize
sqlite3_finalizeA
sqlite3_free
sqlite3_free_table
sqlite3_free_tableA
sqlite3_get_autocommit
sqlite3_get_auxdata
sqlite3_get_table
sqlite3_get_tableA
sqlite3_global_recover
sqlite3_init
sqlite3_initialize
sqlite3_interrupt
sqlite3_key
sqlite3_keyA
sqlite3_last_insert_rowid
sqlite3_last_insert_rowidA
sqlite3_libversion
sqlite3_libversion_number
sqlite3_limit
sqlite3_load_extension
sqlite3_log
sqlite3_malloc
sqlite3_memory_alarm
sqlite3_memory_highwater
sqlite3_memory_used
sqlite3_mprintf
sqlite3_mutex_alloc
sqlite3_mutex_enter
sqlite3_mutex_free
sqlite3_mutex_leave
sqlite3_mutex_try
sqlite3_next_stmt
sqlite3_open
sqlite3_open16
sqlite3_openA
sqlite3_open_v2
sqlite3_os_end
sqlite3_os_init
sqlite3_overload_function
sqlite3_prepare
sqlite3_prepare16
sqlite3_prepare16_v2
sqlite3_prepareA
sqlite3_prepare_v2
sqlite3_profile
sqlite3_progress_handler
sqlite3_randomness
sqlite3_realloc
sqlite3_rekey
sqlite3_rekeyA
sqlite3_release_memory
sqlite3_reset
sqlite3_resetA
sqlite3_reset_auto_extension
sqlite3_result_blob
sqlite3_result_double
sqlite3_result_error
sqlite3_result_error16
sqlite3_result_error_code
sqlite3_result_error_nomem
sqlite3_result_error_toobig
sqlite3_result_int
sqlite3_result_int64
sqlite3_result_null
sqlite3_result_text
sqlite3_result_text16
sqlite3_result_text16be
sqlite3_result_text16le
sqlite3_result_value
sqlite3_result_zeroblob
sqlite3_rollback_hook
sqlite3_rtree_geometry_callback
sqlite3_set_authorizer
sqlite3_set_auxdata
sqlite3_shutdown
sqlite3_sleep
sqlite3_snprintf
sqlite3_soft_heap_limit
sqlite3_soft_heap_limit64
sqlite3_sourceid
sqlite3_sql
sqlite3_status
sqlite3_step
sqlite3_stepA
sqlite3_stmt_readonly
sqlite3_stmt_status
sqlite3_strnicmp
sqlite3_table_column_metadata
sqlite3_test_control
sqlite3_thread_cleanup
sqlite3_threadsafe
sqlite3_total_changes
sqlite3_trace
sqlite3_transfer_bindings
sqlite3_update_hook
sqlite3_uri_parameter
sqlite3_user_data
sqlite3_value_blob
sqlite3_value_bytes
sqlite3_value_bytes16
sqlite3_value_double
sqlite3_value_int
sqlite3_value_int64
sqlite3_value_numeric_type
sqlite3_value_text
sqlite3_value_text16
sqlite3_value_text16be
sqlite3_value_text16le
sqlite3_value_type
sqlite3_vfs_find
sqlite3_vfs_register
sqlite3_vfs_unregister
sqlite3_vmprintf
sqlite3_vsnprintf
sqlite3_vtab_config
sqlite3_vtab_on_conflict
sqlite3_wal_autocheckpoint
sqlite3_wal_checkpoint
sqlite3_wal_checkpoint_v2
sqlite3_wal_hook
sqlite3_win32_mbcs_to_utf8
sqlite3_win32_utf8_to_mbcs
winCurrentTime
winDlClose
winDlSym

Sections

UPX0
Size: - Virtual size: 196KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 331KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 428KB - Virtual size: 427KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
数据库管理器/解释数据库.db
数据库管理器/配置.ini

Sharing

General

Malware Config

Signatures

Files

71f6e0c2f98ed5ab188c12a8ae6749d5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

ole32

oleaut32

winmm

Exports

Exports

Sections

.text Size: 114KB - Virtual size: 113KB

.rdata Size: 35KB - Virtual size: 34KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 10KB - Virtual size: 9KB

48fcfd81e2ba964da66471928be8abca

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 65KB - Virtual size: 64KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 6KB - Virtual size: 6KB

Headers

File Characteristics

Exports

Exports

Sections

UPX0 Size: - Virtual size: 156KB

UPX1 Size: 139KB - Virtual size: 140KB

.rsrc Size: 6KB - Virtual size: 8KB

Headers

File Characteristics

Sections

.text Size: 187KB - Virtual size: 186KB

.rdata Size: 46KB - Virtual size: 46KB

.data Size: 7KB - Virtual size: 20KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 18KB - Virtual size: 17KB

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 1.2MB

UPX1 Size: 793KB - Virtual size: 796KB

.rsrc Size: 37KB - Virtual size: 40KB

Headers

File Characteristics

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 496KB - Virtual size: 492KB

.data Size: 92KB - Virtual size: 391KB

.rsrc Size: 36KB - Virtual size: 35KB

3f2264a358061fb23e0a678c916babfd

Headers

File Characteristics

Imports

wsock32

kernel32

advapi32

Exports

Exports

Sections

.text
Size: 114KB - Virtual size: 113KB

.rdata
Size: 35KB - Virtual size: 34KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 10KB - Virtual size: 9KB

.text
Size: 65KB - Virtual size: 64KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 6KB - Virtual size: 6KB

UPX0
Size: - Virtual size: 156KB

UPX1
Size: 139KB - Virtual size: 140KB

.rsrc
Size: 6KB - Virtual size: 8KB

.text
Size: 187KB - Virtual size: 186KB

.rdata
Size: 46KB - Virtual size: 46KB

.data
Size: 7KB - Virtual size: 20KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 18KB - Virtual size: 17KB

UPX0
Size: - Virtual size: 1.2MB

UPX1
Size: 793KB - Virtual size: 796KB

.rsrc
Size: 37KB - Virtual size: 40KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 496KB - Virtual size: 492KB

.data
Size: 92KB - Virtual size: 391KB

.rsrc
Size: 36KB - Virtual size: 35KB

.text
Size: 340KB - Virtual size: 339KB

.rdata
Size: 64KB - Virtual size: 61KB

.data
Size: 1004KB - Virtual size: 1013KB

.reloc
Size: 24KB - Virtual size: 22KB

UPX0
Size: - Virtual size: 196KB

UPX1
Size: 331KB - Virtual size: 332KB

.rsrc
Size: 9KB - Virtual size: 12KB

.text
Size: 428KB - Virtual size: 427KB

.rdata
Size: 53KB - Virtual size: 52KB

.data
Size: 7KB - Virtual size: 15KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 11KB