17b6ac81d904fdf6301db0009ea83c1f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

17b6ac81d904fdf6301db0009ea83c1f_JaffaCakes118
Size

3.2MB
MD5

17b6ac81d904fdf6301db0009ea83c1f
SHA1

34e8de7c3d7d8fb40da418a3cdf280a1045b5bc1
SHA256

36a9a8ddd93665c265785895cef1a90769c9aaac6879d5f5e636508670175b68
SHA512

d8d32d13b5f8e15b33488b28adf5033e6413aac822ffe8e6b06f9e6cb365e6d4cd8c0c71a3fac11c7761d3365202689ce20bb4f7e8f75bd05a8d00990cfc2acc
SSDEEP

49152:2NWGQ+UKjD4SBOmkz0W4pNKf/kpQ6qGWlQPwOyBx/9RnTqauzTj3FkRK2ymq:2QGYu3BOm9WXZlQPwRBxFRTqaSfVg1q

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/mpeg_enc.dll	acprotect

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/mpeg_enc.dll	upx

Unsigned PE 27 IoCs

Checks for missing Authenticode signature.

resource
17b6ac81d904fdf6301db0009ea83c1f_JaffaCakes118
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/UserInfo.dll
unpack001/$PLUGINSDIR/nsDialogs.dll
unpack001/AudioConvertor.exe
unpack001/AudioDecode.dll
unpack001/AudioGrab.dll
unpack001/AudioSharer.dll
unpack001/Image.dll
unpack001/InsideGrab.dll
unpack001/OfflineRecorder.exe
unpack001/PGPlayer.exe
unpack001/PGStarter.exe
unpack001/PlaybackUI.dll
unpack001/Popups.dll
unpack001/PowerGramo.exe
unpack001/Uninstall.exe
unpack002/$PLUGINSDIR/System.dll
unpack002/$PLUGINSDIR/UserInfo.dll
unpack001/UpGrade.exe
unpack001/VEDecoder.dll
unpack001/VideoGrab.dll
unpack001/mpeg_enc.dll
unpack001/ogg_enc.dll
unpack001/wave_enc.dll
unpack001/wma_enc.dll
unpack001/zlib.dll

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/Uninstall.exe	nsis_installer_1
static1/unpack001/Uninstall.exe	nsis_installer_2

Files

17b6ac81d904fdf6301db0009ea83c1f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UserInfo.dll
.dll windows:4 windows x86 arch:x86

afa8e526425f3585465337467d0b5909

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
GetCurrentThread
lstrcpynA
GetCurrentProcess
GetModuleHandleA
GetProcAddress
GetLastError
GlobalFree
CloseHandle
GlobalAlloc

advapi32

OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
GetUserNameA
OpenThreadToken

Exports

Exports

GetAccountType
GetName
GetOriginalAccountType

Sections

.text
Size: 1024B - Virtual size: 741B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 673B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsDialogs.dll
.dll windows:4 windows x86 arch:x86

1e2884056e655f2b7bc5a904e352fc80

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyA
GetFileAttributesA
lstrcmpiA
MulDiv
lstrlenA
HeapFree
GetCurrentDirectoryA
HeapAlloc
HeapReAlloc
GlobalFree
lstrcpynA
GlobalAlloc
GetProcessHeap
SetCurrentDirectoryA

user32

GetPropA
DestroyWindow
CallWindowProcA
SetCursor
LoadCursorA
RemovePropA
CharPrevA
GetWindowLongA
DrawTextA
GetWindowTextA
GetDlgItem
SetWindowLongA
SetWindowPos
CreateDialogParamA
MapWindowPoints
GetWindowRect
SetPropA
CreateWindowExA
IsWindow
SetTimer
KillTimer
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
ShowWindow
wsprintfA
MapDialogRect
GetClientRect
CharNextA
SendMessageA
DrawFocusRect

gdi32

SetTextColor

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

Create
CreateControl
CreateItem
CreateTimer
GetUserData
KillTimer
OnBack
OnChange
OnClick
OnNotify
SelectFileDialog
SelectFolderDialog
SetRTL
SetUserData
Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Audio/Recording aborted.wav
Audio/Recording disabled.wav
Audio/being recorded.wav
Audio/recording saved.wav
AudioConvertor.exe
.exe windows:4 windows x86 arch:x86

f70b896a2ed79bae0df4c538ca11d7f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

audiodecode

AudioDec_OpenStream
AudioDec_GetStreamFormat
AudioDec_GetTotalFrames
AudioDec_CloseStream
AudioDec_DecodeEnd
AudioDec_DecodeBegin
AudioDec_Decode

kernel32

HeapSize
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetStringTypeW
SetStdHandle
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
GetCurrentDirectoryW
FreeLibrary
DeleteFileW
GetModuleFileNameW
FindResourceA
GlobalAddAtomA
GetProfileStringA
LoadLibraryW
GetProcAddress
lstrcatW
lstrcpyW
WideCharToMultiByte
GlobalFree
Sleep
GlobalAlloc
GetFileAttributesW
SetFilePointer
GetLastError
GetFileSize
ReadFile
WriteFile
CreateFileW
CloseHandle
SetEndOfFile
lstrlenW
GetVersionExW
GetCurrentThreadId
GetCurrentThread
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
lstrcmpW
GlobalLock
LoadResource
FindResourceW
LockResource
GlobalUnlock
InterlockedIncrement
InterlockedDecrement
lstrlenA
MultiByteToWideChar
GetModuleHandleW
GlobalFindAtomW
GlobalAddAtomW
GetVersion
LoadLibraryA
GetModuleHandleA
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
LocalFree
FormatMessageW
lstrcpynW
SetLastError
MulDiv
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
GlobalReAlloc
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
lstrcmpiW
GlobalFlags
GetProcessVersion
SizeofResource
GetThreadLocale
SetErrorMode
DuplicateHandle
GetCurrentProcess
FlushFileBuffers
LockFile
UnlockFile
FindClose
FindFirstFileW
GetVolumeInformationW
GetFullPathNameW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTickCount
GetFileTime
GetStartupInfoW
ExitProcess
RtlUnwind
TerminateProcess
HeapFree
HeapAlloc
RaiseException
HeapReAlloc

user32

SetDlgItemTextW
UpdateWindow
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
GetSysColor
AdjustWindowRectEx
ScreenToClient
GetTopWindow
IsChild
GetCapture
WinHelpW
wsprintfW
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
CreateWindowExW
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
PostThreadMessageW
GetMessageTime
GetMessagePos
GetForegroundWindow
RegisterWindowMessageW
OffsetRect
IntersectRect
SystemParametersInfoW
IsIconic
GetWindowPlacement
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
CopyRect
GetDC
EndDialog
SetActiveWindow
GetSystemMetrics
CreateDialogIndirectParamW
DestroyWindow
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageW
GetActiveWindow
GetClientRect
GetWindowRect
FindWindowExW
SendMessageW
UnregisterClassW
GetWindowTextLengthA
IsDialogMessageW
HideCaret
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExW
GetLastActivePopup
MessageBoxW
SetCursor
PostQuitMessage
PostMessageW
GetParent
RegisterClipboardFormatW
CharUpperW
InvalidateRect
DefWindowProcW
GetFocus
IsWindowEnabled
IsWindow
SetFocus
PeekMessageW
TranslateMessage
DispatchMessageW
LoadIconW
SetForegroundWindow
GetDlgItem
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
SetWindowLongW
GetWindowLongW
EnableWindow
DestroyMenu
MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableW
CharNextW
InflateRect
GetSysColorBrush
LoadBitmapW
PtInRect
GetClassNameW
GetDesktopWindow
LoadCursorW
GrayStringW
DrawTextW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
LoadStringW
ShowWindow
MoveWindow
ReleaseDC
SetWindowTextW

gdi32

BitBlt
CreateCompatibleDC
GetTextExtentPointA
ExtTextOutA
LPtoDP
GetBkColor
GetTextColor
DPtoLP
GetMapMode
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateSolidBrush
GetWindowExtEx
GetViewportExtEx
GetDeviceCaps
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
RestoreDC
SaveDC
DeleteDC
SetBkColor
SetTextColor
GetClipBox
PatBlt
CreateBitmap
GetObjectW
CreateFontIndirectW
SelectObject
DeleteObject
CreateDIBitmap

comdlg32

GetOpenFileNameW
GetSaveFileNameW
GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegDeleteKeyW
RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW

shell32

SHGetFileInfoW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc

comctl32

ImageList_Destroy
ord17

oledlg

OleUIBusyW

ole32

CoFreeUnusedLibraries
CoRegisterMessageFilter
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize

olepro32

ord253

oleaut32

SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen

Sections

.text
Size: 164KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
AudioConvertor.exe.manifest
.xml
AudioDecode.dll
.dll windows:4 windows x86 arch:x86

fc0bdd0bb75d493ff4a3d6be825f3f04

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetTimeZoneInformation
GetSystemTime
GetLocalTime
RtlUnwind
GetCommandLineA
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
RaiseException
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
FlushFileBuffers
GetCurrentProcess
GetProcessVersion
LoadLibraryA
FreeLibrary
GlobalAddAtomW
GlobalFindAtomW
GetModuleHandleA
SetLastError
GlobalFlags
GetVersion
lstrcatW
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
lstrcpynW
LocalFree
WritePrivateProfileStringW
lstrlenA
GetModuleFileNameW
GlobalLock
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
InterlockedDecrement
InterlockedIncrement
LoadLibraryW
DeleteFileW
lstrcmpW
WideCharToMultiByte
lstrlenW
GlobalAlloc
MultiByteToWideChar
SetEndOfFile
CloseHandle
CreateFileW
WriteFile
ReadFile
GetFileSize
GetLastError
SetFilePointer
lstrcpyW
GlobalFree
lstrcmpiW
GetModuleHandleW
GetEnvironmentStrings
GetProcAddress

user32

MapWindowPoints
LoadIconW
LoadCursorW
GetSysColorBrush
LoadStringW
DestroyMenu
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageW
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
SetWindowLongW
GetDlgItem
GrayStringW
DrawTextW
TabbedTextOutW
ReleaseDC
GetDC
AdjustWindowRectEx
GetSysColor
GetMenuItemCount
GetWindowTextW
SetWindowTextW
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameW
UnregisterClassW
UnhookWindowsHookEx
wsprintfW
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
GetClientRect
CopyRect
SetWindowsHookExW
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongW
MessageBoxW
EnableWindow
SetCursor
SendMessageW
PostMessageW
PostQuitMessage
GetTopWindow
GetCapture
WinHelpW
GetClassInfoW
RegisterClassW
GetMenu
GetSubMenu
GetMenuItemID
DestroyWindow
CreateWindowExW
SetPropW
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
GetMessageTime
GetMessagePos

gdi32

SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetDeviceCaps
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetObjectW
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
DeleteObject

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW

comctl32

ord17

oleaut32

SysAllocStringLen

Exports

Exports

AudioDec_CloseStream
AudioDec_Decode
AudioDec_DecodeBegin
AudioDec_DecodeEnd
AudioDec_DecodeGetVolume
AudioDec_DecodeReset
AudioDec_DecodeSetVolume
AudioDec_DeleteRecordChatMsg
AudioDec_DeleteVideoData
AudioDec_FileTestPassword
AudioDec_FormatErrorString
AudioDec_GetFileProperty
AudioDec_GetRandId
AudioDec_GetRecordChatMsg
AudioDec_GetRecordInfo
AudioDec_GetRecordMemoire
AudioDec_GetStreamFormat
AudioDec_GetTimeTagArray
AudioDec_GetTotalFrames
AudioDec_GetVideoFileName
AudioDec_OpenStream
AudioDec_SetImportantFlag
AudioDec_SetNewFlag
AudioDec_SetPassword
AudioDec_SetRecordMemoire
AudioDec_SetTitle

Sections

.text
Size: 232KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AudioGrab.dll
.dll windows:4 windows x86 arch:x86

8c2e07d04fe64b700a99b4b6b8f61cc8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RtlUnwind
GetCommandLineA
ExitProcess
TerminateProcess
HeapFree
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapAlloc
RaiseException
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
GetProcessVersion
LoadLibraryA
FreeLibrary
GlobalAddAtomW
GlobalFindAtomW
GetLastError
GetModuleHandleA
SetLastError
MultiByteToWideChar
WritePrivateProfileStringW
GlobalFlags
lstrcmpiW
GetVersion
lstrcpynW
SetErrorMode
TlsGetValue
lstrlenW
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
CloseHandle
GetModuleFileNameW
GlobalLock
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
WideCharToMultiByte
GetCurrentThread
GetCurrentThreadId
InterlockedDecrement
InterlockedIncrement
GetSystemDirectoryW
lstrcatW
GetModuleHandleW
LoadLibraryW
GetProcAddress
VirtualProtect
lstrcpyW
FreeEnvironmentStringsW

user32

SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
DefWindowProcW
RemovePropW
CallWindowProcW
GetPropW
SetPropW
CreateWindowExW
DestroyWindow
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassW
GetClassInfoW
WinHelpW
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconW
LoadCursorW
GetSysColorBrush
DestroyMenu
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
SetWindowLongW
RegisterWindowMessageW
GetDlgItem
LoadStringW
GrayStringW
DrawTextW
TabbedTextOutW
ReleaseDC
GetDC
GetMenuItemCount
GetWindowTextW
SetWindowTextW
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
UnregisterClassW
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetParent
GetLastActivePopup
SendMessageW
PostQuitMessage
PostMessageW
IsWindowEnabled
GetWindowLongW
MessageBoxW
EnableWindow
SetCursor
wsprintfW
GetClassNameW

gdi32

SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetDeviceCaps
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetObjectW
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
CreateBitmap

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW

comctl32

ord17

Exports

Exports

AudioGrab_CallbackAlive
AudioGrab_CanUnload
AudioGrab_DisalbeAudioInOpen
AudioGrab_DisalbeAudioOutOpen
AudioGrab_Hook
AudioGrab_SetCallbackProcs
AudioGrab_UnHook

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AudioSharer.dll
.dll windows:4 windows x86 arch:x86

e933675e5df145f140eb61d5bf830908

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

waveOutRestart
waveOutGetNumDevs
waveOutClose
waveOutReset
waveOutUnprepareHeader
waveOutWrite
waveOutPause
waveOutOpen
waveOutPrepareHeader

kernel32

RtlUnwind
GetCommandLineA
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
RaiseException
HeapSize
HeapReAlloc
SetHandleCount
WriteFile
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
GetCurrentProcess
GetProcessVersion
GetLastError
SetLastError
GlobalFlags
lstrcmpiW
lstrcpynW
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
GlobalUnlock
TlsAlloc
LocalFree
LocalAlloc
GlobalFree
InterlockedDecrement
InterlockedIncrement
GetModuleHandleA
LoadLibraryA
MultiByteToWideChar
GetVersion
lstrcatW
GlobalAddAtomW
GlobalFindAtomW
WritePrivateProfileStringW
GetPrivateProfileIntW
CloseHandle
GetModuleFileNameW
GlobalLock
lstrcmpW
GlobalDeleteAtom
WideCharToMultiByte
GetCurrentThread
GetCurrentThreadId
DeleteCriticalSection
lstrlenW
lstrcpyW
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
LoadLibraryW
GetProcAddress
FreeLibrary
InitializeCriticalSection
GetStdHandle
GlobalAlloc

user32

GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
LoadIconW
SetWindowTextW
ShowWindow
UnregisterClassW
GetClassNameW
PtInRect
ClientToScreen
GetDC
ReleaseDC
TabbedTextOutW
DrawTextW
GrayStringW
LoadCursorW
GetSysColorBrush
LoadStringW
DestroyMenu
GetCapture
WinHelpW
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextW
GetDlgCtrlID
DestroyWindow
CreateWindowExW
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongW
SetWindowPos
RegisterWindowMessageW
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
wsprintfW
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongW
MessageBoxW
SetCursor
SendMessageW
PostQuitMessage
IsWindow
EnableWindow
PostMessageW
ModifyMenuW
GetNextDlgTabItem

gdi32

CreateBitmap
GetObjectW
DeleteObject
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SetTextColor
GetDeviceCaps
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetClipBox
SetBkColor

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW

comctl32

ord17

Exports

Exports

AudioSharer_BackgroundMusic
AudioSharer_CreateSharer
AudioSharer_DestroySharer
AudioSharer_GreetingMessage
AudioSharer_MuteMicrophone
AudioSharer_OnCallBegin
AudioSharer_OnCallEnd
AudioSharer_OnCallStatus
AudioSharer_OnWaveInData
AudioSharer_PauseContinuePlaying
AudioSharer_SetCallbackWnd
AudioSharer_SetPlayLocally
AudioSharer_SetVolumes
AudioSharer_StopPlaying

Sections

.text
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Greetings/female.mp3
Greetings/male.mp3
Image.dll
.dll windows:4 windows x86 arch:x86

3a270af4bb4756f468fe9bc1962f02ed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyW
WideCharToMultiByte
lstrlenW
CreateFileW
WriteFile
lstrcmpW
GetTickCount
ResumeThread
WaitForSingleObject
GlobalFree
GlobalAlloc
CloseHandle

msvcrt

fabs
atan2
strstr
tmpnam
vsprintf
abort
_pctype
_isctype
__mb_cur_max
strrchr
_iob
atoi
atof
strchr
vfprintf
strtok
_snprintf
gmtime
strtod
_stricmp
putc
_errno
sqrt
fgetc
perror
mktime
tmpfile
_open
_unlink
_setmode
_read
_write
_lseek
_close
_except_handler3
?terminate@@YAXXZ
_initterm
_adjust_fdiv
??1type_info@@UAE@XZ
__dllonexit
_onexit
_purecall
fclose
_wfopen
fread
fwrite
log
exp
pow
memmove
memset
memcpy
strlen
strcpy
getenv
sscanf
fprintf
fseek
ftell
fflush
fputc
getc
fgets
exit
isprint
printf
ceil
rand
qsort
ldiv
strncmp
longjmp
__CxxLongjmpUnwind
_setjmp3
_swab
_CxxThrowException
_CIpow
sprintf
calloc
strncpy
_strnicmp
_ftol
floor
fopen
realloc
malloc
free
__CxxFrameHandler
??2@YAPAXI@Z
fscanf
_getcwd

ws2_32

htonl
ntohs
htons
ntohl

user32

GetSysColor
GetDC
ReleaseDC

gdi32

SelectObject
DeleteDC
CreateCompatibleDC
SetEnhMetaFileBits
GetEnhMetaFileHeader
SetWinMetaFileBits
GetDeviceCaps
DeleteEnhMetaFile
ExtTextOutA
GetEnhMetaFilePaletteEntries
CreatePalette
SelectPalette
PlayEnhMetaFile
StretchDIBits
CreateCompatibleBitmap
SetBkColor
SetStretchBltMode
GetObjectA
RealizePalette
GetDIBits
DeleteObject

Exports

Exports

??0CImage2@@QAE@XZ
??0CxFile@@QAE@ABV0@@Z
??0CxFile@@QAE@XZ
??0CxIOFile@@QAE@ABV0@@Z
??0CxIOFile@@QAE@PAU_iobuf@@@Z
??0CxMemFile@@QAE@ABV0@@Z
??1CxFile@@UAE@XZ
??1CxIOFile@@UAE@XZ
??1CxImage@@UAE@XZ
??4CImage2@@QAEAAV0@ABV0@@Z
??4CxFile@@QAEAAV0@ABV0@@Z
??4CxIOFile@@QAEAAV0@ABV0@@Z
??4CxMemFile@@QAEAAV0@ABV0@@Z
??_7CxFile@@6B@
??_7CxIOFile@@6B@
??_7CxImage@@6B@
??_7CxMemFile@@6B@
??_FCxIOFile@@QAEXXZ
??_FCxImage@@QAEXXZ
??_FCxMemFile@@QAEXXZ
??_OCxImage@@QAEXABV0@@Z
?Close@CxIOFile@@UAE_NXZ
?Eof@CxIOFile@@UAE_NXZ
?Error@CxIOFile@@UAEJXZ
?Flush@CxIOFile@@UAE_NXZ
?GetC@CxIOFile@@UAEJXZ
?GetS@CxIOFile@@UAEPADPADH@Z
?Open@CxIOFile@@QAE_NPBG0@Z
?PutC@CxFile@@UAE_NE@Z
?PutC@CxIOFile@@UAE_NE@Z
?Read@CxIOFile@@UAEIPAXII@Z
?Scanf@CxIOFile@@UAEJPBDPAX@Z
?Seek@CxIOFile@@UAE_NJH@Z
?Size@CxIOFile@@UAEJXZ
?Tell@CxIOFile@@UAEJXZ
?Write@CxIOFile@@UAEIPBXII@Z
CreateImageObject
DeleteImage
DrawImage
EncodeBitmap
EncodeDIBData
GetImageSize
nImage2

Sections

.text
Size: 808KB - Virtual size: 805KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 144KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
InsideGrab.dll
.dll windows:4 windows x86 arch:x86

f22a70279800b0ba1502520596d793f7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

kernel32

RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCommandLineA
HeapAlloc
HeapFree
RaiseException
CreateThread
ExitThread
ExitProcess
TerminateProcess
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
FlushFileBuffers
GetCurrentProcess
GlobalGetAtomNameW
GetProcessVersion
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetCurrentThread
SuspendThread
SetThreadPriority
lstrcpynW
GlobalLock
GlobalUnlock
MulDiv
SetLastError
GetModuleHandleA
LoadLibraryA
FindResourceW
LoadResource
LockResource
GetVersion
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
LocalFree
MultiByteToWideChar
lstrlenA
InterlockedDecrement
InterlockedIncrement
MoveFileW
DeleteFileW
Sleep
ResumeThread
SetEndOfFile
CreateFileW
WriteFile
ReadFile
GetFileSize
GetLastError
SetFilePointer
SetEvent
GetModuleFileNameW
GetVersionExW
CloseHandle
GetCurrentProcessId
CreateEventW
CreateMutexW
WinExec
WideCharToMultiByte
GetSystemDirectoryW
VirtualProtect
ResetEvent
WaitForSingleObject
ReleaseMutex
GetLocaleInfoW
CreateProcessW
GetDiskFreeSpaceExW
CreateDirectoryW
lstrlenW
lstrcmpiW
lstrcpyW
lstrcmpW
lstrcatW
GetFileAttributesW
GetModuleHandleW
LoadLibraryW
GetProcAddress
FreeLibrary
GetTickCount
GlobalAlloc
GlobalFree
VirtualAlloc
EnterCriticalSection
VirtualFree
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetModuleFileNameA

user32

GetMenuCheckMarkDimensions
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutW
DrawTextW
GrayStringW
LoadStringW
CreateDialogIndirectParamW
EndDialog
DestroyMenu
ValidateRect
TranslateMessage
GetMessageW
DefFrameProcW
TranslateMDISysAccel
TranslateAcceleratorW
DrawMenuBar
DefMDIChildProcW
PostQuitMessage
ShowOwnedPopups
UnregisterClassW
GetClassNameW
GetDesktopWindow
GetSysColorBrush
LoadAcceleratorsW
SetMenu
ReuseDDElParam
UnpackDDElParam
SetDlgItemTextW
UpdateWindow
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
PeekMessageW
DispatchMessageW
GetFocus
SetFocus
AdjustWindowRectEx
EqualRect
GetTopWindow
WinHelpW
RegisterClassW
GetMenu
GetMenuItemCount
GetMenuState
TrackPopupMenu
GetDlgItem
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
GetKeyState
DestroyWindow
CreateWindowExW
SetPropW
GetPropW
RemovePropW
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
IntersectRect
GetWindowPlacement
wsprintfW
PostThreadMessageW
RegisterWindowMessageW
CallNextHookEx
GetMessagePos
SetParent
MoveWindow
GetWindowThreadProcessId
SetWindowsHookExW
UnhookWindowsHookEx
LoadIconW
DrawIconEx
DrawFrameControl
SystemParametersInfoW
GetSystemMetrics
SetRectEmpty
IsRectEmpty
IsIconic
SetActiveWindow
CallWindowProcW
IsZoomed
DrawEdge
GetCapture
GetCursorPos
ReleaseCapture
PtInRect
SetCapture
CopyImage
RedrawWindow
SetRect
SetWindowLongW
GetClassInfoW
DefWindowProcW
LoadCursorW
ShowWindow
BringWindowToTop
IsWindowVisible
SetWindowPos
MessageBoxW
FindWindowW
ScreenToClient
ChildWindowFromPoint
MessageBeep
IsWindowEnabled
CheckMenuItem
GetSubMenu
KillTimer
IsWindow
LoadMenuW
LoadBitmapW
ModifyMenuW
SetMenuItemBitmaps
EnableMenuItem
SetWindowTextW
IsDialogMessageW
GetMenuItemID
SetTimer
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
EnableWindow
LoadImageW
GetIconInfo
GetDC
CreateIconIndirect
ReleaseDC
FillRect
DrawStateW
GetClientRect
GetWindowRect
CopyRect
FrameRect
InflateRect
OffsetRect
DrawFocusRect
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
SendMessageW
GetWindowLongW
DestroyIcon
DestroyCursor
GetSysColor
PostMessageW
FindWindowExW

gdi32

GetDeviceCaps
CreatePatternBrush
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
PatBlt
SetRectRgn
CreateRectRgnIndirect
GetTextMetricsW
SetBkMode
RestoreDC
SaveDC
LineTo
MoveToEx
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
CreateCompatibleBitmap
SelectObject
GetStockObject
DeleteObject
GetClipBox
GetTextExtentPoint32W
CreateRectRgn
CombineRgn
CreateSolidBrush
CreateFontIndirectW
StretchBlt
CreatePen
GetObjectW
GetPixel
SetPixel
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
SetMapMode

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW

shell32

DragQueryFileW
DragFinish
ShellExecuteW
ShellExecuteExW

comctl32

ImageList_AddMasked
ImageList_GetIcon
ord17
ImageList_Destroy
ImageList_Create
_TrackMouseEvent

ole32

CoUninitialize
CoInitialize

Exports

Exports

InsideGrab_AddTimeTag
InsideGrab_GetContactInfo
InsideGrab_GetContactNameById
InsideGrab_GetCurrentSkypeId
InsideGrab_GetErrorCode
InsideGrab_Hook
InsideGrab_OnEndSession
InsideGrab_SendFileViaSkype
InsideGrab_SkypeCallAlive
InsideGrab_SkypeCallBegin
InsideGrab_SkypeCallContactAdd
InsideGrab_SkypeCallContactLeave
InsideGrab_SkypeCallEnd
InsideGrab_SkypeCallLocalVideoStatus
InsideGrab_SkypeCallPaused
InsideGrab_SkypeCallRemoteVideoStatus
InsideGrab_SkypeChatMessage
InsideGrab_SkypeConnStatus
InsideGrab_SkypeContactAdd
InsideGrab_SkypeContactName
InsideGrab_SkypeContactOnlineStatus
InsideGrab_SkypeContactRemoved
InsideGrab_SkypeMoodText
InsideGrab_SkypeSMSMessage
InsideGrab_SkypeUserId
InsideGrab_SkypeUserName
InsideGrab_SkypeUserOnlineStatus
InsideGrab_Unhook

Sections

.text
Size: 248KB - Virtual size: 247KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

shared
Size: 4KB - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OfflineRecorder.exe
.exe windows:4 windows x86 arch:x86

238b2b7e465e0cb8cf617157ebdd3dbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
HeapSize
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapReAlloc
GetProfileStringA
GetACP
TerminateProcess
HeapFree
HeapAlloc
RaiseException
ExitProcess
GetStartupInfoA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
SetErrorMode
GetFileTime
GetFileSize
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
SizeofResource
GlobalFlags
FileTimeToLocalFileTime
FileTimeToSystemTime
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentProcess
DuplicateHandle
GetLastError
lstrcmpA
GetCurrentThread
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
FormatMessageA
LocalFree
lstrcpynA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
SetLastError
GetVersion
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GlobalLock
GlobalUnlock
LockResource
FindResourceA
LoadResource
GetVersionExA
GetModuleFileNameA
InitializeCriticalSection
CreateThread
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetFileAttributesA
Sleep
CopyFileA
GetCurrentThreadId
GetDiskFreeSpaceA
GetProcAddress
GetModuleHandleA
GetTempPathA
FindFirstFileA
DeleteFileA
FindNextFileA
FindClose
GetCommandLineA
CreateEventA
WaitForSingleObject
SetEvent
GetCurrentDirectoryA
MulDiv
GetTickCount
lstrcatA
lstrlenA
WinExec
lstrcpyA
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
CreateFileA
WriteFile
CloseHandle
GlobalAlloc
IsBadWritePtr
GlobalFree

user32

SendDlgItemMessageA
AdjustWindowRectEx
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowPos
IntersectRect
SystemParametersInfoA
GetWindowPlacement
EndDialog
SetActiveWindow
GetSystemMetrics
CreateDialogIndirectParamA
GetNextDlgGroupItem
IsWindowEnabled
SetFocus
EnableMenuItem
ShowScrollBar
GetDlgCtrlID
UpdateWindow
GetSystemMenu
AppendMenuA
MapWindowPoints
IsWindowVisible
IsIconic
SetForegroundWindow
FlashWindow
LoadIconA
RegisterWindowMessageA
GetDlgItem
FindWindowExA
ReleaseCapture
SetCapture
LoadBitmapA
PeekMessageA
DispatchMessageA
TranslateMessage
LoadCursorA
CopyIcon
IsWindow
GetMessagePos
ScreenToClient
PtInRect
SetTimer
MessageBeep
SetWindowLongA
KillTimer
FrameRect
LoadMenuA
LoadImageA
EnableWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
DestroyMenu
GetDC
ReleaseDC
GetSysColor
FillRect
DrawStateA
OffsetRect
GetClientRect
CopyRect
InflateRect
DrawFocusRect
GetWindowRect
GetSubMenu
TrackPopupMenuEx
SetRect
CopyAcceleratorTableA
CharNextA
PostThreadMessageA
DestroyWindow
GetSysColorBrush
PostMessageA
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
SendMessageA
GetWindowLongA
DestroyIcon
DestroyCursor
GetDesktopWindow
GetClassNameA
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatA
CharUpperA
GetMessageA
ValidateRect
PostQuitMessage
LoadStringA
GetCursorPos
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
GetFocus
DrawTextA

gdi32

RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
MoveToEx
LineTo
SaveDC
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
PatBlt
DPtoLP
GetTextMetricsA
GetTextColor
GetBkColor
LPtoDP
GetClipBox
CreatePen
CreateFontA
GetCurrentObject
StretchBlt
ExtFloodFill
GetTextExtentPoint32A
CreateFontIndirectA
CreateDIBSection
GetObjectA
GetPixel
SetPixel
CreateBitmap
SelectObject
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
CreateDIBitmap
GetTextExtentPointA
DeleteObject

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegQueryValueA
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCloseKey

shell32

SHGetFileInfoA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
ShellExecuteExA

comctl32

_TrackMouseEvent
ImageList_GetIcon
ord17
ImageList_Destroy
ImageList_LoadImageA

oledlg

ord8

ole32

CoInitialize
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CLSIDFromProgID
CLSIDFromString
CoRegisterMessageFilter
CoGetClassObject
CoRevokeClassObject
CoTaskMemFree
OleFlushClipboard
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemAlloc

olepro32

ord253

oleaut32

SysAllocStringByteLen
SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantChangeType
SysAllocString
VariantCopy
SysStringLen

vedecoder

VEDec_GetDescription
VEDec_GetTopic
VEDec_GetStreamFormat
VEDec_GetImageArray
VEDec_OpenStream
VEDec_GetStreamLength
VEDec_DecodeAudio
VEDec_DecodeAudioBegin
VEDec_DecodeAudioEnd
VEDec_CloseStream
VEDec_GetNumberOfVoidByts8729506

winmm

waveOutOpen
waveInClose
waveInStop
waveInReset
waveOutClose
mixerSetControlDetails
mixerGetControlDetailsA
mixerClose
mixerOpen
mixerGetDevCapsA
mixerGetLineInfoA
mixerGetLineControlsA
waveOutUnprepareHeader
waveInOpen
waveInStart
PlaySoundA
waveOutPrepareHeader
waveOutWrite
waveInGetNumDevs
waveOutReset
waveInAddBuffer
waveInGetDevCapsA
waveInUnprepareHeader
waveInPrepareHeader

Sections

.text
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
OfflineRecorder.exe.manifest
.xml
PGPlayer.exe
.exe windows:4 windows x86 arch:x86

0d0559c38c1f7fd71454081dc774adec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

playbackui

PlaybackUI_DestroyWindow
PlaybackUI_CreateWindow

kernel32

SizeofResource
GetStartupInfoW
ExitProcess
RtlUnwind
RaiseException
HeapAlloc
HeapFree
TerminateProcess
HeapSize
HeapReAlloc
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
FindResourceA
GlobalAddAtomA
GetProfileStringA
lstrcpyW
GetModuleFileNameW
FreeLibrary
CreateProcessW
GetProcAddress
LoadLibraryW
GlobalAlloc
lstrlenW
GetCommandLineW
CreateDirectoryW
GetFileAttributesW
lstrcatW
GetModuleHandleW
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
GetCurrentThreadId
GetVersion
LockResource
LoadResource
FindResourceW
MultiByteToWideChar
lstrlenA
LoadLibraryA
GetModuleHandleA
SetLastError
MulDiv
GlobalUnlock
GlobalLock
InterlockedDecrement
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
InterlockedIncrement
WideCharToMultiByte
GetCurrentThread
SetStdHandle
lstrcmpiA
GetFileTime
GetFileSize
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
DuplicateHandle
SetErrorMode
GetThreadLocale
GetProcessVersion
GlobalFlags
lstrcmpiW
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
lstrcpynW
GetLastError
GlobalFree
FormatMessageW
LocalFree
CloseHandle
lstrcmpW
lstrcmpA

user32

InflateRect
RegisterClipboardFormatW
PostThreadMessageW
CreateDialogIndirectParamW
EndDialog
MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableW
CharNextW
DestroyMenu
GetSysColorBrush
GetDesktopWindow
PtInRect
GetClassNameW
MapDialogRect
SetWindowContextHelpId
GetMessageW
TranslateMessage
GetActiveWindow
ValidateRect
GetCursorPos
SetCursor
LoadStringW
GrayStringW
DrawTextW
TabbedTextOutW
EndPaint
BeginPaint
ReleaseDC
GetDC
ClientToScreen
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
CharUpperW
IsDialogMessageW
UpdateWindow
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageW
DispatchMessageW
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
LoadCursorW
DefWindowProcW
GetClassInfoW
LoadIconW
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
GetTopWindow
MessageBoxW
IsChild
GetParent
GetCapture
WinHelpW
wsprintfW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
InvalidateRect
SetWindowTextW
GetDlgItem
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
ShowWindow
CheckMenuItem
RegisterWindowMessageW
LoadMenuW
MoveWindow
GetClientRect
SetWindowLongW
GetWindowLongW
SendMessageW
PostQuitMessage
PostMessageW
BringWindowToTop
EnableWindow
FindWindowW
IsWindow
GetSystemMetrics
GetWindowRect
GetWindowTextW
GetDlgCtrlID
GetKeyState
DestroyWindow
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetWindowDC

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
PatBlt
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox
CreateDIBitmap
ExtTextOutA
GetTextExtentPointA
BitBlt
CreateCompatibleDC

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW

shell32

ShellExecuteW

comctl32

InitCommonControlsEx
ord17

oledlg

OleUIBusyW

ole32

CoFreeUnusedLibraries
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize

olepro32

ord253

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysStringLen

Sections

.text
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PGPlayer.exe.manifest
.xml
PGStarter.exe
.exe windows:4 windows x86 arch:x86

0b53fb3a8333b86b060960317f29e4b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
CreateThread
ExitThread
RaiseException
TerminateProcess
HeapSize
HeapReAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
SetStdHandle
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
SetErrorMode
InterlockedIncrement
GlobalFlags
lstrcmpiW
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
lstrcpynW
GetLastError
GlobalUnlock
SetLastError
InterlockedDecrement
WritePrivateProfileStringW
GetPrivateProfileIntW
GlobalLock
lstrcmpW
WideCharToMultiByte
GetCurrentThread
GetModuleHandleA
LoadLibraryA
FreeLibrary
MultiByteToWideChar
GetVersion
lstrcatW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetModuleHandleW
GetProcAddress
SuspendThread
GetCurrentThreadId
SetThreadPriority
lstrlenW
GetModuleFileNameW
lstrcpyW
CreateProcessW
Sleep
CreateEventW
ResumeThread
ResetEvent
WaitForSingleObject
CloseHandle
SetEvent
GlobalAlloc
GetCommandLineW
GlobalFree

user32

CopyRect
GetClientRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
LoadIconW
SetWindowTextW
ShowWindow
IsWindowEnabled
PostQuitMessage
SetCursor
ClientToScreen
GetDC
ReleaseDC
TabbedTextOutW
DrawTextW
GrayStringW
GetSysColorBrush
GetClassNameW
PtInRect
DestroyMenu
LoadStringW
GetTopWindow
MessageBoxW
GetCapture
WinHelpW
wsprintfW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextW
GetDlgCtrlID
DestroyWindow
CreateWindowExW
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowLongW
SetWindowLongW
SetWindowPos
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
SendMessageW
GetClassInfoW
DefWindowProcW
LoadCursorW
KillTimer
FindWindowExW
SetTimer
RegisterWindowMessageW
FindWindowW
PostThreadMessageW
EnableWindow
PostMessageW
IsWindow
UnregisterClassW

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetDeviceCaps
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetObjectW
SetBkColor
SetTextColor
GetClipBox
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteObject
CreateBitmap
DeleteDC

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey

comctl32

ord17

Sections

.text
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PlaybackUI.dll
.dll windows:4 windows x86 arch:x86

9332d775c1f21e0d5be5665fe987f44f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

waveInReset
waveOutUnprepareHeader
waveOutWrite
waveOutPrepareHeader
waveOutSetVolume
waveOutOpen
waveOutPause
waveOutRestart
waveOutReset
waveInGetNumDevs
waveInOpen
waveInStart
waveInUnprepareHeader
waveInPrepareHeader
waveInAddBuffer
waveOutClose
waveInStop
waveInClose
waveOutGetNumDevs
waveOutGetPosition

avifil32

AVIFileInit
AVIStreamWrite
AVIFileCreateStreamW
AVISaveOptions
AVISaveOptionsFree
AVIMakeCompressedStream
AVIStreamSetFormat
AVIStreamRelease
AVIFileRelease
AVIFileOpenW
AVIFileExit

msvfw32

ICClose
ICGetInfo
ICOpen
ICInfo

kernel32

GlobalReAlloc
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
SetErrorMode
GlobalFlags
GetProcessVersion
GetFileTime
RtlUnwind
GetCommandLineA
RaiseException
HeapAlloc
HeapFree
ExitThread
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
TerminateProcess
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
LeaveCriticalSection
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetCurrentThread
GetFullPathNameW
GetVolumeInformationW
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
lstrcpynW
MulDiv
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
SuspendThread
SetThreadPriority
LocalFree
InterlockedDecrement
InterlockedIncrement
GetModuleHandleA
LoadLibraryA
lstrlenA
MultiByteToWideChar
GetVersion
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GlobalLock
GlobalUnlock
LockResource
FindResourceW
LoadResource
GetVersionExW
lstrcmpiW
Sleep
FindFirstFileW
FindNextFileW
FindClose
GetFileAttributesW
CreateDirectoryW
GetCurrentDirectoryW
ResumeThread
SetEndOfFile
WriteFile
GetLastError
SetFilePointer
WinExec
SetCurrentDirectoryW
WideCharToMultiByte
LoadLibraryW
GetModuleFileNameW
CreateThread
GetTempPathW
GetTickCount
lstrcatW
DeleteFileW
FreeLibrary
lstrlenW
MoveFileW
lstrcmpW
lstrcpyW
CreateFileW
GetFileSize
ReadFile
GetModuleHandleW
GetProcAddress
SetEvent
GlobalAlloc
ResetEvent
GlobalFree
WaitForSingleObject
CreateEventW
FreeEnvironmentStringsA
CloseHandle

user32

TrackPopupMenu
GetMenuItemID
GetMenu
RegisterClassW
GetClassInfoW
WinHelpW
GetCapture
MessageBoxW
GetTopWindow
SetScrollInfo
GetScrollInfo
AdjustWindowRectEx
SendDlgItemMessageA
CheckDlgButton
GetDlgItemInt
SetDlgItemInt
SetDlgItemTextW
IsDialogMessageW
SetWindowTextW
MoveWindow
EnableMenuItem
SetMenuItemBitmaps
ModifyMenuW
GetMenuState
GetMenuCheckMarkDimensions
wvsprintfW
ValidateRect
GetMessageW
LoadStringW
BeginPaint
EndPaint
TabbedTextOutW
GrayStringW
DestroyMenu
CharUpperW
PostQuitMessage
UnregisterClassW
GetClassNameW
GetSysColorBrush
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
IntersectRect
SystemParametersInfoW
GetWindowPlacement
EndDialog
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindowEnabled
SetFocus
ShowWindow
wsprintfW
DrawEdge
UpdateWindow
IsIconic
GetFocus
GetCursorPos
SetMenuDefaultItem
PeekMessageW
DispatchMessageW
TranslateMessage
GetMenuStringW
GetMenuItemCount
InsertMenuW
GetDlgItem
FindWindowExW
DrawTextW
PostThreadMessageW
GetMessagePos
LoadBitmapW
MapWindowPoints
CheckMenuItem
SetWindowRgn
SetWindowPos
LoadMenuW
GetSubMenu
IsWindowVisible
GetKeyState
ReleaseCapture
GetDoubleClickTime
SetTimer
SetCapture
PtInRect
ScreenToClient
LoadCursorW
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetSystemMetrics
FindWindowW
SendDlgItemMessageW
SetWindowLongW
LoadIconW
LoadImageW
GetIconInfo
GetDC
CreateIconIndirect
ReleaseDC
FillRect
DrawStateW
GetClientRect
GetWindowRect
CopyRect
FrameRect
InflateRect
OffsetRect
DrawFocusRect
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
GetWindowLongW
DestroyIcon
DestroyCursor
GetSysColor
SetRect
KillTimer
PostMessageW
IsWindow
EnableWindow
SendMessageW
MessageBeep
RegisterWindowMessageW

gdi32

GetObjectW
Rectangle
GetTextExtentPoint32W
GetTextColor
CreateRoundRectRgn
CreateFontW
StretchBlt
SetStretchBltMode
CreateDIBSection
SetBkMode
ExtFloodFill
GetClipBox
PatBlt
CreateRectRgnIndirect
SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
CreatePen
MoveToEx
LineTo
CreateRectRgn
CreateFontIndirectW
GetDeviceCaps
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetRectRgn
CombineRgn
GetPixel
SetPixel
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
GetStockObject
DeleteObject
GetCurrentObject

comdlg32

ChooseColorW
GetFileTitleW
GetSaveFileNameW
GetOpenFileNameW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegCloseKey
RegQueryValueW
RegOpenKeyExW
RegQueryValueExW

shell32

ShellExecuteExW
ShellExecuteW
SHFileOperationW
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW

comctl32

ImageList_LoadImageW
ImageList_Create
ImageList_Destroy
_TrackMouseEvent
ImageList_Draw
ImageList_AddMasked
ImageList_GetIcon
ord17

ole32

CoUninitialize
CoInitialize

ddraw

DirectDrawCreate

Exports

Exports

PlaybackUI_CreateWindow
PlaybackUI_DestroyWindow

Sections

.text
Size: 348KB - Virtual size: 346KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Popups.dll
.dll windows:4 windows x86 arch:x86

cdcbb5b6182fa059251e62b8358853bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

waveOutClose
waveOutPrepareHeader
waveOutSetVolume
waveOutOpen
waveOutPause
waveOutRestart
waveOutReset
waveOutGetPosition
waveInClose
waveInStop
waveInReset
waveInAddBuffer
waveInPrepareHeader
waveInUnprepareHeader
waveInStart
waveInOpen
waveInGetNumDevs
waveInGetDevCapsW
waveOutGetDevCapsW
waveOutGetNumDevs
waveOutUnprepareHeader
waveOutWrite

kernel32

GlobalGetAtomNameW
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCommandLineA
RaiseException
HeapFree
HeapAlloc
CreateThread
ExitThread
ExitProcess
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileTime
GetFileSize
GetProcessVersion
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetCurrentThread
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetModuleFileNameW
GetThreadLocale
GetFullPathNameW
GetVolumeInformationW
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
DuplicateHandle
GetLastError
SuspendThread
SetThreadPriority
lstrcpynW
FormatMessageW
LocalFree
InterlockedDecrement
InterlockedIncrement
MulDiv
SetLastError
GetModuleHandleA
LoadLibraryA
lstrlenA
MultiByteToWideChar
GetVersion
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GlobalLock
GlobalUnlock
LockResource
FindResourceW
LoadResource
GetDriveTypeW
GetVersionExW
LoadLibraryW
GetFileAttributesW
CreateDirectoryW
FreeLibrary
FindFirstFileW
FindNextFileW
FindClose
ResumeThread
WinExec
WideCharToMultiByte
GetLocaleInfoW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
lstrcmpiW
lstrcmpW
MoveFileW
GetTempPathW
lstrlenW
GetTickCount
DeleteFileW
lstrcpyW
lstrcatW
GetModuleHandleW
GetProcAddress
SetEvent
GlobalAlloc
ResetEvent
GlobalFree
WaitForSingleObject
CreateEventW
CloseHandle
TerminateProcess

user32

GetMessageW
CharUpperW
DefFrameProcW
TranslateMDISysAccel
TranslateAcceleratorW
DrawMenuBar
DefMDIChildProcW
DestroyMenu
PostQuitMessage
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
RegisterClipboardFormatW
UnregisterClassW
GetClassNameW
GetDesktopWindow
GetSysColorBrush
LoadAcceleratorsW
SetMenu
ReuseDDElParam
UnpackDDElParam
CharNextW
CopyAcceleratorTableW
GetNextDlgGroupItem
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
SetDlgItemTextW
CheckDlgButton
UpdateWindow
SendDlgItemMessageW
SendDlgItemMessageA
PeekMessageW
DispatchMessageW
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
IsChild
WinHelpW
RegisterClassW
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthW
GetWindowTextW
GetKeyState
TranslateMessage
SetWindowsHookExW
CallNextHookEx
SetPropW
UnhookWindowsHookEx
GetPropW
RemovePropW
GetMessageTime
GetLastActivePopup
GetForegroundWindow
GetWindow
RegisterWindowMessageW
GetWindowPlacement
EndDialog
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
GetFocus
IsWindowEnabled
wsprintfW
MessageBoxW
LoadMenuW
GetSubMenu
CheckMenuItem
SetWindowPos
DrawTextW
SetForegroundWindow
GetMessagePos
MessageBeep
BringWindowToTop
IsWindowVisible
LoadIconW
DrawIconEx
DrawFrameControl
SystemParametersInfoW
GetSystemMetrics
SetRectEmpty
IsRectEmpty
IsIconic
SetActiveWindow
CallWindowProcW
IsZoomed
DrawEdge
GetCapture
GetCursorPos
ScreenToClient
ReleaseCapture
PtInRect
SetCapture
CopyImage
RedrawWindow
SetRect
SetWindowLongW
GetClassInfoW
DefWindowProcW
PostThreadMessageW
GetDlgCtrlID
SetTimer
LoadImageW
GetIconInfo
GetDC
CreateIconIndirect
ReleaseDC
FillRect
DrawStateW
CopyRect
FrameRect
InflateRect
OffsetRect
DrawFocusRect
ClientToScreen
WindowFromPoint
GetActiveWindow
SetCursor
GetParent
GetNextDlgTabItem
GetWindowLongW
DestroyIcon
ValidateRect
LoadStringW
wvsprintfW
GrayStringW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
CreateWindowExW
GetMenuCheckMarkDimensions
DestroyCursor
GetWindowRect
SendMessageW
KillTimer
PostMessageW
IsWindow
InvalidateRect
EnableWindow
LoadCursorW
LoadBitmapW
GetClientRect
GetSysColor
MapWindowPoints
SetFocus

gdi32

MoveToEx
LineTo
SetViewportExtEx
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
ExtTextOutW
Escape
GetMapMode
DPtoLP
GetTextColor
GetBkColor
LPtoDP
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
CreateFontW
GetTextExtentPoint32W
CreateRectRgn
CombineRgn
CreateSolidBrush
CreateFontIndirectW
StretchBlt
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
SelectObject
GetStockObject
DeleteObject
FloodFill
CreateCompatibleBitmap
RoundRect
CreateCompatibleDC
GetObjectW
GetPixel
SetPixel
BitBlt
TextOutW
CreatePen
ScaleViewportExtEx

comdlg32

GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegOpenKeyExW
RegQueryValueExW
RegQueryValueW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCloseKey

shell32

DragQueryFileW
DragFinish
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteExW
ShellExecuteW

comctl32

_TrackMouseEvent
ImageList_GetIcon
ImageList_AddMasked
ord17
ImageList_Destroy
ImageList_Create

oledlg

OleUIBusyW

ole32

CLSIDFromString
CoInitialize
CoUninitialize
CoTaskMemFree
CoCreateInstance
CLSIDFromProgID
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoTaskMemAlloc
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoRevokeClassObject

olepro32

ord253

oleaut32

VariantChangeType
SysAllocString
VariantCopy
VariantClear
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
SysStringLen

wininet

InternetReadFile
InternetOpenUrlW
InternetOpenW
InternetCloseHandle

Exports

Exports

Popups_AboutDialog
Popups_CheckForUpgrade
Popups_CurrentSkypeOnlineUser
Popups_Finalize
Popups_GetOnCallToolsWindowHandle
Popups_GetRecordTitlePswMemo
Popups_Initialize
Popups_OnCallActive
Popups_OnCallAttendeeAdd
Popups_OnCallAttendeeLeave
Popups_OnCallBegin
Popups_OnCallEnd
Popups_OnSkypeChatMessage
Popups_Options
Popups_RecommendUs
Popups_RecordingErrorWarning
Popups_RegisterWindow
Popups_ScheduleCalls
Popups_ShowOnCallToolsWindow
Popups_TipUpgradeToHigherEdition
Popups_UnpaidWarning

Sections

.text
Size: 320KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PowerGramo.exe
.exe windows:4 windows x86 arch:x86

4895e7feeb6ede8abee1f5860b2ce782

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundW

popups

Popups_Options

kernel32

GetFileAttributesW
GetFileSize
GetFileTime
GetStartupInfoW
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
CreateThread
ExitThread
RaiseException
TerminateProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapSize
HeapReAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetFullPathNameW
GetStringTypeA
GetStringTypeW
SetStdHandle
CompareStringA
GetACP
GetOEMCP
SetEnvironmentVariableA
OutputDebugStringW
lstrcpyW
GlobalAlloc
lstrlenW
WideCharToMultiByte
WinExec
lstrcatW
CompareStringW
SetEvent
CloseHandle
WaitForSingleObject
ResetEvent
ResumeThread
CreateEventW
GetModuleFileNameW
GetCommandLineW
GetVersionExW
CreateProcessW
FreeLibrary
GetProcAddress
GlobalFree
LoadLibraryW
VirtualFree
VirtualAlloc
GetTempPathW
MultiByteToWideChar
GetVersion
InterlockedIncrement
InterlockedDecrement
SetThreadPriority
GetCurrentThreadId
SuspendThread
GetModuleHandleW
GlobalDeleteAtom
GetProfileStringA
GlobalAddAtomA
FindResourceA
GetVolumeInformationW
FindFirstFileW
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
DuplicateHandle
SetErrorMode
SizeofResource
GetTickCount
GlobalFlags
lstrcmpiW
GetProcessVersion
GetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
GetThreadLocale
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
lstrcmpW
lstrcmpA
lstrcmpiA
GetCurrentThread
lstrcpynW
GlobalLock
GlobalUnlock
MulDiv
SetLastError
GlobalFindAtomW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
FormatMessageW
LocalFree
GetModuleHandleA
LoadLibraryA
lstrlenA
FindResourceW
LoadResource
LockResource
GlobalAddAtomW

user32

RegisterClipboardFormatW
CharUpperW
SetRect
CopyAcceleratorTableW
MapDialogRect
SetWindowContextHelpId
GetNextDlgGroupItem
GrayStringW
DrawTextW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
IsWindowEnabled
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
UpdateWindow
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
SetActiveWindow
SetFocus
AdjustWindowRectEx
CopyRect
GetTopWindow
MessageBoxW
IsChild
GetCapture
wsprintfW
RegisterClassW
GetMenu
GetMenuItemCount
GetDlgItem
GetWindowTextW
GetDlgCtrlID
DestroyWindow
CreateWindowExW
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
GetMessageTime
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowPos
EndDialog
IntersectRect
SystemParametersInfoW
GetWindowPlacement
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
PeekMessageW
SetWindowsHookExW
LoadMenuW
GetSubMenu
SetMenuDefaultItem
EnableMenuItem
GetCursorPos
SetForegroundWindow
TrackPopupMenu
GetClassNameW
GetSysColorBrush
DestroyMenu
CharNextW
GetMenuItemID
ShowWindow
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
IsWindowVisible
FindWindowExW
GetWindowLongW
GetWindowThreadProcessId
GetFocus
LoadIconW
GetClassInfoW
DefWindowProcW
LoadCursorW
PostQuitMessage
BringWindowToTop
FlashWindow
IsIconic
GetSystemMetrics
FindWindowW
RegisterWindowMessageW
PostThreadMessageW
GetWindowRect
CreateDialogIndirectParamW
LoadStringW
GetParent
GetDC
ReleaseDC
InflateRect
GetSysColor
SetCursor
GetMessagePos
ScreenToClient
PtInRect
InvalidateRect
SetTimer
MessageBeep
SetWindowLongW
GetClientRect
SendMessageW
KillTimer
EnableWindow
PostMessageW
IsWindow
OffsetRect
GetDesktopWindow
WinHelpW

gdi32

SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetMapMode
PatBlt
DPtoLP
LPtoDP
GetTextColor
GetBkColor
BitBlt
GetTextExtentPointA
ExtTextOutA
DeleteDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
CreatePen
SelectObject
Rectangle
GetStockObject
GetObjectW
CreateCompatibleDC
CreateDIBitmap

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegDeleteValueW
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueW

shell32

Shell_NotifyIconW
ShellExecuteW

comctl32

ord17

oledlg

OleUIBusyW

ole32

CoFreeUnusedLibraries
OleUninitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleInitialize

olepro32

ord253

oleaut32

SysStringLen
VariantInit
SysAllocString
VariantClear
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
VariantCopy
VariantChangeType

Exports

Exports

?interfaceMap@CCustomControlSite@@1UAFX_INTERFACEMAP@@B

Sections

.text
Size: 192KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PowerGramo.exe.manifest
.xml
Uninstall.exe
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UserInfo.dll
.dll windows:4 windows x86 arch:x86

afa8e526425f3585465337467d0b5909

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
GetCurrentThread
lstrcpynA
GetCurrentProcess
GetModuleHandleA
GetProcAddress
GetLastError
GlobalFree
CloseHandle
GlobalAlloc

advapi32

OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
GetUserNameA
OpenThreadToken

Exports

Exports

GetAccountType
GetName
GetOriginalAccountType

Sections

.text
Size: 1024B - Virtual size: 741B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 673B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
UpGrade.exe
.exe windows:4 windows x86 arch:x86

0be79f4683f7224bb0f3dd575b2d0822

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
HeapSize
SetStdHandle
GetFileType
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetACP
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
RaiseException
HeapAlloc
ExitThread
GetProfileStringA
CreateThread
HeapFree
TerminateProcess
ExitProcess
GetStartupInfoA
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
GetOEMCP
GetCPInfo
SetErrorMode
GetFileTime
GetFileSize
GetFileAttributesA
SizeofResource
GetProcessVersion
GetCurrentDirectoryA
GlobalFlags
MulDiv
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
SetLastError
FreeLibrary
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
FormatMessageA
LocalFree
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
CreateEventA
SuspendThread
SetThreadPriority
SetEvent
CloseHandle
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
WaitForSingleObject
GetTempPathA
lstrlenA
ResumeThread
CopyFileA
GetTickCount
GetLastError
DeleteFileA
IsBadWritePtr
GetCommandLineA

user32

InvalidateRect
RegisterClipboardFormatA
PostThreadMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
ScreenToClient
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongA
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowRect
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
CharUpperA
wsprintfA
CopyRect
GetClientRect
GetDC
ReleaseDC
EndDialog
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
SendMessageA
LoadIconA
PostMessageA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
DestroyMenu
MessageBeep
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
SetCursor
PostQuitMessage
DefDlgProcA
IsWindowUnicode
EnableWindow
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
CharNextA
InflateRect
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
GetMenuStringA
DeleteMenu
InsertMenuA
PtInRect
GetClassNameA
ClientToScreen
LoadCursorA
GetDesktopWindow
LoadStringA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
GetWindowPlacement
GetSysColorBrush

gdi32

SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
OffsetViewportOrgEx
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
DPtoLP
GetTextColor
GetBkColor
LPtoDP
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
GetObjectA
SetBkColor
SetTextColor
GetClipBox
PatBlt
CreateDIBitmap
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateBitmap

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA

shell32

ShellExecuteA

comctl32

ord17

oledlg

ord8

ole32

CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
CoRevokeClassObject
CLSIDFromProgID
StgOpenStorageOnILockBytes
CoGetClassObject
OleFlushClipboard
OleIsCurrentClipboard
CLSIDFromString

olepro32

ord253

oleaut32

VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen

wsock32

WSAStartup
WSACleanup

wininet

InternetCanonicalizeUrlA
InternetCrackUrlA
InternetCloseHandle
InternetOpenA
InternetSetStatusCallback
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
InternetErrorDlg
HttpQueryInfoA
InternetReadFile

Sections

.text
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Upgrade.exe.manifest
.xml
VEDecoder.dll
.dll windows:4 windows x86 arch:x86

edba63fe09e03a3c7057b86881956948

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
GetProcessVersion
GetFileAttributesA
GetFileSize
GetFileTime
GetCPInfo
GetOEMCP
RtlUnwind
GetCommandLineA
HeapFree
HeapAlloc
HeapReAlloc
ExitProcess
TerminateProcess
RaiseException
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
HeapSize
LCMapStringA
GlobalGetAtomNameA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetStdHandle
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GlobalAddAtomA
GlobalFindAtomA
GlobalFlags
GetVersion
lstrcatA
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
InterlockedDecrement
InterlockedIncrement
LocalFree
WideCharToMultiByte
SetLastError
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
MultiByteToWideChar
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
lstrlenA
WritePrivateProfileStringA
GetModuleFileNameA
GlobalLock
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetSystemInfo
GetTickCount
CreateFileMappingA
MapViewOfFile
CloseHandle
UnmapViewOfFile
GlobalAlloc
LCMapStringW
GlobalFree

user32

AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconA
LoadCursorA
GetSysColorBrush
LoadStringA
DestroyMenu
CopyRect
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetSubMenu
GetMenuItemID
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetFocus
ShowWindow
SetWindowPos
SetWindowLongA
GetDlgItem
GrayStringA
DrawTextA
TabbedTextOutA
GetMenuItemCount
GetWindowTextA
SetWindowTextA
ReleaseDC
GetDC
PostQuitMessage
PostMessageA
SendMessageA
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameA
UnregisterClassA
UnhookWindowsHookEx
GetClientRect
GetSystemMetrics
CharUpperA
SetCursor
EnableWindow
MessageBoxA
GetWindowLongA
IsWindowEnabled
GetLastActivePopup
GetParent
SetWindowsHookExA
GetCursorPos
PeekMessageA
IsWindowVisible
ValidateRect
CallNextHookEx
GetKeyState
GetActiveWindow
DispatchMessageA
wsprintfA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage

gdi32

GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA
DeleteObject
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
CreateDIBSection

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA

comctl32

ord17

oleaut32

SysAllocStringLen

Exports

Exports

VEDec_CloseStream
VEDec_DecodeAudio
VEDec_DecodeAudioBegin
VEDec_DecodeAudioEnd
VEDec_ExtractIndexs
VEDec_GetCallRecordInfo
VEDec_GetDescription
VEDec_GetImageArray
VEDec_GetMP3SampleRate
VEDec_GetNumberOfVoidBytes
VEDec_GetNumberOfVoidByts8729506
VEDec_GetStreamFormat
VEDec_GetStreamLength
VEDec_GetTopic
VEDec_OpenStream

Sections

.text
Size: 208KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VideoGrab.dll
.dll windows:4 windows x86 arch:x86

6e2c483b74e00dd550251cb701c322d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RtlUnwind
GetCommandLineA
HeapAlloc
HeapFree
RaiseException
ExitProcess
TerminateProcess
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
GetStringTypeA
GetStringTypeW
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
GetProcessVersion
LoadLibraryA
FreeLibrary
GlobalAddAtomW
GlobalFindAtomW
GlobalFlags
lstrcmpiW
GetLastError
GetVersion
lstrcpynW
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalFree
InterlockedIncrement
LocalAlloc
MultiByteToWideChar
GlobalUnlock
GetModuleHandleA
SetLastError
WritePrivateProfileStringW
GetPrivateProfileIntW
CloseHandle
GetModuleFileNameW
GlobalLock
GlobalDeleteAtom
WideCharToMultiByte
GetCurrentThread
GetCurrentThreadId
GetSystemDirectoryW
lstrlenW
lstrcatW
GetModuleHandleW
LoadLibraryW
GetProcAddress
VirtualProtect
lstrcpyW
GetTickCount
GlobalFree
GlobalAlloc
EnterCriticalSection
LeaveCriticalSection
lstrcmpW
DeleteCriticalSection
InitializeCriticalSection
GetCurrentProcessId
InterlockedDecrement
GetEnvironmentStrings

user32

RegisterWindowMessageW
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
DefWindowProcW
RemovePropW
CallWindowProcW
GetPropW
SetPropW
CreateWindowExW
DestroyWindow
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassW
GetClassInfoW
WinHelpW
GetCapture
GetTopWindow
CopyRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconW
LoadCursorW
GetSysColorBrush
LoadStringW
DestroyMenu
IsIconic
GetWindowPlacement
SetFocus
ShowWindow
GetDlgItem
GetMenuItemCount
GetWindowTextW
SetWindowTextW
GetWindow
GetDlgCtrlID
PtInRect
UnregisterClassW
UnhookWindowsHookEx
GrayStringW
DrawTextW
TabbedTextOutW
ReleaseDC
GetDC
ClientToScreen
wsprintfW
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetLastActivePopup
IsWindowEnabled
MessageBoxW
EnableWindow
SetCursor
SendMessageW
PostMessageW
PostQuitMessage
GetClientRect
GetWindowLongW
SetWindowLongW
SetWindowPos
GetSystemMetrics
SetTimer
SystemParametersInfoW
KillTimer
GetWindowThreadProcessId
IsWindow
EnumWindows
EnumChildWindows
GetParent
GetWindowRect
IsWindowVisible
GetClassNameW
SetMenuItemBitmaps

gdi32

SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkColor
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
DeleteObject
GetDeviceCaps
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
DeleteDC
CreateBitmap
BitBlt
GetDIBits
CreateDCW
CreateCompatibleBitmap
CreateCompatibleDC
GetObjectW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW

comctl32

ord17

Exports

Exports

VideoGrab_CanUnload
VideoGrab_Finalize
VideoGrab_Initialize
VideoGrab_LoadOptions
VideoGrab_VideoRunStatus

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mpeg_enc.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

beCloseStream
beDeinitStream
beEncodeChunk
beEncodeChunkFloatS16NI
beFlushNoGap
beInitStream
beVersion
beWriteInfoTag
beWriteVBRHeader

Sections

UPX0
Size: - Virtual size: 688KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 169KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ogg_enc.dll
.dll windows:4 windows x86 arch:x86

cd64b74cc34bfd20d6d7494bf265c24a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCommandLineA
HeapAlloc
HeapFree
RtlUnwind
ExitProcess
TerminateProcess
RaiseException
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GetOEMCP
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetStdHandle
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
GetProcessVersion
LoadLibraryA
FreeLibrary
GlobalAddAtomW
GlobalFindAtomW
GetModuleHandleW
GetModuleHandleA
GetProcAddress
MultiByteToWideChar
InterlockedIncrement
GlobalFlags
lstrcmpiW
GetLastError
SetLastError
GetVersion
lstrcpynW
lstrcpyW
lstrcatW
SetErrorMode
InterlockedDecrement
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
WritePrivateProfileStringW
CloseHandle
GetModuleFileNameW
GlobalLock
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
lstrlenW
WideCharToMultiByte
GetCurrentThread
GetEnvironmentStrings
GetCurrentThreadId

user32

GetMessageTime
DefWindowProcW
RemovePropW
CallWindowProcW
GetPropW
SetPropW
CreateWindowExW
DestroyWindow
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassW
GetClassInfoW
WinHelpW
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconW
LoadCursorW
GetSysColorBrush
LoadStringW
DestroyMenu
RegisterWindowMessageW
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
GetMessagePos
GetDlgItem
GrayStringW
DrawTextW
TabbedTextOutW
ReleaseDC
GetDC
GetMenuItemCount
GetWindowTextW
SetWindowTextW
ClientToScreen
GetWindow
GetWindowRect
PtInRect
GetClassNameW
UnregisterClassW
UnhookWindowsHookEx
wsprintfW
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
PostQuitMessage
PostMessageW
SendMessageW
GetForegroundWindow
SetWindowLongW
SetForegroundWindow
SetWindowsHookExW
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongW
MessageBoxW
EnableWindow
SetCursor
GetDlgCtrlID

gdi32

SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetDeviceCaps
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetObjectW
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
DeleteObject

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW

comctl32

ord17

Exports

Exports

beCloseStream
beDeinitStream
beEncodeChunk
beEncodeChunkFloatS16NI
beFlushNoGap
beInitStream
beVersion
beWriteInfoTag
beWriteVBRHeader

Sections

.text
Size: 144KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 908KB - Virtual size: 933KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
wave_enc.dll
.dll windows:4 windows x86 arch:x86

cfbf40686fa35c21a8ac9682b762d997

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCommandLineA
HeapAlloc
HeapFree
RtlUnwind
ExitProcess
TerminateProcess
RaiseException
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GetOEMCP
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetCurrentProcess
GetProcessVersion
LoadLibraryA
FreeLibrary
GlobalAddAtomW
GlobalFindAtomW
GetModuleHandleW
GetModuleHandleA
GetProcAddress
MultiByteToWideChar
InterlockedIncrement
GlobalFlags
lstrcmpiW
SetLastError
GetVersion
lstrcpynW
lstrcpyW
lstrcatW
SetErrorMode
InterlockedDecrement
TlsGetValue
LocalReAlloc
SetFilePointer
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
WritePrivateProfileStringW
GetModuleFileNameW
GlobalLock
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
lstrlenW
WideCharToMultiByte
GetCurrentThread
GetCurrentThreadId
CloseHandle
WriteFile
GetLastError
FreeEnvironmentStringsW

user32

GetForegroundWindow
GetMessagePos
GetMessageTime
DefWindowProcW
RemovePropW
CallWindowProcW
GetPropW
SetPropW
CreateWindowExW
DestroyWindow
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassW
GetClassInfoW
WinHelpW
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconW
LoadCursorW
GetSysColorBrush
LoadStringW
DestroyMenu
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
SetForegroundWindow
GetDlgItem
GrayStringW
DrawTextW
TabbedTextOutW
ReleaseDC
GetDC
GetMenuItemCount
GetWindowTextW
SetWindowTextW
ClientToScreen
GetWindow
GetDlgCtrlID
PtInRect
GetClassNameW
UnregisterClassW
UnhookWindowsHookEx
wsprintfW
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetParent
PostQuitMessage
RegisterWindowMessageW
SetWindowLongW
PostMessageW
SendMessageW
GetLastActivePopup
IsWindowEnabled
GetWindowLongW
MessageBoxW
EnableWindow
SetCursor
GetWindowRect

gdi32

SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetDeviceCaps
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetObjectW
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
CreateBitmap

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW

comctl32

ord17

Exports

Exports

beCloseStream
beDeinitStream
beEncodeChunk
beEncodeChunkFloatS16NI
beFlushNoGap
beInitStream
beVersion
beWriteInfoTag
beWriteVBRHeader

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
wma_enc.dll
.dll windows:4 windows x86 arch:x86

97bcb408c67a15ec0b1236a5374f0ba3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wmvcore

WMCreateProfileManager
WMCreateWriter

kernel32

RtlUnwind
GetCommandLineA
HeapAlloc
HeapFree
ExitProcess
TerminateProcess
RaiseException
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
GetStringTypeA
GetStringTypeW
MultiByteToWideChar
GlobalFree
InterlockedIncrement
InterlockedDecrement
GlobalAlloc
SetFilePointer
GetLastError
FlushFileBuffers
GetCurrentProcess
GetProcessVersion
LoadLibraryA
FreeLibrary
GlobalAddAtomW
GlobalFindAtomW
GetModuleHandleW
GetModuleHandleA
GetProcAddress
GlobalFlags
lstrcmpiW
GetFileSize
SetLastError
GetVersion
lstrcpynW
lstrcpyW
lstrcatW
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
WritePrivateProfileStringW
GetModuleFileNameW
GlobalLock
lstrcmpW
GlobalDeleteAtom
lstrlenW
WideCharToMultiByte
GetCurrentThread
GetCurrentThreadId
CloseHandle
WriteFile
GetEnvironmentVariableA

user32

RegisterWindowMessageW
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
DefWindowProcW
RemovePropW
CallWindowProcW
GetPropW
SetPropW
CreateWindowExW
DestroyWindow
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassW
GetClassInfoW
WinHelpW
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconW
LoadCursorW
GetSysColorBrush
LoadStringW
DestroyMenu
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
SetWindowLongW
GetDlgItem
GrayStringW
DrawTextW
TabbedTextOutW
ReleaseDC
GetDC
GetMenuItemCount
GetWindowTextW
SetWindowTextW
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
UnregisterClassW
UnhookWindowsHookEx
wsprintfW
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongW
MessageBoxW
EnableWindow
SetCursor
SendMessageW
PostMessageW
PostQuitMessage
GetClassNameW
LoadBitmapW

gdi32

CreateBitmap
RestoreDC
SelectObject
GetStockObject
SetBkColor
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetDeviceCaps
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetObjectW
DeleteDC
DeleteObject
SaveDC

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey

comctl32

ord17

Exports

Exports

beCloseStream
beDeinitStream
beEncodeChunk
beEncodeChunkFloatS16NI
beFlushNoGap
beInitStream
beVersion
beWriteInfoTag
beWriteVBRHeader

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
zlib.dll
.dll windows:4 windows x86 arch:x86

ed3a677780097c2ca3551c0eac21858c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

sprintf
strerror
_errno
memchr
malloc
_initterm
_adjust_fdiv
_vsnprintf
free
_lseek
_open
_read
_close
_write

kernel32

DisableThreadLibraryCalls

Exports

Exports

adler32
adler32_combine
compress
compress2
compressBound
crc32
crc32_combine
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePrime
deflateReset
deflateSetDictionary
deflateSetHeader
deflateTune
get_crc_table
gzbuffer
gzclearerr
gzclose
gzclose_r
gzclose_w
gzdirect
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzoffset
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzungetc
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCopy
inflateEnd
inflateGetHeader
inflateInit2_
inflateInit_
inflateMark
inflatePrime
inflateReset
inflateReset2
inflateSetDictionary
inflateSync
inflateSyncPoint
inflateUndermine
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 151KB

.ndata Size: - Virtual size: 108KB

.rsrc Size: 19KB - Virtual size: 18KB

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 1024B - Virtual size: 784B

.data Size: 512B - Virtual size: 100B

.reloc Size: 1024B - Virtual size: 520B

afa8e526425f3585465337467d0b5909

Headers

File Characteristics

Imports

kernel32

advapi32

Exports

Exports

Sections

.text Size: 1024B - Virtual size: 741B

.rdata Size: 1024B - Virtual size: 673B

.data Size: 512B - Virtual size: 88B

.reloc Size: 512B - Virtual size: 190B

1e2884056e655f2b7bc5a904e352fc80

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 572B

f70b896a2ed79bae0df4c538ca11d7f3

Headers

File Characteristics

Imports

audiodecode

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 151KB

.ndata
Size: - Virtual size: 108KB

.rsrc
Size: 19KB - Virtual size: 18KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 1024B - Virtual size: 520B

.text
Size: 1024B - Virtual size: 741B

.rdata
Size: 1024B - Virtual size: 673B

.data
Size: 512B - Virtual size: 88B

.reloc
Size: 512B - Virtual size: 190B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 572B

.text
Size: 164KB - Virtual size: 162KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 20KB - Virtual size: 1.3MB

.rsrc
Size: 16KB - Virtual size: 14KB

.text
Size: 232KB - Virtual size: 228KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 92KB - Virtual size: 106KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 20KB - Virtual size: 16KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 20KB - Virtual size: 36KB

.rsrc
Size: 4KB - Virtual size: 968B

.reloc
Size: 16KB - Virtual size: 12KB

.text
Size: 68KB - Virtual size: 64KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 16KB - Virtual size: 23KB

.rsrc
Size: 4KB - Virtual size: 984B

.reloc
Size: 12KB - Virtual size: 10KB