2ed44117c1d7e918939e78c2aef37035_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ed44117c1d7e918939e78c2aef37035_JaffaCakes118
Size

15.7MB
MD5

2ed44117c1d7e918939e78c2aef37035
SHA1

1a21b70529aa5fc29907174c1cfbaec2dc8c06e2
SHA256

a05dfbdc7bf3bba241a6cb5641677d5781e664d355cd0572e6228efbaf13bff4
SHA512

d77c482fae1854fd4f06f188f1de5872b12832ff7af8e8bd667a3a137c3008eeb40ad3ac0e15a7eb78e7487fc999df73ff7cd259a8dabf697acbe7da049b7fb1
SSDEEP

393216:8OT3mhbEt52ybW9bTHYR1OFd0cG+L8vaEb2gpZ9hiSG6wHHvSZZJD:F3m1ED/b8PYyjgSEbRbhD/E63p

Score

3^/10

Malware Config

Signatures

Unsigned PE 30 IoCs

Checks for missing Authenticode signature.

resource
unpack001/$PLUGINSDIR/Processes.dll
unpack001/$PLUGINSDIR/SetupHlpr.exe
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/nsExec.dll
unpack001/AZMain.dll
unpack001/FDiskDownClient.dll
unpack001/FdiskCMC.dll
unpack001/FdiskCMCU.dll
unpack001/FdiskService.dll
unpack001/FdiskService.exe
unpack001/MurekaAVD.exe
unpack001/MurekaWma.dll
unpack001/UNACEV2.DLL
unpack001/UnEGG32.dll
unpack001/avcodec-54.dll
unpack001/avdevice-54.dll
unpack001/avfilter-3.dll
unpack001/avformat-54.dll
unpack001/avutil-52.dll
unpack001/cabinet.dll
unpack001/calMbc.dll
unpack001/ippcore-5.2.dll
unpack001/ippi-5.2.dll
unpack001/ippipx-5.2.dll
unpack001/libguide40.dll
unpack001/postproc-52.dll
unpack001/swresample-0.dll
unpack001/swscale-2.dll
unpack001/unace32.exe
unpack001/unrar4.dll

NSIS installer 2 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2

Files

2ed44117c1d7e918939e78c2aef37035_JaffaCakes118
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:6c:94:99:91:ea:4f:f2:7c:cb:cd:67:6f:c0:2e:b4
Certificate

Issuer

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Not Before

25/09/2012, 00:00

Not After

25/10/2013, 23:59

Subject

CN=주식회사 에프앤커머스,O=주식회사 에프앤커머스,L=Guro-gu,ST=SEOUL,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

9b:54:3a:0c:47:13:f2:67:77:db:bd:e0:16:23:53:73:8b:68:b4:95
Signer

Actual PE Digest

9b:54:3a:0c:47:13:f2:67:77:db:bd:e0:16:23:53:73:8b:68:b4:95

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/Processes.dll
.dll windows:4 windows x86 arch:x86

9a6f10bba62541d8aedb7da17df523de

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\MyProject\nProtectX\debug\npeNSISProcessUtil.pdb

Imports

kernel32

TerminateProcess
OpenProcess
OutputDebugStringA
GetLastError
GetCurrentProcess
GlobalFree
CloseHandle
CompareStringW
CompareStringA
CreateFileA
GetTimeZoneInformation
GetLocaleInfoW
LoadLibraryA
GetProcAddress
lstrcpyA
FreeLibrary
GetConsoleOutputCP
WriteConsoleA
InterlockedIncrement
InterlockedDecrement
Sleep
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
RaiseException
HeapValidate
IsBadReadPtr
GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleFileNameW
DebugBreak
WideCharToMultiByte
IsDebuggerPresent
MultiByteToWideChar
lstrlenA
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThread
FatalAppExitA
GetModuleFileNameA
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
ExitProcess
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetConsoleCtrlHandler
WriteFile
FlushFileBuffers
GetConsoleCP
GetConsoleMode
WriteConsoleW
OutputDebugStringW
LoadLibraryW
VirtualQuery
SetFilePointer
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetLocaleInfoA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
SetStdHandle
SetEnvironmentVariableA

user32

FindWindowA
UpdateWindow
GetDesktopWindow
wsprintfA

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken

shell32

ShellExecuteA

Exports

Exports

Execute
FindDevice
FindProcess
KillProcess

Sections

.textbss
Size: - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 388KB - Virtual size: 384KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/SetupHlpr.exe
.exe windows:4 windows x86 arch:x86

cf208266862ad5001b16b4e38c3db833

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
lstrcmpiA
DeleteFileA
CloseHandle
WaitForSingleObject
CreateProcessA
lstrcpynA
GetFileAttributesA
Sleep
LocalFree
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
CreateEventA
GetComputerNameA
SetEvent
TerminateThread
SystemTimeToFileTime
GetSystemTime
FindClose
FindFirstFileA
ReadFile
GetFileSize
CreateFileA
HeapAlloc
HeapFree
GetLastError
GetWindowsDirectoryA
ResetEvent
MoveFileA
SetFileAttributesA
SetFileTime
FlushFileBuffers
WriteFile
GlobalFree
GlobalUnlock
GlobalLock
SetThreadPriority
CreateThread
GlobalAlloc
MoveFileExA
LocalAlloc
RemoveDirectoryA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
SetStdHandle
LoadLibraryA
SetFilePointer
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
GetSystemDirectoryA
GetTempPathA
lstrcpyA
CreateDirectoryA
lstrlenA
GetFileInformationByHandle
GetLocalTime
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
RaiseException
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
GetProcAddress
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetStringTypeW
GetStringTypeA
HeapSize
GetCurrentProcess
TerminateProcess
GetOEMCP
GetACP
GetCPInfo
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
HeapReAlloc
RtlUnwind

user32

FindWindowA
wsprintfA
PostMessageA
SendMessageA
PeekMessageA
IsWindow
DispatchMessageA
TranslateMessage

advapi32

RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA

shell32

SHGetSpecialFolderPathA
ShellExecuteExA

ole32

CoCreateInstance
CoInitialize

oleaut32

SysAllocString
SysStringByteLen
SysFreeString
VariantInit
VariantClear
GetErrorInfo

wininet

InternetCrackUrlA
InternetCanonicalizeUrlA
FtpRemoveDirectoryA
InternetConnectA
InternetGetLastResponseInfoA
FtpFindFirstFileA
FtpDeleteFileA
FtpRenameFileA
FtpOpenFileA
InternetOpenUrlA
InternetCloseHandle
InternetSetStatusCallback
InternetSetOptionA
InternetOpenA
FtpGetCurrentDirectoryA
HttpSendRequestA
HttpAddRequestHeadersA
HttpOpenRequestA
HttpEndRequestA
InternetWriteFile
HttpSendRequestExA
InternetReadFile
FtpCreateDirectoryA
HttpQueryInfoA

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/nsExec.dll
.dll windows:4 windows x86 arch:x86

d83f71e61ee459ee63ca3e829966a9dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetExitCodeProcess
WaitForSingleObject
Sleep
TerminateProcess
lstrcpyA
lstrcpynA
GlobalReAlloc
GlobalUnlock
GlobalSize
ReadFile
PeekNamedPipe
GetTickCount
CreateProcessA
GetStartupInfoA
CreatePipe
GetVersionExA
GetModuleHandleA
DeleteFileA
lstrcmpiA
lstrlenA
lstrcatA
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
CreateFileA
CopyFileA
GetTempFileNameA
GlobalFree
GlobalAlloc
GetModuleFileNameA
ExitProcess
GetCommandLineA
GetProcAddress
GlobalLock
GetCurrentProcess

user32

SendMessageA
OemToCharBuffA
CharNextA
wsprintfA
CharPrevA
FindWindowExA

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

Exports

Exports

Exec
ExecToLog
ExecToStack

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 410B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AZMain.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ALZDllInit
ALZDllInitEx
ALZDllInitEx2
Add
AddEx
Cancel
Extract
ExtractEx
ExtractStream
ExtractStreamEx
Flush
GetArchiveComment
GetArchiveList
GetArchiveString
GetArchiveStringEx
GetArchiveStringEx2
GetArchiveStringStream
GetArchiveStringStreamEx
GetFileType
GetFileTypeName
GetFileTypeStream
SetArchiveComment

Sections

CODE
Size: 707KB - Virtual size: 707KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 774KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 581B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Ark32.dll
.dll windows:5 windows x86 arch:x86

4b0d72eb2a25e4e8bb9d9cac98bc6119

Code Sign

36:12:22:96:c5:e3:38:a5:20:a1:d2:5f:4c:d7:09:54
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

01/08/1996, 00:00

Not After

01/01/2021, 23:59

Subject

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

01/05/2012, 00:00

Not After

31/12/2012, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G3,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:3b:ba:fc:e9:94:ec:7f:e8:d2:ca:56:8f:2a:b6:4b
Certificate

Issuer

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Not Before

23/11/2011, 00:00

Not After

21/02/2014, 23:59

Subject

CN=Bandisoft,OU=Dev Team,O=Bandisoft,L=Yeongdeungpo-gu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

33:65:50:08:79:ad:73:e2:30:b9:e0:1d:0d:7f:ac:91
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

17/11/2006, 00:00

Not After

30/12/2020, 23:59

Subject

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\devel\Ark4\bin\Ark32.pdb

Imports

kernel32

lstrcpyA
DeleteFileW
GetFileAttributesExW
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
GlobalFree
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CreateEventW
CloseHandle
SetEvent
WaitForSingleObject
CreateFileW
SetFileAttributesW
Sleep
WriteFile
CreateFileA
ReadFile
SetFilePointer
GetFileSize
GetFileTime
MoveFileW
lstrcpyW
lstrcatW
CreateDirectoryW
WideCharToMultiByte
GetFileSizeEx
GetCurrentThread
SetFileTime
FileTimeToSystemTime
GetTimeZoneInformation
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
FileTimeToDosDateTime
LocalFileTimeToFileTime
lstrcpynA
GetModuleFileNameW
GetTickCount
ResetEvent
SetThreadPriority
InterlockedExchange
GetStdHandle
CreateSemaphoreW
ReleaseSemaphore
VirtualAlloc
VirtualFree
GetVersion
GetCurrentProcess
CreatePipe
DuplicateHandle
GetExitCodeProcess
TerminateThread
TerminateProcess
GlobalAlloc
CreateProcessW
GetFileAttributesW
GetSystemInfo
GetProcAddress
GetModuleHandleW
GetCPInfo
IsDBCSLeadByte
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
RaiseException
GetCurrentThreadId
GetCommandLineA
GetSystemTimeAsFileTime
ExitThread
CreateThread
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapCreate
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
ExitProcess
SetHandleCount
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
CompareStringW
RtlUnwind
InitializeCriticalSectionAndSpinCount
LoadLibraryA
LCMapStringA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringA
SetEnvironmentVariableA
lstrlenW
MultiByteToWideChar
lstrlenA
GetLastError
InterlockedDecrement
InterlockedIncrement
WaitForMultipleObjects
GetVersionExW
GetModuleHandleA

user32

FindWindowW
SendMessageW
CharUpperW
CharToOemBuffA
wsprintfW

advapi32

GetFileSecurityW
RevertToSelf
OpenThreadToken
AccessCheck
AreAllAccessesGranted
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
ImpersonateSelf

oleaut32

VariantClear
SysAllocStringByteLen
SysStringByteLen
SysFreeString
SysAllocString

Exports

Exports

CreateArk
CreateArkCompressor

Sections

.text
Size: 614KB - Virtual size: 613KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AzCDImage.dll
.dll windows:4 windows x86 arch:x86

2ffa83954e77e711d0b8f8a84222eb71

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0c:0b:a5:c2:0e:64:cc:aa:47:e7:0b:ae:99:1d:33:fd
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

19/11/2008, 00:00

Not After

19/11/2009, 23:59

Subject

CN=ESTsoft Corp.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=ESTsoft Corp.,L=Gwanak-gu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

50:94:c4:82:77:7b:9d:cc:1f:8d:f2:91:fd:f7:05:6a:48:55:29:e6
Signer

Actual PE Digest

50:94:c4:82:77:7b:9d:cc:1f:8d:f2:91:fd:f7:05:6a:48:55:29:e6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\SourceBank\Product\ALZip\ALZip7.x\CDImage\PluginCDImage\Release\AzCDImage.pdb

Imports

kernel32

GetCurrentDirectoryA
GlobalFlags
GetVersionExA
lstrcmpW
GlobalFindAtomA
FreeResource
GetCPInfo
GetOEMCP
HeapFree
RtlUnwind
HeapAlloc
HeapReAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCommandLineA
GetProcessHeap
RaiseException
ExitProcess
ExitThread
CreateThread
HeapSize
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
GetPrivateProfileStringA
GetStringTypeA
GetStringTypeW
GetStdHandle
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetTimeZoneInformation
SetConsoleCtrlHandler
LCMapStringA
LCMapStringW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetAtomNameA
GlobalGetAtomNameA
InterlockedIncrement
SetErrorMode
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedDecrement
GetModuleFileNameW
GetCurrentProcessId
GlobalAddAtomA
CreateEventA
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
FreeLibrary
GetModuleHandleA
GetFileTime
GetFileAttributesA
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetProcAddress
CreateFileA
GetModuleFileNameA
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
CloseHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
LoadLibraryA
GetThreadLocale
DeleteFileA
MoveFileA
SetLastError
GlobalFree
CopyFileA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
MulDiv
GetStringTypeExW
GetStringTypeExA
GetEnvironmentVariableW
GetEnvironmentVariableA
lstrlenA
lstrcmpiW
lstrcmpiA
CompareStringW
CompareStringA
lstrlenW
GetVersion
InterlockedExchange
MultiByteToWideChar
CreateDirectoryA
GetLastError
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
IsValidCodePage
SizeofResource

user32

ScrollWindowEx
ShowWindow
MoveWindow
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
IsWindow
SetFocus
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenuEx
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
UpdateWindow
GetClientRect
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
DestroyIcon
DeferWindowPos
CopyRect
GetScrollInfo
SetScrollInfo
SetWindowPlacement
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetDesktopWindow
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
SetWindowTextA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
DeleteMenu
GetWindowTextLengthA
GetWindowTextA
CharLowerA
CharLowerW
CharUpperA
CharUpperW
LoadCursorA
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
UnregisterClassA
UnhookWindowsHookEx
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
InflateRect
GetDialogBaseUnits
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
DestroyMenu
EqualRect
GetMenuItemInfoA
RemoveMenu
GetSubMenu
GetMenuItemCount
InsertMenuA
GetMenuItemID
AppendMenuA
GetMenuStringA
GetMenuState
GetSystemMetrics
PostQuitMessage
PostMessageA
CheckMenuItem
EnableMenuItem
ModifyMenuA
SendMessageA
GetParent
GetFocus
LoadBitmapA
ShowOwnedPopups
SetCursor
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
OffsetRect

gdi32

ArcTo
PolyDraw
PolylineTo
PolyBezierTo
ExtSelectClipRgn
DeleteDC
CreateDIBPatternBrushPt
CreatePatternBrush
StartDocA
CreateCompatibleDC
GetStockObject
SelectPalette
PlayMetaFileRecord
GetObjectType
EnumMetaFile
GetCurrentPositionEx
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
GetDCOrgEx
CreateFontIndirectA
GetTextExtentPoint32A
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
PatBlt
DPtoLP
GetTextMetricsA
SetWindowExtEx
ScaleWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PlayMetaFile
GetDeviceCaps
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
GetObjectA
SelectClipPath
CreateRectRgn
GetClipRgn
SelectClipRgn
DeleteObject
SetColorAdjustment
SetArcDirection
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
MoveToEx
LineTo
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
ModifyWorldTransform
SetWorldTransform
SetGraphicsMode
SetTextColor
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateBitmap
CreateDCA
CopyMetaFileA
PtVisible

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA
RegSetValueA
RegCloseKey
RegCreateKeyA

shell32

ExtractIconA
SHGetFileInfoA

shlwapi

PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathRemoveExtensionA
PathFindFileNameA

ole32

OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CreateBindCtx
CoTreatAsClass
StringFromCLSID
CoDisconnectObject
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CoTaskMemFree
CoCreateInstance
StringFromGUID2
CLSIDFromString
ReadClassStg

oleaut32

SysStringLen
SysFreeString
SysAllocStringByteLen
SysStringByteLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantClear
SafeArrayRedim
VariantChangeType
VariantCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCopy
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SysAllocStringLen
VariantTimeToSystemTime
SystemTimeToVariantTime
SysReAllocStringLen
VarDateFromStr
VarBstrFromCy
VarBstrFromDec
VarDecFromStr
VarCyFromStr
VarBstrFromDate
VariantInit

Exports

Exports

CDIMG_CloseFile
CDIMG_DeleteNode
CDIMG_ExpandTree
CDIMG_ExtractISO
CDIMG_GetFirstChild
CDIMG_GetFullPath
CDIMG_GetItemInfo
CDIMG_GetNextSibling
CDIMG_GetRootItem
CDIMG_OpenFile

Sections

.text
Size: 336KB - Virtual size: 334KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FCvScan.dll
.dll windows:4 windows x86 arch:x86

e7b9404634a553390e89cd0b3b73aa8d

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

d7:a8:38:f4:1d:b8:be:e0:6f:50:a5:f1:ef:c7:c0
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

28/11/2012, 00:00

Not After

28/12/2013, 23:59

Subject

CN=INCA Internet Co.\,Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=INCA Internet Co.\,Ltd.,L=Seoul,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

99:a4:3b:0d:78:7c:96:ee:29:9d:6c:3d:b6:16:a5:70:4f:74:b5:36
Signer

Actual PE Digest

99:a4:3b:0d:78:7c:96:ee:29:9d:6c:3d:b6:16:a5:70:4f:74:b5:36

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Project\Fcvscan\trunk\output\release\FCvScan.pdb

Imports

kernel32

GetCurrentProcess
GetFullPathNameA
CreateFileA
GetCPInfo
GetOEMCP
HeapAlloc
HeapReAlloc
VirtualAlloc
HeapFree
GetSystemTimeAsFileTime
GetProcessHeap
RtlUnwind
RaiseException
ExitProcess
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
HeapDestroy
VirtualFree
GetStdHandle
GetACP
IsValidCodePage
GetTimeZoneInformation
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetDriveTypeA
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GlobalFindAtomA
lstrcmpW
GetVersionExA
GetThreadLocale
GlobalGetAtomNameA
GetCurrentProcessId
GlobalAddAtomA
GlobalFlags
GetCurrentDirectoryA
WritePrivateProfileStringA
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
InterlockedDecrement
GetModuleFileNameW
SetLastError
SetErrorMode
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
WaitForSingleObject
GetProcAddress
LoadLibraryA
CreateEventA
RemoveDirectoryA
DeleteFileA
GetPrivateProfileStringA
CloseHandle
SetEvent
GetModuleFileNameA
SystemTimeToFileTime
GetLocalTime
FreeLibrary
lstrlenA
MultiByteToWideChar
InterlockedExchange
CompareStringW
CompareStringA
GetLastError
GetVersion
GetModuleHandleA
GetCommandLineA
FindResourceA
LoadResource
LockResource
SizeofResource
HeapCreate
WideCharToMultiByte

user32

ShowWindow
RegisterWindowMessageA
LoadIconA
WinHelpA
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
IsWindow
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
CopyRect
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowThreadProcessId
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
GetWindow
GetDlgCtrlID
GetWindowLongA
GetClassNameA
PtInRect
GetWindowTextA
SetWindowTextA
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
SetCursor
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetFocus
GetParent
ModifyMenuA
EnableMenuItem
CheckMenuItem
LoadCursorA
GetSystemMetrics
GetDC
DestroyMenu
ReleaseDC
GetSysColor
GetSysColorBrush
UnregisterClassA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
SendMessageA
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
UnhookWindowsHookEx
PostMessageA
PostQuitMessage
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetWindowRect

gdi32

ScaleWindowExtEx
DeleteDC
GetStockObject
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
GetDeviceCaps
DeleteObject
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
SaveDC
CreateBitmap
PtVisible

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA
RegCloseKey

shlwapi

PathFindExtensionA
PathFindFileNameA

oleaut32

VariantInit
VariantClear
VariantChangeType

Exports

Exports

FC_Initialize
FC_UnInitialize
FC_Virus_Cure
FC_Virus_Scan

Sections

.text
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FCvServer.ini
FDiskDownClient.dll
.dll windows:5 windows x86 arch:x86

430512e229549d0600d47d799c96777c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

K:\Project\MaxGrid\Grid_Hosting\Hosting\FDisk\DND\GDnClient\Release\FDiskDownClient.pdb

Imports

kernel32

lstrlenW
GetLastError
EnterCriticalSection
lstrcatW
DeleteCriticalSection
GetCurrentThreadId
CloseHandle
CreateDirectoryW
MultiByteToWideChar
GetProcAddress
GetQueuedCompletionStatus
TerminateThread
Sleep
GetExitCodeThread
PostQueuedCompletionStatus
WaitForMultipleObjects
CreateIoCompletionPort
HeapAlloc
HeapFree
InterlockedIncrement
GetTickCount
WaitForSingleObject
CreateFileW
FindClose
SetEvent
ResetEvent
CreateEventW
FindResourceExW
FindResourceW
LoadResource
CallNamedPipeW
WaitNamedPipeW
SizeofResource
lstrcmpW
SetLastError
LockResource
SetNamedPipeHandleState
lstrcpyW
SetEndOfFile
SetFilePointerEx
GetFileAttributesW
GetFileSizeEx
DeleteFileW
SetFileAttributesW
InterlockedDecrement
GetModuleFileNameW
lstrcpynW
LeaveCriticalSection
WideCharToMultiByte
InitializeCriticalSection
WriteFile
GetProcessHeap
FindFirstFileW
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringA
GetModuleHandleA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
RtlUnwind
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
HeapReAlloc
VirtualAlloc
VirtualFree
HeapDestroy
HeapCreate
LCMapStringW
GetModuleFileNameA
GetStdHandle
ExitThread
CreateThread
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapSize
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RaiseException

user32

wsprintfW

advapi32

RegCloseKey
RegOpenCurrentUser
RegCreateKeyExW
RegSetValueExW

shell32

SHGetSpecialFolderPathW

ws2_32

WSARecv
WSASend
ioctlsocket
WSAIoctl
inet_ntoa
inet_addr
select
htons
bind
recv
__WSAFDIsSet
closesocket
gethostbyname
send
listen
WSAGetLastError
WSAStartup
WSACleanup
WSASocketW
socket
shutdown
connect
setsockopt

wininet

InternetOpenW
InternetCloseHandle
InternetReadFile
InternetOpenUrlW

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Exports

Exports

CreateDownloadClient
DestroyDownloadClient

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Fdisk.ico
FdiskCMC.dll
.dll windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

L_MurekaAddBillingLog
L_MurekaGetHash
L_MurekaIsZipfile
L_MurekaMemoryRelease
L_MurekaPayLog
L_MurekaScanVirus
L_MurekaSearchDownload
L_MurekaSearchUpload
L_MurekaSetZipOption
L_MurekaZipCancel

Sections

Size: 256KB - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 1008KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ykqfagib
Size: 736KB - Virtual size: 736KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rxaypdsz
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
FdiskCMCU.dll
.dll windows:5 windows x86 arch:x86

dff646b3c707a09a1a80b82581345395

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

z:\TaggingMovie\TaggingMovie_Miso\TaggingMovie_MisoU\WinRelease\FdiskCMCU.pdb

Imports

kernel32

FlushFileBuffers
GetCurrentProcess
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
GetCommandLineA
RtlUnwind
Sleep
ExitProcess
HeapReAlloc
RaiseException
HeapSize
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualFree
VirtualAlloc
HeapCreate
SetFilePointer
GetStdHandle
GetModuleFileNameA
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
WriteFile
GlobalFindAtomW
LoadLibraryA
GetVersionExA
lstrlenA
InterlockedIncrement
GlobalFlags
GetModuleHandleA
WritePrivateProfileStringW
SetErrorMode
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GetCurrentProcessId
GlobalAddAtomW
GetLastError
GlobalFree
GlobalUnlock
FormatMessageW
LocalFree
lstrlenW
InterlockedDecrement
SetLastError
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
LoadLibraryExW
InterlockedExchange
GlobalLock
lstrcmpW
GlobalAlloc
GetModuleHandleW
CloseHandle
TerminateProcess
MultiByteToWideChar
WideCharToMultiByte
GetModuleFileNameW
FreeLibrary
GetProcAddress
LoadLibraryW
FindResourceW
LoadResource
LockResource
HeapDestroy
SizeofResource

user32

DestroyMenu
ShowWindow
RegisterWindowMessageW
LoadIconW
WinHelpW
GetCapture
GetClassLongW
SetPropW
GetPropW
RemovePropW
IsWindow
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetMenu
GetClientRect
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
DefWindowProcW
CallWindowProcW
CopyRect
GetMenu
SetWindowLongW
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
LoadCursorW
GetSystemMetrics
GetSysColorBrush
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameW
PtInRect
GetWindowTextW
SetWindowTextW
GetSysColor
PeekMessageW
TranslateMessage
DispatchMessageW
PostQuitMessage
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
PostMessageW
UnhookWindowsHookEx
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
CheckMenuItem
EnableMenuItem
ModifyMenuW
SendMessageW
GetParent
GetFocus
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ValidateRect
UnregisterClassW
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxW
SetCursor
SetWindowsHookExW
CallNextHookEx
GetMessageW
GetActiveWindow
IsWindowVisible
GetKeyState
GetCursorPos
SetForegroundWindow

gdi32

DeleteDC
GetStockObject
TextOutW
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
GetDeviceCaps
RectVisible
PtVisible
DeleteObject
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
SaveDC
CreateBitmap
ExtTextOutW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegSetValueExW
RegCreateKeyExW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shlwapi

PathFindExtensionW
PathFindFileNameW

oleaut32

VariantClear
VariantChangeType
VariantInit

Exports

Exports

L_MurekaAddBillingLog_U
L_MurekaGetHash_U
L_MurekaIsZipfile_U
L_MurekaMemoryRelease_U
L_MurekaPayLog_U
L_MurekaScanVirus_U
L_MurekaSearchDownload_U
L_MurekaSearchUpload_U
L_MurekaSetZipOption_U
L_MurekaZipCancel_U

Sections

.text
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FdiskDown.exe
.exe windows:5 windows x86 arch:x86

1242d1a77555adb1f77887834154a0e8

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:6c:94:99:91:ea:4f:f2:7c:cb:cd:67:6f:c0:2e:b4
Certificate

Issuer

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Not Before

25/09/2012, 00:00

Not After

25/10/2013, 23:59

Subject

CN=주식회사 에프앤커머스,O=주식회사 에프앤커머스,L=Guro-gu,ST=SEOUL,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

ab:3d:dd:65:31:3b:b7:54:e0:fb:da:09:51:98:2f:6c:09:2c:55:d4
Signer

Actual PE Digest

ab:3d:dd:65:31:3b:b7:54:e0:fb:da:09:51:98:2f:6c:09:2c:55:d4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Work\trunk\Fdisk\Output\Release\FdiskDown.pdb

Imports

kernel32

GetFileAttributesA
GetFileSizeEx
GetFileTime
GetCPInfo
GetOEMCP
GetModuleHandleW
SetErrorMode
RtlUnwind
ExitThread
CreateThread
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
GetStartupInfoA
ExitProcess
VirtualProtect
VirtualAlloc
VirtualQuery
HeapReAlloc
HeapSize
SetStdHandle
GetFileType
IsValidCodePage
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
VirtualFree
GetStdHandle
GetTimeZoneInformation
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GetDriveTypeA
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
GetProcessHeap
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
GlobalFlags
GetCurrentDirectoryA
WritePrivateProfileStringA
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
GetFullPathNameA
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
LocalFree
GlobalGetAtomNameA
GlobalFindAtomA
FreeResource
GlobalAddAtomA
GlobalDeleteAtom
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
LoadLibraryExA
CompareStringA
InterlockedExchange
GetVersionExA
GetSystemDirectoryA
GetCurrentProcess
GetCommandLineA
GetPrivateProfileStringA
GetNumberFormatA
GetDiskFreeSpaceExA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
HeapAlloc
HeapFree
HeapDestroy
HeapCreate
InterlockedDecrement
FindFirstFileA
FindClose
GetVolumeInformationA
lstrcmpA
WaitForSingleObject
GetExitCodeThread
TerminateThread
GetSystemInfo
EnterCriticalSection
LeaveCriticalSection
SetEvent
DeleteCriticalSection
CreateEventA
InitializeCriticalSection
lstrcmpiW
lstrcmpW
lstrcatW
lstrcpyW
CopyFileW
DeleteFileW
RemoveDirectoryW
CreateDirectoryW
LoadLibraryW
GetModuleFileNameW
lstrcpynW
lstrlenW
GetCurrentThread
SetThreadPriority
CreateDirectoryA
CreateFileA
CloseHandle
GetModuleHandleA
SetLastError
lstrcpynA
MulDiv
lstrcpyA
MultiByteToWideChar
FormatMessageA
OutputDebugStringW
OutputDebugStringA
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
lstrlenA
GetProcAddress
GetCurrentProcessId
GetTickCount
FreeLibrary
GetModuleFileNameA
LoadLibraryA
CreateMutexA
GetLastError
GetACP
Sleep

user32

CharNextA
GetSysColorBrush
LoadCursorA
DrawIcon
IsRectEmpty
CharUpperA
EndPaint
BeginPaint
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
MoveWindow
SetWindowTextA
IsDialogMessageA
ReleaseDC
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetSubMenu
GetMenuItemID
GetMenuItemCount
CopyAcceleratorTableA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetDlgCtrlID
DefWindowProcA
GetMenu
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
GetWindowThreadProcessId
GetLastActivePopup
IsWindowEnabled
ShowOwnedPopups
SetWindowsHookExA
CallNextHookEx
GetMessageA
MessageBoxA
GetClassInfoA
MessageBoxW
LoadIconA
TranslateMessage
DispatchMessageA
IsWindowVisible
GetKeyState
PeekMessageA
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
PostQuitMessage
ExitWindowsEx
LockWindowUpdate
ReplyMessage
MessageBeep
FindWindowA
SetWindowRgn
GetActiveWindow
GetDC
SetRect
InvalidateRgn
GetNextDlgGroupItem
PostThreadMessageA
RegisterClipboardFormatA
UnpackDDElParam
ReuseDDElParam
GetParent
GetDesktopWindow
LoadMenuA
LoadAcceleratorsA
InsertMenuItemA
SetRectEmpty
BringWindowToTop
TranslateAcceleratorA
UnregisterClassA
CreateWindowExA
GetMenuItemInfoA
DrawIconEx
GetWindowLongA
CopyRect
PtInRect
InflateRect
LoadBitmapA
FillRect
DrawFocusRect
SendMessageA
GetClientRect
GetFocus
EnableWindow
wsprintfW
PostMessageA
InvalidateRect
RedrawWindow
SetTimer
KillTimer
SetForegroundWindow
ShowWindow
DestroyMenu
TrackPopupMenu
GetCursorPos
SetMenuDefaultItem
AppendMenuA
CreatePopupMenu
GetSystemMetrics
GetSysColor
ReleaseCapture
GetIconInfo
LoadImageA
DestroyIcon
OffsetRect
ClientToScreen
GetCapture
SetCapture
WindowFromPoint
SetCursor
GetWindowRect
IsWindow
SetWindowLongA
CallWindowProcA
UpdateWindow
GetWindowDC

gdi32

ExtSelectClipRgn
CreatePatternBrush
ScaleWindowExtEx
CreateEllipticRgn
LPtoDP
Ellipse
GetBkColor
GetTextColor
GetRgnBox
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
CreatePen
SetBkMode
RestoreDC
SaveDC
SetTextColor
GetClipBox
CreateRectRgn
CreateFontA
CreateDIBSection
ExtCreateRegion
CombineRgn
SelectObject
DPtoLP
CreateBitmap
CreateCompatibleBitmap
GetMapMode
SetMapMode
BitBlt
SetBkColor
DeleteDC
CreateFontIndirectA
DeleteObject
GetStockObject
GetTextExtentPoint32A
StretchBlt
Rectangle
GetDeviceCaps
CreateCompatibleDC
SetRectRgn
CreateRectRgnIndirect
GetObjectA
CreateSolidBrush

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

AdjustTokenPrivileges
RegQueryValueA
RegOpenKeyA
OpenProcessToken
LookupPrivilegeValueA
RegConnectRegistryA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegQueryInfoKeyA
RegCloseKey
RegEnumValueA
RegEnumKeyA
RegOpenKeyExA

shell32

DragQueryFileA
ShellExecuteA
SHGetDesktopFolder
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
SHGetSpecialFolderPathA
DragFinish
Shell_NotifyIconA

comctl32

ord17

shlwapi

StrFormatByteSize64A
PathGetArgsA
PathFindFileNameA
PathFindExtensionA
PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
UrlUnescapeA

oledlg

ord8

ole32

CoRegisterMessageFilter
CoTaskMemFree
CLSIDFromProgID
CLSIDFromString
CoTaskMemAlloc
CoCreateInstance
CoUninitialize
CoInitializeEx
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard

oleaut32

SysAllocStringByteLen
SysStringByteLen
VariantClear
SysAllocStringLen
VariantChangeType
VariantInit
SysStringLen
SysAllocString
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysFreeString

wsock32

WSASetLastError
recv
socket
closesocket
ioctlsocket
connect
WSACleanup
WSAStartup
gethostbyname
setsockopt
inet_addr
WSAGetLastError
__WSAFDIsSet
select
htons

wininet

InternetQueryDataAvailable
InternetOpenUrlA
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
HttpQueryInfoA
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
DeleteUrlCacheEntryW
InternetOpenW
InternetOpenUrlW
InternetReadFile
InternetCloseHandle

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

ws2_32

WSASend
WSAWaitForMultipleEvents
WSAConnect
WSASocketA
WSARecv

Sections

.text
Size: 477KB - Virtual size: 477KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
FdiskService.dll
.dll windows:5 windows x86 arch:x86

c69fa01e82597852cf248f55ecdaec05

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

k:\Project\MaxGrid\Grid_Hosting\Hosting\FDisk\DND\GUploadSvc\Release\FdiskService.pdb

Imports

kernel32

lstrcpynW
lstrcmpW
InterlockedExchange
InterlockedExchangeAdd
WaitForMultipleObjects
CreateWaitableTimerW
CloseHandle
WaitForSingleObject
SetEvent
ConnectNamedPipe
CallNamedPipeW
CreateNamedPipeW
WriteFile
ReadFile
DisconnectNamedPipe
FlushFileBuffers
GetLastError
CancelWaitableTimer
CreateEventW
RemoveDirectoryW
lstrcatW
DeleteFileW
lstrcpyW
GetComputerNameW
GetModuleFileNameW
Sleep
GetVolumeInformationW
SetFilePointer
GetProcessHeap
WideCharToMultiByte
CreateFileW
GetCurrentThreadId
FreeLibrary
CreateDirectoryW
LoadLibraryW
MultiByteToWideChar
GetProcAddress
GetQueuedCompletionStatus
TerminateThread
GetExitCodeThread
PostQueuedCompletionStatus
CreateIoCompletionPort
ResetEvent
CreateFileA
WriteConsoleW
GetTickCount
InterlockedDecrement
SetWaitableTimer
GlobalMemoryStatusEx
lstrlenW
InterlockedIncrement
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
HeapFree
GetLocalTime
HeapAlloc
GetConsoleOutputCP
WriteConsoleA
GetConsoleMode
GetConsoleCP
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
LoadLibraryA
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapSize
GetModuleFileNameA
GetStdHandle
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitThread
CreateThread
GetSystemTimeAsFileTime
GetCommandLineA
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
RaiseException
VirtualFree
VirtualAlloc
HeapReAlloc
HeapCreate
HeapDestroy

user32

wsprintfW

advapi32

RegDeleteValueW
RegCreateKeyExW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCloseKey
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
RegSetValueExW

shell32

ShellExecuteExW
SHGetSpecialFolderPathW

ole32

CoCreateGuid

wininet

InternetOpenW
InternetOpenUrlW
InternetReadFile
InternetCloseHandle
DeleteUrlCacheEntryW

ws2_32

getpeername
WSAIoctl
inet_addr
WSASocketW
getsockname
WSAGetLastError
htons
setsockopt
WSAStartup
WSACleanup
listen
gethostbyname
closesocket
WSASend
shutdown
WSARecv
bind

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

Exports

Exports

CreateServiceClient
DestroyServiceClient

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FdiskService.exe
.exe windows:5 windows x86 arch:x86

50c945a0eb10533a77fb5059b8e11792

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
CreateEventW
SetFilePointerEx
GetFileSizeEx
lstrcatW
GetFileSize
SetFilePointer
HeapAlloc
HeapFree
GetProcessHeap
MoveFileW
GetCurrentThreadId
WideCharToMultiByte
OpenProcess
GetVersionExW
Process32FirstW
TerminateThread
CreateToolhelp32Snapshot
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetEvent
MultiByteToWideChar
DeleteFileW
CloseHandle
GetProcAddress
CreateFileW
GetModuleFileNameW
Sleep
LoadLibraryW
GetLogicalDriveStringsW
FreeLibrary
GetDriveTypeW
lstrcpyW
FindNextFileW
FindClose
lstrlenW
lstrcmpW
GetTickCount
FindFirstFileW
ReadFile
WriteFile
DeleteCriticalSection
GetFileAttributesExW
EnterCriticalSection
lstrcpynW
LeaveCriticalSection
InitializeCriticalSection
GetSystemTimeAsFileTime
FlushFileBuffers
SetStdHandle
CreateFileA
GetConsoleMode
GetConsoleCP
WaitForSingleObject
LocalFree
lstrcmpiW
Process32NextW
GetCommandLineW
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringA
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
InitializeCriticalSectionAndSpinCount
LoadLibraryA
GetStartupInfoA
GetFileType
SetHandleCount
GetModuleFileNameA
GetStdHandle
VirtualAlloc
VirtualFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetLastError
ExitThread
CreateThread
HeapReAlloc
GetModuleHandleW
ExitProcess
GetStartupInfoW
RaiseException
RtlUnwind
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapSize
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
HeapCreate

user32

wsprintfW
PostThreadMessageW
DispatchMessageW
GetMessageW

advapi32

RegSetValueExW
ImpersonateLoggedOnUser
RevertToSelf
ControlService
RegisterServiceCtrlHandlerW
SetServiceStatus
QueryServiceStatus
StartServiceW
OpenServiceW
StartServiceCtrlDispatcherW
OpenSCManagerW
DeleteService
CloseServiceHandle
CreateServiceW
DuplicateTokenEx
RegCloseKey
RegOpenCurrentUser
RegDeleteValueW
RegQueryValueExW
RegCreateKeyExW
ConvertSidToStringSidW
GetTokenInformation
OpenProcessToken

shell32

SHGetFolderPathW
CommandLineToArgvW

ole32

CoInitialize
CoCreateInstance

oleaut32

SysAllocString
SysFreeString

fdiskservice

DestroyServiceClient
CreateServiceClient

iphlpapi

GetAdaptersInfo

ws2_32

closesocket
send
socket
WSACleanup
ioctlsocket
connect
sendto
setsockopt
htons
inet_addr
recvfrom
WSAStartup
inet_ntoa
recv

shlwapi

StrStrIA

wininet

InternetCrackUrlA

Sections

.text
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FdiskUp.exe
.exe windows:5 windows x86 arch:x86

d9a7dcdd828147fab3912ce5c2f5159e

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:6c:94:99:91:ea:4f:f2:7c:cb:cd:67:6f:c0:2e:b4
Certificate

Issuer

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Not Before

25/09/2012, 00:00

Not After

25/10/2013, 23:59

Subject

CN=주식회사 에프앤커머스,O=주식회사 에프앤커머스,L=Guro-gu,ST=SEOUL,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

7e:39:32:e7:5c:60:fa:09:56:24:8b:e8:94:72:ce:cd:94:f6:c3:bc
Signer

Actual PE Digest

7e:39:32:e7:5c:60:fa:09:56:24:8b:e8:94:72:ce:cd:94:f6:c3:bc

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Work\branch\FDISK\Output\Release\FdiskUp.pdb

Imports

kernel32

RtlUnwind
ExitThread
CreateThread
RaiseException
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
GetStartupInfoA
VirtualProtect
VirtualAlloc
VirtualQuery
HeapReAlloc
ExitProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapSize
SetStdHandle
GetFileType
TerminateProcess
IsDebuggerPresent
GetACP
IsValidCodePage
GetStringTypeA
GetStringTypeW
VirtualFree
GetTimeZoneInformation
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GetDriveTypeA
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
CompareStringW
SetEnvironmentVariableA
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesA
GetCurrentDirectoryA
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
InterlockedIncrement
GetModuleHandleW
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
LoadLibraryExA
InterlockedExchange
lstrcmpA
GetModuleFileNameW
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
GetCurrentProcess
GetCommandLineA
GetPrivateProfileStringA
GetNumberFormatA
GetVersionExA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
HeapAlloc
HeapFree
HeapDestroy
HeapCreate
FormatMessageA
LocalFree
InterlockedDecrement
OutputDebugStringA
WaitForSingleObject
GetExitCodeThread
TerminateThread
GetSystemInfo
EnterCriticalSection
LeaveCriticalSection
SetEvent
DeleteCriticalSection
CreateEventA
InitializeCriticalSection
GetCurrentThread
SetThreadPriority
CloseHandle
CreateMutexA
Sleep
GetModuleHandleA
GetLastError
SetLastError
MultiByteToWideChar
lstrcpynA
MulDiv
lstrcpyA
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
lstrlenA
GetProcAddress
GetCurrentProcessId
GetTickCount
FreeLibrary
GetModuleFileNameA
GetStdHandle
LoadLibraryA

user32

GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
CharNextA
UnregisterClassA
GetMenuItemInfoA
GetSysColorBrush
LoadCursorA
DrawIcon
IsRectEmpty
SetWindowContextHelpId
MapDialogRect
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
ShowOwnedPopups
GetMessageA
TranslateMessage
ValidateRect
PostQuitMessage
GetWindowThreadProcessId
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
IsWindowEnabled
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
MessageBeep
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
ScrollWindow
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
IsWindowVisible
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetDlgCtrlID
DefWindowProcA
GetMenu
SetWindowPos
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
LoadIconA
GetWindowLongA
CopyRect
PtInRect
GetWindow
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
EnableMenuItem
CheckMenuItem
ReleaseDC
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
ExitWindowsEx
ReplyMessage
FindWindowA
SetWindowRgn
GetActiveWindow
GetDC
PostThreadMessageA
LoadBitmapA
SetRect
RegisterClipboardFormatA
UnpackDDElParam
ReuseDDElParam
LoadMenuA
LoadAcceleratorsA
InsertMenuItemA
SetRectEmpty
TranslateAcceleratorA
BringWindowToTop
GetDlgItem
FillRect
DrawFocusRect
SendMessageA
GetClientRect
GetFocus
EnableWindow
MessageBoxA
GetClassInfoA
PostMessageA
InvalidateRect
SetTimer
KillTimer
SetForegroundWindow
ShowWindow
DestroyMenu
TrackPopupMenu
GetCursorPos
SetMenuDefaultItem
AppendMenuA
CreatePopupMenu
GetSystemMetrics
GetSysColor
ReleaseCapture
DrawIconEx
GetIconInfo
LoadImageA
DestroyIcon
InflateRect
OffsetRect
ClientToScreen
GetCapture
SetCapture
WindowFromPoint
SetCursor
UpdateWindow
RedrawWindow
CallWindowProcA
SetWindowLongA
GetParent
GetDesktopWindow
GetWindowRect
IsWindow
CharUpperA

gdi32

ExtSelectClipRgn
CreatePatternBrush
CreateEllipticRgn
LPtoDP
Ellipse
GetBkColor
GetTextColor
GetRgnBox
SetWindowExtEx
ScaleWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
CreatePen
SetBkMode
RestoreDC
SaveDC
SetTextColor
GetClipBox
CreateRectRgnIndirect
CreateRectRgn
CreateFontA
CreateDIBSection
ExtCreateRegion
CombineRgn
StretchBlt
CreateCompatibleDC
SelectObject
DPtoLP
CreateBitmap
CreateCompatibleBitmap
GetMapMode
SetMapMode
BitBlt
SetBkColor
DeleteDC
CreateFontIndirectA
DeleteObject
GetStockObject
GetObjectA
GetTextExtentPoint32A
Rectangle
GetDeviceCaps
CreateSolidBrush

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

AdjustTokenPrivileges
RegQueryValueA
RegOpenKeyA
OpenProcessToken
LookupPrivilegeValueA
RegConnectRegistryA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegQueryInfoKeyA
RegCloseKey
RegEnumValueA
RegEnumKeyA
RegOpenKeyExA

shell32

Shell_NotifyIconA
SHGetFileInfoA
DragFinish
DragQueryFileA
ShellExecuteA

comctl32

ord17

shlwapi

PathGetArgsA
PathFindFileNameA
PathRemoveFileSpecA
PathFindExtensionA
PathStripToRootA
PathIsUNCA
UrlUnescapeA
StrFormatByteSize64A
PathRemoveFileSpecW

oledlg

ord8

ole32

CoRegisterMessageFilter
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoUninitialize
CoInitializeEx
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard

oleaut32

SysAllocStringByteLen
SysStringByteLen
VariantClear
SysAllocStringLen
SysStringLen
VariantChangeType
VariantInit
SysAllocString
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysFreeString

wsock32

gethostbyname
setsockopt
WSASetLastError
select
WSAGetLastError
__WSAFDIsSet
send
socket
ioctlsocket
closesocket
WSAStartup
htons
connect
WSACleanup

ws2_32

WSASend
WSAWaitForMultipleEvents
WSAConnect
WSASocketA
WSARecv

wininet

InternetQueryOptionA
InternetOpenUrlA
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
HttpQueryInfoA
InternetQueryDataAvailable
InternetCanonicalizeUrlA
InternetCrackUrlA

Sections

.text
Size: 418KB - Virtual size: 418KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 821KB - Virtual size: 820KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
MediaInfo.dll
.dll windows:4 windows x86 arch:x86

9516debaeb501cc020b83265018f09ca

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

37:22:0b:5b:1e:8c:5c:de:dd:07:2a:b1:df:5c:f3:4c
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

19/10/2012, 00:00

Not After

19/10/2013, 23:59

Subject

CN=MediaArea.net,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=MediaArea.net,L=Curienne,ST=France,C=FR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

cb:ed:03:88:f2:c8:ee:ce:5f:0b:b1:71:28:5e:1f:29:fe:fb:42:f2
Signer

Actual PE Digest

cb:ed:03:88:f2:c8:ee:ce:5f:0b:b1:71:28:5e:1f:29:fe:fb:42:f2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
MultiByteToWideChar
WideCharToMultiByte
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CloseHandle
ResumeThread
GetVersion
CreateFileA
CreateFileW
GetLastError
ReadFile
WriteFile
SetFilePointer
GetFileSize
GetFileTime
GetTimeZoneInformation
GetFileAttributesA
GetFileAttributesW
GetFullPathNameA
GetFullPathNameW
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
FindClose
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
InterlockedExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetSystemTimeAsFileTime
ExitThread
CreateThread
RaiseException
RtlUnwind
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetCPInfo
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
VirtualAlloc
HeapReAlloc
LoadLibraryA
GetLocaleInfoW
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW

Exports

Exports

MediaInfoA_Close
MediaInfoA_Count_Get
MediaInfoA_Delete
MediaInfoA_Get
MediaInfoA_GetI
MediaInfoA_Inform
MediaInfoA_New
MediaInfoA_New_Quick
MediaInfoA_Open
MediaInfoA_Open_Buffer
MediaInfoA_Open_Buffer_Continue
MediaInfoA_Open_Buffer_Continue_GoTo_Get
MediaInfoA_Open_Buffer_Finalize
MediaInfoA_Open_Buffer_Init
MediaInfoA_Open_NextPacket
MediaInfoA_Option
MediaInfoA_Output_Buffer_Get
MediaInfoA_Output_Buffer_GetI
MediaInfoA_Save
MediaInfoA_Set
MediaInfoA_SetI
MediaInfoA_State_Get
MediaInfoListA_Close
MediaInfoListA_Count_Get
MediaInfoListA_Count_Get_Files
MediaInfoListA_Delete
MediaInfoListA_Get
MediaInfoListA_GetI
MediaInfoListA_Inform
MediaInfoListA_New
MediaInfoListA_New_Quick
MediaInfoListA_Open
MediaInfoListA_Open_Buffer
MediaInfoListA_Option
MediaInfoListA_Save
MediaInfoListA_Set
MediaInfoListA_SetI
MediaInfoListA_State_Get
MediaInfoList_Close
MediaInfoList_Count_Get
MediaInfoList_Count_Get_Files
MediaInfoList_Delete
MediaInfoList_Get
MediaInfoList_GetI
MediaInfoList_Inform
MediaInfoList_New
MediaInfoList_New_Quick
MediaInfoList_Open
MediaInfoList_Open_Buffer
MediaInfoList_Option
MediaInfoList_Save
MediaInfoList_Set
MediaInfoList_SetI
MediaInfoList_State_Get
MediaInfo_Close
MediaInfo_Count_Get
MediaInfo_Delete
MediaInfo_Get
MediaInfo_GetI
MediaInfo_Info_Version
MediaInfo_Inform
MediaInfo_New
MediaInfo_New_Quick
MediaInfo_Open
MediaInfo_Open_Buffer
MediaInfo_Open_Buffer_Continue
MediaInfo_Open_Buffer_Continue_GoTo_Get
MediaInfo_Open_Buffer_Finalize
MediaInfo_Open_Buffer_Init
MediaInfo_Open_NextPacket
MediaInfo_Option
MediaInfo_Output_Buffer_Get
MediaInfo_Output_Buffer_GetI
MediaInfo_Save
MediaInfo_Set
MediaInfo_SetI
MediaInfo_State_Get

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 544KB - Virtual size: 542KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MurekaAVD.exe
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 376KB - Virtual size: 1004KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 1004KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jjnrtumn
Size: 804KB - Virtual size: 804KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rglfaegb
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
MurekaWma.dll
.dll windows:4 windows x86 arch:x86

912a734a8d2be9fc202856550ddf8125

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wmvcore

WMCreateSyncReader

kernel32

GetCPInfo
GetOEMCP
RtlUnwind
GetCommandLineA
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
RaiseException
HeapSize
HeapReAlloc
GetACP
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
FlushFileBuffers
WriteFile
GetCurrentProcess
GetProcessVersion
LoadLibraryA
FreeLibrary
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
GetProcAddress
SetLastError
WritePrivateProfileStringA
GlobalFlags
GetVersion
lstrcpynA
lstrcpyA
lstrcatA
GetLastError
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
WideCharToMultiByte
lstrlenA
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
GetFileSize
SetFilePointer
ReadFile
GetFileType
CloseHandle
FreeEnvironmentStringsA

user32

SystemParametersInfoA
RegisterWindowMessageA
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
DefWindowProcA
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconA
LoadCursorA
GetSysColorBrush
LoadStringA
DestroyMenu
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
SetWindowLongA
GetDlgItem
GrayStringA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
GetMenuItemCount
wsprintfA
GetWindowTextA
SetWindowTextA
ClientToScreen
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameA
UnregisterClassA
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
EnableWindow
SetCursor
SendMessageA
PostMessageA
PostQuitMessage
GetWindow

gdi32

SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetStockObject
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA
SetBkColor
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
CreateBitmap

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegOpenKeyExA

comctl32

ord17

ole32

CoUninitialize
CoInitialize

Exports

Exports

L_MurekaWmaClose
L_MurekaWmaGetTotalPlayTime
L_MurekaWmaGetWaveFormat
L_MurekaWmaInit
L_MurekaWmaOpenMemory
L_MurekaWmaReadSamples
L_MurekaWmaReadSamplesInit
L_MurekaWmaRelease
L_MurekaWmaSetParams

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PopupDown_bg.exe
.exe windows:5 windows x86 arch:x86

52677c3945f8762a132317bfccb7b69c

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:6c:94:99:91:ea:4f:f2:7c:cb:cd:67:6f:c0:2e:b4
Certificate

Issuer

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Not Before

25/09/2012, 00:00

Not After

25/10/2013, 23:59

Subject

CN=주식회사 에프앤커머스,O=주식회사 에프앤커머스,L=Guro-gu,ST=SEOUL,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

Issuer

CN=thawte Primary Root CA,OU=Certification Services Division+OU=(c) 2006 thawte\, Inc. - For authorized use only,O=thawte\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=Thawte Code Signing CA - G2,O=Thawte\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

6c:8c:3e:fb:77:44:7d:62:c7:4a:70:f2:03:a1:fc:9a:13:4d:af:6b
Signer

Actual PE Digest

6c:8c:3e:fb:77:44:7d:62:c7:4a:70:f2:03:a1:fc:9a:13:4d:af:6b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\work\nsp2007\to trunk\Usermode\Package\Downloader\bin\downloader.pdb

Imports

kernel32

GetTickCount
FormatMessageW
LocalFree
CreateFileW
GetModuleFileNameW
TerminateProcess
WaitForSingleObject
CreateMutexW
FreeResource
DeleteFileW
SetFileAttributesW
SetEvent
WriteFile
SetFilePointer
GetTempPathW
GetTempFileNameW
CopyFileW
Sleep
VirtualFree
GetFileAttributesW
CreateEventW
VirtualAlloc
GlobalAlloc
GlobalFree
GlobalUnlock
GlobalLock
GetUserDefaultLangID
SetLastError
FlushFileBuffers
SetStdHandle
GetConsoleMode
GetConsoleCP
CloseHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
LCMapStringW
ReadFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
ExitProcess
IsProcessorFeaturePresent
OutputDebugStringW
GetModuleHandleW
GetStartupInfoW
WriteConsoleW
OpenProcess
GetLastError
GetCurrentProcess
FreeLibrary
GetProcAddress
LoadLibraryW
MultiByteToWideChar
FindResourceExW
FindResourceW
SizeofResource
LockResource
LoadResource
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapSetInformation
GetCommandLineW
CreateThread
GetCurrentThreadId
ExitThread
DecodePointer
EncodePointer
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
RaiseException
WideCharToMultiByte

user32

RegisterClassW
GetWindowRect
GetDesktopWindow
SetWindowPos
GetParent
GetDC
ReleaseDC
GetClientRect
ScreenToClient
InvalidateRect
UpdateWindow
PostMessageW
DrawTextW
CallWindowProcW
IsRectEmpty
InflateRect
BeginPaint
SendMessageW
EndDialog
CreateWindowExW
SetWindowTextW
MessageBoxW
DialogBoxParamW
FrameRect
EndPaint
GetWindowLongW
SetWindowLongW
FindWindowW
GetWindowThreadProcessId
GetClassInfoW
LoadIconW
DefWindowProcW

gdi32

CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CreateSolidBrush
SetTextColor
SetBkMode
SelectObject
CreateFontIndirectW
GetObjectW
GetStockObject
DeleteObject
EnumFontsW
DeleteDC

advapi32

RegQueryValueExW
RegCloseKey
RegOpenKeyExW

shell32

SHCreateDirectoryExW
ShellExecuteExW

ole32

CreateStreamOnHGlobal

shlwapi

PathFindFileNameW
PathRemoveFileSpecW
PathRemoveExtensionW
PathAddExtensionW
PathFindExtensionW
PathFileExistsW
StrStrW

wininet

InternetReadFile
InternetWriteFile
InternetOpenW
InternetSetStatusCallbackW
HttpEndRequestW
HttpSendRequestExW
InternetCloseHandle
InternetOpenUrlW
InternetConnectW
HttpOpenRequestW
HttpAddRequestHeadersW
HttpQueryInfoW

comctl32

_TrackMouseEvent

gdiplus

GdipAlloc
GdipDeleteBrush
GdipDeleteGraphics
GdipCreateSolidFill
GdipDisposeImage
GdipCreatePen1
GdipCloneBrush
GdipFree
GdipCreateBitmapFromFile
GdipCreateHBITMAPFromBitmap
GdipCreateFromHDC
GdipCreateBitmapFromFileICM
GdipDrawImageI
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCloneImage
GdipDrawImageRectI
GdipFillRectangleI
GdipDrawRectangleI

ws2_32

inet_ntoa

Sections

.text
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TachionLive/ENGS/BWT.dll
.dll windows:4 windows x86 arch:x86

79afe1eaf59cd956b13910336d802a69

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

23:3c:35:ee:d5:f9:f5:75:ba:46:fa:bc:8d:47:cb:6e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/12/2011, 00:00

Not After

06/12/2012, 23:59

Subject

CN=INCA Internet Co.\,Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Software,O=INCA Internet Co.\,Ltd.,L=Seoul,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

93:34:04:b8:14:40:05:c3:b1:ae:ea:2b:cd:1c:91:74:bd:b3:36:a4
Signer

Actual PE Digest

93:34:04:b8:14:40:05:c3:b1:ae:ea:2b:cd:1c:91:74:bd:b3:36:a4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\MyWork\Projects\BWT\Bin\bwt\BWT.pdb

Imports

wininet

InternetSetOptionW
InternetReadFile
HttpSendRequestW
InternetCloseHandle
HttpOpenRequestW
InternetConnectW
InternetOpenW

crypt32

CertFindCertificateInStore
CertOpenSystemStoreW
CertCloseStore
CertFreeCertificateContext

rpcrt4

UuidCreate

kernel32

GetConsoleOutputCP
WriteConsoleW
ReadFile
WriteConsoleA
SetStdHandle
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
OutputDebugStringW
GetLastError
CreateThread
WaitForSingleObject
CloseHandle
lstrlenA
MultiByteToWideChar
Sleep
OutputDebugStringA
CreateFileA
WideCharToMultiByte
FindResourceW
SizeofResource
LockResource
LoadResource
FindResourceExW
GetExitCodeThread
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
RaiseException
FlushFileBuffers
lstrlenW
UnhandledExceptionFilter
InterlockedIncrement
InterlockedDecrement
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
HeapCreate
VirtualFree
VirtualAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetOEMCP
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
LoadLibraryA
SetFilePointer
GetConsoleCP
GetConsoleMode

user32

UnregisterClassA

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW

Exports

Exports

BWTControl

Sections

.text
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TachionLive/ENGS/BwtTrust.dll
.dll windows:4 windows x86 arch:x86

3e92611209e4fc449dfefc8bbb9b0e4f

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

23:3c:35:ee:d5:f9:f5:75:ba:46:fa:bc:8d:47:cb:6e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/12/2011, 00:00

Not After

06/12/2012, 23:59

Subject

CN=INCA Internet Co.\,Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Software,O=INCA Internet Co.\,Ltd.,L=Seoul,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

55:42:b7:66:30:2f:88:7d:3b:6e:44:81:f9:dc:c8:bf:d1:e2:14:50
Signer

Actual PE Digest

55:42:b7:66:30:2f:88:7d:3b:6e:44:81:f9:dc:c8:bf:d1:e2:14:50

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\MyWork\Projects\BWT\Bin\Release\BwtTrust.pdb

Imports

psapi

GetMappedFileNameW

kernel32

CreateFileMappingW
GetCurrentProcess
QueryDosDeviceW
GetLogicalDriveStringsW
SetEndOfFile
SetFilePointer
GetFileSize
WriteFile
GetDriveTypeW
GetLastError
MapViewOfFile
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
OutputDebugStringW
SystemTimeToFileTime
GetSystemTime
SetEvent
FindClose
UnmapViewOfFile
SetFileAttributesW
DeleteFileW
GetFileAttributesW
CloseHandle
CreateFileW
CompareStringW
OpenFileMappingW
TlsSetValue
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcAddress
GetModuleHandleA
TlsGetValue
TlsAlloc
SetEnvironmentVariableA
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
GetCPInfo
GetACP
GetOEMCP
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
FatalAppExitA
VirtualAlloc
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetConsoleCP
GetConsoleMode
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
LoadLibraryA
GetTimeZoneInformation
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoW
CreateFileA
FlushFileBuffers
CompareStringA

advapi32

RegQueryValueExW
RegCloseKey
AllocateAndInitializeSid
SetEntriesInAclW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetFileSecurityW
RegOpenKeyExW

Exports

Exports

RequestService

Sections

.text
Size: 176KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TachionLive/ENGS/TYAVP2_001.bin
TachionLive/ENGS/TYAVP2_002.bin
TachionLive/ENGS/TYAVP2_003.bin
TachionLive/ENGS/TYAVP2_004.bin
TachionLive/ENGS/TYAVP2_005.bin
TachionLive/ENGS/TYAVP2_006.bin
TachionLive/ENGS/TYAVP_000.bin
TachionLive/ENGS/tyav32.dll
.dll windows:4 windows x86 arch:x86

1b19d4901c625376223a001248b24cfa

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d7:a8:38:f4:1d:b8:be:e0:6f:50:a5:f1:ef:c7:c0
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

28/11/2012, 00:00

Not After

28/12/2013, 23:59

Subject

CN=INCA Internet Co.\,Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=INCA Internet Co.\,Ltd.,L=Seoul,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

03:98:d2:e6:6d:a8:d7:3b:d2:f4:3e:ed:59:4a:7b:3f:7b:6b:33:a9
Signer

Actual PE Digest

03:98:d2:e6:6d:a8:d7:3b:d2:f4:3e:ed:59:4a:7b:3f:7b:6b:33:a9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TerminateProcess
GetExitCodeProcess
OpenProcess
SetFileAttributesA
DeleteFileA
WaitForSingleObject
FindNextFileA
ExpandEnvironmentStringsA
MoveFileA
GetLogicalDriveStringsA
SetEndOfFile
WriteProcessMemory
VirtualProtectEx
GetCurrentProcess
FreeLibrary
GetProcAddress
LoadLibraryA
GetCurrentProcessId
GetFileSize
OutputDebugStringA
EndUpdateResourceA
UpdateResourceA
BeginUpdateResourceA
WideCharToMultiByte
GetPrivateProfileStringA
GetLocalTime
OutputDebugStringW
FormatMessageA
GetSystemInfo
Sleep
GetFileTime
WritePrivateProfileStringA
MoveFileExA
ReadProcessMemory
GetModuleHandleA
HeapAlloc
GetProcessHeap
HeapFree
HeapSize
QueryDosDeviceA
TerminateThread
CreateThread
DuplicateHandle
CreateRemoteThread
LocalFree
GetLogicalDrives
GetSystemDirectoryA
SetLastError
GetWindowsDirectoryA
GetVersion
DeleteCriticalSection
InitializeCriticalSection
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
OpenMutexA
CreateMutexA
Process32First
Process32Next
CreateToolhelp32Snapshot
Module32First
Module32Next
GetCurrentThread
DeviceIoControl
GetFileAttributesA
OpenFileMappingA
GetTempPathA
GetTempFileNameA
FindFirstFileA
FindClose
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetTickCount
CopyFileA
MultiByteToWideChar
GetLastError
WriteFile
SetFilePointer
ReadFile
GetVersionExA
GetDriveTypeA
CreateFileA
CloseHandle
SetFileTime
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
SetConsoleCtrlHandler
GetStringTypeW
GetStringTypeA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetStdHandle
GlobalFree
GlobalAlloc
VirtualAlloc
VirtualProtect
VirtualFree
IsBadReadPtr
InterlockedDecrement
InterlockedIncrement
RtlUnwind
ExitProcess
GetCurrentThreadId
TlsSetValue
TlsGetValue
ExitThread
GetCommandLineA
HeapReAlloc
FatalAppExitA
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GetOEMCP
GetEnvironmentVariableA
HeapDestroy
HeapCreate
IsBadWritePtr
TlsAlloc
TlsFree
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FlushFileBuffers
SetEnvironmentVariableA

advapi32

AdjustTokenPrivileges
IsTextUnicode
GetNamedSecurityInfoA
SetNamedSecurityInfoA
GetUserNameA
LookupAccountNameA
RegCreateKeyA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyA
OpenProcessToken
RegEnumKeyA
AllocateAndInitializeSid
SetEntriesInAclA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetFileSecurityA
OpenThreadToken
ImpersonateSelf
LookupPrivilegeValueA
RegQueryInfoKeyA
RegEnumValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey

ws2_32

WSCInstallProvider
WSCDeinstallProvider
WSCEnumProtocols
WSCGetProviderPath
WSACleanup

psapi

GetModuleFileNameExA

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

sfc

ord5

shlwapi

PathRemoveFileSpecA

imagehlp

MapFileAndCheckSumA

Exports

Exports

RecoverInlineHooking
TYAVSmartCure
TYAVSmartScan
TYAutoScanMemory
TYCheckBootVirus
TYCheckExceptList
TYCheckFile
TYCheckFileEx
TYCoreCheckBootVirus
TYCoreCheckFileCBCureEx
TYCoreCheckFileEx
TYCoreGetEngineDate
TYCoreInitEngine
TYCoreRecoveryBootVirus
TYCoreRecoveryFile
TYCoreSetOption
TYCoreSetReportCallBack
TYCoreUnInitEngine
TYCreateCache
TYCureMemory
TYDelInstance
TYEnableNetworkScan
TYGetBWTVer
TYGetBWTVerEx
TYGetBootInfo
TYGetEngineDate
TYGetEngineDateW
TYGetFileCRC
TYGetFileCRCEX
TYGetFileCRCEX2
TYGetPatternNum
TYInitEngine
TYListFile
TYListFileCRC
TYNewInstance
TYRecoveryBootVirus
TYRecoveryFile
TYRecoveryFileW
TYScanMemory
TYSetLiveUpdate
TYSetOption
TYStopNetworkScan
TYUnInitEngine

Sections

.text
Size: 432KB - Virtual size: 428KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 320KB - Virtual size: 503KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TachionLive/TeCtrl.dll
.dll windows:4 windows x86 arch:x86

f63f2b68fd95e29caae6665f3975597a

Code Sign

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

01/05/2012, 00:00

Not After

31/12/2012, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G3,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0c:12:06:00:00:00:00:00:1b
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:01

Not After

23/05/2016, 17:11

Subject

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

23:3c:35:ee:d5:f9:f5:75:ba:46:fa:bc:8d:47:cb:6e
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

02/12/2011, 00:00

Not After

06/12/2012, 23:59

Subject

CN=INCA Internet Co.\,Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Software,O=INCA Internet Co.\,Ltd.,L=Seoul,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

5c:ec:5b:c8:28:ad:7d:82:43:95:57:0b:26:33:11:43:3e:9f:e9:c3
Signer

Actual PE Digest

5c:ec:5b:c8:28:ad:7d:82:43:95:57:0b:26:33:11:43:3e:9f:e9:c3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Project\TeCtrl\TACHUEI\Sym\Release\TeCtrl.pdb

Imports

kernel32

WaitForSingleObject
CreateRemoteThread
GetModuleHandleA
OpenProcess
UnmapViewOfFile
QueryDosDeviceA
GetLogicalDriveStringsA
MapViewOfFile
CreateFileMappingA
TerminateThread
CreateThread
DuplicateHandle
LocalFree
LocalAlloc
HeapFree
GetProcessHeap
LeaveCriticalSection
EnterCriticalSection
HeapAlloc
SetEvent
InterlockedExchange
GetVersion
CreateMutexA
OpenMutexA
GlobalMemoryStatus
RemoveDirectoryA
FindClose
FindNextFileA
SetFileAttributesA
FindFirstFileA
CreateDirectoryA
GetTempPathA
Sleep
GetModuleFileNameA
DeleteCriticalSection
InitializeCriticalSection
CreateEventA
GetTickCount
lstrlenW
GetCurrentProcess
CompareStringW
lstrcmpiA
lstrcmpiW
lstrlenA
GetEnvironmentVariableA
GetEnvironmentVariableW
GetStringTypeExA
GetStringTypeExW
OutputDebugStringA
OutputDebugStringW
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
ResetEvent
ExpandEnvironmentStringsA
GetWindowsDirectoryA
Module32Next
Module32First
CreateToolhelp32Snapshot
Process32Next
Process32First
GetThreadLocale
SetEnvironmentVariableA
SetEndOfFile
GetLocaleInfoW
GetTimeZoneInformation
FlushFileBuffers
GetVersionExA
GetFileAttributesA
CloseHandle
DeleteFileA
MultiByteToWideChar
WideCharToMultiByte
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
GetLastError
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
SetConsoleCtrlHandler
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GlobalAlloc
SetLastError
GlobalFree
FreeLibrary
CreateFileA
GetFileSize
ReadFile
CompareStringA
RaiseException
HeapReAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
InterlockedDecrement
GetCurrentThread
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
FatalAppExitA
ExitProcess
WriteFile
GetStdHandle
HeapSize
GetConsoleCP
GetConsoleMode
SetFilePointer
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA

user32

CharUpperW
CharUpperA
CharLowerW
CharLowerA
UnregisterClassA
wsprintfA

advapi32

OpenProcessToken
LookupPrivilegeValueA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegEnumValueA
RegQueryInfoKeyA
RegEnumKeyExA
AdjustTokenPrivileges

shlwapi

PathIsRelativeA
PathFindExtensionA

imagehlp

MapAndLoad
UnMapAndLoad

wintrust

WinVerifyTrust

crypt32

CertCloseStore
CertFreeCertificateContext
CertFindCertificateInStore
CryptMsgGetParam
CryptQueryObject
CryptMsgClose
CertGetNameStringA

Exports

Exports

NPAS_Clsid2MalwareName
NPAS_CreateClsidList
NPAS_CreateMD5List
NPAS_CreateMalname2ClsidList
NPAS_FreeClsidList
NPAS_FreeMD5List
NPAS_FreeMalnameList
NPAVEnableBWT
NPAVGetBWTVer
NpeAutoMemScan
NpeBWTDepotClear
NpeBWTDepotCommit
NpeBWTDepotCure
NpeBWTDepotQuery
NpeBWTDepotRollBack
NpeCheckExceptList
NpeCure
NpeDeleteInstance
NpeEnableBWT
NpeFindOwnerProc
NpeFree
NpeGetBWTDepotEnable
NpeGetBWTVer
NpeGetRestoreList
NpeGetScannedCount
NpeGetVer
NpeLoad
NpeMemoryCure
NpeMemoryScan
NpeNewInstance
NpeNewInstanceEx
NpePauseProc
NpePauseRegistry
NpePauseSSmartScan
NpeProcScan
NpeRegistryScan
NpeResumeProc
NpeResumeRegistry
NpeResumeSSmartScan
NpeSQuickScan
NpeSSmartScan
NpeScan
NpeSetArchiveOption
NpeSetBDCorePluginPath
NpeSetBWTCallBack
NpeSetEnginePath
NpeSetLiveUpdate
NpeSetOption
NpeSetOptionEx
NpeSetProxy
NpeSetScanMode
NpeStopNetworkscan
NpeStopProc
NpeStopRegistry
NpeStopSSmartScan
NpeStopScan
NpeUnLoad

Sections

.text
Size: 316KB - Virtual size: 315KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNACEV2.DLL
.dll windows:1 windows x86 arch:x86

8390514c40641509cd0941c1fb7588ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shell32

ShellExecuteA
ShellExecuteExA

kernel32

AllocConsole
CloseHandle
CreateDirectoryA
CreateFileA
CreateProcessA
DeleteFileA
DeviceIoControl
DisableThreadLibraryCalls
DosDateTimeToFileTime
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FindClose
FindFirstFileA
FindNextFileA
FlushFileBuffers
FreeConsole
GetCommandLineA
GetConsoleCursorInfo
GetConsoleScreenBufferInfo
GetCurrentDirectoryA
GetCurrentProcess
GetDiskFreeSpaceA
GetDriveTypeA
GetEnvironmentStrings
GetEnvironmentVariableA
GetExitCodeProcess
GetFileAttributesA
GetFileInformationByHandle
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetShortPathNameA
GetStartupInfoA
GetStdHandle
GetSystemTime
GetTempPathA
GetTimeZoneInformation
GetVersion
GetVolumeInformationA
GlobalMemoryStatus
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
LCMapStringA
LoadLibraryA
LocalFileTimeToFileTime
MoveFileA
PeekConsoleInputA
ReadConsoleInputA
ReadConsoleOutputAttribute
ReadConsoleOutputA
ReadFile
RemoveDirectoryA
ScrollConsoleScreenBufferA
SearchPathA
SetConsoleCtrlHandler
SetConsoleCursorInfo
SetConsoleCursorPosition
SetConsoleScreenBufferSize
SetConsoleWindowInfo
SetCurrentDirectoryA
SetEndOfFile
SetEnvironmentVariableA
SetFileAttributesA
SetFilePointer
SetFileTime
SetHandleCount
SetStdHandle
Sleep
SystemTimeToFileTime
TerminateProcess
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteConsoleOutputA
WriteConsoleOutputCharacterA
WriteFile

advapi32

RegCloseKey
RegCreateKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

gdi32

CreateFontA
DeleteObject

user32

CharToOemBuffA
CreateDialogParamA
DestroyWindow
DialogBoxParamA
DispatchMessageA
EnableWindow
EndDialog
GetDlgItem
GetDlgItemTextA
GetKeyState
GetWindowTextA
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
MessageBeep
MessageBoxA
OemToCharBuffA
PeekMessageA
SendDlgItemMessageA
SetCursor
SetDlgItemTextA
SetFocus
SetTimer
SetWindowTextA
ShowCursor
ShowWindow
TranslateMessage

Exports

Exports

ACEExtract
ACEInitDll
ACEList
ACEReadArchiveData
ACETest
___DllMainCRTStartup@12

Sections

AUTO
Size: 59KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 4KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 210KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
UnEGG32.dll
.dll windows:5 windows x86 arch:x86

b611c8a927676248e17197e77abb8e18

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\SVN\alzip\trunk\ALZip\UnEGG\bin\UnEGG32.pdb

Imports

kernel32

WaitForSingleObject
CloseHandle
ResumeThread
WaitForMultipleObjects
SystemTimeToFileTime
FileTimeToSystemTime
WriteFile
CreateFileA
GetFileSize
SetFilePointer
ReadFile
GetLastError
VirtualFree
VirtualAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
SetEvent
InitializeCriticalSection
ResetEvent
CreateEventW
CreateFileW
SetFileTime
QueryPerformanceCounter
GetCurrentThreadId
GetDriveTypeA
GetDriveTypeW
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
FindClose
GetFileType
SetEndOfFile
GetFileTime
GetFileInformationByHandle
GetFileAttributesA
GetFileAttributesW
SetFileAttributesA
SetFileAttributesW
GetLongPathNameA
GetLongPathNameW
GetShortPathNameA
GetShortPathNameW
CreateDirectoryA
CreateDirectoryW
DeleteFileA
DeleteFileW
SetLastError
VirtualQuery
VirtualProtect
OpenEventW
Sleep
GetLocaleInfoW
WideCharToMultiByte
MultiByteToWideChar
GetProcAddress
SystemTimeToTzSpecificLocalTime
FileTimeToLocalFileTime
SetEnvironmentVariableA
GetModuleHandleA
CompareStringW
CompareStringA
ExitThread
CreateThread
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
GetModuleHandleW
ExitProcess
GetCommandLineA
InterlockedIncrement
InterlockedDecrement
RaiseException
RtlUnwind
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetStdHandle
GetModuleFileNameA
GetTimeZoneInformation
SetHandleCount
GetStartupInfoA
SetStdHandle
GetConsoleCP
GetConsoleMode
HeapCreate
HeapDestroy
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
FlushFileBuffers
LoadLibraryA
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount
GetCurrentProcessId
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
LCMapStringW
HeapSize
LCMapStringA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW

user32

SetLastErrorEx

shell32

SHGetFileInfoW

Exports

Exports

EGG_CloseArchive
EGG_CreateEgg
EGG_DestroyEgg
EGG_Extract
EGG_GetFileCount
EGG_GetFileHeader
EGG_IsValidArchive
EGG_OpenArchive
EGG_Test

Sections

.text
Size: 476KB - Virtual size: 475KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Uninstall.exe.nsis
Winup3.0_down.exe
.exe windows:5 windows x86 arch:x86

52677c3945f8762a132317bfccb7b69c

Code Sign

37:b9:5d:dd:9e:a9:2f:57:2d:6a:a0:7d:6f:ac:89:40
Certificate

Issuer

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Not Before

28/08/2009, 00:00

Not After

28/08/2011, 23:59

Subject

CN=주식회사 에프앤커머스,O=주식회사 에프앤커머스,L=Seongnam-si,ST=Gyeonggi-do,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

0a
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

06/08/2003, 00:00

Not After

05/08/2013, 23:59

Subject

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

c9:f1:32:4b:de:d5:c2:e7:3e:5e:54:8c:41:74:1a:26:55:38:17:9c
Signer

Actual PE Digest

c9:f1:32:4b:de:d5:c2:e7:3e:5e:54:8c:41:74:1a:26:55:38:17:9c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\work\nsp2007\to trunk\Usermode\Package\Downloader\bin\downloader.pdb

Imports

kernel32

GetTickCount
FormatMessageW
LocalFree
CreateFileW
GetModuleFileNameW
TerminateProcess
WaitForSingleObject
CreateMutexW
FreeResource
DeleteFileW
SetFileAttributesW
SetEvent
WriteFile
SetFilePointer
GetTempPathW
GetTempFileNameW
CopyFileW
Sleep
VirtualFree
GetFileAttributesW
CreateEventW
VirtualAlloc
GlobalAlloc
GlobalFree
GlobalUnlock
GlobalLock
GetUserDefaultLangID
SetLastError
FlushFileBuffers
SetStdHandle
GetConsoleMode
GetConsoleCP
CloseHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
LCMapStringW
ReadFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
ExitProcess
IsProcessorFeaturePresent
OutputDebugStringW
GetModuleHandleW
GetStartupInfoW
WriteConsoleW
OpenProcess
GetLastError
GetCurrentProcess
FreeLibrary
GetProcAddress
LoadLibraryW
MultiByteToWideChar
FindResourceExW
FindResourceW
SizeofResource
LockResource
LoadResource
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapSetInformation
GetCommandLineW
CreateThread
GetCurrentThreadId
ExitThread
DecodePointer
EncodePointer
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
RaiseException
WideCharToMultiByte

user32

RegisterClassW
GetWindowRect
GetDesktopWindow
SetWindowPos
GetParent
GetDC
ReleaseDC
GetClientRect
ScreenToClient
InvalidateRect
UpdateWindow
PostMessageW
DrawTextW
CallWindowProcW
IsRectEmpty
InflateRect
BeginPaint
SendMessageW
EndDialog
CreateWindowExW
SetWindowTextW
MessageBoxW
DialogBoxParamW
FrameRect
EndPaint
GetWindowLongW
SetWindowLongW
FindWindowW
GetWindowThreadProcessId
GetClassInfoW
LoadIconW
DefWindowProcW

gdi32

CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CreateSolidBrush
SetTextColor
SetBkMode
SelectObject
CreateFontIndirectW
GetObjectW
GetStockObject
DeleteObject
EnumFontsW
DeleteDC

advapi32

RegQueryValueExW
RegCloseKey
RegOpenKeyExW

shell32

SHCreateDirectoryExW
ShellExecuteExW

ole32

CreateStreamOnHGlobal

shlwapi

PathFindFileNameW
PathRemoveFileSpecW
PathRemoveExtensionW
PathAddExtensionW
PathFindExtensionW
PathFileExistsW
StrStrW

wininet

InternetReadFile
InternetWriteFile
InternetOpenW
InternetSetStatusCallbackW
HttpEndRequestW
HttpSendRequestExW
InternetCloseHandle
InternetOpenUrlW
InternetConnectW
HttpOpenRequestW
HttpAddRequestHeadersW
HttpQueryInfoW

comctl32

_TrackMouseEvent

gdiplus

GdipAlloc
GdipDeleteBrush
GdipDeleteGraphics
GdipCreateSolidFill
GdipDisposeImage
GdipCreatePen1
GdipCloneBrush
GdipFree
GdipCreateBitmapFromFile
GdipCreateHBITMAPFromBitmap
GdipCreateFromHDC
GdipCreateBitmapFromFileICM
GdipDrawImageI
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCloneImage
GdipDrawImageRectI
GdipFillRectangleI
GdipDrawRectangleI

ws2_32

inet_ntoa

Sections

.text
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avcodec-54.dll
.dll windows:4 windows x86 arch:x86

81637aae43862b8092a3cfa86132078d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA

kernel32

CloseHandle
CreateEventA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetHandleInformation
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadContext
GetThreadPriority
GetTickCount
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSemaphore
ResetEvent
ResumeThread
SetEvent
SetLastError
SetProcessAffinityMask
SetThreadAffinityMask
SetThreadContext
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SuspendThread
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte

msvcrt

_close
_fileno
_open
_strdup
_unlink
_write
__dllonexit
__doserrno
__mb_cur_max
__pioinfo
__setusermatherr
_aligned_free
_aligned_malloc
_amsg_exit
_beginthreadex
_endthreadex
_errno
_exit
_filelengthi64
_fileno
_fstati64
_ftime
_initterm
_iob
_lock
_lseeki64
_onexit
_setjmp3
_stricmp
_strnicmp
isxdigit
localeconv
localtime
log10
longjmp
malloc
memchr
memcmp
memcpy
memmove
memset
printf
puts
qsort
raise
rand
realloc
rename
setlocale
signal
sprintf
srand
sscanf
strcat
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncmp
strncpy
strpbrk
strspn
strstr
strtok
strtol
strtoul
_unlock
_vsnprintf
_write
abort
acos
atan
atan2
atoi
bsearch
calloc
exit
fclose
feof
fflush
fgetc
fgetpos
fopen
fprintf
fputc
fputs
fread
free
frexp
fseek
fsetpos
ftell
fwrite
getc
getenv
islower
isspace
isupper
tan
time
tolower
toupper
ungetc
vfprintf
vsprintf
wcslen

user32

CheckDlgButton
DialogBoxParamA
EnableWindow
EndDialog
GetDlgItem
GetDlgItemTextA
GetWindowLongA
IsDlgButtonChecked
MessageBoxA
SetDlgItemTextA
SetWindowLongA
SetWindowTextA
wsprintfA

avutil-52

av_asprintf
av_base64_decode
av_base64_encode
av_bprint_chars
av_bprint_clear
av_bprint_finalize
av_bprint_get_buffer
av_bprint_init
av_bprintf
av_calloc
av_crc
av_crc_get_table
av_crc_init
av_ctz
av_d2q
av_default_item_name
av_dict_copy
av_dict_free
av_dict_set
av_div_q
av_evaluate_lls
av_expr_eval
av_expr_free
av_expr_parse
av_fifo_alloc
av_fifo_drain
av_fifo_free
av_fifo_generic_read
av_fifo_generic_write
av_fifo_realloc2
av_fifo_size
av_fifo_space
av_free
av_freep
av_gcd
av_get_bits_per_pixel
av_get_bytes_per_sample
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_cpu_flags
av_get_default_channel_layout
av_get_media_type_string
av_get_padded_bits_per_pixel
av_get_picture_type_char
av_get_pix_fmt_name
av_get_planar_sample_fmt
av_get_sample_fmt_name
av_image_alloc
av_image_check_size
av_image_copy
av_image_copy_plane
av_image_copy_to_buffer
av_image_fill_arrays
av_image_fill_linesizes
av_image_fill_pointers
av_image_get_buffer_size
av_init_lls
av_lfg_init
av_log
av_log_get_level
av_lzo1x_decode
av_malloc
av_mallocz
av_md5_alloc
av_md5_final
av_md5_init
av_md5_update
av_memcpy_backptr
av_mul_q
av_nearer_q
av_opt_free
av_opt_set
av_opt_set_defaults
av_opt_set_defaults2
av_opt_set_dict
av_parse_color
av_pix_fmt_desc_get
av_pix_fmt_get_chroma_sub_sample
av_realloc
av_realloc_f
av_reduce
av_rescale_q
av_rescale_rnd
av_sample_fmt_is_planar
av_samples_copy
av_samples_fill_arrays
av_samples_get_buffer_size
av_samples_set_silence
av_solve_lls
av_strdup
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strncasecmp
av_strtok
av_tempfile
av_timecode_adjust_ntsc_framenum2
av_timecode_init_from_string
av_timecode_make_mpeg_tc_string
av_update_lls
av_vlog
avpriv_cga_font
avpriv_float_dsp_init
avpriv_set_systematic_pal2
avpriv_vga16_font

Exports

Exports

audio_resample
audio_resample_close
av_audio_convert
av_audio_convert_alloc
av_audio_convert_free
av_audio_resample_init
av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_bitstream_filter_next
av_codec_get_codec_descriptor
av_codec_get_pkt_timebase
av_codec_is_decoder
av_codec_is_encoder
av_codec_next
av_codec_set_codec_descriptor
av_codec_set_pkt_timebase
av_copy_packet
av_dct_calc
av_dct_end
av_dct_init
av_destruct_packet
av_dup_packet
av_fast_malloc
av_fast_padded_malloc
av_fast_padded_mallocz
av_fast_realloc
av_fft_calc
av_fft_end
av_fft_init
av_fft_permute
av_frame_get_best_effort_timestamp
av_frame_get_channel_layout
av_frame_get_channels
av_frame_get_decode_error_flags
av_frame_get_metadata
av_frame_get_pkt_duration
av_frame_get_pkt_pos
av_frame_get_sample_rate
av_frame_set_best_effort_timestamp
av_frame_set_channel_layout
av_frame_set_channels
av_frame_set_decode_error_flags
av_frame_set_metadata
av_frame_set_pkt_duration
av_frame_set_pkt_pos
av_frame_set_sample_rate
av_free_packet
av_get_audio_frame_duration
av_get_bits_per_sample
av_get_codec_tag_string
av_get_exact_bits_per_sample
av_get_pcm_codec
av_get_profile_name
av_grow_packet
av_hwaccel_next
av_imdct_calc
av_imdct_half
av_init_packet
av_lockmgr_register
av_log_ask_for_sample
av_log_missing_feature
av_mdct_calc
av_mdct_end
av_mdct_init
av_new_packet
av_packet_get_side_data
av_packet_merge_side_data
av_packet_new_side_data
av_packet_shrink_side_data
av_packet_split_side_data
av_parser_change
av_parser_close
av_parser_init
av_parser_next
av_parser_parse2
av_picture_copy
av_picture_crop
av_picture_pad
av_rdft_calc
av_rdft_end
av_rdft_init
av_register_bitstream_filter
av_register_codec_parser
av_register_hwaccel
av_resample
av_resample_close
av_resample_compensate
av_resample_init
av_shrink_packet
av_xiphlacing
avcodec_align_dimensions
avcodec_align_dimensions2
avcodec_alloc_context
avcodec_alloc_context2
avcodec_alloc_context3
avcodec_alloc_frame
avcodec_close
avcodec_configuration
avcodec_copy_context
avcodec_decode_audio3
avcodec_decode_audio4
avcodec_decode_subtitle2
avcodec_decode_video2
avcodec_default_execute
avcodec_default_execute2
avcodec_default_free_buffers
avcodec_default_get_buffer
avcodec_default_get_format
avcodec_default_reget_buffer
avcodec_default_release_buffer
avcodec_descriptor_get
avcodec_descriptor_get_by_name
avcodec_descriptor_next
avcodec_encode_audio
avcodec_encode_audio2
avcodec_encode_subtitle
avcodec_encode_video
avcodec_encode_video2
avcodec_fill_audio_frame
avcodec_find_best_pix_fmt
avcodec_find_best_pix_fmt2
avcodec_find_best_pix_fmt_of_2
avcodec_find_best_pix_fmt_of_list
avcodec_find_decoder
avcodec_find_decoder_by_name
avcodec_find_encoder
avcodec_find_encoder_by_name
avcodec_flush_buffers
avcodec_free_frame
avcodec_get_chroma_sub_sample
avcodec_get_class
avcodec_get_context_defaults
avcodec_get_context_defaults2
avcodec_get_context_defaults3
avcodec_get_edge_width
avcodec_get_frame_class
avcodec_get_frame_defaults
avcodec_get_name
avcodec_get_pix_fmt_loss
avcodec_get_subtitle_rect_class
avcodec_get_type
avcodec_is_open
avcodec_license
avcodec_open
avcodec_open2
avcodec_pix_fmt_to_codec_tag
avcodec_register
avcodec_register_all
avcodec_set_dimensions
avcodec_string
avcodec_version
aver_isf_history
avpicture_alloc
avpicture_deinterlace
avpicture_fill
avpicture_free
avpicture_get_size
avpicture_layout
avpriv_aac_parse_header
avpriv_ac3_channel_layout_tab
avpriv_ac3_parse_header
avpriv_adx_decode_header
avpriv_align_put_bits
avpriv_check_timecode_rate
avpriv_copy_bits
avpriv_copy_pce_data
avpriv_dca_sample_rates
avpriv_dirac_parse_sequence_header
avpriv_dv_codec_profile
avpriv_dv_frame_profile
avpriv_dv_frame_profile2
avpriv_flac_is_extradata_valid
avpriv_flac_parse_block_header
avpriv_flac_parse_streaminfo
avpriv_framenum_to_drop_timecode
avpriv_framenum_to_smpte_timecode
avpriv_h264_has_num_reorder_frames
avpriv_init_smpte_timecode
avpriv_lock_avformat
avpriv_mjpeg_bits_ac_chrominance
avpriv_mjpeg_bits_ac_luminance
avpriv_mjpeg_bits_dc_chrominance
avpriv_mjpeg_bits_dc_luminance
avpriv_mjpeg_val_ac_chrominance
avpriv_mjpeg_val_ac_luminance
avpriv_mjpeg_val_dc
avpriv_mpa_bitrate_tab
avpriv_mpa_decode_header
avpriv_mpa_freq_tab
avpriv_mpeg4audio_get_config
avpriv_mpeg4audio_sample_rates
avpriv_mpegaudio_decode_header
avpriv_mpv_find_start_code
avpriv_put_string
avpriv_split_xiph_headers
avpriv_tak_parse_streaminfo
avpriv_timecode_to_string
avpriv_toupper4
avpriv_unlock_avformat
avpriv_vorbis_parse_extradata
avpriv_vorbis_parse_frame
avpriv_vorbis_parse_reset
avsubtitle_free
dsputil_init
ff_aanscales
ff_dct32_fixed
ff_dct32_float
ff_dct32_float_avx
ff_dct32_float_sse
ff_dct32_float_sse2
ff_dct_common_init
ff_dct_encode_init
ff_dct_encode_init_x86
ff_dct_end
ff_dct_init
ff_dct_init_x86
ff_dct_quantize_c
ff_dnxhd_cid_table
ff_dnxhd_get_cid_table
ff_faandct
ff_faandct248
ff_faanidct
ff_faanidct_add
ff_faanidct_put
ff_fdct248_islow_10
ff_fdct248_islow_8
ff_fdct_ifast
ff_fdct_ifast248
ff_fdct_mmx
ff_fdct_mmxext
ff_fdct_sse2
ff_fft_calc_3dnow
ff_fft_calc_3dnowext
ff_fft_calc_avx
ff_fft_calc_sse
ff_fft_end
ff_fft_end_fixed
ff_fft_init
ff_fft_init_fixed
ff_fft_init_x86
ff_fft_permute_sse
ff_find_pix_fmt
ff_framenum_to_drop_timecode
ff_framenum_to_smtpe_timecode
ff_idct_xvid_mmx
ff_idct_xvid_mmx_add
ff_idct_xvid_mmx_put
ff_idct_xvid_mmxext
ff_idct_xvid_mmxext_add
ff_idct_xvid_mmxext_put
ff_idct_xvid_sse2
ff_idct_xvid_sse2_add
ff_idct_xvid_sse2_put
ff_init_smtpe_timecode
ff_jpeg_fdct_islow_10
ff_jpeg_fdct_islow_8
ff_mdct_calc_c
ff_mdct_calc_c_fixed
ff_mdct_calcw_c
ff_mdct_end
ff_mdct_end_fixed
ff_mdct_init
ff_mdct_init_fixed
ff_mdct_win_fixed
ff_mdct_win_float
ff_mmx_idct
ff_mmxext_idct
ff_raw_pix_fmt_tags
ff_rdft_end
ff_rdft_init
ff_simple_idct248_put
ff_simple_idct44_add
ff_simple_idct48_add
ff_simple_idct84_add
ff_simple_idct_10
ff_simple_idct_8
ff_simple_idct_add_10
ff_simple_idct_add_8
ff_simple_idct_add_mmx
ff_simple_idct_mmx
ff_simple_idct_put_10
ff_simple_idct_put_8
ff_simple_idct_put_mmx

Sections

.text
Size: 10.6MB - Virtual size: 10.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rotext
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 186KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avdevice-54.dll
.dll windows:4 windows x86 arch:x86

7b33092859821c1c5d854e434521b068

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

gdi32

BitBlt
ChoosePixelFormat
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreatePalette
DeleteDC
DeleteObject
DescribePixelFormat
GetDIBits
GetDeviceCaps
GetDeviceGammaRamp
GetSystemPaletteEntries
GetSystemPaletteUse
RealizePalette
SelectObject
SelectPalette
SetDIBColorTable
SetDeviceGammaRamp
SetPaletteEntries
SetPixelFormat
SetSystemPaletteUse
SwapBuffers
UnrealizeObject

kernel32

CloseHandle
CreateEventA
CreateFileA
CreateFileW
CreateMutexA
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetACP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDriveTypeA
GetEnvironmentVariableA
GetLastError
GetLocaleInfoA
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
ReadFile
ReleaseMutex
ReleaseSemaphore
ResetEvent
SetEnvironmentVariableA
SetErrorMode
SetEvent
SetFilePointer
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TerminateThread
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

_strdup
_wcsdup
__dllonexit
__mb_cur_max
_amsg_exit
_beginthreadex
_endthreadex
_errno
_initterm
_iob
_lock
_onexit
_stricmp
isxdigit
localeconv
malloc
memcmp
memcpy
memmove
memset
qsort
raise
realloc
setlocale
signal
sscanf
strchr
strcmp
strerror
strlen
strncmp
strstr
strtok
strtol
strtoul
_unlock
_vsnprintf
abort
atof
atoi
calloc
fclose
ferror
fflush
fprintf
fputc
fputs
fread
free
fseek
ftell
fwrite
getc
getenv
islower
isspace
isupper
tolower
ungetc
wcscmp
wcscpy
wcslen

ole32

CoCreateInstance
CoInitialize
CoTaskMemAlloc
CoTaskMemFree

user32

AdjustWindowRect
AdjustWindowRectEx
BeginPaint
CallWindowProcA
ChangeDisplaySettingsA
ClientToScreen
ClipCursor
CreateCursor
CreateIconFromResourceEx
CreateWindowExA
DefWindowProcA
DestroyCursor
DestroyIcon
DestroyWindow
DispatchMessageA
EndPaint
EnumDisplaySettingsA
GetClassInfoA
GetClientRect
GetCursor
GetCursorPos
GetDC
GetDesktopWindow
GetForegroundWindow
GetKeyState
GetKeyboardLayout
GetKeyboardLayoutNameA
GetKeyboardState
GetMenu
GetMessageA
GetParent
GetSystemMetrics
GetWindowLongA
GetWindowRect
InvalidateRect
IsZoomed
KillTimer
LoadImageA
LoadKeyboardLayoutA
MapVirtualKeyA
MapVirtualKeyExA
MapWindowPoints
MsgWaitForMultipleObjects
PeekMessageA
PostMessageA
PostQuitMessage
PtInRect
RegisterClassA
ReleaseCapture
ReleaseDC
ScreenToClient
SendMessageA
SetCapture
SetClassLongA
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetTimer
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
ToAsciiEx
ToUnicode
TranslateMessage
UnregisterClassA
WindowFromPoint

winmm

joyGetDevCapsA
joyGetNumDevs
joyGetPosEx
mciGetErrorStringA
mciSendCommandA
timeBeginPeriod
timeEndPeriod
timeGetTime
timeKillEvent
timeSetEvent
waveOutClose
waveOutGetErrorTextA
waveOutOpen
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite

avcodec-54

av_destruct_packet
av_get_pcm_codec
av_new_packet
av_packet_new_side_data
avcodec_find_decoder
avpicture_fill
avpicture_get_size
avpicture_layout

avfilter-3

av_abuffersink_params_alloc
av_buffersink_get_buffer_ref
av_buffersink_params_alloc
avfilter_get_by_name
avfilter_graph_alloc
avfilter_graph_config
avfilter_graph_create_filter
avfilter_graph_dump
avfilter_graph_free
avfilter_graph_parse
avfilter_inout_free
avfilter_link
avfilter_register_all
avfilter_unref_buffer

avformat-54

av_register_input_format
av_register_output_format
avformat_new_stream
avpriv_set_pts_info

avutil-52

av_bprint_chars
av_bprint_finalize
av_bprint_init
av_bprintf
av_default_item_name
av_dict_get
av_file_map
av_file_unmap
av_free
av_freep
av_get_bytes_per_sample
av_get_channel_layout_nb_channels
av_get_pix_fmt_name
av_get_sample_fmt_name
av_log
av_malloc
av_mallocz
av_mul_q
av_parse_video_rate
av_parse_video_size
av_pix_fmt_desc_get
av_rescale
av_rescale_q
av_strdup

Exports

Exports

avdevice_configuration
avdevice_license
avdevice_register_all
avdevice_version

Sections

.text
Size: 296KB - Virtual size: 296KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 34KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 175B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avfilter-3.dll
.dll windows:4 windows x86 arch:x86

bd172abdb3eb13907d22297f36b36334

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileMappingA
DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileAttributesA
GetFileAttributesExA
GetFullPathNameA
GetLastError
GetLongPathNameA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTempPathA
GetTickCount
GetWindowsDirectoryA
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
MapViewOfFile
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
UnmapViewOfFile
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

_access
_chmod
_close
_fdopen
_open
_read
_rmdir
_strdup
_unlink
_write
__dllonexit
__mb_cur_max
__setusermatherr
_amsg_exit
_errno
_exit
_findclose
_findfirst
_findnext
_fullpath
_get_osfhandle
_initterm
_iob
_lock
_lseeki64
_mbsrchr
_mkdir
_onexit
_setjmp3
_stat
_stricmp
_strnicmp
isxdigit
localeconv
localtime
log10
longjmp
malloc
memchr
memcmp
memcpy
memmove
memset
perror
printf
putchar
puts
qsort
raise
rand
realloc
rename
rewind
setlocale
sprintf
srand
sscanf
strcat
strchr
strcmp
strcpy
strcspn
strerror
strlen
strncat
strncmp
strncpy
strrchr
strspn
strstr
strtol
strtoul
_unlock
_vsnprintf
abort
atan2
atof
atoi
atol
bsearch
calloc
fclose
fflush
fgets
fopen
fprintf
fputc
fread
free
fseek
ftell
fwrite
getc
getenv
gmtime
isalpha
isgraph
islower
isspace
isupper
time
tolower
ungetc
vfprintf
wcslen

user32

MessageBoxA

avcodec-54

av_frame_get_best_effort_timestamp
av_frame_get_channel_layout
av_frame_get_metadata
av_frame_get_pkt_pos
av_frame_set_channel_layout
av_frame_set_channels
av_frame_set_pkt_pos
av_frame_set_sample_rate
av_free_packet
av_init_packet
av_rdft_calc
av_rdft_end
av_rdft_init
avcodec_alloc_context
avcodec_alloc_context3
avcodec_alloc_frame
avcodec_close
avcodec_decode_audio4
avcodec_decode_video2
avcodec_encode_video
avcodec_find_best_pix_fmt_of_2
avcodec_find_decoder
avcodec_find_encoder
avcodec_flush_buffers
avcodec_free_frame
avcodec_open
avcodec_open2
dsputil_init

avformat-54

av_find_best_stream
av_find_input_format
av_read_frame
av_register_all
av_seek_frame
avformat_close_input
avformat_find_stream_info
avformat_match_stream_specifier
avformat_open_input

avutil-52

av_adler32_update
av_asprintf
av_audio_fifo_alloc
av_audio_fifo_free
av_audio_fifo_read
av_audio_fifo_realloc
av_audio_fifo_size
av_audio_fifo_space
av_audio_fifo_write
av_bprint_channel_layout
av_bprint_chars
av_bprint_clear
av_bprint_finalize
av_bprint_init
av_bprint_strftime
av_bprintf
av_calloc
av_channel_layout_extract_channel
av_compare_ts
av_d2q
av_default_item_name
av_dict_copy
av_dict_free
av_dict_get
av_dict_set
av_div_q
av_expr_eval
av_expr_free
av_expr_parse
av_expr_parse_and_eval
av_fifo_alloc
av_fifo_free
av_fifo_generic_read
av_fifo_generic_write
av_fifo_realloc2
av_fifo_size
av_fifo_space
av_file_map
av_file_unmap
av_free
av_freep
av_get_bits_per_pixel
av_get_bytes_per_sample
av_get_channel_layout
av_get_channel_layout_channel_index
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_channel_name
av_get_cpu_flags
av_get_default_channel_layout
av_get_int
av_get_media_type_string
av_get_packed_sample_fmt
av_get_picture_type_char
av_get_pix_fmt
av_get_pix_fmt_name
av_get_planar_sample_fmt
av_get_random_seed
av_get_sample_fmt
av_get_sample_fmt_name
av_get_token
av_image_alloc
av_image_check_size
av_image_copy
av_image_copy_plane
av_image_fill_max_pixsteps
av_image_get_linesize
av_lfg_init
av_log
av_malloc
av_mallocz
av_mul_q
av_opt_eval_flags
av_opt_find
av_opt_free
av_opt_set
av_opt_set_defaults
av_opt_set_from_string
av_opt_set_int
av_parse_color
av_parse_ratio
av_parse_time
av_parse_video_rate
av_parse_video_size
av_pix_fmt_desc_get
av_read_image_line
av_realloc
av_realloc_f
av_reduce
av_rescale
av_rescale_q
av_rescale_q_rnd
av_sample_fmt_is_planar
av_samples_alloc
av_samples_copy
av_samples_fill_arrays
av_samples_set_silence
av_set_options_string
av_strcasecmp
av_strdup
av_strerror
av_strlcatf
av_strlcpy
av_strtod
av_strtok
av_timecode_init_from_string
av_timecode_make_string
av_tree_destroy
av_tree_enumerate
av_tree_find
av_tree_insert
av_tree_node_alloc
av_vlog
av_write_image_line
avpriv_cga_font
avpriv_float_dsp_init
avpriv_set_systematic_pal2
avpriv_vga16_font

postproc-52

pp_free_context
pp_free_mode
pp_get_context
pp_get_mode_by_name_and_quality
pp_postprocess

swresample-0

swr_alloc
swr_alloc_set_opts
swr_convert
swr_free
swr_init
swr_next_pts
swr_set_channel_mapping
swr_set_matrix

swscale-2

sws_freeContext
sws_freeVec
sws_getCachedContext
sws_getContext
sws_getGaussianVec
sws_get_class
sws_isSupportedInput
sws_isSupportedOutput
sws_scale
sws_scaleVec

Exports

Exports

av_abuffersink_params_alloc
av_asrc_buffer_add_audio_buffer_ref
av_asrc_buffer_add_buffer
av_asrc_buffer_add_samples
av_buffersink_get_buffer_ref
av_buffersink_get_frame_rate
av_buffersink_params_alloc
av_buffersink_poll_frame
av_buffersink_read
av_buffersink_read_samples
av_buffersink_set_frame_size
av_buffersrc_add_frame
av_buffersrc_add_ref
av_buffersrc_buffer
av_buffersrc_get_nb_failed_requests
av_buffersrc_write_frame
av_filter_next
avfilter_add_matrix
avfilter_af_aconvert
avfilter_af_afifo
avfilter_af_aformat
avfilter_af_amerge
avfilter_af_amix
avfilter_af_anull
avfilter_af_aresample
avfilter_af_asendcmd
avfilter_af_asetnsamples
avfilter_af_asetpts
avfilter_af_asettb
avfilter_af_ashowinfo
avfilter_af_asplit
avfilter_af_astreamsync
avfilter_af_atempo
avfilter_af_channelmap
avfilter_af_channelsplit
avfilter_af_earwax
avfilter_af_ebur128
avfilter_af_join
avfilter_af_pan
avfilter_af_silencedetect
avfilter_af_volume
avfilter_af_volumedetect
avfilter_all_channel_layouts
avfilter_asink_abuffer
avfilter_asink_abuffersink
avfilter_asink_anullsink
avfilter_asink_ffabuffersink
avfilter_asrc_abuffer
avfilter_asrc_aevalsrc
avfilter_asrc_anullsrc
avfilter_avf_concat
avfilter_avf_showspectrum
avfilter_avf_showwaves
avfilter_avsrc_amovie
avfilter_avsrc_movie
avfilter_config_links
avfilter_configuration
avfilter_copy_buf_props
avfilter_copy_buffer_ref_props
avfilter_copy_frame_props
avfilter_fill_frame_from_audio_buffer_ref
avfilter_fill_frame_from_buffer_ref
avfilter_fill_frame_from_video_buffer_ref
avfilter_free
avfilter_get_audio_buffer_ref_from_arrays
avfilter_get_audio_buffer_ref_from_frame
avfilter_get_buffer_ref_from_frame
avfilter_get_by_name
avfilter_get_class
avfilter_get_matrix
avfilter_get_video_buffer_ref_from_arrays
avfilter_get_video_buffer_ref_from_frame
avfilter_graph_add_filter
avfilter_graph_alloc
avfilter_graph_config
avfilter_graph_create_filter
avfilter_graph_dump
avfilter_graph_free
avfilter_graph_get_filter
avfilter_graph_parse
avfilter_graph_parse2
avfilter_graph_queue_command
avfilter_graph_request_oldest
avfilter_graph_send_command
avfilter_graph_set_auto_convert
avfilter_init_filter
avfilter_inout_alloc
avfilter_inout_free
avfilter_insert_filter
avfilter_license
avfilter_link
avfilter_link_free
avfilter_link_set_closed
avfilter_make_format64_list
avfilter_mul_matrix
avfilter_open
avfilter_pad_get_name
avfilter_pad_get_type
avfilter_process_command
avfilter_ref_buffer
avfilter_register
avfilter_register_all
avfilter_sub_matrix
avfilter_transform
avfilter_uninit
avfilter_unref_buffer
avfilter_unref_bufferp
avfilter_version
avfilter_vf_alphaextract
avfilter_vf_alphamerge
avfilter_vf_ass
avfilter_vf_bbox
avfilter_vf_blackdetect
avfilter_vf_blackframe
avfilter_vf_boxblur
avfilter_vf_colormatrix
avfilter_vf_copy
avfilter_vf_crop
avfilter_vf_cropdetect
avfilter_vf_decimate
avfilter_vf_delogo
avfilter_vf_deshake
avfilter_vf_drawbox
avfilter_vf_drawtext
avfilter_vf_edgedetect
avfilter_vf_fade
avfilter_vf_field
avfilter_vf_fieldorder
avfilter_vf_fifo
avfilter_vf_format
avfilter_vf_fps
avfilter_vf_framestep
avfilter_vf_geq
avfilter_vf_gradfun
avfilter_vf_hflip
avfilter_vf_hqdn3d
avfilter_vf_hue
avfilter_vf_idet
avfilter_vf_lut
avfilter_vf_lutrgb
avfilter_vf_lutyuv
avfilter_vf_mp
avfilter_vf_negate
avfilter_vf_noformat
avfilter_vf_null
avfilter_vf_overlay
avfilter_vf_pad
avfilter_vf_pixdesctest
avfilter_vf_removelogo
avfilter_vf_scale
avfilter_vf_select
avfilter_vf_sendcmd
avfilter_vf_setdar
avfilter_vf_setfield
avfilter_vf_setpts
avfilter_vf_setsar
avfilter_vf_settb
avfilter_vf_showinfo
avfilter_vf_slicify
avfilter_vf_smartblur
avfilter_vf_split
avfilter_vf_super2xsai
avfilter_vf_swapuv
avfilter_vf_thumbnail
avfilter_vf_tile
avfilter_vf_tinterlace
avfilter_vf_transpose
avfilter_vf_unsharp
avfilter_vf_vflip
avfilter_vf_yadif
avfilter_vsink_buffer
avfilter_vsink_buffersink
avfilter_vsink_ffbuffersink
avfilter_vsink_nullsink
avfilter_vsrc_buffer
avfilter_vsrc_cellauto
avfilter_vsrc_color
avfilter_vsrc_life
avfilter_vsrc_mandelbrot
avfilter_vsrc_mptestsrc
avfilter_vsrc_nullsrc
avfilter_vsrc_rgbtestsrc
avfilter_vsrc_smptebars
avfilter_vsrc_testsrc
ff_default_query_formats

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 344KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 26KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avformat-54.dll
.dll windows:4 windows x86 arch:x86

c56d7f29defa8cf45f8d803c3e4210bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

DeregisterEventSource
RegisterEventSourceA
ReportEventA

avifil32

AVIFileExit
AVIFileGetStream
AVIFileInfoA
AVIFileInit
AVIFileOpenA
AVIFileRelease
AVIStreamInfoA
AVIStreamRead
AVIStreamReadFormat
AVIStreamRelease

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
DeleteDC
DeleteObject
GetBitmapBits
GetDeviceCaps
GetObjectA
SelectObject

kernel32

CloseHandle
DeleteCriticalSection
EnterCriticalSection
FindClose
FindFirstFileA
FindNextFileA
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GetVersionExA
GlobalMemoryStatus
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

_close
_fdopen
_fileno
_open
_read
_rmdir
_setmode
_strdup
_unlink
_write
__dllonexit
__mb_cur_max
_amsg_exit
_errno
_exit
_fileno
_fstati64
_ftime
_getch
_initterm
_iob
_lock
_lseeki64
_mkdir
_onexit
_setmode
_sopen
_stat
_stati64
_stricmp
_strnicmp
isxdigit
localeconv
localtime
malloc
memchr
memcmp
memcpy
memmove
memset
mktime
printf
putc
qsort
raise
rand
realloc
rename
setlocale
signal
sprintf
sscanf
strcat
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncmp
strncpy
strrchr
strspn
strstr
strtol
strtoul
_unlock
_vsnprintf
_wfopen
_wsopen
abort
atoi
bsearch
calloc
exit
fclose
feof
ferror
fflush
fgetc
fgetpos
fgets
fopen
fprintf
fputc
fputs
fread
free
fseek
ftell
fwrite
getc
getenv
gmtime
isalnum
islower
isprint
isspace
isupper
time
tolower
toupper
ungetc
vfprintf
wcslen
wcsstr

user32

GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA

winmm

timeGetTime

ws2_32

WSACleanup
WSAGetLastError
WSASetLastError
WSAStartup
__WSAFDIsSet
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostbyname
gethostname
getnameinfo
getpeername
getsockname
getsockopt
htonl
htons
inet_addr
ioctlsocket
listen
ntohl
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

avcodec-54

av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_codec_get_codec_descriptor
av_codec_set_codec_descriptor
av_codec_set_pkt_timebase
av_destruct_packet
av_dup_packet
av_fast_malloc
av_fast_padded_malloc
av_fast_realloc
av_free_packet
av_get_audio_frame_duration
av_get_bits_per_sample
av_get_codec_tag_string
av_grow_packet
av_init_packet
av_log_ask_for_sample
av_log_missing_feature
av_new_packet
av_packet_get_side_data
av_packet_merge_side_data
av_packet_new_side_data
av_parser_close
av_parser_init
av_parser_parse2
av_shrink_packet
av_xiphlacing
avcodec_alloc_context3
avcodec_alloc_frame
avcodec_close
avcodec_copy_context
avcodec_decode_audio4
avcodec_decode_subtitle2
avcodec_decode_video2
avcodec_descriptor_get
avcodec_find_decoder
avcodec_find_encoder
avcodec_free_frame
avcodec_get_chroma_sub_sample
avcodec_get_frame_defaults
avcodec_get_name
avcodec_get_type
avcodec_is_open
avcodec_open2
avcodec_pix_fmt_to_codec_tag
avcodec_register_all
avcodec_set_dimensions
avcodec_string
avpicture_get_size
avpriv_aac_parse_header
avpriv_ac3_channel_layout_tab
avpriv_ac3_parse_header
avpriv_adx_decode_header
avpriv_align_put_bits
avpriv_copy_bits
avpriv_copy_pce_data
avpriv_dca_sample_rates
avpriv_dirac_parse_sequence_header
avpriv_dv_codec_profile
avpriv_dv_frame_profile
avpriv_flac_is_extradata_valid
avpriv_flac_parse_block_header
avpriv_flac_parse_streaminfo
avpriv_h264_has_num_reorder_frames
avpriv_lock_avformat
avpriv_mjpeg_bits_ac_chrominance
avpriv_mjpeg_bits_ac_luminance
avpriv_mjpeg_bits_dc_chrominance
avpriv_mjpeg_bits_dc_luminance
avpriv_mjpeg_val_ac_chrominance
avpriv_mjpeg_val_ac_luminance
avpriv_mjpeg_val_dc
avpriv_mpa_bitrate_tab
avpriv_mpa_decode_header
avpriv_mpa_freq_tab
avpriv_mpeg4audio_get_config
avpriv_mpeg4audio_sample_rates
avpriv_mpegaudio_decode_header
avpriv_mpv_find_start_code
avpriv_split_xiph_headers
avpriv_tak_parse_streaminfo
avpriv_toupper4
avpriv_unlock_avformat
avpriv_vorbis_parse_extradata
avpriv_vorbis_parse_frame
avpriv_vorbis_parse_reset
ff_dnxhd_cid_table
ff_dnxhd_get_cid_table
ff_find_pix_fmt
ff_raw_pix_fmt_tags

avutil-52

av_adler32_update
av_aes_alloc
av_aes_crypt
av_aes_init
av_base64_decode
av_base64_encode
av_bprint_chars
av_bprint_clear
av_bprint_finalize
av_bprint_init
av_bprintf
av_calloc
av_compare_mod
av_compare_ts
av_crc
av_crc_get_table
av_d2q
av_default_item_name
av_des_crypt
av_des_init
av_des_mac
av_dict_copy
av_dict_count
av_dict_free
av_dict_get
av_dict_set
av_div_q
av_dynarray_add
av_fifo_alloc
av_fifo_drain
av_fifo_free
av_fifo_generic_read
av_fifo_generic_write
av_fifo_realloc2
av_fifo_size
av_find_info_tag
av_free
av_freep
av_gcd
av_get_bytes_per_sample
av_get_channel_layout_nb_channels
av_get_media_type_string
av_get_pix_fmt
av_get_pix_fmt_name
av_get_random_seed
av_gettime
av_image_check_size
av_lfg_init
av_log
av_log_get_level
av_lzo1x_decode
av_malloc
av_mallocz
av_md5_alloc
av_md5_final
av_md5_init
av_md5_sum
av_md5_update
av_mul_q
av_opt_flag_is_set
av_opt_free
av_opt_get
av_opt_get_int
av_opt_set
av_opt_set_defaults
av_opt_set_dict
av_parse_time
av_parse_video_rate
av_parse_video_size
av_pix_fmt_desc_get
av_rc4_crypt
av_rc4_init
av_realloc
av_realloc_f
av_reduce
av_rescale
av_rescale_q
av_rescale_q_rnd
av_rescale_rnd
av_small_strptime
av_strcasecmp
av_strdup
av_strerror
av_stristart
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strncasecmp
av_strstart
av_strtok
av_tempfile
av_timecode_check_frame_rate
av_timecode_get_smpte_from_framenum
av_timecode_init
av_timecode_init_from_string
av_timecode_make_smpte_tc_string
av_timecode_make_string
av_timegm
av_tree_destroy
av_tree_enumerate
av_tree_find
av_tree_insert
av_tree_node_alloc
av_usleep
av_vlog

Exports

Exports

av_add_index_entry
av_append_packet
av_close_input_file
av_codec_get_id
av_codec_get_tag
av_convert_lang_to
av_demuxer_open
av_dump_format
av_filename_number_test
av_find_best_stream
av_find_default_stream_index
av_find_input_format
av_find_program_from_stream
av_find_stream_info
av_fmt_ctx_get_duration_estimation_method
av_get_frame_filename
av_get_output_timestamp
av_get_packet
av_gettime@LIBAVFORMAT_54
av_guess_codec
av_guess_format
av_guess_sample_aspect_ratio
av_hex_dump
av_hex_dump_log
av_iformat_next
av_index_search_timestamp
av_interleave_packet_per_dts
av_interleaved_write_frame
av_match_ext
av_new_program
av_new_stream
av_oformat_next
av_pkt_dump2
av_pkt_dump_log2
av_probe_input_buffer
av_probe_input_format
av_probe_input_format2
av_probe_input_format3
av_read_frame
av_read_packet
av_read_pause
av_read_play
av_register_all
av_register_input_format
av_register_output_format
av_register_rdt_dynamic_payload_handlers
av_register_rtp_dynamic_payload_handlers
av_sdp_create
av_seek_frame
av_set_pts_info
av_url_split
av_write_frame
av_write_trailer
avformat_alloc_context
avformat_alloc_output_context
avformat_alloc_output_context2
avformat_close_input
avformat_configuration
avformat_find_stream_info
avformat_free_context
avformat_get_class
avformat_get_riff_audio_tags
avformat_get_riff_video_tags
avformat_license
avformat_match_stream_specifier
avformat_network_deinit
avformat_network_init
avformat_new_stream
avformat_open_input
avformat_query_codec
avformat_queue_attached_pictures
avformat_seek_file
avformat_version
avformat_write_header
avio_alloc_context
avio_check
avio_close
avio_close_dyn_buf
avio_closep
avio_enum_protocols
avio_flush
avio_get_str
avio_get_str16be
avio_get_str16le
avio_open
avio_open2
avio_open_dyn_buf
avio_pause
avio_printf
avio_put_str
avio_put_str16le
avio_r8
avio_rb16
avio_rb24
avio_rb32
avio_rb64
avio_read
avio_rl16
avio_rl24
avio_rl32
avio_rl64
avio_seek
avio_seek_time
avio_size
avio_skip
avio_w8
avio_wb16
avio_wb24
avio_wb32
avio_wb64
avio_wl16
avio_wl24
avio_wl32
avio_wl64
avio_write
avpriv_dv_get_packet
avpriv_dv_init_demux
avpriv_dv_produce_packet
avpriv_new_chapter
avpriv_set_pts_info
ff_inet_aton
ff_mpegts_parse_close
ff_mpegts_parse_open
ff_mpegts_parse_packet
ff_rtp_get_local_rtcp_port
ff_rtp_get_local_rtp_port
ff_rtsp_parse_line
ff_socket_nonblock
ffio_open_dyn_packet_buf
ffio_set_buf_size
ffurl_close
ffurl_open
ffurl_protocol_next
ffurl_read_complete
ffurl_seek
ffurl_size
ffurl_write
get_crc_table
url_feof

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 398KB - Virtual size: 398KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
avutil-52.dll
.dll windows:4 windows x86 arch:x86

8b40e0c10cf825582424578dcd91b64a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

CryptAcquireContextA
CryptGenRandom
CryptReleaseContext

kernel32

CloseHandle
CreateEventA
CreateFileMappingA
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
GetConsoleScreenBufferInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetHandleInformation
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetStdHandle
GetSystemTimeAsFileTime
GetThreadContext
GetThreadPriority
GetTickCount
GetTimeZoneInformation
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MapViewOfFile
MultiByteToWideChar
QueryPerformanceCounter
ReleaseSemaphore
ResetEvent
ResumeThread
SetConsoleTextAttribute
SetEvent
SetLastError
SetProcessAffinityMask
SetThreadContext
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SuspendThread
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte

msvcrt

_close
_isatty
_open
_read
_tempnam
__dllonexit
__mb_cur_max
__setusermatherr
_aligned_free
_aligned_malloc
_aligned_realloc
_amsg_exit
_beginthreadex
_endthreadex
_errno
_fstati64
_ftime
_get_osfhandle
_initterm
_iob
_lock
_onexit
_setjmp3
isxdigit
localeconv
localtime
longjmp
malloc
memcmp
memcpy
memmove
memset
mktime
realloc
setlocale
sinh
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncmp
strspn
strtol
strtoul
_unlock
abort
acos
asin
atan
atoi
bsearch
calloc
clock
cosh
fprintf
fputc
fputs
free
frexp
getc
getenv
gmtime
islower
isspace
isupper
tan
tanh
time
tolower
toupper
ungetc
wcslen

Exports

Exports

av_add_q
av_adler32_update
av_aes_alloc
av_aes_crypt
av_aes_init
av_aes_size
av_asprintf
av_audio_fifo_alloc
av_audio_fifo_drain
av_audio_fifo_free
av_audio_fifo_read
av_audio_fifo_realloc
av_audio_fifo_reset
av_audio_fifo_size
av_audio_fifo_space
av_audio_fifo_write
av_base64_decode
av_base64_encode
av_blowfish_crypt
av_blowfish_crypt_ecb
av_blowfish_init
av_bmg_get
av_bprint_channel_layout
av_bprint_chars
av_bprint_clear
av_bprint_finalize
av_bprint_get_buffer
av_bprint_init
av_bprint_init_for_buffer
av_bprint_strftime
av_bprintf
av_calloc
av_channel_layout_extract_channel
av_compare_mod
av_compare_ts
av_crc
av_crc_get_table
av_crc_init
av_ctz
av_d2q
av_d2str
av_dbl2ext
av_dbl2int
av_default_get_category
av_default_item_name
av_des_crypt
av_des_init
av_des_mac
av_dict_copy
av_dict_count
av_dict_free
av_dict_get
av_dict_set
av_div_q
av_dynarray_add
av_evaluate_lls
av_expr_eval
av_expr_free
av_expr_parse
av_expr_parse_and_eval
av_ext2dbl
av_fifo_alloc
av_fifo_drain
av_fifo_free
av_fifo_generic_read
av_fifo_generic_write
av_fifo_grow
av_fifo_realloc2
av_fifo_reset
av_fifo_size
av_fifo_space
av_file_map
av_file_unmap
av_find_info_tag
av_find_nearest_q_idx
av_find_opt
av_flt2int
av_force_cpu_flags
av_free
av_freep
av_gcd
av_get_alt_sample_fmt
av_get_bits_per_pixel
av_get_bits_per_sample_fmt
av_get_bytes_per_sample
av_get_channel_description
av_get_channel_layout
av_get_channel_layout_channel_index
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_channel_name
av_get_cpu_flags
av_get_default_channel_layout
av_get_double
av_get_int
av_get_media_type_string
av_get_packed_sample_fmt
av_get_padded_bits_per_pixel
av_get_picture_type_char
av_get_pix_fmt
av_get_pix_fmt_name
av_get_pix_fmt_string
av_get_planar_sample_fmt
av_get_q
av_get_random_seed
av_get_sample_fmt
av_get_sample_fmt_name
av_get_sample_fmt_string
av_get_standard_channel_layout
av_get_string
av_get_token
av_gettime
av_image_alloc
av_image_check_size
av_image_copy
av_image_copy_plane
av_image_copy_to_buffer
av_image_fill_arrays
av_image_fill_linesizes
av_image_fill_max_pixsteps
av_image_fill_pointers
av_image_get_buffer_size
av_image_get_linesize
av_init_lls
av_int2dbl
av_int2flt
av_lfg_init
av_log
av_log2
av_log2_16bit
av_log_default_callback
av_log_format_line
av_log_get_level
av_log_set_callback
av_log_set_flags
av_log_set_level
av_lzo1x_decode
av_malloc
av_mallocz
av_max_alloc
av_md5_alloc
av_md5_final
av_md5_init
av_md5_size
av_md5_sum
av_md5_update
av_memcpy_backptr
av_mul_q
av_nearer_q
av_next_option
av_opt_child_class_next
av_opt_child_next
av_opt_eval_double
av_opt_eval_flags
av_opt_eval_float
av_opt_eval_int
av_opt_eval_int64
av_opt_eval_q
av_opt_find
av_opt_find2
av_opt_flag_is_set
av_opt_free
av_opt_get
av_opt_get_double
av_opt_get_image_size
av_opt_get_int
av_opt_get_key_value
av_opt_get_pixel_fmt
av_opt_get_q
av_opt_get_sample_fmt
av_opt_next
av_opt_ptr
av_opt_set
av_opt_set_bin
av_opt_set_defaults
av_opt_set_defaults2
av_opt_set_dict
av_opt_set_double
av_opt_set_from_string
av_opt_set_image_size
av_opt_set_int
av_opt_set_pixel_fmt
av_opt_set_q
av_opt_set_sample_fmt
av_opt_show2
av_parse_color
av_parse_cpu_caps
av_parse_cpu_flags
av_parse_ratio
av_parse_time
av_parse_video_rate
av_parse_video_size
av_pix_fmt_desc_get
av_pix_fmt_desc_get_id
av_pix_fmt_desc_next
av_pix_fmt_descriptors
av_pix_fmt_get_chroma_sub_sample
av_rc4_crypt
av_rc4_init
av_read_image_line
av_realloc
av_realloc_f
av_reduce
av_rescale
av_rescale_delta
av_rescale_q
av_rescale_q_rnd
av_rescale_rnd
av_reverse
av_sample_fmt_is_planar
av_samples_alloc
av_samples_copy
av_samples_fill_arrays
av_samples_get_buffer_size
av_samples_set_silence
av_set_cpu_flags_mask
av_set_double
av_set_int
av_set_options_string
av_set_q
av_set_string3
av_sha_alloc
av_sha_final
av_sha_init
av_sha_size
av_sha_update
av_small_strptime
av_solve_lls
av_strcasecmp
av_strdup
av_strerror
av_stristart
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strncasecmp
av_strstart
av_strtod
av_strtok
av_sub_q
av_tempfile
av_timecode_adjust_ntsc_framenum2
av_timecode_check_frame_rate
av_timecode_get_smpte_from_framenum
av_timecode_init
av_timecode_init_from_string
av_timecode_make_mpeg_tc_string
av_timecode_make_smpte_tc_string
av_timecode_make_string
av_timegm
av_tree_destroy
av_tree_enumerate
av_tree_find
av_tree_insert
av_tree_node_alloc
av_tree_node_size
av_update_lls
av_usleep
av_vlog
av_write_image_line
av_xtea_crypt
av_xtea_init
avpriv_cga_font
avpriv_float_dsp_init
avpriv_set_systematic_pal2
avpriv_vga16_font
avutil_configuration
avutil_license
avutil_version
ff_cpu_cpuid
ff_cpu_cpuid_test
ff_cpu_xgetbv
ff_float_dsp_init_x86
ff_get_cpu_flags_x86
ff_log2_tab
ff_vector_fmac_scalar_avx
ff_vector_fmac_scalar_sse
ff_vector_fmul_avx
ff_vector_fmul_sse

Sections

.text
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
az7z.dll
.dll windows:4 windows x86 arch:x86

08a50ed330b8fbf2f27ee9f915892572

Code Sign

01
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

01/08/1996, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

0a
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

06/08/2003, 00:00

Not After

05/08/2013, 23:59

Subject

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

21:16:70:cb:fb:60:6d:88:a3:6b:c9:83:1d:01:9a:bd
Certificate

Issuer

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Not Before

10/11/2006, 08:23

Not After

30/11/2008, 05:31

Subject

CN=ESTsoft Corp.,OU=Development Department,O=ESTsoft Corp.,L=SEOUL,ST=GYEONGGI-DO,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\ALTOOLS\Product\ALZip\7-Zip\7-Zip\7-Zip32\src\Release\az7z.pdb

Imports

kernel32

GetVersionExA
DeleteFileA
DeleteFileW
CloseHandle
GetExitCodeThread
WaitForSingleObject
SetCurrentDirectoryA
GetCurrentDirectoryA
GetCurrentProcessId
ResumeThread
lstrcpynA
FileTimeToDosDateTime
FileTimeToLocalFileTime
SetFileApisToANSI
AreFileApisANSI
FileTimeToSystemTime
FindClose
FindFirstFileA
GetLastError
GlobalFree
GlobalReAlloc
GlobalAlloc
GetTempFileNameA
GetTempPathA
GetTempFileNameW
GetTempPathW
CompareStringA
MultiByteToWideChar
WideCharToMultiByte
CompareStringW
FreeLibrary
LoadLibraryExA
LoadLibraryA
LoadLibraryExW
LoadLibraryW
GetModuleFileNameA
GetModuleFileNameW
LocalFree
FormatMessageA
FormatMessageW
SetFileAttributesA
MoveFileA
RemoveDirectoryA
CreateDirectoryA
GetWindowsDirectoryA
GetSystemDirectoryA
GetWindowsDirectoryW
GetSystemDirectoryW
SetFileAttributesW
RemoveDirectoryW
MoveFileW
CreateDirectoryW
GetShortPathNameA
lstrlenA
GetFullPathNameA
SetCurrentDirectoryW
GetCurrentDirectoryW
SearchPathA
GetFullPathNameW
SearchPathW
FindCloseChangeNotification
FindFirstChangeNotificationA
FindFirstFileW
SetLastError
FindNextFileA
FindNextFileW
FindFirstChangeNotificationW
GetLogicalDriveStringsA
CreateFileA
GetFileSize
SetFilePointer
GetFileInformationByHandle
ReadFile
SetFileTime
WriteFile
SetEndOfFile
CreateFileW
CompareFileTime
CreateEventA
SetEvent
EnterCriticalSection
LeaveCriticalSection
ResetEvent
WaitForMultipleObjects
VirtualFree
VirtualAlloc
CreateThread
InitializeCriticalSection
DeleteCriticalSection
DosDateTimeToFileTime
LocalFileTimeToFileTime
GetDriveTypeA
GetTickCount
SetFileApisToOEM
lstrcatA
GetLocaleInfoW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
SetEnvironmentVariableA
LCMapStringW
LCMapStringA
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
InterlockedExchange
SetConsoleCtrlHandler
FlushFileBuffers
GetConsoleMode
GetConsoleCP
GetStartupInfoA
GetFileType
SetHandleCount
HeapSize
GetTimeZoneInformation
GetStdHandle
HeapCreate
HeapDestroy
HeapReAlloc
FatalAppExitA
Sleep
GetCurrentThread
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetProcessHeap
GetCommandLineA
ExitProcess
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitThread
GetCurrentThreadId
HeapAlloc
RaiseException
RtlUnwind
HeapFree

user32

GetLastActivePopup
GetWindow
GetWindowThreadProcessId
CharPrevExA
wsprintfA
CharPrevA
CharToOemA
CharLowerW
CharUpperW
CharLowerA
CharUpperA
CharNextA
RegisterWindowMessageA
InvalidateRect
EndDialog
EnumWindows
GetDlgItem
GetWindowTextLengthW
GetDlgItemTextW
GetWindowTextLengthA
GetDlgItemTextA
SetDlgItemTextW
DestroyWindow
SetDlgItemTextA
SendMessageA
LoadStringA
SetWindowTextA
SendDlgItemMessageA
ShowWindow
EnableWindow
DialogBoxParamW
DialogBoxParamA
CreateDialogParamW
GetDesktopWindow
GetWindowRect
SystemParametersInfoA
SetWindowPos
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
PostMessageA
SetWindowLongA
GetWindowLongA
CreateDialogParamA

ole32

CoUninitialize
CoInitialize

oleaut32

SysAllocStringLen
SysStringLen
VariantChangeType
VariantCopy
VariantClear
SysStringByteLen
SysAllocStringByteLen
SysFreeString
SysAllocString

Exports

Exports

SevenZip
SevenZip2
SevenZip3
SevenZipCloseArchive
SevenZipFindFirst
SevenZipFindNext
SevenZipOpenArchive

Sections

.text
Size: 513KB - Virtual size: 512KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cabinet.dll
.dll windows:5 windows x86 arch:x86

9265de4279ec2b9cc932b695004ba8dd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_DLL

PDB Paths

cabinet.pdb

Imports

kernel32

DeleteCriticalSection
DisableThreadLibraryCalls
CreateFileA
ReadFile
WriteFile
CloseHandle
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
lstrcmpiA
lstrlenA
CreateDirectoryA
SetFileAttributesA
GetLastError
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteFileA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter

ole32

CoTaskMemFree
CoTaskMemAlloc

Exports

Exports

DeleteExtractedFiles
DllGetVersion
Extract
FCIAddFile
FCICreate
FCIDestroy
FCIFlushCabinet
FCIFlushFolder
FDICopy
FDICreate
FDIDestroy
FDIIsCabinet
FDITruncateCabinet
GetDllVersion

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
calMbc.dll
.dll windows:4 windows x86 arch:x86

83be0c2305f3dc645f80ef424342afe1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\Hans\Documents\Visual Studio Projects\calMbc\Release\calMbc.pdb

Imports

kernel32

GlobalFindAtomA
GlobalGetAtomNameA
GetCPInfo
GetOEMCP
ExitProcess
GetSystemTimeAsFileTime
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCommandLineA
TerminateProcess
HeapReAlloc
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
lstrcmpW
VirtualFree
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
RaiseException
GlobalFlags
InterlockedIncrement
WritePrivateProfileStringA
SetErrorMode
lstrcatA
InterlockedDecrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
GetCurrentProcess
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CloseHandle
GlobalAddAtomA
SetLastError
GlobalFree
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
GetCurrentThread
GetCurrentThreadId
GlobalLock
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
LoadLibraryA
HeapAlloc
HeapFree
HeapDestroy
HeapCreate
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
GetLastError
MultiByteToWideChar
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetTimeZoneInformation
InterlockedExchange

user32

RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
IsIconic
GetWindowPlacement
CopyRect
SetWindowPos
ShowWindow
SetWindowLongA
GetDlgItem
LoadCursorA
GetSysColorBrush
ReleaseDC
GetDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetWindowTextA
SetWindowTextA
GetClassNameA
UnregisterClassA
UnhookWindowsHookEx
wsprintfA
GetSystemMetrics
SetMenuItemBitmaps
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
DestroyMenu
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
SendMessageA
SetCursor
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
PostMessageA
PostQuitMessage
GetDesktopWindow
GetSysColor

gdi32

GetStockObject
ExtTextOutA
TextOutA
RectVisible
PtVisible
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
GetDeviceCaps
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
SaveDC
DeleteObject
CreateBitmap
Escape

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegOpenKeyExA
RegQueryValueA
RegOpenKeyA
RegQueryValueExA
RegEnumKeyA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

comctl32

ord17

shlwapi

PathFindExtensionA
PathFindFileNameA

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
VariantClear
VariantChangeType
VariantInit

wininet

InternetQueryOptionA
InternetReadFile
InternetQueryDataAvailable
InternetErrorDlg
HttpSendRequestA
InternetCloseHandle
InternetOpenA
InternetSetOptionA
InternetConnectA
HttpOpenRequestA
HttpQueryInfoA
InternetSetCookieA

ws2_32

gethostbyname
inet_ntoa
WSACleanup
WSAStartup
gethostname

Exports

Exports

SendMBCLog_Filtering
SendMBCLog_Osp

Sections

.text
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ippcore-5.2.dll
.dll windows:4 windows x86 arch:x86

0e7c365b005593db9b28cb78e8ef7598

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libguide40

ord705

kernel32

FreeEnvironmentStringsW
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcAddress
GetModuleHandleA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
InitializeCriticalSection
RtlUnwind
InterlockedExchange
VirtualQuery
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
LCMapStringA
MultiByteToWideChar
LCMapStringW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
HeapSize
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
VirtualProtect
GetSystemInfo

Exports

Exports

ippAlignPtr
ippFree
ippGetCpuClocks
ippGetCpuFreqMhz
ippGetCpuType
ippGetLibVersion
ippGetMaxCacheSizeB
ippGetNumCoresOnDie
ippGetNumThreads
ippGetStatusString
ippMalloc
ippSetDenormAreZeros
ippSetFlushToZero
ippSetNumThreads
ippStaticInit
ippStaticInitCpu
threads_omp_of_n_ipp

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ippi-5.2.dll
.dll windows:4 windows x86 arch:x86

645887943932e0434e30e1c9fa6a9d90

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ippcore-5.2

ippGetCpuType

kernel32

LoadLibraryW
GetProcAddress
LocalFree
GetLastError
FormatMessageW
ExitProcess
GetCurrentThreadId
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetModuleHandleA
TerminateProcess
GetCurrentProcess
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
GetModuleFileNameW
WriteFile
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
SetFilePointer
EnterCriticalSection
LeaveCriticalSection
MultiByteToWideChar
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
SetStdHandle
HeapSize
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
FlushFileBuffers
VirtualProtect
GetSystemInfo
CloseHandle
FreeLibrary
UnhandledExceptionFilter

user32

MessageBoxW
MessageBeep

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

Exports

Exports

ippiAbs_16s_AC4IR
ippiAbs_16s_AC4R
ippiAbs_16s_C1IR
ippiAbs_16s_C1R
ippiAbs_16s_C3IR
ippiAbs_16s_C3R
ippiAbs_16s_C4IR
ippiAbs_16s_C4R
ippiAbs_32f_AC4IR
ippiAbs_32f_AC4R
ippiAbs_32f_C1IR
ippiAbs_32f_C1R
ippiAbs_32f_C3IR
ippiAbs_32f_C3R
ippiAbs_32f_C4IR
ippiAbs_32f_C4R
ippiAddC_16s_AC4IRSfs
ippiAddC_16s_AC4RSfs
ippiAddC_16s_C1IRSfs
ippiAddC_16s_C1RSfs
ippiAddC_16s_C3IRSfs
ippiAddC_16s_C3RSfs
ippiAddC_16s_C4IRSfs
ippiAddC_16s_C4RSfs
ippiAddC_16sc_AC4IRSfs
ippiAddC_16sc_AC4RSfs
ippiAddC_16sc_C1IRSfs
ippiAddC_16sc_C1RSfs
ippiAddC_16sc_C3IRSfs
ippiAddC_16sc_C3RSfs
ippiAddC_16u_AC4IRSfs
ippiAddC_16u_AC4RSfs
ippiAddC_16u_C1IRSfs
ippiAddC_16u_C1RSfs
ippiAddC_16u_C3IRSfs
ippiAddC_16u_C3RSfs
ippiAddC_16u_C4IRSfs
ippiAddC_16u_C4RSfs
ippiAddC_32f_AC4IR
ippiAddC_32f_AC4R
ippiAddC_32f_C1IR
ippiAddC_32f_C1R
ippiAddC_32f_C3IR
ippiAddC_32f_C3R
ippiAddC_32f_C4IR
ippiAddC_32f_C4R
ippiAddC_32fc_AC4IR
ippiAddC_32fc_AC4R
ippiAddC_32fc_C1IR
ippiAddC_32fc_C1R
ippiAddC_32fc_C3IR
ippiAddC_32fc_C3R
ippiAddC_32sc_AC4IRSfs
ippiAddC_32sc_AC4RSfs
ippiAddC_32sc_C1IRSfs
ippiAddC_32sc_C1RSfs
ippiAddC_32sc_C3IRSfs
ippiAddC_32sc_C3RSfs
ippiAddC_8u_AC4IRSfs
ippiAddC_8u_AC4RSfs
ippiAddC_8u_C1IRSfs
ippiAddC_8u_C1RSfs
ippiAddC_8u_C3IRSfs
ippiAddC_8u_C3RSfs
ippiAddC_8u_C4IRSfs
ippiAddC_8u_C4RSfs
ippiAddRandGauss_Direct_16s_AC4IR
ippiAddRandGauss_Direct_16s_C1IR
ippiAddRandGauss_Direct_16s_C3IR
ippiAddRandGauss_Direct_16s_C4IR
ippiAddRandGauss_Direct_16u_AC4IR
ippiAddRandGauss_Direct_16u_C1IR
ippiAddRandGauss_Direct_16u_C3IR
ippiAddRandGauss_Direct_16u_C4IR
ippiAddRandGauss_Direct_32f_AC4IR
ippiAddRandGauss_Direct_32f_C1IR
ippiAddRandGauss_Direct_32f_C3IR
ippiAddRandGauss_Direct_32f_C4IR
ippiAddRandGauss_Direct_8u_AC4IR
ippiAddRandGauss_Direct_8u_C1IR
ippiAddRandGauss_Direct_8u_C3IR
ippiAddRandGauss_Direct_8u_C4IR
ippiAddRandUniform_Direct_16s_AC4IR
ippiAddRandUniform_Direct_16s_C1IR
ippiAddRandUniform_Direct_16s_C3IR
ippiAddRandUniform_Direct_16s_C4IR
ippiAddRandUniform_Direct_16u_AC4IR
ippiAddRandUniform_Direct_16u_C1IR
ippiAddRandUniform_Direct_16u_C3IR
ippiAddRandUniform_Direct_16u_C4IR
ippiAddRandUniform_Direct_32f_AC4IR
ippiAddRandUniform_Direct_32f_C1IR
ippiAddRandUniform_Direct_32f_C3IR
ippiAddRandUniform_Direct_32f_C4IR
ippiAddRandUniform_Direct_8u_AC4IR
ippiAddRandUniform_Direct_8u_C1IR
ippiAddRandUniform_Direct_8u_C3IR
ippiAddRandUniform_Direct_8u_C4IR
ippiAddRotateShift
ippiAdd_16s_AC4IRSfs
ippiAdd_16s_AC4RSfs
ippiAdd_16s_C1IRSfs
ippiAdd_16s_C1RSfs
ippiAdd_16s_C3IRSfs
ippiAdd_16s_C3RSfs
ippiAdd_16s_C4IRSfs
ippiAdd_16s_C4RSfs
ippiAdd_16sc_AC4IRSfs
ippiAdd_16sc_AC4RSfs
ippiAdd_16sc_C1IRSfs
ippiAdd_16sc_C1RSfs
ippiAdd_16sc_C3IRSfs
ippiAdd_16sc_C3RSfs
ippiAdd_16u_AC4IRSfs
ippiAdd_16u_AC4RSfs
ippiAdd_16u_C1IRSfs
ippiAdd_16u_C1RSfs
ippiAdd_16u_C3IRSfs
ippiAdd_16u_C3RSfs
ippiAdd_16u_C4IRSfs
ippiAdd_16u_C4RSfs
ippiAdd_32f_AC4IR
ippiAdd_32f_AC4R
ippiAdd_32f_C1IR
ippiAdd_32f_C1R
ippiAdd_32f_C3IR
ippiAdd_32f_C3R
ippiAdd_32f_C4IR
ippiAdd_32f_C4R
ippiAdd_32fc_AC4IR
ippiAdd_32fc_AC4R
ippiAdd_32fc_C1IR
ippiAdd_32fc_C1R
ippiAdd_32fc_C3IR
ippiAdd_32fc_C3R
ippiAdd_32sc_AC4IRSfs
ippiAdd_32sc_AC4RSfs
ippiAdd_32sc_C1IRSfs
ippiAdd_32sc_C1RSfs
ippiAdd_32sc_C3IRSfs
ippiAdd_32sc_C3RSfs
ippiAdd_8u_AC4IRSfs
ippiAdd_8u_AC4RSfs
ippiAdd_8u_C1IRSfs
ippiAdd_8u_C1RSfs
ippiAdd_8u_C3IRSfs
ippiAdd_8u_C3RSfs
ippiAdd_8u_C4IRSfs
ippiAdd_8u_C4RSfs
ippiAlphaCompC_16u_AC4R
ippiAlphaCompC_16u_AP4R
ippiAlphaCompC_16u_C1R
ippiAlphaCompC_16u_C3R
ippiAlphaCompC_16u_C4R
ippiAlphaCompC_8u_AC4R
ippiAlphaCompC_8u_AP4R
ippiAlphaCompC_8u_C1R
ippiAlphaCompC_8u_C3R
ippiAlphaCompC_8u_C4R
ippiAlphaComp_16u_AC1R
ippiAlphaComp_16u_AC4R
ippiAlphaComp_16u_AP4R
ippiAlphaComp_8u_AC1R
ippiAlphaComp_8u_AC4R
ippiAlphaComp_8u_AP4R
ippiAlphaPremulC_16u_AC4IR
ippiAlphaPremulC_16u_AC4R
ippiAlphaPremulC_16u_AP4IR
ippiAlphaPremulC_16u_AP4R
ippiAlphaPremulC_16u_C1IR
ippiAlphaPremulC_16u_C1R
ippiAlphaPremulC_16u_C3IR
ippiAlphaPremulC_16u_C3R
ippiAlphaPremulC_16u_C4IR
ippiAlphaPremulC_16u_C4R
ippiAlphaPremulC_8u_AC4IR
ippiAlphaPremulC_8u_AC4R
ippiAlphaPremulC_8u_AP4IR
ippiAlphaPremulC_8u_AP4R
ippiAlphaPremulC_8u_C1IR
ippiAlphaPremulC_8u_C1R
ippiAlphaPremulC_8u_C3IR
ippiAlphaPremulC_8u_C3R
ippiAlphaPremulC_8u_C4IR
ippiAlphaPremulC_8u_C4R
ippiAlphaPremul_16u_AC4IR
ippiAlphaPremul_16u_AC4R
ippiAlphaPremul_16u_AP4IR
ippiAlphaPremul_16u_AP4R
ippiAlphaPremul_8u_AC4IR
ippiAlphaPremul_8u_AC4R
ippiAlphaPremul_8u_AP4IR
ippiAlphaPremul_8u_AP4R
ippiAndC_16u_AC4IR
ippiAndC_16u_AC4R
ippiAndC_16u_C1IR
ippiAndC_16u_C1R
ippiAndC_16u_C3IR
ippiAndC_16u_C3R
ippiAndC_16u_C4IR
ippiAndC_16u_C4R
ippiAndC_32s_AC4IR
ippiAndC_32s_AC4R
ippiAndC_32s_C1IR
ippiAndC_32s_C1R
ippiAndC_32s_C3IR
ippiAndC_32s_C3R
ippiAndC_32s_C4IR
ippiAndC_32s_C4R
ippiAndC_8u_AC4IR
ippiAndC_8u_AC4R
ippiAndC_8u_C1IR
ippiAndC_8u_C1R
ippiAndC_8u_C3IR
ippiAndC_8u_C3R
ippiAndC_8u_C4IR
ippiAndC_8u_C4R
ippiAnd_16u_AC4IR
ippiAnd_16u_AC4R
ippiAnd_16u_C1IR
ippiAnd_16u_C1R
ippiAnd_16u_C3IR
ippiAnd_16u_C3R
ippiAnd_16u_C4IR
ippiAnd_16u_C4R
ippiAnd_32s_AC4IR
ippiAnd_32s_AC4R
ippiAnd_32s_C1IR
ippiAnd_32s_C1R
ippiAnd_32s_C3IR
ippiAnd_32s_C3R
ippiAnd_32s_C4IR
ippiAnd_32s_C4R
ippiAnd_8u_AC4IR
ippiAnd_8u_AC4R
ippiAnd_8u_C1IR
ippiAnd_8u_C1R
ippiAnd_8u_C3IR
ippiAnd_8u_C3R
ippiAnd_8u_C4IR
ippiAnd_8u_C4R
ippiCompColorKey_16s_C1R
ippiCompColorKey_16s_C3R
ippiCompColorKey_16s_C4R
ippiCompColorKey_16u_C1R
ippiCompColorKey_16u_C3R
ippiCompColorKey_16u_C4R
ippiCompColorKey_8u_C1R
ippiCompColorKey_8u_C3R
ippiCompColorKey_8u_C4R
ippiCompareC_16s_AC4R
ippiCompareC_16s_C1R
ippiCompareC_16s_C3R
ippiCompareC_16s_C4R
ippiCompareC_16u_AC4R
ippiCompareC_16u_C1R
ippiCompareC_16u_C3R
ippiCompareC_16u_C4R
ippiCompareC_32f_AC4R
ippiCompareC_32f_C1R
ippiCompareC_32f_C3R
ippiCompareC_32f_C4R
ippiCompareC_8u_AC4R
ippiCompareC_8u_C1R
ippiCompareC_8u_C3R
ippiCompareC_8u_C4R
ippiCompareEqualEpsC_32f_AC4R
ippiCompareEqualEpsC_32f_C1R
ippiCompareEqualEpsC_32f_C3R
ippiCompareEqualEpsC_32f_C4R
ippiCompareEqualEps_32f_AC4R
ippiCompareEqualEps_32f_C1R
ippiCompareEqualEps_32f_C3R
ippiCompareEqualEps_32f_C4R
ippiCompare_16s_AC4R
ippiCompare_16s_C1R
ippiCompare_16s_C3R
ippiCompare_16s_C4R
ippiCompare_16u_AC4R
ippiCompare_16u_C1R
ippiCompare_16u_C3R
ippiCompare_16u_C4R
ippiCompare_32f_AC4R
ippiCompare_32f_C1R
ippiCompare_32f_C3R
ippiCompare_32f_C4R
ippiCompare_8u_AC4R
ippiCompare_8u_C1R
ippiCompare_8u_C3R
ippiCompare_8u_C4R
ippiComplement_32s_C1IR
ippiConvFull_16s_AC4R
ippiConvFull_16s_C1R
ippiConvFull_16s_C3R
ippiConvFull_32f_AC4R
ippiConvFull_32f_C1R
ippiConvFull_32f_C3R
ippiConvFull_8u_AC4R
ippiConvFull_8u_C1R
ippiConvFull_8u_C3R
ippiConvValid_16s_AC4R
ippiConvValid_16s_C1R
ippiConvValid_16s_C3R
ippiConvValid_32f_AC4R
ippiConvValid_32f_C1R
ippiConvValid_32f_C3R
ippiConvValid_8u_AC4R
ippiConvValid_8u_C1R
ippiConvValid_8u_C3R
ippiConvert_16s32f_AC4R
ippiConvert_16s32f_C1R
ippiConvert_16s32f_C3R
ippiConvert_16s32f_C4R
ippiConvert_16s32s_AC4R
ippiConvert_16s32s_C1R
ippiConvert_16s32s_C3R
ippiConvert_16s32s_C4R
ippiConvert_16s8u_AC4R
ippiConvert_16s8u_C1R
ippiConvert_16s8u_C3R
ippiConvert_16s8u_C4R
ippiConvert_16u32f_AC4R
ippiConvert_16u32f_C1R
ippiConvert_16u32f_C3R
ippiConvert_16u32f_C4R
ippiConvert_16u32s_AC4R
ippiConvert_16u32s_C1R
ippiConvert_16u32s_C3R
ippiConvert_16u32s_C4R
ippiConvert_16u8u_AC4R
ippiConvert_16u8u_C1R
ippiConvert_16u8u_C3R
ippiConvert_16u8u_C4R
ippiConvert_1u8u_C1R
ippiConvert_32f16s_AC4R
ippiConvert_32f16s_C1R
ippiConvert_32f16s_C3R
ippiConvert_32f16s_C4R
ippiConvert_32f16u_AC4R
ippiConvert_32f16u_C1R
ippiConvert_32f16u_C3R
ippiConvert_32f16u_C4R
ippiConvert_32f8s_AC4R
ippiConvert_32f8s_C1R
ippiConvert_32f8s_C3R
ippiConvert_32f8s_C4R
ippiConvert_32f8u_AC4R
ippiConvert_32f8u_C1R
ippiConvert_32f8u_C3R
ippiConvert_32f8u_C4R
ippiConvert_32s8s_AC4R
ippiConvert_32s8s_C1R
ippiConvert_32s8s_C3R
ippiConvert_32s8s_C4R
ippiConvert_32s8u_AC4R
ippiConvert_32s8u_C1R
ippiConvert_32s8u_C3R
ippiConvert_32s8u_C4R
ippiConvert_8s32f_AC4R
ippiConvert_8s32f_C1R
ippiConvert_8s32f_C3R
ippiConvert_8s32f_C4R
ippiConvert_8s32s_AC4R
ippiConvert_8s32s_C1R
ippiConvert_8s32s_C3R
ippiConvert_8s32s_C4R
ippiConvert_8u16s_AC4R
ippiConvert_8u16s_C1R
ippiConvert_8u16s_C3R
ippiConvert_8u16s_C4R
ippiConvert_8u16u_AC4R
ippiConvert_8u16u_C1R
ippiConvert_8u16u_C3R
ippiConvert_8u16u_C4R
ippiConvert_8u1u_C1R
ippiConvert_8u32f_AC4R
ippiConvert_8u32f_C1R
ippiConvert_8u32f_C3R
ippiConvert_8u32f_C4R
ippiConvert_8u32s_AC4R
ippiConvert_8u32s_C1R
ippiConvert_8u32s_C3R
ippiConvert_8u32s_C4R
ippiCopyConstBorder_16s_AC4R
ippiCopyConstBorder_16s_C1R
ippiCopyConstBorder_16s_C3R
ippiCopyConstBorder_16s_C4R
ippiCopyConstBorder_16u_AC4R
ippiCopyConstBorder_16u_C1R
ippiCopyConstBorder_16u_C3R
ippiCopyConstBorder_16u_C4R
ippiCopyConstBorder_32s_AC4R
ippiCopyConstBorder_32s_C1R
ippiCopyConstBorder_32s_C3R
ippiCopyConstBorder_32s_C4R
ippiCopyConstBorder_8u_AC4R
ippiCopyConstBorder_8u_C1R
ippiCopyConstBorder_8u_C3R
ippiCopyConstBorder_8u_C4R
ippiCopyReplicateBorder_16s_AC4IR
ippiCopyReplicateBorder_16s_AC4R
ippiCopyReplicateBorder_16s_C1IR
ippiCopyReplicateBorder_16s_C1R
ippiCopyReplicateBorder_16s_C3IR
ippiCopyReplicateBorder_16s_C3R
ippiCopyReplicateBorder_16s_C4IR
ippiCopyReplicateBorder_16s_C4R
ippiCopyReplicateBorder_16u_AC4IR
ippiCopyReplicateBorder_16u_AC4R
ippiCopyReplicateBorder_16u_C1IR
ippiCopyReplicateBorder_16u_C1R
ippiCopyReplicateBorder_16u_C3IR
ippiCopyReplicateBorder_16u_C3R
ippiCopyReplicateBorder_16u_C4IR
ippiCopyReplicateBorder_16u_C4R
ippiCopyReplicateBorder_32s_AC4IR
ippiCopyReplicateBorder_32s_AC4R
ippiCopyReplicateBorder_32s_C1IR
ippiCopyReplicateBorder_32s_C1R
ippiCopyReplicateBorder_32s_C3IR
ippiCopyReplicateBorder_32s_C3R
ippiCopyReplicateBorder_32s_C4IR
ippiCopyReplicateBorder_32s_C4R
ippiCopyReplicateBorder_8u_AC4IR
ippiCopyReplicateBorder_8u_AC4R
ippiCopyReplicateBorder_8u_C1IR
ippiCopyReplicateBorder_8u_C1R
ippiCopyReplicateBorder_8u_C3IR
ippiCopyReplicateBorder_8u_C3R
ippiCopyReplicateBorder_8u_C4IR
ippiCopyReplicateBorder_8u_C4R
ippiCopyWrapBorder_32s_C1IR
ippiCopyWrapBorder_32s_C1R
ippiCopy_16s_AC4C3R
ippiCopy_16s_AC4MR
ippiCopy_16s_AC4R
ippiCopy_16s_C1C3R
ippiCopy_16s_C1C4R
ippiCopy_16s_C1MR
ippiCopy_16s_C1R
ippiCopy_16s_C3AC4R
ippiCopy_16s_C3C1R
ippiCopy_16s_C3CR
ippiCopy_16s_C3MR
ippiCopy_16s_C3P3R
ippiCopy_16s_C3R
ippiCopy_16s_C4C1R
ippiCopy_16s_C4CR
ippiCopy_16s_C4MR
ippiCopy_16s_C4P4R
ippiCopy_16s_C4R
ippiCopy_16s_P3C3R
ippiCopy_16s_P4C4R
ippiCopy_16u_AC4C3R
ippiCopy_16u_AC4MR
ippiCopy_16u_AC4R
ippiCopy_16u_C1C3R
ippiCopy_16u_C1C4R
ippiCopy_16u_C1MR
ippiCopy_16u_C1R
ippiCopy_16u_C3AC4R
ippiCopy_16u_C3C1R
ippiCopy_16u_C3CR
ippiCopy_16u_C3MR
ippiCopy_16u_C3P3R
ippiCopy_16u_C3R
ippiCopy_16u_C4C1R
ippiCopy_16u_C4CR
ippiCopy_16u_C4MR
ippiCopy_16u_C4P4R
ippiCopy_16u_C4R
ippiCopy_16u_P3C3R
ippiCopy_16u_P4C4R
ippiCopy_32f_AC4C3R
ippiCopy_32f_AC4MR
ippiCopy_32f_AC4R
ippiCopy_32f_C1C3R
ippiCopy_32f_C1C4R
ippiCopy_32f_C1MR
ippiCopy_32f_C1R
ippiCopy_32f_C3AC4R
ippiCopy_32f_C3C1R
ippiCopy_32f_C3CR
ippiCopy_32f_C3MR
ippiCopy_32f_C3P3R
ippiCopy_32f_C3R
ippiCopy_32f_C4C1R
ippiCopy_32f_C4CR
ippiCopy_32f_C4MR
ippiCopy_32f_C4P4R
ippiCopy_32f_C4R
ippiCopy_32f_P3C3R
ippiCopy_32f_P4C4R
ippiCopy_32s_AC4C3R
ippiCopy_32s_AC4MR
ippiCopy_32s_AC4R
ippiCopy_32s_C1C3R
ippiCopy_32s_C1C4R
ippiCopy_32s_C1MR
ippiCopy_32s_C1R

Sections

.text
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ippipx-5.2.dll
.dll windows:4 windows x86 arch:x86

708a9f843202588e00b0e24812a08533

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ippcore-5.2

threads_omp_of_n_ipp

libguide40

ord707
ord136
ord106
ord124
ord706
ord135
ord126
ord150
ord138
ord148
ord145
ord141
ord144

kernel32

FreeEnvironmentStringsA
GetSystemInfo
VirtualProtect
SetStdHandle
SetFilePointer
CloseHandle
GetStringTypeW
GetStringTypeA
ExitProcess
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapAlloc
HeapReAlloc
HeapFree
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
VirtualAlloc
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
FlushFileBuffers
LCMapStringA
MultiByteToWideChar
LCMapStringW
HeapSize
GetLocaleInfoA

Exports

Exports

ippiAbs_16s_AC4IR
ippiAbs_16s_AC4R
ippiAbs_16s_C1IR
ippiAbs_16s_C1R
ippiAbs_16s_C3IR
ippiAbs_16s_C3R
ippiAbs_16s_C4IR
ippiAbs_16s_C4R
ippiAbs_32f_AC4IR
ippiAbs_32f_AC4R
ippiAbs_32f_C1IR
ippiAbs_32f_C1R
ippiAbs_32f_C3IR
ippiAbs_32f_C3R
ippiAbs_32f_C4IR
ippiAbs_32f_C4R
ippiAddC_16s_AC4IRSfs
ippiAddC_16s_AC4RSfs
ippiAddC_16s_C1IRSfs
ippiAddC_16s_C1RSfs
ippiAddC_16s_C3IRSfs
ippiAddC_16s_C3RSfs
ippiAddC_16s_C4IRSfs
ippiAddC_16s_C4RSfs
ippiAddC_16sc_AC4IRSfs
ippiAddC_16sc_AC4RSfs
ippiAddC_16sc_C1IRSfs
ippiAddC_16sc_C1RSfs
ippiAddC_16sc_C3IRSfs
ippiAddC_16sc_C3RSfs
ippiAddC_16u_AC4IRSfs
ippiAddC_16u_AC4RSfs
ippiAddC_16u_C1IRSfs
ippiAddC_16u_C1RSfs
ippiAddC_16u_C3IRSfs
ippiAddC_16u_C3RSfs
ippiAddC_16u_C4IRSfs
ippiAddC_16u_C4RSfs
ippiAddC_32f_AC4IR
ippiAddC_32f_AC4R
ippiAddC_32f_C1IR
ippiAddC_32f_C1R
ippiAddC_32f_C3IR
ippiAddC_32f_C3R
ippiAddC_32f_C4IR
ippiAddC_32f_C4R
ippiAddC_32fc_AC4IR
ippiAddC_32fc_AC4R
ippiAddC_32fc_C1IR
ippiAddC_32fc_C1R
ippiAddC_32fc_C3IR
ippiAddC_32fc_C3R
ippiAddC_32sc_AC4IRSfs
ippiAddC_32sc_AC4RSfs
ippiAddC_32sc_C1IRSfs
ippiAddC_32sc_C1RSfs
ippiAddC_32sc_C3IRSfs
ippiAddC_32sc_C3RSfs
ippiAddC_8u_AC4IRSfs
ippiAddC_8u_AC4RSfs
ippiAddC_8u_C1IRSfs
ippiAddC_8u_C1RSfs
ippiAddC_8u_C3IRSfs
ippiAddC_8u_C3RSfs
ippiAddC_8u_C4IRSfs
ippiAddC_8u_C4RSfs
ippiAddRandGauss_Direct_16s_AC4IR
ippiAddRandGauss_Direct_16s_C1IR
ippiAddRandGauss_Direct_16s_C3IR
ippiAddRandGauss_Direct_16s_C4IR
ippiAddRandGauss_Direct_16u_AC4IR
ippiAddRandGauss_Direct_16u_C1IR
ippiAddRandGauss_Direct_16u_C3IR
ippiAddRandGauss_Direct_16u_C4IR
ippiAddRandGauss_Direct_32f_AC4IR
ippiAddRandGauss_Direct_32f_C1IR
ippiAddRandGauss_Direct_32f_C3IR
ippiAddRandGauss_Direct_32f_C4IR
ippiAddRandGauss_Direct_8u_AC4IR
ippiAddRandGauss_Direct_8u_C1IR
ippiAddRandGauss_Direct_8u_C3IR
ippiAddRandGauss_Direct_8u_C4IR
ippiAddRandUniform_Direct_16s_AC4IR
ippiAddRandUniform_Direct_16s_C1IR
ippiAddRandUniform_Direct_16s_C3IR
ippiAddRandUniform_Direct_16s_C4IR
ippiAddRandUniform_Direct_16u_AC4IR
ippiAddRandUniform_Direct_16u_C1IR
ippiAddRandUniform_Direct_16u_C3IR
ippiAddRandUniform_Direct_16u_C4IR
ippiAddRandUniform_Direct_32f_AC4IR
ippiAddRandUniform_Direct_32f_C1IR
ippiAddRandUniform_Direct_32f_C3IR
ippiAddRandUniform_Direct_32f_C4IR
ippiAddRandUniform_Direct_8u_AC4IR
ippiAddRandUniform_Direct_8u_C1IR
ippiAddRandUniform_Direct_8u_C3IR
ippiAddRandUniform_Direct_8u_C4IR
ippiAddRotateShift
ippiAdd_16s_AC4IRSfs
ippiAdd_16s_AC4RSfs
ippiAdd_16s_C1IRSfs
ippiAdd_16s_C1RSfs
ippiAdd_16s_C3IRSfs
ippiAdd_16s_C3RSfs
ippiAdd_16s_C4IRSfs
ippiAdd_16s_C4RSfs
ippiAdd_16sc_AC4IRSfs
ippiAdd_16sc_AC4RSfs
ippiAdd_16sc_C1IRSfs
ippiAdd_16sc_C1RSfs
ippiAdd_16sc_C3IRSfs
ippiAdd_16sc_C3RSfs
ippiAdd_16u_AC4IRSfs
ippiAdd_16u_AC4RSfs
ippiAdd_16u_C1IRSfs
ippiAdd_16u_C1RSfs
ippiAdd_16u_C3IRSfs
ippiAdd_16u_C3RSfs
ippiAdd_16u_C4IRSfs
ippiAdd_16u_C4RSfs
ippiAdd_32f_AC4IR
ippiAdd_32f_AC4R
ippiAdd_32f_C1IR
ippiAdd_32f_C1R
ippiAdd_32f_C3IR
ippiAdd_32f_C3R
ippiAdd_32f_C4IR
ippiAdd_32f_C4R
ippiAdd_32fc_AC4IR
ippiAdd_32fc_AC4R
ippiAdd_32fc_C1IR
ippiAdd_32fc_C1R
ippiAdd_32fc_C3IR
ippiAdd_32fc_C3R
ippiAdd_32sc_AC4IRSfs
ippiAdd_32sc_AC4RSfs
ippiAdd_32sc_C1IRSfs
ippiAdd_32sc_C1RSfs
ippiAdd_32sc_C3IRSfs
ippiAdd_32sc_C3RSfs
ippiAdd_8u_AC4IRSfs
ippiAdd_8u_AC4RSfs
ippiAdd_8u_C1IRSfs
ippiAdd_8u_C1RSfs
ippiAdd_8u_C3IRSfs
ippiAdd_8u_C3RSfs
ippiAdd_8u_C4IRSfs
ippiAdd_8u_C4RSfs
ippiAlphaCompC_16u_AC4R
ippiAlphaCompC_16u_AP4R
ippiAlphaCompC_16u_C1R
ippiAlphaCompC_16u_C3R
ippiAlphaCompC_16u_C4R
ippiAlphaCompC_8u_AC4R
ippiAlphaCompC_8u_AP4R
ippiAlphaCompC_8u_C1R
ippiAlphaCompC_8u_C3R
ippiAlphaCompC_8u_C4R
ippiAlphaComp_16u_AC1R
ippiAlphaComp_16u_AC4R
ippiAlphaComp_16u_AP4R
ippiAlphaComp_8u_AC1R
ippiAlphaComp_8u_AC4R
ippiAlphaComp_8u_AP4R
ippiAlphaPremulC_16u_AC4IR
ippiAlphaPremulC_16u_AC4R
ippiAlphaPremulC_16u_AP4IR
ippiAlphaPremulC_16u_AP4R
ippiAlphaPremulC_16u_C1IR
ippiAlphaPremulC_16u_C1R
ippiAlphaPremulC_16u_C3IR
ippiAlphaPremulC_16u_C3R
ippiAlphaPremulC_16u_C4IR
ippiAlphaPremulC_16u_C4R
ippiAlphaPremulC_8u_AC4IR
ippiAlphaPremulC_8u_AC4R
ippiAlphaPremulC_8u_AP4IR
ippiAlphaPremulC_8u_AP4R
ippiAlphaPremulC_8u_C1IR
ippiAlphaPremulC_8u_C1R
ippiAlphaPremulC_8u_C3IR
ippiAlphaPremulC_8u_C3R
ippiAlphaPremulC_8u_C4IR
ippiAlphaPremulC_8u_C4R
ippiAlphaPremul_16u_AC4IR
ippiAlphaPremul_16u_AC4R
ippiAlphaPremul_16u_AP4IR
ippiAlphaPremul_16u_AP4R
ippiAlphaPremul_8u_AC4IR
ippiAlphaPremul_8u_AC4R
ippiAlphaPremul_8u_AP4IR
ippiAlphaPremul_8u_AP4R
ippiAndC_16u_AC4IR
ippiAndC_16u_AC4R
ippiAndC_16u_C1IR
ippiAndC_16u_C1R
ippiAndC_16u_C3IR
ippiAndC_16u_C3R
ippiAndC_16u_C4IR
ippiAndC_16u_C4R
ippiAndC_32s_AC4IR
ippiAndC_32s_AC4R
ippiAndC_32s_C1IR
ippiAndC_32s_C1R
ippiAndC_32s_C3IR
ippiAndC_32s_C3R
ippiAndC_32s_C4IR
ippiAndC_32s_C4R
ippiAndC_8u_AC4IR
ippiAndC_8u_AC4R
ippiAndC_8u_C1IR
ippiAndC_8u_C1R
ippiAndC_8u_C3IR
ippiAndC_8u_C3R
ippiAndC_8u_C4IR
ippiAndC_8u_C4R
ippiAnd_16u_AC4IR
ippiAnd_16u_AC4R
ippiAnd_16u_C1IR
ippiAnd_16u_C1R
ippiAnd_16u_C3IR
ippiAnd_16u_C3R
ippiAnd_16u_C4IR
ippiAnd_16u_C4R
ippiAnd_32s_AC4IR
ippiAnd_32s_AC4R
ippiAnd_32s_C1IR
ippiAnd_32s_C1R
ippiAnd_32s_C3IR
ippiAnd_32s_C3R
ippiAnd_32s_C4IR
ippiAnd_32s_C4R
ippiAnd_8u_AC4IR
ippiAnd_8u_AC4R
ippiAnd_8u_C1IR
ippiAnd_8u_C1R
ippiAnd_8u_C3IR
ippiAnd_8u_C3R
ippiAnd_8u_C4IR
ippiAnd_8u_C4R
ippiCompColorKey_16s_C1R
ippiCompColorKey_16s_C3R
ippiCompColorKey_16s_C4R
ippiCompColorKey_16u_C1R
ippiCompColorKey_16u_C3R
ippiCompColorKey_16u_C4R
ippiCompColorKey_8u_C1R
ippiCompColorKey_8u_C3R
ippiCompColorKey_8u_C4R
ippiCompareC_16s_AC4R
ippiCompareC_16s_C1R
ippiCompareC_16s_C3R
ippiCompareC_16s_C4R
ippiCompareC_16u_AC4R
ippiCompareC_16u_C1R
ippiCompareC_16u_C3R
ippiCompareC_16u_C4R
ippiCompareC_32f_AC4R
ippiCompareC_32f_C1R
ippiCompareC_32f_C3R
ippiCompareC_32f_C4R
ippiCompareC_8u_AC4R
ippiCompareC_8u_C1R
ippiCompareC_8u_C3R
ippiCompareC_8u_C4R
ippiCompareEqualEpsC_32f_AC4R
ippiCompareEqualEpsC_32f_C1R
ippiCompareEqualEpsC_32f_C3R
ippiCompareEqualEpsC_32f_C4R
ippiCompareEqualEps_32f_AC4R
ippiCompareEqualEps_32f_C1R
ippiCompareEqualEps_32f_C3R
ippiCompareEqualEps_32f_C4R
ippiCompare_16s_AC4R
ippiCompare_16s_C1R
ippiCompare_16s_C3R
ippiCompare_16s_C4R
ippiCompare_16u_AC4R
ippiCompare_16u_C1R
ippiCompare_16u_C3R
ippiCompare_16u_C4R
ippiCompare_32f_AC4R
ippiCompare_32f_C1R
ippiCompare_32f_C3R
ippiCompare_32f_C4R
ippiCompare_8u_AC4R
ippiCompare_8u_C1R
ippiCompare_8u_C3R
ippiCompare_8u_C4R
ippiComplement_32s_C1IR
ippiConvFull_16s_AC4R
ippiConvFull_16s_C1R
ippiConvFull_16s_C3R
ippiConvFull_32f_AC4R
ippiConvFull_32f_C1R
ippiConvFull_32f_C3R
ippiConvFull_8u_AC4R
ippiConvFull_8u_C1R
ippiConvFull_8u_C3R
ippiConvValid_16s_AC4R
ippiConvValid_16s_C1R
ippiConvValid_16s_C3R
ippiConvValid_32f_AC4R
ippiConvValid_32f_C1R
ippiConvValid_32f_C3R
ippiConvValid_8u_AC4R
ippiConvValid_8u_C1R
ippiConvValid_8u_C3R
ippiConvert_16s32f_AC4R
ippiConvert_16s32f_C1R
ippiConvert_16s32f_C3R
ippiConvert_16s32f_C4R
ippiConvert_16s32s_AC4R
ippiConvert_16s32s_C1R
ippiConvert_16s32s_C3R
ippiConvert_16s32s_C4R
ippiConvert_16s8u_AC4R
ippiConvert_16s8u_C1R
ippiConvert_16s8u_C3R
ippiConvert_16s8u_C4R
ippiConvert_16u32f_AC4R
ippiConvert_16u32f_C1R
ippiConvert_16u32f_C3R
ippiConvert_16u32f_C4R
ippiConvert_16u32s_AC4R
ippiConvert_16u32s_C1R
ippiConvert_16u32s_C3R
ippiConvert_16u32s_C4R
ippiConvert_16u8u_AC4R
ippiConvert_16u8u_C1R
ippiConvert_16u8u_C3R
ippiConvert_16u8u_C4R
ippiConvert_1u8u_C1R
ippiConvert_32f16s_AC4R
ippiConvert_32f16s_C1R
ippiConvert_32f16s_C3R
ippiConvert_32f16s_C4R
ippiConvert_32f16u_AC4R
ippiConvert_32f16u_C1R
ippiConvert_32f16u_C3R
ippiConvert_32f16u_C4R
ippiConvert_32f8s_AC4R
ippiConvert_32f8s_C1R
ippiConvert_32f8s_C3R
ippiConvert_32f8s_C4R
ippiConvert_32f8u_AC4R
ippiConvert_32f8u_C1R
ippiConvert_32f8u_C3R
ippiConvert_32f8u_C4R
ippiConvert_32s8s_AC4R
ippiConvert_32s8s_C1R
ippiConvert_32s8s_C3R
ippiConvert_32s8s_C4R
ippiConvert_32s8u_AC4R
ippiConvert_32s8u_C1R
ippiConvert_32s8u_C3R
ippiConvert_32s8u_C4R
ippiConvert_8s32f_AC4R
ippiConvert_8s32f_C1R
ippiConvert_8s32f_C3R
ippiConvert_8s32f_C4R
ippiConvert_8s32s_AC4R
ippiConvert_8s32s_C1R
ippiConvert_8s32s_C3R
ippiConvert_8s32s_C4R
ippiConvert_8u16s_AC4R
ippiConvert_8u16s_C1R
ippiConvert_8u16s_C3R
ippiConvert_8u16s_C4R
ippiConvert_8u16u_AC4R
ippiConvert_8u16u_C1R
ippiConvert_8u16u_C3R
ippiConvert_8u16u_C4R
ippiConvert_8u1u_C1R
ippiConvert_8u32f_AC4R
ippiConvert_8u32f_C1R
ippiConvert_8u32f_C3R
ippiConvert_8u32f_C4R
ippiConvert_8u32s_AC4R
ippiConvert_8u32s_C1R
ippiConvert_8u32s_C3R
ippiConvert_8u32s_C4R
ippiCopyConstBorder_16s_AC4R
ippiCopyConstBorder_16s_C1R
ippiCopyConstBorder_16s_C3R
ippiCopyConstBorder_16s_C4R
ippiCopyConstBorder_16u_AC4R
ippiCopyConstBorder_16u_C1R
ippiCopyConstBorder_16u_C3R
ippiCopyConstBorder_16u_C4R
ippiCopyConstBorder_32s_AC4R
ippiCopyConstBorder_32s_C1R
ippiCopyConstBorder_32s_C3R
ippiCopyConstBorder_32s_C4R
ippiCopyConstBorder_8u_AC4R
ippiCopyConstBorder_8u_C1R
ippiCopyConstBorder_8u_C3R
ippiCopyConstBorder_8u_C4R
ippiCopyReplicateBorder_16s_AC4IR
ippiCopyReplicateBorder_16s_AC4R
ippiCopyReplicateBorder_16s_C1IR
ippiCopyReplicateBorder_16s_C1R
ippiCopyReplicateBorder_16s_C3IR
ippiCopyReplicateBorder_16s_C3R
ippiCopyReplicateBorder_16s_C4IR
ippiCopyReplicateBorder_16s_C4R
ippiCopyReplicateBorder_16u_AC4IR
ippiCopyReplicateBorder_16u_AC4R
ippiCopyReplicateBorder_16u_C1IR
ippiCopyReplicateBorder_16u_C1R
ippiCopyReplicateBorder_16u_C3IR
ippiCopyReplicateBorder_16u_C3R
ippiCopyReplicateBorder_16u_C4IR
ippiCopyReplicateBorder_16u_C4R
ippiCopyReplicateBorder_32s_AC4IR
ippiCopyReplicateBorder_32s_AC4R
ippiCopyReplicateBorder_32s_C1IR
ippiCopyReplicateBorder_32s_C1R
ippiCopyReplicateBorder_32s_C3IR
ippiCopyReplicateBorder_32s_C3R
ippiCopyReplicateBorder_32s_C4IR
ippiCopyReplicateBorder_32s_C4R
ippiCopyReplicateBorder_8u_AC4IR
ippiCopyReplicateBorder_8u_AC4R
ippiCopyReplicateBorder_8u_C1IR
ippiCopyReplicateBorder_8u_C1R
ippiCopyReplicateBorder_8u_C3IR
ippiCopyReplicateBorder_8u_C3R
ippiCopyReplicateBorder_8u_C4IR
ippiCopyReplicateBorder_8u_C4R
ippiCopyWrapBorder_32s_C1IR
ippiCopyWrapBorder_32s_C1R
ippiCopy_16s_AC4C3R
ippiCopy_16s_AC4MR
ippiCopy_16s_AC4R
ippiCopy_16s_C1C3R
ippiCopy_16s_C1C4R
ippiCopy_16s_C1MR
ippiCopy_16s_C1R
ippiCopy_16s_C3AC4R
ippiCopy_16s_C3C1R
ippiCopy_16s_C3CR
ippiCopy_16s_C3MR
ippiCopy_16s_C3P3R
ippiCopy_16s_C3R
ippiCopy_16s_C4C1R
ippiCopy_16s_C4CR
ippiCopy_16s_C4MR
ippiCopy_16s_C4P4R
ippiCopy_16s_C4R
ippiCopy_16s_P3C3R
ippiCopy_16s_P4C4R
ippiCopy_16u_AC4C3R
ippiCopy_16u_AC4MR
ippiCopy_16u_AC4R
ippiCopy_16u_C1C3R
ippiCopy_16u_C1C4R
ippiCopy_16u_C1MR
ippiCopy_16u_C1R
ippiCopy_16u_C3AC4R
ippiCopy_16u_C3C1R
ippiCopy_16u_C3CR
ippiCopy_16u_C3MR
ippiCopy_16u_C3P3R
ippiCopy_16u_C3R
ippiCopy_16u_C4C1R
ippiCopy_16u_C4CR
ippiCopy_16u_C4MR
ippiCopy_16u_C4P4R
ippiCopy_16u_C4R
ippiCopy_16u_P3C3R
ippiCopy_16u_P4C4R
ippiCopy_32f_AC4C3R
ippiCopy_32f_AC4MR
ippiCopy_32f_AC4R
ippiCopy_32f_C1C3R
ippiCopy_32f_C1C4R
ippiCopy_32f_C1MR
ippiCopy_32f_C1R
ippiCopy_32f_C3AC4R
ippiCopy_32f_C3C1R
ippiCopy_32f_C3CR
ippiCopy_32f_C3MR
ippiCopy_32f_C3P3R
ippiCopy_32f_C3R
ippiCopy_32f_C4C1R
ippiCopy_32f_C4CR
ippiCopy_32f_C4MR
ippiCopy_32f_C4P4R
ippiCopy_32f_C4R
ippiCopy_32f_P3C3R
ippiCopy_32f_P4C4R
ippiCopy_32s_AC4C3R
ippiCopy_32s_AC4MR
ippiCopy_32s_AC4R
ippiCopy_32s_C1C3R
ippiCopy_32s_C1C4R
ippiCopy_32s_C1MR
ippiCopy_32s_C1R

Sections

.text
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 220KB - Virtual size: 225KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libguide40.dll
.dll windows:4 windows x86 arch:x86

fb01e389dde72dc5b85c9e61837430ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentProcessId
FormatMessageA
GetStdHandle
AllocConsole
GetLastError
CreateThread
GetCurrentThread
SetThreadAffinityMask
SetThreadPriority
ResumeThread
CloseHandle
GetEnvironmentVariableA
SetEnvironmentVariableA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateEventA
ResetEvent
WaitForSingleObject
SetEvent
Sleep
TlsSetValue
TlsGetValue
GetProcessAffinityMask
GetCurrentProcess
GetProcAddress
GetSystemInfo
TlsAlloc
LoadLibraryA
TlsFree
TerminateThread
QueryPerformanceCounter
QueryPerformanceFrequency
DuplicateHandle
GetExitCodeThread
SleepEx
VirtualQuery
ExitProcess
TerminateProcess
SetStdHandle
GetFileType
HeapAlloc
HeapFree
HeapReAlloc
LocalFree
SetConsoleCtrlHandler
GetCommandLineA
GetVersion
FlushFileBuffers
WriteFile
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetModuleHandleA
WideCharToMultiByte
RtlUnwind
GetCurrentThreadId
SetLastError
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetFilePointer
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
GetCPInfo
CompareStringA
CompareStringW
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
ReadFile

Exports

Exports

KMP_ALIGNED_SHARABLE_MALLOC
KMP_CALLOC
KMP_FREE
KMP_GET_BLOCKTIME
KMP_GET_LIBRARY
KMP_GET_NUM_KNOWN_THREADS
KMP_GET_STACKSIZE
KMP_GET_STACKSIZE_S
KMP_LOCK_COND_BROADCAST
KMP_LOCK_COND_SIGNAL
KMP_LOCK_COND_WAIT
KMP_MALLOC
KMP_NEST_LOCK_COND_BROADCAST
KMP_NEST_LOCK_COND_SIGNAL
KMP_NEST_LOCK_COND_WAIT
KMP_PRINT_BANNER
KMP_REALLOC
KMP_SET_AFFINITY
KMP_SET_BLOCKTIME
KMP_SET_LIBRARY
KMP_SET_LIBRARY_SERIAL
KMP_SET_LIBRARY_THROUGHPUT
KMP_SET_LIBRARY_TURNAROUND
KMP_SET_PARALLEL_NAME
KMP_SET_STACKSIZE
KMP_SET_STACKSIZE_S
KMP_SET_STATS
KMP_SET_WARNINGS_OFF
KMP_SET_WARNINGS_ON
KMP_SHARABLE_CALLOC
KMP_SHARABLE_FREE
KMP_SHARABLE_MALLOC
KMP_SHARABLE_REALLOC
OMP_DESTROY_LOCK
OMP_DESTROY_NEST_LOCK
OMP_GET_DYNAMIC
OMP_GET_MAX_THREADS
OMP_GET_NESTED
OMP_GET_NUM_PROCS
OMP_GET_NUM_THREADS
OMP_GET_THREAD_NUM
OMP_GET_WTICK
OMP_GET_WTIME
OMP_INIT_LOCK
OMP_INIT_NEST_LOCK
OMP_IN_PARALLEL
OMP_SET_DYNAMIC
OMP_SET_LOCK
OMP_SET_NESTED
OMP_SET_NEST_LOCK
OMP_SET_NUM_THREADS
OMP_TEST_LOCK
OMP_TEST_NEST_LOCK
OMP_UNSET_LOCK
OMP_UNSET_NEST_LOCK
VT_getthid
__kmp_acquire_bootstrap_lock
__kmp_acquire_lock
__kmp_dispatch_dxo_4
__kmp_dispatch_dxo_8
__kmp_fork_call
__kmp_invoke_microtask
__kmp_launch_monitor
__kmp_launch_worker
__kmp_reap_monitor
__kmp_reap_worker
__kmp_release
__kmp_release_bootstrap_lock
__kmp_release_lock
__kmp_test_lock
__kmp_wait_sleep
__kmp_wait_yield_4
__kmp_wait_yield_8
__kmpc_atomic_4
__kmpc_atomic_8
__kmpc_atomic_fixed4_add
__kmpc_atomic_fixed8_add
__kmpc_atomic_float4_add
__kmpc_atomic_float8_add
__kmpc_barrier
__kmpc_barrier_master
__kmpc_barrier_master_nowait
__kmpc_barrier_reduce_master
__kmpc_begin
__kmpc_bound_num_threads
__kmpc_bound_thread_num
__kmpc_copyprivate
__kmpc_critical
__kmpc_destroy_lock
__kmpc_destroy_nest_lock
__kmpc_dispatch_fini_4
__kmpc_dispatch_fini_8
__kmpc_dispatch_init_4
__kmpc_dispatch_init_8
__kmpc_dispatch_next_4
__kmpc_dispatch_next_8
__kmpc_end
__kmpc_end_barrier_master
__kmpc_end_barrier_reduce_master
__kmpc_end_critical
__kmpc_end_master
__kmpc_end_ordered
__kmpc_end_serialized_parallel
__kmpc_end_single
__kmpc_end_taskq
__kmpc_end_taskq_task
__kmpc_flush
__kmpc_for_static_fini
__kmpc_for_static_init_4
__kmpc_for_static_init_8
__kmpc_fork_call
__kmpc_global_num_threads
__kmpc_global_thread_num
__kmpc_in_parallel
__kmpc_in_ssp
__kmpc_init_lock
__kmpc_init_nest_lock
__kmpc_invoke_task_func
__kmpc_master
__kmpc_ok_to_fork
__kmpc_ordered
__kmpc_pop_num_threads
__kmpc_push_num_threads
__kmpc_reduce_master_nowait
__kmpc_serialized_parallel
__kmpc_set_lock
__kmpc_set_nest_lock
__kmpc_single
__kmpc_ssp_begin
__kmpc_ssp_distance_4
__kmpc_ssp_distance_8
__kmpc_ssp_end
__kmpc_ssp_fork
__kmpc_ssp_get_max_threads
__kmpc_ssp_init_thread
__kmpc_ssp_num_threads
__kmpc_ssp_post_4
__kmpc_ssp_post_8
__kmpc_ssp_set_event
__kmpc_ssp_set_max_threads
__kmpc_ssp_thread_num
__kmpc_ssp_wait_4
__kmpc_ssp_wait_8
__kmpc_task
__kmpc_task_buffer
__kmpc_taskq
__kmpc_taskq_task
__kmpc_test_lock
__kmpc_test_nest_lock
__kmpc_threadprivate
__kmpc_threadprivate_cached
__kmpc_threadprivate_register
__kmpc_threadprivate_register_vec
__kmpc_unset_lock
__kmpc_unset_nest_lock
kmp_aligned_sharable_malloc
kmp_calloc
kmp_free
kmp_get_blocktime
kmp_get_library
kmp_get_num_known_threads
kmp_get_stacksize
kmp_get_stacksize_s
kmp_lock_cond_broadcast
kmp_lock_cond_signal
kmp_lock_cond_wait
kmp_malloc
kmp_nest_lock_cond_broadcast
kmp_nest_lock_cond_signal
kmp_nest_lock_cond_wait
kmp_print_banner
kmp_realloc
kmp_set_affinity
kmp_set_blocktime
kmp_set_library
kmp_set_library_serial
kmp_set_library_throughput
kmp_set_library_turnaround
kmp_set_parallel_name
kmp_set_stacksize
kmp_set_stacksize_s
kmp_set_stats
kmp_set_warnings_off
kmp_set_warnings_on
kmp_sharable_calloc
kmp_sharable_free
kmp_sharable_malloc
kmp_sharable_realloc
kmpc_aligned_sharable_malloc
kmpc_calloc
kmpc_free
kmpc_get_banner
kmpc_get_poolmode
kmpc_get_poolsize
kmpc_get_poolstat
kmpc_malloc
kmpc_poolprint
kmpc_print_banner
kmpc_realloc
kmpc_set_affinity
kmpc_set_blocktime
kmpc_set_library
kmpc_set_parallel_name
kmpc_set_poolmode
kmpc_set_poolsize
kmpc_set_stacksize
kmpc_set_stacksize_s
kmpc_set_stats
kmpc_sharable_calloc
kmpc_sharable_free
kmpc_sharable_malloc
kmpc_sharable_realloc
omp_destroy_lock
omp_destroy_nest_lock
omp_get_dynamic
omp_get_max_threads
omp_get_nested
omp_get_num_procs
omp_get_num_threads
omp_get_thread_num
omp_get_wtick
omp_get_wtime
omp_in_parallel
omp_init_lock
omp_init_nest_lock
omp_set_dynamic
omp_set_lock
omp_set_nest_lock
omp_set_nested
omp_set_num_threads
omp_test_lock
omp_test_nest_lock
omp_unset_lock
omp_unset_nest_lock
ompc_set_dynamic
ompc_set_nested
ompc_set_num_threads
vtgthid

Sections

.text
Size: 144KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
postproc-52.dll
.dll windows:4 windows x86 arch:x86

c260495236370ed97a48ada8e4a693ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__dllonexit
__mb_cur_max
_amsg_exit
_errno
_initterm
_iob
_lock
_onexit
localeconv
malloc
memcpy
memmove
setlocale
strchr
strcmp
strerror
strlen
strncmp
strtok
strtol
_unlock
abort
atoi
calloc
fputc
free
getenv
wcslen

avutil-52

av_free
av_get_cpu_flags
av_log
av_malloc
av_mallocz
av_strlcpy

Exports

Exports

postproc_configuration
postproc_license
postproc_version
pp_free_context
pp_free_mode
pp_get_context
pp_get_mode_by_name_and_quality
pp_help
pp_postprocess

Sections

.text
Size: 179KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 302B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
swresample-0.dll
.dll windows:4 windows x86 arch:x86

bb54ca6f84ada591f67da0110e9d2b87

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__dllonexit
__mb_cur_max
__setusermatherr
_amsg_exit
_errno
_initterm
_iob
_lock
_onexit
localeconv
malloc
memcpy
memset
setlocale
strchr
strerror
strlen
strncmp
_unlock
abort
atoi
calloc
fputc
free
getenv
wcslen

avutil-52

av_calloc
av_free
av_freep
av_get_bytes_per_sample
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_cpu_flags
av_get_default_channel_layout
av_get_packed_sample_fmt
av_get_planar_sample_fmt
av_get_sample_fmt_name
av_log
av_malloc
av_mallocz
av_opt_set_defaults
av_opt_set_int
av_reduce
av_rescale
av_sample_fmt_is_planar

Exports

Exports

ff_float_to_int16_a_sse2
ff_float_to_int16_u_sse2
ff_float_to_int32_a_sse2
ff_float_to_int32_u_sse2
ff_int16_to_float_a_sse2
ff_int16_to_float_u_sse2
ff_int16_to_int32_a_mmx
ff_int16_to_int32_a_sse2
ff_int16_to_int32_u_mmx
ff_int16_to_int32_u_sse2
ff_int32_to_float_a_avx
ff_int32_to_float_a_sse2
ff_int32_to_float_u_avx
ff_int32_to_float_u_sse2
ff_int32_to_int16_a_mmx
ff_int32_to_int16_a_sse2
ff_int32_to_int16_u_mmx
ff_int32_to_int16_u_sse2
ff_log2_tab
ff_mix_1_1_a_float_avx
ff_mix_1_1_a_float_sse
ff_mix_1_1_a_int16_mmx
ff_mix_1_1_a_int16_sse2
ff_mix_1_1_u_float_avx
ff_mix_1_1_u_float_sse
ff_mix_1_1_u_int16_mmx
ff_mix_1_1_u_int16_sse2
ff_mix_2_1_a_float_avx
ff_mix_2_1_a_float_sse
ff_mix_2_1_a_int16_mmx
ff_mix_2_1_a_int16_sse2
ff_mix_2_1_u_float_avx
ff_mix_2_1_u_float_sse
ff_mix_2_1_u_int16_mmx
ff_mix_2_1_u_int16_sse2
ff_pack_2ch_float_to_int16_a_sse2
ff_pack_2ch_float_to_int16_u_sse2
ff_pack_2ch_float_to_int32_a_sse2
ff_pack_2ch_float_to_int32_u_sse2
ff_pack_2ch_int16_to_float_a_sse2
ff_pack_2ch_int16_to_float_u_sse2
ff_pack_2ch_int16_to_int16_a_sse2
ff_pack_2ch_int16_to_int16_u_sse2
ff_pack_2ch_int16_to_int32_a_sse2
ff_pack_2ch_int16_to_int32_u_sse2
ff_pack_2ch_int32_to_float_a_sse2
ff_pack_2ch_int32_to_float_u_sse2
ff_pack_2ch_int32_to_int16_a_sse2
ff_pack_2ch_int32_to_int16_u_sse2
ff_pack_2ch_int32_to_int32_a_sse2
ff_pack_2ch_int32_to_int32_u_sse2
ff_pack_6ch_float_to_float_a_avx
ff_pack_6ch_float_to_float_a_mmx
ff_pack_6ch_float_to_float_a_sse4
ff_pack_6ch_float_to_float_u_avx
ff_pack_6ch_float_to_float_u_mmx
ff_pack_6ch_float_to_float_u_sse4
ff_pack_6ch_float_to_int32_a_avx
ff_pack_6ch_float_to_int32_a_sse4
ff_pack_6ch_float_to_int32_u_avx
ff_pack_6ch_float_to_int32_u_sse4
ff_pack_6ch_int32_to_float_a_avx
ff_pack_6ch_int32_to_float_a_sse4
ff_pack_6ch_int32_to_float_u_avx
ff_pack_6ch_int32_to_float_u_sse4
ff_resample_int16_rounder
ff_unpack_2ch_float_to_int16_a_sse2
ff_unpack_2ch_float_to_int16_u_sse2
ff_unpack_2ch_float_to_int32_a_sse2
ff_unpack_2ch_float_to_int32_u_sse2
ff_unpack_2ch_int16_to_float_a_sse2
ff_unpack_2ch_int16_to_float_a_ssse3
ff_unpack_2ch_int16_to_float_u_sse2
ff_unpack_2ch_int16_to_float_u_ssse3
ff_unpack_2ch_int16_to_int16_a_sse2
ff_unpack_2ch_int16_to_int16_a_ssse3
ff_unpack_2ch_int16_to_int16_u_sse2
ff_unpack_2ch_int16_to_int16_u_ssse3
ff_unpack_2ch_int16_to_int32_a_sse2
ff_unpack_2ch_int16_to_int32_a_ssse3
ff_unpack_2ch_int16_to_int32_u_sse2
ff_unpack_2ch_int16_to_int32_u_ssse3
ff_unpack_2ch_int32_to_float_a_sse2
ff_unpack_2ch_int32_to_float_u_sse2
ff_unpack_2ch_int32_to_int16_a_sse2
ff_unpack_2ch_int32_to_int16_u_sse2
ff_unpack_2ch_int32_to_int32_a_sse2
ff_unpack_2ch_int32_to_int32_u_sse2
swr_alloc
swr_alloc_set_opts
swr_convert
swr_drop_output
swr_free
swr_get_class
swr_get_delay
swr_init
swr_inject_silence
swr_next_pts
swr_set_channel_mapping
swr_set_compensation
swr_set_matrix
swresample_configuration
swresample_license
swresample_version

Sections

.text
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
swscale-2.dll
.dll windows:4 windows x86 arch:x86

bdd686222e4dc451f28b77a336761e78

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__dllonexit
__mb_cur_max
__setusermatherr
_amsg_exit
_errno
_initterm
_iob
_lock
_onexit
localeconv
malloc
memcpy
memset
setlocale
strchr
strerror
strlen
strncmp
_unlock
abort
atoi
calloc
fputc
free
getenv
wcslen

avutil-52

av_free
av_freep
av_get_bits_per_pixel
av_get_cpu_flags
av_get_pix_fmt_name
av_log
av_malloc
av_mallocz
av_opt_set_defaults
av_pix_fmt_desc_get

Exports

Exports

sws_addVec
sws_allocVec
sws_alloc_context
sws_cloneVec
sws_context_class
sws_convVec
sws_convertPalette8ToPacked24
sws_convertPalette8ToPacked32
sws_format_name
sws_freeContext
sws_freeFilter
sws_freeVec
sws_getCachedContext
sws_getCoefficients
sws_getColorspaceDetails
sws_getConstVec
sws_getContext
sws_getDefaultFilter
sws_getGaussianVec
sws_getIdentityVec
sws_get_class
sws_init_context
sws_isSupportedInput
sws_isSupportedOutput
sws_normalizeVec
sws_printVec2
sws_rgb2rgb_init
sws_scale
sws_scaleVec
sws_setColorspaceDetails
sws_shiftVec
sws_subVec
swscale_configuration
swscale_license
swscale_version

Sections

.text
Size: 307KB - Virtual size: 306KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
unace32.exe
.exe windows:5 windows x86 arch:x86

56bac85561f78132ca190bf57013fc88

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\devel\Ark4\bin\unace32.pdb

Imports

kernel32

FindResourceA
FreeLibrary
LoadResource
FindResourceExA
WideCharToMultiByte
SizeofResource
GetProcAddress
LoadLibraryA
LockResource
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetCommandLineA
GetLastError
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualAlloc
RtlUnwind
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
CloseHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
unrar4.dll
.dll windows:4 windows x86 arch:x86

244d2f9772f4886a651db44514a2a29b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
SetFileSecurityA
SetFileSecurityW

kernel32

CloseHandle
CompareStringA
CompareStringW
CreateDirectoryA
CreateDirectoryW
CreateFileA
CreateFileW
DeleteFileA
DeleteFileW
DeviceIoControl
ExitProcess
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
FreeEnvironmentStringsA
FreeLibrary
GetACP
GetCPInfo
GetCurrentProcess
GetCurrentThreadId
GetEnvironmentStrings
GetFileAttributesA
GetFileAttributesW
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetVersion
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapFree
IsDBCSLeadByte
LCMapStringA
LoadLibraryA
LocalFileTimeToFileTime
MoveFileA
MultiByteToWideChar
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetEndOfFile
SetFileAttributesA
SetFileAttributesW
SetFilePointer
SetFileTime
SetHandleCount
Sleep
SystemTimeToFileTime
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WideCharToMultiByte
WriteFile

user32

CharLowerA
CharLowerW
CharToOemA
CharToOemBuffA
CharUpperA
CharUpperW
EnumThreadWindows
MessageBoxA
OemToCharA
OemToCharBuffA
wsprintfA

Exports

Exports

RARCloseArchive
RARGetDllVersion
RAROpenArchive
RAROpenArchiveEx
RARProcessFile
RARProcessFileW
RARReadHeader
RARReadHeaderEx
RARSetCallback
RARSetChangeVolProc
RARSetPassword
RARSetProcessDataProc
___CPPdebugHook

Sections

.text
Size: 133KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ver.ini

Sharing

General

Malware Config

Signatures

Files

099c0646ea7282d232219f8807883be0

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

3c:6c:94:99:91:ea:4f:f2:7c:cb:cd:67:6f:c0:2e:b4Certificate

Extended Key Usages

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5eCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

9b:54:3a:0c:47:13:f2:67:77:db:bd:e0:16:23:53:73:8b:68:b4:95Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 16KB - Virtual size: 15KB

9a6f10bba62541d8aedb7da17df523de

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

shell32

Exports

Exports

Sections

.textbss Size: - Virtual size: 179KB

.text Size: 388KB - Virtual size: 384KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 8KB - Virtual size: 14KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 8KB - Virtual size: 4KB

.reloc Size: 20KB - Virtual size: 16KB

cf208266862ad5001b16b4e38c3db833

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

oleaut32

wininet

Sections

.text Size: 60KB - Virtual size: 57KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 16KB - Virtual size: 32KB

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

3c:6c:94:99:91:ea:4f:f2:7c:cb:cd:67:6f:c0:2e:b4
Certificate

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

9b:54:3a:0c:47:13:f2:67:77:db:bd:e0:16:23:53:73:8b:68:b4:95
Signer

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 16KB - Virtual size: 15KB

.textbss
Size: - Virtual size: 179KB

.text
Size: 388KB - Virtual size: 384KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 8KB - Virtual size: 14KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 8KB - Virtual size: 4KB

.reloc
Size: 20KB - Virtual size: 16KB

.text
Size: 60KB - Virtual size: 57KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 16KB - Virtual size: 32KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 1024B - Virtual size: 520B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 410B

CODE
Size: 707KB - Virtual size: 707KB

DATA
Size: 11KB - Virtual size: 11KB

BSS
Size: - Virtual size: 774KB

.idata
Size: 9KB - Virtual size: 8KB

.edata
Size: 1024B - Virtual size: 581B

.reloc
Size: 41KB - Virtual size: 40KB

.rsrc
Size: 27KB - Virtual size: 27KB

36:12:22:96:c5:e3:38:a5:20:a1:d2:5f:4c:d7:09:54
Certificate

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

23:3b:ba:fc:e9:94:ec:7f:e8:d2:ca:56:8f:2a:b6:4b
Certificate

33:65:50:08:79:ad:73:e2:30:b9:e0:1d:0d:7f:ac:91
Certificate

47:97:4d:78:73:a5:bc:ab:0d:2f:b3:70:19:2f:ce:5e
Certificate

.text
Size: 614KB - Virtual size: 613KB

.rdata
Size: 102KB - Virtual size: 101KB

.data
Size: 20KB - Virtual size: 83KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 32KB - Virtual size: 31KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate