pandastealer | 852b1c668870b9e64ac7c23d5d75ee9e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

852b1c668870b9e64ac7c23d5d75ee9e_JaffaCakes118
Size

6.7MB
MD5

852b1c668870b9e64ac7c23d5d75ee9e
SHA1

28b2571d9d3585552480607a95e9dd242b96a766
SHA256

6db345ff7f370b0785a5ce1a0f3e8d9b2a8d8fb6a236d29744c87749868adc50
SHA512

e375078ad47ef25612e81051dd366f23db30534e7743a9b5b708a58a3b5086521d5c0c5d7a1998d7c9196e18adfc51777a2ff824dde61983149dbc0e2c112588
SSDEEP

196608:D7q7IsFwqyNah8zqpati6Kf5rnVQ1V85Ej:DzmU68maV4Rne85q

Score

10^/10

pandastealer

Malware Config

Signatures

Panda Stealer payload 1 IoCs

resource	yara_rule
static1/unpack001/splayer.exe	family_pandastealer

Pandastealer family
pandastealer

Unsigned PE 47 IoCs

Checks for missing Authenticode signature.

resource
unpack001/$PLUGINSDIR/NSISdl.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/nsDialogs.dll
unpack001/CSMX.dll
unpack001/Esdll.dll
unpack001/IVMSource.ax
unpack001/PmpSplitter.ax
unpack001/RadGtSplitter.ax
unpack001/binkw32.dll
unpack001/csfcodec/ijl15.dll
unpack001/csfcodec/mpc_mcucltu.dll
unpack001/csfcodec/mpc_mcufilecu.dll
unpack001/csfcodec/mpc_mdssockc.dll
unpack001/csfcodec/mpc_mtcontain.dll
unpack001/csfcodec/mpc_mtcontrol.dll
unpack001/csfcodec/mpc_mxaudio.dll
unpack001/csfcodec/mpc_mxrender.dll
unpack001/csfcodec/mpc_mxscreen.dll
unpack001/csfcodec/mpc_mxshbasu.dll
unpack001/csfcodec/mpc_mxshmaiu.dll
unpack001/csfcodec/mpc_mxshsour.dll
unpack001/csfcodec/mpc_mxsource.dll
unpack001/csfcodec/mpc_mxvideo.dll
unpack001/csfcodec/mpc_wtlvcl.dll
unpack001/dh264.ax
unpack001/haalis.ax
unpack001/ir41_32.ax
unpack001/ir50_32.dll
unpack001/ivm.dll
unpack001/lang/splayer.cht.dll
unpack001/lang/splayer.en.dll
unpack001/lang/splayer.ge.dll
unpack001/lang/splayer.ru.dll
unpack001/mc.dll
unpack001/mkunicode.dll
unpack001/mkzlib.dll
unpack001/mmamrdmx.ax
unpack001/mp4.dll
unpack001/ogm.dll
unpack001/rlapedec.ax
unpack001/sinet.dll
unpack001/smackw32.dll
unpack001/sphash.dll
unpack001/ts.dll
unpack001/unrar.dll
unpack001/vp6dec.ax
unpack001/vp8decoder.dll

Files

852b1c668870b9e64ac7c23d5d75ee9e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b729b61eb1515fcf7b3e511e4e66258b

Code Sign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10-05-2010 00:00

Not After

10-05-2015 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6c:58:77:15:ee:87:07:2e:7e:b8:81:68:07:e4:bd:39
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

15-07-2010 00:00

Not After

14-07-2012 23:59

Subject

CN=Sagittarius Technology Co.Ltd,O=Sagittarius Technology Co.Ltd,POSTALCODE=NA,STREET=724-4\, No. 710\, Siping Road,L=Hongkou District,ST=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

db:49:47:94:d9:79:53:c1:7c:65:b3:55:10:06:fa:8a:5c:14:be:f5
Signer

Actual PE Digest

db:49:47:94:d9:79:53:c1:7c:65:b3:55:10:06:fa:8a:5c:14:be:f5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathW
GetShortPathNameW
GetFullPathNameW
MoveFileW
SetCurrentDirectoryW
GetFileAttributesW
GetLastError
CreateDirectoryW
SetFileAttributesW
Sleep
GetTickCount
CreateFileW
GetFileSize
GetModuleFileNameW
GetCurrentProcess
CopyFileW
ExitProcess
GetWindowsDirectoryW
GetTempPathW
GetCommandLineW
SetErrorMode
CloseHandle
lstrlenW
lstrcpynW
GetDiskFreeSpaceW
GlobalUnlock
GlobalLock
CreateThread
LoadLibraryW
CreateProcessW
lstrcmpiA
GetTempFileNameW
lstrcatW
GetProcAddress
LoadLibraryA
GetModuleHandleA
OpenProcess
lstrcpyW
GetVersionExW
GetSystemDirectoryW
GetVersion
lstrcpyA
RemoveDirectoryW
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GlobalFree
GetModuleHandleW
LoadLibraryExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
WideCharToMultiByte
MulDiv
lstrlenA
WriteFile
ReadFile
MultiByteToWideChar
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
lstrcpynA

user32

ScreenToClient
GetMessagePos
CallWindowProcW
IsWindowVisible
LoadBitmapW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
GetWindowRect
AppendMenuW
CreatePopupMenu
GetSystemMetrics
EndDialog
EnableMenuItem
GetSystemMenu
SetClassLongW
IsWindowEnabled
SetWindowPos
DialogBoxParamW
CheckDlgButton
CreateWindowExW
SystemParametersInfoW
RegisterClassW
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharNextA
CharUpperW
CharPrevW
DispatchMessageW
PeekMessageW
wsprintfA
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
LoadCursorW
SetCursor
GetWindowLongW
GetSysColor
CharNextW
GetClassInfoW
ExitWindowsEx
FindWindowExW
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
IsWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectW
SetBkMode
SetTextColor
SelectObject

shell32

SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
SHFileOperationW
SHGetSpecialFolderLocation

advapi32

RegEnumKeyW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW
RegEnumValueW

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 409KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/NSISdl.dll
.dll windows:5 windows x86 arch:x86

cbc66eb3222e3fcdbee2e18ba7195f5e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcmpiA
lstrlenA
lstrcpynA
lstrcatA
GlobalAlloc
GlobalFree
MulDiv
GetTickCount
DeleteFileA
Sleep
lstrcpyA
CreateFileA
lstrcpyW
lstrcpynW
WideCharToMultiByte
MultiByteToWideChar
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
CreateThread
WaitForSingleObject
WriteFile
CloseHandle
IsDebuggerPresent

user32

IsWindowVisible
GetFocus
GetDlgItem
ShowWindow
SetWindowTextA
SetDlgItemTextA
CharPrevA
SetWindowLongW
RegisterWindowMessageW
GetClientRect
GetWindowRect
CreateWindowExW
GetWindowLongW
wsprintfA
CallWindowProcW
DestroyWindow
EnableWindow
FindWindowExW
SendMessageW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

ws2_32

WSAGetLastError
send
closesocket
shutdown
ioctlsocket
htons
socket
WSACleanup
WSAStartup
recv
__WSAFDIsSet
connect
inet_addr
gethostbyname
select

Exports

Exports

download
download_quiet

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/OCSetupHlp.dll
.dll windows:5 windows x86 arch:x86

cbaa743e839b4c7508b43278250895e4

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:81:06:0e:d4:60:b9:9e:62:a9:23:47:bb:b8:4d:48
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Not Before

15-03-2010 00:00

Not After

15-03-2011 23:59

Subject

CN=OpenCandy Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=OpenCandy Inc.,L=San Diego,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

21-05-2009 00:00

Not After

20-05-2019 23:59

Subject

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

9e:f9:6c:bc:3d:8c:79:28:94:7e:1f:f6:ac:e0:a3:be:0e:73:85:92
Signer

Actual PE Digest

9e:f9:6c:bc:3d:8c:79:28:94:7e:1f:f6:ac:e0:a3:be:0e:73:85:92

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetExitCodeThread
CreateMutexA
CreateEventA
WaitForMultipleObjects
SetEvent
DuplicateHandle
lstrlenA
CompareStringA
SetEnvironmentVariableW
SetEnvironmentVariableA
CompareStringW
GetModuleHandleA
GetTimeZoneInformation
FlushFileBuffers
GetFileAttributesA
CreateProcessA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetFileAttributesW
CreateProcessW
GetExitCodeProcess
LoadLibraryA
TerminateThread
LCMapStringW
LCMapStringA
GetCurrentDirectoryA
CreateFileA
PeekNamedPipe
GetFileInformationByHandle
GetFullPathNameA
ReadFile
SetEndOfFile
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
VirtualAlloc
RtlUnwind
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapDestroy
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStartupInfoA
GetStdHandle
ExpandEnvironmentStringsA
FormatMessageA
WideCharToMultiByte
RemoveDirectoryW
ExitProcess
SleepEx
OutputDebugStringW
GetUserDefaultUILanguage
GetLocaleInfoW
LockResource
LoadResource
SizeofResource
FreeLibrary
FindResourceW
DeleteFileW
WriteFile
SetFilePointer
CreateFileW
GetTempPathW
GetLastError
CreateMutexW
CloseHandle
ReleaseMutex
MoveFileExW
GetModuleFileNameW
CreateDirectoryW
GetShortPathNameW
WaitForSingleObject
GetCurrentThreadId
Sleep
GetSystemDirectoryW
GetFullPathNameW
VirtualQuery
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapSize
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
RaiseException
GetDriveTypeW
FindFirstFileA
GetDriveTypeA
FileTimeToLocalFileTime
IsDebuggerPresent
MultiByteToWideChar
GetProcAddress
GetModuleHandleW
GetCurrentProcess
GetVersionExW
GetSystemInfo
CreateSemaphoreW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
ResumeThread
ReleaseSemaphore
OpenProcess
LoadLibraryW
GetLocalTime
SystemTimeToFileTime
FileTimeToSystemTime
GetVersion
GetTickCount
FindFirstFileW
FindNextFileW
FindClose
GetFileAttributesExW
GetFileTime
InitializeCriticalSection
GlobalFree
EnterCriticalSection
GetTempFileNameW
LeaveCriticalSection
InterlockedDecrement
FindResourceA
GetProcessHeap
HeapAlloc
HeapFree
ExitThread
CreateThread
GetSystemTimeAsFileTime
GetCommandLineA
HeapReAlloc
GetConsoleCP
GetConsoleMode
GetFileType
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter

msimg32

AlphaBlend

user32

DrawFocusRect
CreateWindowExW
InvalidateRect
ReleaseCapture
SetCapture
PostMessageW
TrackPopupMenu
GetCursorPos
SetMenuDefaultItem
GetSubMenu
LoadMenuW
DestroyMenu
PeekMessageW
EndPaint
BeginPaint
CallWindowProcW
GetSysColorBrush
GetCursor
SetFocus
DispatchMessageW
TranslateMessage
GetMessageW
SetMenuItemInfoW
LoadIconW
LoadImageW
GetClientRect
GetSystemMetrics
EnableMenuItem
CallNextHookEx
UnhookWindowsHookEx
GetDesktopWindow
GetForegroundWindow
MessageBoxW
SetWindowsHookExW
ScreenToClient
ReleaseDC
GetDC
SetForegroundWindow
PostQuitMessage
LoadCursorW
SetCursor
ClientToScreen
IsWindowVisible
SetWindowPos
EnableWindow
ShowWindow
DialogBoxParamW
CreateDialogParamW
DestroyWindow
GetWindowLongW
SetWindowLongW
EndDialog
GetDlgItem
SendMessageW
MoveWindow
GetParent
GetWindowRect
ChildWindowFromPoint

gdi32

CreateDIBSection
DeleteObject
DeleteDC
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetTextExtentPoint32W
SelectObject
GetStockObject
SetBkMode
SetTextColor
CreateFontIndirectW
GetObjectW
GdiFlush

advapi32

RegEnumKeyW
RegDeleteValueW
RegEnumValueW
RegQueryInfoKeyW
RegCreateKeyExW
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
GetUserNameW
DuplicateTokenEx
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueW
RegDeleteValueA
RegDeleteKeyA
RegDeleteKeyW

shell32

SHGetFolderPathW
Shell_NotifyIconW
ShellExecuteExW
ShellExecuteW

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoCreateGuid
StringFromGUID2
CoInitializeSecurity
CoSetProxyBlanket

oleaut32

VariantClear
SysFreeString
SysAllocString

secur32

GetUserNameExW

urlmon

URLDownloadToFileW

wininet

InternetGetConnectedStateExW
InternetQueryOptionW

psapi

GetProcessImageFileNameW
EnumProcesses

ws2_32

inet_ntoa
htons
gethostbyname
WSASetLastError
socket
inet_addr
__WSAFDIsSet
select
send
ioctlsocket
getsockname
bind
getsockopt
setsockopt
getprotobyname
connect
WSACleanup
recv
WSAGetLastError
closesocket
ntohs
WSAStartup

winmm

timeGetTime

Exports

Exports

DownloadMgr2Init
MainLoop
OCCheckForInfo
OCCheckForLink
OCCleanupProduct
OCDetach
OCDisplay
OCExecuteOffer
OCGetBannerInfo
OCGetLinkPlacementX
OCGetLinkPlacementY
OCGetMsg
OCGetOfferState
OCGetOfferType
OCInit2A
OCInit2W
OCInitA
OCInitW
OCInnoAdjust
OCInnoRestore
OCInstallShieldAdjust
OCNSISAdjust
OCRunDialog
OCSetOfferData
OCSetOfferLocation
OCShutdown
OCSignalProductFailed
OCSignalProductInstalled
OCSignalProductUnInstalled
_DLMgr2Check@16
_Display@16
_DownloadMgr2RecycleOffer@12
_MgrCheck@16
_MgrExec@16
_OCDeleteSelf@16

Sections

.text
Size: 319KB - Virtual size: 318KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:5 windows x86 arch:x86

039bcbc605477e8e87ec550c2e60e748

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyW
lstrcpynW
GetProcAddress
WideCharToMultiByte
lstrcatW
lstrlenW
lstrcmpiW
LoadLibraryW
GetModuleHandleW
MultiByteToWideChar
VirtualAlloc
VirtualProtect
FreeLibrary

user32

wsprintfW

ole32

CLSIDFromString
StringFromGUID2

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 963B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/logo360main.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsDialogs.dll
.dll windows:5 windows x86 arch:x86

9ea5bdc8c90dfcffe309465c26c89758

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
MulDiv
lstrlenW
HeapFree
GetProcessHeap
lstrcmpiW
HeapReAlloc
lstrcpynW
GetFileAttributesW
lstrcpyW
GetCurrentDirectoryW
SetCurrentDirectoryW
HeapAlloc
GlobalFree

user32

LoadCursorW
RemovePropW
DrawFocusRect
GetPropW
DrawTextW
GetWindowTextW
GetDlgItem
SetWindowLongW
SetWindowPos
CreateDialogParamW
MapWindowPoints
GetWindowRect
SetCursor
CreateWindowExW
IsWindow
SetTimer
KillTimer
DispatchMessageW
TranslateMessage
GetMessageW
IsDialogMessageW
ShowWindow
wsprintfW
GetClientRect
CharPrevW
CallWindowProcW
SetPropW
DestroyWindow
MapDialogRect
CharNextW
SendMessageW
GetWindowLongW

gdi32

SetTextColor

shell32

SHGetPathFromIDListW
SHBrowseForFolderW

comdlg32

GetSaveFileNameW
CommDlgExtendedError
GetOpenFileNameW

ole32

CoTaskMemFree

Exports

Exports

Create
CreateControl
CreateItem
CreateTimer
GetUserData
KillTimer
OnBack
OnChange
OnClick
OnNotify
SelectFileDialog
SelectFolderDialog
SetRTL
SetUserData
Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 590B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$TEMP/pin.vbs
.vbs
CSMX.dll
.dll windows:4 windows x86 arch:x86

e37f7efe98ea725b5013810ca8514b87

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeEnvironmentStringsA
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
RtlUnwind
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
MultiByteToWideChar
FreeEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

user32

MessageBoxA

esdll

?SwapSize@CMamaz@@QAEHPAXH@Z
??0CUesz@@QAE@PAXH@Z
??0CEsz@@QAE@PAXH@Z

winmm

DefDriverProc

Exports

Exports

DriverProc

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Esdll.dll
.dll windows:4 windows x86 arch:x86

727122a5be2245cc72b0c6152b3d74d6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RaiseException
ExitProcess
TerminateProcess
GetCurrentProcess
IsBadWritePtr
IsBadReadPtr
HeapValidate
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
FatalAppExitA
HeapFree
SetUnhandledExceptionFilter
DebugBreak
GetStdHandle
WriteFile
InterlockedDecrement
OutputDebugStringA
GetProcAddress
LoadLibraryA
InterlockedIncrement
GetModuleFileNameA
GetModuleHandleA
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCurrentThread
ReadFile
HeapAlloc
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetHandleCount
GetFileType
GetStartupInfoA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
WideCharToMultiByte
SetStdHandle
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
IsBadCodePtr
SetFilePointer
SetConsoleCtrlHandler
UnhandledExceptionFilter
FlushFileBuffers
RtlUnwind
GetCPInfo
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
Sleep
LCMapStringA
LCMapStringW
CloseHandle
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
GetTimeZoneInformation
GetLocaleInfoW
DeleteFileA

Exports

Exports

??0CEsz@@QAE@ABV0@@Z
??0CEsz@@QAE@PAXH@Z
??0CEszException@@QAA@PBDZZ
??0CMamaz@@QAE@ABV0@@Z
??0CMamaz@@QAE@PAXH@Z
??0CUesz@@QAE@ABV0@@Z
??0CUesz@@QAE@PAXH@Z
??4CEsz@@QAEAAV0@ABV0@@Z
??4CEszException@@QAEAAV0@ABV0@@Z
??4CMamaz@@QAEAAV0@ABV0@@Z
??4CUesz@@QAEAAV0@ABV0@@Z
??_7CEsz@@6B@
??_7CMamaz@@6B@
??_7CUesz@@6B@
?EsDll@@YAHPAFPAIH@Z
?EsDllD@@YAHPAIPAFH@Z
?EsDllInit@@YAXXZ
?EsDllInitD@@YAXXZ
?GetString@CEszException@@QAEPBDXZ
?HardWork@CEsz@@MAEHPAX0@Z
?HardWork@CUesz@@MAEHPAX0@Z
?SwapSize@CMamaz@@QAEHPAXH@Z

Sections

.text
Size: 304KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 454KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IVMSource.ax
.dll regsvr32 windows:4 windows x86 arch:x86

1ae61317dec34b6d2bc750d4a7e31465

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathFileExistsA

wininet

InternetQueryOptionA
HttpSendRequestA
InternetConnectA
HttpOpenRequestA
InternetSetOptionA
InternetReadFile
InternetOpenA
InternetOpenUrlA
HttpQueryInfoA
InternetCloseHandle

ws2_32

bind
inet_addr
socket
WSAStartup
shutdown
recv
select
accept
send
__WSAFDIsSet
getsockname
ntohs
ioctlsocket
listen
closesocket
htons

mc

DestroyWindows
InitMc
DestroyMCWindow
ResiteLogoWIndowInVideo
NewWindow
NotifyVideoCoordinateEx
SWParent

ivm

?ProcessDrmLogic@DrmCtrl@@UAEHPAD0K@Z
?WriteByte@Basic_Stream@@UAEHAAE@Z
?WriteWord@Basic_Stream@@UAEHAAG@Z
?GetErrorString@DrmCtrl@@QAEPADXZ
??1DrmCtrl@@UAE@XZ
??1DrmPayPerView@@UAE@XZ
??1DrmCopyCtrlObject@@UAE@XZ
??1DrmAreaTimeZoneObject@@UAE@XZ
??1DrmExpirationObject@@UAE@XZ
?GetDynamicVideoDecrypt@PropertyObject@@QAEEXZ
??0BlowFish@@QAE@HPAE@Z
?Decrypt@BlowFish@@QAEXPAE0@Z
??1BlowFish@@UAE@XZ
?CreateFromFile@IVMContainer@@QAEHPAD@Z
?GetAVDataObject@IVMContainer@@QAEHPAPAVAVDataObject@@@Z
?WriteBuffer@Basic_Stream@@UAEHPAEH@Z
?FlushBuffer@FileStream@@UAEHXZ
?WriteDword@Basic_Stream@@UAEHAAK@Z
??1FileStream@@UAE@XZ
??0FileStream@@QAE@PADHPAE@Z
?ReadBuffer@FileStream@@UAEHPAEH@Z
?ReadEncryptBuffer@Basic_Stream@@UAEHPAEHE@Z
?ReadSSLEncryptBuffer@Basic_Stream@@UAEHPAEH@Z
?ReadByte@Basic_Stream@@UAEEXZ
?ReadWord@Basic_Stream@@UAEGXZ
?ReadDword@Basic_Stream@@UAEKXZ
?GetSupervisor@PropertyObject@@QAEEXZ
?CreateAVReadStream@IVMContainer@@QAEPAVBasic_Stream@@PAE@Z
?GetFormatObject@IVMContainer@@QAEHPAPAVFormatObject@@@Z
?GetPropertyObject@IVMContainer@@QAEHPAPAVPropertyObject@@@Z
?GetDrmEnable@PropertyObject@@QAEEXZ
?GetExDataObject@IVMContainer@@QAEHPAPAVExDataObject@@@Z
?ExFrame@ExDataObject@@QAEPAU_EX_FRAME@@H@Z
??0IVMContainer@@QAE@XZ
??1IVMContainer@@UAE@XZ
?ReadQword@Basic_Stream@@UAE_KXZ
?ReadGUID@Basic_Stream@@UAE?AU_GUID@@XZ
?Forward@FileStream@@UAEX_J@Z
?WriteQword@Basic_Stream@@UAEHAA_K@Z
?Tellp@FileStream@@UAE_KXZ
?Release@FileStream@@UAEXXZ
?SetReadMax@FileStream@@UAEX_K@Z
?GetReadMax@FileStream@@UAE_KXZ
?SetReadStart@FileStream@@UAEX_K@Z
?SetPointer@FileStream@@UAEH_K@Z
?Tellrp@FileStream@@UAE_KXZ
?CreateExSrcReadStream@IVMContainer@@QAEPAVBasic_Stream@@PAD@Z
?GetDistributor@DrmCtrl@@QAEPADXZ
??0DrmExpirationObject@@QAE@XZ
??0DrmAreaTimeZoneObject@@QAE@XZ
??0DrmCopyCtrlObject@@QAE@XZ
??0DrmPayPerView@@QAE@XZ
??0DrmCtrl@@QAE@XZ
?AddDrmObject@DrmCtrl@@UAEXPAVDrmObject@@@Z
?SetIvmFilePath@DrmExpirationObject@@QAEXPAD@Z

winmm

timeSetEvent
timeGetTime

msvcrt

atoi
strtok
__CxxFrameHandler
??2@YAPAXI@Z
memmove
isalnum
strchr
time
sscanf
_mkdir
fclose
fread
fopen
fseek
_strlwr
strstr
strncmp
_purecall
localtime
isspace
atol
_atoi64
fwrite
memchr
wcscmp
_ltoa
atof
_fstat
mktime
ftell
free
_initterm
malloc
_adjust_fdiv
__dllonexit
_onexit
srand
rand
??3@YAXPAX@Z
_itoa
??1type_info@@UAE@XZ
sprintf
wcslen
_CxxThrowException

kernel32

CloseHandle
SetEvent
WaitForSingleObject
CreateProcessA
InterlockedDecrement
CreateThread
TerminateThread
GetPrivateProfileIntA
SetThreadPriority
InterlockedExchange
OutputDebugStringA
DeleteCriticalSection
InterlockedIncrement
GetLastError
DeleteFileA
FindNextFileA
ResetEvent
WaitForMultipleObjects
lstrlenA
DisableThreadLibraryCalls
FindClose
FindFirstFileA
GetWindowsDirectoryA
GetPrivateProfileStringA
GetSystemDirectoryA
DuplicateHandle
GetCurrentProcess
CreateSemaphoreA
MultiByteToWideChar
WideCharToMultiByte
GetModuleFileNameA
WritePrivateProfileStringA
GetCurrentProcessId
lstrlenW
LocalFree
Sleep
GetTickCount
GetVersionExA
InitializeCriticalSection
EnterCriticalSection
GetCurrentThreadId
CreateEventA
GetCurrentThread
GetThreadPriority
GetACP
GetModuleHandleA
GetProcAddress
LoadLibraryA
FreeLibrary
VirtualFree
VirtualAlloc
GetSystemInfo
ReleaseSemaphore
LeaveCriticalSection

user32

SetWindowPos
SendMessageA
MessageBoxA
IsWindow
PostThreadMessageA
SetWindowLongA
UnhookWindowsHookEx
CallNextHookEx
GetWindow
GetWindowTextA
GetClassNameA
DispatchMessageA
GetWindowLongA
GetWindowThreadProcessId
GetQueueStatus
RegisterWindowMessageA
wvsprintfA
MsgWaitForMultipleObjects
wsprintfA
SetWindowTextA
GetDlgItem
EndDialog
DialogBoxParamA
ClientToScreen
ShowCursor
GetParent
SetWindowsHookExA
PeekMessageA
SetTimer
GetMessageA
KillTimer
GetWindowRect
GetDesktopWindow
GetDC
IsWindowVisible
TranslateMessage

gdi32

GetDeviceCaps

comdlg32

GetOpenFileNameA

advapi32

RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueA
RegCreateKeyA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegEnumKeyExA
RegDeleteKeyA

shell32

ShellExecuteA

ole32

CoFreeUnusedLibraries
StringFromGUID2
CoTaskMemAlloc
CoInitialize
CoUninitialize
CoCreateGuid
CoCreateInstance
CoTaskMemFree

oleaut32

SysAllocString
GetErrorInfo
SetErrorInfo
VariantChangeType
VariantInit
CreateErrorInfo
VariantClear
SysFreeString

crypt32

CertCloseStore
CertFreeCertificateContext
CertOpenSystemStoreA
CertFindCertificateInStore

msvcp60

?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Refcnt@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEAAEPBD@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
?_Xlen@std@@YAXXZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OpenCandy/OCSetupHlp.dll
.dll windows:5 windows x86 arch:x86

cbaa743e839b4c7508b43278250895e4

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:81:06:0e:d4:60:b9:9e:62:a9:23:47:bb:b8:4d:48
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Not Before

15-03-2010 00:00

Not After

15-03-2011 23:59

Subject

CN=OpenCandy Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=OpenCandy Inc.,L=San Diego,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

21-05-2009 00:00

Not After

20-05-2019 23:59

Subject

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

9e:f9:6c:bc:3d:8c:79:28:94:7e:1f:f6:ac:e0:a3:be:0e:73:85:92
Signer

Actual PE Digest

9e:f9:6c:bc:3d:8c:79:28:94:7e:1f:f6:ac:e0:a3:be:0e:73:85:92

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetExitCodeThread
CreateMutexA
CreateEventA
WaitForMultipleObjects
SetEvent
DuplicateHandle
lstrlenA
CompareStringA
SetEnvironmentVariableW
SetEnvironmentVariableA
CompareStringW
GetModuleHandleA
GetTimeZoneInformation
FlushFileBuffers
GetFileAttributesA
CreateProcessA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetFileAttributesW
CreateProcessW
GetExitCodeProcess
LoadLibraryA
TerminateThread
LCMapStringW
LCMapStringA
GetCurrentDirectoryA
CreateFileA
PeekNamedPipe
GetFileInformationByHandle
GetFullPathNameA
ReadFile
SetEndOfFile
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
VirtualAlloc
RtlUnwind
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapDestroy
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStartupInfoA
GetStdHandle
ExpandEnvironmentStringsA
FormatMessageA
WideCharToMultiByte
RemoveDirectoryW
ExitProcess
SleepEx
OutputDebugStringW
GetUserDefaultUILanguage
GetLocaleInfoW
LockResource
LoadResource
SizeofResource
FreeLibrary
FindResourceW
DeleteFileW
WriteFile
SetFilePointer
CreateFileW
GetTempPathW
GetLastError
CreateMutexW
CloseHandle
ReleaseMutex
MoveFileExW
GetModuleFileNameW
CreateDirectoryW
GetShortPathNameW
WaitForSingleObject
GetCurrentThreadId
Sleep
GetSystemDirectoryW
GetFullPathNameW
VirtualQuery
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
HeapSize
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
RaiseException
GetDriveTypeW
FindFirstFileA
GetDriveTypeA
FileTimeToLocalFileTime
IsDebuggerPresent
MultiByteToWideChar
GetProcAddress
GetModuleHandleW
GetCurrentProcess
GetVersionExW
GetSystemInfo
CreateSemaphoreW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
ResumeThread
ReleaseSemaphore
OpenProcess
LoadLibraryW
GetLocalTime
SystemTimeToFileTime
FileTimeToSystemTime
GetVersion
GetTickCount
FindFirstFileW
FindNextFileW
FindClose
GetFileAttributesExW
GetFileTime
InitializeCriticalSection
GlobalFree
EnterCriticalSection
GetTempFileNameW
LeaveCriticalSection
InterlockedDecrement
FindResourceA
GetProcessHeap
HeapAlloc
HeapFree
ExitThread
CreateThread
GetSystemTimeAsFileTime
GetCommandLineA
HeapReAlloc
GetConsoleCP
GetConsoleMode
GetFileType
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter

msimg32

AlphaBlend

user32

DrawFocusRect
CreateWindowExW
InvalidateRect
ReleaseCapture
SetCapture
PostMessageW
TrackPopupMenu
GetCursorPos
SetMenuDefaultItem
GetSubMenu
LoadMenuW
DestroyMenu
PeekMessageW
EndPaint
BeginPaint
CallWindowProcW
GetSysColorBrush
GetCursor
SetFocus
DispatchMessageW
TranslateMessage
GetMessageW
SetMenuItemInfoW
LoadIconW
LoadImageW
GetClientRect
GetSystemMetrics
EnableMenuItem
CallNextHookEx
UnhookWindowsHookEx
GetDesktopWindow
GetForegroundWindow
MessageBoxW
SetWindowsHookExW
ScreenToClient
ReleaseDC
GetDC
SetForegroundWindow
PostQuitMessage
LoadCursorW
SetCursor
ClientToScreen
IsWindowVisible
SetWindowPos
EnableWindow
ShowWindow
DialogBoxParamW
CreateDialogParamW
DestroyWindow
GetWindowLongW
SetWindowLongW
EndDialog
GetDlgItem
SendMessageW
MoveWindow
GetParent
GetWindowRect
ChildWindowFromPoint

gdi32

CreateDIBSection
DeleteObject
DeleteDC
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetTextExtentPoint32W
SelectObject
GetStockObject
SetBkMode
SetTextColor
CreateFontIndirectW
GetObjectW
GdiFlush

advapi32

RegEnumKeyW
RegDeleteValueW
RegEnumValueW
RegQueryInfoKeyW
RegCreateKeyExW
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
GetUserNameW
DuplicateTokenEx
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueW
RegDeleteValueA
RegDeleteKeyA
RegDeleteKeyW

shell32

SHGetFolderPathW
Shell_NotifyIconW
ShellExecuteExW
ShellExecuteW

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoCreateGuid
StringFromGUID2
CoInitializeSecurity
CoSetProxyBlanket

oleaut32

VariantClear
SysFreeString
SysAllocString

secur32

GetUserNameExW

urlmon

URLDownloadToFileW

wininet

InternetGetConnectedStateExW
InternetQueryOptionW

psapi

GetProcessImageFileNameW
EnumProcesses

ws2_32

inet_ntoa
htons
gethostbyname
WSASetLastError
socket
inet_addr
__WSAFDIsSet
select
send
ioctlsocket
getsockname
bind
getsockopt
setsockopt
getprotobyname
connect
WSACleanup
recv
WSAGetLastError
closesocket
ntohs
WSAStartup

winmm

timeGetTime

Exports

Exports

DownloadMgr2Init
MainLoop
OCCheckForInfo
OCCheckForLink
OCCleanupProduct
OCDetach
OCDisplay
OCExecuteOffer
OCGetBannerInfo
OCGetLinkPlacementX
OCGetLinkPlacementY
OCGetMsg
OCGetOfferState
OCGetOfferType
OCInit2A
OCInit2W
OCInitA
OCInitW
OCInnoAdjust
OCInnoRestore
OCInstallShieldAdjust
OCNSISAdjust
OCRunDialog
OCSetOfferData
OCSetOfferLocation
OCShutdown
OCSignalProductFailed
OCSignalProductInstalled
OCSignalProductUnInstalled
_DLMgr2Check@16
_Display@16
_DownloadMgr2RecycleOffer@12
_MgrCheck@16
_MgrExec@16
_OCDeleteSelf@16

Sections

.text
Size: 319KB - Virtual size: 318KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
OpenCandy/OpenCandy_Why_Is_This_Here.txt
PmpSplitter.ax
.dll regsvr32 windows:4 windows x86 arch:x86

3b061fad8266f6f03923cff87f660920

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\workspace\cooleyes\PmpSplitter\Release Unicode\PmpSplitter.pdb

Imports

kernel32

TlsSetValue
LocalReAlloc
TlsFree
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileAttributesW
GetFileTime
lstrcatW
GlobalFlags
GetModuleHandleA
GetVersionExA
LoadLibraryA
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
ExitProcess
TlsAlloc
HeapFree
HeapAlloc
GetCommandLineA
VirtualProtect
VirtualQuery
HeapReAlloc
SetStdHandle
GetFileType
HeapSize
TerminateProcess
QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapDestroy
HeapCreate
IsBadWritePtr
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
GetOEMCP
GetCPInfo
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GetFullPathNameW
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
SetLastError
Sleep
GetModuleFileNameW
GetVersion
CreateFileW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcessId
WideCharToMultiByte
GetModuleFileNameA
lstrlenA
MultiByteToWideChar
CreateThread
GetLastError
GetTickCount
lstrcpyW
GetModuleHandleW
GetProcAddress
VirtualAlloc
GetCurrentThreadId
GetCurrentProcess
DuplicateHandle
lstrcmpW
VirtualFree
GetSystemInfo
WaitForSingleObject
ResetEvent
SetEvent
CreateEventW
CloseHandle
lstrlenW
lstrcpynW
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
FreeLibrary
InterlockedIncrement
DisableThreadLibraryCalls
FindResourceW
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
RtlUnwind

user32

CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapW
WinHelpW
GetCapture
CreateWindowExW
GetClassInfoExW
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconW
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
PostMessageW
AdjustWindowRectEx
GetClassInfoW
RegisterClassW
DefWindowProcW
CallWindowProcW
SystemParametersInfoA
IsIconic
CopyRect
GrayStringW
DrawTextW
TabbedTextOutW
SetWindowPos
SetWindowLongW
GetDlgItem
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetFocus
SetWindowTextW
GetClassNameW
SetWindowsHookExW
CallNextHookEx
GetKeyState
ValidateRect
GetWindowTextW
LoadCursorW
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
SendMessageW
MessageBoxW
GetParent
PostQuitMessage
DestroyMenu
SetMenuItemBitmaps
ModifyMenuW
GetWindowPlacement
EnableMenuItem
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
EnableWindow
CharUpperW
GetSystemMetrics
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
DispatchMessageW
RegisterWindowMessageW
wsprintfW
PeekMessageW
UnregisterClassW
DrawTextExW

gdi32

DeleteDC
CreateBitmap
GetStockObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetBkColor
RestoreDC
SaveDC
DeleteObject
GetDeviceCaps
GetClipBox
SetMapMode
SetTextColor
SelectObject

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegEnumKeyExW
RegSetValueW
RegCreateKeyW
RegDeleteKeyW

comctl32

ord17

shlwapi

PathStripToRootW
PathFindFileNameW
PathIsUNCW

ole32

CLSIDFromString
StringFromGUID2
CoTaskMemAlloc
CoInitialize
CoFreeUnusedLibraries
CoUninitialize
CoCreateInstance
CoTaskMemFree

oleaut32

SysFreeString
VariantChangeType
SysAllocStringLen
VariantClear
VariantInit
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
RadGtSplitter.ax
.dll regsvr32 windows:4 windows x86 arch:x86

635acae72f0a325d4d8ee6a93ca09305

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\MediaPlayerClasic\src\filters\parser\radgtsplitter\Release\RadGtSplitter.pdb

Imports

kernel32

ReadFile
WriteFile
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
lstrcpyA
GetFullPathNameA
LocalAlloc
GlobalReAlloc
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
lstrcatA
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GlobalFlags
GetCPInfo
GetOEMCP
RtlUnwind
ExitProcess
HeapAlloc
HeapFree
VirtualProtect
VirtualQuery
GetCommandLineA
HeapReAlloc
SetStdHandle
GetFileType
HeapSize
TerminateProcess
QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapDestroy
HeapCreate
IsBadWritePtr
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
GetFileTime
GetFileSize
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
lstrcmpA
SetLastError
lstrcpynA
DeleteFileA
CreateFileA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcessId
CreateThread
GetTickCount
SetThreadPriority
GetModuleHandleA
DisableThreadLibraryCalls
GetModuleFileNameA
VirtualAlloc
GetCurrentThreadId
GetCurrentProcess
DuplicateHandle
VirtualFree
GetSystemInfo
WaitForSingleObject
ResetEvent
SetEvent
CreateEventA
CloseHandle
InterlockedDecrement
InterlockedIncrement
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
GetLastError
RaiseException
MultiByteToWideChar
LoadLibraryA
GetProcAddress
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
FreeLibrary
SetFilePointer
Sleep
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection

user32

SetWindowTextA
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetFocus
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
PtInRect
GetWindow
SetWindowsHookExA
CallNextHookEx
GetKeyState
ValidateRect
GetWindowTextA
LoadCursorA
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
PostMessageA
GetSystemMetrics
SendMessageA
GetParent
GetWindowLongA
GetLastActivePopup
PostQuitMessage
DestroyMenu
IsWindowEnabled
EnableWindow
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
DispatchMessageA
RegisterWindowMessageA
PeekMessageA
wsprintfA
UnregisterClassA
CharUpperA
MessageBoxA
CopyRect
GetClassInfoExA

gdi32

ScaleWindowExtEx
DeleteDC
CreateBitmap
GetStockObject
SetWindowExtEx
TextOutA
RectVisible
PtVisible
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
DeleteObject
SetMapMode
RestoreDC
SaveDC
ExtTextOutA

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
RegSetValueA
RegCreateKeyA
RegCreateKeyExA
RegCloseKey

comctl32

ord17

shlwapi

PathIsUNCA
PathFindFileNameA
PathStripToRootA

ole32

CoCreateInstance
CoUninitialize
CoFreeUnusedLibraries
CoInitialize
CoTaskMemAlloc
StringFromGUID2
CoTaskMemFree
CLSIDFromString

oleaut32

VariantInit
VariantChangeType
VariantClear
SysAllocString
SysFreeString
SysAllocStringLen

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_TEXT64
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
binkw32.dll
.dll windows:4 windows x86 arch:x86

863844ad7aa759748e31329c65f10f35

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\Devel\Projects\bink\build\binkw32.pdb

Imports

user32

SetCursor
GetClassLongA
RegisterClassA
ChangeDisplaySettingsA
IsWindowVisible
GetSystemMetrics
GetCursorPos
DefWindowProcA
ReleaseDC
PeekMessageA
CreateWindowExA
GetTopWindow
GetWindowLongA
GetActiveWindow
GetWindowThreadProcessId
GetWindow
EndPaint
ClientToScreen
DestroyWindow
MessageBoxA
ScreenToClient
GetWindowRect
IsIconic
GetClientRect
BeginPaint
GetDC
ShowCursor
UnregisterClassA

gdi32

CreateDIBSection
GetDeviceCaps
StretchBlt
GetDIBits
SetPixel
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
SetStretchBltMode
GetPixel
DeleteDC

kernel32

GetOEMCP
GetACP
LCMapStringW
MultiByteToWideChar
LCMapStringA
WriteFile
GetEnvironmentStringsW
GetCPInfo
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
GetStringTypeA
GetStringTypeW
HeapSize
GetCurrentThreadId
GetSystemTimeAsFileTime
RtlUnwind
GetLastError
CreateEventA
GetWindowsDirectoryA
GetSystemDirectoryA
GetModuleFileNameA
SetErrorMode
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleHandleA
Sleep
GetCurrentProcessId
QueryPerformanceCounter
GetTickCount
QueryPerformanceFrequency
CreateFileA
SetFilePointer
ReadFile
CloseHandle
WaitForSingleObject
SetEvent
RaiseException
SetThreadPriority
WaitForMultipleObjects
CreateMutexA
ReleaseMutex
ResumeThread
CreateThread
GetCurrentProcess
TerminateProcess
ExitProcess
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetCommandLineA
HeapFree
HeapAlloc

winmm

waveOutPrepareHeader
waveOutOpen
waveOutUnprepareHeader
waveOutSetVolume
waveOutReset
waveOutRestart
waveOutPause
waveOutWrite
waveOutClose
timeGetTime

Exports

Exports

_BinkBufferBlit@12
_BinkBufferCheckWinPos@12
_BinkBufferClear@8
_BinkBufferClose@4
_BinkBufferGetDescription@4
_BinkBufferGetError@0
_BinkBufferLock@4
_BinkBufferOpen@16
_BinkBufferSetDirectDraw@8
_BinkBufferSetHWND@8
_BinkBufferSetOffset@12
_BinkBufferSetResolution@12
_BinkBufferSetScale@12
_BinkBufferUnlock@4
_BinkCheckCursor@20
_BinkClose@4
_BinkCloseTrack@4
_BinkCopyToBuffer@28
_BinkCopyToBufferRect@44
_BinkDDSurfaceType@4
_BinkDX8SurfaceType@4
_BinkDoFrame@4
_BinkGetError@0
_BinkGetKeyFrame@12
_BinkGetRealtime@12
_BinkGetRects@8
_BinkGetSummary@8
_BinkGetTrackData@8
_BinkGetTrackID@8
_BinkGetTrackMaxSize@8
_BinkGetTrackType@8
_BinkGoto@12
_BinkIsSoftwareCursor@8
_BinkLogoAddress@0
_BinkNextFrame@4
_BinkOpen@8
_BinkOpenDirectSound@4
_BinkOpenMiles@4
_BinkOpenTrack@8
_BinkOpenWaveOut@4
_BinkPause@8
_BinkRestoreCursor@4
_BinkService@4
_BinkSetError@4
_BinkSetFrameRate@8
_BinkSetIO@4
_BinkSetIOSize@4
_BinkSetMixBinVolumes@20
_BinkSetMixBins@16
_BinkSetPan@12
_BinkSetSimulate@4
_BinkSetSoundOnOff@8
_BinkSetSoundSystem@8
_BinkSetSoundTrack@8
_BinkSetVideoOnOff@8
_BinkSetVolume@12
_BinkWait@4
_RADSetMemory@8
_RADTimerRead@0
_YUV_blit_16a1bpp@52
_YUV_blit_16a1bpp_mask@60
_YUV_blit_16a4bpp@52
_YUV_blit_16a4bpp_mask@60
_YUV_blit_16bpp@48
_YUV_blit_16bpp_mask@56
_YUV_blit_24bpp@48
_YUV_blit_24bpp_mask@56
_YUV_blit_24rbpp@48
_YUV_blit_24rbpp_mask@56
_YUV_blit_32abpp@52
_YUV_blit_32abpp_mask@60
_YUV_blit_32bpp@48
_YUV_blit_32bpp_mask@56
_YUV_blit_32rabpp@52
_YUV_blit_32rabpp_mask@60
_YUV_blit_32rbpp@48
_YUV_blit_32rbpp_mask@56
_YUV_blit_UYVY@48
_YUV_blit_UYVY_mask@56
_YUV_blit_YUY2@48
_YUV_blit_YUY2_mask@56
_YUV_blit_YV12@52
_YUV_init@4
_radfree@4
_radmalloc@4

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK16
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK4444
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK5551
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK32
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK32A
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK16X2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK32X2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK16MX
Size: 1024B - Virtual size: 515B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK32MX
Size: 1024B - Virtual size: 687B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK16M
Size: 512B - Virtual size: 503B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK32M
Size: 1024B - Virtual size: 547B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKYUY2
Size: 512B - Virtual size: 361B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKYUY2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKYUY2
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKYUY2
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK32R
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK32RA
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK32RX
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK24
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK24X2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK24M
Size: 1024B - Virtual size: 714B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK24R
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK24RX
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK24RM
Size: 1024B - Virtual size: 804B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKUYVY
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKUYVY
Size: 512B - Virtual size: 369B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKUYVY
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKUYVY
Size: 512B - Virtual size: 327B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKYV12
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BINKDATA
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/ijl15.dll
.dll windows:4 windows x86 arch:x86

43fd8fd13d2d05654de14de52b9d512d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeEnvironmentStringsA
CloseHandle
ReadFile
WriteFile
SetFilePointer
LoadLibraryA
GetProcAddress
FreeLibrary
OutputDebugStringA
GetCurrentThreadId
GetModuleFileNameA
lstrlenA
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
GetModuleHandleA
HeapAlloc
HeapFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
CreateFileA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
InterlockedDecrement
InterlockedIncrement
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers

Exports

Exports

ijlErrorStr
ijlFree
ijlGetLibVersion
ijlInit
ijlRead
ijlWrite

Sections

.text
Size: 312KB - Virtual size: 309KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mcucltu.dll
.dll regsvr32 windows:4 windows x86 arch:x86

d7936f92318430ce8624f42c4041836f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kybase\source\network\mcuclient\ReleaseMpc\mcuclient.pdb

Imports

ws2_32

htonl
ntohl
htons

kernel32

GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
lstrlenW
CloseHandle
GetTickCount
CreateEventW
DeleteCriticalSection
InitializeCriticalSection
RaiseException
InterlockedExchange
InterlockedDecrement
GetModuleFileNameW
OutputDebugStringW
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
LeaveCriticalSection
EnterCriticalSection
InterlockedIncrement
GetSystemTimeAsFileTime
FlushFileBuffers
GetSystemInfo
VirtualProtect
GetVersionExA
ExitProcess
RtlUnwind
HeapFree
GetCurrentThreadId
GetCommandLineA
HeapReAlloc
HeapAlloc
QueryPerformanceCounter
GetCurrentProcessId
GetModuleFileNameA
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
GetModuleHandleA
SetUnhandledExceptionFilter
VirtualQuery
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
TerminateProcess
GetCurrentProcess
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
LoadLibraryA
IsBadReadPtr
IsBadCodePtr
GetOEMCP
GetCPInfo
SetFilePointer
SetStdHandle

user32

IsWindow
PeekMessageW
DispatchMessageW
MsgWaitForMultipleObjects
PostMessageW

advapi32

RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW
RegCreateKeyExW

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mcufilecu.dll
.dll regsvr32 windows:4 windows x86 arch:x86

4324400c9d632fe833a1b2a058534034

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kybase\source\network\mcufilec\ReleaseMpc\mcufilec.pdb

Imports

kernel32

WaitForSingleObject
CloseHandle
GetTickCount
CreateEventW
EnterCriticalSection
LeaveCriticalSection
SetEndOfFile
DeleteFileW
GetLastError
SetFilePointer
CreateFileW
WriteFile
SetEvent
ReadFile
ResetEvent
WaitForMultipleObjects
GetVersionExW
GetFileSize
RaiseException
InterlockedIncrement
InterlockedDecrement
OutputDebugStringW
GetModuleFileNameW
FlushFileBuffers
GetSystemInfo
VirtualProtect
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
DeleteCriticalSection
CreateThread
InitializeCriticalSection
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetVersionExA
RtlUnwind
ExitProcess
HeapFree
GetCurrentThreadId
GetCommandLineA
HeapReAlloc
HeapAlloc
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
GetModuleHandleA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
SetUnhandledExceptionFilter
VirtualQuery
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
TerminateProcess
GetCurrentProcess
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetOEMCP
GetCPInfo
LoadLibraryA
MultiByteToWideChar
GetStringTypeA

user32

PostMessageW

advapi32

RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW
RegCreateKeyExW

ole32

CoUninitialize
CoInitialize
CoTaskMemFree
StringFromCLSID
CoCreateInstance

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mdssockc.dll
.dll regsvr32 windows:4 windows x86 arch:x86

9914558a7a38407454d235202796d25a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

timeKillEvent
timeSetEvent

iphlpapi

GetAdaptersInfo

ws2_32

inet_addr
WSAIoctl
htons
htonl
getsockname
WSASendTo
WSARecvFrom
ntohs
WSAGetOverlappedResult
WSASend
WSARecv
inet_ntoa
WSAStartup
gethostname
gethostbyname
ntohl
WSAEnumProtocolsA
WSAGetLastError
WSACleanup
WSAEnumNetworkEvents
WSASocketA
WSACloseEvent
WSACreateEvent
WSAConnect
bind
WSAEventSelect
closesocket
setsockopt

kernel32

GetCPInfo
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
HeapSize
IsBadWritePtr
HeapReAlloc
InitializeCriticalSection
CreateEventA
DeleteCriticalSection
CloseHandle
WaitForMultipleObjectsEx
SetEvent
ResetEvent
EnterCriticalSection
LeaveCriticalSection
GetLastError
CreateThread
WaitForSingleObject
GetCurrentThreadId
SetThreadPriority
InterlockedExchange
SetFilePointer
InterlockedDecrement
WideCharToMultiByte
WaitForMultipleObjects
GlobalFree
GlobalAlloc
GetTickCount
lstrlenA
GetVersionExA
WriteFile
OutputDebugStringA
GetModuleFileNameA
VirtualAlloc
VirtualQuery
UnhandledExceptionFilter
VirtualFree
LoadLibraryA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
VirtualProtect
GetSystemInfo
FlushFileBuffers
InterlockedIncrement
HeapCreate
HeapDestroy
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RtlUnwind
RaiseException
GetCommandLineA
HeapAlloc
HeapFree
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
GetModuleHandleA
SetUnhandledExceptionFilter
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA

user32

PostThreadMessageA
PeekMessageA
PostMessageA

advapi32

RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyExA
RegQueryValueExA
RegCloseKey

ole32

CoUninitialize
CoTaskMemFree
CoInitialize
StringFromCLSID
CoTaskMemAlloc

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mtcontain.dll
.dll regsvr32 windows:4 windows x86 arch:x86

3315a8ec8b3a582cafff8a545edf4e1e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kybase\source\application\mtcontain\ReleaseMpc\mtcontain.pdb

Imports

kernel32

GetProcAddress
OutputDebugStringW
CloseHandle
FlushFileBuffers
GetSystemInfo
VirtualProtect
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
SetFilePointer
GetVersionExA
GetOEMCP
IsBadCodePtr
IsBadReadPtr
LoadLibraryA
WriteFile
UnhandledExceptionFilter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
HeapSize
TerminateProcess
SetUnhandledExceptionFilter
GetModuleHandleA
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
IsBadWritePtr
VirtualAlloc
GetCurrentThreadId
HeapAlloc
GetProcessHeap
HeapFree
GetCurrentProcess
FlushInstructionCache
FindResourceExW
LeaveCriticalSection
EnterCriticalSection
InterlockedExchange
lstrcpynW
lstrcmpiW
LoadLibraryExW
FindResourceW
LoadResource
SizeofResource
MultiByteToWideChar
FreeLibrary
GetLastError
GetModuleFileNameW
GetModuleHandleW
lstrcpyW
lstrlenW
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
GetCPInfo
VirtualFree
HeapCreate
HeapDestroy
VirtualQuery
GetModuleFileNameA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
ExitProcess
RtlUnwind
HeapReAlloc
GetCommandLineA
QueryPerformanceCounter

user32

UnregisterClassW
CharNextW
IsWindow
SendMessageW
SetWindowLongW
CreateWindowExW
SystemParametersInfoA
GetSystemMetrics
PostMessageW
InflateRect
IntersectRect
GetWindowDC
ClientToScreen
ScreenToClient
SystemParametersInfoW
DrawTextW
SetCapture
GetCapture
GetDlgCtrlID
SetCursor
InvalidateRect
ReleaseCapture
RegisterClassExW
CallWindowProcW
GetWindowLongW
DefWindowProcW
EndPaint
BeginPaint
LoadBitmapW
DestroyWindow
DestroyCursor
LoadImageW
GetDC
ReleaseDC
GetParent
LoadCursorW
wsprintfW
GetClassInfoExW
SetWindowRgn
SetParent
EnableWindow
ShowWindow
GetClientRect
GetWindowRect
SetWindowPos

gdi32

CreateBitmap
CreatePatternBrush
CreateRectRgnIndirect
SetRectRgn
SelectClipRgn
GetClipBox
PatBlt
SetBkColor
ExtTextOutW
SetTextColor
SetBkMode
CreateCompatibleDC
BitBlt
PtInRegion
DeleteDC
CombineRgn
CreateFontIndirectW
CreateRectRgn
GetObjectW
DeleteObject
GetDIBits
SelectObject

advapi32

RegSetValueExW
RegEnumKeyExW
RegQueryInfoKeyW
RegCloseKey
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW

ole32

CoTaskMemAlloc
CoTaskMemRealloc
StringFromCLSID
CoTaskMemFree
CoCreateInstance

oleaut32

VarUI4FromStr

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mtcontrol.dll
.dll regsvr32 windows:4 windows x86 arch:x86

7870771ba65489879970c819013eb8ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kybase\source\application\mtcontrol\ReleaseMpc\mtcontrol.pdb

Imports

winmm

timeSetEvent
timeKillEvent
timeGetTime
waveInOpen
waveInClose

ws2_32

WSACancelAsyncRequest
ntohl
inet_addr
htonl
htons
WSAAsyncGetHostByName

kernel32

lstrlenA
InitializeCriticalSection
DeleteCriticalSection
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
WideCharToMultiByte
GetTickCount
lstrlenW
GetCurrentProcess
GetFileAttributesExW
CreateDirectoryW
DeleteFileW
FindClose
FindNextFileW
FindFirstFileW
GetFileAttributesW
EnterCriticalSection
LeaveCriticalSection
CloseHandle
WaitForSingleObject
SetEvent
WaitForMultipleObjects
CreateEventW
GetLastError
CreateThread
RaiseException
InterlockedIncrement
GetStringTypeA
LockResource
LoadResource
FindResourceW
FindResourceExW
InterlockedDecrement
FreeResource
MultiByteToWideChar
GetModuleFileNameW
OutputDebugStringW
LocalFree
LoadLibraryA
WriteFile
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
GetSystemInfo
VirtualProtect
TerminateProcess
IsBadWritePtr
VirtualAlloc
GetStringTypeW
IsBadReadPtr
GetOEMCP
IsBadCodePtr
GetCPInfo
SetFilePointer
SizeofResource
VirtualFree
FlushFileBuffers
SetStdHandle
HeapCreate
SetUnhandledExceptionFilter
VirtualQuery
GetModuleHandleA
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
ExitProcess
RtlUnwind
GetCurrentThreadId
GetCommandLineA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress

user32

GetClassInfoW
RegisterClassW
CreateWindowExW
ShowWindow
SetWindowLongW
GetWindowLongW
DefWindowProcW
RegisterDeviceNotificationW
UnregisterDeviceNotification
GetMessageW
TranslateMessage
DispatchMessageW
SendMessageW
wsprintfW
PostQuitMessage

gdi32

GetDeviceCaps
DeleteDC
CreateDCW

advapi32

RegEnumKeyExW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW

ole32

CoTaskMemFree
CoUninitialize
CoInitialize
OleRun
StringFromCLSID
CoTaskMemAlloc
CoCreateInstance

oleaut32

SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysFreeString
GetErrorInfo
VariantClear

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mxaudio.dll
.dll regsvr32 windows:4 windows x86 arch:x86

0b96ee7a874474914092aaf0295b8d4e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kycore\source\mpc\mxaudio\Release\mxaudio.pdb

Imports

kernel32

InitializeCriticalSection
DeleteCriticalSection
GetLastError
InterlockedIncrement
InterlockedDecrement
lstrlenA
lstrcmpiA
lstrcpynA
LeaveCriticalSection
EnterCriticalSection
IsDBCSLeadByte
RaiseException
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
GetModuleHandleA
GetModuleFileNameA
lstrcpyA
lstrcatA
CloseHandle
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
FreeLibrary
InterlockedExchange
FlushFileBuffers
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
ExitProcess
HeapReAlloc
GetCurrentThreadId
GetCommandLineA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetProcAddress
TerminateProcess
GetCurrentProcess
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
LoadLibraryA
IsBadReadPtr
IsBadCodePtr
GetOEMCP
GetCPInfo
SetFilePointer

user32

CharNextA

advapi32

RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyExA

ole32

CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
StringFromGUID2
CoCreateInstance

oleaut32

SysFreeString
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
VarUI4FromStr

shlwapi

PathFindExtensionA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mxrender.dll
.dll regsvr32 windows:4 windows x86 arch:x86

107db36d92280f8e4f340dd812750d92

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kycore\source\multimedia\mxrender\Release_Mpc\mxrender.pdb

Imports

winmm

waveOutGetVolume
timeKillEvent
timeBeginPeriod
timeEndPeriod
timeGetTime
timeSetEvent
waveOutSetVolume

kernel32

ReleaseSemaphore
GetSystemInfo
VirtualFree
lstrcmpW
GetCurrentProcess
GetCurrentThreadId
CreateSemaphoreW
VirtualAlloc
Sleep
lstrcpyW
MulDiv
FreeLibrary
LoadLibraryW
GetProcAddress
SetThreadPriority
GetThreadPriority
GetCurrentThread
GetTickCount
VirtualProtect
LoadLibraryA
GetCPInfo
GetOEMCP
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WaitForSingleObject
UnhandledExceptionFilter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
HeapSize
TerminateProcess
GetModuleHandleA
IsBadWritePtr
HeapCreate
HeapDestroy
VirtualQuery
HeapAlloc
HeapReAlloc
GetCommandLineA
ExitProcess
HeapFree
RtlUnwind
GetVersionExA
GetStringTypeA
GetStringTypeW
WaitForMultipleObjects
ResetEvent
SetEvent
CreateEventW
CloseHandle
lstrcpynW
DisableThreadLibraryCalls
GetModuleFileNameA
GetLastError
lstrlenA
MultiByteToWideChar
InterlockedIncrement
InterlockedDecrement
lstrlenW
GetVersionExW
GetLocaleInfoA
GetACP
InterlockedExchange
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
RaiseException
SetFilePointer
SetStdHandle
FlushFileBuffers
WriteFile
ReadFile
LCMapStringW
LCMapStringA

user32

DispatchMessageW
MsgWaitForMultipleObjects
GetWindowPlacement
SystemParametersInfoW
SetParent
IsZoomed
GetWindowTextW
SetWindowTextW
GetSystemMetrics
MoveWindow
InSendMessage
GetWindowThreadProcessId
DestroyWindow
RegisterWindowMessageW
IsWindow
SetForegroundWindow
PostMessageW
GetClassInfoW
LoadCursorW
RegisterClassW
CreateWindowExW
GetDC
ReleaseDC
SetWindowLongW
GetClientRect
MapWindowPoints
GetParent
GetWindowRect
GetWindowLongW
AdjustWindowRectEx
SetWindowPos
ShowWindow
PeekMessageW
GetQueueStatus
PostThreadMessageW
wsprintfW
DefWindowProcW
SetCursor
InvalidateRect
CharNextW
LoadStringW
SendMessageW
IsWindowVisible
IsIconic

gdi32

RealizePalette
SelectPalette
CreateCompatibleDC
SetStretchBltMode
GdiFlush
DeleteDC

advapi32

RegCreateKeyW
RegSetValueW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW

ole32

CoCreateInstance
StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoInitialize
CoTaskMemAlloc
CoTaskMemFree

oleaut32

SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mxscreen.dll
.dll regsvr32 windows:4 windows x86 arch:x86

27efafc89669d831ec33842d36fc3284

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kycore\source\mpc\mxscreen\Release\mxscreen.pdb

Imports

ijl15

ord2
ord3
ord4
ord5

kernel32

LoadLibraryExA
GetModuleHandleA
GlobalFree
GlobalAlloc
CloseHandle
ReadFile
FindResourceA
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
LoadResource
SizeofResource
FreeLibrary
InterlockedIncrement
InterlockedDecrement
IsDBCSLeadByte
lstrcatA
GetModuleFileNameA
lstrcpyA
lstrcpynA
lstrcmpiA
lstrlenA
GetLastError
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
WriteFile
SetStdHandle
SetFilePointer
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetCurrentProcess
TerminateProcess
GetProcAddress
GetOEMCP
IsBadCodePtr
IsBadReadPtr
LoadLibraryA
FlushFileBuffers
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
HeapSize
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
ExitProcess
HeapReAlloc
GetCurrentThreadId
GetCommandLineA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
SetUnhandledExceptionFilter

user32

ReleaseDC
DestroyCursor
GetDC
CharNextA
CreateIconIndirect

gdi32

CreateCompatibleBitmap
SetDIBits
DeleteObject
CreateBitmap

advapi32

RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA

ole32

CoTaskMemFree
CoTaskMemRealloc
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc

oleaut32

RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString
VarUI4FromStr

rpcrt4

CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_CountRefs
NdrDllUnregisterProxy
NdrDllRegisterProxy
NdrCStdStubBuffer_Release
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrOleAllocate
NdrOleFree
IUnknown_QueryInterface_Proxy
IUnknown_AddRef_Proxy
IUnknown_Release_Proxy
CStdStubBuffer_QueryInterface
CStdStubBuffer_AddRef
CStdStubBuffer_Connect
CStdStubBuffer_Disconnect
CStdStubBuffer_Invoke
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_DebugServerRelease

shlwapi

PathFindExtensionA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 160KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 4KB - Virtual size: 115B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mxshbasu.dll
.dll regsvr32 windows:4 windows x86 arch:x86

50afe3a74e93b027483ceebef38966a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kycore\source\multimedia\mxshbase\Unicode_Mpc\mxshbase.pdb

Imports

wininet

HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetCrackUrlW
InternetCloseHandle
InternetReadFile
InternetErrorDlg
HttpQueryInfoW
InternetConnectW
InternetOpenW

kernel32

SystemTimeToFileTime
GetSystemTime
GetTickCount
EnterCriticalSection
LeaveCriticalSection
lstrlenA
lstrlenW
InitializeCriticalSection
FlushFileBuffers
DeleteCriticalSection
RaiseException
InterlockedIncrement
lstrcpyW
GetModuleHandleW
GetModuleFileNameW
FreeLibrary
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
lstrcmpiW
lstrcpynW
WaitForMultipleObjects
WaitForSingleObject
SetEvent
CreateThread
CreateEventW
ReadFile
DisableThreadLibraryCalls
GetModuleFileNameA
WriteFile
VirtualFree
GetCurrentProcess
GetCurrentThreadId
VirtualAlloc
GetProcAddress
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
HeapSize
TerminateProcess
CloseHandle
CreateFileW
GetLastError
WideCharToMultiByte
MultiByteToWideChar
SetUnhandledExceptionFilter
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
InterlockedDecrement
SetFilePointer
GetSystemInfo
GetFileSize
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
VirtualProtect
GetCPInfo
GetOEMCP
IsBadCodePtr
IsBadReadPtr
LoadLibraryA
IsBadWritePtr
HeapCreate
HeapDestroy
GetVersionExA
ExitProcess
RtlUnwind
HeapFree
HeapReAlloc
HeapAlloc
GetCommandLineA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetModuleHandleA
VirtualQuery

user32

CharNextW
wsprintfW

advapi32

RegQueryInfoKeyW
RegCreateKeyW
RegSetValueW
CryptDecrypt
CryptEncrypt
CryptVerifySignatureW
CryptSignHashW
CryptHashData
CryptDestroyHash
CryptCreateHash
CryptImportKey
CryptExportKey
CryptDestroyKey
CryptGenKey
CryptReleaseContext
CryptAcquireContextW
RegSetValueExW
RegEnumKeyExW
RegCloseKey
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoCreateGuid
CoCreateInstance
CoTaskMemRealloc
StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoInitialize

oleaut32

VarUI4FromStr

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mxshmaiu.dll
.dll regsvr32 windows:4 windows x86 arch:x86

a1817a287b4885d47e7c26c3fcc2e4fa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kycore\source\multimedia\mxshmain\Unicode_Mpc\mxshmain.pdb

Imports

winmm

timeGetTime
timeKillEvent
timeSetEvent

ws2_32

htonl
htons
ntohl

ddraw

DirectDrawEnumerateExW
DirectDrawCreate

dsound

ord3
ord1

kernel32

GetModuleFileNameW
FreeLibrary
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
lstrcmpiW
GetTickCount
HeapFree
GetProcAddress
LoadLibraryW
HeapAlloc
InterlockedCompareExchange
SetThreadPriority
WriteFile
GetCurrentThreadId
GetThreadPriority
GetModuleHandleW
DisableThreadLibraryCalls
GetModuleFileNameA
GetSystemInfo
VirtualFree
GetCurrentProcess
VirtualAlloc
RtlUnwind
GetVersionExA
TlsGetValue
SetUnhandledExceptionFilter
VirtualQuery
QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapDestroy
HeapCreate
IsBadWritePtr
TerminateProcess
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
lstrcpyW
lstrlenW
lstrlenA
RaiseException
WideCharToMultiByte
MultiByteToWideChar
TlsFree
InterlockedIncrement
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetCurrentProcessId
lstrcpynW
GetVersionExW
ResetEvent
CreateThread
GetLastError
CreateEventW
WaitForMultipleObjects
CloseHandle
SetEvent
WaitForSingleObject
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
LeaveCriticalSection
EnterCriticalSection
ExitProcess
HeapReAlloc
GetCommandLineA
GetModuleHandleA
TlsAlloc
SetLastError
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetOEMCP
GetCPInfo
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
VirtualProtect
GetCurrentThread
TlsSetValue

user32

GetDesktopWindow
SetTimer
BeginPaint
ClientToScreen
OffsetRect
GetClientRect
MonitorFromWindow
GetMonitorInfoW
InvalidateRect
DrawIcon
DestroyWindow
GetClassInfoW
LoadCursorW
RegisterClassW
CreateWindowExW
DefWindowProcW
PeekMessageW
DispatchMessageW
GetForegroundWindow
GetQueueStatus
GetDC
ReleaseDC
wsprintfW
SetCursor
GetWindowPlacement
SystemParametersInfoW
SendMessageW
SetParent
IsIconic
IsZoomed
GetWindowLongW
IsWindowVisible
GetWindowRect
SetWindowLongW
SetWindowPos
MoveWindow
ShowWindow
GetParent
MapWindowPoints
GetWindowTextW
SetWindowTextW
InSendMessage
GetSystemMetrics
FillRect
MsgWaitForMultipleObjects
RegisterWindowMessageW
IsWindow
PostMessageW
AdjustWindowRectEx
SetForegroundWindow
GetWindowThreadProcessId
PostThreadMessageW
CharNextW
EndPaint

gdi32

SetStretchBltMode
GdiFlush
CreateSolidBrush
GetPixel
SetPixel
StretchBlt
DeleteObject
CreateCompatibleDC
RealizePalette
SelectPalette
BitBlt
SelectObject
SetDIBitsToDevice
DeleteDC
CreateDIBSection
GetDeviceCaps
PatBlt

advapi32

RegSetValueW
RegSetValueExW
RegEnumKeyExW
RegQueryInfoKeyW
RegCloseKey
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegCreateKeyW

ole32

CoTaskMemRealloc
CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CoFreeUnusedLibraries

oleaut32

VarUI4FromStr
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 124KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mxshsour.dll
.dll regsvr32 windows:4 windows x86 arch:x86

1484867acca44d86b2d845db04e0c9f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

timeSetEvent
timeGetTime

ws2_32

htonl
htons
gethostbyname
ntohl
inet_addr

kernel32

InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
lstrlenW
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
GetTempPathW
SetEvent
WaitForSingleObject
ResetEvent
CloseHandle
WaitForMultipleObjects
GetLastError
CreateThread
WideCharToMultiByte
GetTickCount
CreateEventW
DeleteFileW
ReadFile
SetFilePointer
WriteFile
SetEndOfFile
CreateFileW
GetTempFileNameW
lstrcpynW
InterlockedIncrement
InterlockedDecrement
GetTimeZoneInformation
GetSystemInfo
VirtualFree
lstrcmpW
DuplicateHandle
GetCurrentProcess
GetCurrentThreadId
CreateSemaphoreW
VirtualAlloc
FreeLibrary
LoadLibraryW
GetProcAddress
GetModuleHandleW
lstrcpyW
lstrcmpiW
SetThreadPriority
GetThreadPriority
GetCurrentThread
MultiByteToWideChar
lstrlenA
GetModuleFileNameA
DisableThreadLibraryCalls
VirtualProtect
SetConsoleCtrlHandler
LoadLibraryA
VirtualQuery
GetStringTypeW
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
QueryPerformanceCounter
GetCurrentProcessId
SetEnvironmentVariableA
GetSystemTimeAsFileTime
HeapSize
GetLocaleInfoW
CompareStringA
CompareStringW
ReleaseSemaphore
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
LCMapStringW
LCMapStringA
GetCPInfo
GetOEMCP
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
RtlUnwind
GetCommandLineA
GetVersionExA
HeapFree
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetModuleHandleA
HeapAlloc
ExitProcess
TerminateProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
UnhandledExceptionFilter
FatalAppExitA

user32

PeekMessageW
MsgWaitForMultipleObjects
wvsprintfW
wsprintfW
PostThreadMessageW
RegisterWindowMessageW
GetQueueStatus
DispatchMessageW

advapi32

RegSetValueExW
RegCreateKeyW
RegSetValueW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey

ole32

StringFromGUID2
CoInitialize
CoFreeUnusedLibraries
CoUninitialize
StringFromCLSID
CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc

oleaut32

SysFreeString
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mxsource.dll
.dll regsvr32 windows:4 windows x86 arch:x86

0ed9c32523266815d8702f2f18643290

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kycore\source\multimedia\mxsource\Release_Mpc\mxsource.pdb

Imports

kernel32

GetLocaleInfoA
GetThreadLocale
GetVersionExW
lstrcpynW
InterlockedIncrement
InterlockedDecrement
CloseHandle
WaitForSingleObject
ReleaseSemaphore
GetSystemInfo
VirtualFree
lstrcmpW
GetCurrentProcess
GetCurrentThreadId
CreateSemaphoreW
VirtualAlloc
FreeLibrary
GetACP
MultiByteToWideChar
lstrlenA
GetLastError
GetModuleFileNameA
GetProcAddress
GetTickCount
HeapReAlloc
GetCPInfo
GetOEMCP
InterlockedExchange
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
lstrlenW
GetStringTypeA
GetStringTypeW
DisableThreadLibraryCalls
VirtualProtect
HeapSize
LCMapStringW
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
ExitProcess
RtlUnwind
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetModuleHandleA
HeapFree
HeapAlloc
TerminateProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
UnhandledExceptionFilter
WriteFile
LoadLibraryA
VirtualQuery
SetUnhandledExceptionFilter
LCMapStringA

user32

wsprintfW

advapi32

RegOpenKeyExW
RegCreateKeyW
RegSetValueW
RegEnumKeyExW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW

ole32

StringFromGUID2
CoInitialize
CoFreeUnusedLibraries
CoUninitialize
CoCreateInstance
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_mxvideo.dll
.dll regsvr32 windows:4 windows x86 arch:x86

fa2ee8ebe446184e5eb4bd56e98a1e60

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kycore\source\mpc\mxvideo\Release\mxvideo.pdb

Imports

kernel32

lstrlenW
RaiseException
InitializeCriticalSection
DeleteCriticalSection
GetLastError
InterlockedIncrement
InterlockedDecrement
lstrlenA
lstrcmpiA
lstrcpynA
LeaveCriticalSection
EnterCriticalSection
WideCharToMultiByte
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
GetModuleHandleA
GetModuleFileNameA
lstrcpyA
lstrcatA
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
FreeLibrary
LoadLibraryA
IsDBCSLeadByte
GetProcAddress
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetCPInfo
GetOEMCP
IsBadCodePtr
HeapAlloc
HeapFree
HeapReAlloc
ExitProcess
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCurrentThreadId
GetCommandLineA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
IsBadReadPtr

user32

CharNextA

advapi32

RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA

ole32

CoTaskMemRealloc
StringFromGUID2
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance

oleaut32

RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString
VarUI4FromStr

shlwapi

PathFindExtensionA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
csfcodec/mpc_wtlvcl.dll
.dll regsvr32 windows:4 windows x86 arch:x86

f1344e5402d45176281f313f4dc5b0cb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\Kysource_v2\kybase\source\wtlui\wtlvcl_mpc\Release\wtlvcl.pdb

Imports

user32

EnableWindow
ShowWindow
InvalidateRect
ScreenToClient
ClientToScreen
GetClientRect
GetWindowRect
SetWindowPos
SendMessageW
GetWindowLongW
CreateWindowExW
SetWindowLongW
IsWindow
DestroyAcceleratorTable
GetWindow
IsChild
GetFocus
SetFocus
GetDlgItem
GetClassNameW
CreateAcceleratorTableW
GetDesktopWindow
InvalidateRgn
FillRect
GetSysColor
RegisterWindowMessageW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
SetScrollInfo
ShowScrollBar
GetCursorPos
SetScrollPos
PostMessageW
SetTimer
KillTimer
DestroyCursor
SetRect
CopyRect
RedrawWindow
GetUpdateRect
CharNextW
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
LoadBitmapW
SystemParametersInfoW
BeginPaint
EndPaint
GetCapture
GetDlgCtrlID
SetCursor
RegisterClassExW
ReleaseCapture
IntersectRect
CallWindowProcW
DefWindowProcW
DrawTextW
DestroyWindow
GetDC
ReleaseDC
OffsetRect
InflateRect
PtInRect
LoadCursorW
wsprintfW
GetClassInfoExW
SetWindowRgn
SetParent
GetParent
SetCapture
UnregisterClassW

kernel32

VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
VirtualQuery
GetCommandLineA
HeapReAlloc
ExitProcess
RtlUnwind
IsBadWritePtr
SetUnhandledExceptionFilter
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetModuleHandleA
TerminateProcess
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
RaiseException
SetHandleCount
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
GetCurrentProcess
HeapFree
GetProcessHeap
HeapAlloc
lstrlenW
InterlockedDecrement
InterlockedIncrement
GetCurrentThreadId
GetVersionExA
GetProcAddress
GetModuleHandleW
MultiByteToWideChar
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
lstrcpyW
GetLastError
lstrcmpiW
lstrcpynW
GetTickCount
FreeLibrary
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleFileNameW
lstrcatW
GlobalUnlock
GlobalLock
GlobalAlloc
MulDiv
lstrcmpW
LocalFree
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
IsBadReadPtr
IsBadCodePtr
GetOEMCP
GetCPInfo
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
VirtualProtect
GetSystemInfo
InitializeCriticalSection

gdi32

PtInRegion
CreateBitmap
CreatePatternBrush
SetRectRgn
CreateRectRgnIndirect
PatBlt
SelectClipRgn
GetClipBox
CreateFontIndirectW
SetTextColor
SetBkMode
CombineRgn
CreateRectRgn
GetObjectW
DeleteObject
SelectObject
CreateCompatibleDC
GetDIBits
ExtSelectClipRgn
OffsetRgn
StretchBlt
SetViewportOrgEx
FillRgn
CreateSolidBrush
ExtTextOutW
SetBkColor
CreateCompatibleBitmap
GetTextExtentPoint32W
GetDeviceCaps
GetStockObject
BitBlt
DeleteDC

advapi32

RegQueryInfoKeyW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegSetValueExW

ole32

CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
StringFromGUID2
CoCreateInstance
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc

oleaut32

VarUI4FromStr
SysFreeString
DispCallFunc
LoadRegTypeLi
VariantInit
VariantClear
OleCreateFontIndirect
SysStringByteLen
SafeArrayCreateVector
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
SysStringLen
SysAllocStringLen
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString

shlwapi

PathFindExtensionW

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Draw
ImageList_Create
InitializeFlatSB

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 172KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
dh264.ax
.dll regsvr32 windows:4 windows x86 arch:x86

e0a178f6e8386f5645f237a968c75451

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

SetCursor

gdi32

RealizePalette

advapi32

RegCreateKeyA

shell32

ShellExecuteA

ole32

CoUninitialize

oleaut32

OleCreatePropertyFrame

winmm

timeGetTime

Exports

Exports

Config
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 607KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
haalis.ax
.dll regsvr32 windows:5 windows x86 arch:x86

414ec1bc0de0d85027929ca19e0d6be5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

InitCommonControlsEx

gdi32

BitBlt
AddFontResourceW
DeleteObject
CreateCompatibleDC
CreateDIBSection
SelectObject
CreateFontW
GetDeviceCaps
GetTextMetricsW
SetBkColor
SetBkMode
ExtTextOutW
DeleteDC
GdiFlush
SetTextColor
SetTextAlign
CreateDCA
RemoveFontResourceW

kernel32

GetModuleFileNameW
MultiByteToWideChar
GetCurrentProcessId
GetModuleFileNameA
DeleteFileW
GetTempPathW
GetTempFileNameW
CreateFileW
WriteFile
GetLastError
GetSystemTime
SystemTimeToFileTime
CreateFileA
SetFilePointer
ReadFile
CreateThread
VirtualFree
VirtualAlloc
SetEndOfFile
GetVersion
InterlockedExchange
SetThreadPriority
GetCurrentThread
GetCurrentThreadId
GetProcAddress
GetModuleHandleW
MulDiv
lstrlenW
EnterCriticalSection
FindFirstFileW
FindNextFileW
FindClose
lstrlenA
VirtualQuery
FreeLibrary
WideCharToMultiByte
DeleteCriticalSection
InitializeCriticalSection
FindResourceW
LeaveCriticalSection
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetStringTypeA
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
LoadLibraryA
GetModuleHandleA
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
ExitProcess
LoadResource
LockResource
SizeofResource
WaitForSingleObject
HeapAlloc
WaitForMultipleObjects
HeapFree
InterlockedDecrement
HeapDestroy
CreateEventW
HeapCreate
InterlockedIncrement
CloseHandle
ResetEvent
SetEvent
FindResourceExW
GetTickCount
Sleep
SetLastError
TlsFree
TlsSetValue
GetCurrentProcess
TlsAlloc
TlsGetValue
GetStdHandle
RtlUnwind
lstrcpynW
lstrcmpW
ReleaseSemaphore
CreateSemaphoreW
GetSystemInfo
DuplicateHandle
GetVersionExW
DisableThreadLibraryCalls
lstrcmpiA
RaiseException
OutputDebugStringA
FormatMessageW
HeapReAlloc
HeapSize
GetCommandLineA
ExitThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetProcessHeap
LoadLibraryW

user32

GetDlgItemInt
GetDlgItemTextW
SetDlgItemInt
SetDlgItemTextW
ShowWindow
GetWindowThreadProcessId
IsWindowVisible
MessageBoxW
EnumWindows
CreatePopupMenu
SendDlgItemMessageW
GetDesktopWindow
LoadStringW
DestroyWindow
InvalidateRect
CreateDialogParamW
GetMenuItemCount
CheckMenuRadioItem
DestroyMenu
GetDlgItem
SendMessageW
AppendMenuW
PostMessageW
TrackPopupMenu
GetCursorPos
SetForegroundWindow
LoadIconW
PostQuitMessage
DefWindowProcW
GetSystemMetrics
CreateWindowExW
RegisterClassW
DispatchMessageW
TranslateMessage
GetMessageW
SetTimer
RegisterWindowMessageW
CallWindowProcW
EndPaint
BeginPaint
RedrawWindow
ReleaseDC
GetDC
GetClientRect
MoveWindow
ScreenToClient
GetWindowRect
SetWindowLongW
GetWindowLongW
KillTimer
GetSysColor

advapi32

RegEnumKeyExW
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
RegEnumValueA
RegOpenKeyExW
RegQueryValueExA
RegOpenKeyExA
CryptReleaseContext
CryptAcquireContextW
CryptGenRandom
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyW
RegSetValueW
RegQueryValueExW

shell32

Shell_NotifyIconW

ole32

CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
CoInitialize
CoFreeUnusedLibraries
CoInitializeEx
CoTaskMemFree
CoUninitialize

oleaut32

SafeArrayDestroy
SafeArrayCreateVector
VariantChangeType
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
VarBstrCmp
SysStringLen
SysStringByteLen
SysAllocStringByteLen
VariantClear
SysAllocString
VariantInit
OleCreatePropertyFrame
SysFreeString
SysAllocStringLen
OleLoadPicture
SafeArrayCreate
SafeArrayGetDim

mkzlib

deflateBound
deflate
deflateInit_
deflateEnd
crc32
deflateReset
compress

mkunicode

iso_getlcid
iso_codetoname
iso_getentry
Utf8ToUtf16
Utf16ToUtf8
iso_getsyslang

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

rpcrt4

UuidToStringA
UuidFromStringA
RpcStringFreeA

Exports

Exports

Configure
DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 388KB - Virtual size: 388KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
hotkey/SPlayer.key
ir41_32.ax
.dll regsvr32 windows:4 windows x86 arch:x86

1927d0db3b7884104ff5f0a44713b4b2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

DefDriverProc
timeGetTime

kernel32

CreateSemaphoreA
CloseHandle
GlobalReAlloc
OutputDebugStringA
UnmapViewOfFile
OpenFileMappingA
GetSystemInfo
ReleaseSemaphore
WaitForSingleObject
MultiByteToWideChar
DeleteCriticalSection
GetCommandLineA
GetLastError
EnterCriticalSection
FreeLibrary
GetProcAddress
LoadLibraryA
LeaveCriticalSection
lstrlenA
GetModuleFileNameA
InitializeCriticalSection
Sleep
InterlockedIncrement
InterlockedDecrement
VirtualAlloc
VirtualFree
GetModuleHandleA
GetACP
GetVersion
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
GetVersionExA
TlsAlloc
TlsFree
SetLastError
TlsGetValue
DisableThreadLibraryCalls
WideCharToMultiByte
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GetCPInfo
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
HeapFree
HeapAlloc
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadWritePtr
HeapDestroy
LCMapStringA
LCMapStringW
HeapReAlloc
HeapSize
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
SetStdHandle
SetFilePointer
MapViewOfFile
GlobalHandle
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
IsBadReadPtr
LocalHandle
LocalUnlock
LocalFree
LocalAlloc
LocalLock
CreateFileMappingA
HeapCreate
TlsSetValue
IsBadCodePtr
RaiseException

advapi32

RegDeleteKeyA
RegCloseKey
RegOpenKeyA
RegCreateKeyA
RegSetValueA
RegEnumKeyExA
RegCreateKeyExA
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

user32

LoadStringA
MessageBoxA
DialogBoxParamA
SetDlgItemInt
GetDlgItemTextA
IsRectEmpty
GetDlgItemInt
IsDlgButtonChecked
SetWindowLongA
GetWindowLongA
CheckDlgButton
SendMessageA
GetDlgItem
EnableWindow
ShowWindow
EndDialog
CheckRadioButton
SetDlgItemTextA
PostMessageA
EndPaint
GetWindowRect
LoadBitmapA
BeginPaint
WinHelpA
ReleaseDC
wsprintfA
wvsprintfA
CreateDialogParamA
MoveWindow
InvalidateRect
DestroyWindow
DefWindowProcA
LoadStringW
GetDesktopWindow
GetDC

gdi32

GetSystemPaletteEntries
DeleteDC
BitBlt
CreateCompatibleDC
SelectObject
GetObjectA

ole32

CoCreateInstance
StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoInitialize
CoTaskMemFree
CoTaskMemAlloc

Exports

Exports

AboutDialogProc
ConfigureDialogProc
DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer
DriverDialogProc
DriverProc

Sections

.text
Size: 467KB - Virtual size: 466KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 231KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ir50_32.dll
.dll regsvr32 windows:4 windows x86 arch:x86

a27070539407160f6a16064876e70fed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

timeGetTime
DefDriverProc

kernel32

OpenFileMappingA
GlobalUnlock
GlobalHandle
MapViewOfFile
GlobalAlloc
GlobalFree
GlobalReAlloc
UnmapViewOfFile
CloseHandle
CreateSemaphoreA
CreateFileMappingA
WaitForSingleObject
OutputDebugStringA
Sleep
GetLastError
GetSystemInfo
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleHandleA
WritePrivateProfileStringA
GetVersion
ReleaseSemaphore
GetSystemDirectoryA
GetModuleFileNameA
GetShortPathNameA
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
VirtualAlloc
VirtualFree
WideCharToMultiByte
GetACP
GetCurrentThreadId
GetVersionExA
DisableThreadLibraryCalls
lstrlenA
InitializeCriticalSection
RtlUnwind
RaiseException
GetCommandLineA
TlsSetValue
TlsAlloc
IsBadReadPtr
GlobalLock
TlsGetValue
ExitProcess
HeapFree
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetCPInfo
GetOEMCP
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
WriteFile
IsBadWritePtr
IsBadCodePtr
HeapAlloc
LocalAlloc
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
FlushFileBuffers
GetLocaleInfoW
SetStdHandle
SetFilePointer
LocalLock
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
FindResourceA
LoadResource
LockResource
FreeResource
EnterCriticalSection
LeaveCriticalSection
LocalHandle
LocalUnlock
LocalFree
TlsFree
SetLastError

user32

PostMessageA
SendMessageA
EnableWindow
GetDlgItem
SetWindowTextA
WinHelpA
ShowWindow
SetFocus
MessageBoxA
SetWindowPos
OffsetRect
MapWindowPoints
GetClientRect
CheckRadioButton
IsRectEmpty
CreateDialogParamA
BeginPaint
wsprintfA
DestroyWindow
DefWindowProcA
LoadStringW
GetDesktopWindow
LoadBitmapA
EndPaint
SetDlgItemTextA
EndDialog
GetDC
ReleaseDC
SetDlgItemInt
CheckDlgButton
GetFocus
GetDlgCtrlID
IsDlgButtonChecked
GetDlgItemInt
GetWindowLongA
SetWindowLongA
wvsprintfA
DialogBoxParamA
LoadStringA
MoveWindow
InvalidateRect
GetWindowRect

gdi32

GetSystemPaletteEntries
BitBlt
SelectObject
CreateCompatibleDC
GetObjectA
DeleteDC

advapi32

RegCreateKeyExA
RegSetValueA
RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegDeleteKeyA
RegQueryValueExA
RegQueryValueA
RegOpenKeyA
RegCreateKeyA
RegDeleteValueA
RegEnumKeyExA

ole32

CoFreeUnusedLibraries
CoUninitialize
StringFromGUID2
CoCreateInstance
CoInitialize
CoTaskMemAlloc
CoTaskMemFree

oleaut32

LoadTypeLi
RegisterTypeLi

Exports

Exports

AboutDialogProc
ConfigureDialogProc
DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer
DriverProc

Sections

.text
Size: 500KB - Virtual size: 500KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ivm.dll
.dll windows:4 windows x86 arch:x86

aeb197e7e6584ffaf9e62283b82c11d7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindClose
FindFirstFileA
CloseHandle
GetFileTime
CreateFileA
DeviceIoControl
FreeLibrary
GetCurrentProcess
GetProcAddress
LoadLibraryA
GetFileSize
GetLastError
ReadFile
SetFilePointer
GetSystemTime
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
GetTimeZoneInformation
GetPrivateProfileStringA
lstrlenA
WriteFile
GetSystemDirectoryA
RtlUnwind
InterlockedDecrement
InterlockedIncrement
GetLocalTime
GetCommandLineA
GetVersion
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
HeapFree
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
HeapAlloc
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
DeleteCriticalSection
ExitProcess
TerminateProcess
HeapReAlloc
HeapSize
GetModuleHandleA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetStdHandle
FlushFileBuffers
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
RaiseException

ole32

CoUninitialize
CoCreateGuid
CoInitialize

wininet

HttpQueryInfoA
InternetCloseHandle
InternetQueryOptionA
HttpSendRequestA
InternetSetOptionA
InternetOpenA
InternetConnectA
HttpOpenRequestA

crypt32

CertOpenSystemStoreA
CertFreeCertificateContext
CertCloseStore
CertFindCertificateInStore

Exports

Exports

??0AVDataObject@@QAE@ABV0@@Z
??0AVDataObject@@QAE@XZ
??0Basic_Stream@@QAE@ABV0@@Z
??0Basic_Stream@@QAE@HPAE@Z
??0BlowFish@@QAE@ABV0@@Z
??0BlowFish@@QAE@HPAE@Z
??0CryptFileStream@@QAE@ABV0@@Z
??0CryptFileStream@@QAE@PADH@Z
??0DrmAreaTimeZoneObject@@QAE@ABV0@@Z
??0DrmAreaTimeZoneObject@@QAE@XZ
??0DrmCopyCtrlObject@@QAE@ABV0@@Z
??0DrmCopyCtrlObject@@QAE@XZ
??0DrmCtrl@@QAE@ABV0@@Z
??0DrmCtrl@@QAE@XZ
??0DrmCtrlBase@@QAE@ABV0@@Z
??0DrmCtrlBase@@QAE@XZ
??0DrmCtrlUtility@@QAE@ABV0@@Z
??0DrmCtrlUtility@@QAE@XZ
??0DrmExpirationObject@@QAE@ABV0@@Z
??0DrmExpirationObject@@QAE@XZ
??0DrmObject@@QAE@ABV0@@Z
??0DrmObject@@QAE@XZ
??0DrmPayPerView@@QAE@ABV0@@Z
??0DrmPayPerView@@QAE@XZ
??0ExDataObject@@QAE@ABV0@@Z
??0ExDataObject@@QAE@XZ
??0ExSource@@QAE@ABV0@@Z
??0ExSource@@QAE@XZ
??0FileStream@@QAE@ABV0@@Z
??0FileStream@@QAE@PADHPAE@Z
??0FileStream@@QAE@XZ
??0FormatObject@@QAE@ABV0@@Z
??0FormatObject@@QAE@XZ
??0IVM@@QAE@ABV0@@Z
??0IVM@@QAE@XZ
??0IVMContainer@@QAE@ABV0@@Z
??0IVMContainer@@QAE@XZ
??0MediaElement@@QAE@ABV0@@Z
??0MediaElement@@QAE@H@Z
??0PropertyObject@@QAE@ABV0@@Z
??0PropertyObject@@QAE@XZ
??1AVDataObject@@UAE@XZ
??1Basic_Stream@@UAE@XZ
??1BlowFish@@UAE@XZ
??1CryptFileStream@@UAE@XZ
??1DrmAreaTimeZoneObject@@UAE@XZ
??1DrmCopyCtrlObject@@UAE@XZ
??1DrmCtrl@@UAE@XZ
??1DrmExpirationObject@@UAE@XZ
??1DrmPayPerView@@UAE@XZ
??1ExDataObject@@UAE@XZ
??1ExSource@@UAE@XZ
??1FileStream@@UAE@XZ
??1FormatObject@@UAE@XZ
??1IVM@@UAE@XZ
??1IVMContainer@@UAE@XZ
??1MediaElement@@UAE@XZ
??1PropertyObject@@UAE@XZ
??4AVDataObject@@QAEAAV0@ABV0@@Z
??4Basic_Stream@@QAEAAV0@ABV0@@Z
??4BlowFish@@QAEAAV0@ABV0@@Z
??4CryptFileStream@@QAEAAV0@ABV0@@Z
??4DrmAreaTimeZoneObject@@QAEAAV0@ABV0@@Z
??4DrmCopyCtrlObject@@QAEAAV0@ABV0@@Z
??4DrmCtrl@@QAEAAV0@ABV0@@Z
??4DrmCtrlBase@@QAEAAV0@ABV0@@Z
??4DrmCtrlUtility@@QAEAAV0@ABV0@@Z
??4DrmExpirationObject@@QAEAAV0@ABV0@@Z
??4DrmObject@@QAEAAV0@ABV0@@Z
??4DrmPayPerView@@QAEAAV0@ABV0@@Z
??4ExDataObject@@QAEAAV0@ABV0@@Z
??4ExSource@@QAEAAV0@ABV0@@Z
??4FileStream@@QAEAAV0@ABV0@@Z
??4FormatObject@@QAEAAV0@ABV0@@Z
??4IVM@@QAEAAV0@ABV0@@Z
??4IVMContainer@@QAEAAV0@ABV0@@Z
??4MediaElement@@QAEAAV0@ABV0@@Z
??4PropertyObject@@QAEAAV0@ABV0@@Z
??_7AVDataObject@@6B@
??_7Basic_Stream@@6B@
??_7BlowFish@@6B@
??_7CryptFileStream@@6B@
??_7DrmAreaTimeZoneObject@@6B@
??_7DrmCopyCtrlObject@@6B@
??_7DrmCtrl@@6B@
??_7DrmCtrlBase@@6B@
??_7DrmCtrlUtility@@6B@
??_7DrmExpirationObject@@6B@
??_7DrmObject@@6B@
??_7DrmPayPerView@@6B@
??_7ExDataObject@@6B@
??_7ExSource@@6B@
??_7FileStream@@6B@
??_7FormatObject@@6B@
??_7IVM@@6B@
??_7IVMContainer@@6B@
??_7MediaElement@@6B@
??_7PropertyObject@@6B@
??_FMediaElement@@QAEXXZ
?AddDrmObject@DrmCtrl@@UAEXPAVDrmObject@@@Z
?AddExFrame@ExDataObject@@QAEHPAU_EX_FRAME@@@Z
?AddExMedia@ExSource@@QAEHPAVMediaElement@@@Z
?AddMedia@IVM@@QAEHPAVMediaElement@@@Z
?AdviseOnProcess@FileStream@@QAEXP6GHH@Z_K@Z
?AdviseOnProcess@IVM@@QAEXP6GHH@Z@Z
?Create@ExSource@@QAEHPAVIVMContainer@@@Z
?Create@IVM@@QAEHEPADK0EEPAU_GUID@@E@Z
?Create@IVMContainer@@QAEHXZ
?Create@MediaElement@@QAEHGKGG_KMPAD1111@Z
?Create@MediaElement@@QAEHKPADK00JJK_K1MMMM_N20GPAE00@Z
?CreateAVReadStream@IVMContainer@@QAEPAVBasic_Stream@@PAE@Z
?CreateExSrcReadStream@IVMContainer@@QAEPAVBasic_Stream@@PAD@Z
?CreateFromFile@IVMContainer@@QAEHPAD@Z
?CreateVerifyInfo@DrmAreaTimeZoneObject@@IAEXXZ
?CreateVerifyInfo@DrmCopyCtrlObject@@IAEXXZ
?CreateVerifyInfo@DrmCtrl@@IAEXXZ
?CreateVerifyInfo@DrmExpirationObject@@IAEXXZ
?CreateVerifyInfo@DrmPayPerView@@IAEXXZ
?Decrypt@BlowFish@@QAEXPAE0@Z
?Encrypt@BlowFish@@QAEXPAE0@Z
?Errno@FileStream@@QAEHXZ
?ExFrame@ExDataObject@@QAEPAU_EX_FRAME@@H@Z
?FlushBuffer@FileStream@@UAEHXZ
?Forward@FileStream@@UAEX_J@Z
?GetAVDataObject@IVMContainer@@QAEHPAPAVAVDataObject@@@Z
?GetAVObject@MediaElement@@QAEPAU_AV_DATA_OBJECT@@XZ
?GetAdAmount@PropertyObject@@QAEGXZ
?GetAdDefault@PropertyObject@@QAEGXZ
?GetAdPositionAmount@PropertyObject@@QAEGXZ
?GetCPID@PropertyObject@@QAEPADXZ
?GetContainerLen@IVMContainer@@QAE_KXZ
?GetCpuID@DrmCopyCtrlObject@@IAEXPAE@Z
?GetCpuID@DrmPayPerView@@IAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?GetDataLen@AVDataObject@@QAE_KXZ
?GetDataStart@AVDataObject@@QAE_KXZ
?GetDistributor@DrmCtrl@@QAEPADXZ
?GetDistributor@MediaElement@@QAEPADXZ
?GetDistributor@PropertyObject@@QAEPADXZ
?GetDrmEnable@PropertyObject@@QAEEXZ
?GetDuration@AVDataObject@@QAE_KXZ
?GetDynamicVideoDecrypt@PropertyObject@@QAEEXZ
?GetEnablePlay@DrmCtrl@@UAEHXZ
?GetEncryptBase@AVDataObject@@QAEEXZ
?GetErrorString@DrmCtrl@@QAEPADXZ
?GetExDataObject@IVMContainer@@QAEHPAPAVExDataObject@@@Z
?GetExFrame@MediaElement@@QAEPAU_EX_FRAME@@XZ
?GetExFrameCount@ExDataObject@@QAEKXZ
?GetExSourceLen@ExSource@@QAE_KXZ
?GetFileSize@PropertyObject@@QAE_KXZ
?GetFormatObject@IVMContainer@@QAEHPAPAVFormatObject@@@Z
?GetGUID@DrmAreaTimeZoneObject@@UAE?AU_GUID@@XZ
?GetGUID@DrmCopyCtrlObject@@UAE?AU_GUID@@XZ
?GetGUID@DrmExpirationObject@@UAE?AU_GUID@@XZ
?GetGUID@DrmPayPerView@@UAE?AU_GUID@@XZ
?GetGuidLic@PropertyObject@@QAE?AU_GUID@@XZ
?GetKey@MediaElement@@QAEPADXZ
?GetKey@PropertyObject@@QAEPADXZ
?GetLicGuid@DrmCtrl@@UAE?AU_GUID@@XZ
?GetMajorVersion@FormatObject@@QAEGXZ
?GetMediaLen@MediaElement@@QAE_KXZ
?GetMediaType@MediaElement@@QAEHXZ
?GetMinorVersion@FormatObject@@QAEGXZ
?GetMovieID@DrmCtrl@@UAEKXZ
?GetObjectCount@FormatObject@@QAEKXZ
?GetObjectLen@AVDataObject@@QAE_KXZ
?GetObjectLen@ExDataObject@@QAE_KXZ
?GetObjectLen@FormatObject@@QAE_KXZ
?GetObjectLen@PropertyObject@@QAE_KXZ
?GetOriginalName@MediaElement@@QAEPADXZ
?GetOriginalName@PropertyObject@@QAEPADXZ
?GetPropertyObject@IVMContainer@@QAEHPAPAVPropertyObject@@@Z
?GetProprietorID@DrmCtrl@@UAEHPADH@Z
?GetProprietorId@PropertyObject@@QAEPADXZ
?GetReadMax@FileStream@@UAE_KXZ
?GetSerialNo@PropertyObject@@QAEKXZ
?GetSupervisor@PropertyObject@@QAEEXZ
?GetType@FormatObject@@QAEEXZ
?GetVideoBitrate@AVDataObject@@QAEKXZ
?GetVideoCodec@AVDataObject@@QAEGXZ
?GetVideoFramerate@AVDataObject@@QAEMXZ
?GetVideoHeight@AVDataObject@@QAEGXZ
?GetVideoWidth@AVDataObject@@QAEGXZ
?Init@AVDataObject@@QAEHXZ
?Init@DrmAreaTimeZoneObject@@QAEHPAU__DRM_AREA_INFO@@H_K@Z
?Init@DrmCopyCtrlObject@@QAEH_K@Z
?Init@DrmCtrl@@QAEHPAD00ABU_GUID@@PAKH@Z
?Init@DrmCtrl@@QAEHPAD00KABU_GUID@@@Z
?Init@DrmExpirationObject@@QAEHIJJI@Z
?Init@DrmPayPerView@@QAEH_KPAD@Z
?Init@ExDataObject@@QAEHXZ
?Init@FormatObject@@QAEHXZ
?Init@PropertyObject@@QAEHXZ
?IsChineseOs@DrmCtrl@@IAEHXZ
?IsEOF@Basic_Stream@@QAE_NXZ
?ProcessDrmLogic@DrmAreaTimeZoneObject@@UAEHPAVBasic_Stream@@@Z
?ProcessDrmLogic@DrmCopyCtrlObject@@UAEHPAVBasic_Stream@@@Z
?ProcessDrmLogic@DrmCtrl@@UAEHPAD0K@Z
?ProcessDrmLogic@DrmExpirationObject@@UAEHPAVBasic_Stream@@@Z
?ProcessDrmLogic@DrmPayPerView@@UAEHPAVBasic_Stream@@@Z
?PutAdAmount@PropertyObject@@QAEHG@Z
?PutAdDefault@PropertyObject@@QAEHG@Z
?PutAdPositionAmount@PropertyObject@@QAEHG@Z
?PutCPID@PropertyObject@@QAEHPAD@Z
?PutDataLen@AVDataObject@@QAEH_K@Z
?PutDistributor@PropertyObject@@QAEHPAD@Z
?PutDrmEnable@PropertyObject@@QAEHE@Z
?PutDuration@AVDataObject@@QAEH_K@Z
?PutDynamicVideoDecrypt@PropertyObject@@QAEHE@Z
?PutEnablePlay@DrmCtrl@@UAEXH@Z
?PutEncryptBase@AVDataObject@@QAEHE@Z
?PutErrorString@DrmCtrl@@UAEXH@Z
?PutFileSize@PropertyObject@@QAEH_K@Z
?PutGuidLic@PropertyObject@@QAEHU_GUID@@@Z
?PutKey@PropertyObject@@QAEHPAD@Z
?PutOriginalName@PropertyObject@@QAEHPAD@Z
?PutProprietorId@PropertyObject@@QAEHPAD@Z
?PutSerialNo@PropertyObject@@QAEHK@Z
?PutSupervisor@PropertyObject@@QAEHE@Z
?PutType@FormatObject@@QAEHE@Z
?PutVideoBitrate@AVDataObject@@QAEHK@Z
?PutVideoCodec@AVDataObject@@QAEHG@Z
?PutVideoFramerate@AVDataObject@@QAEHM@Z
?PutVideoHeight@AVDataObject@@QAEHG@Z
?PutVideoWidth@AVDataObject@@QAEHG@Z
?ReadBuffer@CryptFileStream@@UAEHPAEH@Z
?ReadBuffer@FileStream@@UAEHPAEH@Z
?ReadByte@Basic_Stream@@UAEEXZ
?ReadDword@Basic_Stream@@UAEKXZ
?ReadEncryptBuffer@Basic_Stream@@UAEHPAEHE@Z
?ReadGUID@Basic_Stream@@UAE?AU_GUID@@XZ
?ReadInternetFile@DrmCopyCtrlObject@@IAEHPADPAKPBD22@Z
?ReadLadData@DrmExpirationObject@@IAEH_K@Z
?ReadObject@AVDataObject@@QAEHAAVBasic_Stream@@@Z
?ReadObject@ExDataObject@@QAEHAAVBasic_Stream@@@Z
?ReadObject@FormatObject@@QAEHAAVBasic_Stream@@@Z
?ReadObject@PropertyObject@@QAEHAAVBasic_Stream@@@Z
?ReadObjectSSL@AVDataObject@@QAEHAAVBasic_Stream@@@Z
?ReadObjectSSL@ExDataObject@@QAEHAAVBasic_Stream@@@Z
?ReadObjectSSL@PropertyObject@@QAEHAAVBasic_Stream@@@Z
?ReadPrivateData@DrmExpirationObject@@IAEHXZ
?ReadQword@Basic_Stream@@UAE_KXZ
?ReadSSLEncryptBuffer@Basic_Stream@@UAEHPAEH@Z
?ReadWord@Basic_Stream@@UAEGXZ
?Release@FileStream@@UAEXXZ
?SetDrmCtrl@DrmAreaTimeZoneObject@@UAEXPAVDrmCtrlUtility@@@Z
?SetDrmCtrl@DrmCopyCtrlObject@@UAEXPAVDrmCtrlUtility@@@Z
?SetDrmCtrl@DrmExpirationObject@@UAEXPAVDrmCtrlUtility@@@Z
?SetDrmCtrl@DrmPayPerView@@UAEXPAVDrmCtrlUtility@@@Z
?SetIvmFilePath@DrmExpirationObject@@QAEXPAD@Z
?SetPointer@FileStream@@UAEH_K@Z
?SetPointera@FileStream@@IAEH_K@Z
?SetReadMax@FileStream@@UAEX_K@Z
?SetReadStart@FileStream@@UAEX_K@Z
?Tellp@FileStream@@UAE_KXZ
?Tellrp@FileStream@@UAE_KXZ
?Type@Basic_Stream@@QAEHXZ
?Verify@FormatObject@@QAEHXZ
?Verify@IVMContainer@@QAEHXZ
?Write2IVM@IVM@@QAEHPAD@Z
?Write2Lic@DrmAreaTimeZoneObject@@UAEHPAVBasic_Stream@@@Z
?Write2Lic@DrmCopyCtrlObject@@UAEHPAVBasic_Stream@@@Z
?Write2Lic@DrmExpirationObject@@UAEHPAVBasic_Stream@@@Z
?Write2Lic@DrmPayPerView@@UAEHPAVBasic_Stream@@@Z
?WriteBuffer@Basic_Stream@@UAEHPAEH@Z
?WriteBuffer@CryptFileStream@@UAEHPAEH@Z
?WriteByte@Basic_Stream@@UAEHAAE@Z
?WriteContainer@IVMContainer@@QAEHAAVBasic_Stream@@_K1@Z
?WriteDrmInfo2Lic@DrmCtrl@@UAEHXZ
?WriteDword@Basic_Stream@@UAEHAAK@Z
?WriteExSource@ExSource@@QAEHAAVBasic_Stream@@_K@Z
?WriteLadData@DrmExpirationObject@@IAEXXZ
?WriteMediaElement@MediaElement@@QAEHAAVBasic_Stream@@_KE@Z
?WriteObject@AVDataObject@@QAEHAAVBasic_Stream@@_K@Z
?WriteObject@ExDataObject@@QAEHAAVBasic_Stream@@_K@Z
?WriteObject@FormatObject@@QAEHAAVBasic_Stream@@@Z
?WriteObject@PropertyObject@@QAEHAAVBasic_Stream@@@Z
?WritePrivateData@DrmExpirationObject@@IAEXXZ
?WriteQword@Basic_Stream@@UAEHAA_K@Z
?WriteWord@Basic_Stream@@UAEHAAG@Z

Sections

.text
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
lang/splayer.cht.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\svn\lang\splayer.cht.pdb

Sections

.rdata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
lang/splayer.en.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
lang/splayer.ge.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
lang/splayer.ru.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
mc.dll
.dll windows:4 windows x86 arch:x86

c6aed6c2324d9c96df47837b112afcae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcmpA
lstrlenW
FlushInstructionCache
GetCurrentProcess
InterlockedDecrement
GetCurrentThreadId
GetSystemDirectoryA
GetLastError
GetVersionExA
TlsFree
TlsAlloc
TlsSetValue
RaiseException
CloseHandle
FlushFileBuffers
InterlockedIncrement
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
SetFilePointer
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
WriteFile
VirtualFree
HeapCreate
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
DeleteCriticalSection
HeapDestroy
GlobalAlloc
GlobalLock
GlobalUnlock
lstrlenA
MultiByteToWideChar
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetModuleHandleA
GetProcAddress
HeapSize
HeapFree
HeapReAlloc
TerminateProcess
ExitProcess
HeapAlloc
TlsGetValue
GetVersion
GetCommandLineA
RtlUnwind
LocalFree
WideCharToMultiByte
SetLastError

user32

GetClassInfoExA
RegisterWindowMessageA
DefWindowProcA
GetWindow
LoadCursorA
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
GetWindowLongA
UnregisterClassA
SetWindowLongA
GetParent
MoveWindow
SetParent
wsprintfA
CreateWindowExA
InvalidateRgn
InvalidateRect
SetCapture
ReleaseCapture
CreateAcceleratorTableA
GetDesktopWindow
RedrawWindow
DestroyWindow
IsWindow
RegisterClassExA
GetClassNameA
SetWindowPos
GetFocus
IsChild
SetFocus
GetDC
ReleaseDC
BeginPaint
GetClientRect
FillRect
EndPaint
CallWindowProcA
GetDlgItem
SendMessageA
GetSysColor

gdi32

GetObjectA
GetDeviceCaps
CreateSolidBrush
DeleteObject
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetStockObject

shell32

ShellExecuteA

ole32

CoInitialize
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CoUninitialize
CLSIDFromProgID
CoCreateInstance
CoTaskMemFree
StringFromCLSID
CoTaskMemAlloc
OleLockRunning
CLSIDFromString

oleaut32

LoadRegTypeLi
SysStringLen
SysAllocStringLen
VariantClear
SysAllocString
SysFreeString
GetErrorInfo
OleCreateFontIndirect

Exports

Exports

DestroyMCWindow
DestroyWindows
InitMc
NewWindow
NotifyVideoCoordinate
NotifyVideoCoordinateEx
ResiteLogoWIndowInVideo
SWParent

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mkunicode.dll
.dll windows:5 windows x86 arch:x86

1da5d5aea5082cc09bfa84c92764c4f2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLocaleInfoA
MultiByteToWideChar

Exports

Exports

Utf16ToUtf8
Utf8ToUtf16
iso_code2tocode3
iso_code3tocode2
iso_code3tocode3
iso_codetoname
iso_getentry
iso_getlcid
iso_getsyslang
iso_nametocode3

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 158B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mkzlib.dll
.dll windows:5 windows x86 arch:x86

efcc761811aa76f93e9c981878270d69

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
HeapFree
HeapAlloc
GetCurrentThreadId
GetCommandLineA
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
RtlUnwind
LoadLibraryA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW

Exports

Exports

adler32
adler32_combine
compress
compress2
compressBound
crc32
crc32_combine
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePrime
deflateReset
deflateSetDictionary
deflateSetHeader
deflateTune
get_crc_table
inflate
inflateCopy
inflateEnd
inflateGetHeader
inflateInit2_
inflateInit_
inflatePrime
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mmamrdmx.ax
.dll regsvr32 windows:4 windows x86 arch:x86

cf22c0c7ff7ad0f5db3ffbc40fed2717

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFilePointer
FlushFileBuffers
HeapFree
HeapAlloc
GetCommandLineA
GetProcessHeap
QueryPerformanceCounter
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapReAlloc
HeapSize
ExitProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WriteFile
HeapCreate
GetStdHandle
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetConsoleCP
GetConsoleMode
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
GetModuleHandleA
GlobalFlags
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
LoadLibraryA
GetVersionExA
GetThreadLocale
GetVersion
GetCurrentProcessId
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GetModuleFileNameW
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
SizeofResource
SetLastError
SetErrorMode
DisableThreadLibraryCalls
lstrlenA
GetModuleFileNameA
MultiByteToWideChar
lstrcmpW
GetCurrentProcess
VirtualFree
VirtualAlloc
GetTickCount
GetModuleHandleW
CreateThread
GetVersionExW
GetCurrentThreadId
CreateEventW
GetProcAddress
GetLastError
InterlockedDecrement
InterlockedIncrement
LoadLibraryW
FreeLibrary
lstrlenW
WaitForMultipleObjects
CloseHandle
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
InitializeCriticalSection
InterlockedExchange
ResetEvent
SetEvent
HeapDestroy

user32

GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
ClientToScreen
LoadIconW
WinHelpW
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
IsWindow
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetMenu
PostMessageW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
UnregisterClassA
CopyRect
PtInRect
GetDlgCtrlID
CallWindowProcW
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetWindowTextW
LoadCursorW
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetWindowThreadProcessId
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxW
UnregisterClassW
SetWindowsHookExW
CallNextHookEx
SendMessageW
GetKeyState
ValidateRect
PostQuitMessage
DestroyMenu
GetClientRect
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetWindowRect
GetDesktopWindow
LoadStringW
SetWindowLongW
ShowWindow
DefWindowProcW
DestroyWindow
CreateDialogParamW
MoveWindow
InvalidateRect
GetWindowLongW
DispatchMessageW
PeekMessageW
RegisterWindowMessageW
SetTimer
KillTimer
GetDlgItem
SetWindowTextW
GetWindow

gdi32

ScaleWindowExtEx
DeleteDC
GetStockObject
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetDeviceCaps
SetMapMode
RestoreDC
SaveDC
DeleteObject
SetBkColor
SetTextColor
GetClipBox
CreateBitmap

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegOpenKeyExW
RegSetValueW
RegEnumKeyExW
RegCreateKeyW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegDeleteKeyW

shlwapi

PathFindFileNameW
PathFindExtensionW

ole32

StringFromGUID2
CoCreateInstance
CoFreeUnusedLibraries
CoTaskMemFree
CoInitialize
CoUninitialize
CoTaskMemAlloc

oleaut32

VariantChangeType
VariantClear
VariantInit

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mp4.dll
.dll regsvr32 windows:5 windows x86 arch:x86

300402277af0c7024c23e778e66ea696

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleW
lstrcmpiW
GetModuleFileNameW
GetProcAddress
GetThreadLocale
FreeLibrary
LoadLibraryExW
lstrlenW
InterlockedDecrement
InterlockedIncrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetLastError
SetThreadLocale
RaiseException
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetConsoleMode
GetConsoleCP
SetFilePointer
GetTickCount
CloseHandle
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetCurrentThreadId
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
VirtualQuery
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapCreate
VirtualFree
VirtualAlloc
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleHandleA
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA

user32

CharNextW

advapi32

RegQueryInfoKeyW
RegDeleteKeyW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExW
RegSetValueExW

ole32

CoTaskMemRealloc
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree

oleaut32

VariantChangeType
SafeArrayCreate
SafeArrayAccessData
SafeArrayDestroy
SafeArrayUnaccessData
VariantClear
SysFreeString
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysStringLen
SysAllocStringLen

mkunicode

Utf16ToUtf8
Utf8ToUtf16

mkzlib

inflateInit_
inflateEnd
inflate

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ogm.dll
.dll regsvr32 windows:5 windows x86 arch:x86

b917edfd761f1ce9e8e8288156f4e023

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcmpiW
GetModuleFileNameW
SetThreadLocale
GetModuleHandleW
FreeLibrary
LoadLibraryExW
GetProcAddress
GetLastError
lstrlenW
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
MultiByteToWideChar
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetThreadLocale
RaiseException
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
LoadLibraryA
lstrlenA
GetTickCount
CloseHandle
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetCurrentThreadId
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
LCMapStringA
LCMapStringW
RtlUnwind
VirtualQuery
HeapCreate
VirtualFree
VirtualAlloc
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleHandleA
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
InitializeCriticalSectionAndSpinCount

user32

CharNextW

advapi32

RegQueryInfoKeyW
RegDeleteKeyW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExW
RegSetValueExW

ole32

CoTaskMemRealloc
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc

oleaut32

VariantChangeType
SafeArrayDestroy
SafeArrayUnaccessData
SysAllocStringLen
VariantClear
VariantInit
SafeArrayCreate
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysStringLen
SafeArrayAccessData
SysFreeString

mkunicode

iso_nametocode3
Utf8ToUtf16
iso_code3tocode3

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
rlapedec.ax
.dll regsvr32 windows:4 windows x86 arch:x86

368725cbc26491f4c1eba4496db1bb3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcr71

_wcsnicmp
?terminate@@YAXXZ
_except_handler3
calloc
_CxxThrowException
_strnicmp
atoi
wcsrchr
wcscpy
_wcsicmp
strncpy
sprintf
_wtoi
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
__CxxFrameHandler
free
malloc
strstr
sscanf
qsort
memmove
wcslen
strncmp
??1type_info@@UAE@XZ

kernel32

DeleteFileW
CreateFileW
GetFileSize
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetVersionExA
DisableThreadLibraryCalls
lstrlenA
MultiByteToWideChar
GetLastError
GetModuleFileNameA
CreateEventA
CloseHandle
WaitForSingleObject
InterlockedExchange
CreateThread
SetEvent
ResetEvent
GetProcAddress
GetModuleHandleA
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
FreeLibrary
Sleep
ReadFile
SetEndOfFile
SetFilePointer
WriteFile

user32

wsprintfA

advapi32

RegSetValueA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegOpenKeyA
RegEnumValueA
RegCreateKeyA
RegSetValueExA
RegCloseKey

ole32

CoUninitialize
CoTaskMemFree
CoInitialize
CoTaskMemAlloc
CoFreeUnusedLibraries
StringFromGUID2
CoCreateInstance

oleaut32

SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
_FillWaveFormatEx@16
_FillWaveHeader@16

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
sinet.dll
.dll windows:5 windows x86 arch:x86

096a8d9d24e5c837b7d1d4edd16b1887

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\svn\svplayer\Thirdparty\sinet\trunk\Release\sinet.pdb

Imports

kernel32

ReadConsoleInputA
SetConsoleMode
GetModuleHandleA
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
FlushConsoleInputBuffer
GetVersionExA
GlobalMemoryStatus
GetVersion
GetProcessHeap
SetEndOfFile
CreateFileW
SetEnvironmentVariableA
CompareStringW
CompareStringA
CreateFileA
GetTimeZoneInformation
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
EnterCriticalSection
LeaveCriticalSection
CreateEventW
CloseHandle
WaitForSingleObject
SetEvent
WideCharToMultiByte
MultiByteToWideChar
SleepEx
GetLastError
SetLastError
GetTickCount
Sleep
PeekNamedPipe
FreeLibrary
ReadFile
GetStdHandle
GetProcAddress
LoadLibraryA
GetFileType
WaitForMultipleObjects
ExpandEnvironmentStringsA
FormatMessageA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
HeapReAlloc
HeapFree
GetCurrentThreadId
GetCommandLineA
ExitThread
ResumeThread
CreateThread
DeleteFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
GetSystemTimeAsFileTime
SetFilePointer
GetFileInformationByHandle
RaiseException
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
WriteFile
GetModuleFileNameA
VirtualFree
VirtualAlloc
HeapCreate
HeapDestroy
ExitProcess
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetACP
GetOEMCP
IsValidCodePage
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetFullPathNameA
GetCurrentDirectoryA
SetStdHandle
HeapSize
SetConsoleCtrlHandler
GetUserDefaultLCID
GetLocaleInfoA

ws2_32

freeaddrinfo
getaddrinfo
gethostname
ioctlsocket
listen
accept
select
__WSAFDIsSet
WSASetLastError
recvfrom
sendto
send
getpeername
connect
WSAGetLastError
htons
ntohs
getsockname
setsockopt
recv
bind
socket
getsockopt
closesocket
WSAStartup
WSACleanup
shutdown

wldap32

ord33
ord79
ord30
ord60
ord26
ord41
ord27
ord50
ord22
ord35
ord32
ord200
ord301
ord211
ord46
ord143

user32

GetProcessWindowStation
GetDesktopWindow
MessageBoxA
GetUserObjectInformationW

gdi32

GetObjectA
SelectObject
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
CreateDCA
GetBitmapBits
DeleteObject
GetDeviceCaps
DeleteDC

advapi32

RegisterEventSourceA
ReportEventA
DeregisterEventSource

Exports

Exports

_buffer_alloc
_buffer_free
_buffer_get
_buffer_size
_config_create_instance
_intlist_alloc
_intlist_free
_intlist_get
_intlist_size
_pool_create_instance
_postdata_create_instance
_postdataelem_create_instance
_request_create_instance
_string_alloc
_string_alloc_length
_string_free
_string_length
_string_realloc
_string_realloc_length
_stringmap_alloc
_stringmap_append
_stringmap_free
_stringmap_get_find
_stringmap_get_key
_stringmap_get_size
_stringmap_get_value
_task_create_instance
sinet_urldecode
sinet_urlencode

Sections

.text
Size: 803KB - Virtual size: 802KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 201KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
smackw32.dll
.dll windows:4 windows x86 arch:x86

bf0ee0de6cbd5865762c575dc8f8545c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

SendMessageA
GetWindowThreadProcessId
GetTopWindow
GetFocus
IsWindow
LoadStringA
IsWindowVisible
GetForegroundWindow
IsChild
SystemParametersInfoA
GetWindowRect
GetParent
ClientToScreen
GetClassInfoA
GetWindowLongA
CreateWindowExA
GetDC
ReleaseDC
GetClassLongA
LoadCursorA
SetWindowLongA
ShowWindow
GetSystemMetrics
SetWindowPos
SetFocus
CallWindowProcA
GetWindow
GetActiveWindow
GetCursorPos
MessageBoxA
RegisterClassA
ShowCursor
PeekMessageA
ScreenToClient
SetCursor
DestroyWindow
UnregisterClassA
EndPaint
DefWindowProcA
BeginPaint
InvalidateRect

winmm

waveOutUnprepareHeader
timeKillEvent
timeSetEvent
waveOutGetID
waveOutSetVolume
waveOutReset
waveOutClose
waveOutOpen
waveOutPrepareHeader
waveOutWrite
timeGetTime

kernel32

FreeLibrary
lstrcpyA
GetCurrentProcessId
ReadFile
GetOEMCP
CloseHandle
GetCPInfo
GetStartupInfoA
GetACP
GetFileType
SetHandleCount
GetStdHandle
TerminateProcess
ExitProcess
GetCurrentProcess
HeapCreate
GetCommandLineA
HeapDestroy
GetProcAddress
GetModuleHandleA
GetVersion
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
WriteFile
DisableThreadLibraryCalls
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
MultiByteToWideChar
FreeEnvironmentStringsA
SetFilePointer
GetProfileIntA
LoadLibraryA
SetErrorMode
LoadModule
HeapFree
GetModuleFileNameA
OutputDebugStringA
HeapAlloc
CreateFileA

gdi32

StretchBlt
GetPixel
SetPixel
CreateCompatibleBitmap
GetDIBits
SetStretchBltMode
StretchDIBits
BitBlt
PatBlt
DeleteDC
GetDeviceCaps
CreatePalette
SelectPalette
RealizePalette
DeleteObject
GetSystemPaletteUse
GetSystemPaletteEntries
CreateCompatibleDC
SelectObject

Exports

Exports

_CopyData@20
_SmackBlit@44
_SmackBlitClear@32
_SmackBlitClose@4
_SmackBlitMask@52
_SmackBlitMerge@52
_SmackBlitOpen@4
_SmackBlitSetFlags@8
_SmackBlitSetPalette@12
_SmackBlitString@8
_SmackBlitTrans@48
_SmackBufferBlit@32
_SmackBufferClear@8
_SmackBufferClose@4
_SmackBufferCopyPalette@12
_SmackBufferEndMultipleBlits@4
_SmackBufferFocused@4
_SmackBufferFromScreen@16
_SmackBufferNewPalette@12
_SmackBufferOpen@24
_SmackBufferSetPalette@4
_SmackBufferStartMultipleBlits@4
_SmackBufferString@8
_SmackBufferToBuffer@32
_SmackBufferToBufferMask@40
_SmackBufferToBufferMerge@40
_SmackBufferToBufferTrans@36
_SmackCheckCursor@20
_SmackClose@4
_SmackColorRemapWithTrans@20
_SmackColorTrans@8
_SmackDDSurfaceType@4
_SmackDoFrame@4
_SmackFrameRate@4
_SmackGetTrackData@12
_SmackGoto@8
_SmackIsSoftwareCursor@8
_SmackNextFrame@4
_SmackOpen@12
_SmackRestoreCursor@4
_SmackSetSystemRes@4
_SmackSimulate@4
_SmackSoundCheck@0
_SmackSoundInTrack@8
_SmackSoundOnOff@8
_SmackSoundSetDirectSoundHWND@4
_SmackSoundUseDW@12
_SmackSoundUseDirectSound@4
_SmackSoundUseMSS@4
_SmackSoundUseWin@0
_SmackSummary@8
_SmackToBuffer@28
_SmackToBufferRect@8
_SmackToScreen@28
_SmackUseMMX@4
_SmackVolumePan@16
_SmackWait@4
_TimerFunc@20
_ailcallback@4
_radfree@4
_radmalloc@4

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_UNSTEXT
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
sphash.dll
.dll windows:5 windows x86 arch:x86

69eb3b6ebe4cae86f24a356e5c4de784

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\svn\svplayer\Thirdparty\pkg\trunk\sphash\Release\sphash.pdb

Imports

kernel32

LocalAlloc
GetProcAddress
FreeLibrary
InterlockedExchange
GetLastError
LoadLibraryA
RaiseException
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
MultiByteToWideChar
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeW
FindFirstFileW
CloseHandle
GetFileType
CreateFileW
SetFilePointer
ReadFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetCurrentThreadId
GetCommandLineA
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
HeapAlloc
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetFullPathNameW
GetCurrentDirectoryA
SetStdHandle
WriteFile
GetConsoleCP
GetConsoleMode
SetEndOfFile
GetProcessHeap
SetHandleCount
GetStdHandle
GetStartupInfoA
ExitProcess
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
HeapReAlloc
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
InitializeCriticalSectionAndSpinCount
FlushFileBuffers
GetTimeZoneInformation
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoW
GetDriveTypeA
CreateFileA
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetModuleHandleA

Exports

Exports

hash_data
hash_file

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
splayer.exe
.exe windows:5 windows x86 arch:x86

7a08258a0ef9848d62f88769685692d5

Code Sign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

10-05-2010 00:00

Not After

10-05-2015 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6c:58:77:15:ee:87:07:2e:7e:b8:81:68:07:e4:bd:39
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

15-07-2010 00:00

Not After

14-07-2012 23:59

Subject

CN=Sagittarius Technology Co.Ltd,O=Sagittarius Technology Co.Ltd,POSTALCODE=NA,STREET=724-4\, No. 710\, Siping Road,L=Hongkou District,ST=Shanghai,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6c:42:cf:1c:03:e0:6d:e9:0d:03:31:f1:82:ab:5a:11:fb:dc:e6:46
Signer

Actual PE Digest

6c:42:cf:1c:03:e0:6d:e9:0d:03:31:f1:82:ab:5a:11:fb:dc:e6:46

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\svn\splayer.pdb

Imports

ddraw

DirectDrawCreateEx

rpcrt4

UuidCreateSequential

winmm

timeSetEvent
waveOutGetVolume
waveOutSetVolume
timeKillEvent
timeGetDevCaps
timeBeginPeriod
timeEndPeriod
mixerSetControlDetails
timeGetTime

dsound

ord1
ord3

imm32

ImmAssociateContextEx

unrar

ord6
ord3
ord14
ord15
ord13
ord16
ord5
ord2

sphash

hash_data
hash_file

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

kernel32

VirtualFree
DuplicateHandle
CreateSemaphoreA
IsDBCSLeadByteEx
SetFilePointerEx
GetFileSizeEx
GetSystemInfo
GetVolumeInformationW
GetSystemDirectoryW
FlushFileBuffers
UnlockFile
LockFile
LockFileEx
GetVersionExA
AreFileApisANSI
GetFileAttributesA
DeleteFileA
GetFileAttributesW
GetTempPathA
GetFullPathNameA
FormatMessageA
GetSystemTimeAsFileTime
LocalAlloc
CompareStringW
GlobalFindAtomW
FreeResource
GlobalSize
GlobalFree
lstrcmpA
GetProfileIntW
GetPrivateProfileIntW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetStringTypeExW
GetThreadLocale
CompareStringA
EnumResourceLanguagesW
ConvertDefaultLocale
FileTimeToLocalFileTime
FindResourceExW
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
ReleaseSemaphore
LocalReAlloc
TlsFree
GlobalFlags
SetErrorMode
GetStartupInfoW
RtlUnwind
UnhandledExceptionFilter
ExitProcess
GetFileType
ExitThread
HeapReAlloc
SetStdHandle
HeapSize
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapCreate
HeapDestroy
GetCPInfo
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetCurrentDirectoryA
GetDriveTypeA
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
EnumSystemLocalesA
IsValidLocale
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
SetEnvironmentVariableW
SizeofResource
LockResource
LoadResource
FindResourceW
LeaveCriticalSection
EnterCriticalSection
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
lstrlenW
GlobalUnlock
GlobalLock
GlobalAlloc
RaiseException
GetCurrentThreadId
GetModuleFileNameW
GetVersionExW
lstrcmpW
CreateSemaphoreW
GetTickCount
GetThreadPriority
SetEndOfFile
GetModuleHandleA
GetSystemDirectoryA
CreateMutexA
ReleaseMutex
LoadLibraryA
SuspendThread
GetThreadContext
SetThreadContext
InterlockedCompareExchange
VirtualAlloc
VirtualQuery
GetACP
GetPrivateProfileSectionW
VirtualProtect
SetFilePointer
GetExitCodeThread
ResetEvent
TerminateThread
WaitForSingleObject
SetEvent
CreateThread
SetThreadPriority
WaitForMultipleObjects
FormatMessageW
LocalFree
GlobalGetAtomNameW
GlobalAddAtomW
GlobalDeleteAtom
SetFileAttributesW
MoveFileExW
WriteFile
GetFileSize
ReadFile
OpenMutexW
MultiByteToWideChar
GetSystemTime
GetFileTime
SetFileTime
GetTempFileNameW
ResumeThread
GetLastError
GetCurrentProcess
OutputDebugStringW
DebugBreak
GetEnvironmentVariableW
CreateEventW
WideCharToMultiByte
lstrlenA
HeapAlloc
GetProcessHeap
HeapFree
FlushInstructionCache
lstrcpyW
FileTimeToSystemTime
GetDateFormatW
GetTimeFormatW
lstrcpynW
GetSystemPowerStatus
DeleteFileW
GetFileAttributesExW
SetLastError
WritePrivateProfileStringA
GetPrivateProfileStringA
DeviceIoControl
GetModuleFileNameA
CreateFileA
IsDebuggerPresent
MulDiv
GetCurrentThread
GetVersion
CreateDirectoryW
TerminateProcess
SetUnhandledExceptionFilter
QueryPerformanceFrequency
GetSystemDefaultLangID
GetFullPathNameW
CreateFileW
GetCurrentProcessId
QueryPerformanceCounter
lstrcmpiW
GetModuleHandleW
InterlockedDecrement
InterlockedIncrement
IsProcessorFeaturePresent
LoadLibraryW
GetTempPathW
ReadProcessMemory
WriteProcessMemory
LoadLibraryExW
GetProcAddress
FreeLibrary
VirtualAllocEx
VirtualProtectEx
VirtualFreeEx
CreateMutexW
CopyFileW
FindNextFileW
GetCurrentDirectoryW
GetDriveTypeW
GetDiskFreeSpaceExW
SetPriorityClass
FindFirstFileW
FindClose
Sleep
SetSystemPowerState
SetThreadExecutionState
GetLocaleInfoW
GetUserDefaultLCID
OpenProcess
CloseHandle
GetLocaleInfoA
TlsSetValue

ole32

CoFreeLibrary
CoLoadLibrary
CoSetProxyBlanket
CoFreeUnusedLibraries
CreateItemMoniker
CreateBindCtx
OleFlushClipboard
OleIsCurrentClipboard
ReleaseStgMedium
OleDuplicateData
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard
CLSIDFromProgID
MkParseDisplayName
CLSIDFromString
CoInitializeEx
CoInitializeSecurity
StringFromGUID2
OleUninitialize
OleInitialize
GetRunningObjectTable
CoTaskMemRealloc
OleLoadFromStream
CoTaskMemAlloc
OleSaveToStream
CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitialize
CreateStreamOnHGlobal
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoRevokeClassObject
CreateILockBytesOnHGlobal
CoRegisterMessageFilter

user32

CheckMenuItem
IsWindowEnabled
GetMessageW
ValidateRect
GetMenuState
GetMenuStringW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
SetWindowsHookExW
CallNextHookEx
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetLastActivePopup
GetTopWindow
UnhookWindowsHookEx
TrackPopupMenu
GetScrollPos
GetClassInfoW
RegisterClassW
SystemParametersInfoA
GetWindowPlacement
GetMenu
CharLowerBuffW
AdjustWindowRectEx
GetClassLongW
GetWindowRgn
GetScrollInfo
EnumWindows
GetClassNameW
GetQueueStatus
MsgWaitForMultipleObjects
wsprintfA
IntersectRect
GetMessageTime
MessageBeep
GetMessagePos
wsprintfW
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetClassInfoExW
DrawEdge
IsDlgButtonChecked
DestroyIcon
GetSysColor
CreateWindowExW
MessageBoxW
MonitorFromPoint
GetCursor
GetCapture
EndPaint
BeginPaint
SetActiveWindow
GetDlgCtrlID
TranslateMessage
DispatchMessageW
ClientToScreen
GetDlgItemTextW
CallWindowProcW
LoadBitmapA
LoadIconA
LoadStringW
LoadStringA
LoadImageA
ChangeDisplaySettingsExW
ChangeDisplaySettingsExA
FindWindowExW
CreateAcceleratorTableW
UnregisterHotKey
RegisterHotKey
DestroyAcceleratorTable
SendMessageCallbackW
DestroyWindow
CharNextW
PeekMessageW
UpdateWindow
LoadIconW
RegisterWindowMessageW
ModifyMenuW
GetKeyState
ExitWindowsEx
RegisterClassExW
IsMenu
GetWindowModuleFileNameW
GetWindowThreadProcessId
GetAsyncKeyState
GetDC
EnumDisplayMonitors
GetMenuBarInfo
MonitorFromWindow
GetMonitorInfoW
GetCursorPos
RegisterClipboardFormatW
DefWindowProcW
PostThreadMessageW
GetForegroundWindow
SetForegroundWindow
WindowFromPoint
IsChild
GetDesktopWindow
RedrawWindow
GetDCEx
IsWindowVisible
ReleaseDC
GetWindowDC
ScreenToClient
SetWindowRgn
IsIconic
LoadMenuW
RemoveMenu
InsertMenuW
GetSubMenu
SetMenuItemInfoW
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
EnableMenuItem
AppendMenuW
DeleteMenu
CreatePopupMenu
LoadBitmapW
UnionRect
OffsetRect
InflateRect
EqualRect
SetRectEmpty
SetRect
PtInRect
IsRectEmpty
GetWindow
GetWindowLongW
SetWindowLongW
EmptyClipboard
SetClipboardData
CloseClipboard
SetLayeredWindowAttributes
OpenClipboard
GetFocus
FrameRect
GetDlgItem
GetSysColorBrush
CopyRect
FindWindowW
IsWindow
ShowWindow
SetWindowPos
ChangeDisplaySettingsW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckDlgButton
CheckRadioButton
IsDialogMessageW
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
LockWindowUpdate
UnregisterClassW
DrawFocusRect
EnumDisplayDevicesA
GetSystemMetrics
SystemParametersInfoW
FillRect
GetActiveWindow
SetWindowContextHelpId
CharUpperW
ShowOwnedPopups
SetParent
GetSystemMenu
MapDialogRect
WaitMessage
IsClipboardFormatAvailable
UnpackDDElParam
ReuseDDElParam
DestroyMenu
LoadAcceleratorsW
InsertMenuItemW
BringWindowToTop
TranslateAcceleratorW
CreateDialogIndirectParamW
GetNextDlgTabItem
SendMessageW
EnableWindow
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
LoadImageW
ReleaseCapture
SetCursor
MapWindowPoints
GetParent
SetCapture
KillTimer
SetTimer
InvalidateRect
GetClientRect
GetWindowRect
PostMessageW
LoadCursorW
UnregisterClassA
EndDialog
MoveWindow
PostQuitMessage
SetWindowTextW
SetMenu

gdi32

SetRectRgn
OffsetRgn
CreateBitmap
CreatePolygonRgn
GetPixel
AddFontResourceW
TranslateCharsetInfo
SetMapMode
GetTextMetricsW
EndPath
AbortPath
GetPath
BeginPath
CloseFigure
PatBlt
GetTextColor
CancelDC
EnumFontFamiliesW
CreateDCW
GetClipBox
CopyMetaFileW
SaveDC
RestoreDC
SetBkColor
IntersectClipRect
SetColorAdjustment
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
EqualRgn
ExtSelectClipRgn
CreatePatternBrush
CreateHatchBrush
GetMapMode
DPtoLP
GetBkColor
GetCharWidthW
StretchDIBits
GetRgnBox
GetRegionData
SetStretchBltMode
EnumFontFamiliesExW
GetStockObject
FillRgn
FrameRgn
SetPixel
ExcludeClipRect
SetViewportOrgEx
AddFontResourceExW
CreateFontW
GetColorAdjustment
SetBrushOrgEx
GetDeviceCaps
CreateICW
PtInRegion
CreateRoundRectRgn
CreateRectRgnIndirect
CreateRectRgn
GetTextExtentPoint32W
CreateFontIndirectW
CreatePen
Rectangle
LineTo
MoveToEx
SetTextColor
SetBkMode
CreateSolidBrush
Escape
ExtTextOutW
TextOutW
RectVisible
GetKerningPairsW
PtVisible
CreateDIBSection
CombineRgn
GetCurrentObject
DeleteObject
BitBlt
GetObjectW
CreateCompatibleBitmap
StretchBlt
SetDIBColorTable
SelectObject
DeleteDC
CreateCompatibleDC

msimg32

GradientFill
AlphaBlend

comdlg32

GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExA
RegEnumKeyW
RegSetValueA
RegSetValueW
RegQueryValueW
RegQueryValueA
RegOpenKeyW
RegCreateKeyW
RegCreateKeyA
RegFlushKey
RegQueryInfoKeyA
RegOpenKeyExA
RegEnumValueW
RegEnumValueA
ControlService
OpenServiceA
RegOpenKeyA
OpenSCManagerW
RegSetValueExA
AdjustTokenPrivileges
LookupPrivilegeValueW
RegEnumKeyExA
OpenProcessToken
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryInfoKeyW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteValueW
CloseServiceHandle

shell32

SHChangeNotify
Shell_NotifyIconW
ord680
SHGetPathFromIDListW
SHBrowseForFolderW
DragFinish
DragQueryFileW
DragAcceptFiles
ExtractIconExW
ShellExecuteExW
SHGetSpecialFolderLocation
SHFileOperationW
ShellExecuteW

comctl32

InitCommonControlsEx
DestroyPropertySheetPage
CreatePropertySheetPageW
PropertySheetW

shlwapi

PathCombineW
PathFindExtensionW
PathAppendW
PathAddBackslashW
PathRemoveBackslashW
PathRemoveFileSpecW
PathStripPathW
PathFindFileNameW
PathIsDirectoryW
PathRenameExtensionW
PathFileExistsW
PathRemoveExtensionW
PathStripToRootW
PathCanonicalizeW
PathIsRootW
PathIsUNCW
UrlUnescapeW
PathAddExtensionW

oledlg

OleUIBusyW

oleaut32

OleLoadPicture
VariantTimeToSystemTime
VariantCopy
OleCreateFontIndirect
VarBstrCmp
SysAllocStringLen
SafeArrayAccessData
SafeArrayUnaccessData
SystemTimeToVariantTime
OleCreatePropertyFrame
SysStringByteLen
SysAllocStringByteLen
VarUI4FromStr
VariantChangeType
SafeArrayDestroy
SysAllocString
VariantClear
VariantInit
SysFreeString
SysStringLen

uxtheme

OpenThemeData
DrawThemeBackground

ws2_32

send
WSAAsyncSelect
sendto
connect
WSASetLastError
select
accept
gethostbyname
recv
inet_addr
socket
setsockopt
bind
recvfrom
WSACleanup
closesocket
WSAGetLastError
WSAStartup
htonl
htons

wininet

HttpQueryInfoW
InternetCloseHandle
HttpQueryInfoA
InternetOpenUrlW
InternetConnectW
InternetSetOptionW
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallbackW
InternetGetLastResponseInfoW
InternetQueryDataAvailable
InternetQueryOptionW
InternetCanonicalizeUrlW
InternetCrackUrlW
HttpSendRequestW
HttpOpenRequestW
InternetOpenW

Sections

.text
Size: 6.0MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text.un
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_TEXT64
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 480KB - Virtual size: 4.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug_l
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug_i
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug_a
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug_a
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug_f
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug_l
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug_p
Size: 512B - Virtual size: 126B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug_r
Size: 512B - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ts.dll
.dll regsvr32 windows:5 windows x86 arch:x86

282ab4084f47e3d52f7361377f375f8f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcmpiW
GetModuleHandleA
GetProcAddress
GetThreadLocale
GetLastError
SetThreadLocale
lstrlenW
GetModuleFileNameW
GetModuleHandleW
LoadLibraryExW
FreeLibrary
DeleteCriticalSection
LockResource
EnterCriticalSection
RaiseException
MultiByteToWideChar
GetFileAttributesW
LeaveCriticalSection
SizeofResource
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LoadResource
FindResourceW
FindResourceExW
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoA
lstrlenA
OutputDebugStringA
GetTickCount
CloseHandle
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetCurrentThreadId
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapCreate
VirtualFree
VirtualAlloc
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
LCMapStringW
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
RtlUnwind
SetFilePointer
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
LoadLibraryA
LCMapStringA
GetStringTypeA
GetStringTypeW
VirtualQuery

user32

CharNextW

advapi32

RegOpenKeyExW
CryptGetHashParam
CryptAcquireContextW
CryptReleaseContext
CryptCreateHash
CryptDestroyHash
CryptHashData
RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegQueryValueExW
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegCreateKeyExW

ole32

CoCreateInstance
CoTaskMemAlloc
StringFromGUID2
CoTaskMemRealloc
CoTaskMemFree

oleaut32

VariantInit
SysAllocStringLen
SafeArrayUnaccessData
VarUI4FromStr
SysFreeString
VariantChangeType
SafeArrayCreate
SafeArrayDestroy
SafeArrayAccessData
VariantClear

mkunicode

Utf8ToUtf16

rpcrt4

RpcStringFreeA
UuidToStringA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninstall.exe.nsis
unrar.dll
.dll windows:5 windows x86 arch:x86

d40363c7ef8bb596c83c90482d2c056c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\[researches]\unrar\build\unrardll32\Release\unrar.pdb

Imports

kernel32

SetEndOfFile
GetFileType
CreateFileA
CreateFileW
ReadFile
GetStdHandle
WriteFile
GetProcAddress
GetFileAttributesA
GetFileAttributesW
SetFileAttributesA
SetFileAttributesW
GetFullPathNameA
DeviceIoControl
CreateDirectoryA
CreateDirectoryW
FindClose
FindNextFileA
SetFilePointer
FindNextFileW
FindFirstFileW
GetVersionExA
GetModuleFileNameA
LocalFileTimeToFileTime
SystemTimeToFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemTime
WideCharToMultiByte
MultiByteToWideChar
IsDBCSLeadByte
GetCPInfo
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
FlushFileBuffers
MoveFileA
SetFileTime
GetCurrentProcess
GetLastError
CloseHandle
FindFirstFileA
Sleep
GetConsoleMode
WriteConsoleW
GetConsoleCP
RtlUnwind
HeapAlloc
HeapFree
HeapReAlloc
RaiseException
GetModuleHandleW
ExitProcess
GetSystemTimeAsFileTime
DeleteFileA
GetCurrentThreadId
GetCommandLineA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapCreate
HeapDestroy
GetACP
GetOEMCP
IsValidCodePage
HeapSize
LoadLibraryA
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
GetLocaleInfoA

user32

CharLowerA
CharUpperA
OemToCharA
CharToOemBuffA
OemToCharBuffA
CharToOemA

advapi32

SetFileSecurityW
SetFileSecurityA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

Sections

.text
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
vp6dec.ax
.dll regsvr32 windows:4 windows x86 arch:x86

ff1fa4ec04e991f4a598878a4c461e63

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
InterlockedIncrement
InterlockedDecrement
CloseHandle
GetCurrentProcess
GetCurrentThreadId
VirtualAlloc
VirtualFree
FreeLibrary
LoadLibraryA
lstrlenA
MultiByteToWideChar
GetLastError
GetModuleFileNameA
GetVersionExA
DisableThreadLibraryCalls
GetProcAddress
GetModuleHandleA
WideCharToMultiByte
GetACP
GetCommandLineA
QueryPerformanceCounter
QueryPerformanceFrequency
Sleep
GlobalAlloc
GlobalFree
RtlUnwind
GetVersion
HeapAlloc
HeapReAlloc
HeapFree
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
ExitProcess
TerminateProcess
SetHandleCount
GetStdHandle
GetFileType
MulDiv
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
WriteFile
LCMapStringA
LCMapStringW
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
CreateFileA
SetFilePointer
SetStdHandle
FlushFileBuffers
GetCPInfo
GetOEMCP
GetStringTypeA
GetStringTypeW
SetEndOfFile
ReadFile
GetStartupInfoA

user32

ShowWindow
CreateDialogParamA
DefWindowProcA
InvalidateRect
MoveWindow
DestroyWindow
wvsprintfA
LoadStringA
LoadStringW
GetWindowRect
GetDesktopWindow
GetWindowLongA
wsprintfA
MessageBoxA
SetWindowLongA
GetDlgItem
SendDlgItemMessageA
GetDlgItemInt
SetDlgItemTextA
CheckRadioButton
EnableWindow
CheckDlgButton
SetDlgItemInt
SendMessageA
IsRectEmpty

advapi32

RegEnumKeyExA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyA
RegSetValueA
RegCloseKey
RegDeleteKeyA

ole32

CoFreeUnusedLibraries
CoInitialize
StringFromGUID2
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize

winmm

timeGetTime

gdi32

CreateCompatibleDC
CreateBitmap
SelectObject
CreateFontA
SetTextColor
SetBkColor
DeleteDC
SetBkMode
BitBlt
ExtTextOutA
DeleteObject
GetPixel

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 228KB - Virtual size: 225KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WILK_DX_
Size: 4KB - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
vp8decoder.dll
.dll regsvr32 windows:5 windows x86 arch:x86

199b07b9d7ffa0b7b507692853b9bdfa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\-=D0wNL0ADS=-\dll\webmdshow\Release\vp8decoder.pdb

Imports

kernel32

CreateEventW
GetModuleFileNameW
QueryPerformanceCounter
QueryPerformanceFrequency
SetEvent
WaitForSingleObject
CloseHandle
ReleaseMutex
GetLastError
CreateMutexW
InterlockedDecrement
Sleep
InterlockedIncrement
GetProcessHeap
SetEnvironmentVariableA
CompareStringW
CompareStringA
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
SetStdHandle
SetFilePointer
WideCharToMultiByte
InterlockedExchange
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetCurrentThreadId
GetCommandLineA
HeapAlloc
HeapReAlloc
RtlUnwind
ExitThread
CreateThread
RaiseException
GetCPInfo
LCMapStringW
LCMapStringA
GetStringTypeW
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
WriteFile
GetStdHandle
GetModuleFileNameA
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
HeapSize
ExitProcess
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetConsoleCP
GetConsoleMode
GetModuleHandleA
GetACP
GetOEMCP
IsValidCodePage
GetStringTypeA
GetLocaleInfoA
LoadLibraryA
InitializeCriticalSectionAndSpinCount

user32

SetRectEmpty

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW

ole32

CoWaitForMultipleHandles
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
OleRun
StringFromGUID2

oleaut32

RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi

shlwapi

SHDeleteKeyW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 183KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b729b61eb1515fcf7b3e511e4e66258b

Code Sign

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:beCertificate

Extended Key Usages

Key Usages

6c:58:77:15:ee:87:07:2e:7e:b8:81:68:07:e4:bd:39Certificate

Extended Key Usages

Key Usages

db:49:47:94:d9:79:53:c1:7c:65:b3:55:10:06:fa:8a:5c:14:be:f5Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 409KB

.ndata Size: - Virtual size: 1.7MB

.rsrc Size: 119KB - Virtual size: 119KB

cbc66eb3222e3fcdbee2e18ba7195f5e

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 24KB

.CRT Size: 512B - Virtual size: 4B

.reloc Size: 1KB - Virtual size: 1KB

cbaa743e839b4c7508b43278250895e4

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

73:81:06:0e:d4:60:b9:9e:62:a9:23:47:bb:b8:4d:48Certificate

Extended Key Usages

Key Usages

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5cCertificate

Extended Key Usages

Key Usages

9e:f9:6c:bc:3d:8c:79:28:94:7e:1f:f6:ac:e0:a3:be:0e:73:85:92Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msimg32

user32

gdi32

advapi32

shell32

ole32

oleaut32

secur32

urlmon

wininet

psapi

ws2_32

47:8a:8e:fb:59:e1:d8:3f:0c:e1:42:d2:a2:87:07:be
Certificate

6c:58:77:15:ee:87:07:2e:7e:b8:81:68:07:e4:bd:39
Certificate

db:49:47:94:d9:79:53:c1:7c:65:b3:55:10:06:fa:8a:5c:14:be:f5
Signer

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 409KB

.ndata
Size: - Virtual size: 1.7MB

.rsrc
Size: 119KB - Virtual size: 119KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 24KB

.CRT
Size: 512B - Virtual size: 4B

.reloc
Size: 1KB - Virtual size: 1KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

73:81:06:0e:d4:60:b9:9e:62:a9:23:47:bb:b8:4d:48
Certificate

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

9e:f9:6c:bc:3d:8c:79:28:94:7e:1f:f6:ac:e0:a3:be:0e:73:85:92
Signer

.text
Size: 319KB - Virtual size: 318KB

.rdata
Size: 53KB - Virtual size: 53KB

.data
Size: 7KB - Virtual size: 19KB

.rsrc
Size: 32KB - Virtual size: 32KB

.reloc
Size: 19KB - Virtual size: 19KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 963B

.data
Size: 512B - Virtual size: 64B

.reloc
Size: 1024B - Virtual size: 588B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: - Virtual size: 48B

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 590B

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 304KB - Virtual size: 303KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 48KB - Virtual size: 454KB

.idata
Size: 4KB - Virtual size: 2KB

.reloc
Size: 16KB - Virtual size: 14KB