infected[.]zip

resource
unpack001/infected/QtCore4.dll
unpack001/infected/QtGui4.dll
unpack001/infected/QtNetwork4.dll
unpack001/infected/QtWebKit4.dll

infected.zip

.zip

infected/QtCore4.dll

.dll windows:5 windows x86 arch:x86

94edee571d3a6c3103264e81c1452c8a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

SetThreadPriority

TlsSetValue

ResumeThread

GetThreadPriority

TlsGetValue

WaitForMultipleObjects

CreateThread

DuplicateHandle

GetCurrentProcess

ResetEvent

GetLocalTime

GetSystemTime

GetLocaleInfoW

CompareStringW

GetUserDefaultLCID

GetProcAddress

QueryPerformanceFrequency

GetTickCount

GetDateFormatW

GetTimeFormatW

GetCurrencyFormatW

GetUserDefaultUILanguage

CreateFileW

ReleaseSemaphore

CreateSemaphoreW

CreatePipe

TerminateProcess

GetExitCodeProcess

SetFilePointer

WriteFile

GetStdHandle

ReadFile

PeekNamedPipe

CreateProcessW

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetFileType

SetFilePointerEx

SetEndOfFile

GetLogicalDrives

MapViewOfFile

CreateFileMappingW

UnmapViewOfFile

FindCloseChangeNotification

FindFirstChangeNotificationW

FindNextChangeNotification

GetOverlappedResult

SystemTimeToTzSpecificLocalTime

TerminateThread

FindClose

FindFirstFileW

GetFileInformationByHandle

SetErrorMode

CreateDirectoryW

RemoveDirectoryW

GetFileAttributesW

CopyFileW

MoveFileW

DeleteFileW

DeviceIoControl

GetFullPathNameW

GetTempPathW

GetCurrentDirectoryW

GetFileAttributesExW

SetCurrentDirectoryW

FindNextFileW

FindFirstFileExW

FreeLibrary

LoadLibraryExW

GetModuleFileNameW

LoadLibraryW

GetSystemDirectoryW

GetCurrentProcessId

GetCommandLineW

WaitForSingleObjectEx

GetModuleHandleW

GetStartupInfoW

InitializeCriticalSection

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

OutputDebugStringW

OpenFileMappingW

VirtualQuery

MultiByteToWideChar

WideCharToMultiByte

GetSystemTimeAsFileTime

DisableThreadLibraryCalls

IsProcessorFeaturePresent

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

InterlockedCompareExchange

InterlockedExchange

DecodePointer

EncodePointer

TlsAlloc

GetCurrentThread

Sleep

SwitchToThread

GetSystemInfo

GetCurrentThreadId

TlsFree

WaitForSingleObject

CreateEventW

SetEvent

CloseHandle

GetLastError

FormatMessageW

LocalFree

GetVersionExW

QueryPerformanceCounter

FileTimeToSystemTime

user32

PeekMessageW

DefWindowProcW

GetWindowLongW

SetWindowLongW

CreateWindowExW

RegisterClassW

UnregisterClassW

DestroyWindow

UnhookWindowsHookEx

SetWindowsHookExW

DispatchMessageW

TranslateMessage

MsgWaitForMultipleObjectsEx

CharNextExA

GetMessageW

PostMessageW

GetWindowThreadProcessId

PostThreadMessageW

GetQueueStatus

KillTimer

CallNextHookEx

SetTimer

EnumWindows

ole32

CoInitialize

CoUninitialize

CoCreateGuid

CoCreateInstance

advapi32

RegQueryValueExW

RegOpenKeyExW

RegCreateKeyExW

RegFlushKey

RegSetValueExW

RegEnumKeyExW

RegEnumValueW

RegQueryInfoKeyW

RegDeleteKeyW

RegDeleteValueW

FreeSid

CopySid

GetLengthSid

GetTokenInformation

OpenProcessToken

RegCloseKey

ws2_32

WSAAsyncSelect

msvcp100

?uncaught_exception@std@@YA_NXZ

?_Orphan_all@_Container_base0@std@@QAEXXZ

?_Xlength_error@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

msvcr100

__CppXcptFilter

_amsg_exit

_initterm_e

_initterm

_encoded_null

_malloc_crt

_except_handler4_common

_onexit

_lock

__dllonexit

_unlock

?terminate@@YAXXZ

_wgetenv

_waccess

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_crt_debugger_hook

__clean_type_info_names_internal

_lseek

_vsnprintf_s

_CIasin

??3@YAXPAX@Z

??_V@YAXPAX@Z

??0exception@std@@QAE@ABQBD@Z

?what@exception@std@@UBEPBDXZ

??1exception@std@@UAE@XZ

__CxxFrameHandler3

??2@YAPAXI@Z

_purecall

_CxxThrowException

??0exception@std@@QAE@ABV01@@Z

memcpy

memmove

??0exception@std@@QAE@XZ

??4exception@std@@QAEAAV01@ABV01@@Z

??0exception@std@@QAE@ABQBDH@Z

memset

_putenv_s

srand

rand

getenv_s

exit

fflush

fprintf

__iob_func

malloc

free

realloc

_endthreadex

_errno

_beginthreadex

strncpy_s

strncmp

strcpy_s

isspace

_mktime64

_localtime64_s

_gmtime64_s

_tzset

_CIsin

_CIcos

_CIpow

_CIsqrt

_open

_CIacos

_CIatan2

_get_tzname

isupper

isalpha

isdigit

_control87

_clearfp

ceil

floor

strchr

sprintf

strerror

memchr

_vsnprintf

calloc

_ftelli64

_lseeki64

_environ

_fseeki64

_close

fclose

_read

feof

fread

fgets

_write

fwrite

wcschr

_get_osfhandle

_fileno

_open_osfhandle

_wgetdcwd

_getdrive

_wchmod

Exports

??0?$QVector@VQPoint@@@@QAE@ABV0@@Z

??0?$QVector@VQPoint@@@@QAE@H@Z

??0?$QVector@VQPoint@@@@QAE@HABVQPoint@@@Z

??0?$QVector@VQPoint@@@@QAE@XZ

??0?$QVector@VQPointF@@@@QAE@ABV0@@Z

??0?$QVector@VQPointF@@@@QAE@H@Z

??0?$QVector@VQPointF@@@@QAE@HABVQPointF@@@Z

??0?$QVector@VQPointF@@@@QAE@XZ

??0?$QVector@VQXmlStreamAttribute@@@@QAE@ABV0@@Z

??0?$QVector@VQXmlStreamAttribute@@@@QAE@H@Z

??0?$QVector@VQXmlStreamAttribute@@@@QAE@HABVQXmlStreamAttribute@@@Z

??0?$QVector@VQXmlStreamAttribute@@@@QAE@XZ

??0BlockSizeManager@QtConcurrent@@QAE@ABV01@@Z

??0BlockSizeManager@QtConcurrent@@QAE@H@Z

??0ConverterState@QTextCodec@@QAE@V?$QFlags@W4ConversionFlag@QTextCodec@@@@@Z

??0Exception@QtConcurrent@@QAE@ABV01@@Z

??0Exception@QtConcurrent@@QAE@XZ

??0ExceptionStore@internal@QtConcurrent@@QAE@ABV012@@Z

??0ExceptionStore@internal@QtConcurrent@@QAE@XZ

??0QAbstractAnimation@@IAE@AAVQAbstractAnimationPrivate@@PAVQObject@@@Z

??0QAbstractAnimation@@QAE@PAVQObject@@@Z

??0QAbstractDynamicMetaObject@@QAE@ABU0@@Z

??0QAbstractDynamicMetaObject@@QAE@XZ

??0QAbstractEventDispatcher@@IAE@AAVQAbstractEventDispatcherPrivate@@PAVQObject@@@Z

??0QAbstractEventDispatcher@@QAE@PAVQObject@@@Z

??0QAbstractEventDispatcherPrivate@@QAE@ABV0@@Z

??0QAbstractEventDispatcherPrivate@@QAE@XZ

??0QAbstractFileEngine@@IAE@AAVQAbstractFileEnginePrivate@@@Z

??0QAbstractFileEngine@@IAE@XZ

??0QAbstractFileEngineHandler@@QAE@ABV0@@Z

??0QAbstractFileEngineHandler@@QAE@XZ

??0QAbstractFileEngineIterator@@QAE@V?$QFlags@W4Filter@QDir@@@@ABVQStringList@@@Z

??0QAbstractItemModel@@IAE@AAVQAbstractItemModelPrivate@@PAVQObject@@@Z

??0QAbstractItemModel@@QAE@PAVQObject@@@Z

??0QAbstractItemModelPrivate@@QAE@ABV0@@Z

??0QAbstractItemModelPrivate@@QAE@XZ

??0QAbstractListModel@@IAE@AAVQAbstractItemModelPrivate@@PAVQObject@@@Z

??0QAbstractListModel@@QAE@PAVQObject@@@Z

??0QAbstractState@@IAE@AAVQAbstractStatePrivate@@PAVQState@@@Z

??0QAbstractState@@IAE@PAVQState@@@Z

??0QAbstractTableModel@@IAE@AAVQAbstractItemModelPrivate@@PAVQObject@@@Z

??0QAbstractTableModel@@QAE@PAVQObject@@@Z

??0QAbstractTransition@@IAE@AAVQAbstractTransitionPrivate@@PAVQState@@@Z

??0QAbstractTransition@@QAE@PAVQState@@@Z

??0QAbstractTransitionPrivate@@QAE@ABV0@@Z

??0QAbstractTransitionPrivate@@QAE@XZ

??0QAnimationDriver@@IAE@AAVQAnimationDriverPrivate@@PAVQObject@@@Z

??0QAnimationDriver@@QAE@PAVQObject@@@Z

??0QAnimationDriverPrivate@@QAE@ABV0@@Z

??0QAnimationDriverPrivate@@QAE@XZ

??0QAnimationGroup@@IAE@AAVQAnimationGroupPrivate@@PAVQObject@@@Z

??0QAnimationGroup@@QAE@PAVQObject@@@Z

??0QAtomicInt@@QAE@ABV0@@Z

??0QAtomicInt@@QAE@H@Z

??0QBasicTimer@@QAE@XZ

??0QBitArray@@QAE@ABV0@@Z

??0QBitArray@@QAE@H_N@Z

??0QBitArray@@QAE@XZ

??0QBitRef@@AAE@AAVQBitArray@@H@Z

??0QBuffer@@QAE@PAVQByteArray@@PAVQObject@@@Z

??0QBuffer@@QAE@PAVQObject@@@Z

??0QByteArray@@AAE@PAUData@0@HH@Z

??0QByteArray@@QAE@ABV0@@Z

??0QByteArray@@QAE@H@Z

??0QByteArray@@QAE@HD@Z

??0QByteArray@@QAE@HW4Initialization@Qt@@@Z

??0QByteArray@@QAE@PBD@Z

??0QByteArray@@QAE@PBDH@Z

??0QByteArray@@QAE@XZ

??0QByteArrayMatcher@@QAE@ABV0@@Z

??0QByteArrayMatcher@@QAE@ABVQByteArray@@@Z

??0QByteArrayMatcher@@QAE@PBDH@Z

??0QByteArrayMatcher@@QAE@XZ

??0QByteRef@@AAE@AAVQByteArray@@H@Z

??0QChar@@QAE@D@Z

??0QChar@@QAE@E@Z

??0QChar@@QAE@EE@Z

??0QChar@@QAE@F@Z

??0QChar@@QAE@G@Z

??0QChar@@QAE@H@Z

??0QChar@@QAE@I@Z

??0QChar@@QAE@UQLatin1Char@@@Z

??0QChar@@QAE@W4SpecialCharacter@0@@Z

??0QChar@@QAE@XZ

??0QCharRef@@AAE@AAVQString@@H@Z

??0QChildEvent@@QAE@ABV0@@Z

??0QChildEvent@@QAE@W4Type@QEvent@@PAVQObject@@@Z

??0QCoreApplication@@IAE@AAVQCoreApplicationPrivate@@@Z

??0QCoreApplication@@QAE@AAHPAPAD@Z

??0QCoreApplication@@QAE@AAHPAPADH@Z

??0QCoreApplicationPrivate@@QAE@AAHPAPADI@Z

??0QCoreApplicationPrivate@@QAE@ABV0@@Z

??0QCryptographicHash@@QAE@W4Algorithm@0@@Z

??0QCustomEvent@@QAE@ABV0@@Z

??0QCustomEvent@@QAE@HPAX@Z

??0QDataStream@@QAE@ABVQByteArray@@@Z

??0QDataStream@@QAE@PAVQByteArray@@H@Z

??0QDataStream@@QAE@PAVQByteArray@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??0QDataStream@@QAE@PAVQIODevice@@@Z

??0QDataStream@@QAE@XZ

??0QDate@@QAE@HHH@Z

??0QDate@@QAE@XZ

??0QDateTime@@QAE@ABV0@@Z

??0QDateTime@@QAE@ABVQDate@@@Z

??0QDateTime@@QAE@ABVQDate@@ABVQTime@@W4TimeSpec@Qt@@@Z

??0QDateTime@@QAE@XZ

??0QDateTimeParser@@QAE@ABV0@@Z

??0QDateTimeParser@@QAE@W4Type@QVariant@@W4Context@0@@Z

??0QDebug@@QAE@ABV0@@Z

??0QDebug@@QAE@PAVQIODevice@@@Z

??0QDebug@@QAE@PAVQString@@@Z

??0QDebug@@QAE@W4QtMsgType@@@Z

??0QDir@@QAE@ABV0@@Z

??0QDir@@QAE@ABVQString@@0V?$QFlags@W4SortFlag@QDir@@@@V?$QFlags@W4Filter@QDir@@@@@Z

??0QDir@@QAE@ABVQString@@@Z

??0QDirIterator@@QAE@ABVQDir@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z

??0QDirIterator@@QAE@ABVQString@@ABVQStringList@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z

??0QDirIterator@@QAE@ABVQString@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z

??0QDirIterator@@QAE@ABVQString@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z

??0QDynamicPropertyChangeEvent@@QAE@ABV0@@Z

??0QDynamicPropertyChangeEvent@@QAE@ABVQByteArray@@@Z

??0QEasingCurve@@QAE@ABV0@@Z

??0QEasingCurve@@QAE@W4Type@0@@Z

??0QEvent@@QAE@ABV0@@Z

??0QEvent@@QAE@W4Type@0@@Z

??0QEventDispatcherWin32@@QAE@PAVQObject@@@Z

??0QEventLoop@@QAE@PAVQObject@@@Z

??0QEventTransition@@IAE@AAVQEventTransitionPrivate@@PAVQObject@@W4Type@QEvent@@PAVQState@@@Z

??0QEventTransition@@IAE@AAVQEventTransitionPrivate@@PAVQState@@@Z

??0QEventTransition@@QAE@PAVQObject@@W4Type@QEvent@@PAVQState@@@Z

??0QEventTransition@@QAE@PAVQState@@@Z

??0QEventTransitionPrivate@@QAE@ABV0@@Z

??0QEventTransitionPrivate@@QAE@XZ

??0QFSFileEngine@@IAE@AAVQFSFileEnginePrivate@@@Z

??0QFSFileEngine@@QAE@ABVQString@@@Z

??0QFSFileEngine@@QAE@XZ

??0QFactoryInterface@@QAE@ABU0@@Z

??0QFactoryInterface@@QAE@XZ

??0QFactoryLoader@@QAE@PBDABVQString@@W4CaseSensitivity@Qt@@@Z

??0QFile@@IAE@AAVQFilePrivate@@PAVQObject@@@Z

??0QFile@@QAE@ABVQString@@@Z

??0QFile@@QAE@ABVQString@@PAVQObject@@@Z

??0QFile@@QAE@PAVQObject@@@Z

??0QFile@@QAE@XZ

??0QFileInfo@@QAE@ABV0@@Z

??0QFileInfo@@QAE@ABVQDir@@ABVQString@@@Z

??0QFileInfo@@QAE@ABVQFile@@@Z

??0QFileInfo@@QAE@ABVQString@@@Z

??0QFileInfo@@QAE@PAVQFileInfoPrivate@@@Z

??0QFileInfo@@QAE@XZ

??0QFileSystemWatcher@@QAE@ABVQStringList@@PAVQObject@@@Z

??0QFileSystemWatcher@@QAE@PAVQObject@@@Z

??0QFinalState@@QAE@PAVQState@@@Z

??0QFlag@@QAE@H@Z

??0QFutureInterfaceBase@@QAE@ABV0@@Z

??0QFutureInterfaceBase@@QAE@W4State@0@@Z

??0QFutureWatcherBase@@QAE@PAVQObject@@@Z

??0QGenericArgument@@QAE@PBDPBX@Z

??0QGenericReturnArgument@@QAE@PBDPAX@Z

??0QHistoryState@@QAE@PAVQState@@@Z

??0QHistoryState@@QAE@W4HistoryType@0@PAVQState@@@Z

??0QIODevice@@IAE@AAVQIODevicePrivate@@PAVQObject@@@Z

??0QIODevice@@QAE@PAVQObject@@@Z

??0QIODevice@@QAE@XZ

??0QIODevicePrivate@@QAE@ABV0@@Z

??0QIODevicePrivate@@QAE@XZ

??0QIncompatibleFlag@@QAE@H@Z

??0QLatin1String@@QAE@PBD@Z

??0QLibrary@@QAE@ABVQString@@0PAVQObject@@@Z

??0QLibrary@@QAE@ABVQString@@HPAVQObject@@@Z

??0QLibrary@@QAE@ABVQString@@PAVQObject@@@Z

??0QLibrary@@QAE@PAVQObject@@@Z

??0QLibraryInfo@@AAE@XZ

??0QLine@@QAE@ABVQPoint@@0@Z

??0QLine@@QAE@HHHH@Z

??0QLine@@QAE@XZ

??0QLineF@@QAE@ABVQLine@@@Z

??0QLineF@@QAE@ABVQPointF@@0@Z

??0QLineF@@QAE@NNNN@Z

??0QLineF@@QAE@XZ

??0QLocale@@QAE@ABV0@@Z

??0QLocale@@QAE@ABVQString@@@Z

??0QLocale@@QAE@W4Language@0@W4Country@0@@Z

??0QLocale@@QAE@W4Language@0@W4Script@0@W4Country@0@@Z

??0QLocale@@QAE@XZ

??0QMetaCallEvent@@QAE@ABV0@@Z

??0QMetaCallEvent@@QAE@GGP6AXPAVQObject@@W4Call@QMetaObject@@HPAPAX@ZPBV1@HHPAH2PAVQSemaphore@@@Z

??0QMetaClassInfo@@QAE@XZ

??0QMetaEnum@@QAE@XZ

??0QMetaMethod@@QAE@XZ

??0QMetaProperty@@QAE@XZ

??0QMimeData@@QAE@XZ

??0QModelIndex@@AAE@HHPAXPBVQAbstractItemModel@@@Z

??0QModelIndex@@QAE@ABV0@@Z

??0QModelIndex@@QAE@XZ

??0QMutex@@QAE@W4RecursionMode@0@@Z

??0QMutex@@QAE@_N@Z

??0QMutexLocker@@QAE@PAVQMutex@@@Z

??0QMutexPool@@QAE@ABV0@@Z

??0QMutexPool@@QAE@W4RecursionMode@QMutex@@H@Z

??0QNonContiguousByteDevice@@IAE@XZ

??0QObject@@IAE@AAVQObjectPrivate@@PAV0@@Z

??0QObject@@QAE@PAV0@@Z

??0QObject@@QAE@PAV0@PBD@Z

??0QObjectCleanupHandler@@QAE@XZ

??0QObjectPrivate@@QAE@ABV0@@Z

??0QObjectPrivate@@QAE@H@Z

??0QObjectUserData@@QAE@ABV0@@Z

??0QObjectUserData@@QAE@XZ

??0QParallelAnimationGroup@@IAE@AAVQParallelAnimationGroupPrivate@@PAVQObject@@@Z

??0QParallelAnimationGroup@@QAE@PAVQObject@@@Z

??0QPauseAnimation@@QAE@HPAVQObject@@@Z

??0QPauseAnimation@@QAE@PAVQObject@@@Z

??0QPersistentModelIndex@@QAE@ABV0@@Z

??0QPersistentModelIndex@@QAE@ABVQModelIndex@@@Z

??0QPersistentModelIndex@@QAE@XZ

??0QPluginLoader@@QAE@ABVQString@@PAVQObject@@@Z

??0QPluginLoader@@QAE@PAVQObject@@@Z

??0QPoint@@QAE@HH@Z

??0QPoint@@QAE@XZ

??0QPointF@@QAE@ABVQPoint@@@Z

??0QPointF@@QAE@NN@Z

??0QPointF@@QAE@XZ

??0QProcess@@QAE@PAVQObject@@@Z

??0QProcessEnvironment@@QAE@ABV0@@Z

??0QProcessEnvironment@@QAE@XZ

??0QPropertyAnimation@@QAE@PAVQObject@@@Z

??0QPropertyAnimation@@QAE@PAVQObject@@ABVQByteArray@@0@Z

??0QReadLocker@@QAE@PAVQReadWriteLock@@@Z

??0QReadWriteLock@@QAE@W4RecursionMode@0@@Z

??0QReadWriteLock@@QAE@XZ

??0QRect@@QAE@ABVQPoint@@0@Z

??0QRect@@QAE@ABVQPoint@@ABVQSize@@@Z

??0QRect@@QAE@HHHH@Z

??0QRect@@QAE@XZ

??0QRectF@@QAE@ABVQPointF@@0@Z

??0QRectF@@QAE@ABVQPointF@@ABVQSizeF@@@Z

??0QRectF@@QAE@ABVQRect@@@Z

??0QRectF@@QAE@NNNN@Z

??0QRectF@@QAE@XZ

??0QRegExp@@QAE@ABV0@@Z

??0QRegExp@@QAE@ABVQString@@W4CaseSensitivity@Qt@@W4PatternSyntax@0@@Z

??0QRegExp@@QAE@ABVQString@@_N1@Z

??0QRegExp@@QAE@XZ

??0QResource@@QAE@ABVQString@@ABVQLocale@@@Z

??0QSemaphore@@QAE@H@Z

??0QSequentialAnimationGroup@@IAE@AAVQSequentialAnimationGroupPrivate@@PAVQObject@@@Z

??0QSequentialAnimationGroup@@QAE@PAVQObject@@@Z

??0QSettings@@QAE@ABVQString@@0PAVQObject@@@Z

??0QSettings@@QAE@ABVQString@@W4Format@0@PAVQObject@@@Z

??0QSettings@@QAE@PAVQObject@@@Z

??0QSettings@@QAE@W4Format@0@W4Scope@0@ABVQString@@2PAVQObject@@@Z

??0QSettings@@QAE@W4Scope@0@ABVQString@@1PAVQObject@@@Z

??0QSharedData@@QAE@ABV0@@Z

??0QSharedData@@QAE@XZ

??0QSharedMemory@@QAE@ABVQString@@PAVQObject@@@Z

??0QSharedMemory@@QAE@PAVQObject@@@Z

??0QSignalMapper@@QAE@PAVQObject@@@Z

??0QSignalMapper@@QAE@PAVQObject@@PBD@Z

??0QSignalTransition@@QAE@PAVQObject@@PBDPAVQState@@@Z

??0QSignalTransition@@QAE@PAVQState@@@Z

??0QSize@@QAE@HH@Z

??0QSize@@QAE@XZ

??0QSizeF@@QAE@ABVQSize@@@Z

??0QSizeF@@QAE@NN@Z

??0QSizeF@@QAE@XZ

??0QSocketNotifier@@QAE@HW4Type@0@PAVQObject@@@Z

??0QSocketNotifier@@QAE@HW4Type@0@PAVQObject@@PBD@Z

??0QState@@IAE@AAVQStatePrivate@@PAV0@@Z

??0QState@@QAE@PAV0@@Z

??0QState@@QAE@W4ChildMode@0@PAV0@@Z

??0QStateMachine@@IAE@AAVQStateMachinePrivate@@PAVQObject@@@Z

??0QStateMachine@@QAE@PAVQObject@@@Z

??0QStateMachinePrivate@@QAE@XZ

??0QString@@AAE@PAUData@0@H@Z

??0QString@@QAE@ABUNull@0@@Z

??0QString@@QAE@ABV0@@Z

??0QString@@QAE@ABVQByteArray@@@Z

??0QString@@QAE@ABVQLatin1String@@@Z

??0QString@@QAE@HVQChar@@@Z

??0QString@@QAE@HW4Initialization@Qt@@@Z

??0QString@@QAE@PBD@Z

??0QString@@QAE@PBVQChar@@@Z

??0QString@@QAE@PBVQChar@@H@Z

??0QString@@QAE@VQChar@@@Z

??0QString@@QAE@XZ

??0QStringMatcher@@QAE@ABV0@@Z

??0QStringMatcher@@QAE@ABVQString@@W4CaseSensitivity@Qt@@@Z

??0QStringMatcher@@QAE@PBVQChar@@HW4CaseSensitivity@Qt@@@Z

??0QStringMatcher@@QAE@XZ

??0QStringRef@@QAE@ABV0@@Z

??0QStringRef@@QAE@PBVQString@@@Z

??0QStringRef@@QAE@PBVQString@@HH@Z

??0QStringRef@@QAE@XZ

??0QSystemError@@QAE@HW4ErrorScope@0@@Z

??0QSystemError@@QAE@XZ

??0QSystemLocale@@AAE@_N@Z

??0QSystemLocale@@QAE@ABV0@@Z

??0QSystemLocale@@QAE@XZ

??0QSystemSemaphore@@QAE@ABVQString@@HW4AccessMode@0@@Z

??0QTemporaryFile@@QAE@ABVQString@@@Z

??0QTemporaryFile@@QAE@ABVQString@@PAVQObject@@@Z

??0QTemporaryFile@@QAE@PAVQObject@@@Z

??0QTemporaryFile@@QAE@XZ

??0QTextBoundaryFinder@@QAE@ABV0@@Z

??0QTextBoundaryFinder@@QAE@W4BoundaryType@0@ABVQString@@@Z

??0QTextBoundaryFinder@@QAE@W4BoundaryType@0@PBVQChar@@HPAEH@Z

??0QTextBoundaryFinder@@QAE@XZ

??0QTextCodec@@IAE@XZ

??0QTextCodecFactoryInterface@@QAE@ABU0@@Z

??0QTextCodecFactoryInterface@@QAE@XZ

??0QTextCodecPlugin@@QAE@PAVQObject@@@Z

??0QTextDecoder@@QAE@PBVQTextCodec@@@Z

??0QTextDecoder@@QAE@PBVQTextCodec@@V?$QFlags@W4ConversionFlag@QTextCodec@@@@@Z

??0QTextEncoder@@QAE@PBVQTextCodec@@@Z

??0QTextEncoder@@QAE@PBVQTextCodec@@V?$QFlags@W4ConversionFlag@QTextCodec@@@@@Z

??0QTextIStream@@QAE@PAU_iobuf@@@Z

??0QTextIStream@@QAE@PAVQByteArray@@@Z

??0QTextIStream@@QAE@PBVQString@@@Z

??0QTextOStream@@QAE@PAU_iobuf@@@Z

??0QTextOStream@@QAE@PAVQByteArray@@@Z

??0QTextOStream@@QAE@PAVQString@@@Z

??0QTextStream@@QAE@ABVQByteArray@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??0QTextStream@@QAE@PAU_iobuf@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??0QTextStream@@QAE@PAVQByteArray@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??0QTextStream@@QAE@PAVQIODevice@@@Z

??0QTextStream@@QAE@PAVQString@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??0QTextStream@@QAE@XZ

??0QTextStreamManipulator@@QAE@P8QTextStream@@AEXH@ZH@Z

??0QTextStreamManipulator@@QAE@P8QTextStream@@AEXVQChar@@@Z0@Z

??0QThread@@IAE@AAVQThreadPrivate@@PAVQObject@@@Z

??0QThread@@QAE@PAVQObject@@@Z

??0QThreadPool@@QAE@PAVQObject@@@Z

??0QThreadStorageData@@QAE@P6AXPAX@Z@Z

??0QTime@@QAE@HHHH@Z

??0QTime@@QAE@XZ

??0QTimeLine@@QAE@HPAVQObject@@@Z

??0QTimer@@QAE@PAVQObject@@@Z

??0QTimer@@QAE@PAVQObject@@PBD@Z

??0QTimerEvent@@QAE@ABV0@@Z

??0QTimerEvent@@QAE@H@Z

??0QTranslator@@QAE@PAVQObject@@@Z

??0QTranslator@@QAE@PAVQObject@@PBD@Z

??0QUnifiedTimer@@AAE@XZ

??0QUrl@@QAE@ABV0@@Z

??0QUrl@@QAE@ABVQString@@@Z

??0QUrl@@QAE@ABVQString@@W4ParsingMode@0@@Z

??0QUrl@@QAE@XZ

??0QUuid@@QAE@ABU_GUID@@@Z

??0QUuid@@QAE@ABVQByteArray@@@Z

??0QUuid@@QAE@ABVQString@@@Z

??0QUuid@@QAE@IGGEEEEEEEE@Z

??0QUuid@@QAE@PBD@Z

??0QUuid@@QAE@XZ

??0QVariant@@AAE@PAX@Z

??0QVariant@@QAE@AAVQDataStream@@@Z

??0QVariant@@QAE@ABV0@@Z

??0QVariant@@QAE@ABV?$QHash@VQString@@VQVariant@@@@@Z

??0QVariant@@QAE@ABV?$QList@VQVariant@@@@@Z

??0QVariant@@QAE@ABV?$QMap@VQString@@VQVariant@@@@@Z

??0QVariant@@QAE@ABVQBitArray@@@Z

??0QVariant@@QAE@ABVQByteArray@@@Z

??0QVariant@@QAE@ABVQChar@@@Z

??0QVariant@@QAE@ABVQDate@@@Z

??0QVariant@@QAE@ABVQDateTime@@@Z

??0QVariant@@QAE@ABVQEasingCurve@@@Z

??0QVariant@@QAE@ABVQLatin1String@@@Z

??0QVariant@@QAE@ABVQLine@@@Z

??0QVariant@@QAE@ABVQLineF@@@Z

??0QVariant@@QAE@ABVQLocale@@@Z

??0QVariant@@QAE@ABVQPoint@@@Z

??0QVariant@@QAE@ABVQPointF@@@Z

??0QVariant@@QAE@ABVQRect@@@Z

??0QVariant@@QAE@ABVQRectF@@@Z

??0QVariant@@QAE@ABVQRegExp@@@Z

??0QVariant@@QAE@ABVQSize@@@Z

??0QVariant@@QAE@ABVQSizeF@@@Z

??0QVariant@@QAE@ABVQString@@@Z

??0QVariant@@QAE@ABVQStringList@@@Z

??0QVariant@@QAE@ABVQTime@@@Z

??0QVariant@@QAE@ABVQUrl@@@Z

??0QVariant@@QAE@H@Z

??0QVariant@@QAE@HPBX@Z

??0QVariant@@QAE@HPBXI@Z

??0QVariant@@QAE@I@Z

??0QVariant@@QAE@M@Z

??0QVariant@@QAE@N@Z

??0QVariant@@QAE@PBD@Z

??0QVariant@@QAE@W4GlobalColor@Qt@@@Z

??0QVariant@@QAE@W4Type@0@@Z

??0QVariant@@QAE@XZ

??0QVariant@@QAE@_J@Z

??0QVariant@@QAE@_K@Z

??0QVariant@@QAE@_N@Z

??0QVariant@@QAE@_NH@Z

??0QVariantAnimation@@IAE@AAVQVariantAnimationPrivate@@PAVQObject@@@Z

??0QVariantAnimation@@QAE@PAVQObject@@@Z

??0QWaitCondition@@QAE@XZ

??0QWinEventNotifier@@QAE@PAVQObject@@@Z

??0QWinEventNotifier@@QAE@PAXPAVQObject@@@Z

??0QWindowsPipeWriter@@QAE@PAXPAVQObject@@@Z

??0QWriteLocker@@QAE@PAVQReadWriteLock@@@Z

??0QXmlStreamAttribute@@QAE@ABV0@@Z

??0QXmlStreamAttribute@@QAE@ABVQString@@00@Z

??0QXmlStreamAttribute@@QAE@ABVQString@@0@Z

??0QXmlStreamAttribute@@QAE@XZ

??0QXmlStreamAttributes@@QAE@ABV0@@Z

??0QXmlStreamAttributes@@QAE@XZ

??0QXmlStreamEntityDeclaration@@QAE@ABV0@@Z

??0QXmlStreamEntityDeclaration@@QAE@XZ

??0QXmlStreamEntityResolver@@QAE@ABV0@@Z

??0QXmlStreamEntityResolver@@QAE@XZ

??0QXmlStreamNamespaceDeclaration@@QAE@ABV0@@Z

??0QXmlStreamNamespaceDeclaration@@QAE@ABVQString@@0@Z

??0QXmlStreamNamespaceDeclaration@@QAE@XZ

??0QXmlStreamNotationDeclaration@@QAE@ABV0@@Z

??0QXmlStreamNotationDeclaration@@QAE@XZ

??0QXmlStreamReader@@QAE@ABVQByteArray@@@Z

??0QXmlStreamReader@@QAE@ABVQString@@@Z

??0QXmlStreamReader@@QAE@PAVQIODevice@@@Z

??0QXmlStreamReader@@QAE@PBD@Z

??0QXmlStreamReader@@QAE@XZ

??0QXmlStreamStringRef@@QAE@ABV0@@Z

??0QXmlStreamStringRef@@QAE@ABVQString@@@Z

??0QXmlStreamStringRef@@QAE@ABVQStringRef@@@Z

??0QXmlStreamStringRef@@QAE@XZ

??0QXmlStreamWriter@@QAE@PAVQByteArray@@@Z

??0QXmlStreamWriter@@QAE@PAVQIODevice@@@Z

??0QXmlStreamWriter@@QAE@PAVQString@@@Z

??0QXmlStreamWriter@@QAE@XZ

??0ResultIteratorBase@QtConcurrent@@QAE@Vconst_iterator@?$QMap@HVResultItem@QtConcurrent@@@@H@Z

??0ResultIteratorBase@QtConcurrent@@QAE@XZ

??0ResultStoreBase@QtConcurrent@@QAE@ABV01@@Z

??0ResultStoreBase@QtConcurrent@@QAE@XZ

??0SignalEvent@QStateMachine@@QAE@ABV01@@Z

??0SignalEvent@QStateMachine@@QAE@PAVQObject@@HABV?$QList@VQVariant@@@@@Z

??0ThreadEngineBase@QtConcurrent@@QAE@XZ

??0UnhandledException@QtConcurrent@@QAE@ABV01@@Z

??0UnhandledException@QtConcurrent@@QAE@XZ

??0WrappedEvent@QStateMachine@@QAE@ABV01@@Z

??0WrappedEvent@QStateMachine@@QAE@PAVQObject@@PAVQEvent@@@Z

??1?$QVector@VQPoint@@@@QAE@XZ

??1?$QVector@VQPointF@@@@QAE@XZ

??1?$QVector@VQXmlStreamAttribute@@@@QAE@XZ

??1BlockSizeManager@QtConcurrent@@QAE@XZ

??1ConverterState@QTextCodec@@QAE@XZ

??1Exception@QtConcurrent@@UAE@XZ

??1ExceptionStore@internal@QtConcurrent@@QAE@XZ

??1QAbstractAnimation@@UAE@XZ

??1QAbstractDynamicMetaObject@@UAE@XZ

??1QAbstractEventDispatcher@@UAE@XZ

??1QAbstractEventDispatcherPrivate@@UAE@XZ

??1QAbstractFileEngine@@UAE@XZ

??1QAbstractFileEngineHandler@@UAE@XZ

??1QAbstractFileEngineIterator@@UAE@XZ

??1QAbstractItemModel@@UAE@XZ

??1QAbstractItemModelPrivate@@UAE@XZ

??1QAbstractListModel@@UAE@XZ

??1QAbstractState@@UAE@XZ

??1QAbstractTableModel@@UAE@XZ

??1QAbstractTransition@@UAE@XZ

??1QAbstractTransitionPrivate@@UAE@XZ

??1QAnimationDriver@@UAE@XZ

??1QAnimationDriverPrivate@@UAE@XZ

??1QAnimationGroup@@UAE@XZ

??1QBasicTimer@@QAE@XZ

??1QBitArray@@QAE@XZ

??1QBuffer@@UAE@XZ

??1QByteArray@@QAE@XZ

??1QByteArrayMatcher@@QAE@XZ

??1QChildEvent@@UAE@XZ

??1QCoreApplication@@UAE@XZ

??1QCoreApplicationPrivate@@UAE@XZ

??1QCryptographicHash@@QAE@XZ

??1QCustomEvent@@UAE@XZ

??1QDataStream@@UAE@XZ

??1QDateTime@@QAE@XZ

??1QDateTimeParser@@UAE@XZ

??1QDebug@@QAE@XZ

??1QDir@@QAE@XZ

??1QDirIterator@@UAE@XZ

??1QDynamicPropertyChangeEvent@@UAE@XZ

??1QEasingCurve@@QAE@XZ

??1QEvent@@UAE@XZ

??1QEventDispatcherWin32@@UAE@XZ

??1QEventLoop@@UAE@XZ

??1QEventTransition@@UAE@XZ

??1QEventTransitionPrivate@@UAE@XZ

??1QFSFileEngine@@UAE@XZ

??1QFactoryInterface@@UAE@XZ

??1QFactoryLoader@@UAE@XZ

??1QFile@@UAE@XZ

??1QFileInfo@@QAE@XZ

??1QFileSystemWatcher@@UAE@XZ

??1QFinalState@@UAE@XZ

??1QFutureInterfaceBase@@UAE@XZ

??1QFutureWatcherBase@@UAE@XZ

??1QHistoryState@@UAE@XZ

??1QIODevice@@UAE@XZ

??1QIODevicePrivate@@UAE@XZ

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 1009KB - Virtual size: 1009KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/QtGui4.dll

.dll windows:5 windows x86 arch:x86

665a7203ee328c8774e946b947bd499e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

gdi32

DeleteDC

SelectObject

GdiFlush

CreateDIBSection

CreateCompatibleDC

GetDIBits

CreateBitmap

BitBlt

CreateCompatibleBitmap

GetRegionData

CreateRectRgn

CreateEllipticRgn

GetNearestPaletteIndex

GetPaletteEntries

CreatePalette

ResetDCW

ExtTextOutW

SetWorldTransform

SetGraphicsMode

SetBkMode

SetTextAlign

EndDoc

EndPage

AbortDoc

StartPage

GetBkMode

SetTextColor

CreatePen

GetDeviceCaps

GetTextFaceW

RestoreDC

StretchBlt

SaveDC

CreateDCW

SetPolyFillMode

EndPath

MoveToEx

CloseFigure

LineTo

PolyBezierTo

BeginPath

FillPath

StrokePath

ExtCreatePen

StartDocW

SelectClipPath

SelectClipRgn

GetFontData

CreateFontIndirectW

GetTextMetricsW

EnumFontFamiliesExW

GetOutlineTextMetricsW

GetGlyphOutlineW

GetTextExtentPoint32W

GetCharABCWidthsFloatW

GetCharABCWidthsI

GetCharABCWidthsW

CombineRgn

OffsetRgn

PtInRegion

SelectPalette

DeleteObject

RealizePalette

GetStockObject

CreateSolidBrush

GetObjectW

comdlg32

PageSetupDlgW

GetSaveFileNameW

GetOpenFileNameW

PrintDlgExW

oleaut32

VariantInit

SysAllocStringLen

SysFreeString

SysStringLen

SysAllocString

imm32

ImmGetCompositionStringW

ImmSetCompositionFontW

ImmGetDefaultIMEWnd

ImmGetContext

ImmReleaseContext

ImmNotifyIME

ImmAssociateContext

ImmSetCandidateWindow

ImmSetCompositionWindow

winmm

PlaySoundW

winspool.drv

ClosePrinter

OpenPrinterW

GetPrinterW

DeviceCapabilitiesW

EnumPrintersW

EnumFormsW

ole32

OleIsCurrentClipboard

OleFlushClipboard

OleSetClipboard

ReleaseStgMedium

OleUninitialize

OleInitialize

CoCreateGuid

StringFromGUID2

DoDragDrop

CoTaskMemFree

RegisterDragDrop

CoLockObjectExternal

RevokeDragDrop

CoCreateInstance

CoGetMalloc

CoInitialize

OleGetClipboard

user32

FindWindowW

FindWindowExW

GetWindowThreadProcessId

MapWindowPoints

DestroyCaret

SetCaretPos

CreateCaret

HideCaret

GetKeyboardLayoutList

RegisterWindowMessageW

LoadIconW

GetIconInfo

DrawIconEx

GetMenu

GetKeyboardState

SetMenuItemInfoW

TrackPopupMenuEx

MapVirtualKeyW

ToAscii

ToUnicode

GetKeyboardLayout

GetDesktopWindow

CreateWindowExW

GetSystemMenu

EnableMenuItem

SetParent

ValidateRgn

GetClientRect

GetWindowPlacement

SetWindowPlacement

GetWindowRect

IsWindowVisible

IsZoomed

MoveWindow

ShowWindow

DestroyWindow

SetWindowsHookExW

SetWindowTextW

AdjustWindowRectEx

SetWindowRgn

ScrollWindowEx

UpdateWindow

SetForegroundWindow

UnhookWindowsHookEx

DestroyIcon

CallNextHookEx

GetClipboardFormatNameW

GetAsyncKeyState

RegisterClipboardFormatW

CreateCursor

CreateIconIndirect

SetCursorPos

DestroyCursor

SetClipboardViewer

ChangeClipboardChain

GetClassInfoW

LoadImageW

GetSysColorBrush

RegisterClassExW

GetCursorPos

GetWindowRgn

UnregisterClassW

GetSystemMetrics

SendMessageW

ClipCursor

IsIconic

GetUpdateRect

InvalidateRect

InvalidateRgn

BeginPaint

EndPaint

ClientToScreen

ScreenToClient

SetWindowPos

GetSysColor

SetCapture

GetDoubleClickTime

SetDoubleClickTime

SetCaretBlinkTime

PeekMessageW

PostMessageW

GetKeyState

ReleaseCapture

SetCursor

GetCaretBlinkTime

FlashWindowEx

MessageBeep

WindowFromPoint

GetParent

ReleaseDC

GetDC

GetWindowLongW

SetWindowLongW

GetActiveWindow

GetFocus

SetFocus

SystemParametersInfoW

IsChild

DefWindowProcW

advapi32

RegCloseKey

RegOpenKeyExW

RegQueryValueExW

shell32

Shell_NotifyIconW

ShellExecuteW

SHGetFileInfoW

qtcore4

?x@QPoint@@QBEHXZ

?y@QPointF@@QBENXZ

?x@QPointF@@QBENXZ

??0QPointF@@QAE@NN@Z

??0QPoint@@QAE@HH@Z

??1QVariant@@QAE@XZ

??0QVariant@@QAE@ABV0@@Z

?registerInterpolator@QVariantAnimation@@CAXP6A?AVQVariant@@PBX0N@ZH@Z

?tr@QMetaObject@@QBE?AVQString@@PBD0@Z

?trUtf8@QMetaObject@@QBE?AVQString@@PBD0@Z

?tr@QMetaObject@@QBE?AVQString@@PBD0H@Z

?trUtf8@QMetaObject@@QBE?AVQString@@PBD0H@Z

?connect@QObject@@SA_NPBV1@PBD01W4ConnectionType@Qt@@@Z

?disconnect@QObject@@SA_NPBV1@PBD01@Z

?height@QRect@@QBEHXZ

??0QRectF@@QAE@NNNN@Z

??1QObject@@UAE@XZ

??0QLineF@@QAE@NNNN@Z

?width@QRectF@@QBENXZ

?height@QRectF@@QBENXZ

?unicode@QChar@@QAEAAGXZ

??1QString@@QAE@XZ

??0QString@@QAE@XZ

??0QRect@@QAE@HHHH@Z

??0QSize@@QAE@XZ

??4QString@@QAEAAV0@ABV0@@Z

??1QModelIndex@@QAE@XZ

??4QVariant@@QAEAAV0@ABV0@@Z

??1QObjectPrivate@@UAE@XZ

??0QRectF@@QAE@XZ

??0QObjectPrivate@@QAE@H@Z

??0QObjectPrivate@@QAE@ABV0@@Z

??4QObjectPrivate@@QAEAAV0@ABV0@@Z

??0QSizeF@@QAE@NN@Z

?width@QSizeF@@QBENXZ

??0QSizeF@@QAE@XZ

?height@QSizeF@@QBENXZ

??0QRectF@@QAE@ABVQPointF@@ABVQSizeF@@@Z

??0QPointF@@QAE@XZ

??0QPoint@@QAE@XZ

?toAlignedRect@QRectF@@QBE?AVQRect@@XZ

??0QRectF@@QAE@ABVQRect@@@Z

??1QEvent@@UAE@XZ

?sendEvent@QCoreApplication@@SA_NPAVQObject@@PAVQEvent@@@Z

??0QEvent@@QAE@W4Type@0@@Z

?instance@QCoreApplication@@SAPAV1@XZ

?translate@QRect@@QAEXABVQPoint@@@Z

?topLeft@QRect@@QBE?AVQPoint@@XZ

?sendPostedEvents@QCoreApplication@@SAXPAVQObject@@H@Z

??1?$QVector@VQPoint@@@@QAE@XZ

??1?$QVector@VQPointF@@@@QAE@XZ

?isWidgetType@QObject@@QBE_NXZ

?width@QRect@@QBEHXZ

?parent@QObject@@QBEPAV1@XZ

??0QRect@@QAE@XZ

?trimmed@QString@@QBE?AV1@XZ

?remove@QString@@QAEAAV1@HH@Z

?at@QString@@QBE?BVQChar@@H@Z

??0QChar@@QAE@UQLatin1Char@@@Z

?size@QString@@QBEHXZ

?remove@QString@@QAEAAV1@ABV1@W4CaseSensitivity@Qt@@@Z

?fromLatin1@QString@@SA?AV1@PBDH@Z

?qt_metacast@QObject@@UAEPAXPBD@Z

?activate@QMetaObject@@SAXPAVQObject@@PBU1@HPAPAX@Z

?size@QListData@@QBEHXZ

?ref@QBasicAtomicInt@@QAE_NXZ

?shared_null@QListData@@2UData@1@A

?isEmpty@QListData@@QBE_NXZ

?addGuard@QMetaObject@@SAXPAPAVQObject@@@Z

?removeGuard@QMetaObject@@SAXPAPAVQObject@@@Z

?changeGuard@QMetaObject@@SAXPAPAVQObject@@PAV2@@Z

?shared_null@QMapData@@2U1@A

?free@QVectorData@@SAXPAU1@H@Z

?x@QRect@@QBEHXZ

?y@QRect@@QBEHXZ

?width@QSize@@QBEHXZ

?height@QSize@@QBEHXZ

??4QLocale@@QAEAAV0@ABV0@@Z

?contains@QRect@@QBE_NABVQPoint@@_N@Z

?adjusted@QRect@@QBE?AV1@HHHH@Z

?isEmpty@QRectF@@QBE_NXZ

?at@QListData@@QBEPAPAXH@Z

?begin@QListData@@QBEPAPAXXZ

?end@QListData@@QBEPAPAXXZ

?continueFreeData@QMapData@@QAEXH@Z

?qFree@@YAXPAX@Z

?node_create@QMapData@@QAEPAUNode@1@QAPAU21@HH@Z

??0QLocale@@QAE@XZ

??0QVariant@@QAE@XZ

?qWarning@@YAXPBDZZ

?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z

?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z

?childEvent@QObject@@MAEXPAVQChildEvent@@@Z

?customEvent@QObject@@MAEXPAVQEvent@@@Z

?connectNotify@QObject@@MAEXPBD@Z

?disconnectNotify@QObject@@MAEXPBD@Z

??8QString@@QBE_NABV0@@Z

?replace@QString@@QAEAAV1@VQChar@@ABVQLatin1String@@W4CaseSensitivity@Qt@@@Z

??0QLatin1String@@QAE@PBD@Z

?isEmpty@QString@@QBE_NXZ

??0QString@@QAE@ABV0@@Z

?testAttribute@QCoreApplication@@SA_NW4ApplicationAttribute@Qt@@@Z

?deref@QBasicAtomicInt@@QAE_NXZ

?createData@QMapData@@SAPAU1@H@Z

?cast@QMetaObject@@QBEPAVQObject@@PAV2@@Z

?detach@QListData@@QAEPAUData@1@H@Z

?detach_grow@QListData@@QAEPAUData@1@PAHH@Z

?erase@QListData@@QAEPAPAXPAPAX@Z

??0QSize@@QAE@HH@Z

?toRect@QRectF@@QBE?AVQRect@@XZ

??0QObject@@IAE@AAVQObjectPrivate@@PAV0@@Z

?setObjectName@QObject@@QAEXABVQString@@@Z

?fromAscii@QString@@SA?AV1@PBDH@Z

?event@QObject@@UAE_NPAVQEvent@@@Z

??1QByteArray@@QAE@XZ

?constData@QByteArray@@QBEPBDXZ

?toLatin1@QString@@QBE?AVQByteArray@@XZ

?type@QEvent@@QBE?AW4Type@1@XZ

??9QBasicAtomicInt@@QBE_NH@Z

?append@QListData@@QAEPAPAXXZ

?remove@QListData@@QAEXH@Z

?append2@QListData@@QAEPAPAXABU1@@Z

??0QLocale@@QAE@ABV0@@Z

??4QString@@QAEAAV0@$$QAV0@@Z

?qt_metacall@QObject@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?staticMetaObject@QObject@@2UQMetaObject@@B

?sender@QObject@@IBEPAV1@XZ

??0QEvent@@QAE@ABV0@@Z

??4QEvent@@QAEAAV0@ABV0@@Z

??0QAtomicInt@@QAE@ABV0@@Z

??4QAtomicInt@@QAEAAV0@ABV0@@Z

?size@QByteArray@@QBEHXZ

?isEmpty@QByteArray@@QBE_NXZ

?qstrcmp@@YAHABVQByteArray@@PBD@Z

?handler@QVariant@@1PBUHandler@1@B

??_7QFactoryInterface@@6B@

??1QMutex@@QAE@XZ

??8QString@@QBE_NABVQLatin1String@@@Z

?exec@QCoreApplication@@SAHXZ

?setParent@QObject@@QAEXPAV1@@Z

?sendSpontaneousEvent@QCoreApplication@@CA_NPAVQObject@@PAVQEvent@@@Z

??0QLocale@@QAE@W4Language@0@W4Country@0@@Z

?checkInstance@QCoreApplicationPrivate@@SA_NPBD@Z

?qt_metacast@QCoreApplication@@UAEPAXPBD@Z

?shared_null@QHashData@@2U1@A

?shared_null@QVectorData@@2U1@A

?nextNode@QHashData@@SAPAUNode@1@PAU21@@Z

??8QBasicAtomicInt@@QBE_NH@Z

?qRealloc@@YAPAXPAXI@Z

?getAndRef@ExternalRefCountData@QtSharedPointer@@SAPAU12@PBVQObject@@@Z

??0QByteArray@@QAE@ABV0@@Z

?qBadAlloc@@YAXXZ

?allocate@QVectorData@@SAPAU1@HH@Z

?translated@QRect@@QBE?AV1@ABVQPoint@@@Z

??0QSharedData@@QAE@XZ

??0QSharedData@@QAE@ABV0@@Z

?firstNode@QHashData@@QAEPAUNode@1@XZ

?constData@QVariant@@QBEPBXXZ

?userType@QVariant@@QBEHXZ

?free_helper@QHashData@@QAEXP6AXPAUNode@1@@Z@Z

?qMemSet@@YAPAXPAXHI@Z

??4QBasicAtomicInt@@QAEAAV0@H@Z

?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z

?node_delete@QMapData@@QAEXQAPAUNode@1@HPAU21@@Z

?detach_helper2@QHashData@@QAEPAU1@P6AXPAUNode@1@PAX@ZP6AX0@ZHH@Z

?allocateNode@QHashData@@QAEPAXH@Z

?qHash@@YAIABVQByteArray@@@Z

??4QAtomicInt@@QAEAAV0@H@Z

?postEvent@QCoreApplication@@SAXPAVQObject@@PAVQEvent@@@Z

??0QMutex@@QAE@W4RecursionMode@0@@Z

??1QMutexLocker@@QAE@XZ

??0QString@@QAE@ABVQLatin1String@@@Z

??0QMutexLocker@@QAE@PAVQMutex@@@Z

?willGrow@QHashData@@QAE_NXZ

?prepend@QListData@@QAEPAPAXXZ

?realloc@QListData@@QAEXH@Z

??1QBasicTimer@@QAE@XZ

??1QCoreApplicationPrivate@@UAE@XZ

??0QBasicTimer@@QAE@XZ

??0QCoreApplicationPrivate@@QAE@AAHPAPADI@Z

?fromWCharArray@QString@@SA?AV1@PBGH@Z

?compressEvent@QCoreApplication@@MAE_NPAVQEvent@@PAVQObject@@PAVQPostEventList@@@Z

?is_app_closing@QCoreApplicationPrivate@@2_NA

?is_app_running@QCoreApplicationPrivate@@2_NA

?moveCenter@QRectF@@QAEXABVQPointF@@@Z

??0QPointF@@QAE@ABVQPoint@@@Z

?toPoint@QPointF@@QBE?AVQPoint@@XZ

?center@QRectF@@QBE?AVQPointF@@XZ

?length@QLineF@@QBENXZ

??0QLineF@@QAE@ABVQPointF@@0@Z

?registerType@QMetaType@@SAHPBDP6AXPAX@ZP6APAXPBX@Z@Z

?registerTypedef@QMetaType@@SAHPBDH@Z

??BQBasicAtomicInt@@QBEHXZ

??7QBasicAtomicInt@@QBE_NXZ

?append@QString@@QAEAAV1@ABV1@@Z

??4QString@@QAEAAV0@ABVQLatin1String@@@Z

?left@QString@@QBE?AV1@H@Z

?mid@QString@@QBE?AV1@HH@Z

?indexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z

?toLower@QString@@QBE?AV1@XZ

?fromLocal8Bit@QString@@SA?AV1@PBDH@Z

??BQByteArray@@QBEPBDXZ

?toLower@QByteArray@@QBE?AV1@XZ

?right@QByteArray@@QBE?AV1@H@Z

?length@QByteArray@@QBEHXZ

?indexOf@QByteArray@@QBEHPBDH@Z

??4QByteArray@@QAEAAV0@ABV0@@Z

??0QByteArray@@QAE@PBD@Z

??1QCoreApplication@@UAE@XZ

?qDebug@@YAXPBDZZ

?eventDispatcher@QCoreApplicationPrivate@@2PAVQAbstractEventDispatcher@@A

?stop@QBasicTimer@@QAEXXZ

?qt_call_post_routines@@YAXXZ

?winEventFilter@QCoreApplication@@UAE_NPAUtagMSG@@PAJ@Z

?inherits@QObject@@QBE_NPBD@Z

?className@QMetaObject@@QBEPBDXZ

?event@QCoreApplication@@MAE_NPAVQEvent@@@Z

?start@QBasicTimer@@QAEXHPAVQObject@@@Z

?timerId@QTimerEvent@@QBEHXZ

?timerId@QBasicTimer@@QBEHXZ

?isAccepted@QEvent@@QBE_NXZ

?ignore@QEvent@@QAEXXZ

?accept@QEvent@@QAEXXZ

?sendThroughObjectEventFilters@QCoreApplicationPrivate@@QAE_NPAVQObject@@PAVQEvent@@@Z

?sendThroughApplicationEventFilters@QCoreApplicationPrivate@@QAE_NPAVQObject@@PAVQEvent@@@Z

?setAccepted@QEvent@@QAEX_N@Z

??YQPoint@@QAEAAV0@ABV0@@Z

?d_func@QObject@@AAEPAVQObjectPrivate@@XZ

?isActive@QBasicTimer@@QBE_NXZ

?spontaneous@QEvent@@QBE_NXZ

?qt_metacall@QCoreApplication@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?setAttribute@QCoreApplication@@SAXW4ApplicationAttribute@Qt@@_N@Z

?toInt@QByteArray@@QBEHPA_NH@Z

?qgetenv@@YA?AVQByteArray@@PBD@Z

??1QLibrary@@UAE@XZ

?qCritical@@YAXPBDZZ

?resolve@QLibrary@@QAEPAXPBD@Z

?load@QLibrary@@QAE_NXZ

??0QLibrary@@QAE@ABVQString@@PAVQObject@@@Z

??0QCoreApplication@@IAE@AAVQCoreApplicationPrivate@@@Z

?staticMetaObject@QCoreApplication@@2UQMetaObject@@B

?data@QByteArray@@QAEPADXZ

?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ

?objectName@QObject@@QBE?AVQString@@XZ

??BQFlag@@QBEHXZ

?insert@QListData@@QAEPAPAXH@Z

??YQSize@@QAEAAV0@ABV0@@Z

?boundedTo@QSize@@QBE?AV1@ABV1@@Z

?expandedTo@QSize@@QBE?AV1@ABV1@@Z

??0QFlag@@QAE@H@Z

?setHeight@QSize@@QAEXH@Z

?setWidth@QSize@@QAEXH@Z

?top@QRect@@QBEHXZ

?left@QRect@@QBEHXZ

?bottom@QRect@@QBEHXZ

?right@QRect@@QBEHXZ

??0QMimeData@@QAE@XZ

?metaObject@QMimeData@@UBEPBUQMetaObject@@XZ

?qt_metacast@QMimeData@@UAEPAXPBD@Z

?qt_metacall@QMimeData@@UAEHW4Call@QMetaObject@@HPAPAX@Z

??1QMimeData@@UAE@XZ

?text@QMimeData@@QBE?AVQString@@XZ

?setText@QMimeData@@QAEXABVQString@@@Z

?hasFormat@QMimeData@@UBE_NABVQString@@@Z

?formats@QMimeData@@UBE?AVQStringList@@XZ

?retrieveData@QMimeData@@MBE?AVQVariant@@ABVQString@@W4Type@2@@Z

?setImageData@QMimeData@@QAEXABVQVariant@@@Z

??0QVariant@@QAE@ABVQByteArray@@@Z

?qstrcmp@@YAHPBD0@Z

?latin1@QLatin1String@@QBEPBDXZ

?constData@QString@@QBEPBVQChar@@XZ

?QStringList_contains@QtPrivate@@YA?AVQBool@@PBVQStringList@@ABVQString@@W4CaseSensitivity@Qt@@@Z

?data@QString@@QAEPAVQChar@@XZ

??0QString@@QAE@HW4Initialization@Qt@@@Z

?imageData@QMimeData@@QBE?AVQVariant@@XZ

??1QBuffer@@UAE@XZ

?open@QBuffer@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??0QBuffer@@QAE@PAVQByteArray@@PAVQObject@@@Z

??0QByteArray@@QAE@XZ

?data@QMimeData@@QBE?AVQByteArray@@ABVQString@@@Z

?toUnicode@QTextCodec@@QBE?AVQString@@ABVQByteArray@@@Z

?codecForUtfText@QTextCodec@@SAPAV1@ABVQByteArray@@PAV1@@Z

?startsWith@QString@@QBE_NABVQLatin1String@@W4CaseSensitivity@Qt@@@Z

?codecForHtml@QTextCodec@@SAPAV1@ABVQByteArray@@PAV1@@Z

?codecForMib@QTextCodec@@SAPAV1@H@Z

?data@QByteArray@@QBEPBDXZ

?startingUp@QCoreApplication@@SA_NXZ

??0QVariant@@QAE@HPBX@Z

??6@YAAAVQDataStream@@AAV0@ABVQPoint@@@Z

??6QDataStream@@QAEAAV0@_N@Z

?version@QDataStream@@QBEHXZ

??6QDataStream@@QAEAAV0@F@Z

??5@YAAAVQDataStream@@AAV0@AAVQPoint@@@Z

??5QDataStream@@QAEAAV0@AA_N@Z

??5QDataStream@@QAEAAV0@AAF@Z

??0QObject@@QAE@PAV0@@Z

?closingDown@QCoreApplication@@SA_NXZ

?toUpper@QByteArray@@QBE?AV1@XZ

?hasImage@QMimeData@@QBE_NXZ

??4QByteArray@@QAEAAV0@$$QAV0@@Z

?colorData@QMimeData@@QBE?AVQVariant@@XZ

?resize@QByteArray@@QAEXH@Z

?move@QListData@@QAEXHH@Z

??YQString@@QAEAAV0@ABV0@@Z

?clear@QMimeData@@QAEXXZ

?setData@QMimeData@@QAEXABVQString@@ABVQByteArray@@@Z

??4QVariant@@QAEAAV0@$$QAV0@@Z

?toByteArray@QVariant@@QBE?AVQByteArray@@XZ

?type@QVariant@@QBE?AW4Type@1@XZ

?isNull@QVariant@@QBE_NXZ

??0QUrl@@QAE@ABV0@@Z

??1QUrl@@QAE@XZ

?fromLocalFile@QUrl@@SA?AV1@ABVQString@@@Z

?toLocalFile@QUrl@@QBE?AVQString@@XZ

??0QAtomicInt@@QAE@H@Z

?setFileName@QFile@@QAEXABVQString@@@Z

??6QTextStream@@QAEAAV0@PBX@Z

??1QDebug@@QAE@XZ

??6@YA?AVQDebug@@V0@PBVQObject@@@Z

?child@QChildEvent@@QBEPAVQObject@@XZ

??6QDebug@@QAEAAV0@_N@Z

??6QDebug@@QAEAAV0@ABVQString@@@Z

??6QDebug@@QAEAAV0@P6AAAVQTextStream@@AAV1@@Z@Z

?hex@@YAAAVQTextStream@@AAV1@@Z

??6QTextStream@@QAEAAV0@D@Z

??6QTextStream@@QAEAAV0@H@Z

??6QDebug@@QAEAAV0@PBD@Z

??0QRect@@QAE@ABVQPoint@@ABVQSize@@@Z

?grow@QVectorData@@SAHHHH_N@Z

?rheight@QSize@@QAEAAHXZ

?rwidth@QSize@@QAEAAHXZ

?isValid@QSize@@QBE_NXZ

?adjust@QRect@@QAEXHHHH@Z

?qMalloc@@YAPAXI@Z

??6QDataStream@@QAEAAV0@I@Z

?arg@QString@@QBE?AV1@HHHABVQChar@@@Z

?lowSurrogate@QChar@@SAGI@Z

??YQString@@QAEAAV0@VQChar@@@Z

?highSurrogate@QChar@@SAGI@Z

??4QString@@QAEAAV0@VQChar@@@Z

?toUpper@QChar@@QBE?AV1@XZ

??0QChar@@QAE@G@Z

?requiresSurrogates@QChar@@SA_NI@Z

?truncate@QString@@QAEXH@Z

?length@QString@@QBEHXZ

??YQString@@QAEAAV0@ABVQLatin1String@@@Z

?isPrint@QChar@@QBE_NXZ

?toInt@QString@@QBEHPA_NH@Z

??BQCharRef@@QBE?AVQChar@@XZ

?toUpper@QCharRef@@QBE?AVQChar@@XZ

??AQString@@QAE?AVQCharRef@@H@Z

?lastIndexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z

?append@QString@@QAEAAV1@VQChar@@@Z

?atEnd@QDataStream@@QBE_NXZ

??5QDataStream@@QAEAAV0@AAI@Z

?right@QString@@QBE?AV1@H@Z

?count@QString@@QBEHXZ

?size@QRect@@QBE?AVQSize@@XZ

?cast@QMetaObject@@QBEPBVQObject@@PBV2@@Z

?setTop@QRect@@QAEXH@Z

?invokeMethod@QMetaObject@@SA_NPAVQObject@@PBDW4ConnectionType@Qt@@VQGenericArgument@@333333333@Z

??0QGenericArgument@@QAE@PBDPBX@Z

?metaObject@QObject@@UBEPBUQMetaObject@@XZ

?qstricmp@@YAHPBD0@Z

?isNull@QRect@@QBE_NXZ

?setProperty@QObject@@QAE_NPBDABVQVariant@@@Z

?deleteLater@QObject@@QAEXXZ

??9QString@@QBE_NABV0@@Z

??0QVariant@@QAE@HPBXI@Z

?installEventFilter@QObject@@QAEXPAV1@@Z

?setX@QPoint@@QAEXH@Z

?setY@QPoint@@QAEXH@Z

?ry@QPoint@@QAEAAHXZ

?rx@QPoint@@QAEAAHXZ

??0QVariant@@QAE@H@Z

??0QVariant@@QAE@ABVQString@@@Z

??0QVariant@@QAE@N@Z

??0QVariant@@QAE@_N@Z

??0QVariant@@QAE@ABVQStringList@@@Z

?qMetaTypeGuiHelper@@3PBUQMetaTypeGuiHelper@@B

??0?$QVector@VQPoint@@@@QAE@XZ

??0?$QVector@VQPoint@@@@QAE@ABV0@@Z

?qcoreVariantHandler@@YAPBUHandler@QVariant@@XZ

??8?$QVector@VQPoint@@@@QBE_NABV0@@Z

?qDeleteInEventHandler@@YAXPAVQObject@@@Z

??0QLine@@QAE@HHHH@Z

?WindowsVersion@QSysInfo@@2W4WinVersion@1@B

?setSize@QRect@@QAEXABVQSize@@@Z

?toSize@QSizeF@@QBE?AVQSize@@XZ

?setLeft@QRect@@QAEXH@Z

?clear@QString@@QAEXXZ

?translate@QRect@@QAEXHH@Z

?toBool@QVariant@@QBE_NXZ

?property@QObject@@QBE?AVQVariant@@PBD@Z

??0QVariant@@QAE@ABVQRect@@@Z

??ZQPoint@@QAEAAV0@ABV0@@Z

??0QRect@@QAE@ABVQPoint@@0@Z

?isValid@QRect@@QBE_NXZ

?setRect@QRect@@QAEXHHHH@Z

?freeNode@QHashData@@QAEXPAX@Z

?qFatal@@YAXPBDZZ

??8QLocale@@QBE_NABV0@@Z

?resize@QString@@QAEXH@Z

?reserve@QString@@QAEXH@Z

?isEmpty@QRect@@QBE_NXZ

??_5QRect@@QAEAAV0@ABV0@@Z

??1QFileInfo@@QAE@XZ

??0QChar@@QAE@H@Z

?applicationName@QCoreApplication@@SA?AVQString@@XZ

?fileName@QFileInfo@@QBE?AVQString@@XZ

??0QFileInfo@@QAE@ABVQString@@@Z

?replace@QString@@QAEAAV1@ABVQLatin1String@@0W4CaseSensitivity@Qt@@@Z

?replace@QString@@QAEAAV1@HHABV1@@Z

?lastIndexOf@QString@@QBEHABVQLatin1String@@HW4CaseSensitivity@Qt@@@Z

?indexOf@QString@@QBEHABVQLatin1String@@HW4CaseSensitivity@Qt@@@Z

??IQRect@@QBE?AV0@ABV0@@Z

?hasShrunk@QHashData@@QAEXXZ

?qt_qFindChildren_helper@@YAXPBVQObject@@ABVQString@@PBVQRegExp@@ABUQMetaObject@@PAV?$QList@PAX@@@Z

?children@QObject@@QBEABV?$QList@PAVQObject@@@@XZ

??_4QRect@@QAEAAV0@ABV0@@Z

??1QChildEvent@@UAE@XZ

??0QChildEvent@@QAE@W4Type@QEvent@@PAVQObject@@@Z

?setCoords@QRect@@QAEXHHHH@Z

?topLeft@QRectF@@QBE?AVQPointF@@XZ

?attribs@QCoreApplicationPrivate@@2IA

?isNull@QString@@QBE_NXZ

??1QDataStream@@UAE@XZ

??6QDataStream@@QAEAAV0@E@Z

??6QDataStream@@QAEAAV0@H@Z

??6@YAAAVQDataStream@@AAV0@ABVQRect@@@Z

??6QDataStream@@QAEAAV0@G@Z

?setVersion@QDataStream@@QAEXH@Z

??0QDataStream@@QAE@PAVQByteArray@@H@Z

?contains@QString@@QBE?AVQBool@@ABV1@W4CaseSensitivity@Qt@@@Z

?moveTopLeft@QRect@@QAEXABVQPoint@@@Z

?setTopLeft@QRect@@QAEXABVQPoint@@@Z

?moveTop@QRect@@QAEXH@Z

?moveRight@QRect@@QAEXH@Z

?moveLeft@QRect@@QAEXH@Z

?moveBottom@QRect@@QAEXH@Z

?intersects@QRect@@QBE_NABV1@@Z

??5QDataStream@@QAEAAV0@AAE@Z

??5QDataStream@@QAEAAV0@AAH@Z

??5@YAAAVQDataStream@@AAV0@AAVQRect@@@Z

??5QDataStream@@QAEAAV0@AAG@Z

??0QDataStream@@QAE@ABVQByteArray@@@Z

?quit@QCoreApplication@@SAXXZ

?at@QByteArray@@QBE?BDH@Z

?toUInt@QVariant@@QBEIPA_N@Z

?propertyName@QDynamicPropertyChangeEvent@@QBE?AVQByteArray@@XZ

?center@QRect@@QBE?AVQPoint@@XZ

?toRect@QVariant@@QBE?AVQRect@@XZ

?postEvent@QCoreApplication@@SAXPAVQObject@@PAVQEvent@@H@Z

?app_compile_version@QCoreApplicationPrivate@@2HA

?qErrnoWarning@@YAXPBDZZ

?removePostedEvents@QCoreApplication@@SAXPAVQObject@@@Z

?deleteChildren@QObjectPrivate@@QAEXXZ

?destroyed@QAbstractDeclarativeData@@2P6AXPAV1@PAVQObject@@@ZA

?clearGuards@QObjectPrivate@@SAXPAVQObject@@@Z

?processEvents@QCoreApplication@@SAXV?$QFlags@W4ProcessEventsFlag@QEventLoop@@@@@Z

?removePostedEvents@QCoreApplication@@SAXPAVQObject@@H@Z

?isNull@QSize@@QBE_NXZ

?adjusted@QRectF@@QBE?AV1@NNNN@Z

?unicode@QChar@@QBE?BGXZ

?angle@QLineF@@QBENXZ

?restart@QElapsedTimer@@QAE_JXZ

?isNull@QPoint@@QBE_NXZ

?start@QElapsedTimer@@QAEXXZ

?invalidate@QElapsedTimer@@QAEXXZ

?manhattanLength@QPoint@@QBEHXZ

?startTimer@QObject@@QAEHH@Z

?killTimer@QObject@@QAEXH@Z

?previousNode@QHashData@@SAPAUNode@1@PAU21@@Z

?rehash@QHashData@@QAEXH@Z

??1QFactoryLoader@@UAE@XZ

?instance@QFactoryLoader@@QBEPAVQObject@@ABVQString@@@Z

??0QFactoryLoader@@QAE@PBDABVQString@@W4CaseSensitivity@Qt@@@Z

?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ

?d_func@QThread@@AAEPAVQThreadPrivate@@XZ

?load@QSystemLibrary@@SAPAUHINSTANCE__@@PBG_N@Z

?utf16@QString@@QBEPBGXZ

??1QEventDispatcherWin32@@UAE@XZ

?createInternalHwnd@QEventDispatcherWin32@@AAEXXZ

??0QEventDispatcherWin32@@QAE@PAVQObject@@@Z

?metaObject@QEventDispatcherWin32@@UBEPBUQMetaObject@@XZ

?qt_metacast@QEventDispatcherWin32@@UAEPAXPBD@Z

?qt_metacall@QEventDispatcherWin32@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?event@QEventDispatcherWin32@@UAE_NPAVQEvent@@@Z

?hasPendingEvents@QEventDispatcherWin32@@UAE_NXZ

?registerSocketNotifier@QEventDispatcherWin32@@UAEXPAVQSocketNotifier@@@Z

?unregisterSocketNotifier@QEventDispatcherWin32@@UAEXPAVQSocketNotifier@@@Z

?registerTimer@QEventDispatcherWin32@@UAEXHHPAVQObject@@@Z

?unregisterTimer@QEventDispatcherWin32@@UAE_NH@Z

?unregisterTimers@QEventDispatcherWin32@@UAE_NPAVQObject@@@Z

?registeredTimers@QEventDispatcherWin32@@UBE?AV?$QList@U?$QPair@HH@@@@PAVQObject@@@Z

?wakeUp@QEventDispatcherWin32@@UAEXXZ

?interrupt@QEventDispatcherWin32@@UAEXXZ

?flush@QEventDispatcherWin32@@UAEXXZ

?startingUp@QEventDispatcherWin32@@UAEXXZ

?closingDown@QEventDispatcherWin32@@UAEXXZ

msvcp100

?_Xlength_error@std@@YAXPBD@Z

msvcr100

__CxxFrameHandler3

??3@YAXPAX@Z

??_V@YAXPAX@Z

memcpy

__clean_type_info_names_internal

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_except_handler4_common

_crt_debugger_hook

__CppXcptFilter

_amsg_exit

_initterm_e

_initterm

_encoded_null

_malloc_crt

?terminate@@YAXXZ

_onexit

_lock

__dllonexit

_unlock

_CIlog

strchr

exit

_HUGE

_CIlog10

wcsrchr

??0exception@std@@QAE@ABQBD@Z

_CIatan2

calloc

??0exception@std@@QAE@ABV01@@Z

??1exception@std@@UAE@XZ

?what@exception@std@@UBEPBDXZ

??0exception@std@@QAE@ABQBDH@Z

_close

_CIsqrt

_CIacos

fflush

fwrite

fread

__iob_func

fprintf

__CxxLongjmpUnwind

_setjmp3

longjmp

sscanf_s

strcpy_s

strstr

isdigit

isspace

_CIpow

floor

ceil

free

realloc

malloc

toupper

_flushall

memset

_CItan

_CIsin

_CIatan

_CIcos

strncmp

memmove

_purecall

??2@YAPAXI@Z

_CxxThrowException

kernel32

GetProcAddress

SetErrorMode

GetLastError

GetLocaleInfoW

GlobalUnlock

GlobalLock

LocalFree

GetSystemTimeAsFileTime

GetCurrentProcessId

GetCurrentThreadId

GetTickCount

QueryPerformanceCounter

DisableThreadLibraryCalls

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

IsProcessorFeaturePresent

InterlockedCompareExchange

Sleep

InterlockedExchange

DecodePointer

EncodePointer

OpenProcess

VirtualAllocEx

ReadProcessMemory

VirtualFreeEx

CreateProcessW

ExpandEnvironmentStringsW

IsValidLanguageGroup

IsValidLocale

GetDriveTypeW

InterlockedDecrement

GetLongPathNameW

GetVolumeInformationW

lstrcmpW

GetUserDefaultLangID

GetProfileStringW

GlobalFree

lstrlenA

ExitProcess

GetStartupInfoW

GetModuleHandleW

CreateThread

SetEvent

WaitForSingleObject

ReleaseMutex

CloseHandle

CreateMutexW

CreateEventW

GlobalSize

GlobalAlloc

Exports

??0?$QList@VQItemSelectionRange@@@@QAE@ABV0@@Z

??0?$QList@VQItemSelectionRange@@@@QAE@XZ

??0FileInfo@QZipReader@@QAE@ABU01@@Z

??0FileInfo@QZipReader@@QAE@XZ

??0Key@QPixmapCache@@QAE@ABV01@@Z

??0Key@QPixmapCache@@QAE@XZ

??0Parser@QCss@@QAE@ABV01@@Z

??0Parser@QCss@@QAE@ABVQString@@_N@Z

??0Parser@QCss@@QAE@XZ

??0QAbstractButton@@IAE@AAVQAbstractButtonPrivate@@PAVQWidget@@@Z

??0QAbstractButton@@QAE@PAVQWidget@@@Z

??0QAbstractButton@@QAE@PAVQWidget@@PBDV?$QFlags@W4WindowType@Qt@@@@@Z

??0QAbstractGraphicsShapeItem@@IAE@AAVQAbstractGraphicsShapeItemPrivate@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QAbstractGraphicsShapeItem@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QAbstractItemDelegate@@IAE@AAVQObjectPrivate@@PAVQObject@@@Z

??0QAbstractItemDelegate@@QAE@PAVQObject@@@Z

??0QAbstractItemView@@IAE@AAVQAbstractItemViewPrivate@@PAVQWidget@@@Z

??0QAbstractItemView@@QAE@PAVQWidget@@@Z

??0QAbstractPageSetupDialog@@QAE@AAVQAbstractPageSetupDialogPrivate@@PAVQPrinter@@PAVQWidget@@@Z

??0QAbstractPageSetupDialog@@QAE@PAVQPrinter@@PAVQWidget@@@Z

??0QAbstractPrintDialog@@IAE@AAVQAbstractPrintDialogPrivate@@PAVQPrinter@@PAVQWidget@@@Z

??0QAbstractPrintDialog@@QAE@PAVQPrinter@@PAVQWidget@@@Z

??0QAbstractProxyModel@@IAE@AAVQAbstractProxyModelPrivate@@PAVQObject@@@Z

??0QAbstractProxyModel@@QAE@PAVQObject@@@Z

??0QAbstractScrollArea@@IAE@AAVQAbstractScrollAreaPrivate@@PAVQWidget@@@Z

??0QAbstractScrollArea@@QAE@PAVQWidget@@@Z

??0QAbstractScrollAreaPrivate@@QAE@XZ

??0QAbstractSlider@@IAE@AAVQAbstractSliderPrivate@@PAVQWidget@@@Z

??0QAbstractSlider@@QAE@PAVQWidget@@@Z

??0QAbstractSpinBox@@IAE@AAVQAbstractSpinBoxPrivate@@PAVQWidget@@@Z

??0QAbstractSpinBox@@QAE@PAVQWidget@@@Z

??0QAbstractTextDocumentLayout@@IAE@AAVQAbstractTextDocumentLayoutPrivate@@PAVQTextDocument@@@Z

??0QAbstractTextDocumentLayout@@QAE@PAVQTextDocument@@@Z

??0QAbstractUndoItem@@QAE@ABV0@@Z

??0QAbstractUndoItem@@QAE@XZ

??0QAccessible2Interface@@QAE@ABV0@@Z

??0QAccessible2Interface@@QAE@XZ

??0QAccessibleActionInterface@@QAE@ABV0@@Z

??0QAccessibleActionInterface@@QAE@XZ

??0QAccessibleApplication@@QAE@XZ

??0QAccessibleEditableTextInterface@@QAE@ABV0@@Z

??0QAccessibleEditableTextInterface@@QAE@XZ

??0QAccessibleEvent@@QAE@ABV0@@Z

??0QAccessibleEvent@@QAE@W4Type@QEvent@@H@Z

??0QAccessibleFactoryInterface@@QAE@ABU0@@Z

??0QAccessibleFactoryInterface@@QAE@XZ

??0QAccessibleImageInterface@@QAE@ABV0@@Z

??0QAccessibleImageInterface@@QAE@XZ

??0QAccessibleInterface@@QAE@ABV0@@Z

??0QAccessibleInterface@@QAE@XZ

??0QAccessibleInterfaceEx@@QAE@ABV0@@Z

??0QAccessibleInterfaceEx@@QAE@XZ

??0QAccessibleObject@@QAE@PAVQObject@@@Z

??0QAccessibleObjectEx@@QAE@PAVQObject@@@Z

??0QAccessiblePlugin@@QAE@PAVQObject@@@Z

??0QAccessibleSimpleEditableTextInterface@@QAE@ABV0@@Z

??0QAccessibleSimpleEditableTextInterface@@QAE@PAVQAccessibleInterface@@@Z

??0QAccessibleTable2CellInterface@@QAE@ABV0@@Z

??0QAccessibleTable2CellInterface@@QAE@XZ

??0QAccessibleTable2Interface@@QAE@ABV0@@Z

??0QAccessibleTable2Interface@@QAE@XZ

??0QAccessibleTableInterface@@QAE@ABV0@@Z

??0QAccessibleTableInterface@@QAE@XZ

??0QAccessibleTextInterface@@QAE@ABV0@@Z

??0QAccessibleTextInterface@@QAE@XZ

??0QAccessibleValueInterface@@QAE@ABV0@@Z

??0QAccessibleValueInterface@@QAE@XZ

??0QAccessibleWidget@@QAE@PAVQWidget@@W4Role@QAccessible@@ABVQString@@@Z

??0QAccessibleWidgetEx@@QAE@PAVQWidget@@W4Role@QAccessible@@ABVQString@@@Z

??0QAction@@IAE@AAVQActionPrivate@@PAVQObject@@@Z

??0QAction@@QAE@ABVQIcon@@ABVQString@@ABVQKeySequence@@PAVQObject@@PBD@Z

??0QAction@@QAE@ABVQIcon@@ABVQString@@PAVQObject@@@Z

??0QAction@@QAE@ABVQString@@ABVQKeySequence@@PAVQObject@@PBD@Z

??0QAction@@QAE@ABVQString@@PAVQObject@@@Z

??0QAction@@QAE@PAVQObject@@@Z

??0QAction@@QAE@PAVQObject@@PBD@Z

??0QActionEvent@@QAE@ABV0@@Z

??0QActionEvent@@QAE@HPAVQAction@@0@Z

??0QActionGroup@@QAE@PAVQObject@@@Z

??0QApplication@@QAE@AAHPAPAD@Z

??0QApplication@@QAE@AAHPAPADH@Z

??0QApplication@@QAE@AAHPAPADW4Type@0@@Z

??0QApplication@@QAE@AAHPAPADW4Type@0@H@Z

??0QApplication@@QAE@AAHPAPAD_N@Z

??0QApplication@@QAE@AAHPAPAD_NH@Z

??0QApplicationPrivate@@QAE@AAHPAPADW4Type@QApplication@@H@Z

??0QBitmap@@QAE@ABV0@@Z

??0QBitmap@@QAE@ABVQImage@@@Z

??0QBitmap@@QAE@ABVQPixmap@@@Z

??0QBitmap@@QAE@ABVQSize@@@Z

??0QBitmap@@QAE@ABVQSize@@PBE_N@Z

??0QBitmap@@QAE@ABVQSize@@_N@Z

??0QBitmap@@QAE@ABVQString@@PBD@Z

??0QBitmap@@QAE@HH@Z

??0QBitmap@@QAE@HHPBE_N@Z

??0QBitmap@@QAE@HH_N@Z

??0QBitmap@@QAE@XZ

??0QBlittable@@QAE@ABV0@@Z

??0QBlittable@@QAE@ABVQSize@@V?$QFlags@W4Capability@QBlittable@@@@@Z

??0QBlittablePixmapData@@QAE@XZ

??0QBlitterPaintEngine@@QAE@PAVQBlittablePixmapData@@@Z

??0QBoxLayout@@QAE@PAVQLayout@@W4Direction@0@HPBD@Z

??0QBoxLayout@@QAE@PAVQWidget@@W4Direction@0@HHPBD@Z

??0QBoxLayout@@QAE@W4Direction@0@HPBD@Z

??0QBoxLayout@@QAE@W4Direction@0@PAVQWidget@@@Z

??0QBrush@@QAE@ABV0@@Z

??0QBrush@@QAE@ABVQColor@@ABVQPixmap@@@Z

??0QBrush@@QAE@ABVQColor@@W4BrushStyle@Qt@@@Z

??0QBrush@@QAE@ABVQGradient@@@Z

??0QBrush@@QAE@ABVQImage@@@Z

??0QBrush@@QAE@ABVQPixmap@@@Z

??0QBrush@@QAE@W4BrushStyle@Qt@@@Z

??0QBrush@@QAE@W4GlobalColor@Qt@@ABVQPixmap@@@Z

??0QBrush@@QAE@W4GlobalColor@Qt@@W4BrushStyle@2@@Z

??0QBrush@@QAE@XZ

??0QButtonGroup@@QAE@PAVQObject@@@Z

??0QCDEStyle@@QAE@_N@Z

??0QCalendarWidget@@QAE@PAVQWidget@@@Z

??0QCheckBox@@QAE@ABVQString@@PAVQWidget@@@Z

??0QCheckBox@@QAE@ABVQString@@PAVQWidget@@PBD@Z

??0QCheckBox@@QAE@PAVQWidget@@@Z

??0QCheckBox@@QAE@PAVQWidget@@PBD@Z

??0QCleanlooksStyle@@IAE@AAVQCleanlooksStylePrivate@@@Z

??0QCleanlooksStyle@@QAE@XZ

??0QClipboard@@AAE@PAVQObject@@@Z

??0QClipboardEvent@@QAE@ABV0@@Z

??0QClipboardEvent@@QAE@PAVQEventPrivate@@@Z

??0QCloseEvent@@QAE@ABV0@@Z

??0QCloseEvent@@QAE@XZ

??0QColor@@QAE@ABV0@@Z

??0QColor@@QAE@ABVQString@@@Z

??0QColor@@QAE@HHHH@Z

??0QColor@@QAE@HHHW4Spec@0@@Z

??0QColor@@QAE@I@Z

??0QColor@@QAE@PBD@Z

??0QColor@@QAE@W4GlobalColor@Qt@@@Z

??0QColor@@QAE@W4Spec@0@@Z

??0QColor@@QAE@XZ

??0QColorDialog@@AAE@PAVQWidget@@_N@Z

??0QColorDialog@@QAE@ABVQColor@@PAVQWidget@@@Z

??0QColorDialog@@QAE@PAVQWidget@@@Z

??0QColorGroup@@QAE@ABV0@@Z

??0QColorGroup@@QAE@ABVQBrush@@00000000@Z

??0QColorGroup@@QAE@ABVQColor@@000000@Z

??0QColorGroup@@QAE@ABVQPalette@@@Z

??0QColorGroup@@QAE@XZ

??0QColormap@@AAE@XZ

??0QColormap@@QAE@ABV0@@Z

??0QColumnView@@IAE@AAVQColumnViewPrivate@@PAVQWidget@@@Z

??0QColumnView@@QAE@PAVQWidget@@@Z

??0QComboBox@@IAE@AAVQComboBoxPrivate@@PAVQWidget@@@Z

??0QComboBox@@QAE@PAVQWidget@@@Z

??0QComboBox@@QAE@PAVQWidget@@PBD@Z

??0QComboBox@@QAE@_NPAVQWidget@@PBD@Z

??0QCommandLinkButton@@QAE@ABVQString@@0PAVQWidget@@@Z

??0QCommandLinkButton@@QAE@ABVQString@@PAVQWidget@@@Z

??0QCommandLinkButton@@QAE@PAVQWidget@@@Z

??0QCommonStyle@@IAE@AAVQCommonStylePrivate@@@Z

??0QCommonStyle@@QAE@XZ

??0QCompleter@@QAE@ABVQStringList@@PAVQObject@@@Z

??0QCompleter@@QAE@PAVQAbstractItemModel@@PAVQObject@@@Z

??0QCompleter@@QAE@PAVQObject@@@Z

??0QConicalGradient@@QAE@ABV0@@Z

??0QConicalGradient@@QAE@ABVQPointF@@N@Z

??0QConicalGradient@@QAE@NNN@Z

??0QConicalGradient@@QAE@XZ

??0QContextMenuEvent@@QAE@ABV0@@Z

??0QContextMenuEvent@@QAE@W4Reason@0@ABVQPoint@@1@Z

??0QContextMenuEvent@@QAE@W4Reason@0@ABVQPoint@@1H@Z

??0QContextMenuEvent@@QAE@W4Reason@0@ABVQPoint@@1V?$QFlags@W4KeyboardModifier@Qt@@@@@Z

??0QContextMenuEvent@@QAE@W4Reason@0@ABVQPoint@@@Z

??0QContextMenuEvent@@QAE@W4Reason@0@ABVQPoint@@H@Z

??0QCursor@@QAE@ABV0@@Z

??0QCursor@@QAE@ABVQBitmap@@0HH@Z

??0QCursor@@QAE@ABVQPixmap@@HH@Z

??0QCursor@@QAE@PAUHICON__@@@Z

??0QCursor@@QAE@W4CursorShape@Qt@@@Z

??0QCursor@@QAE@XZ

??0QDashStroker@@QAE@ABV0@@Z

??0QDashStroker@@QAE@PAVQStroker@@@Z

??0QDataWidgetMapper@@QAE@PAVQObject@@@Z

??0QDateEdit@@QAE@ABVQDate@@PAVQWidget@@@Z

??0QDateEdit@@QAE@PAVQWidget@@@Z

??0QDateTimeEdit@@IAE@ABVQVariant@@W4Type@1@PAVQWidget@@@Z

??0QDateTimeEdit@@QAE@ABVQDate@@PAVQWidget@@@Z

??0QDateTimeEdit@@QAE@ABVQDateTime@@PAVQWidget@@@Z

??0QDateTimeEdit@@QAE@ABVQTime@@PAVQWidget@@@Z

??0QDateTimeEdit@@QAE@PAVQWidget@@@Z

??0QDesktopWidget@@QAE@XZ

??0QDial@@QAE@HHHHPAVQWidget@@PBD@Z

??0QDial@@QAE@PAVQWidget@@@Z

??0QDial@@QAE@PAVQWidget@@PBD@Z

??0QDialog@@IAE@AAVQDialogPrivate@@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QDialog@@QAE@PAVQWidget@@PBD_NV?$QFlags@W4WindowType@Qt@@@@@Z

??0QDialog@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QDialogButtonBox@@QAE@PAVQWidget@@@Z

??0QDialogButtonBox@@QAE@V?$QFlags@W4StandardButton@QDialogButtonBox@@@@W4Orientation@Qt@@PAVQWidget@@@Z

??0QDialogButtonBox@@QAE@W4Orientation@Qt@@PAVQWidget@@@Z

??0QDirModel@@IAE@AAVQDirModelPrivate@@PAVQObject@@@Z

??0QDirModel@@QAE@ABVQStringList@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4SortFlag@QDir@@@@PAVQObject@@@Z

??0QDirModel@@QAE@PAVQObject@@@Z

??0QDockWidget@@QAE@ABVQString@@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QDockWidget@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QDockWidgetLayout@@QAE@PAVQWidget@@@Z

??0QDoubleSpinBox@@QAE@PAVQWidget@@@Z

??0QDoubleValidator@@QAE@NNHPAVQObject@@@Z

??0QDoubleValidator@@QAE@NNHPAVQObject@@PBD@Z

??0QDoubleValidator@@QAE@PAVQObject@@@Z

??0QDoubleValidator@@QAE@PAVQObject@@PBD@Z

??0QDrag@@QAE@PAVQWidget@@@Z

??0QDragEnterEvent@@QAE@ABV0@@Z

??0QDragEnterEvent@@QAE@ABVQPoint@@V?$QFlags@W4DropAction@Qt@@@@PBVQMimeData@@V?$QFlags@W4MouseButton@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z

??0QDragLeaveEvent@@QAE@ABV0@@Z

??0QDragLeaveEvent@@QAE@XZ

??0QDragMoveEvent@@QAE@ABV0@@Z

??0QDragMoveEvent@@QAE@ABVQPoint@@V?$QFlags@W4DropAction@Qt@@@@PBVQMimeData@@V?$QFlags@W4MouseButton@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@W4Type@QEvent@@@Z

??0QDragResponseEvent@@QAE@ABV0@@Z

??0QDragResponseEvent@@QAE@_N@Z

??0QDropEvent@@QAE@ABV0@@Z

??0QDropEvent@@QAE@ABVQPoint@@V?$QFlags@W4DropAction@Qt@@@@PBVQMimeData@@V?$QFlags@W4MouseButton@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@W4Type@QEvent@@@Z

??0QErrorMessage@@QAE@PAVQWidget@@@Z

??0QFileDialog@@IAE@ABUQFileDialogArgs@@@Z

??0QFileDialog@@QAE@PAVQWidget@@ABVQString@@11@Z

??0QFileDialog@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QFileIconProvider@@QAE@XZ

??0QFileOpenEvent@@QAE@ABV0@@Z

??0QFileOpenEvent@@QAE@ABVQString@@@Z

??0QFileOpenEvent@@QAE@ABVQUrl@@@Z

??0QFileSystemModel@@IAE@AAVQFileSystemModelPrivate@@PAVQObject@@@Z

??0QFileSystemModel@@QAE@PAVQObject@@@Z

??0QFocusEvent@@QAE@ABV0@@Z

??0QFocusEvent@@QAE@W4Type@QEvent@@W4FocusReason@Qt@@@Z

??0QFocusFrame@@QAE@PAVQWidget@@@Z

??0QFont@@AAE@PAVQFontPrivate@@@Z

??0QFont@@QAE@ABV0@@Z

??0QFont@@QAE@ABV0@PAVQPaintDevice@@@Z

??0QFont@@QAE@ABVQString@@HH_N@Z

??0QFont@@QAE@XZ

??0QFontComboBox@@QAE@PAVQWidget@@@Z

??0QFontDatabase@@QAE@XZ

??0QFontDialog@@AAE@PAVQWidget@@_NV?$QFlags@W4WindowType@Qt@@@@@Z

??0QFontDialog@@QAE@ABVQFont@@PAVQWidget@@@Z

??0QFontDialog@@QAE@PAVQWidget@@@Z

??0QFontEngine@@QAE@XZ

??0QFontInfo@@QAE@ABV0@@Z

??0QFontInfo@@QAE@ABVQFont@@@Z

??0QFontMetrics@@QAE@ABV0@@Z

??0QFontMetrics@@QAE@ABVQFont@@@Z

??0QFontMetrics@@QAE@ABVQFont@@PAVQPaintDevice@@@Z

??0QFontMetricsF@@QAE@ABV0@@Z

??0QFontMetricsF@@QAE@ABVQFont@@@Z

??0QFontMetricsF@@QAE@ABVQFont@@PAVQPaintDevice@@@Z

??0QFontMetricsF@@QAE@ABVQFontMetrics@@@Z

??0QFontPrivate@@QAE@ABV0@@Z

??0QFontPrivate@@QAE@XZ

??0QFormLayout@@QAE@PAVQWidget@@@Z

??0QFrame@@IAE@AAVQFramePrivate@@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QFrame@@QAE@PAVQWidget@@PBDV?$QFlags@W4WindowType@Qt@@@@@Z

??0QFrame@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QGesture@@IAE@AAVQGesturePrivate@@PAVQObject@@@Z

??0QGesture@@QAE@PAVQObject@@@Z

??0QGestureEvent@@QAE@ABV0@@Z

??0QGestureEvent@@QAE@ABV?$QList@PAVQGesture@@@@@Z

??0QGestureRecognizer@@QAE@ABV0@@Z

??0QGestureRecognizer@@QAE@XZ

??0QGlyphRun@@QAE@ABV0@@Z

??0QGlyphRun@@QAE@XZ

??0QGradient@@QAE@ABV0@@Z

??0QGradient@@QAE@XZ

??0QGraphicsAnchor@@AAE@PAVQGraphicsAnchorLayout@@@Z

??0QGraphicsAnchorLayout@@QAE@PAVQGraphicsLayoutItem@@@Z

??0QGraphicsBlurEffect@@QAE@PAVQObject@@@Z

??0QGraphicsColorizeEffect@@QAE@PAVQObject@@@Z

??0QGraphicsDropShadowEffect@@QAE@PAVQObject@@@Z

??0QGraphicsEffect@@IAE@AAVQGraphicsEffectPrivate@@PAVQObject@@@Z

??0QGraphicsEffect@@QAE@PAVQObject@@@Z

??0QGraphicsEffectPrivate@@QAE@ABV0@@Z

??0QGraphicsEffectPrivate@@QAE@XZ

??0QGraphicsEffectSource@@IAE@AAVQGraphicsEffectSourcePrivate@@PAVQObject@@@Z

??0QGraphicsEllipseItem@@QAE@ABVQRectF@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsEllipseItem@@QAE@NNNNPAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsEllipseItem@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsGridLayout@@QAE@PAVQGraphicsLayoutItem@@@Z

??0QGraphicsItem@@IAE@AAVQGraphicsItemPrivate@@PAV0@PAVQGraphicsScene@@@Z

??0QGraphicsItem@@QAE@PAV0@PAVQGraphicsScene@@@Z

??0QGraphicsItemAnimation@@QAE@PAVQObject@@@Z

??0QGraphicsItemGroup@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsItemPrivate@@QAE@ABV0@@Z

??0QGraphicsItemPrivate@@QAE@XZ

??0QGraphicsLayout@@IAE@AAVQGraphicsLayoutPrivate@@PAVQGraphicsLayoutItem@@@Z

??0QGraphicsLayout@@QAE@PAVQGraphicsLayoutItem@@@Z

??0QGraphicsLayoutItem@@IAE@AAVQGraphicsLayoutItemPrivate@@@Z

??0QGraphicsLayoutItem@@QAE@PAV0@_N@Z

??0QGraphicsLineItem@@QAE@ABVQLineF@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsLineItem@@QAE@NNNNPAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsLineItem@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsLinearLayout@@QAE@PAVQGraphicsLayoutItem@@@Z

??0QGraphicsLinearLayout@@QAE@W4Orientation@Qt@@PAVQGraphicsLayoutItem@@@Z

??0QGraphicsObject@@IAE@AAVQGraphicsItemPrivate@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsObject@@QAE@PAVQGraphicsItem@@@Z

??0QGraphicsOpacityEffect@@QAE@PAVQObject@@@Z

??0QGraphicsPathItem@@QAE@ABVQPainterPath@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsPathItem@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsPixmapItem@@QAE@ABVQPixmap@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsPixmapItem@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsPolygonItem@@QAE@ABVQPolygonF@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsPolygonItem@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsProxyWidget@@QAE@PAVQGraphicsItem@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QGraphicsRectItem@@QAE@ABVQRectF@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsRectItem@@QAE@NNNNPAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsRectItem@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsRotation@@QAE@PAVQObject@@@Z

??0QGraphicsScale@@QAE@PAVQObject@@@Z

??0QGraphicsScene@@QAE@ABVQRectF@@PAVQObject@@@Z

??0QGraphicsScene@@QAE@NNNNPAVQObject@@@Z

??0QGraphicsScene@@QAE@PAVQObject@@@Z

??0QGraphicsSceneContextMenuEvent@@QAE@W4Type@QEvent@@@Z

??0QGraphicsSceneDragDropEvent@@QAE@W4Type@QEvent@@@Z

??0QGraphicsSceneEvent@@IAE@AAVQGraphicsSceneEventPrivate@@W4Type@QEvent@@@Z

??0QGraphicsSceneEvent@@QAE@W4Type@QEvent@@@Z

??0QGraphicsSceneHelpEvent@@QAE@W4Type@QEvent@@@Z

??0QGraphicsSceneHoverEvent@@QAE@W4Type@QEvent@@@Z

??0QGraphicsSceneMouseEvent@@QAE@W4Type@QEvent@@@Z

??0QGraphicsSceneMoveEvent@@QAE@XZ

??0QGraphicsSceneResizeEvent@@QAE@XZ

??0QGraphicsSceneWheelEvent@@QAE@W4Type@QEvent@@@Z

??0QGraphicsSimpleTextItem@@QAE@ABVQString@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsSimpleTextItem@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsSystem@@QAE@ABV0@@Z

??0QGraphicsSystem@@QAE@XZ

??0QGraphicsSystemPlugin@@QAE@PAVQObject@@@Z

??0QGraphicsTextItem@@QAE@ABVQString@@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsTextItem@@QAE@PAVQGraphicsItem@@PAVQGraphicsScene@@@Z

??0QGraphicsTransform@@IAE@AAVQGraphicsTransformPrivate@@PAVQObject@@@Z

??0QGraphicsTransform@@QAE@PAVQObject@@@Z

??0QGraphicsView@@IAE@AAVQGraphicsViewPrivate@@PAVQWidget@@@Z

??0QGraphicsView@@QAE@PAVQGraphicsScene@@PAVQWidget@@@Z

??0QGraphicsView@@QAE@PAVQWidget@@@Z

??0QGraphicsViewPrivate@@QAE@XZ

??0QGraphicsWidget@@IAE@AAVQGraphicsWidgetPrivate@@PAVQGraphicsItem@@PAVQGraphicsScene@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QGraphicsWidget@@QAE@PAVQGraphicsItem@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QGridLayout@@QAE@HHHPBD@Z

??0QGridLayout@@QAE@PAVQLayout@@HHHPBD@Z

??0QGridLayout@@QAE@PAVQWidget@@@Z

??0QGridLayout@@QAE@PAVQWidget@@HHHHPBD@Z

??0QGridLayout@@QAE@XZ

??0QGroupBox@@QAE@ABVQString@@PAVQWidget@@@Z

??0QGroupBox@@QAE@ABVQString@@PAVQWidget@@PBD@Z

??0QGroupBox@@QAE@PAVQWidget@@@Z

??0QGroupBox@@QAE@PAVQWidget@@PBD@Z

??0QGuiPlatformPlugin@@QAE@PAVQObject@@@Z

??0QGuiPlatformPluginInterface@@QAE@ABU0@@Z

??0QGuiPlatformPluginInterface@@QAE@XZ

??0QHBoxLayout@@QAE@HPBD@Z

??0QHBoxLayout@@QAE@PAVQLayout@@HPBD@Z

??0QHBoxLayout@@QAE@PAVQWidget@@@Z

??0QHBoxLayout@@QAE@PAVQWidget@@HHPBD@Z

??0QHBoxLayout@@QAE@XZ

??0QHeaderView@@IAE@AAVQHeaderViewPrivate@@W4Orientation@Qt@@PAVQWidget@@@Z

??0QHeaderView@@QAE@W4Orientation@Qt@@PAVQWidget@@@Z

??0QHelpEvent@@QAE@ABV0@@Z

??0QHelpEvent@@QAE@W4Type@QEvent@@ABVQPoint@@1@Z

??0QHideEvent@@QAE@ABV0@@Z

??0QHideEvent@@QAE@XZ

??0QHoverEvent@@QAE@ABV0@@Z

??0QHoverEvent@@QAE@W4Type@QEvent@@ABVQPoint@@1@Z

??0QIcon@@QAE@ABV0@@Z

??0QIcon@@QAE@ABVQPixmap@@@Z

??0QIcon@@QAE@ABVQString@@@Z

??0QIcon@@QAE@PAVQIconEngine@@@Z

??0QIcon@@QAE@PAVQIconEngineV2@@@Z

??0QIcon@@QAE@XZ

??0QIconDragEvent@@QAE@ABV0@@Z

??0QIconDragEvent@@QAE@XZ

??0QIconEngine@@QAE@ABV0@@Z

??0QIconEngine@@QAE@XZ

??0QIconEngineFactoryInterface@@QAE@ABU0@@Z

??0QIconEngineFactoryInterface@@QAE@XZ

??0QIconEngineFactoryInterfaceV2@@QAE@ABU0@@Z

??0QIconEngineFactoryInterfaceV2@@QAE@XZ

??0QIconEnginePlugin@@QAE@PAVQObject@@@Z

??0QIconEnginePluginV2@@QAE@PAVQObject@@@Z

??0QIconEngineV2@@QAE@ABV0@@Z

??0QIconEngineV2@@QAE@XZ

??0QIdentityProxyModel@@IAE@AAVQIdentityProxyModelPrivate@@PAVQObject@@@Z

??0QIdentityProxyModel@@QAE@PAVQObject@@@Z

??0QImage@@QAE@ABV0@@Z

??0QImage@@QAE@ABVQByteArray@@@Z

??0QImage@@QAE@ABVQSize@@HHW4Endian@0@@Z

??0QImage@@QAE@ABVQSize@@W4Format@0@@Z

??0QImage@@QAE@ABVQString@@PBD@Z

??0QImage@@QAE@HHHHW4Endian@0@@Z

??0QImage@@QAE@HHW4Format@0@@Z

??0QImage@@QAE@PAEHHHPBIHW4Endian@0@@Z

??0QImage@@QAE@PAEHHHW4Format@0@@Z

??0QImage@@QAE@PAEHHW4Format@0@@Z

??0QImage@@QAE@PBD0@Z

??0QImage@@QAE@PBEHHHW4Format@0@@Z

??0QImage@@QAE@PBEHHW4Format@0@@Z

??0QImage@@QAE@QBQBD@Z

??0QImage@@QAE@XZ

??0QImageData@@QAE@ABU0@@Z

??0QImageData@@QAE@XZ

??0QImageIOHandler@@IAE@AAVQImageIOHandlerPrivate@@@Z

??0QImageIOHandler@@QAE@XZ

??0QImageIOHandlerFactoryInterface@@QAE@ABU0@@Z

??0QImageIOHandlerFactoryInterface@@QAE@XZ

??0QImageIOPlugin@@QAE@PAVQObject@@@Z

??0QImagePixmapCleanupHooks@@QAE@ABV0@@Z

??0QImagePixmapCleanupHooks@@QAE@XZ

??0QImageReader@@QAE@ABVQString@@ABVQByteArray@@@Z

??0QImageReader@@QAE@PAVQIODevice@@ABVQByteArray@@@Z

??0QImageReader@@QAE@XZ

??0QImageTextKeyLang@@QAE@ABV0@@Z

??0QImageTextKeyLang@@QAE@PBD0@Z

??0QImageTextKeyLang@@QAE@XZ

??0QImageTextureGlyphCache@@QAE@ABV0@@Z

??0QImageTextureGlyphCache@@QAE@W4Type@QFontEngineGlyphCache@@ABVQTransform@@@Z

??0QImageWriter@@QAE@ABVQString@@ABVQByteArray@@@Z

??0QImageWriter@@QAE@PAVQIODevice@@ABVQByteArray@@@Z

??0QImageWriter@@QAE@XZ

??0QInputContext@@QAE@PAVQObject@@@Z

??0QInputContextFactoryInterface@@QAE@ABU0@@Z

??0QInputContextFactoryInterface@@QAE@XZ

??0QInputContextPlugin@@QAE@PAVQObject@@@Z

??0QInputDialog@@AAE@ABVQString@@0PAVQWidget@@1V?$QFlags@W4WindowType@Qt@@@@@Z

??0QInputDialog@@AAE@ABVQString@@PAVQWidget@@W4Type@0@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QInputDialog@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QInputEvent@@QAE@ABV0@@Z

??0QInputEvent@@QAE@W4Type@QEvent@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z

??0QInputMethodEvent@@QAE@ABV0@@Z

??0QInputMethodEvent@@QAE@ABVQString@@ABV?$QList@VAttribute@QInputMethodEvent@@@@@Z

??0QInputMethodEvent@@QAE@XZ

??0QIntValidator@@QAE@HHPAVQObject@@@Z

??0QIntValidator@@QAE@HHPAVQObject@@PBD@Z

??0QIntValidator@@QAE@PAVQObject@@@Z

??0QIntValidator@@QAE@PAVQObject@@PBD@Z

??0QInternalMimeData@@QAE@XZ

??0QItemDelegate@@QAE@PAVQObject@@@Z

??0QItemEditorCreatorBase@@QAE@ABV0@@Z

??0QItemEditorCreatorBase@@QAE@XZ

??0QItemEditorFactory@@QAE@ABV0@@Z

??0QItemEditorFactory@@QAE@XZ

??0QItemSelection@@QAE@ABV0@@Z

??0QItemSelection@@QAE@ABVQModelIndex@@0@Z

??0QItemSelection@@QAE@XZ

??0QItemSelectionModel@@IAE@AAVQItemSelectionModelPrivate@@PAVQAbstractItemModel@@@Z

??0QItemSelectionModel@@QAE@PAVQAbstractItemModel@@@Z

??0QItemSelectionModel@@QAE@PAVQAbstractItemModel@@PAVQObject@@@Z

??0QItemSelectionRange@@QAE@ABV0@@Z

??0QItemSelectionRange@@QAE@ABVQModelIndex@@0@Z

??0QItemSelectionRange@@QAE@ABVQModelIndex@@@Z

??0QItemSelectionRange@@QAE@XZ

??0QKeyEvent@@QAE@ABV0@@Z

??0QKeyEvent@@QAE@W4Type@QEvent@@HHHABVQString@@_NG@Z

??0QKeyEvent@@QAE@W4Type@QEvent@@HV?$QFlags@W4KeyboardModifier@Qt@@@@ABVQString@@_NG@Z

??0QKeyEventTransition@@QAE@PAVQObject@@W4Type@QEvent@@HPAVQState@@@Z

??0QKeyEventTransition@@QAE@PAVQState@@@Z

??0QKeySequence@@QAE@ABV0@@Z

??0QKeySequence@@QAE@ABVQString@@@Z

??0QKeySequence@@QAE@ABVQString@@W4SequenceFormat@0@@Z

??0QKeySequence@@QAE@HHHH@Z

??0QKeySequence@@QAE@W4StandardKey@0@@Z

??0QKeySequence@@QAE@XZ

??0QLCDNumber@@QAE@IPAVQWidget@@@Z

??0QLCDNumber@@QAE@IPAVQWidget@@PBD@Z

??0QLCDNumber@@QAE@PAVQWidget@@@Z

??0QLCDNumber@@QAE@PAVQWidget@@PBD@Z

??0QLabel@@QAE@ABVQString@@PAVQWidget@@PBDV?$QFlags@W4WindowType@Qt@@@@@Z

??0QLabel@@QAE@ABVQString@@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QLabel@@QAE@PAVQWidget@@ABVQString@@0PBDV?$QFlags@W4WindowType@Qt@@@@@Z

??0QLabel@@QAE@PAVQWidget@@PBDV?$QFlags@W4WindowType@Qt@@@@@Z

??0QLabel@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

??0QLayout@@IAE@AAVQLayoutPrivate@@PAV0@PAVQWidget@@@Z

??0QLayout@@QAE@HPBD@Z

??0QLayout@@QAE@PAV0@HPBD@Z

??0QLayout@@QAE@PAVQWidget@@@Z

??0QLayout@@QAE@PAVQWidget@@HHPBD@Z

??0QLayout@@QAE@XZ

??0QLayoutItem@@QAE@ABV0@@Z

??0QLayoutItem@@QAE@V?$QFlags@W4AlignmentFlag@Qt@@@@@Z

??0QLayoutIterator@@AAE@PAVQLayout@@_N@Z

??0QLayoutIterator@@QAE@ABV0@@Z

??0QLayoutIterator@@QAE@PAVQLayout@@@Z

??0QLayoutPrivate@@QAE@ABV0@@Z

??0QLayoutPrivate@@QAE@XZ

??0QLineControl@@QAE@ABVQString@@@Z

??0QLineEdit@@QAE@ABVQString@@0PAVQWidget@@PBD@Z

??0QLineEdit@@QAE@ABVQString@@PAVQWidget@@@Z

??0QLineEdit@@QAE@ABVQString@@PAVQWidget@@PBD@Z

??0QLineEdit@@QAE@PAVQWidget@@@Z

??0QLineEdit@@QAE@PAVQWidget@@PBD@Z

??0QLinearGradient@@QAE@ABV0@@Z

??0QLinearGradient@@QAE@ABVQPointF@@0@Z

??0QLinearGradient@@QAE@NNNN@Z

??0QLinearGradient@@QAE@XZ

??0QListView@@IAE@AAVQListViewPrivate@@PAVQWidget@@@Z

??0QListView@@QAE@PAVQWidget@@@Z

??0QListWidget@@QAE@PAVQWidget@@@Z

??0QListWidgetItem@@QAE@ABV0@@Z

Sections

.text
Size: 5.6MB - Virtual size: 5.6MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 478KB - Virtual size: 478KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/QtNetwork4.dll

.dll windows:5 windows x86 arch:x86

51d391f74bdd44264db9d63f1a545d8d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

ws2_32

WSASend

closesocket

select

__WSAFDIsSet

WSASendTo

WSARecv

WSARecvFrom

WSAAccept

listen

bind

WSAConnect

getsockname

getpeername

setsockopt

WSASocketW

WSAIoctl

WSACleanup

WSAStartup

WSAHtons

WSAHtonl

WSANtohs

WSANtohl

getsockopt

inet_addr

gethostbyaddr

ntohl

gethostbyname

WSAGetLastError

gethostname

htonl

qtcore4

?size@QListData@@QBEHXZ

?ref@QBasicAtomicInt@@QAE_NXZ

?shared_null@QListData@@2UData@1@A

?isEmpty@QListData@@QBE_NXZ

?at@QListData@@QBEPAPAXH@Z

??0QChar@@QAE@UQLatin1Char@@@Z

?latin1@QLatin1String@@QBEPBDXZ

?size@QString@@QBEHXZ

?constData@QString@@QBEPBVQChar@@XZ

??0QString@@QAE@XZ

??0QObject@@QAE@PAV0@@Z

?event@QObject@@UAE_NPAVQEvent@@@Z

?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z

?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z

?childEvent@QObject@@MAEXPAVQChildEvent@@@Z

?customEvent@QObject@@MAEXPAVQEvent@@@Z

?connectNotify@QObject@@MAEXPBD@Z

?disconnectNotify@QObject@@MAEXPBD@Z

?remove@QByteArray@@QAEAAV1@HH@Z

?data@QByteArray@@QAEPADXZ

?read@QIODevice@@QAE_JPAD_J@Z

?write@QIODevice@@QAE_JPBD_J@Z

??0QVariant@@QAE@H@Z

?arg@QString@@QBE?AV1@ABV1@HABVQChar@@@Z

?erase@QListData@@QAEPAPAXPAPAX@Z

?qFree@@YAXPAX@Z

??0QDate@@QAE@HHH@Z

??4QDateTime@@QAEAAV0@ABV0@@Z

?toDateTime@QLocale@@QBE?AVQDateTime@@ABVQString@@0@Z

??0QLocale@@QAE@W4Language@0@W4Country@0@@Z

??0QDateTime@@QAE@XZ

??4QString@@QAEAAV0@$$QAV0@@Z

?mid@QString@@QBE?AV1@HH@Z

?lastIndexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z

?toLongLong@QString@@QBE_JPA_NH@Z

??8QString@@QBE_NABVQLatin1String@@@Z

?endsWith@QString@@QBE_NABVQLatin1String@@W4CaseSensitivity@Qt@@@Z

?toLower@QString@@QBE?AV1@XZ

?resize@QString@@QAEXH@Z

?data@QString@@QAEPAVQChar@@XZ

?reserve@QString@@QAEXH@Z

?deref@QBasicAtomicInt@@QAE_NXZ

??0QString@@QAE@HW4Initialization@Qt@@@Z

?end@QListData@@QBEPAPAXXZ

?detach_grow@QListData@@QAEPAUData@1@PAHH@Z

?begin@QListData@@QBEPAPAXXZ

?detach@QListData@@QAEPAUData@1@H@Z

?prepend@QListData@@QAEPAPAXXZ

??9QBasicAtomicInt@@QBE_NH@Z

?append@QListData@@QAEPAPAXXZ

??1QObjectPrivate@@UAE@XZ

??0QObjectPrivate@@QAE@H@Z

?singleShot@QTimer@@SAXHPAVQObject@@PBD@Z

??0QObject@@IAE@AAVQObjectPrivate@@PAV0@@Z

??8QString@@QBE_NABV0@@Z

??BQCharRef@@QBE?AVQChar@@XZ

?startsWith@QString@@QBE_NABVQLatin1String@@W4CaseSensitivity@Qt@@@Z

?currentDate@QDate@@SA?AV1@XZ

?isValid@QDateTime@@QBE_NXZ

??4QCharRef@@QAEAAV0@ABVQChar@@@Z

?toUpper@QCharRef@@QBE?AVQChar@@XZ

??AQString@@QAE?AVQCharRef@@H@Z

?indexOf@QString@@QBEHABVQLatin1String@@HW4CaseSensitivity@Qt@@@Z

?toLatin1@QChar@@QBE?BDXZ

?at@QString@@QBE?BVQChar@@H@Z

??1QRegExp@@QAE@XZ

?capturedTexts@QRegExp@@QAE?AVQStringList@@XZ

?indexIn@QRegExp@@QBEHABVQString@@HW4CaretMode@1@@Z

??0QRegExp@@QAE@ABVQString@@W4CaseSensitivity@Qt@@W4PatternSyntax@0@@Z

?trimmed@QString@@QBE?AV1@XZ

?fromLatin1@QString@@SA?AV1@PBDH@Z

??BQByteArray@@QBEPBDXZ

?isEmpty@QByteArray@@QBE_NXZ

?write@QIODevice@@QAE_JABVQByteArray@@@Z

?resize@QByteArray@@QAEXH@Z

?endsWith@QByteArray@@QBE_NPBD@Z

?readLine@QIODevice@@QAE?AVQByteArray@@_J@Z

?isEmpty@QString@@QBE_NXZ

?qt_metacall@QObject@@UAEHW4Call@QMetaObject@@HPAPAX@Z

??0QByteArray@@QAE@ABV0@@Z

?fetchAndAddRelaxed@QBasicAtomicInt@@QAEHH@Z

?number@QString@@SA?AV1@IH@Z

?number@QString@@SA?AV1@HH@Z

?number@QString@@SA?AV1@_JH@Z

?toLatin1@QString@@QBE?AVQByteArray@@XZ

??YQString@@QAEAAV0@ABVQLatin1String@@@Z

??YQString@@QAEAAV0@ABV0@@Z

??YQString@@QAEAAV0@VQChar@@@Z

??4QString@@QAEAAV0@ABVQLatin1String@@@Z

??4QString@@QAEAAV0@ABV0@@Z

?isOpen@QIODevice@@QBE_NXZ

?toUInt@QString@@QBEIPA_NH@Z

?qWarning@@YAXPBDZZ

?simplified@QString@@QBE?AV1@XZ

?toInt@QString@@QBEHPA_NH@Z

?split@QString@@QBE?AVQStringList@@ABVQChar@@W4SplitBehavior@1@W4CaseSensitivity@Qt@@@Z

?indexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z

?chop@QString@@QAEXH@Z

??9QString@@QBE_NABV0@@Z

?left@QString@@QBE?AV1@H@Z

??4QCharRef@@QAEAAV0@H@Z

?digitValue@QCharRef@@QBEHXZ

?length@QString@@QBEHXZ

?fromAscii@QString@@SA?AV1@PBDH@Z

?staticMetaObject@QObject@@2UQMetaObject@@B

?connect@QObject@@SA_NPBV1@PBD01W4ConnectionType@Qt@@@Z

?invokeMethod@QMetaObject@@SA_NPAVQObject@@PBDW4ConnectionType@Qt@@VQGenericArgument@@333333333@Z

??0QGenericArgument@@QAE@PBDPBX@Z

?shared_null@QHashData@@2U1@A

?qHash@@YAIABVQString@@@Z

?start@QTimer@@QAEXH@Z

?contains@QString@@QBE?AVQBool@@ABV1@W4CaseSensitivity@Qt@@@Z

?cast@QMetaObject@@QBEPAVQObject@@PAV2@@Z

?allocateNode@QHashData@@QAEPAXH@Z

?constData@QByteArray@@QBEPBDXZ

?disconnect@QObject@@QAE_NPBDPBV1@0@Z

?free_helper@QHashData@@QAEXP6AXPAUNode@1@@Z@Z

?detach_helper2@QHashData@@QAEPAU1@P6AXPAUNode@1@PAX@ZP6AX0@ZHH@Z

?toLatin1@QCharRef@@QBE?BDXZ

?isDigit@QCharRef@@QBE_NXZ

?arg@QString@@QBE?AV1@HHHABVQChar@@@Z

?remove@QListData@@QAEXH@Z

?willGrow@QHashData@@QAE_NXZ

?split@QString@@QBE?AVQStringList@@ABV1@W4SplitBehavior@1@W4CaseSensitivity@Qt@@@Z

?remove@QListData@@QAEXHH@Z

?squeeze@QByteArray@@QAEXXZ

?isSpace@QCharRef@@QBE_NXZ

?errorString@QIODevice@@QBE?AVQString@@XZ

?blockSignals@QObject@@QAE_N_N@Z

??1QUrl@@QAE@XZ

?toEncoded@QUrl@@QBE?AVQByteArray@@V?$QFlags@W4FormattingOption@QUrl@@@@@Z

?resolved@QUrl@@QBE?AV1@ABV1@@Z

?fromEncoded@QUrl@@SA?AV1@ABVQByteArray@@@Z

?setPort@QUrl@@QAEXH@Z

?setHost@QUrl@@QAEXABVQString@@@Z

?setScheme@QUrl@@QAEXABVQString@@@Z

??0QUrl@@QAE@XZ

?truncate@QString@@QAEXH@Z

?stop@QTimer@@QAEXXZ

??0QTimer@@QAE@PAVQObject@@@Z

??1QTimer@@UAE@XZ

??8QUrl@@QBE_NABV0@@Z

?toULongLong@QByteArray@@QBE_KPA_NH@Z

?qstricmp@@YAHPBD0@Z

??0QUrl@@QAE@ABV0@@Z

??0QSharedData@@QAE@XZ

??4QUrl@@QAEAAV0@ABV0@@Z

??0QSharedData@@QAE@ABV0@@Z

?number@QByteArray@@SA?AV1@_JH@Z

??0QByteArray@@QAE@PBD@Z

??YQByteArray@@QAEAAV0@ABV0@@Z

??YQByteArray@@QAEAAV0@PBD@Z

??YQByteArray@@QAEAAV0@D@Z

?path@QUrl@@QBE?AVQString@@XZ

?encodedQuery@QUrl@@QBE?AVQByteArray@@XZ

?hasQuery@QUrl@@QBE_NXZ

?number@QByteArray@@SA?AV1@HH@Z

?reserve@QByteArray@@QAEXH@Z

??BQByteRef@@QBE?BDXZ

??9QByteRef@@QBE_ND@Z

??AQByteArray@@QAE?AVQByteRef@@H@Z

inflateEnd

?toInt@QByteArray@@QBEHPA_NH@Z

?mid@QByteArray@@QBE?AV1@HH@Z

?indexOf@QByteArray@@QBEHDH@Z

?at@QByteArray@@QBE?BDH@Z

?startsWith@QByteArray@@QBE_NPBD@Z

?length@QByteArray@@QBEHXZ

?toLong@QByteArray@@QBEJPA_NH@Z

?trimmed@QByteArray@@QBE?AV1@XZ

?append@QByteArray@@QAEAAV1@D@Z

?endsWith@QByteArray@@QBE_ND@Z

?peek@QIODevice@@QAE_JPAD_J@Z

?addGuard@QMetaObject@@SAXPAPAVQObject@@@Z

?removeGuard@QMetaObject@@SAXPAPAVQObject@@@Z

?changeGuard@QMetaObject@@SAXPAPAVQObject@@PAV2@@Z

?append@QByteArray@@QAEAAV1@ABV1@@Z

??0QByteArray@@QAE@PBDH@Z

inflate

inflateInit2_

?truncate@QByteArray@@QAEXH@Z

?toLower@QByteArray@@QBE?AV1@XZ

??1QByteArrayMatcher@@QAE@XZ

??AQByteArray@@QBE?BDH@Z

?indexIn@QByteArrayMatcher@@QBEHABVQByteArray@@H@Z

?count@QByteArray@@QBEHXZ

??0QByteArrayMatcher@@QAE@ABVQByteArray@@@Z

?contains@QByteArray@@QBE?AVQBool@@PBD@Z

?append2@QListData@@QAEPAPAXABU1@@Z

?append@QByteArray@@QAEAAV1@PBDH@Z

?qFatal@@YAXPBDZZ

?compare@QString@@QBEHABV1@@Z

?translate@QCoreApplication@@SA?AVQString@@PBD00W4Encoding@1@@Z

?end@QByteArray@@QBEPBDXZ

??0QByteArray@@QAE@HW4Initialization@Qt@@@Z

?port@QUrl@@QBEHXZ

?toAce@QUrl@@SA?AVQByteArray@@ABVQString@@@Z

?toAscii@QString@@QBE?AVQByteArray@@XZ

?replace@QString@@QAEAAV1@VQChar@@0W4CaseSensitivity@Qt@@@Z

?fromAscii@QChar@@SA?AV1@D@Z

?name@QLocale@@QBE?AVQString@@XZ

?system@QLocale@@SA?AV1@XZ

?userInfo@QUrl@@QBE?AVQString@@XZ

??0QMutex@@QAE@W4RecursionMode@0@@Z

??1QMutex@@QAE@XZ

?registerType@QMetaType@@SAHPBDP6AXPAX@ZP6APAXPBX@Z@Z

??0QVariant@@QAE@ABVQByteArray@@@Z

?isEmpty@QUrl@@QBE_NXZ

?setUserInfo@QUrl@@QAEXABVQString@@@Z

?password@QUrl@@QBE?AVQString@@XZ

?userName@QUrl@@QBE?AVQString@@XZ

?disconnect@QObject@@SA_NPBV1@PBD01@Z

??1QDebug@@QAE@XZ

??6QDebug@@QAEAAV0@PBD@Z

?qWarning@@YA?AVQDebug@@XZ

?registerTypedef@QMetaType@@SAHPBDH@Z

??BQBasicAtomicInt@@QBEHXZ

??4QBasicAtomicInt@@QAEAAV0@H@Z

??7QBasicAtomicInt@@QBE_NXZ

??0QVariant@@QAE@HPBXI@Z

??6QDebug@@QAEAAV0@_J@Z

??MQString@@QBE_NABV0@@Z

?shared_null@QVectorData@@2U1@A

?free@QVectorData@@SAXPAU1@H@Z

?qBadAlloc@@YAXXZ

?allocate@QVectorData@@SAPAU1@HH@Z

?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z

??8QBasicAtomicInt@@QBE_NH@Z

?grow@QVectorData@@SAHHHH_N@Z

?setFragment@QUrl@@QAEXABVQString@@@Z

?setUserName@QUrl@@QAEXABVQString@@@Z

?scheme@QUrl@@QBE?AVQString@@XZ

?startsWith@QString@@QBE_NABV1@W4CaseSensitivity@Qt@@@Z

??1QMutexLocker@@QAE@XZ

??0QMutexLocker@@QAE@PAVQMutex@@@Z

?setParent@QObject@@QAEXPAV1@@Z

?thread@QObject@@QBEPAVQThread@@XZ

?parent@QObject@@QBEPAV1@XZ

??9QUrl@@QBE_NABV0@@Z

?wait@QThread@@QAE_NK@Z

?quit@QThread@@QAEXXZ

?testAndSetRelaxed@QBasicAtomicInt@@QAE_NHH@Z

?setData@QBuffer@@QAEXABVQByteArray@@@Z

??0QBuffer@@QAE@PAVQObject@@@Z

?metaObject@QBuffer@@UBEPBUQMetaObject@@XZ

?qt_metacast@QBuffer@@UAEPAXPBD@Z

?qt_metacall@QBuffer@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?connectNotify@QBuffer@@MAEXPBD@Z

?disconnectNotify@QBuffer@@MAEXPBD@Z

?isSequential@QIODevice@@UBE_NXZ

?open@QBuffer@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?close@QBuffer@@UAEXXZ

?pos@QBuffer@@UBE_JXZ

?size@QBuffer@@UBE_JXZ

?seek@QBuffer@@UAE_N_J@Z

?atEnd@QBuffer@@UBE_NXZ

?reset@QIODevice@@UAE_NXZ

?bytesAvailable@QIODevice@@UBE_JXZ

?bytesToWrite@QIODevice@@UBE_JXZ

?canReadLine@QBuffer@@UBE_NXZ

?waitForReadyRead@QIODevice@@UAE_NH@Z

?waitForBytesWritten@QIODevice@@UAE_NH@Z

?readData@QBuffer@@MAE_JPAD_J@Z

?readLineData@QIODevice@@MAE_JPAD_J@Z

?writeData@QBuffer@@MAE_JPBD_J@Z

??1QBuffer@@UAE@XZ

?sender@QObject@@IBEPAV1@XZ

?isReadable@QIODevice@@QBE_NXZ

?isValid@QVariant@@QBE_NXZ

?qt_qFindChildren_helper@@YAXPBVQObject@@ABVQString@@PBVQRegExp@@ABUQMetaObject@@PAV?$QList@PAX@@@Z

?toString@QVariant@@QBE?AVQString@@XZ

??0QVariant@@QAE@_J@Z

?toInt@QVariant@@QBEHPA_N@Z

?isLocalFile@QUrl@@QBE_NXZ

?start@QBasicTimer@@QAEXHPAVQObject@@@Z

?stop@QBasicTimer@@QAEXXZ

?nextNode@QHashData@@SAPAUNode@1@PAU21@@Z

?qHash@@YAIABVQByteArray@@@Z

??0QDateTime@@QAE@ABV0@@Z

?freeNode@QHashData@@QAEXPAX@Z

?hasShrunk@QHashData@@QAEXXZ

??MQDateTime@@QBE_NABV0@@Z

?firstNode@QHashData@@QAEPAUNode@1@XZ

?addSecs@QDateTime@@QBE?AV1@H@Z

??1QBasicTimer@@QAE@XZ

??0QVariant@@QAE@ABV0@@Z

?handler@QVariant@@1PBUHandler@1@B

?setQObjectShared@ExternalRefCountData@QtSharedPointer@@QAEXPBVQObject@@_N@Z

?constData@QVariant@@QBEPBXXZ

?userType@QVariant@@QBEHXZ

??4QVariant@@QAEAAV0@ABV0@@Z

?host@QUrl@@QBE?AVQString@@XZ

?disableReset@QNonContiguousByteDevice@@QAEXXZ

??8QVariant@@QBE_NABV0@@Z

??0QVariant@@QAE@_N@Z

?create@QNonContiguousByteDeviceFactory@@SAPAVQNonContiguousByteDevice@@PAVQIODevice@@@Z

?create@QNonContiguousByteDeviceFactory@@SAPAVQNonContiguousByteDevice@@V?$QSharedPointer@VQRingBuffer@@@@@Z

??0QFile@@QAE@XZ

??1QFile@@UAE@XZ

??1QFileInfo@@QAE@XZ

??1QDir@@QAE@XZ

?exists@QDir@@QBE_NXZ

?dir@QFileInfo@@QBE?AVQDir@@XZ

?exists@QFileInfo@@QBE_NXZ

??0QFileInfo@@QAE@ABVQString@@@Z

?toString@QUrl@@QBE?AVQString@@V?$QFlags@W4FormattingOption@QUrl@@@@@Z

?authority@QUrl@@QBE?AVQString@@XZ

?compare@QString@@QBEHABVQLatin1String@@W4CaseSensitivity@Qt@@@Z

?arg@QString@@QBE?AV1@ABV1@0@Z

?flush@QFile@@QAE_NXZ

?isDir@QFileInfo@@QBE_NXZ

?size@QFileInfo@@QBE_JXZ

??0QVariant@@QAE@ABVQDateTime@@@Z

?lastModified@QFileInfo@@QBE?AVQDateTime@@XZ

??0QFileInfo@@QAE@ABVQFile@@@Z

?exists@QFile@@QBE_NXZ

?setFileName@QFile@@QAEXABVQString@@@Z

?toLocalFile@QUrl@@QBE?AVQString@@XZ

?setPath@QUrl@@QAEXABVQString@@@Z

?error@QFile@@QBE?AW4FileError@1@XZ

?tr@QMetaObject@@QBE?AVQString@@PBD0H@Z

??0QVariant@@QAE@XZ

?toUrl@QVariant@@QBE?AVQUrl@@XZ

?fromString@QDateTime@@SA?AV1@ABVQString@@0@Z

?port@QUrl@@QBEHH@Z

?prepend@QString@@QAEAAV1@ABVQLatin1String@@@Z

?wrap@QNonContiguousByteDeviceFactory@@SAPAVQIODevice@@PAVQNonContiguousByteDevice@@@Z

?endsWith@QString@@QBE_NABVQChar@@W4CaseSensitivity@Qt@@@Z

??1QNonContiguousByteDevice@@UAE@XZ

??0QNonContiguousByteDevice@@IAE@XZ

??4QUrl@@QAEAAV0@$$QAV0@@Z

??0QUrl@@QAE@ABVQString@@@Z

?isValid@QUrl@@QBE_NXZ

?fetchAndAddAcquire@QBasicAtomicInt@@QAEHH@Z

??0QAtomicInt@@QAE@H@Z

?activate@QMetaObject@@SAXPAVQObject@@PBU1@HPAPAX@Z

??NQByteRef@@QBE_ND@Z

??PQByteRef@@QBE_ND@Z

??8QByteRef@@QBE_ND@Z

?moveToThread@QObject@@QAEXPAVQThread@@@Z

?toLongLong@QVariant@@QBE_JPA_N@Z

?toBool@QVariant@@QBE_NXZ

?toByteArray@QVariant@@QBE?AVQByteArray@@XZ

?number@QByteArray@@SA?AV1@_KH@Z

?left@QByteArray@@QBE?AV1@H@Z

?start@QThread@@QAEXW4Priority@1@@Z

??0QThread@@QAE@PAVQObject@@@Z

?metaObject@QThread@@UBEPBUQMetaObject@@XZ

?qt_metacast@QThread@@UAEPAXPBD@Z

?qt_metacall@QThread@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?run@QThread@@MAEXXZ

??1QThread@@UAE@XZ

??8QDateTime@@QBE_NABV0@@Z

?toUTC@QDateTime@@QBE?AV1@XZ

?toPercentEncoding@QUrl@@SA?AVQByteArray@@ABVQString@@ABV2@1@Z

?startsWith@QString@@QBE_NABVQChar@@W4CaseSensitivity@Qt@@@Z

?toString@QLocale@@QBE?AVQString@@ABVQDateTime@@ABV2@@Z

?replace@QByteArray@@QAEAAV1@DPBD@Z

?startsWith@QByteArray@@QBE_ND@Z

?contains@QByteArray@@QBE?AVQBool@@D@Z

??6QTextStream@@QAEAAV0@D@Z

??6QDebug@@QAEAAV0@ABVQByteArray@@@Z

?isNull@QByteArray@@QBE_NXZ

??0QDateTime@@QAE@ABVQDate@@ABVQTime@@W4TimeSpec@Qt@@@Z

?isValid@QDate@@QBE_NXZ

?matchedLength@QRegExp@@QBEHXZ

??0QTime@@QAE@HHHH@Z

?fromPercentEncoding@QUrl@@SA?AVQString@@ABVQByteArray@@@Z

?fromAce@QUrl@@SA?AVQString@@ABVQByteArray@@@Z

?fromUtf8@QString@@SA?AV1@PBDH@Z

??4QString@@QAEAAV0@VQChar@@@Z

?split@QByteArray@@QBE?AV?$QList@VQByteArray@@@@D@Z

?endsWith@QString@@QBE_NABV1@W4CaseSensitivity@Qt@@@Z

?insert@QListData@@QAEPAPAXH@Z

?qIsEffectiveTLD@@YA_NABVQString@@@Z

?remove@QString@@QAEAAV1@HH@Z

?setTimeSpec@QDateTime@@QAEXW4TimeSpec@Qt@@@Z

?fromString@QDateTime@@SA?AV1@ABVQString@@W4DateFormat@Qt@@@Z

?getAndRef@ExternalRefCountData@QtSharedPointer@@SAPAU12@PBVQObject@@@Z

?toDateTime@QVariant@@QBE?AVQDateTime@@XZ

?type@QVariant@@QBE?AW4Type@1@XZ

??0QVariant@@QAE@ABVQUrl@@@Z

?fromEncoded@QUrl@@SA?AV1@ABVQByteArray@@W4ParsingMode@1@@Z

?toLongLong@QByteArray@@QBE_JPA_NH@Z

?typeName@QVariant@@QBEPBDXZ

?isNull@QVariant@@QBE_NXZ

??0QIODevice@@IAE@AAVQIODevicePrivate@@PAVQObject@@@Z

?open@QIODevice@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?pos@QIODevice@@UBE_JXZ

?size@QIODevice@@UBE_JXZ

?seek@QIODevice@@UAE_N_J@Z

?atEnd@QIODevice@@UBE_NXZ

?canReadLine@QIODevice@@UBE_NXZ

??1QIODevice@@UAE@XZ

?close@QIODevice@@UAEXXZ

?indexOfMethod@QMetaObject@@QBEHPBD@Z

?setErrorString@QIODevice@@IAEXABVQString@@@Z

??1QIODevicePrivate@@UAE@XZ

??0QIODevicePrivate@@QAE@XZ

?putCharHelper@QIODevicePrivate@@UAE_ND@Z

?peek@QIODevicePrivate@@UAE?AVQByteArray@@_J@Z

?peek@QIODevicePrivate@@UAE_JPAD_J@Z

?qCritical@@YAXPBDZZ

?qDebug@@YAXPBDZZ

?className@QMetaObject@@QBEPBDXZ

?cmp@QVariant@@IBE_NABV1@@Z

?postEvent@QCoreApplication@@SAXPAVQObject@@PAVQEvent@@@Z

??0QEvent@@QAE@W4Type@0@@Z

??1QEvent@@UAE@XZ

?readyRead@QIODevice@@IAEXXZ

??4QVariant@@QAEAAV0@$$QAV0@@Z

?readChannelFinished@QIODevice@@IAEXXZ

?deleteLater@QObject@@QAEXXZ

?qMemCopy@@YAPAXPAXPBXI@Z

?type@QEvent@@QBE?AW4Type@1@XZ

?setBuffer@QBuffer@@QAEXPAVQByteArray@@@Z

?qDecodeDataUrl@@YA?AU?$QPair@VQString@@VQByteArray@@@@ABVQUrl@@@Z

?fileName@QFile@@QBE?AVQString@@XZ

?previousNode@QHashData@@SAPAUNode@1@PAU21@@Z

??6@YAAAVQDataStream@@AAV0@ABVQByteArray@@@Z

??5@YAAAVQDataStream@@AAV0@AAVQByteArray@@@Z

??6QDataStream@@QAEAAV0@I@Z

??6QDataStream@@QAEAAV0@H@Z

??6@YAAAVQDataStream@@AAV0@ABVQVariant@@@Z

?realloc@QListData@@QAEXH@Z

?atEnd@QDataStream@@QBE_NXZ

??5QDataStream@@QAEAAV0@AAI@Z

?setStatus@QDataStream@@QAEXW4Status@1@@Z

??5@YAAAVQDataStream@@AAV0@AAVQVariant@@@Z

??5QDataStream@@QAEAAV0@AAH@Z

?resetStatus@QDataStream@@QAEXXZ

?status@QDataStream@@QBE?AW4Status@1@XZ

??6QDataStream@@QAEAAV0@_N@Z

??6@YAAAVQDataStream@@AAV0@ABVQDateTime@@@Z

??6@YAAAVQDataStream@@AAV0@ABVQUrl@@@Z

?setPassword@QUrl@@QAEXABVQString@@@Z

??5QDataStream@@QAEAAV0@AA_N@Z

??5@YAAAVQDataStream@@AAV0@AAVQDateTime@@@Z

??5@YAAAVQDataStream@@AAV0@AAVQUrl@@@Z

?qCompress@@YA?AVQByteArray@@PBEHH@Z

?qUncompress@@YA?AVQByteArray@@PBEH@Z

?remove@QFile@@SA_NABVQString@@@Z

?fileName@QFileInfo@@QBE?AVQString@@XZ

??1QDataStream@@UAE@XZ

?data@QBuffer@@QBEABVQByteArray@@XZ

??0QDataStream@@QAE@PAVQIODevice@@@Z

?shared_null@QMapData@@2U1@A

?continueFreeData@QMapData@@QAEXH@Z

?node_delete@QMapData@@QAEXQAPAUNode@1@HPAU21@@Z

?node_create@QMapData@@QAEPAUNode@1@QAPAU21@HH@Z

?createData@QMapData@@SAPAU1@H@Z

?mkdir@QDir@@QBE_NABVQString@@@Z

?mkpath@QDir@@QBE_NABVQString@@@Z

??0QDir@@QAE@ABVQString@@@Z

?absolutePath@QDir@@QBE?AVQString@@XZ

??1QCryptographicHash@@QAE@XZ

?result@QCryptographicHash@@QBE?AVQByteArray@@XZ

?addData@QCryptographicHash@@QAEXABVQByteArray@@@Z

??0QCryptographicHash@@QAE@W4Algorithm@0@@Z

?close@QFile@@UAEXXZ

?open@QFile@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??0QFile@@QAE@ABVQString@@@Z

?setData@QBuffer@@QAEXPBDH@Z

?map@QFile@@QAEPAE_J0W4MemoryMapFlags@1@@Z

?metaObject@QFile@@UBEPBUQMetaObject@@XZ

?qt_metacast@QFile@@UAEPAXPBD@Z

?qt_metacall@QFile@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?isSequential@QFile@@UBE_NXZ

?pos@QFile@@UBE_JXZ

?size@QFile@@UBE_JXZ

?seek@QFile@@UAE_N_J@Z

?atEnd@QFile@@UBE_NXZ

?readData@QFile@@MAE_JPAD_J@Z

?readLineData@QFile@@MAE_JPAD_J@Z

?writeData@QFile@@MAE_JPBD_J@Z

?fileEngine@QFile@@UBEPAVQAbstractFileEngine@@XZ

??1QDirIterator@@UAE@XZ

?remove@QFile@@QAE_NXZ

?created@QFileInfo@@QBE?AVQDateTime@@XZ

?fileInfo@QDirIterator@@QBE?AVQFileInfo@@XZ

?next@QDirIterator@@QAE?AVQString@@XZ

?hasNext@QDirIterator@@QBE_NXZ

??0QDirIterator@@QAE@ABVQString@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z

?open@QTemporaryFile@@QAE_NXZ

??0QTemporaryFile@@QAE@ABVQString@@PAVQObject@@@Z

?metaObject@QTemporaryFile@@UBEPBUQMetaObject@@XZ

?qt_metacast@QTemporaryFile@@UAEPAXPBD@Z

?qt_metacall@QTemporaryFile@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?open@QTemporaryFile@@MAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?fileEngine@QTemporaryFile@@UBEPAVQAbstractFileEngine@@XZ

??1QTemporaryFile@@UAE@XZ

?rename@QFile@@QAE_NABVQString@@@Z

?setAutoRemove@QTemporaryFile@@QAEX_N@Z

??6QDebug@@QAEAAV0@ABVQString@@@Z

?exists@QFile@@SA_NABVQString@@@Z

??6@YA?AVQDebug@@V0@PBVQObject@@@Z

??1QThreadStorageData@@QAE@XZ

?get@QThreadStorageData@@QBEPAPAXXZ

?set@QThreadStorageData@@QAEPAPAXPAX@Z

?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ

msvcr100

__clean_type_info_names_internal

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_crt_debugger_hook

__CppXcptFilter

_amsg_exit

_initterm_e

_initterm

_encoded_null

_malloc_crt

_onexit

_lock

__dllonexit

_unlock

?terminate@@YAXXZ

malloc

free

sprintf_s

memset

strncmp

sscanf

tolower

atoi

strchr

memmove

_purecall

??_V@YAXPAX@Z

??2@YAPAXI@Z

??3@YAXPAX@Z

_CxxThrowException

memcpy

__CxxFrameHandler3

_except_handler4_common

kernel32

GetSystemTimeAsFileTime

GetCurrentThreadId

GetTickCount

QueryPerformanceCounter

DisableThreadLibraryCalls

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

InterlockedCompareExchange

InterlockedExchange

DecodePointer

EncodePointer

LoadLibraryW

CreateNamedPipeW

ConnectNamedPipe

SetEvent

CreateFileW

WaitNamedPipeW

WaitForSingleObject

ReadFile

GetOverlappedResult

ResetEvent

Sleep

PeekNamedPipe

DisconnectNamedPipe

CloseHandle

CreateEventW

GetLastError

GetCurrentProcessId

GetProcAddress

GlobalFree

Exports

??0QAbstractNetworkCache@@IAE@AAVQAbstractNetworkCachePrivate@@PAVQObject@@@Z

??0QAbstractNetworkCache@@IAE@PAVQObject@@@Z

??0QAbstractSocket@@IAE@W4SocketType@0@AAVQAbstractSocketPrivate@@PAVQObject@@@Z

??0QAbstractSocket@@QAE@W4SocketType@0@PAVQObject@@@Z

??0QAuthenticator@@QAE@ABV0@@Z

??0QAuthenticator@@QAE@XZ

??0QBearerEngine@@QAE@PAVQObject@@@Z

??0QBearerEngineFactoryInterface@@QAE@ABU0@@Z

??0QBearerEngineFactoryInterface@@QAE@XZ

??0QBearerEnginePlugin@@QAE@PAVQObject@@@Z

??0QFtp@@QAE@PAVQObject@@@Z

??0QFtp@@QAE@PAVQObject@@PBD@Z

??0QHostAddress@@QAE@ABV0@@Z

??0QHostAddress@@QAE@ABVQIPv6Address@@@Z

??0QHostAddress@@QAE@ABVQString@@@Z

??0QHostAddress@@QAE@I@Z

??0QHostAddress@@QAE@PAE@Z

??0QHostAddress@@QAE@PBUsockaddr@@@Z

??0QHostAddress@@QAE@W4SpecialAddress@0@@Z

??0QHostAddress@@QAE@XZ

??0QHostInfo@@QAE@ABV0@@Z

??0QHostInfo@@QAE@H@Z

??0QHttp@@QAE@ABVQString@@GPAVQObject@@@Z

??0QHttp@@QAE@ABVQString@@W4ConnectionMode@0@GPAVQObject@@@Z

??0QHttp@@QAE@PAVQObject@@@Z

??0QHttpHeader@@IAE@AAVQHttpHeaderPrivate@@ABV0@@Z

??0QHttpHeader@@IAE@AAVQHttpHeaderPrivate@@ABVQString@@@Z

??0QHttpHeader@@QAE@ABV0@@Z

??0QHttpHeader@@QAE@ABVQString@@@Z

??0QHttpHeader@@QAE@XZ

??0QHttpMultiPart@@QAE@PAVQObject@@@Z

??0QHttpMultiPart@@QAE@W4ContentType@0@PAVQObject@@@Z

??0QHttpPart@@QAE@ABV0@@Z

??0QHttpPart@@QAE@XZ

??0QHttpRequestHeader@@QAE@ABV0@@Z

??0QHttpRequestHeader@@QAE@ABVQString@@0HH@Z

??0QHttpRequestHeader@@QAE@ABVQString@@@Z

??0QHttpRequestHeader@@QAE@XZ

??0QHttpResponseHeader@@QAE@ABV0@@Z

??0QHttpResponseHeader@@QAE@ABVQString@@@Z

??0QHttpResponseHeader@@QAE@HABVQString@@HH@Z

??0QHttpResponseHeader@@QAE@XZ

??0QLocalServer@@QAE@PAVQObject@@@Z

??0QLocalSocket@@QAE@PAVQObject@@@Z

??0QNetworkAccessManager@@QAE@PAVQObject@@@Z

??0QNetworkAddressEntry@@QAE@ABV0@@Z

??0QNetworkAddressEntry@@QAE@XZ

??0QNetworkCacheMetaData@@QAE@ABV0@@Z

??0QNetworkCacheMetaData@@QAE@XZ

??0QNetworkConfiguration@@QAE@ABV0@@Z

??0QNetworkConfiguration@@QAE@XZ

??0QNetworkConfigurationManager@@QAE@PAVQObject@@@Z

??0QNetworkConfigurationManagerPrivate@@QAE@XZ

??0QNetworkCookie@@QAE@ABV0@@Z

??0QNetworkCookie@@QAE@ABVQByteArray@@0@Z

??0QNetworkCookieJar@@QAE@PAVQObject@@@Z

??0QNetworkDiskCache@@QAE@PAVQObject@@@Z

??0QNetworkInterface@@QAE@ABV0@@Z

??0QNetworkInterface@@QAE@XZ

??0QNetworkProxy@@QAE@ABV0@@Z

??0QNetworkProxy@@QAE@W4ProxyType@0@ABVQString@@G11@Z

??0QNetworkProxy@@QAE@XZ

??0QNetworkProxyFactory@@QAE@ABV0@@Z

??0QNetworkProxyFactory@@QAE@XZ

??0QNetworkProxyQuery@@QAE@ABV0@@Z

??0QNetworkProxyQuery@@QAE@ABVQNetworkConfiguration@@ABVQString@@H1W4QueryType@0@@Z

??0QNetworkProxyQuery@@QAE@ABVQNetworkConfiguration@@ABVQUrl@@W4QueryType@0@@Z

??0QNetworkProxyQuery@@QAE@ABVQNetworkConfiguration@@GABVQString@@W4QueryType@0@@Z

??0QNetworkProxyQuery@@QAE@ABVQString@@H0W4QueryType@0@@Z

??0QNetworkProxyQuery@@QAE@ABVQUrl@@W4QueryType@0@@Z

??0QNetworkProxyQuery@@QAE@GABVQString@@W4QueryType@0@@Z

??0QNetworkProxyQuery@@QAE@XZ

??0QNetworkReply@@IAE@AAVQNetworkReplyPrivate@@PAVQObject@@@Z

??0QNetworkReply@@IAE@PAVQObject@@@Z

??0QNetworkRequest@@QAE@ABV0@@Z

??0QNetworkRequest@@QAE@ABVQUrl@@@Z

??0QNetworkSession@@QAE@ABVQNetworkConfiguration@@PAVQObject@@@Z

??0QNetworkSessionPrivate@@QAE@XZ

??0QSslCertificate@@QAE@ABV0@@Z

??0QSslCertificate@@QAE@ABVQByteArray@@W4EncodingFormat@QSsl@@@Z

??0QSslCertificate@@QAE@PAVQIODevice@@W4EncodingFormat@QSsl@@@Z

??0QSslCipher@@QAE@ABV0@@Z

??0QSslCipher@@QAE@ABVQString@@W4SslProtocol@QSsl@@@Z

??0QSslCipher@@QAE@XZ

??0QSslConfiguration@@AAE@PAVQSslConfigurationPrivate@@@Z

??0QSslConfiguration@@QAE@ABV0@@Z

??0QSslConfiguration@@QAE@XZ

??0QSslError@@QAE@ABV0@@Z

??0QSslError@@QAE@W4SslError@0@@Z

??0QSslError@@QAE@W4SslError@0@ABVQSslCertificate@@@Z

??0QSslError@@QAE@XZ

??0QSslKey@@QAE@ABV0@@Z

??0QSslKey@@QAE@ABVQByteArray@@W4KeyAlgorithm@QSsl@@W4EncodingFormat@3@W4KeyType@3@0@Z

??0QSslKey@@QAE@PAVQIODevice@@W4KeyAlgorithm@QSsl@@W4EncodingFormat@3@W4KeyType@3@ABVQByteArray@@@Z

??0QSslKey@@QAE@XZ

??0QSslSocket@@QAE@PAVQObject@@@Z

??0QTcpServer@@QAE@PAVQObject@@@Z

??0QTcpSocket@@IAE@AAVQTcpSocketPrivate@@PAVQObject@@@Z

??0QTcpSocket@@QAE@PAVQObject@@@Z

??0QUdpSocket@@QAE@PAVQObject@@@Z

??0QUrlInfo@@QAE@ABV0@@Z

??0QUrlInfo@@QAE@ABVQString@@H00_JABVQDateTime@@2_N33333@Z

??0QUrlInfo@@QAE@ABVQUrl@@HABVQString@@1_JABVQDateTime@@3_N44444@Z

??0QUrlInfo@@QAE@XZ

??1QAbstractNetworkCache@@UAE@XZ

??1QAbstractSocket@@UAE@XZ

??1QAuthenticator@@QAE@XZ

??1QBearerEngine@@UAE@XZ

??1QBearerEngineFactoryInterface@@UAE@XZ

??1QBearerEnginePlugin@@UAE@XZ

??1QFtp@@UAE@XZ

??1QHostAddress@@QAE@XZ

??1QHostInfo@@QAE@XZ

??1QHttp@@UAE@XZ

??1QHttpHeader@@UAE@XZ

??1QHttpMultiPart@@UAE@XZ

??1QHttpPart@@QAE@XZ

??1QHttpRequestHeader@@UAE@XZ

??1QHttpResponseHeader@@UAE@XZ

??1QLocalServer@@UAE@XZ

??1QLocalSocket@@UAE@XZ

??1QNetworkAccessManager@@UAE@XZ

??1QNetworkAddressEntry@@QAE@XZ

??1QNetworkCacheMetaData@@QAE@XZ

??1QNetworkConfiguration@@QAE@XZ

??1QNetworkConfigurationManager@@UAE@XZ

??1QNetworkConfigurationManagerPrivate@@UAE@XZ

??1QNetworkCookie@@QAE@XZ

??1QNetworkCookieJar@@UAE@XZ

??1QNetworkDiskCache@@UAE@XZ

??1QNetworkInterface@@QAE@XZ

??1QNetworkProxy@@QAE@XZ

??1QNetworkProxyFactory@@UAE@XZ

??1QNetworkProxyQuery@@QAE@XZ

??1QNetworkReply@@UAE@XZ

??1QNetworkRequest@@QAE@XZ

??1QNetworkSession@@UAE@XZ

??1QNetworkSessionPrivate@@UAE@XZ

??1QSslCertificate@@QAE@XZ

??1QSslCipher@@QAE@XZ

??1QSslConfiguration@@QAE@XZ

??1QSslError@@QAE@XZ

??1QSslKey@@QAE@XZ

??1QSslSocket@@UAE@XZ

??1QTcpServer@@UAE@XZ

??1QTcpSocket@@UAE@XZ

??1QUdpSocket@@UAE@XZ

??1QUrlInfo@@UAE@XZ

??4QAuthenticator@@QAEAAV0@ABV0@@Z

??4QBearerEngineFactoryInterface@@QAEAAU0@ABU0@@Z

??4QHostAddress@@QAEAAV0@ABV0@@Z

??4QHostAddress@@QAEAAV0@ABVQString@@@Z

??4QHostInfo@@QAEAAV0@ABV0@@Z

??4QHttpHeader@@QAEAAV0@ABV0@@Z

??4QHttpPart@@QAEAAV0@ABV0@@Z

??4QHttpRequestHeader@@QAEAAV0@ABV0@@Z

??4QHttpResponseHeader@@QAEAAV0@ABV0@@Z

??4QIPv6Address@@QAEAAV0@ABV0@@Z

??4QNetworkAddressEntry@@QAEAAV0@ABV0@@Z

??4QNetworkCacheMetaData@@QAEAAV0@ABV0@@Z

??4QNetworkConfiguration@@QAEAAV0@ABV0@@Z

??4QNetworkCookie@@QAEAAV0@ABV0@@Z

??4QNetworkInterface@@QAEAAV0@ABV0@@Z

??4QNetworkProxy@@QAEAAV0@ABV0@@Z

??4QNetworkProxyFactory@@QAEAAV0@ABV0@@Z

??4QNetworkProxyQuery@@QAEAAV0@ABV0@@Z

??4QNetworkRequest@@QAEAAV0@ABV0@@Z

??4QSslCertificate@@QAEAAV0@ABV0@@Z

??4QSslCipher@@QAEAAV0@ABV0@@Z

??4QSslConfiguration@@QAEAAV0@ABV0@@Z

??4QSslError@@QAEAAV0@ABV0@@Z

??4QSslKey@@QAEAAV0@ABV0@@Z

??4QUrlInfo@@QAEAAV0@ABV0@@Z

??5@YAAAVQDataStream@@AAV0@AAVQHostAddress@@@Z

??5@YAAAVQDataStream@@AAV0@AAVQNetworkCacheMetaData@@@Z

??6@YA?AVQDebug@@V0@ABVQHostAddress@@@Z

??6@YA?AVQDebug@@V0@ABVQNetworkCookie@@@Z

??6@YA?AVQDebug@@V0@ABVQNetworkInterface@@@Z

??6@YA?AVQDebug@@V0@ABVQSslCertificate@@@Z

??6@YA?AVQDebug@@V0@ABVQSslCipher@@@Z

??6@YA?AVQDebug@@V0@ABVQSslError@@@Z

??6@YA?AVQDebug@@V0@ABVQSslKey@@@Z

??6@YA?AVQDebug@@V0@ABW4SslError@QSslError@@@Z

??6@YA?AVQDebug@@V0@W4LocalSocketError@QLocalSocket@@@Z

??6@YA?AVQDebug@@V0@W4LocalSocketState@QLocalSocket@@@Z

??6@YA?AVQDebug@@V0@W4SocketError@QAbstractSocket@@@Z

??6@YA?AVQDebug@@V0@W4SocketState@QAbstractSocket@@@Z

??6@YA?AVQDebug@@V0@W4SubjectInfo@QSslCertificate@@@Z

??6@YAAAVQDataStream@@AAV0@ABVQHostAddress@@@Z

??6@YAAAVQDataStream@@AAV0@ABVQNetworkCacheMetaData@@@Z

??8QAuthenticator@@QBE_NABV0@@Z

??8QHostAddress@@QBE_NABV0@@Z

??8QHostAddress@@QBE_NW4SpecialAddress@0@@Z

??8QHttpPart@@QBE_NABV0@@Z

??8QNetworkAddressEntry@@QBE_NABV0@@Z

??8QNetworkCacheMetaData@@QBE_NABV0@@Z

??8QNetworkConfiguration@@QBE_NABV0@@Z

??8QNetworkCookie@@QBE_NABV0@@Z

??8QNetworkProxy@@QBE_NABV0@@Z

??8QNetworkProxyQuery@@QBE_NABV0@@Z

??8QNetworkRequest@@QBE_NABV0@@Z

??8QSslCertificate@@QBE_NABV0@@Z

??8QSslCipher@@QBE_NABV0@@Z

??8QSslConfiguration@@QBE_NABV0@@Z

??8QSslError@@QBE_NABV0@@Z

??8QSslKey@@QBE_NABV0@@Z

??8QUrlInfo@@QBE_NABV0@@Z

??9QAuthenticator@@QBE_NABV0@@Z

??9QHostAddress@@QBE_NABV0@@Z

??9QHostAddress@@QBE_NW4SpecialAddress@0@@Z

??9QHttpPart@@QBE_NABV0@@Z

??9QNetworkAddressEntry@@QBE_NABV0@@Z

??9QNetworkCacheMetaData@@QBE_NABV0@@Z

??9QNetworkConfiguration@@QBE_NABV0@@Z

??9QNetworkCookie@@QBE_NABV0@@Z

??9QNetworkProxy@@QBE_NABV0@@Z

??9QNetworkProxyQuery@@QBE_NABV0@@Z

??9QNetworkRequest@@QBE_NABV0@@Z

??9QSslCertificate@@QBE_NABV0@@Z

??9QSslCipher@@QBE_NABV0@@Z

??9QSslConfiguration@@QBE_NABV0@@Z

??9QSslError@@QBE_NABV0@@Z

??9QSslKey@@QBE_NABV0@@Z

??9QUrlInfo@@QBE_NABV0@@Z

??AQIPv6Address@@QAEAAEH@Z

??AQIPv6Address@@QBEEH@Z

??_7QAbstractNetworkCache@@6B@

??_7QAbstractSocket@@6B@

??_7QBearerEngine@@6B@

??_7QBearerEngineFactoryInterface@@6B@

??_7QBearerEnginePlugin@@6BQBearerEngineFactoryInterface@@@

??_7QBearerEnginePlugin@@6BQObject@@@

??_7QFtp@@6B@

??_7QHttp@@6B@

??_7QHttpHeader@@6B@

??_7QHttpMultiPart@@6B@

??_7QHttpRequestHeader@@6B@

??_7QHttpResponseHeader@@6B@

??_7QLocalServer@@6B@

??_7QLocalSocket@@6B@

??_7QNetworkAccessManager@@6B@

??_7QNetworkConfigurationManager@@6B@

??_7QNetworkConfigurationManagerPrivate@@6B@

??_7QNetworkCookieJar@@6B@

??_7QNetworkDiskCache@@6B@

??_7QNetworkProxyFactory@@6B@

??_7QNetworkReply@@6B@

??_7QNetworkSession@@6B@

??_7QNetworkSessionPrivate@@6B@

??_7QSslSocket@@6B@

??_7QTcpServer@@6B@

??_7QTcpSocket@@6B@

??_7QUdpSocket@@6B@

??_7QUrlInfo@@6B@

??_FQAbstractNetworkCache@@QAEXXZ

??_FQBearerEngine@@QAEXXZ

??_FQBearerEnginePlugin@@QAEXXZ

??_FQFtp@@QAEXXZ

??_FQHostInfo@@QAEXXZ

??_FQHttp@@QAEXXZ

??_FQHttpMultiPart@@QAEXXZ

??_FQLocalServer@@QAEXXZ

??_FQLocalSocket@@QAEXXZ

??_FQNetworkAccessManager@@QAEXXZ

??_FQNetworkConfigurationManager@@QAEXXZ

??_FQNetworkCookie@@QAEXXZ

??_FQNetworkCookieJar@@QAEXXZ

??_FQNetworkDiskCache@@QAEXXZ

??_FQNetworkReply@@QAEXXZ

??_FQNetworkRequest@@QAEXXZ

??_FQSslCertificate@@QAEXXZ

??_FQSslSocket@@QAEXXZ

??_FQTcpServer@@QAEXXZ

??_FQTcpSocket@@QAEXXZ

??_FQUdpSocket@@QAEXXZ

?abort@QAbstractSocket@@QAEXXZ

?abort@QFtp@@QAEXXZ

?abort@QHttp@@QAEXXZ

?abort@QLocalSocket@@QAEXXZ

?abort@QSslSocket@@QAEXXZ

?abortHostLookup@QHostInfo@@SAXH@Z

?accept@QNetworkSession@@QAEXXZ

?activeConfiguration@QNetworkAccessManager@@QBE?AVQNetworkConfiguration@@XZ

?activeTime@QNetworkSession@@QBE_KXZ

?addCaCertificate@QSslSocket@@QAEXABVQSslCertificate@@@Z

?addCaCertificates@QSslSocket@@QAEXABV?$QList@VQSslCertificate@@@@@Z

?addCaCertificates@QSslSocket@@QAE_NABVQString@@W4EncodingFormat@QSsl@@W4PatternSyntax@QRegExp@@@Z

?addDefaultCaCertificate@QSslSocket@@SAXABVQSslCertificate@@@Z

?addDefaultCaCertificates@QSslSocket@@SAXABV?$QList@VQSslCertificate@@@@@Z

?addDefaultCaCertificates@QSslSocket@@SA_NABVQString@@W4EncodingFormat@QSsl@@W4PatternSyntax@QRegExp@@@Z

?addPendingConnection@QTcpServer@@IAEXPAVQTcpSocket@@@Z

?addPostRoutine@QNetworkConfigurationManagerPrivate@@SAXXZ

?addValue@QHttpHeader@@QAEXABVQString@@0@Z

?addressEntries@QNetworkInterface@@QBE?AV?$QList@VQNetworkAddressEntry@@@@XZ

?addresses@QHostInfo@@QBE?AV?$QList@VQHostAddress@@@@XZ

?algorithm@QSslKey@@QBE?AW4KeyAlgorithm@QSsl@@XZ

?allAddresses@QNetworkInterface@@SA?AV?$QList@VQHostAddress@@@@XZ

?allConfigurations@QNetworkConfigurationManager@@QBE?AV?$QList@VQNetworkConfiguration@@@@V?$QFlags@W4StateFlag@QNetworkConfiguration@@@@@Z

?allConfigurations@QNetworkConfigurationManagerPrivate@@QBE?AV?$QList@VQNetworkConfiguration@@@@V?$QFlags@W4StateFlag@QNetworkConfiguration@@@@@Z

?allCookies@QNetworkCookieJar@@IBE?AV?$QList@VQNetworkCookie@@@@XZ

?allInterfaces@QNetworkInterface@@SA?AV?$QList@VQNetworkInterface@@@@XZ

?allValues@QHttpHeader@@QBE?AVQStringList@@ABVQString@@@Z

?alternateSubjectNames@QSslCertificate@@QBE?AV?$QMultiMap@W4AlternateNameEntryType@QSsl@@VQString@@@@XZ

?append@QHttpMultiPart@@QAEXABVQHttpPart@@@Z

?applicationProxy@QNetworkProxy@@SA?AV1@XZ

?atEnd@QAbstractSocket@@UBE_NXZ

?atEnd@QSslSocket@@UBE_NXZ

?attribute@QNetworkReply@@QBE?AVQVariant@@W4Attribute@QNetworkRequest@@@Z

?attribute@QNetworkRequest@@QBE?AVQVariant@@W4Attribute@1@ABV2@@Z

?attributes@QNetworkCacheMetaData@@QBE?AV?$QHash@W4Attribute@QNetworkRequest@@VQVariant@@@@XZ

?authenticationMethod@QSslCipher@@QBE?AVQString@@XZ

?authenticationRequired@QHttp@@IAEXABVQString@@GPAVQAuthenticator@@@Z

?authenticationRequired@QNetworkAccessManager@@IAEXPAVQNetworkReply@@PAVQAuthenticator@@@Z

?bearerName@QNetworkConfiguration@@QBE?AVQString@@XZ

?bearerType@QNetworkConfiguration@@QBE?AW4BearerType@1@XZ

?bearerTypeName@QNetworkConfiguration@@QBE?AVQString@@XZ

?bind@QUdpSocket@@QAE_NABVQHostAddress@@G@Z

?bind@QUdpSocket@@QAE_NABVQHostAddress@@GV?$QFlags@W4BindFlag@QUdpSocket@@@@@Z

?bind@QUdpSocket@@QAE_NG@Z

?bind@QUdpSocket@@QAE_NGV?$QFlags@W4BindFlag@QUdpSocket@@@@@Z

?boundary@QHttpMultiPart@@QBE?AVQByteArray@@XZ

?broadcast@QNetworkAddressEntry@@QBE?AVQHostAddress@@XZ

?bytesAvailable@QAbstractSocket@@UBE_JXZ

?bytesAvailable@QFtp@@QBE_JXZ

?bytesAvailable@QHttp@@QBE_JXZ

?bytesAvailable@QLocalSocket@@UBE_JXZ

?bytesAvailable@QSslSocket@@UBE_JXZ

?bytesReceived@QNetworkSession@@QBE_KXZ

?bytesToWrite@QAbstractSocket@@UBE_JXZ

?bytesToWrite@QLocalSocket@@UBE_JXZ

?bytesToWrite@QSslSocket@@UBE_JXZ

?bytesWritten@QNetworkSession@@QBE_KXZ

?caCertificates@QSslConfiguration@@QBE?AV?$QList@VQSslCertificate@@@@XZ

?caCertificates@QSslSocket@@QBE?AV?$QList@VQSslCertificate@@@@XZ

?cache@QNetworkAccessManager@@QBEPAVQAbstractNetworkCache@@XZ

?cacheDirectory@QNetworkDiskCache@@QBE?AVQString@@XZ

?cacheSize@QNetworkDiskCache@@UBE_JXZ

?canReadLine@QAbstractSocket@@UBE_NXZ

?canReadLine@QLocalSocket@@UBE_NXZ

?canReadLine@QSslSocket@@UBE_NXZ

?capabilities@QNetworkConfigurationManager@@QBE?AV?$QFlags@W4Capability@QNetworkConfigurationManager@@@@XZ

?capabilities@QNetworkConfigurationManagerPrivate@@QBE?AV?$QFlags@W4Capability@QNetworkConfigurationManager@@@@XZ

?capabilities@QNetworkProxy@@QBE?AV?$QFlags@W4Capability@QNetworkProxy@@@@XZ

?cd@QFtp@@QAEHABVQString@@@Z

?certificate@QSslError@@QBE?AVQSslCertificate@@XZ

?children@QNetworkConfiguration@@QBE?AV?$QList@VQNetworkConfiguration@@@@XZ

?ciphers@QSslConfiguration@@QBE?AV?$QList@VQSslCipher@@@@XZ

?ciphers@QSslSocket@@QBE?AV?$QList@VQSslCipher@@@@XZ

?cleanup@QNetworkConfigurationManagerPrivate@@QAEXXZ

?clear@QHostAddress@@QAEXXZ

?clear@QNetworkDiskCache@@UAEXXZ

?clear@QSslCertificate@@QAEXXZ

?clear@QSslKey@@QAEXXZ

?clearPendingCommands@QFtp@@QAEXXZ

?clearPendingRequests@QHttp@@QAEXXZ

?close@QAbstractSocket@@UAEXXZ

?close@QFtp@@QAEHXZ

?close@QHttp@@QAEHXZ

?close@QLocalServer@@QAEXXZ

?close@QLocalSocket@@UAEXXZ

?close@QNetworkReply@@UAEXXZ

?close@QNetworkSession@@QAEXXZ

?close@QSslSocket@@UAEXXZ

?close@QTcpServer@@QAEXXZ

?closeConnection@QHttp@@QAEHXZ

?closed@QNetworkSession@@IAEXXZ

?closed@QNetworkSessionPrivate@@IAEXXZ

?commandFinished@QFtp@@IAEXH_N@Z

?commandStarted@QFtp@@IAEXH@Z

?configuration@QNetworkAccessManager@@QBE?AVQNetworkConfiguration@@XZ

?configuration@QNetworkSession@@QBE?AVQNetworkConfiguration@@XZ

?configurationAdded@QBearerEngine@@IAEXV?$QExplicitlySharedDataPointer@VQNetworkConfigurationPrivate@@@@@Z

?configurationAdded@QNetworkConfigurationManager@@IAEXABVQNetworkConfiguration@@@Z

?configurationAdded@QNetworkConfigurationManagerPrivate@@AAEXV?$QExplicitlySharedDataPointer@VQNetworkConfigurationPrivate@@@@@Z

?configurationAdded@QNetworkConfigurationManagerPrivate@@IAEXABVQNetworkConfiguration@@@Z

?configurationChanged@QBearerEngine@@IAEXV?$QExplicitlySharedDataPointer@VQNetworkConfigurationPrivate@@@@@Z

?configurationChanged@QNetworkConfigurationManager@@IAEXABVQNetworkConfiguration@@@Z

?configurationChanged@QNetworkConfigurationManagerPrivate@@AAEXV?$QExplicitlySharedDataPointer@VQNetworkConfigurationPrivate@@@@@Z

?configurationChanged@QNetworkConfigurationManagerPrivate@@IAEXABVQNetworkConfiguration@@@Z

?configurationFromIdentifier@QNetworkConfigurationManager@@QBE?AVQNetworkConfiguration@@ABVQString@@@Z

?configurationFromIdentifier@QNetworkConfigurationManagerPrivate@@QBE?AVQNetworkConfiguration@@ABVQString@@@Z

?configurationRemoved@QBearerEngine@@IAEXV?$QExplicitlySharedDataPointer@VQNetworkConfigurationPrivate@@@@@Z

?configurationRemoved@QNetworkConfigurationManager@@IAEXABVQNetworkConfiguration@@@Z

?configurationRemoved@QNetworkConfigurationManagerPrivate@@AAEXV?$QExplicitlySharedDataPointer@VQNetworkConfigurationPrivate@@@@@Z

?configurationRemoved@QNetworkConfigurationManagerPrivate@@IAEXABVQNetworkConfiguration@@@Z

?configurationUpdateComplete@QNetworkConfigurationManagerPrivate@@IAEXXZ

?configurationsInUse@QBearerEngine@@QBE_NXZ

?connectNotify@QNetworkSession@@MAEXPBD@Z

?connectToHost@QAbstractSocket@@QAEXABVQHostAddress@@GV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?connectToHost@QAbstractSocket@@QAEXABVQString@@GV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?connectToHost@QFtp@@QAEHABVQString@@G@Z

?connectToHostEncrypted@QSslSocket@@QAEXABVQString@@G0V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?connectToHostEncrypted@QSslSocket@@QAEXABVQString@@GV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?connectToHostImplementation@QAbstractSocket@@IAEXABVQString@@GV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?connectToHostImplementation@QSslSocket@@IAEXABVQString@@GV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?connectToServer@QLocalSocket@@QAEXABVQString@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?connected@QAbstractSocket@@IAEXXZ

?connected@QLocalSocket@@IAEXXZ

?connectionClosed@QAbstractSocket@@IAEXXZ

?contentLength@QHttpHeader@@QBEIXZ

?contentType@QHttpHeader@@QBE?AVQString@@XZ

?cookieJar@QNetworkAccessManager@@QBEPAVQNetworkCookieJar@@XZ

?cookiesForUrl@QNetworkCookieJar@@UBE?AV?$QList@VQNetworkCookie@@@@ABVQUrl@@@Z

?createRequest@QNetworkAccessManager@@MAEPAVQNetworkReply@@W4Operation@1@ABVQNetworkRequest@@PAVQIODevice@@@Z

?currentCommand@QFtp@@QBE?AW4Command@1@XZ

?currentDestinationDevice@QHttp@@QBEPAVQIODevice@@XZ

?currentDevice@QFtp@@QBEPAVQIODevice@@XZ

?currentId@QFtp@@QBEHXZ

?currentId@QHttp@@QBEHXZ

?currentRequest@QHttp@@QBE?AVQHttpRequestHeader@@XZ

?currentSourceDevice@QHttp@@QBEPAVQIODevice@@XZ

?d_func@QAbstractNetworkCache@@AAEPAVQAbstractNetworkCachePrivate@@XZ

?d_func@QAbstractNetworkCache@@ABEPBVQAbstractNetworkCachePrivate@@XZ

?d_func@QAbstractSocket@@AAEPAVQAbstractSocketPrivate@@XZ

?d_func@QAbstractSocket@@ABEPBVQAbstractSocketPrivate@@XZ

?d_func@QFtp@@AAEPAVQFtpPrivate@@XZ

?d_func@QFtp@@ABEPBVQFtpPrivate@@XZ

?d_func@QHttp@@AAEPAVQHttpPrivate@@XZ

?d_func@QHttp@@ABEPBVQHttpPrivate@@XZ

?d_func@QHttpHeader@@AAEPAVQHttpHeaderPrivate@@XZ

?d_func@QHttpHeader@@ABEPBVQHttpHeaderPrivate@@XZ

?d_func@QHttpMultiPart@@AAEPAVQHttpMultiPartPrivate@@XZ

?d_func@QHttpMultiPart@@ABEPBVQHttpMultiPartPrivate@@XZ

?d_func@QHttpRequestHeader@@AAEPAVQHttpRequestHeaderPrivate@@XZ

?d_func@QHttpRequestHeader@@ABEPBVQHttpRequestHeaderPrivate@@XZ

?d_func@QHttpResponseHeader@@AAEPAVQHttpResponseHeaderPrivate@@XZ

?d_func@QHttpResponseHeader@@ABEPBVQHttpResponseHeaderPrivate@@XZ

?d_func@QLocalServer@@AAEPAVQLocalServerPrivate@@XZ

?d_func@QLocalServer@@ABEPBVQLocalServerPrivate@@XZ

?d_func@QLocalSocket@@AAEPAVQLocalSocketPrivate@@XZ

?d_func@QLocalSocket@@ABEPBVQLocalSocketPrivate@@XZ

?d_func@QNetworkAccessManager@@AAEPAVQNetworkAccessManagerPrivate@@XZ

?d_func@QNetworkAccessManager@@ABEPBVQNetworkAccessManagerPrivate@@XZ

?d_func@QNetworkCookieJar@@AAEPAVQNetworkCookieJarPrivate@@XZ

?d_func@QNetworkCookieJar@@ABEPBVQNetworkCookieJarPrivate@@XZ

?d_func@QNetworkDiskCache@@AAEPAVQNetworkDiskCachePrivate@@XZ

?d_func@QNetworkDiskCache@@ABEPBVQNetworkDiskCachePrivate@@XZ

?d_func@QNetworkReply@@AAEPAVQNetworkReplyPrivate@@XZ

?d_func@QNetworkReply@@ABEPBVQNetworkReplyPrivate@@XZ

?d_func@QSslSocket@@AAEPAVQSslSocketPrivate@@XZ

?d_func@QSslSocket@@ABEPBVQSslSocketPrivate@@XZ

?d_func@QTcpServer@@AAEPAVQTcpServerPrivate@@XZ

?d_func@QTcpServer@@ABEPBVQTcpServerPrivate@@XZ

?d_func@QTcpSocket@@AAEPAVQTcpSocketPrivate@@XZ

?d_func@QTcpSocket@@ABEPBVQTcpSocketPrivate@@XZ

?d_func@QUdpSocket@@AAEPAVQUdpSocketPrivate@@XZ

?d_func@QUdpSocket@@ABEPBVQUdpSocketPrivate@@XZ

?data@QNetworkDiskCache@@UAEPAVQIODevice@@ABVQUrl@@@Z

?dataReadProgress@QHttp@@IAEXHH@Z

?dataSendProgress@QHttp@@IAEXHH@Z

?dataTransferProgress@QFtp@@IAEX_J0@Z

?defaultCaCertificates@QSslSocket@@SA?AV?$QList@VQSslCertificate@@@@XZ

?defaultCiphers@QSslSocket@@SA?AV?$QList@VQSslCipher@@@@XZ

?defaultConfiguration@QNetworkConfigurationManager@@QBE?AVQNetworkConfiguration@@XZ

?defaultConfiguration@QNetworkConfigurationManagerPrivate@@QBE?AVQNetworkConfiguration@@XZ

?defaultConfiguration@QSslConfiguration@@SA?AV1@XZ

?delayedCloseFinished@QAbstractSocket@@IAEXXZ

?deleteResource@QNetworkAccessManager@@QAEPAVQNetworkReply@@ABVQNetworkRequest@@@Z

?detach@QAuthenticator@@QAEXXZ

?digest@QSslCertificate@@QBE?AVQByteArray@@W4Algorithm@QCryptographicHash@@@Z

?disablePolling@QNetworkConfigurationManagerPrivate@@QAEXXZ

?disconnectFromHost@QAbstractSocket@@QAEXXZ

?disconnectFromHostImplementation@QAbstractSocket@@IAEXXZ

?disconnectFromHostImplementation@QSslSocket@@IAEXXZ

?disconnectFromServer@QLocalSocket@@QAEXXZ

?disconnectNotify@QNetworkSession@@MAEXPBD@Z

?disconnected@QAbstractSocket@@IAEXXZ

?disconnected@QLocalSocket@@IAEXXZ

?domain@QNetworkCookie@@QBE?AVQString@@XZ

?done@QFtp@@IAEX_N@Z

?done@QHttp@@IAEX_N@Z

?downloadProgress@QNetworkReply@@IAEX_J0@Z

?effectiveDate@QSslCertificate@@QBE?AVQDateTime@@XZ

?enablePolling@QNetworkConfigurationManagerPrivate@@QAEXXZ

?encrypted@QSslSocket@@IAEXXZ

?encryptedBytesAvailable@QSslSocket@@QBE_JXZ

?encryptedBytesToWrite@QSslSocket@@QBE_JXZ

?encryptedBytesWritten@QSslSocket@@IAEX_J@Z

?encryptionMethod@QSslCipher@@QBE?AVQString@@XZ

?engines@QNetworkConfigurationManagerPrivate@@QBE?AV?$QList@PAVQBearerEngine@@@@XZ

?equal@QUrlInfo@@SA_NABV1@0H@Z

?error@QAbstractSocket@@IAEXW4SocketError@1@@Z

?error@QAbstractSocket@@QBE?AW4SocketError@1@XZ

?error@QFtp@@QBE?AW4Error@1@XZ

?error@QHostInfo@@QBE?AW4HostInfoError@1@XZ

?error@QHttp@@QBE?AW4Error@1@XZ

?error@QLocalSocket@@IAEXW4LocalSocketError@1@@Z

?error@QLocalSocket@@QBE?AW4LocalSocketError@1@XZ

?error@QNetworkReply@@IAEXW4NetworkError@1@@Z

?error@QNetworkReply@@QBE?AW4NetworkError@1@XZ

?error@QNetworkSession@@IAEXW4SessionError@1@@Z

?error@QNetworkSession@@QBE?AW4SessionError@1@XZ

?error@QNetworkSessionPrivate@@IAEXW4SessionError@QNetworkSession@@@Z

?error@QSslError@@QBE?AW4SslError@1@XZ

?errorString@QFtp@@QBE?AVQString@@XZ

?errorString@QHostInfo@@QBE?AVQString@@XZ

?errorString@QHttp@@QBE?AVQString@@XZ

?errorString@QLocalServer@@QBE?AVQString@@XZ

?errorString@QNetworkSession@@QBE?AVQString@@XZ

?errorString@QSslError@@QBE?AVQString@@XZ

Sections

.text
Size: 670KB - Virtual size: 669KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 272KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/QtWebKit4.dll

.dll windows:5 windows x86 arch:x86

b55a1f6c1c8beacf6b60a4dc7ffd6a2f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

advapi32

RegQueryValueExW

RegEnumKeyExW

RegOpenKeyExW

CryptReleaseContext

CryptGenRandom

CryptAcquireContextW

RegCloseKey

gdi32

SetWorldTransform

SetGraphicsMode

GetObjectW

SelectObject

CreateCompatibleDC

CreateDIBSection

DeleteDC

DeleteObject

GetCurrentObject

GetRgnBox

CreateRectRgn

shlwapi

SHGetValueW

PathCombineW

PathRemoveFileSpecW

user32

ReleaseDC

GetDC

SendMessageW

CreateWindowExW

DefWindowProcA

SetWindowLongA

SetPropW

SetCapture

ReleaseCapture

CallWindowProcW

InvalidateRect

SetWindowRgn

MoveWindow

DestroyWindow

UpdateWindow

GetFocus

IsChild

ShowWindow

SetFocus

DefWindowProcW

LoadCursorW

RegisterClassExW

GetPropW

GetClientRect

GetLastInputInfo

GetWindowLongW

SetWindowLongW

version

GetFileVersionInfoW

GetFileVersionInfoSizeW

VerQueryValueW

winmm

timeBeginPeriod

timeEndPeriod

qtgui4

?state@TouchPoint@QTouchEvent@@QBE?AW4TouchPointState@Qt@@XZ

?id@TouchPoint@QTouchEvent@@QBEHXZ

?toString@QFont@@QBE?AVQString@@XZ

??8QFont@@QBE_NABV0@@Z

?setStyleStrategy@QFont@@QAEXW4StyleStrategy@1@@Z

?setCapitalization@QFont@@QAEXW4Capitalization@1@@Z

?setWeight@QFont@@QAEXH@Z

?setStyle@QFont@@QAEXW4Style@1@@Z

?setPixelSize@QFont@@QAEXH@Z

?setFamily@QFont@@QAEXABVQString@@@Z

?lastResortFamily@QFont@@QBE?AVQString@@XZ

??0QFont@@QAE@ABVQString@@HH_N@Z

?winId@QWidget@@QBEPAUHWND__@@XZ

?removeApplicationFont@QFontDatabase@@SA_NH@Z

?addApplicationFontFromData@QFontDatabase@@SAHABVQByteArray@@@Z

?applicationFontFamilies@QFontDatabase@@SA?AVQStringList@@H@Z

??0QGraphicsEffect@@QAE@PAVQObject@@@Z

?metaObject@QGraphicsEffect@@UBEPBUQMetaObject@@XZ

?qt_metacast@QGraphicsEffect@@UAEPAXPBD@Z

?qt_metacall@QGraphicsEffect@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?boundingRectFor@QGraphicsEffect@@UBE?AVQRectF@@ABV2@@Z

?sourceChanged@QGraphicsEffect@@MAEXV?$QFlags@W4ChangeFlag@QGraphicsEffect@@@@@Z

??1QStyleOptionGraphicsItem@@QAE@XZ

?drawSource@QGraphicsEffect@@IAEXPAVQPainter@@@Z

?sourcePixmap@QGraphicsEffect@@IBE?AVQPixmap@@W4CoordinateSystem@Qt@@PAVQPoint@@W4PixmapPadMode@1@@Z

?rect@QPixmap@@QBE?AVQRect@@XZ

??0QStyleOptionGraphicsItem@@QAE@XZ

?sourceBoundingRect@QGraphicsEffect@@IBE?AVQRectF@@W4CoordinateSystem@Qt@@@Z

??1QGraphicsEffect@@UAE@XZ

?cacheLimit@QPixmapCache@@SAHXZ

??0Key@QPixmapCache@@QAE@XZ

??1Key@QPixmapCache@@QAE@XZ

?hasAlphaChannel@QPixmap@@QBE_NXZ

??_5QRegion@@QAEAAV0@ABV0@@Z

??4QColor@@QAEAAV0@ABV0@@Z

?effectiveOpacity@QGraphicsItem@@QBENXZ

?toGraphicsObject@QGraphicsItem@@QAEPAVQGraphicsObject@@XZ

?setEnabled@QGraphicsItem@@QAEX_N@Z

?setAcceptedMouseButtons@QGraphicsItem@@QAEXV?$QFlags@W4MouseButton@Qt@@@@@Z

?parentObject@QGraphicsItem@@QBEPAVQGraphicsObject@@XZ

??4Key@QPixmapCache@@QAEAAV01@ABV01@@Z

?insert@QPixmapCache@@SA?AVKey@1@ABVQPixmap@@@Z

?setClipRegion@QPainter@@QAEXABVQRegion@@W4ClipOperation@Qt@@@Z

??_4QRegion@@QAEAAV0@ABV0@@Z

??YQRegion@@QAEAAV0@ABV0@@Z

??ZQRegion@@QAEAAV0@ABV0@@Z

??GQRegion@@QBE?BV0@ABV0@@Z

??IQRegion@@QBE?BV0@ABV0@@Z

??0QRegion@@QAE@HHHHW4RegionType@0@@Z

?remove@QPixmapCache@@SAXABVKey@1@@Z

?find@QPixmapCache@@SA_NABVKey@1@PAVQPixmap@@@Z

??0QRegion@@QAE@ABV0@@Z

?childItems@QGraphicsItem@@QBE?AV?$QList@PAVQGraphicsItem@@@@XZ

?setTransform@QGraphicsItem@@QAEXABVQTransform@@_N@Z

?itemTransform@QGraphicsItem@@QBE?AVQTransform@@PBV1@PA_N@Z

?setOpacity@QGraphicsItem@@QAEXN@Z

?opacity@QGraphicsItem@@QBENXZ

?mapToScene@QGraphicsView@@QBE?AVQPolygonF@@ABVQRect@@@Z

?visibleRegion@QWidget@@QBE?AVQRegion@@XZ

?boundingRect@QPolygonF@@QBE?AVQRectF@@XZ

?mapFromScene@QGraphicsItem@@QBE?AVQPolygonF@@ABVQRectF@@@Z

?update@QGraphicsEffect@@QAEXXZ

??9QColor@@QBE_NABV0@@Z

?setGraphicsEffect@QGraphicsItem@@QAEXPAVQGraphicsEffect@@@Z

?parentItem@QGraphicsItem@@QBEPAV1@XZ

?elidedText@QFontMetrics@@QBE?AVQString@@ABV2@W4TextElideMode@Qt@@HH@Z

?fixedPitch@QFont@@QBE_NXZ

??1QFontMetricsF@@QAE@XZ

?width@QFontMetricsF@@QBENVQChar@@@Z

?lineSpacing@QFontMetricsF@@QBENXZ

?xHeight@QFontMetricsF@@QBENXZ

?ascent@QFontMetricsF@@QBENXZ

?descent@QFontMetricsF@@QBENXZ

??0QFontMetricsF@@QAE@ABVQFont@@@Z

?maxWidth@QFontMetricsF@@QBENXZ

?averageCharWidth@QFontMetricsF@@QBENXZ

??1QImageReader@@QAE@XZ

?loopCount@QImageReader@@QBEHXZ

?supportsAnimation@QImageReader@@QBE_NXZ

?format@QImageReader@@QBE?AVQByteArray@@XZ

?setQuality@QImageReader@@QAEXH@Z

??0QImageReader@@QAE@PAVQIODevice@@ABVQByteArray@@@Z

?size@QImageReader@@QBE?AVQSize@@XZ

?nextImageDelay@QImageReader@@QBEHXZ

?currentImageRect@QImageReader@@QBE?AVQRect@@XZ

?fromImageReader@QPixmap@@SA?AV1@PAVQImageReader@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

?jumpToImage@QImageReader@@QAE_NH@Z

?imageCount@QImageReader@@QBEHXZ

??0QPixmap@@QAE@XZ

??1QIcon@@QAE@XZ

??1QPainter@@QAE@XZ

?newPage@QPrinter@@QAE_NXZ

?printerState@QPrinter@@QBE?AW4PrinterState@1@XZ

?desktop@QApplication@@SAPAVQDesktopWidget@@XZ

?scale@QPainter@@QAEXNN@Z

?pageOrder@QPrinter@@QBE?AW4PageOrder@1@XZ

?toPage@QPrinter@@QBEHXZ

?fromPage@QPrinter@@QBEHXZ

?numCopies@QPrinter@@QBEHXZ

?collateCopies@QPrinter@@QBE_NXZ

?pageRect@QPrinter@@QBE?AVQRect@@XZ

?logicalDpiY@QPaintDevice@@QBEHXZ

?qt_defaultDpi@@YAHXZ

?screenPos@TouchPoint@QTouchEvent@@QBE?AVQPointF@@XZ

?begin@QPainter@@QAE_NPAVQPaintDevice@@@Z

??0QPainter@@QAE@XZ

??1QPixmap@@UAE@XZ

??4QPixmap@@QAEAAV0@ABV0@@Z

?restore@QPainter@@QAEXXZ

?setClipRect@QPainter@@QAEXABVQRect@@W4ClipOperation@Qt@@@Z

?save@QPainter@@QAEXXZ

?rects@QRegion@@QBE?AV?$QVector@VQRect@@@@XZ

??1QRegion@@QAE@XZ

??0QRegion@@QAE@ABVQRect@@W4RegionType@0@@Z

?isEmpty@QRegion@@QBE_NXZ

??4QIcon@@QAEAAV0@$$QAV0@@Z

??1QCursor@@QAE@XZ

?shape@QCursor@@QBE?AW4CursorShape@Qt@@XZ

?bitmap@QCursor@@QBEPBVQBitmap@@XZ

??0QCursor@@QAE@XZ

?prepareGeometryChange@QGraphicsItem@@IAEXXZ

?geometry@QGraphicsLayoutItem@@QBE?AVQRectF@@XZ

??1QGraphicsWidget@@UAE@XZ

?paintWindowFrame@QGraphicsWidget@@UAEXPAVQPainter@@PBVQStyleOptionGraphicsItem@@PAVQWidget@@@Z

?initStyleOption@QGraphicsWidget@@MBEXPAVQStyleOption@@@Z

?propertyChange@QGraphicsWidget@@MAE?AVQVariant@@ABVQString@@ABV2@@Z

?windowFrameEvent@QGraphicsWidget@@MAE_NPAVQEvent@@@Z

?windowFrameSectionAt@QGraphicsWidget@@MBE?AW4WindowFrameSection@Qt@@ABVQPointF@@@Z

?changeEvent@QGraphicsWidget@@MAEXPAVQEvent@@@Z

?closeEvent@QGraphicsWidget@@MAEXPAVQCloseEvent@@@Z

?hideEvent@QGraphicsWidget@@MAEXPAVQHideEvent@@@Z

?moveEvent@QGraphicsWidget@@MAEXPAVQGraphicsSceneMoveEvent@@@Z

?polishEvent@QGraphicsWidget@@MAEXXZ

?resizeEvent@QGraphicsWidget@@MAEXPAVQGraphicsSceneResizeEvent@@@Z

?showEvent@QGraphicsWidget@@MAEXPAVQShowEvent@@@Z

?grabMouseEvent@QGraphicsWidget@@MAEXPAVQEvent@@@Z

?ungrabMouseEvent@QGraphicsWidget@@MAEXPAVQEvent@@@Z

?grabKeyboardEvent@QGraphicsWidget@@MAEXPAVQEvent@@@Z

?ungrabKeyboardEvent@QGraphicsWidget@@MAEXPAVQEvent@@@Z

?advance@QGraphicsItem@@UAEXH@Z

?boundingRect@QGraphicsWidget@@UBE?AVQRectF@@XZ

?shape@QGraphicsWidget@@UBE?AVQPainterPath@@XZ

?contains@QGraphicsItem@@UBE_NABVQPointF@@@Z

?collidesWithItem@QGraphicsItem@@UBE_NPBV1@W4ItemSelectionMode@Qt@@@Z

?collidesWithPath@QGraphicsItem@@UBE_NABVQPainterPath@@W4ItemSelectionMode@Qt@@@Z

?isObscuredBy@QGraphicsItem@@UBE_NPBV1@@Z

?opaqueArea@QGraphicsItem@@UBE?AVQPainterPath@@XZ

?type@QGraphicsWidget@@UBEHXZ

?sceneEventFilter@QGraphicsItem@@MAE_NPAV1@PAVQEvent@@@Z

?hoverEnterEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneHoverEvent@@@Z

?supportsExtension@QGraphicsItem@@MBE_NW4Extension@1@@Z

?setExtension@QGraphicsItem@@MAEXW4Extension@1@ABVQVariant@@@Z

?extension@QGraphicsItem@@MBE?AVQVariant@@ABV2@@Z

?getContentsMargins@QGraphicsWidget@@UBEXPAN000@Z

?sceneEvent@QGraphicsWidget@@MAE_NPAVQEvent@@@Z

?itemChange@QGraphicsWidget@@MAE?AVQVariant@@W4GraphicsItemChange@QGraphicsItem@@ABV2@@Z

?sizeHint@QGraphicsWidget@@MBE?AVQSizeF@@W4SizeHint@Qt@@ABV2@@Z

??0QIcon@@QAE@XZ

?mouseMoveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z

?mousePressEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z

?mouseReleaseEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z

?mouseDoubleClickEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z

?keyPressEvent@QGraphicsItem@@MAEXPAVQKeyEvent@@@Z

?keyReleaseEvent@QGraphicsItem@@MAEXPAVQKeyEvent@@@Z

??0QPixmap@@QAE@ABV0@@Z

?focusInEvent@QGraphicsItem@@MAEXPAVQFocusEvent@@@Z

?focusOutEvent@QGraphicsItem@@MAEXPAVQFocusEvent@@@Z

?focusNextPrevChild@QGraphicsWidget@@MAE_N_N@Z

?dragLeaveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z

?dragMoveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z

?dropEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z

?wheelEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneWheelEvent@@@Z

?inputMethodEvent@QGraphicsItem@@MAEXPAVQInputMethodEvent@@@Z

?qt_metacast@QGraphicsWidget@@UAEPAXPBD@Z

?setFlag@QGraphicsItem@@QAEXW4GraphicsItemFlag@1@_N@Z

?setFocusPolicy@QGraphicsWidget@@QAEXW4FocusPolicy@Qt@@@Z

?setAcceptTouchEvents@QGraphicsItem@@QAEX_N@Z

?setAcceptHoverEvents@QGraphicsItem@@QAEX_N@Z

?setAcceptDrops@QGraphicsItem@@QAEX_N@Z

??0QGraphicsWidget@@QAE@PAVQGraphicsItem@@V?$QFlags@W4WindowType@Qt@@@@@Z

?update@QGraphicsItem@@QAEXABVQRectF@@@Z

?event@QGraphicsWidget@@MAE_NPAVQEvent@@@Z

?cursor@QGraphicsItem@@QBE?AVQCursor@@XZ

??1QContextMenuEvent@@UAE@XZ

??0QContextMenuEvent@@QAE@W4Reason@0@ABVQPoint@@@Z

?reason@QGraphicsSceneContextMenuEvent@@QBE?AW4Reason@1@XZ

?pos@QGraphicsSceneContextMenuEvent@@QBE?AVQPointF@@XZ

?isEnabled@QGraphicsItem@@QBE_NXZ

??1QPalette@@QAE@XZ

?palette@QGraphicsWidget@@QBE?AVQPalette@@XZ

?hoverMoveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneHoverEvent@@@Z

??1QMouseEvent@@UAE@XZ

??0QMouseEvent@@QAE@W4Type@QEvent@@ABVQPoint@@W4MouseButton@Qt@@V?$QFlags@W4MouseButton@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z

?pos@QGraphicsSceneHoverEvent@@QBE?AVQPointF@@XZ

?updateGeometry@QGraphicsWidget@@MAEXXZ

?setGeometry@QGraphicsWidget@@UAEXABVQRectF@@@Z

??1QBrush@@QAE@XZ

?setBrush@QPalette@@QAEXW4ColorGroup@1@W4ColorRole@1@ABVQBrush@@@Z

??0QBrush@@QAE@ABVQColor@@W4BrushStyle@Qt@@@Z

?fromRgbF@QColor@@SA?AV1@NNNN@Z

?palette@QApplication@@SA?AVQPalette@@XZ

?setRenderHints@QPainter@@QAEXV?$QFlags@W4RenderHint@QPainter@@@@_N@Z

?renderHints@QPainter@@QBE?AV?$QFlags@W4RenderHint@QPainter@@@@XZ

?qt_metacall@QGraphicsWidget@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?staticMetaObject@QPainter@@2UQMetaObject@@B

?staticMetaObject@QGraphicsWidget@@2UQMetaObject@@B

?matches@QKeyEvent@@QBE_NW4StandardKey@QKeySequence@@@Z

??0QPalette@@QAE@ABV0@@Z

?pos@TouchPoint@QTouchEvent@@QBE?AVQPointF@@XZ

?size@QPixmap@@QBE?AVQSize@@XZ

??BQPixmap@@QBE?AVQVariant@@XZ

?beep@QApplication@@SAXXZ

?size@QFontMetrics@@QBE?AVQSize@@HABVQString@@HPAH@Z

?lineSpacing@QFontMetrics@@QBEHXZ

?sliderValueFromPosition@QStyle@@SAHHHHH_N@Z

??8QBrush@@QBE_NABV0@@Z

?color@QPalette@@QBEABVQColor@@W4ColorGroup@1@W4ColorRole@1@@Z

?color@QPalette@@QBEABVQColor@@W4ColorRole@1@@Z

??0QStyleOptionProgressBarV2@@QAE@XZ

??1QStyleOptionProgressBar@@QAE@XZ

??1QStyleOptionProgressBarV2@@QAE@XZ

??0QStyleOptionButton@@QAE@XZ

??1QStyleOptionButton@@QAE@XZ

??0QPushButton@@QAE@PAVQWidget@@@Z

?font@QApplication@@SA?AVQFont@@PBVQWidget@@@Z

??0QFontInfo@@QAE@ABVQFont@@@Z

?family@QFont@@QBE?AVQString@@XZ

?create@QStyleFactory@@SAPAVQStyle@@ABVQString@@@Z

??1QFontInfo@@QAE@XZ

??1QPushButton@@UAE@XZ

?cursorFlashTime@QApplication@@SAHXZ

??1QStyleOptionComboBox@@QAE@XZ

?fontMetrics@QApplication@@SA?AVQFontMetrics@@XZ

??1QLineEdit@@UAE@XZ

?inputMethodQuery@QLineEdit@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z

?inputMethodEvent@QLineEdit@@MAEXPAVQInputMethodEvent@@@Z

?changeEvent@QLineEdit@@MAEXPAVQEvent@@@Z

?dropEvent@QLineEdit@@MAEXPAVQDropEvent@@@Z

?dragLeaveEvent@QLineEdit@@MAEXPAVQDragLeaveEvent@@@Z

?dragMoveEvent@QLineEdit@@MAEXPAVQDragMoveEvent@@@Z

?dragEnterEvent@QLineEdit@@MAEXPAVQDragEnterEvent@@@Z

?contextMenuEvent@QLineEdit@@MAEXPAVQContextMenuEvent@@@Z

?paintEvent@QLineEdit@@MAEXPAVQPaintEvent@@@Z

?focusOutEvent@QLineEdit@@MAEXPAVQFocusEvent@@@Z

?focusInEvent@QLineEdit@@MAEXPAVQFocusEvent@@@Z

?keyPressEvent@QLineEdit@@MAEXPAVQKeyEvent@@@Z

?mouseMoveEvent@QLineEdit@@MAEXPAVQMouseEvent@@@Z

?mouseDoubleClickEvent@QLineEdit@@MAEXPAVQMouseEvent@@@Z

?mouseReleaseEvent@QLineEdit@@MAEXPAVQMouseEvent@@@Z

?mousePressEvent@QLineEdit@@MAEXPAVQMouseEvent@@@Z

?minimumSizeHint@QLineEdit@@UBE?AVQSize@@XZ

?sizeHint@QLineEdit@@UBE?AVQSize@@XZ

?event@QLineEdit@@UAE_NPAVQEvent@@@Z

?qt_metacall@QLineEdit@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QLineEdit@@UAEPAXPBD@Z

?metaObject@QLineEdit@@UBEPBUQMetaObject@@XZ

??0QLineEdit@@QAE@PAVQWidget@@@Z

??0QStyleOptionFrameV2@@QAE@XZ

??1QStyleOptionFrameV2@@QAE@XZ

??4QBrush@@QAEAAV0@ABV0@@Z

??0QStyleOptionComboBox@@QAE@XZ

?save@QImage@@QBE_NPAVQIODevice@@PBDH@Z

??0QCursor@@QAE@ABV0@@Z

??0QCursor@@QAE@W4CursorShape@Qt@@@Z

??0QCursor@@QAE@ABVQPixmap@@HH@Z

??0QBrush@@QAE@XZ

??0QRadialGradient@@QAE@ABVQPointF@@N0@Z

??0QLinearGradient@@QAE@NNNN@Z

?setInterpolationMode@QGradient@@QAEXW4InterpolationMode@1@@Z

?setColorAt@QGradient@@QAEXNABVQColor@@@Z

?setRgbF@QColor@@QAEXNNNN@Z

??1QGradient@@QAE@XZ

??0QTransform@@QAE@NNNNNN@Z

?rect@QImage@@QBE?AVQRect@@XZ

?drawImage@QPainter@@QAEXABVQPointF@@ABVQImage@@ABVQRectF@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

?isNull@QImage@@QBE_NXZ

?width@QImage@@QBEHXZ

?height@QImage@@QBEHXZ

??4QImage@@QAEAAV0@$$QAV0@@Z

?fill@QImage@@QAEXI@Z

??0QImage@@QAE@XZ

??0QRegion@@QAE@XZ

??4QRegion@@QAEAAV0@$$QAV0@@Z

?worldTransform@QPainter@@QBEABVQTransform@@XZ

??0QTransform@@QAE@NNNNNNNNN@Z

?drawTiledPixmap@QPainter@@QAEXABVQRectF@@ABVQPixmap@@ABVQPointF@@@Z

??YQRegion@@QAEAAV0@ABVQRect@@@Z

??0QColor@@QAE@I@Z

?fillRect@QPainter@@QAEXABVQRect@@ABVQColor@@@Z

?metric@QPixmap@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z

?releaseDC@QPaintDevice@@UBEXPAUHDC__@@@Z

?getDC@QPaintDevice@@UBEPAUHDC__@@XZ

?paintEngine@QPixmap@@UBEPAVQPaintEngine@@XZ

?devType@QPixmap@@UBEHXZ

?pixel@QImage@@QBEIHH@Z

?fromRgba@QColor@@SA?AV1@I@Z

?drawPixmap@QPainter@@QAEXABVQRectF@@ABVQPixmap@@0@Z

?copy@QPixmap@@QBE?AV1@ABVQRect@@@Z

?hasAlpha@QPixmap@@QBE_NXZ

?type@QTransform@@QBE?AW4TransformationType@1@XZ

??DQTransform@@QBE?AV0@ABV0@@Z

?fromTranslate@QTransform@@SA?AV1@NN@Z

??4QTransform@@QAEAAV0@ABV0@@Z

??XQTransform@@QAEAAV0@ABV0@@Z

??0QBrush@@QAE@ABVQPixmap@@@Z

??1QStyleOptionSlider@@QAE@XZ

?fillRect@QPainter@@QAEXABVQRect@@ABVQBrush@@@Z

??0QStyleOptionSlider@@QAE@XZ

?init@QStyleOption@@QAEXPBVQWidget@@@Z

??0QStyleOption@@QAE@HH@Z

??1QStyleOption@@QAE@XZ

?screenGeometry@QDesktopWidget@@QBE?BVQRect@@H@Z

?colorCount@QPaintDevice@@QBEHXZ

?screen@QDesktopWidget@@QAEPAVQWidget@@H@Z

?depth@QPaintDevice@@QBEHXZ

?qt_tab_all_widgets@@3_NA

?setCmykF@QColor@@QAEXNNNNN@Z

?save@QPixmap@@QBE_NPAVQIODevice@@PBDH@Z

?constBits@QImage@@QBEPBEXZ

?convertToFormat@QImage@@QBE?AV1@W4Format@1@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

?fromImage@QPixmap@@SA?AV1@ABVQImage@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

??0QPixmap@@QAE@ABVQSize@@@Z

?setWidth@QPen@@QAEXH@Z

?bits@QImage@@QAEPAEXZ

?bytesPerLine@QImage@@QBEHXZ

?isActive@QPainter@@QBE_NXZ

?setClipping@QPainter@@QAEX_N@Z

?drawImage@QPainter@@QAEXHHABVQImage@@HHHHV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

?scaled@QPixmap@@QBE?AV1@HHW4AspectRatioMode@Qt@@W4TransformationMode@3@@Z

??4QPixmap@@QAEAAV0@$$QAV0@@Z

?paintDevice@QPaintEngine@@QBEPAVQPaintDevice@@XZ

?setPaintDevice@QPaintEngine@@QAEXPAVQPaintDevice@@@Z

?toImage@QPixmap@@QBE?AVQImage@@XZ

??0QPainterPathStroker@@QAE@XZ

?setWidth@QPainterPathStroker@@QAEXN@Z

?capStyle@QPen@@QBE?AW4PenCapStyle@Qt@@XZ

?setCapStyle@QPainterPathStroker@@QAEXW4PenCapStyle@Qt@@@Z

?joinStyle@QPen@@QBE?AW4PenJoinStyle@Qt@@XZ

?setJoinStyle@QPainterPathStroker@@QAEXW4PenJoinStyle@Qt@@@Z

?setMiterLimit@QPainterPathStroker@@QAEXN@Z

?dashPattern@QPen@@QBE?AV?$QVector@N@@XZ

?setDashPattern@QPainterPathStroker@@QAEXABV?$QVector@N@@@Z

?dashOffset@QPen@@QBENXZ

?setDashOffset@QPainterPathStroker@@QAEXN@Z

?createStroke@QPainterPathStroker@@QBE?AVQPainterPath@@ABV2@@Z

??1QPainterPathStroker@@QAE@XZ

?elementAt@QPainterPath@@QBEABVElement@1@H@Z

?arcMoveTo@QPainterPath@@QAEXABVQRectF@@N@Z

?arcTo@QPainterPath@@QAEXABVQRectF@@NN@Z

??0QImage@@QAE@HHW4Format@0@@Z

?fillRule@QPainterPath@@QBE?AW4FillRule@Qt@@XZ

?contains@QPainterPath@@QBE_NABVQPointF@@@Z

??0QMatrix@@QAE@XZ

?toFillPolygon@QPainterPath@@QBE?AVQPolygonF@@ABVQMatrix@@@Z

?angleAtPercent@QPainterPath@@QBENN@Z

?percentAtLength@QPainterPath@@QBENN@Z

?pointAtPercent@QPainterPath@@QBE?AVQPointF@@N@Z

?length@QPainterPath@@QBENXZ

?map@QTransform@@QBE?AVQPainterPath@@ABV2@@Z

?currentPosition@QPainterPath@@QBE?AVQPointF@@XZ

?elementCount@QPainterPath@@QBEHXZ

?closeSubpath@QPainterPath@@QAEXXZ

?cubicTo@QPainterPath@@QAEXABVQPointF@@00@Z

?quadTo@QPainterPath@@QAEXABVQPointF@@0@Z

?moveTo@QPainterPath@@QAEXABVQPointF@@@Z

?boundingRect@QPainterPath@@QBE?AVQRectF@@XZ

??0QTransform@@QAE@XZ

?translate@QTransform@@QAEAAV1@NN@Z

??D@YA?AVQPainterPath@@ABV0@ABVQTransform@@@Z

??4QPainterPath@@QAEAAV0@ABV0@@Z

??0QIcon@@QAE@ABVQString@@@Z

?pixmap@QIcon@@QBE?AVQPixmap@@ABVQSize@@W4Mode@1@W4State@1@@Z

?pixelSize@QFont@@QBEHXZ

?weight@QFont@@QBEHXZ

?addAction@QMenu@@QAEPAVQAction@@ABVQString@@@Z

?xToCursor@QTextLine@@QBEHNW4CursorPosition@1@@Z

?width@QFontMetrics@@QBEHVQChar@@@Z

?width@QFontMetrics@@QBEHABVQString@@H@Z

??0QPen@@QAE@XZ

??4QPen@@QAEAAV0@$$QAV0@@Z

??0QTextLayout@@QAE@ABVQString@@ABVQFont@@PAVQPaintDevice@@@Z

?cursorToX@QTextLine@@QBENPAHW4Edge@1@@Z

??0QFontMetrics@@QAE@ABVQFont@@@Z

?ascent@QFontMetrics@@QBEHXZ

?height@QFontMetrics@@QBEHXZ

?setPen@QPainter@@QAEXABVQColor@@@Z

?draw@QTextLine@@QBEXPAVQPainter@@ABVQPointF@@PBUFormatRange@QTextLayout@@@Z

??1QFontMetrics@@QAE@XZ

??1QTextLayout@@QAE@XZ

?width@QFontMetrics@@QBEHABVQString@@HH@Z

?addText@QPainterPath@@QAEXABVQPointF@@ABVQFont@@ABVQString@@@Z

?drawText@QPainter@@QAEXABVQPointF@@ABVQString@@HH@Z

?setLetterSpacing@QFont@@QAEXW4SpacingType@1@N@Z

?setWordSpacing@QFont@@QAEXN@Z

??0QPen@@QAE@ABVQBrush@@NW4PenStyle@Qt@@W4PenCapStyle@3@W4PenJoinStyle@3@@Z

??0QPen@@QAE@ABVQColor@@@Z

?setFlags@QTextLayout@@QAEXH@Z

?beginLayout@QTextLayout@@QAEXXZ

?createLine@QTextLayout@@QAE?AVQTextLine@@XZ

?setLineWidth@QTextLine@@QAEXN@Z

?naturalTextWidth@QTextLine@@QBENXZ

?endLayout@QTextLayout@@QAEXXZ

?text@QClipboard@@QBE?AVQString@@W4Mode@1@@Z

?setMimeData@QClipboard@@QAEXPAVQMimeData@@W4Mode@1@@Z

?mimeData@QClipboard@@QBEPBVQMimeData@@W4Mode@1@@Z

?supportedImageFormats@QImageWriter@@SA?AV?$QList@VQByteArray@@@@XZ

?supportedImageFormats@QImageReader@@SA?AV?$QList@VQByteArray@@@@XZ

?nativeVirtualKey@QKeyEvent@@QBEIXZ

?text@QKeyEvent@@QBE?AVQString@@XZ

?pos@QGraphicsSceneWheelEvent@@QBE?AVQPointF@@XZ

?screenPos@QGraphicsSceneWheelEvent@@QBE?AVQPoint@@XZ

?modifiers@QGraphicsSceneWheelEvent@@QBE?AV?$QFlags@W4KeyboardModifier@Qt@@@@XZ

?orientation@QGraphicsSceneWheelEvent@@QBE?AW4Orientation@Qt@@XZ

?delta@QGraphicsSceneWheelEvent@@QBEHXZ

?wheelScrollLines@QApplication@@SAHXZ

?buttons@QMouseEvent@@QBE?AV?$QFlags@W4MouseButton@Qt@@@@XZ

?modifiers@QInputEvent@@QBE?AV?$QFlags@W4KeyboardModifier@Qt@@@@XZ

?screenPos@QGraphicsSceneMouseEvent@@QBE?AVQPoint@@XZ

?buttons@QGraphicsSceneMouseEvent@@QBE?AV?$QFlags@W4MouseButton@Qt@@@@XZ

?modifiers@QGraphicsSceneMouseEvent@@QBE?AV?$QFlags@W4KeyboardModifier@Qt@@@@XZ

?setRgb@QColor@@QAEXHHHH@Z

?boundingRect@QRegion@@QBE?AVQRect@@XZ

?resetTransform@QPainter@@QAEXXZ

?drawPixmap@QPainter@@QAEXABVQPointF@@ABVQPixmap@@@Z

?width@QPaintDevice@@QBEHXZ

?height@QPaintDevice@@QBEHXZ

?mapRect@QTransform@@QBE?AVQRectF@@ABV2@@Z

?drawLines@QPainter@@QAEXPBVQLineF@@H@Z

?device@QPainter@@QBEPAVQPaintDevice@@XZ

?end@QPainter@@QAE_NXZ

?setDashPattern@QPen@@QAEXABV?$QVector@N@@@Z

?setDashOffset@QPen@@QAEXN@Z

?addRoundedRect@QPainterPath@@QAEXABVQRectF@@NNW4SizeMode@Qt@@@Z

?united@QPainterPath@@QBE?AV1@ABV1@@Z

??4QPainterPath@@QAEAAV0@$$QAV0@@Z

?fromWinHBITMAP@QPixmap@@SA?AV1@PAUHBITMAP__@@W4HBitmapFormat@1@@Z

?drawPixmap@QPainter@@QAEXABVQRect@@ABVQPixmap@@@Z

?setWidthF@QPen@@QAEXN@Z

?setWorldTransform@QPainter@@QAEXABVQTransform@@_N@Z

?addEllipse@QPainterPath@@QAEXABVQRectF@@@Z

?rotate@QPainter@@QAEXN@Z

??0QPainterPath@@QAE@XZ

?hasClipping@QPainter@@QBE_NXZ

?addRect@QPainterPath@@QAEXABVQRectF@@@Z

?addPath@QPainterPath@@QAEXABV1@@Z

?window@QPainter@@QBE?AVQRect@@XZ

?inverted@QTransform@@QBE?AV1@PA_N@Z

?mapRect@QTransform@@QBE?AVQRect@@ABV2@@Z

?intersected@QPainterPath@@QBE?AV1@ABV1@@Z

?setMiterLimit@QPen@@QAEXN@Z

?setJoinStyle@QPen@@QAEXW4PenJoinStyle@Qt@@@Z

?setCapStyle@QPen@@QAEXW4PenCapStyle@Qt@@@Z

?compositionMode@QPainter@@QBE?AW4CompositionMode@1@XZ

?deviceTransform@QPainter@@QBEABVQTransform@@XZ

??0QTransform@@QAE@ABV0@@Z

?inline_type@QTransform@@ABE?AW4TransformationType@1@XZ

?setClipRect@QPainter@@QAEXABVQRectF@@W4ClipOperation@Qt@@@Z

?setColor@QBrush@@QAEXABVQColor@@@Z

?setCompositionMode@QPainter@@QAEXW4CompositionMode@1@@Z

?fillRect@QPainter@@QAEXABVQRectF@@ABVQColor@@@Z

?fillRect@QPainter@@QAEXABVQRectF@@ABVQBrush@@@Z

?color@QPen@@QBE?AVQColor@@XZ

?widthF@QPen@@QBENXZ

?miterLimit@QPen@@QBENXZ

?setBrush@QPen@@QAEXABVQBrush@@@Z

?alphaF@QColor@@QBENXZ

?setAlphaF@QColor@@QAEXN@Z

?fillPath@QPainter@@QAEXABVQPainterPath@@ABVQBrush@@@Z

??0QBrush@@QAE@ABVQGradient@@@Z

?setTransform@QBrush@@QAEXABVQTransform@@@Z

??0QPainterPath@@QAE@ABVQPointF@@@Z

?lineTo@QPainterPath@@QAEXABVQPointF@@@Z

?setFillRule@QPainterPath@@QAEXW4FillRule@Qt@@@Z

?setClipPath@QPainter@@QAEXABVQPainterPath@@W4ClipOperation@Qt@@@Z

?drawConvexPolygon@QPainter@@QAEXPBVQPointF@@H@Z

??1QPolygonF@@QAE@XZ

?drawEllipse@QPainter@@QAEXABVQRect@@@Z

?drawRects@QPainter@@QAEXPBVQRect@@H@Z

?combinedTransform@QPainter@@QBE?AVQTransform@@XZ

?clipBoundingRect@QPainter@@QBE?AVQRectF@@XZ

?width@QPixmap@@QBEHXZ

?height@QPixmap@@QBEHXZ

?drawPixmap@QPainter@@QAEXABVQPoint@@ABVQPixmap@@ABVQRect@@@Z

??0QImage@@QAE@ABV0@@Z

?testRenderHint@QPainter@@QBE_NW4RenderHint@1@@Z

?setRenderHint@QPainter@@QAEXW4RenderHint@1@_N@Z

??0QPen@@QAE@ABV0@@Z

?setColor@QPen@@QAEXABVQColor@@@Z

?setBrush@QPainter@@QAEXW4BrushStyle@Qt@@@Z

?setStyle@QPen@@QAEXW4PenStyle@Qt@@@Z

?strokePath@QPainter@@QAEXABVQPainterPath@@ABVQPen@@@Z

??1QPen@@QAE@XZ

??4QImage@@QAEAAV0@ABV0@@Z

??1QImage@@UAE@XZ

??0QPixmap@@QAE@HH@Z

??0QColor@@QAE@W4GlobalColor@Qt@@@Z

?fill@QPixmap@@QAEXABVQColor@@@Z

?translate@QPainter@@QAEXABVQPointF@@@Z

?pen@QPainter@@QBEABVQPen@@XZ

?setPen@QPainter@@QAEXABVQPen@@@Z

qtnetwork4

??1QTcpSocket@@UAE@XZ

??1QSslSocket@@UAE@XZ

?writeData@QAbstractSocket@@MAE_JPBD_J@Z

?readData@QAbstractSocket@@MAE_JPAD_J@Z

?waitForBytesWritten@QAbstractSocket@@UAE_NH@Z

?waitForReadyRead@QAbstractSocket@@UAE_NH@Z

?canReadLine@QAbstractSocket@@UBE_NXZ

?bytesToWrite@QAbstractSocket@@UBE_JXZ

?bytesAvailable@QAbstractSocket@@UBE_JXZ

?atEnd@QAbstractSocket@@UBE_NXZ

?close@QAbstractSocket@@UAEXXZ

?qt_metacall@QTcpSocket@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QTcpSocket@@UAEPAXPBD@Z

?metaObject@QTcpSocket@@UBEPBUQMetaObject@@XZ

?writeData@QSslSocket@@MAE_JPBD_J@Z

?readLineData@QAbstractSocket@@MAE_JPAD_J@Z

?readData@QSslSocket@@MAE_JPAD_J@Z

?waitForBytesWritten@QSslSocket@@UAE_NH@Z

?waitForReadyRead@QSslSocket@@UAE_NH@Z

?canReadLine@QSslSocket@@UBE_NXZ

?bytesToWrite@QSslSocket@@UBE_JXZ

?bytesAvailable@QSslSocket@@UBE_JXZ

?atEnd@QSslSocket@@UBE_NXZ

?close@QSslSocket@@UAEXXZ

?isSequential@QAbstractSocket@@UBE_NXZ

?qt_metacall@QSslSocket@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QSslSocket@@UAEPAXPBD@Z

?metaObject@QSslSocket@@UBEPBUQMetaObject@@XZ

??0QSslSocket@@QAE@PAVQObject@@@Z

??0QTcpSocket@@QAE@PAVQObject@@@Z

?connectToHostEncrypted@QSslSocket@@QAEXABVQString@@GV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?connectToHost@QAbstractSocket@@QAEXABVQString@@GV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?error@QSslError@@QBE?AW4SslError@1@XZ

?state@QAbstractSocket@@QBE?AW4SocketState@1@XZ

?lookupHost@QHostInfo@@SAHABVQString@@PAVQObject@@PBD@Z

?proxyFactory@QNetworkAccessManager@@QBEPAVQNetworkProxyFactory@@XZ

??0QNetworkProxyQuery@@QAE@ABVQUrl@@W4QueryType@0@@Z

??1QNetworkProxyQuery@@QAE@XZ

?type@QNetworkProxy@@QBE?AW4ProxyType@1@XZ

?hostName@QNetworkProxy@@QBE?AVQString@@XZ

?port@QNetworkProxy@@QBEGXZ

??0QNetworkProxy@@QAE@ABV0@@Z

?cache@QNetworkAccessManager@@QBEPAVQAbstractNetworkCache@@XZ

?isValid@QNetworkCacheMetaData@@QBE_NXZ

??1QNetworkCacheMetaData@@QAE@XZ

?toRawForm@QNetworkCookie@@QBE?AVQByteArray@@W4RawForm@1@@Z

?parseCookies@QNetworkCookie@@SA?AV?$QList@VQNetworkCookie@@@@ABVQByteArray@@@Z

?isHttpOnly@QNetworkCookie@@QBE_NXZ

??0QNetworkCookie@@QAE@ABV0@@Z

??1QNetworkCookie@@QAE@XZ

?cookieJar@QNetworkAccessManager@@QBEPAVQNetworkCookieJar@@XZ

?header@QNetworkReply@@QBE?AVQVariant@@W4KnownHeaders@QNetworkRequest@@@Z

?rawHeader@QNetworkReply@@QBE?AVQByteArray@@ABV2@@Z

?rawHeaderPairs@QNetworkReply@@QBEABV?$QList@U?$QPair@VQByteArray@@V1@@@@@XZ

?error@QNetworkReply@@QBE?AW4NetworkError@1@XZ

?url@QNetworkReply@@QBE?AVQUrl@@XZ

??4QNetworkRequest@@QAEAAV0@ABV0@@Z

?setHeader@QNetworkRequest@@QAEXW4KnownHeaders@1@ABVQVariant@@@Z

?get@QNetworkAccessManager@@QAEPAVQNetworkReply@@ABVQNetworkRequest@@@Z

?post@QNetworkAccessManager@@QAEPAVQNetworkReply@@ABVQNetworkRequest@@PAVQIODevice@@@Z

?head@QNetworkAccessManager@@QAEPAVQNetworkReply@@ABVQNetworkRequest@@@Z

?put@QNetworkAccessManager@@QAEPAVQNetworkReply@@ABVQNetworkRequest@@PAVQIODevice@@@Z

?deleteResource@QNetworkAccessManager@@QAEPAVQNetworkReply@@ABVQNetworkRequest@@@Z

?sendCustomRequest@QNetworkAccessManager@@QAEPAVQNetworkReply@@ABVQNetworkRequest@@ABVQByteArray@@PAVQIODevice@@@Z

?attribute@QNetworkReply@@QBE?AVQVariant@@W4Attribute@QNetworkRequest@@@Z

?setUrl@QNetworkRequest@@QAEXABVQUrl@@@Z

?setOriginatingObject@QNetworkRequest@@QAEXPAVQObject@@@Z

?setRawHeader@QNetworkRequest@@QAEXABVQByteArray@@0@Z

?hasRawHeader@QNetworkRequest@@QBE_NABVQByteArray@@@Z

?setAttribute@QNetworkRequest@@QAEXW4Attribute@1@ABVQVariant@@@Z

??1QNetworkConfigurationManager@@UAE@XZ

?qt_metacall@QNetworkConfigurationManager@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QNetworkConfigurationManager@@UAEPAXPBD@Z

?metaObject@QNetworkConfigurationManager@@UBEPBUQMetaObject@@XZ

??0QNetworkConfigurationManager@@QAE@PAVQObject@@@Z

?isOnline@QNetworkConfigurationManager@@QBE_NXZ

??0QHttpRequestHeader@@QAE@XZ

??0QHttpRequestHeader@@QAE@ABVQString@@@Z

??4QHttpRequestHeader@@QAEAAV0@ABV0@@Z

??1QHttpHeader@@UAE@XZ

?isValid@QHttpHeader@@QBE_NXZ

?path@QHttpRequestHeader@@QBE?AVQString@@XZ

?contentType@QHttpHeader@@QBE?AVQString@@XZ

?contentLength@QHttpHeader@@QBEIXZ

?hasKey@QHttpHeader@@QBE_NABVQString@@@Z

?value@QHttpHeader@@QBE?AVQString@@ABV2@@Z

??0QHttpResponseHeader@@QAE@HABVQString@@HH@Z

?setValue@QHttpHeader@@QAEXABVQString@@0@Z

?setContentLength@QHttpHeader@@QAEXH@Z

?toString@QHttpResponseHeader@@UBE?AVQString@@XZ

?setContentType@QHttpHeader@@QAEXABVQString@@@Z

??1QHttpRequestHeader@@UAE@XZ

??1QHttpResponseHeader@@UAE@XZ

?flush@QAbstractSocket@@QAE_NXZ

?close@QTcpServer@@QAEXXZ

??1QTcpServer@@UAE@XZ

?incomingConnection@QTcpServer@@MAEXH@Z

?nextPendingConnection@QTcpServer@@UAEPAVQTcpSocket@@XZ

?hasPendingConnections@QTcpServer@@UBE_NXZ

?qt_metacall@QTcpServer@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QTcpServer@@UAEPAXPBD@Z

?metaObject@QTcpServer@@UBEPBUQMetaObject@@XZ

??0QTcpServer@@QAE@PAVQObject@@@Z

??0QHostAddress@@QAE@W4SpecialAddress@0@@Z

?listen@QTcpServer@@QAE_NABVQHostAddress@@G@Z

??1QHostAddress@@QAE@XZ

??1QNetworkAccessManager@@UAE@XZ

?createRequest@QNetworkAccessManager@@MAEPAVQNetworkReply@@W4Operation@1@ABVQNetworkRequest@@PAVQIODevice@@@Z

?qt_metacall@QNetworkAccessManager@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QNetworkAccessManager@@UAEPAXPBD@Z

?metaObject@QNetworkAccessManager@@UBEPBUQMetaObject@@XZ

??0QNetworkAccessManager@@QAE@PAVQObject@@@Z

??1QNetworkRequest@@QAE@XZ

?url@QNetworkRequest@@QBE?AVQUrl@@XZ

?attribute@QNetworkRequest@@QBE?AVQVariant@@W4Attribute@1@ABV2@@Z

?rawHeaderList@QNetworkRequest@@QBE?AV?$QList@VQByteArray@@@@XZ

?rawHeader@QNetworkRequest@@QBE?AVQByteArray@@ABV2@@Z

??1QNetworkProxy@@QAE@XZ

??0QNetworkRequest@@QAE@ABVQUrl@@@Z

qtcore4

?wait@QThread@@QAE_NK@Z

?start@QThread@@QAEXW4Priority@1@@Z

?wakeAll@QWaitCondition@@QAEXXZ

?wakeOne@QWaitCondition@@QAEXXZ

?wait@QWaitCondition@@QAE_NPAVQMutex@@K@Z

??1QWaitCondition@@QAE@XZ

??0QWaitCondition@@QAE@XZ

?unlock@QMutex@@QAEXXZ

?tryLock@QMutex@@QAE_NXZ

?lock@QMutex@@QAEXXZ

??1QMutex@@QAE@XZ

??0QMutex@@QAE@W4RecursionMode@0@@Z

?yieldCurrentThread@QThread@@SAXXZ

??1QThread@@UAE@XZ

?qt_metacall@QThread@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QThread@@UAEPAXPBD@Z

?metaObject@QThread@@UBEPBUQMetaObject@@XZ

??0QThread@@QAE@PAVQObject@@@Z

?currentThread@QThread@@SAPAV1@XZ

?thread@QObject@@QBEPAVQThread@@XZ

?moveToThread@QObject@@QAEXPAVQThread@@@Z

??5@YAAAVQDataStream@@AAV0@AAVQString@@@Z

??6@YAAAVQDataStream@@AAV0@ABVQString@@@Z

?properties@QUnicodeTables@@YIPBUProperties@1@I@Z

?at@QString@@QBE?BVQChar@@H@Z

?writeData@QBuffer@@MAE_JPBD_J@Z

?readData@QBuffer@@MAE_JPAD_J@Z

?canReadLine@QBuffer@@UBE_NXZ

?atEnd@QBuffer@@UBE_NXZ

?seek@QBuffer@@UAE_N_J@Z

?size@QBuffer@@UBE_JXZ

?pos@QBuffer@@UBE_JXZ

?isSequential@QIODevice@@UBE_NXZ

?disconnectNotify@QBuffer@@MAEXPBD@Z

?connectNotify@QBuffer@@MAEXPBD@Z

?qt_metacall@QBuffer@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QBuffer@@UAEPAXPBD@Z

?metaObject@QBuffer@@UBEPBUQMetaObject@@XZ

??0QBuffer@@QAE@PAVQObject@@@Z

?setData@QBuffer@@QAEXABVQByteArray@@@Z

?fromUnicode@QTextCodec@@QBE?AVQByteArray@@PBVQChar@@HPAUConverterState@1@@Z

?replace@QByteArray@@QAEAAV1@DPBD@Z

?availableMibs@QTextCodec@@SA?AV?$QList@H@@XZ

?codecForMib@QTextCodec@@SAPAV1@H@Z

?toUnicode@QTextCodec@@QBE?AVQString@@PBDHPAUConverterState@1@@Z

??0ConverterState@QTextCodec@@QAE@V?$QFlags@W4ConversionFlag@QTextCodec@@@@@Z

??1ConverterState@QTextCodec@@QAE@XZ

?isSpace@QChar@@QBE_NXZ

?isPunct@QChar@@QBE_NXZ

?translate@QCoreApplication@@SA?AVQString@@PBD00W4Encoding@1@H@Z

?setLoopCount@QAbstractAnimation@@QAEXH@Z

?start@QAbstractAnimation@@QAEXW4DeletionPolicy@1@@Z

?resume@QAbstractAnimation@@QAEXXZ

?stop@QTimer@@QAEXXZ

?start@QTimer@@QAEXH@Z

?pause@QAbstractAnimation@@QAEXXZ

?stop@QAbstractAnimation@@QAEXXZ

?currentLoopTime@QAbstractAnimation@@QBEHXZ

?currentLoop@QAbstractAnimation@@QBEHXZ

?setCurrentTime@QAbstractAnimation@@QAEXH@Z

?setObjectName@QObject@@QAEXABVQString@@@Z

??0QTimer@@QAE@PAVQObject@@@Z

??1QTimer@@UAE@XZ

?updateState@QAbstractAnimation@@MAEXW4State@1@0@Z

?updateDirection@QAbstractAnimation@@MAEXW4Direction@1@@Z

?event@QAbstractAnimation@@MAE_NPAVQEvent@@@Z

?qt_metacall@QAbstractAnimation@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QAbstractAnimation@@UAEPAXPBD@Z

?metaObject@QAbstractAnimation@@UBEPBUQMetaObject@@XZ

??0QAbstractAnimation@@QAE@PAVQObject@@@Z

??1QAbstractAnimation@@UAE@XZ

?previousNode@QHashData@@SAPAUNode@1@PAU21@@Z

?processEvents@QCoreApplication@@SAXV?$QFlags@W4ProcessEventsFlag@QEventLoop@@@@@Z

??0QLocale@@QAE@XZ

?name@QLocale@@QBE?AVQString@@XZ

?dayOfWeek@QDate@@QBEHXZ

?dayOfYear@QDate@@QBEHXZ

?isLetterOrNumber@QChar@@QBE_NXZ

?vsprintf@QString@@QAEAAV1@PBDPAD@Z

?qWinAppInst@@YAPAUHINSTANCE__@@XZ

?peek@QIODevice@@QAE?AVQByteArray@@_J@Z

?createUuid@QUuid@@SA?AU1@XZ

?toString@QUuid@@QBE?AVQString@@XZ

?setImageData@QMimeData@@QAEXABVQVariant@@@Z

?data@QMimeData@@QBE?AVQByteArray@@ABVQString@@@Z

?codecForName@QTextCodec@@SAPAV1@PBD@Z

?toUnicode@QTextCodec@@QBE?AVQString@@ABVQByteArray@@@Z

?removeFormat@QMimeData@@QAEXABVQString@@@Z

?urls@QMimeData@@QBE?AV?$QList@VQUrl@@@@XZ

?colorData@QMimeData@@QBE?AVQVariant@@XZ

?hasUrls@QMimeData@@QBE_NXZ

?hasColor@QMimeData@@QBE_NXZ

?children@QObject@@QBEABV?$QList@PAVQObject@@@@XZ

?indexOfProperty@QMetaObject@@QBEHPBD@Z

?normalizedSignature@QMetaObject@@SA?AVQByteArray@@PBD@Z

?qHash@@YAIABVQString@@@Z

?qHash@@YAIABVQByteArray@@@Z

??0QMetaProperty@@QAE@XZ

?killTimer@QObject@@QAEXH@Z

?startTimer@QObject@@QAEHH@Z

?metaObject@QObject@@UBEPBUQMetaObject@@XZ

?normalized@QRectF@@QBE?AV1@XZ

?normalized@QRect@@QBE?AV1@XZ

?contains@QRectF@@QBE_NABV1@@Z

?qstrcmp@@YAHPBD0@Z

?moveTo@QRect@@QAEXABVQPoint@@@Z

?free@?$QVector@VQXmlStreamAttribute@@@@AAEXPAU?$QVectorTypedData@VQXmlStreamAttribute@@@@@Z

?addData@QXmlStreamReader@@QAEXABVQString@@@Z

?atEnd@QXmlStreamReader@@QBE_NXZ

?readNext@QXmlStreamReader@@QAE?AW4TokenType@1@XZ

?tokenType@QXmlStreamReader@@QBE?AW4TokenType@1@XZ

?isCDATA@QXmlStreamReader@@QBE_NXZ

?isStandaloneDocument@QXmlStreamReader@@QBE_NXZ

?documentVersion@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?documentEncoding@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?entityResolver@QXmlStreamReader@@QBEPAVQXmlStreamEntityResolver@@XZ

??0QXmlStreamReader@@QAE@XZ

??0QXmlStreamNamespaceDeclaration@@QAE@ABVQString@@0@Z

?addExtraNamespaceDeclarations@QXmlStreamReader@@QAEXABV?$QVector@VQXmlStreamNamespaceDeclaration@@@@@Z

?setEntityResolver@QXmlStreamReader@@QAEXPAVQXmlStreamEntityResolver@@@Z

??1QXmlStreamReader@@QAE@XZ

?name@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?namespaceUri@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?qualifiedName@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?toString@QStringRef@@QBE?AVQString@@XZ

?namespaceDeclarations@QXmlStreamReader@@QBE?AV?$QVector@VQXmlStreamNamespaceDeclaration@@@@XZ

?attributes@QXmlStreamReader@@QBE?AVQXmlStreamAttributes@@XZ

??1?$QVector@VQXmlStreamAttribute@@@@QAE@XZ

??1QXmlStreamAttributes@@QAE@XZ

??A?$QVector@VQXmlStreamAttribute@@@@QBEABVQXmlStreamAttribute@@H@Z

?name@QXmlStreamAttribute@@QBE?AVQStringRef@@XZ

?value@QXmlStreamAttribute@@QBE?AVQStringRef@@XZ

?namespaceUri@QXmlStreamAttribute@@QBE?AVQStringRef@@XZ

?qualifiedName@QXmlStreamAttribute@@QBE?AVQStringRef@@XZ

?namespaceUri@QXmlStreamNamespaceDeclaration@@QBE?AVQStringRef@@XZ

?prefix@QXmlStreamNamespaceDeclaration@@QBE?AVQStringRef@@XZ

?dtdName@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?dtdPublicId@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?dtdSystemId@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?processingInstructionData@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?processingInstructionTarget@QXmlStreamReader@@QBE?AVQStringRef@@XZ

?text@QXmlStreamReader@@QBE?AVQStringRef@@XZ

??1QStringRef@@QAE@XZ

??0QXmlStreamNamespaceDeclaration@@QAE@ABV0@@Z

??0QXmlStreamNamespaceDeclaration@@QAE@XZ

?errorString@QXmlStreamReader@@QBE?AVQString@@XZ

??1QXmlStreamNamespaceDeclaration@@QAE@XZ

?error@QXmlStreamReader@@QBE?AW4Error@1@XZ

?columnNumber@QXmlStreamReader@@QBE_JXZ

?lineNumber@QXmlStreamReader@@QBE_JXZ

??1QXmlStreamEntityResolver@@UAE@XZ

?resolveEntity@QXmlStreamEntityResolver@@UAE?AVQString@@ABV2@0@Z

??8@YA_NABVQLatin1String@@ABVQStringRef@@@Z

?string@QTextBoundaryFinder@@QBE?AVQString@@XZ

?setPosition@QTextBoundaryFinder@@QAEXH@Z

?toPreviousBoundary@QTextBoundaryFinder@@QAEHXZ

?toNextBoundary@QTextBoundaryFinder@@QAEHXZ

?toStart@QTextBoundaryFinder@@QAEXXZ

?position@QTextBoundaryFinder@@QBEHXZ

??4QTextBoundaryFinder@@QAEAAV0@ABV0@@Z

??1QTextBoundaryFinder@@QAE@XZ

??0QTextBoundaryFinder@@QAE@XZ

??0QTextBoundaryFinder@@QAE@W4BoundaryType@0@ABVQString@@@Z

?toTitleCase@QChar@@SIII@Z

?normalized@QString@@QBE?AV1@W4NormalizationForm@1@@Z

??0QBuffer@@QAE@PAVQByteArray@@PAVQObject@@@Z

?open@QBuffer@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?close@QBuffer@@UAEXXZ

??1QBuffer@@UAE@XZ

?toBase64@QByteArray@@QBE?AV1@XZ

?free@?$QVector@VQPointF@@@@AAEXPAU?$QVectorTypedData@VQPointF@@@@@Z

?at@?$QVector@VQPointF@@@@QBEABVQPointF@@H@Z

?staticMetaObject@QIODevice@@2UQMetaObject@@B

?path@QUrl@@QBE?AVQString@@XZ

?toLongLong@QVariant@@QBE_JPA_N@Z

?errorString@QIODevice@@QBE?AVQString@@XZ

??0QVariant@@QAE@_J@Z

?isOpen@QIODevice@@QBE_NXZ

?readLineData@QIODevice@@MAE_JPAD_J@Z

?atEnd@QIODevice@@UBE_NXZ

?seek@QIODevice@@UAE_N_J@Z

?size@QIODevice@@UBE_JXZ

?pos@QIODevice@@UBE_JXZ

?close@QIODevice@@UAEXXZ

?open@QIODevice@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??0QIODevice@@QAE@XZ

?setOpenMode@QIODevice@@IAEXV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??1QIODevice@@UAE@XZ

??0QFile@@QAE@XZ

?setFileName@QFile@@QAEXABVQString@@@Z

?erase@QListData@@QAEPAPAXPAPAX@Z

?qt_metacall@QIODevice@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QIODevice@@UAEPAXPBD@Z

?removePostedEvents@QCoreApplication@@SAXPAVQObject@@H@Z

?isNull@QByteArray@@QBE_NXZ

?entryInfoList@QDir@@QBE?AV?$QList@VQFileInfo@@@@ABVQStringList@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4SortFlag@QDir@@@@@Z

?canonicalFilePath@QFileInfo@@QBE?AVQString@@XZ

??1QTemporaryFile@@UAE@XZ

?fileEngine@QTemporaryFile@@UBEPAVQAbstractFileEngine@@XZ

?open@QTemporaryFile@@MAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?qt_metacall@QTemporaryFile@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QTemporaryFile@@UAEPAXPBD@Z

?metaObject@QTemporaryFile@@UBEPBUQMetaObject@@XZ

?tempPath@QDir@@SA?AVQString@@XZ

??0QTemporaryFile@@QAE@ABVQString@@@Z

?setAutoRemove@QTemporaryFile@@QAEX_N@Z

?fileName@QFile@@QBE?AVQString@@XZ

?absolutePath@QFileInfo@@QBE?AVQString@@XZ

?fileName@QFileInfo@@QBE?AVQString@@XZ

?filePath@QDir@@QBE?AVQString@@ABV2@@Z

?toNativeSeparators@QDir@@SA?AVQString@@ABV2@@Z

?fileEngine@QFile@@UBEPAVQAbstractFileEngine@@XZ

?writeData@QFile@@MAE_JPBD_J@Z

?readLineData@QFile@@MAE_JPAD_J@Z

?readData@QFile@@MAE_JPAD_J@Z

?waitForBytesWritten@QIODevice@@UAE_NH@Z

?waitForReadyRead@QIODevice@@UAE_NH@Z

?canReadLine@QIODevice@@UBE_NXZ

?bytesToWrite@QIODevice@@UBE_JXZ

?bytesAvailable@QIODevice@@UBE_JXZ

?reset@QIODevice@@UAE_NXZ

?atEnd@QFile@@UBE_NXZ

?seek@QFile@@UAE_N_J@Z

?size@QFile@@UBE_JXZ

?pos@QFile@@UBE_JXZ

?close@QFile@@UAEXXZ

?isSequential@QFile@@UBE_NXZ

?qt_metacall@QFile@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QFile@@UAEPAXPBD@Z

?metaObject@QFile@@UBEPBUQMetaObject@@XZ

??0QFileInfo@@QAE@ABV0@@Z

?isWritable@QIODevice@@QBE_NXZ

?isReadable@QIODevice@@QBE_NXZ

?read@QIODevice@@QAE_JPAD_J@Z

?mkpath@QDir@@QBE_NABVQString@@@Z

?lastModified@QFileInfo@@QBE?AVQDateTime@@XZ

?toTime_t@QDateTime@@QBEIXZ

?size@QFileInfo@@QBE_JXZ

?exists@QFileInfo@@QBE_NXZ

?root@QDir@@SA?AV1@XZ

?rmdir@QDir@@QBE_NABVQString@@@Z

?remove@QFile@@SA_NABVQString@@@Z

?exists@QFile@@SA_NABVQString@@@Z

??6QDataStream@@QAEAAV0@N@Z

??6QDataStream@@QAEAAV0@_N@Z

??6@YAAAVQDataStream@@AAV0@ABVQVariant@@@Z

??5QDataStream@@QAEAAV0@AAN@Z

??5QDataStream@@QAEAAV0@AA_N@Z

??5@YAAAVQDataStream@@AAV0@AAVQVariant@@@Z

?status@QDataStream@@QBE?AW4Status@1@XZ

??6QDataStream@@QAEAAV0@_J@Z

??5QDataStream@@QAEAAV0@AA_J@Z

?setUrls@QMimeData@@QAEXABV?$QList@VQUrl@@@@@Z

?hasHtml@QMimeData@@QBE_NXZ

?html@QMimeData@@QBE?AVQString@@XZ

?hasText@QMimeData@@QBE_NXZ

?text@QMimeData@@QBE?AVQString@@XZ

?setHtml@QMimeData@@QAEXABVQString@@@Z

?setData@QMimeData@@QAEXABVQString@@ABVQByteArray@@@Z

??1QMimeData@@UAE@XZ

?retrieveData@QMimeData@@MBE?AVQVariant@@ABVQString@@W4Type@2@@Z

?formats@QMimeData@@UBE?AVQStringList@@XZ

?hasFormat@QMimeData@@UBE_NABVQString@@@Z

?qt_metacall@QMimeData@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QMimeData@@UAEPAXPBD@Z

?metaObject@QMimeData@@UBEPBUQMetaObject@@XZ

??0QMimeData@@QAE@XZ

?replace@QString@@QAEAAV1@VQChar@@0W4CaseSensitivity@Qt@@@Z

?setText@QMimeData@@QAEXABVQString@@@Z

?startsWith@QByteArray@@QBE_NPBD@Z

?toLower@QByteArray@@QBE?AV1@XZ

?truncate@QByteArray@@QAEXH@Z

?endsWith@QByteArray@@QBE_ND@Z

?typeName@QMetaType@@SAPBDH@Z

??0QVariant@@QAE@_N@Z

??0QVariant@@QAE@N@Z

??0QVariant@@QAE@ABVQChar@@@Z

??0QVariant@@QAE@ABV?$QMap@VQString@@VQVariant@@@@@Z

??0QVariant@@QAE@ABV?$QList@VQVariant@@@@@Z

??0QVariant@@QAE@ABVQStringList@@@Z

??0QVariant@@QAE@ABVQByteArray@@@Z

??0QDate@@QAE@HHH@Z

??0QDateTime@@QAE@ABVQDate@@ABVQTime@@W4TimeSpec@Qt@@@Z

??0QVariant@@QAE@ABVQDateTime@@@Z

??0QVariant@@QAE@ABVQDate@@@Z

??0QVariant@@QAE@ABVQTime@@@Z

?fromString@QDateTime@@SA?AV1@ABVQString@@W4DateFormat@Qt@@@Z

?isValid@QDateTime@@QBE_NXZ

??4QDateTime@@QAEAAV0@ABV0@@Z

?fromString@QDate@@SA?AV1@ABVQString@@W4DateFormat@Qt@@@Z

?isValid@QDate@@QBE_NXZ

?fromString@QTime@@SA?AV1@ABVQString@@W4DateFormat@Qt@@@Z

?isValid@QTime@@QBE_NXZ

?indexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z

?lastIndexOf@QString@@QBEHVQChar@@HW4CaseSensitivity@Qt@@@Z

?setPattern@QRegExp@@QAEXABVQString@@@Z

?contains@QString@@QBE?AVQBool@@VQChar@@W4CaseSensitivity@Qt@@@Z

?setCaseSensitivity@QRegExp@@QAEXW4CaseSensitivity@Qt@@@Z

??0QRegExp@@QAE@ABVQString@@W4CaseSensitivity@Qt@@W4PatternSyntax@0@@Z

??0QString@@QAE@PBVQChar@@H@Z

?qWarning@@YA?AVQDebug@@XZ

?isNull@QVariant@@QBE_NXZ

?isValid@QRegExp@@QBE_NXZ

?pattern@QRegExp@@QBE?AVQString@@XZ

?utf16@QString@@QBEPBGXZ

?caseSensitivity@QRegExp@@QBE?AW4CaseSensitivity@Qt@@XZ

?toList@QVariant@@QBE?AV?$QList@VQVariant@@@@XZ

?currentDate@QDate@@SA?AV1@XZ

??0QTime@@QAE@HHHH@Z

?toLocalTime@QDateTime@@QBE?AV1@XZ

?date@QDateTime@@QBE?AVQDate@@XZ

?time@QDateTime@@QBE?AVQTime@@XZ

?year@QDate@@QBEHXZ

?month@QDate@@QBEHXZ

?day@QDate@@QBEHXZ

?hour@QTime@@QBEHXZ

?minute@QTime@@QBEHXZ

?second@QTime@@QBEHXZ

?msec@QTime@@QBEHXZ

?methodOffset@QMetaObject@@QBEHXZ

?connect@QMetaObject@@SA_NPBVQObject@@H0HHPAH@Z

?disconnect@QMetaObject@@SA_NPBVQObject@@H0H@Z

??0QDateTime@@QAE@ABV0@@Z

??1QDateTime@@QAE@XZ

??0QRegExp@@QAE@ABV0@@Z

??0QRegExp@@QAE@XZ

??1QRegExp@@QAE@XZ

?qMemCopy@@YAPAXPAXPBXI@Z

?qMalloc@@YAPAXI@Z

?contains@QByteArray@@QBE?AVQBool@@D@Z

?attributes@QMetaMethod@@QBEHXZ

?indexOf@QByteArray@@QBEHPBDH@Z

?left@QByteArray@@QBE?AV1@H@Z

??4QByteArray@@QAEAAV0@ABV0@@Z

?enumeratorCount@QMetaObject@@QBEHXZ

?enumerator@QMetaObject@@QBE?AVQMetaEnum@@H@Z

?name@QMetaEnum@@QBEPBDXZ

?propertyCount@QMetaObject@@QBEHXZ

?property@QMetaObject@@QBE?AVQMetaProperty@@H@Z

?isScriptable@QMetaProperty@@QBE_NPBVQObject@@@Z

?dynamicPropertyNames@QObject@@QBE?AV?$QList@VQByteArray@@@@XZ

?methodCount@QMetaObject@@QBEHXZ

?signature@QMetaMethod@@QBEPBDXZ

?isReadable@QMetaProperty@@QBE_NXZ

?read@QMetaProperty@@QBE?AVQVariant@@PBVQObject@@@Z

?firstNode@QHashData@@QAEPAUNode@1@XZ

?access@QMetaMethod@@QBE?AW4Access@1@XZ

?methodType@QMetaMethod@@QBE?AW4MethodType@1@XZ

?parameterTypes@QMetaMethod@@QBE?AV?$QList@VQByteArray@@@@XZ

?typeName@QMetaMethod@@QBEPBDXZ

??0QVariant@@QAE@HPBX@Z

?data@QVariant@@QAEPAXXZ

?metacall@QMetaObject@@SAHPAVQObject@@W4Call@1@HPAPAX@Z

?canConvert@QVariant@@QBE_NW4Type@1@@Z

??4QByteArray@@QAEAAV0@PBD@Z

?typeName@QMetaProperty@@QBEPBDXZ

?type@QMetaType@@SAHPBD@Z

?isWritable@QMetaProperty@@QBE_NXZ

?write@QMetaProperty@@QBE_NPAVQObject@@ABVQVariant@@@Z

?name@QMetaProperty@@QBEPBDXZ

??0QByteArray@@QAE@PBD@Z

?objectName@QObject@@QBE?AVQString@@XZ

?grow@QVectorData@@SAHHHH_N@Z

??0?$QVector@VQPointF@@@@QAE@H@Z

??A?$QVector@VQPointF@@@@QAEAAVQPointF@@H@Z

??1?$QVector@VQPointF@@@@QAE@XZ

?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z

?qMemSet@@YAPAXPAXHI@Z

?intersects@QRect@@QBE_NABV1@@Z

?allocate@QVectorData@@SAPAU1@HH@Z

?qBadAlloc@@YAXXZ

?shared_null@QVectorData@@2U1@A

?toEncoded@QUrl@@QBE?AVQByteArray@@V?$QFlags@W4FormattingOption@QUrl@@@@@Z

?fromRawData@QString@@SA?AV1@PBVQChar@@H@Z

?fromEncoded@QUrl@@SA?AV1@ABVQByteArray@@@Z

?direction@QChar@@SI?AW4Direction@1@I@Z

?toLower@QChar@@SIII@Z

?toAce@QUrl@@SA?AVQByteArray@@ABVQString@@@Z

?category@QChar@@SI?AW4Category@1@I@Z

?decompositionTag@QChar@@SI?AW4Decomposition@1@I@Z

?qUnregisterResourceData@@YA_NHPBE00@Z

?qRegisterResourceData@@YA_NHPBE00@Z

?fileName@QPluginLoader@@QBE?AVQString@@XZ

?staticInstances@QPluginLoader@@SA?AV?$QList@PAVQObject@@@@XZ

?libraryPaths@QCoreApplication@@SA?AVQStringList@@XZ

?absoluteFilePath@QDir@@QBE?AVQString@@ABV2@@Z

??0QDir@@QAE@ABVQString@@@Z

?exists@QDir@@QBE_NXZ

??1QDir@@QAE@XZ

?entryList@QDir@@QBE?AVQStringList@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4SortFlag@QDir@@@@@Z

??1QPluginLoader@@UAE@XZ

?setFileName@QPluginLoader@@QAEXABVQString@@@Z

?load@QPluginLoader@@QAE_NXZ

?instance@QPluginLoader@@QAEPAVQObject@@XZ

?unload@QPluginLoader@@QAE_NXZ

?free@?$QVector@VQPoint@@@@AAEXPAU?$QVectorTypedData@VQPoint@@@@@Z

?invoke@QMetaMethod@@QBE_NPAVQObject@@W4ConnectionType@Qt@@VQGenericReturnArgument@@VQGenericArgument@@333333333@Z

?toRect@QRectF@@QBE?AVQRect@@XZ

?fromRawData@QByteArray@@SA?AV1@PBDH@Z

?nextNode@QHashData@@SAPAUNode@1@PAU21@@Z

?readLine@QIODevice@@QAE?AVQByteArray@@_J@Z

?toLatin1@QString@@QBE?AVQByteArray@@XZ

??0QByteArray@@QAE@PBDH@Z

?toInt@QString@@QBEHPA_NH@Z

??0QString@@QAE@VQChar@@@Z

??0QFile@@QAE@ABVQString@@@Z

?exists@QFile@@QBE_NXZ

?open@QFile@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?readAll@QIODevice@@QAE?AVQByteArray@@XZ

??1QFile@@UAE@XZ

?read@QIODevice@@QAE?AVQByteArray@@_J@Z

?append@QByteArray@@QAEAAV1@ABV1@@Z

?mid@QByteArray@@QBE?AV1@HH@Z

??AQByteArray@@QAE?AVQByteRef@@H@Z

?indexOf@QByteArray@@QBEHDH@Z

?fromUtf8@QString@@SA?AV1@PBDH@Z

??4QByteArray@@QAEAAV0@$$QAV0@@Z

?qCritical@@YA?AVQDebug@@XZ

??6QTextStream@@QAEAAV0@D@Z

?clear@QByteArray@@QAEXXZ

?putChar@QIODevice@@QAE_ND@Z

?write@QIODevice@@QAE_JPBD_J@Z

?append@QString@@QAEAAV1@VQChar@@@Z

??AQString@@QAE?AVQCharRef@@H@Z

?toLong@QString@@QBEJPA_NH@Z

?setValue@QSettings@@QAEXABVQString@@ABVQVariant@@@Z

?typeToName@QVariant@@SAPBDW4Type@1@@Z

??0QVariant@@QAE@ABVQLatin1String@@@Z

??0QSettings@@QAE@PAVQObject@@@Z

?status@QSettings@@QBE?AW4Status@1@XZ

??1QSettings@@UAE@XZ

?value@QSettings@@QBE?AVQVariant@@ABVQString@@ABV2@@Z

?toAscii@QString@@QBE?AVQByteArray@@XZ

?nameToType@QVariant@@SA?AW4Type@1@PBD@Z

?convert@QVariant@@QAE_NW4Type@1@@Z

?toUrl@QVariant@@QBE?AVQUrl@@XZ

?setProperty@QObject@@QAE_NPBDABVQVariant@@@Z

?type@QVariant@@QBE?AW4Type@1@XZ

?hasFragment@QUrl@@QBE_NXZ

??YQString@@QAEAAV0@VQChar@@@Z

?translate@QCoreApplication@@SA?AVQString@@PBD00W4Encoding@1@@Z

?toBool@QVariant@@QBE_NXZ

?suffix@QFileInfo@@QBE?AVQString@@XZ

?remove@QString@@QAEAAV1@ABV1@W4CaseSensitivity@Qt@@@Z

??8QUrl@@QBE_NABV0@@Z

?qWarning@@YAXPBDZZ

?detach@QByteArray@@QAEXXZ

??0QVariant@@QAE@HPBXI@Z

?toMap@QVariant@@QBE?AV?$QMap@VQString@@VQVariant@@@@XZ

?replace@QString@@QAEAAV1@HHABV1@@Z

?left@QString@@QBE?AV1@H@Z

?toUpper@QString@@QBE?AV1@XZ

?registerType@QMetaType@@SAHPBDP6AXPAX@ZP6APAXPBX@Z@Z

?sprintf@QString@@QAAAAV1@PBDZZ

?hasImage@QMimeData@@QBE_NXZ

?imageData@QMimeData@@QBE?AVQVariant@@XZ

?exit@QEventLoop@@QAEXH@Z

?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ

?invokeMethod@QMetaObject@@SA_NPAVQObject@@PBDW4ConnectionType@Qt@@VQGenericReturnArgument@@VQGenericArgument@@444444444@Z

??1QEventLoop@@UAE@XZ

?qt_metacall@QEventLoop@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QEventLoop@@UAEPAXPBD@Z

?metaObject@QEventLoop@@UBEPBUQMetaObject@@XZ

??0QEventLoop@@QAE@PAVQObject@@@Z

?exec@QEventLoop@@QAEHV?$QFlags@W4ProcessEventsFlag@QEventLoop@@@@@Z

?translate@QRect@@QAEXABVQPoint@@@Z

??0QRectF@@QAE@ABVQRect@@@Z

?installEventFilter@QObject@@QAEXPAV1@@Z

?arg@QString@@QBE?AV1@HHHABVQChar@@@Z

?deleteLater@QObject@@QAEXXZ

?homePath@QDir@@SA?AVQString@@XZ

?isEmpty@QUrl@@QBE_NXZ

?qAddPostRoutine@@YAXP6AXXZ@Z

?rehash@QHashData@@QAEXH@Z

?hasShrunk@QHashData@@QAEXXZ

?isDir@QFileInfo@@QBE_NXZ

?isWritable@QFileInfo@@QBE_NXZ

?freeNode@QHashData@@QAEXPAX@Z

?detach_helper2@QHashData@@QAEPAU1@P6AXPAUNode@1@PAX@ZP6AX0@ZHH@Z

?free_helper@QHashData@@QAEXP6AXPAUNode@1@@Z@Z

?allocateNode@QHashData@@QAEPAXH@Z

?shared_null@QHashData@@2U1@A

??5QDataStream@@QAEAAV0@AAH@Z

??6QDataStream@@QAEAAV0@H@Z

?fromTime_t@QDateTime@@SA?AV1@I@Z

??0QDateTime@@QAE@XZ

?fromLatin1_helper@QString@@CAPAUData@1@PBDH@Z

?simplified@QString@@QBE?AV1@XZ

?split@QString@@QBE?AVQStringList@@ABVQChar@@W4SplitBehavior@1@W4CaseSensitivity@Qt@@@Z

?translated@QRect@@QBE?AV1@ABVQPoint@@@Z

??8QString@@QBE_NABV0@@Z

?QStringList_contains@QtPrivate@@YA?AVQBool@@PBVQStringList@@ABVQString@@W4CaseSensitivity@Qt@@@Z

?QStringList_join@QtPrivate@@YA?AVQString@@PBVQStringList@@ABV2@@Z

?QStringList_removeDuplicates@QtPrivate@@YAHPAVQStringList@@@Z

?manhattanLength@QPointF@@QBENXZ

??0QBitArray@@QAE@H_N@Z

?setBit@QBitArray@@QAEXH_N@Z

??SQBitArray@@QBE?AV0@XZ

??_4QBitArray@@QAEAAV0@ABV0@@Z

?at@QBitArray@@QBE_NH@Z

msvcp100

_Inf

_Nan

?max@?$numeric_limits@F@std@@SAFXZ

_FInf

msvcr100

__CppXcptFilter

_amsg_exit

_initterm_e

_initterm

_encoded_null

_malloc_crt

?terminate@@YAXXZ

_onexit

_lock

__dllonexit

_unlock

_CIlog

_CIexp

_CIatan

_CIasin

sin

strftime

_setjmp3

strtol

strstr

_strnicmp

_mktime64

_ftime64

calloc

realloc

sscanf

strtoul

atoi

strchr

_time64

_localtime64_s

_stricmp

_CIacos

malloc

free

qsort

toupper

_vsnprintf

??0exception@std@@QAE@ABV01@@Z

??1exception@std@@UAE@XZ

?what@exception@std@@UBEPBDXZ

??0exception@std@@QAE@ABQBD@Z

_nextafter

_CItan

_CIfmod

_CIpow

_isnan

_finite

_CIsin

_CIcos

_CIatan2

floor

_CIsqrt

printf

memset

__iob_func

fprintf

_CxxThrowException

ceil

memmove

_purecall

_copysign

strncmp

??2@YAPAXI@Z

??_V@YAXPAX@Z

??3@YAXPAX@Z

memcpy

__CxxFrameHandler3

_crt_debugger_hook

_except_handler4_common

?_type_info_dtor_internal_method@type_info@@QAEXXZ

strncpy

__clean_type_info_names_internal

_strdup

kernel32

GetCurrentThreadId

DisableThreadLibraryCalls

IsProcessorFeaturePresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

TerminateProcess

InterlockedExchange

DecodePointer

EncodePointer

GetCurrentThread

GetThreadTimes

QueryPerformanceFrequency

IsDebuggerPresent

VirtualFree

VirtualAlloc

CreateFileMappingW

MapViewOfFile

GetSystemInfo

CreateFileA

UnmapViewOfFile

GetDiskFreeSpaceW

GetDiskFreeSpaceA

GetFullPathNameW

GetFullPathNameA

DeleteFileW

GetFileAttributesW

DeleteFileA

GetFileAttributesA

GetTempPathW

GetTempPathA

GetFileSize

FlushFileBuffers

SetEndOfFile

WriteFile

SetFilePointer

FormatMessageW

FormatMessageA

LocalFree

GetSystemTimeAsFileTime

GetSystemTime

GetCurrentProcessId

QueryPerformanceCounter

UnlockFileEx

LockFileEx

GetLastError

LockFile

UnlockFile

AreFileApisANSI

WideCharToMultiByte

MultiByteToWideChar

LeaveCriticalSection

EnterCriticalSection

DeleteCriticalSection

InterlockedCompareExchange

InitializeCriticalSection

Sleep

GetFileAttributesExW

CreateFileW

ReadFile

CloseHandle

VirtualProtect

GetTickCount

GetCurrentDirectoryW

SetCurrentDirectoryW

LoadLibraryExW

FindFirstFileW

FindNextFileW

FindClose

GetSystemDirectoryW

ExpandEnvironmentStringsW

GetModuleFileNameW

FreeLibrary

GetModuleHandleA

GetProcAddress

GetCurrentProcess

GetVersionExW

InterlockedIncrement

InterlockedDecrement

Exports

??0DumpRenderTreeSupportQt@@QAE@XZ

??0JSString@JSC@@AAE@W4VPtrStealingHackType@JSCell@1@@Z

??0JSString@JSC@@QAE@PAVExecState@1@VJSValue@1@11@Z

??0JSString@JSC@@QAE@PAVJSGlobalData@1@ABVUString@1@11@Z

??0JSString@JSC@@QAE@PAVJSGlobalData@1@ABVUString@1@1@Z

??0JSString@JSC@@QAE@PAVJSGlobalData@1@ABVUString@1@@Z

??0JSString@JSC@@QAE@PAVJSGlobalData@1@ABVUString@1@W4HasOtherOwnerType@01@@Z

??0JSString@JSC@@QAE@PAVJSGlobalData@1@IABVUString@1@PAV01@@Z

??0JSString@JSC@@QAE@PAVJSGlobalData@1@IPAV01@1@Z

??0JSString@JSC@@QAE@PAVJSGlobalData@1@IPAV01@ABVUString@1@@Z

??0JSString@JSC@@QAE@PAVJSGlobalData@1@V?$PassRefPtr@VRopeImpl@JSC@@@WTF@@@Z

??0JSString@JSC@@QAE@PAVJSGlobalData@1@V?$PassRefPtr@VStringImpl@WTF@@@WTF@@W4HasOtherOwnerType@01@@Z

??0MimeType@QWebPluginFactory@@QAE@ABU01@@Z

??0MimeType@QWebPluginFactory@@QAE@XZ

??0QDRTNode@@AAE@PAVNode@WebCore@@@Z

??0QDRTNode@@QAE@ABV0@@Z

??0QDRTNode@@QAE@XZ

??0QGraphicsWebView@@QAE@PAVQGraphicsItem@@@Z

??0QWebDatabase@@AAE@PAVQWebDatabasePrivate@@@Z

??0QWebDatabase@@QAE@ABV0@@Z

??0QWebElement@@AAE@PAVElement@WebCore@@@Z

??0QWebElement@@AAE@PAVNode@WebCore@@@Z

??0QWebElement@@QAE@ABV0@@Z

??0QWebElement@@QAE@XZ

??0QWebElementCollection@@QAE@ABV0@@Z

??0QWebElementCollection@@QAE@ABVQWebElement@@ABVQString@@@Z

??0QWebElementCollection@@QAE@XZ

??0QWebFrame@@AAE@PAV0@PAVQWebFrameData@@@Z

??0QWebFrame@@AAE@PAVQWebPage@@PAVQWebFrameData@@@Z

??0QWebHistory@@AAE@XZ

??0QWebHistoryInterface@@QAE@PAVQObject@@@Z

??0QWebHistoryItem@@AAE@PAVQWebHistoryItemPrivate@@@Z

??0QWebHistoryItem@@QAE@ABV0@@Z

??0QWebHitTestResult@@AAE@PAVQWebHitTestResultPrivate@@@Z

??0QWebHitTestResult@@QAE@ABV0@@Z

??0QWebHitTestResult@@QAE@XZ

??0QWebInspector@@QAE@PAVQWidget@@@Z

??0QWebPage@@QAE@PAVQObject@@@Z

??0QWebPluginDatabase@@AAE@PAVQObject@@@Z

??0QWebPluginFactory@@QAE@PAVQObject@@@Z

??0QWebPluginInfo@@AAE@PAVPluginPackage@WebCore@@@Z

??0QWebPluginInfo@@QAE@ABV0@@Z

??0QWebPluginInfo@@QAE@XZ

??0QWebScriptWorld@@QAE@ABV0@@Z

??0QWebScriptWorld@@QAE@XZ

??0QWebSecurityOrigin@@AAE@PAVQWebSecurityOriginPrivate@@@Z

??0QWebSecurityOrigin@@QAE@ABV0@@Z

??0QWebSettings@@AAE@PAVSettings@WebCore@@@Z

??0QWebSettings@@AAE@XZ

??0QWebView@@QAE@PAVQWidget@@@Z

??0ViewportAttributes@QWebPage@@QAE@ABV01@@Z

??0ViewportAttributes@QWebPage@@QAE@XZ

??0_Mutex@std@@QAE@W4_Uninitialized@1@@Z

??1DumpRenderTreeSupportQt@@QAE@XZ

??1JSString@JSC@@UAE@XZ

??1MimeType@QWebPluginFactory@@QAE@XZ

??1QDRTNode@@QAE@XZ

??1QGraphicsWebView@@UAE@XZ

??1QWebDatabase@@QAE@XZ

??1QWebElement@@QAE@XZ

??1QWebElementCollection@@QAE@XZ

??1QWebFrame@@EAE@XZ

??1QWebHistory@@AAE@XZ

??1QWebHistoryInterface@@UAE@XZ

??1QWebHistoryItem@@QAE@XZ

??1QWebHitTestResult@@QAE@XZ

??1QWebInspector@@UAE@XZ

??1QWebPage@@UAE@XZ

??1QWebPluginDatabase@@EAE@XZ

??1QWebPluginFactory@@UAE@XZ

??1QWebPluginInfo@@QAE@XZ

??1QWebScriptWorld@@QAE@XZ

??1QWebSecurityOrigin@@QAE@XZ

??1QWebSettings@@AAE@XZ

??1QWebView@@UAE@XZ

??1ViewportAttributes@QWebPage@@QAE@XZ

??4DumpRenderTreeSupportQt@@QAEAAV0@ABV0@@Z

??4MimeType@QWebPluginFactory@@QAEAAU01@ABU01@@Z

??4QDRTNode@@QAEAAV0@ABV0@@Z

??4QWebDatabase@@QAEAAV0@ABV0@@Z

??4QWebElement@@QAEAAV0@ABV0@@Z

??4QWebElementCollection@@QAEAAV0@ABV0@@Z

??4QWebHistoryItem@@QAEAAV0@ABV0@@Z

??4QWebHitTestResult@@QAEAAV0@ABV0@@Z

??4QWebPluginInfo@@QAEAAV0@ABV0@@Z

??4QWebScriptWorld@@QAEAAV0@ABV0@@Z

??4QWebSecurityOrigin@@QAEAAV0@ABV0@@Z

??4ViewportAttributes@QWebPage@@QAEAAV01@ABV01@@Z

??4_Init_locks@std@@QAEAAV01@ABV01@@Z

??5@YAAAVQDataStream@@AAV0@AAVQWebHistory@@@Z

??6@YAAAVQDataStream@@AAV0@ABVQWebHistory@@@Z

??8MimeType@QWebPluginFactory@@QBE_NABU01@@Z

??8QWebElement@@QBE_NABV0@@Z

??8QWebPluginInfo@@QBE_NABV0@@Z

??9MimeType@QWebPluginFactory@@QBE_NABU01@@Z

??9QWebElement@@QBE_NABV0@@Z

??9QWebPluginInfo@@QBE_NABV0@@Z

??AQWebElementCollection@@QBE?AVQWebElement@@H@Z

??HQWebElementCollection@@QBE?AV0@ABV0@@Z

??YQWebElementCollection@@QAEAAV0@ABV0@@Z

??_7JSString@JSC@@6B@

??_7QGraphicsWebView@@6B@

??_7QGraphicsWebView@@6BQGraphicsItem@@@

??_7QGraphicsWebView@@6BQObject@@@

??_7QWebFrame@@6B@

??_7QWebHistoryInterface@@6B@

??_7QWebInspector@@6BQObject@@@

??_7QWebInspector@@6BQPaintDevice@@@

??_7QWebPage@@6B@

??_7QWebPluginDatabase@@6B@

??_7QWebPluginFactory@@6B@

??_7QWebView@@6BQObject@@@

??_7QWebView@@6BQPaintDevice@@@

??_FQGraphicsWebView@@QAEXXZ

??_FQWebHistoryInterface@@QAEXXZ

??_FQWebInspector@@QAEXXZ

??_FQWebPage@@QAEXXZ

??_FQWebPluginDatabase@@QAEXXZ

??_FQWebPluginFactory@@QAEXXZ

??_FQWebView@@QAEXXZ

?acceptNavigationRequest@QWebPage@@MAE_NPAVQWebFrame@@ABVQNetworkRequest@@W4NavigationType@1@@Z

?action@QWebPage@@QBEPAVQAction@@W4WebAction@1@@Z

?activeMockDeviceOrientationClient@DumpRenderTreeSupportQt@@SAX_N@Z

?addClass@QWebElement@@QAEXABVQString@@@Z

?addLocalScheme@QWebSecurityOrigin@@SAXABVQString@@@Z

?addSearchPath@QWebPluginDatabase@@QAEXABVQString@@@Z

?addToJavaScriptWindowObject@QWebFrame@@QAEXABVQString@@PAVQObject@@@Z

?addToJavaScriptWindowObject@QWebFrame@@QAEXABVQString@@PAVQObject@@W4ValueOwnership@QScriptEngine@@@Z

?addURLToRedirect@DumpRenderTreeSupportQt@@SAXABVQString@@0@Z

?addUserStyleSheet@DumpRenderTreeSupportQt@@SAXPAVQWebPage@@ABVQString@@@Z

?allOrigins@QWebSecurityOrigin@@SA?AV?$QList@VQWebSecurityOrigin@@@@XZ

?alternateText@QWebHitTestResult@@QBE?AVQString@@XZ

?append@QWebElementCollection@@QAEXABV1@@Z

?appendInside@QWebElement@@QAEXABV1@@Z

?appendInside@QWebElement@@QAEXABVQString@@@Z

?appendOutside@QWebElement@@QAEXABV1@@Z

?appendOutside@QWebElement@@QAEXABVQString@@@Z

?appendStringInConstruct@JSString@JSC@@AAEXAAIABVUString@2@@Z

?appendStringInConstruct@JSString@JSC@@AAEXAAIPAV12@@Z

?appendValueInConstructAndIncrementLength@JSString@JSC@@AAEXPAVExecState@2@AAIVJSValue@2@@Z

?applicationCacheQuotaExceeded@QWebPage@@IAEXPAVQWebSecurityOrigin@@_K@Z

?at@QWebElementCollection@@QBE?AVQWebElement@@H@Z

?attribute@QWebElement@@QBE?AVQString@@ABV2@0@Z

?attributeNS@QWebElement@@QBE?AVQString@@ABV2@00@Z

?attributeNames@QWebElement@@QBE?AVQStringList@@ABVQString@@@Z

?back@QGraphicsWebView@@QAEXXZ

?back@QWebHistory@@QAEXXZ

?back@QWebView@@QAEXXZ

?backItem@QWebHistory@@QBE?AVQWebHistoryItem@@XZ

?backItems@QWebHistory@@QBE?AV?$QList@VQWebHistoryItem@@@@H@Z

?baseUrl@QWebFrame@@QBE?AVQUrl@@XZ

?begin@QWebElementCollection@@QAE?AViterator@1@XZ

?begin@QWebElementCollection@@QBE?AVconst_iterator@1@XZ

?boundingRect@QWebHitTestResult@@QBE?AVQRect@@XZ

?bytesReceived@QWebPage@@QBE_KXZ

?canGetIndex@JSString@JSC@@QAE_NI@Z

?canGoBack@QWebHistory@@QBE_NXZ

?canGoForward@QWebHistory@@QBE_NXZ

?changeEvent@QWebView@@MAEXPAVQEvent@@@Z

?childFrames@QWebFrame@@QBE?AV?$QList@PAVQWebFrame@@@@XZ

?chooseFile@QWebPage@@MAE?AVQString@@PAVQWebFrame@@ABV2@@Z

?classes@QWebElement@@QBE?AVQStringList@@XZ

?clear@QWebHistory@@QAEXXZ

?clearAllApplicationCaches@DumpRenderTreeSupportQt@@SAXXZ

?clearFrameName@DumpRenderTreeSupportQt@@SAXPAVQWebFrame@@@Z

?clearIconDatabase@QWebSettings@@SAXXZ

?clearMemoryCaches@QWebSettings@@SAXXZ

?clearOpener@DumpRenderTreeSupportQt@@SAXPAVQWebFrame@@@Z

?clearScriptWorlds@DumpRenderTreeSupportQt@@SAXXZ

?clone@QWebElement@@QBE?AV1@XZ

?closeEvent@QWebInspector@@MAEXPAVQCloseEvent@@@Z

?commentAtom@WTF@@3VAtomicString@1@B

?computedStyleIncludingVisitedInfo@DumpRenderTreeSupportQt@@SA?AV?$QMap@VQString@@VQVariant@@@@ABVQWebElement@@@Z

?constBegin@QWebElementCollection@@QBE?AVconst_iterator@1@XZ

?constEnd@QWebElementCollection@@QBE?AVconst_iterator@1@XZ

?contentsChanged@QWebPage@@IAEXXZ

?contentsSize@QWebFrame@@QBE?AVQSize@@XZ

?contentsSizeChanged@QWebFrame@@IAEXABVQSize@@@Z

?contextMenu@DumpRenderTreeSupportQt@@SA?AVQStringList@@PAVQWebPage@@@Z

?contextMenuEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneContextMenuEvent@@@Z

?contextMenuEvent@QWebView@@MAEXPAVQContextMenuEvent@@@Z

?count@QWebElementCollection@@QBEHXZ

?count@QWebHistory@@QBEHXZ

?counterValueForElementById@DumpRenderTreeSupportQt@@SA?AVQString@@PAVQWebFrame@@ABV2@@Z

?createPlugin@QWebPage@@MAEPAVQObject@@ABVQString@@ABVQUrl@@ABVQStringList@@2@Z

?createStandardContextMenu@QWebPage@@QAEPAVQMenu@@XZ

?createStructure@JSString@JSC@@SAPAVStructure@2@AAVJSGlobalData@2@VJSValue@2@@Z

?createWindow@QWebPage@@MAEPAV1@W4WebWindowType@1@@Z

?createWindow@QWebView@@MAEPAV1@W4WebWindowType@QWebPage@@@Z

?currentFrame@QWebPage@@QBEPAVQWebFrame@@XZ

?currentItem@QWebHistory@@QBE?AVQWebHistoryItem@@XZ

?currentItemIndex@QWebHistory@@QBEHXZ

?databaseQuota@QWebSecurityOrigin@@QBE_JXZ

?databaseQuotaExceeded@QWebPage@@IAEXPAVQWebFrame@@VQString@@@Z

?databaseUsage@QWebSecurityOrigin@@QBE_JXZ

?databases@QWebSecurityOrigin@@QBE?AV?$QList@VQWebDatabase@@@@XZ

?defaultInterface@QWebHistoryInterface@@SAPAV1@XZ

?defaultMinimumTimerInterval@DumpRenderTreeSupportQt@@SANXZ

?defaultSearchPaths@QWebPluginDatabase@@SA?AVQStringList@@XZ

?defaultTextEncoding@QWebSettings@@QBE?AVQString@@XZ

?description@QWebPluginInfo@@QBE?AVQString@@XZ

?devicePixelRatio@ViewportAttributes@QWebPage@@QBENXZ

?displayName@QWebDatabase@@QBE?AVQString@@XZ

?document@QWebElement@@QBE?AV1@XZ

?documentElement@QWebFrame@@QBE?AVQWebElement@@XZ

?downloadRequested@QWebPage@@IAEXABVQNetworkRequest@@@Z

?dragEnterEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z

?dragEnterEvent@QWebView@@MAEXPAVQDragEnterEvent@@@Z

?dragLeaveEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z

?dragLeaveEvent@QWebView@@MAEXPAVQDragLeaveEvent@@@Z

?dragMoveEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z

?dragMoveEvent@QWebView@@MAEXPAVQDragMoveEvent@@@Z

?dropEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z

?dropEvent@QWebView@@MAEXPAVQDropEvent@@@Z

?dumpEditingCallbacks@DumpRenderTreeSupportQt@@SAX_N@Z

?dumpFrameLoader@DumpRenderTreeSupportQt@@SAX_N@Z

?dumpHistoryCallbacks@DumpRenderTreeSupportQt@@SAX_N@Z

?dumpNotification@DumpRenderTreeSupportQt@@SAX_N@Z

?dumpProgressFinishedCallback@DumpRenderTreeSupportQt@@SAX_N@Z

?dumpResourceLoadCallbacks@DumpRenderTreeSupportQt@@SAX_N@Z

?dumpResourceLoadCallbacksPath@DumpRenderTreeSupportQt@@SAXABVQString@@@Z

?dumpResourceResponseMIMETypes@DumpRenderTreeSupportQt@@SAX_N@Z

?dumpSetAcceptsEditing@DumpRenderTreeSupportQt@@SAX_N@Z

?dumpUserGestureInFrameLoader@DumpRenderTreeSupportQt@@SAX_N@Z

?dumpVisitedLinksCallbacks@DumpRenderTreeSupportQt@@SAX_N@Z

?element@QWebHitTestResult@@QBE?AVQWebElement@@XZ

?elementDoesAutoCompleteForElementWithId@DumpRenderTreeSupportQt@@SA_NPAVQWebFrame@@ABVQString@@@Z

?emptyAtom@WTF@@3VAtomicString@1@B

?enablePersistentStorage@QWebSettings@@SAXABVQString@@@Z

?encloseContentsWith@QWebElement@@QAEXABV1@@Z

?encloseContentsWith@QWebElement@@QAEXABVQString@@@Z

?encloseWith@QWebElement@@QAEXABV1@@Z

?encloseWith@QWebElement@@QAEXABVQString@@@Z

?enclosingBlockElement@QWebHitTestResult@@QBE?AVQWebElement@@XZ

?enclosingElement@QWebElement@@CA?AV1@PAVNode@WebCore@@@Z

?end@QWebElementCollection@@QAE?AViterator@1@XZ

?end@QWebElementCollection@@QBE?AVconst_iterator@1@XZ

?ensureShadowRoot@DumpRenderTreeSupportQt@@SA?AVQVariant@@ABVQWebElement@@@Z

?evaluateJavaScript@QWebElement@@QAE?AVQVariant@@ABVQString@@@Z

?evaluateJavaScript@QWebFrame@@QAE?AVQVariant@@ABVQString@@@Z

?evaluateScriptInIsolatedWorld@DumpRenderTreeSupportQt@@SAXPAVQWebFrame@@HABVQString@@@Z

?event@QGraphicsWebView@@UAE_NPAVQEvent@@@Z

?event@QWebFrame@@UAE_NPAVQEvent@@@Z

?event@QWebInspector@@UAE_NPAVQEvent@@@Z

?event@QWebPage@@UAE_NPAVQEvent@@@Z

?event@QWebView@@UAE_NPAVQEvent@@@Z

?executeCoreCommandByName@DumpRenderTreeSupportQt@@SAXPAVQWebPage@@ABVQString@@1@Z

?expectedSize@QWebDatabase@@QBE_JXZ

?extension@QWebPage@@UAE_NW4Extension@1@PBVExtensionOption@1@PAVExtensionReturn@1@@Z

?extension@QWebPluginFactory@@UAE_NW4Extension@1@PBVExtensionOption@1@PAVExtensionReturn@1@@Z

?featurePermissionRequestCanceled@QWebPage@@IAEXPAVQWebFrame@@W4Feature@1@@Z

?featurePermissionRequested@QWebPage@@IAEXPAVQWebFrame@@W4Feature@1@@Z

?fiberCount@JSString@JSC@@AAEIXZ

?fileName@QWebDatabase@@QBE?AVQString@@XZ

?findAll@QWebElement@@QBE?AVQWebElementCollection@@ABVQString@@@Z

?findAllElements@QWebFrame@@QBE?AVQWebElementCollection@@ABVQString@@@Z

?findFirst@QWebElement@@QBE?AV1@ABVQString@@@Z

?findFirstElement@QWebFrame@@QBE?AVQWebElement@@ABVQString@@@Z

?findString@DumpRenderTreeSupportQt@@SA_NPAVQWebPage@@ABVQString@@ABVQStringList@@@Z

?findText@QGraphicsWebView@@QAE_NABVQString@@V?$QFlags@W4FindFlag@QWebPage@@@@@Z

?findText@QWebPage@@QAE_NABVQString@@V?$QFlags@W4FindFlag@QWebPage@@@@@Z

?findText@QWebView@@QAE_NABVQString@@V?$QFlags@W4FindFlag@QWebPage@@@@@Z

?first@QWebElementCollection@@QBE?AVQWebElement@@XZ

?firstChild@QWebElement@@QBE?AV1@XZ

?firstRectForCharacterRange@DumpRenderTreeSupportQt@@SA?AV?$QList@VQVariant@@@@PAVQWebPage@@HH@Z

?focusInEvent@QGraphicsWebView@@MAEXPAVQFocusEvent@@@Z

?focusInEvent@QWebView@@MAEXPAVQFocusEvent@@@Z

?focusNextPrevChild@QGraphicsWebView@@MAE_N_N@Z

?focusNextPrevChild@QWebPage@@QAE_N_N@Z

?focusNextPrevChild@QWebView@@MAE_N_N@Z

?focusOutEvent@QGraphicsWebView@@MAEXPAVQFocusEvent@@@Z

?focusOutEvent@QWebView@@MAEXPAVQFocusEvent@@@Z

?fontFamily@QWebSettings@@QBE?AVQString@@W4FontFamily@1@@Z

?fontSize@QWebSettings@@QBEHW4FontSize@1@@Z

?forward@QGraphicsWebView@@QAEXXZ

?forward@QWebHistory@@QAEXXZ

?forward@QWebView@@QAEXXZ

?forwardItem@QWebHistory@@QBE?AVQWebHistoryItem@@XZ

?forwardItems@QWebHistory@@QBE?AV?$QList@VQWebHistoryItem@@@@H@Z

?forwardUnsupportedContent@QWebPage@@QBE_NXZ

?frame@QWebHitTestResult@@QBEPAVQWebFrame@@XZ

?frameAt@QWebPage@@QBEPAVQWebFrame@@ABVQPoint@@@Z

?frameCreated@QWebPage@@IAEXPAVQWebFrame@@@Z

?frameName@QWebFrame@@QBE?AVQString@@XZ

?garbageCollectorCollect@DumpRenderTreeSupportQt@@SAXXZ

?garbageCollectorCollectOnAlternateThread@DumpRenderTreeSupportQt@@SAX_N@Z

?geometry@QWebElement@@QBE?AVQRect@@XZ

?geometry@QWebFrame@@QBE?AVQRect@@XZ

?geometryChangeRequested@QWebPage@@IAEXABVQRect@@@Z

?getChildHistoryItems@DumpRenderTreeSupportQt@@SA?AV?$QMap@VQString@@VQWebHistoryItem@@@@ABVQWebHistoryItem@@@Z

?getIndex@JSString@JSC@@QAEPAV12@PAVExecState@2@I@Z

?getIndexSlowCase@JSString@JSC@@QAEPAV12@PAVExecState@2@I@Z

?getOwnPropertyDescriptor@JSString@JSC@@EAE_NPAVExecState@2@ABVIdentifier@2@AAVPropertyDescriptor@2@@Z

?getOwnPropertySlot@JSString@JSC@@EAE_NPAVExecState@2@ABVIdentifier@2@AAVPropertySlot@2@@Z

?getOwnPropertySlot@JSString@JSC@@EAE_NPAVExecState@2@IAAVPropertySlot@2@@Z

?getPrimitiveNumber@JSString@JSC@@EAE_NPAVExecState@2@AANAAVJSValue@2@@Z

?getStringPropertyDescriptor@JSString@JSC@@QAE_NPAVExecState@2@ABVIdentifier@2@AAVPropertyDescriptor@2@@Z

?getStringPropertySlot@JSString@JSC@@QAE_NPAVExecState@2@ABVIdentifier@2@AAVPropertySlot@2@@Z

?getStringPropertySlot@JSString@JSC@@QAE_NPAVExecState@2@IAAVPropertySlot@2@@Z

?globalSettings@QWebSettings@@SAPAV1@XZ

?goToItem@QWebHistory@@QAEXABVQWebHistoryItem@@@Z

?handle@QWebPage@@QBEPAVQWebPagePrivate@@XZ

?handle@QWebSettings@@QBEPAVQWebSettingsPrivate@@XZ

?hasAttribute@QWebElement@@QBE_NABVQString@@@Z

?hasAttributeNS@QWebElement@@QBE_NABVQString@@0@Z

?hasAttributes@QWebElement@@QBE_NXZ

?hasClass@QWebElement@@QBE_NABVQString@@@Z

?hasDocumentElement@DumpRenderTreeSupportQt@@SA_NPAVQWebFrame@@@Z

?hasFocus@QWebElement@@QBE_NXZ

?hasFocus@QWebFrame@@QBE_NXZ

?hasSelection@QWebPage@@QBE_NXZ

?hasSelection@QWebView@@QBE_NXZ

?hideEvent@QWebInspector@@MAEXPAVQHideEvent@@@Z

?history@QGraphicsWebView@@QBEPAVQWebHistory@@XZ

?history@QWebPage@@QBEPAVQWebHistory@@XZ

?history@QWebView@@QBEPAVQWebHistory@@XZ

?historyItemTarget@DumpRenderTreeSupportQt@@SA?AVQString@@ABVQWebHistoryItem@@@Z

?hitTestContent@QWebFrame@@QBE?AVQWebHitTestResult@@ABVQPoint@@@Z

?host@QWebSecurityOrigin@@QBE?AVQString@@XZ

?hoverLeaveEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneHoverEvent@@@Z

?hoverMoveEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneHoverEvent@@@Z

?icon@QGraphicsWebView@@QBE?AVQIcon@@XZ

?icon@QWebFrame@@QBE?AVQIcon@@XZ

?icon@QWebHistoryItem@@QBE?AVQIcon@@XZ

?icon@QWebView@@QBE?AVQIcon@@XZ

?iconChanged@QGraphicsWebView@@IAEXXZ

?iconChanged@QWebFrame@@IAEXXZ

?iconChanged@QWebView@@IAEXXZ

?iconDatabasePath@QWebSettings@@SA?AVQString@@XZ

?iconForUrl@QWebSettings@@SA?AVQIcon@@ABVQUrl@@@Z

?imageUrl@QWebHitTestResult@@QBE?AVQUrl@@XZ

?initialLayoutCompleted@QWebFrame@@IAEXXZ

?initialScaleFactor@ViewportAttributes@QWebPage@@QBENXZ

?injectInternalsObject@DumpRenderTreeSupportQt@@SAXPAVQWebFrame@@@Z

?inputMethodEvent@QGraphicsWebView@@MAEXPAVQInputMethodEvent@@@Z

?inputMethodEvent@QWebView@@MAEXPAVQInputMethodEvent@@@Z

?inputMethodQuery@QGraphicsWebView@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z

?inputMethodQuery@QWebPage@@QBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z

?inputMethodQuery@QWebView@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z

?isCommandEnabled@DumpRenderTreeSupportQt@@SA_NPAVQWebPage@@ABVQString@@@Z

?isContentEditable@QWebHitTestResult@@QBE_NXZ

?isContentEditable@QWebPage@@QBE_NXZ

?isContentSelected@QWebHitTestResult@@QBE_NXZ

?isEnabled@QWebPluginInfo@@QBE_NXZ

?isModified@QGraphicsWebView@@QBE_NXZ

?isModified@QWebPage@@QBE_NXZ

?isModified@QWebView@@QBE_NXZ

?isNull@QWebElement@@QBE_NXZ

?isNull@QWebHitTestResult@@QBE_NXZ

?isNull@QWebPluginInfo@@QBE_NXZ

?isPageBoxVisible@DumpRenderTreeSupportQt@@SA_NPAVQWebFrame@@H@Z

?isRope@JSString@JSC@@ABE_NXZ

?isTargetItem@DumpRenderTreeSupportQt@@SA_NABVQWebHistoryItem@@@Z

?isTiledBackingStoreFrozen@QGraphicsWebView@@QBE_NXZ

?isUserScalable@ViewportAttributes@QWebPage@@QBE_NXZ

?isValid@QWebHistoryItem@@QBE_NXZ

?isValid@ViewportAttributes@QWebPage@@QBE_NXZ

?itemAt@QWebHistory@@QBE?AVQWebHistoryItem@@H@Z

?itemChange@QGraphicsWebView@@UAE?AVQVariant@@W4GraphicsItemChange@QGraphicsItem@@ABV2@@Z

?items@QWebHistory@@QBE?AV?$QList@VQWebHistoryItem@@@@XZ

?javaScriptAlert@QWebPage@@MAEXPAVQWebFrame@@ABVQString@@@Z

?javaScriptConfirm@QWebPage@@MAE_NPAVQWebFrame@@ABVQString@@@Z

?javaScriptConsoleMessage@QWebPage@@MAEXABVQString@@H0@Z

?javaScriptObjectsCount@DumpRenderTreeSupportQt@@SAHXZ

?javaScriptPrompt@QWebPage@@MAE_NPAVQWebFrame@@ABVQString@@1PAV3@@Z

?javaScriptWindowObjectCleared@QWebFrame@@IAEXXZ

?jsArrayVPtr@JSGlobalData@JSC@@2PAXA

?jsByteArrayVPtr@JSGlobalData@JSC@@2PAXA

?jsFunctionVPtr@JSGlobalData@JSC@@2PAXA

?jsStringVPtr@JSGlobalData@JSC@@2PAXA

?keyPressEvent@QGraphicsWebView@@MAEXPAVQKeyEvent@@@Z

?keyPressEvent@QWebView@@MAEXPAVQKeyEvent@@@Z

?keyReleaseEvent@QGraphicsWebView@@MAEXPAVQKeyEvent@@@Z

?keyReleaseEvent@QWebView@@MAEXPAVQKeyEvent@@@Z

?last@QWebElementCollection@@QBE?AVQWebElement@@XZ

?lastChild@QWebElement@@QBE?AV1@XZ

?lastVisited@QWebHistoryItem@@QBE?AVQDateTime@@XZ

?length@JSString@JSC@@QAEIXZ

?linkClicked@QGraphicsWebView@@IAEXABVQUrl@@@Z

?linkClicked@QWebPage@@IAEXABVQUrl@@@Z

?linkClicked@QWebView@@IAEXABVQUrl@@@Z

?linkDelegationPolicy@QWebPage@@QBE?AW4LinkDelegationPolicy@1@XZ

?linkElement@QWebHitTestResult@@QBE?AVQWebElement@@XZ

?linkHovered@QWebPage@@IAEXABVQString@@00@Z

?linkTargetFrame@QWebHitTestResult@@QBEPAVQWebFrame@@XZ

?linkText@QWebHitTestResult@@QBE?AVQString@@XZ

?linkTitle@QWebHitTestResult@@QBE?AVQUrl@@XZ

?linkUrl@QWebHitTestResult@@QBE?AVQUrl@@XZ

?load@QGraphicsWebView@@QAEXABVQNetworkRequest@@W4Operation@QNetworkAccessManager@@ABVQByteArray@@@Z

?load@QGraphicsWebView@@QAEXABVQUrl@@@Z

?load@QWebFrame@@QAEXABVQNetworkRequest@@W4Operation@QNetworkAccessManager@@ABVQByteArray@@@Z

?load@QWebFrame@@QAEXABVQUrl@@@Z

?load@QWebView@@QAEXABVQNetworkRequest@@W4Operation@QNetworkAccessManager@@ABVQByteArray@@@Z

?load@QWebView@@QAEXABVQUrl@@@Z

?loadFinished@QGraphicsWebView@@IAEX_N@Z

?loadFinished@QWebFrame@@IAEX_N@Z

?loadFinished@QWebPage@@IAEX_N@Z

?loadFinished@QWebView@@IAEX_N@Z

?loadProgress@QGraphicsWebView@@IAEXH@Z

?loadProgress@QWebPage@@IAEXH@Z

?loadProgress@QWebView@@IAEXH@Z

?loadStarted@QGraphicsWebView@@IAEXXZ

?loadStarted@QWebFrame@@IAEXXZ

?loadStarted@QWebPage@@IAEXXZ

?loadStarted@QWebView@@IAEXXZ

?localName@QWebElement@@QBE?AVQString@@XZ

?localSchemes@QWebSecurityOrigin@@SA?AVQStringList@@XZ

?localStoragePath@QWebSettings@@QBE?AVQString@@XZ

?mainFrame@QWebPage@@QBEPAVQWebFrame@@XZ

?markerTextForListItem@DumpRenderTreeSupportQt@@SA?AVQString@@ABVQWebElement@@@Z

?maximumItemCount@QWebHistory@@QBEHXZ

?maximumPagesInCache@QWebSettings@@SAHXZ

?maximumScaleFactor@ViewportAttributes@QWebPage@@QBENXZ

?mediaContentUrlByElementId@DumpRenderTreeSupportQt@@SA?AVQUrl@@PAVQWebFrame@@ABVQString@@@Z

?menuBarVisibilityChangeRequested@QWebPage@@IAEX_N@Z

?metaData@QWebFrame@@QBE?AV?$QMultiMap@VQString@@V1@@@XZ

?metaObject@QGraphicsWebView@@UBEPBUQMetaObject@@XZ

?metaObject@QWebFrame@@UBEPBUQMetaObject@@XZ

?metaObject@QWebHistoryInterface@@UBEPBUQMetaObject@@XZ

?metaObject@QWebInspector@@UBEPBUQMetaObject@@XZ

?metaObject@QWebPage@@UBEPBUQMetaObject@@XZ

?metaObject@QWebPluginDatabase@@UBEPBUQMetaObject@@XZ

?metaObject@QWebPluginFactory@@UBEPBUQMetaObject@@XZ

?metaObject@QWebView@@UBEPBUQMetaObject@@XZ

?microFocusChanged@QWebPage@@IAEXXZ

?mimeTypes@QWebPluginInfo@@QBE?AV?$QList@UMimeType@QWebPluginFactory@@@@XZ

?minimumScaleFactor@ViewportAttributes@QWebPage@@QBENXZ

?mouseDoubleClickEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneMouseEvent@@@Z

?mouseDoubleClickEvent@QWebView@@MAEXPAVQMouseEvent@@@Z

?mouseMoveEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneMouseEvent@@@Z

?mouseMoveEvent@QWebView@@MAEXPAVQMouseEvent@@@Z

?mousePressEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneMouseEvent@@@Z

?mousePressEvent@QWebView@@MAEXPAVQMouseEvent@@@Z

?mouseReleaseEvent@QGraphicsWebView@@MAEXPAVQGraphicsSceneMouseEvent@@@Z

?mouseReleaseEvent@QWebView@@MAEXPAVQMouseEvent@@@Z

?name@QWebDatabase@@QBE?AVQString@@XZ

?name@QWebPluginInfo@@QBE?AVQString@@XZ

?namespaceUri@QWebElement@@QBE?AVQString@@XZ

?networkAccessManager@QWebPage@@QBEPAVQNetworkAccessManager@@XZ

?nextSibling@QWebElement@@QBE?AV1@XZ

?nodesFromRect@DumpRenderTreeSupportQt@@SA?AV?$QList@VQVariant@@@@ABVQWebElement@@HHIIII_N@Z

?nullAtom@WTF@@3VAtomicString@1@B

?numberOfActiveAnimations@DumpRenderTreeSupportQt@@SAHPAVQWebFrame@@@Z

?numberOfPages@DumpRenderTreeSupportQt@@SAHPAVQWebFrame@@MM@Z

?numberOfPendingGeolocationPermissionRequests@DumpRenderTreeSupportQt@@SAHPAVQWebPage@@@Z

?offlineStorageDefaultQuota@QWebSettings@@SA_JXZ

?offlineStoragePath@QWebSettings@@SA?AVQString@@XZ

?offlineWebApplicationCachePath@QWebSettings@@SA?AVQString@@XZ

?offlineWebApplicationCacheQuota@QWebSettings@@SA_JXZ

?origin@QWebDatabase@@QBE?AVQWebSecurityOrigin@@XZ

?originalUrl@QWebHistoryItem@@QBE?AVQUrl@@XZ

?outOfMemory@JSString@JSC@@ABEXPAVExecState@2@@Z

?overwritePluginDirectories@DumpRenderTreeSupportQt@@SAXXZ

?page@QGraphicsWebView@@QBEPAVQWebPage@@XZ

?page@QWebFrame@@QBEPAVQWebPage@@XZ

?page@QWebInspector@@QBEPAVQWebPage@@XZ

?page@QWebView@@QBEPAVQWebPage@@XZ

?pageAction@QGraphicsWebView@@QBEPAVQAction@@W4WebAction@QWebPage@@@Z

?pageAction@QWebView@@QBEPAVQAction@@W4WebAction@QWebPage@@@Z

?pageChanged@QWebFrame@@IAEXXZ

?pageNumberForElementById@DumpRenderTreeSupportQt@@SAHPAVQWebFrame@@ABVQString@@MM@Z

?pageProperty@DumpRenderTreeSupportQt@@SA?AVQString@@PAVQWebFrame@@ABV2@H@Z

?pageSizeAndMarginsInPixels@DumpRenderTreeSupportQt@@SA?AVQString@@PAVQWebFrame@@HHHHHHH@Z

?paint@QGraphicsWebView@@UAEXPAVQPainter@@PBVQStyleOptionGraphicsItem@@PAVQWidget@@@Z

?paintEvent@QWebView@@MAEXPAVQPaintEvent@@@Z

?palette@QWebPage@@QBE?AVQPalette@@XZ

?parent@QWebElement@@QBE?AV1@XZ

?parentFrame@QWebFrame@@QBEPAV1@XZ

?path@QWebPluginInfo@@QBE?AVQString@@XZ

?pauseAnimation@DumpRenderTreeSupportQt@@SA_NPAVQWebFrame@@ABVQString@@N1@Z

?pauseSVGAnimation@DumpRenderTreeSupportQt@@SA_NPAVQWebFrame@@ABVQString@@N1@Z

?pauseTransitionOfProperty@DumpRenderTreeSupportQt@@SA_NPAVQWebFrame@@ABVQString@@N1@Z

?pixmap@QWebHitTestResult@@QBE?AVQPixmap@@XZ

?plainText@DumpRenderTreeSupportQt@@SA?AVQString@@ABVQVariant@@@Z

?pluginFactory@QWebPage@@QBEPAVQWebPluginFactory@@XZ

?pluginForMimeType@QWebPluginDatabase@@QAE?AVQWebPluginInfo@@ABVQString@@@Z

?plugins@QWebPluginDatabase@@QBE?AV?$QList@VQWebPluginInfo@@@@XZ

?port@QWebSecurityOrigin@@QBEHXZ

?pos@QWebFrame@@QBE?AVQPoint@@XZ

?pos@QWebHitTestResult@@QBE?AVQPoint@@XZ

?preferredContentsSize@QWebPage@@QBE?AVQSize@@XZ

?prefix@QWebElement@@QBE?AVQString@@XZ

?prependInside@QWebElement@@QAEXABV1@@Z

?prependInside@QWebElement@@QAEXABVQString@@@Z

?prependOutside@QWebElement@@QAEXABV1@@Z

?prependOutside@QWebElement@@QAEXABVQString@@@Z

?previousSibling@QWebElement@@QBE?AV1@XZ

?print@QWebFrame@@QBEXPAVQPrinter@@@Z

?print@QWebView@@QBEXPAVQPrinter@@@Z

?printRequested@QWebPage@@IAEXPAVQWebFrame@@@Z

?provisionalLoad@QWebFrame@@IAEXXZ

?qWebKitMajorVersion@@YAHXZ

?qWebKitMinorVersion@@YAHXZ

?qWebKitVersion@@YA?AVQString@@XZ

?qt_drt_clearFrameName@@YAXPAVQWebFrame@@@Z

?qt_drt_garbageCollector_collect@@YAXXZ

?qt_drt_garbageCollector_collectOnAlternateThread@@YAX_N@Z

?qt_drt_javaScriptObjectsCount@@YAHXZ

?qt_drt_numberOfActiveAnimations@@YAHPAVQWebFrame@@@Z

?qt_drt_overwritePluginDirectories@@YAXXZ

Sections

.text
Size: 8.7MB - Virtual size: 8.7MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 194KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.unwante
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 783KB - Virtual size: 783KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/Setup.exe

.exe windows:5 windows x86 arch:x86

7b0d18726a59afb1c9222b57066a4db2

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00 UTC

Not After

30/12/2020, 23:59 UTC

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00 UTC

Not After

29/12/2020, 23:59 UTC

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

29:8d:c5:f8:c5:e1:37:97:8b:04:65:7c:f5:f2:49:d1
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

15/03/2019, 00:00 UTC

Not After

14/03/2020, 23:59 UTC

Subject

CN=Jiangmen Ruili Software Co.\, Ltd.,O=Jiangmen Ruili Software Co.\, Ltd.,L=Jiangmen,ST=Guangdong,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

Not Before

10/12/2013, 00:00 UTC

Not After

09/12/2023, 23:59 UTC

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

d3:8e:f7:4c:4f:3c:51:3e:8f:1d:34:4a:a4:07:77:59:63:c5:87:6d
Signer

Actual PE Digest

d3:8e:f7:4c:4f:3c:51:3e:8f:1d:34:4a:a4:07:77:59:63:c5:87:6d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

Imports

qtcore4

??0QUrl@@QAE@ABVQString@@W4ParsingMode@0@@Z

??4QString@@QAEAAV0@ABV0@@Z

?append@QString@@QAEAAV1@PBD@Z

?lock@QMutex@@QAEXXZ

??1QMutex@@QAE@XZ

?arg@QString@@QBE?AV1@ABV1@HABVQChar@@@Z

?fromLatin1_helper@QString@@CAPAUData@1@PBDH@Z

?host@QUrl@@QBE?AVQString@@XZ

?arg@QString@@QBE?AV1@HHHABVQChar@@@Z

?port@QUrl@@QBEHXZ

??0QChar@@QAE@UQLatin1Char@@@Z

?rehash@QHashData@@QAEXH@Z

?connect@QObject@@SA_NPBV1@PBD01W4ConnectionType@Qt@@@Z

??4QString@@QAEAAV0@$$QAV0@@Z

?tr@QObject@@SA?AVQString@@PBD0@Z

?installTranslator@QCoreApplication@@SAXPAVQTranslator@@@Z

?load@QTranslator@@QAE_NABVQString@@000@Z

??4QString@@QAEAAV0@PBD@Z

?isValid@QUrl@@QBE_NXZ

??0QTranslator@@QAE@PAVQObject@@@Z

??0QMutex@@QAE@W4RecursionMode@0@@Z

?shared_null@QString@@0UData@1@A

?metaObject@QTranslator@@UBEPBUQMetaObject@@XZ

?qt_metacast@QTranslator@@UAEPAXPBD@Z

?qt_metacall@QTranslator@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?translate@QTranslator@@UBE?AVQString@@PBD00@Z

?isEmpty@QTranslator@@UBE_NXZ

??1QTranslator@@UAE@XZ

?shared_null@QByteArray@@0UData@1@A

??1QByteArray@@QAE@XZ

?detach_helper2@QHashData@@QAEPAU1@P6AXPAUNode@1@PAX@ZP6AX0@ZHH@Z

?free_helper@QHashData@@QAEXP6AXPAUNode@1@@Z@Z

?append@QListData@@QAEPAPAXXZ

?detach@QListData@@QAEPAUData@1@H@Z

?detach_grow@QListData@@QAEPAUData@1@PAHH@Z

?allocateNode@QHashData@@QAEPAXH@Z

?qHash@@YAIABVQString@@@Z

?unlock@QMutex@@QAEXXZ

?toString@QUrl@@QBE?AVQString@@V?$QFlags@W4FormattingOption@QUrl@@@@@Z

?contains@QString@@QBE?AVQBool@@ABV1@W4CaseSensitivity@Qt@@@Z

?startsWith@QString@@QBE_NABV1@W4CaseSensitivity@Qt@@@Z

?applicationName@QCoreApplication@@SA?AVQString@@XZ

?event@QObject@@UAE_NPAVQEvent@@@Z

?disconnectNotify@QObject@@MAEXPBD@Z

?connectNotify@QObject@@MAEXPBD@Z

?customEvent@QObject@@MAEXPAVQEvent@@@Z

?childEvent@QObject@@MAEXPAVQChildEvent@@@Z

?fromWCharArray@QString@@SA?AV1@PBGH@Z

?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ

?detach@QByteArray@@QAEXXZ

?qWinMain@@YAXPAUHINSTANCE__@@0PADHAAHAAV?$QVector@PAD@@@Z

?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z

?qMemSet@@YAPAXPAXHI@Z

?allocate@QVectorData@@SAPAU1@HH@Z

?qBadAlloc@@YAXXZ

?free@QVectorData@@SAXPAU1@H@Z

?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z

?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z

?objectName@QObject@@QBE?AVQString@@XZ

?fromUtf8@QString@@SA?AV1@PBDH@Z

?setObjectName@QObject@@QAEXABVQString@@@Z

??0QUrl@@QAE@ABVQString@@@Z

??1QUrl@@QAE@XZ

?connectSlotsByName@QMetaObject@@SAXPAVQObject@@@Z

??8QString@@QBE_NABV0@@Z

?shared_null@QHashData@@2U1@A

?shared_null@QListData@@2UData@1@A

?tr@QMetaObject@@QBE?AVQString@@PBD0@Z

?translate@QCoreApplication@@SA?AVQString@@PBD00W4Encoding@1@@Z

?QStringList_join@QtPrivate@@YA?AVQString@@PBVQStringList@@ABV2@@Z

?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ

?separator@QDir@@SA?AVQChar@@XZ

??0QFile@@QAE@ABVQString@@@Z

?exists@QFile@@QBE_NXZ

??1QFile@@UAE@XZ

?fromAscii_helper@QString@@CAPAUData@1@PBDH@Z

?arguments@QCoreApplication@@SA?AVQStringList@@XZ

?qFree@@YAXPAX@Z

?fromAscii@QString@@SA?AV1@PBDH@Z

?append@QString@@QAEAAV1@ABV1@@Z

?free@QString@@CAXPAUData@1@@Z

??0QString@@QAE@ABV0@@Z

??YQString@@QAEAAV0@VQChar@@@Z

??1QString@@QAE@XZ

?qUnregisterResourceData@@YA_NHPBE00@Z

??8QString@@QBE_NPBD@Z

?qRegisterResourceData@@YA_NHPBE00@Z

qtgui4

?actionEvent@QWidget@@MAEXPAVQActionEvent@@@Z

?dragEnterEvent@QWidget@@MAEXPAVQDragEnterEvent@@@Z

?dragMoveEvent@QWidget@@MAEXPAVQDragMoveEvent@@@Z

?dragLeaveEvent@QWidget@@MAEXPAVQDragLeaveEvent@@@Z

?dropEvent@QWidget@@MAEXPAVQDropEvent@@@Z

?showEvent@QWidget@@MAEXPAVQShowEvent@@@Z

?hideEvent@QWidget@@MAEXPAVQHideEvent@@@Z

?winEvent@QWidget@@MAE_NPAUtagMSG@@PAJ@Z

?changeEvent@QWidget@@MAEXPAVQEvent@@@Z

?inputMethodEvent@QWidget@@MAEXPAVQInputMethodEvent@@@Z

?inputMethodQuery@QWidget@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z

?focusNextPrevChild@QWidget@@MAE_N_N@Z

?styleChange@QWidget@@MAEXAAVQStyle@@@Z

?enabledChange@QWidget@@MAEX_N@Z

?paletteChange@QWidget@@MAEXABVQPalette@@@Z

?fontChange@QWidget@@MAEXABVQFont@@@Z

?windowActivationChange@QWidget@@MAEX_N@Z

?languageChange@QWidget@@MAEXXZ

?devType@QWidget@@UBEHXZ

?paintEngine@QWidget@@UBEPAVQPaintEngine@@XZ

?getDC@QWidget@@UBEPAUHDC__@@XZ

?releaseDC@QWidget@@UBEXPAUHDC__@@@Z

?metric@QWidget@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z

?metaObject@QHBoxLayout@@UBEPBUQMetaObject@@XZ

?qt_metacast@QHBoxLayout@@UAEPAXPBD@Z

?tabletEvent@QWidget@@MAEXPAVQTabletEvent@@@Z

?childEvent@QLayout@@MAEXPAVQChildEvent@@@Z

?addItem@QBoxLayout@@UAEXPAVQLayoutItem@@@Z

?itemAt@QBoxLayout@@UBEPAVQLayoutItem@@H@Z

?takeAt@QBoxLayout@@UAEPAVQLayoutItem@@H@Z

?indexOf@QLayout@@UBEHPAVQWidget@@@Z

?count@QBoxLayout@@UBEHXZ

?sizeHint@QBoxLayout@@UBE?AVQSize@@XZ

?minimumSize@QBoxLayout@@UBE?AVQSize@@XZ

?maximumSize@QBoxLayout@@UBE?AVQSize@@XZ

?expandingDirections@QBoxLayout@@UBE?AV?$QFlags@W4Orientation@Qt@@@@XZ

?setGeometry@QBoxLayout@@UAEXABVQRect@@@Z

?geometry@QLayout@@UBE?AVQRect@@XZ

?isEmpty@QLayout@@UBE_NXZ

?hasHeightForWidth@QBoxLayout@@UBE_NXZ

?heightForWidth@QBoxLayout@@UBEHH@Z

?minimumHeightForWidth@QBoxLayout@@UBEHH@Z

?invalidate@QBoxLayout@@UAEXXZ

?widget@QLayoutItem@@UAEPAVQWidget@@XZ

?layout@QLayout@@UAEPAV1@XZ

?spacerItem@QLayoutItem@@UAEPAVQSpacerItem@@XZ

?metaObject@QLabel@@UBEPBUQMetaObject@@XZ

?qt_metacast@QLabel@@UAEPAXPBD@Z

?qt_metacall@QLabel@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?event@QLabel@@MAE_NPAVQEvent@@@Z

?sizeHint@QLabel@@UBE?AVQSize@@XZ

?minimumSizeHint@QLabel@@UBE?AVQSize@@XZ

?heightForWidth@QLabel@@UBEHH@Z

?mousePressEvent@QLabel@@MAEXPAVQMouseEvent@@@Z

?mouseReleaseEvent@QLabel@@MAEXPAVQMouseEvent@@@Z

?mouseMoveEvent@QLabel@@MAEXPAVQMouseEvent@@@Z

?keyPressEvent@QLabel@@MAEXPAVQKeyEvent@@@Z

?focusInEvent@QLabel@@MAEXPAVQFocusEvent@@@Z

?focusOutEvent@QLabel@@MAEXPAVQFocusEvent@@@Z

?paintEvent@QLabel@@MAEXPAVQPaintEvent@@@Z

?contextMenuEvent@QLabel@@MAEXPAVQContextMenuEvent@@@Z

?changeEvent@QLabel@@MAEXPAVQEvent@@@Z

?focusNextPrevChild@QLabel@@MAE_N_N@Z

?metaObject@QVBoxLayout@@UBEPBUQMetaObject@@XZ

?qt_metacast@QVBoxLayout@@UAEPAXPBD@Z

?qt_metacall@QVBoxLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z

??1QWidget@@UAE@XZ

??1QHBoxLayout@@UAE@XZ

??1QLabel@@UAE@XZ

??1QVBoxLayout@@UAE@XZ

?critical@QMessageBox@@SA?AW4StandardButton@1@PAVQWidget@@ABVQString@@1V?$QFlags@W4StandardButton@QMessageBox@@@@W421@@Z

?close@QWidget@@QAE_NXZ

?hide@QWidget@@QAEXXZ

??1QMainWindow@@UAE@XZ

?event@QMainWindow@@MAE_NPAVQEvent@@@Z

?contextMenuEvent@QMainWindow@@MAEXPAVQContextMenuEvent@@@Z

?createPopupMenu@QMainWindow@@UAEPAVQMenu@@XZ

?warning@QMessageBox@@SA?AW4StandardButton@1@PAVQWidget@@ABVQString@@1V?$QFlags@W4StandardButton@QMessageBox@@@@W421@@Z

?setWindowFlags@QWidget@@QAEXV?$QFlags@W4WindowType@Qt@@@@@Z

?windowFlags@QWidget@@QBE?AV?$QFlags@W4WindowType@Qt@@@@XZ

??0QMainWindow@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

?qt_metacast@QMainWindow@@UAEPAXPBD@Z

?qt_metacall@QMainWindow@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?staticMetaObject@QMainWindow@@2UQMetaObject@@B

??1QApplication@@UAE@XZ

?exec@QApplication@@SAHXZ

?show@QWidget@@QAEXXZ

??0QApplication@@QAE@AAHPAPADH@Z

?setText@QLabel@@QAEXABVQString@@@Z

?setWindowTitle@QWidget@@QAEXABVQString@@@Z

??1QIcon@@QAE@XZ

??1QFont@@QAE@XZ

?setCentralWidget@QMainWindow@@QAEXPAVQWidget@@@Z

?qt_metacall@QHBoxLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z

??0QVBoxLayout@@QAE@PAVQWidget@@@Z

?addWidget@QBoxLayout@@QAEXPAVQWidget@@HV?$QFlags@W4AlignmentFlag@Qt@@@@@Z

?setAlignment@QLabel@@QAEXV?$QFlags@W4AlignmentFlag@Qt@@@@@Z

?setFont@QWidget@@QAEXABVQFont@@@Z

?setWeight@QFont@@QAEXH@Z

?setPointSize@QFont@@QAEXH@Z

?setFamily@QFont@@QAEXABVQString@@@Z

??0QFont@@QAE@XZ

??0QLabel@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z

?setContentsMargins@QLayout@@QAEXHHHH@Z

?setSpacing@QBoxLayout@@QAEXH@Z

??0QHBoxLayout@@QAE@PAVQWidget@@@Z

??0QWidget@@QAE@PAV0@V?$QFlags@W4WindowType@Qt@@@@@Z

?setStyleSheet@QWidget@@QAEXABVQString@@@Z

?setAutoFillBackground@QWidget@@QAEX_N@Z

?setWindowIcon@QWidget@@QAEXABVQIcon@@@Z

?addFile@QIcon@@QAEXABVQString@@ABVQSize@@W4Mode@1@W4State@1@@Z

??0QIcon@@QAE@XZ

?setMaximumSize@QWidget@@QAEXHH@Z

?setSizePolicy@QWidget@@QAEXVQSizePolicy@@@Z

?sizePolicy@QWidget@@QBE?AVQSizePolicy@@XZ

?resize@QWidget@@QAEXABVQSize@@@Z

?metaObject@QWidget@@UBEPBUQMetaObject@@XZ

?qt_metacast@QWidget@@UAEPAXPBD@Z

?qt_metacall@QWidget@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?event@QWidget@@MAE_NPAVQEvent@@@Z

?setVisible@QWidget@@UAEX_N@Z

?sizeHint@QWidget@@UBE?AVQSize@@XZ

?minimumSizeHint@QWidget@@UBE?AVQSize@@XZ

?heightForWidth@QWidget@@UBEHH@Z

?mousePressEvent@QWidget@@MAEXPAVQMouseEvent@@@Z

?mouseReleaseEvent@QWidget@@MAEXPAVQMouseEvent@@@Z

?mouseDoubleClickEvent@QWidget@@MAEXPAVQMouseEvent@@@Z

?mouseMoveEvent@QWidget@@MAEXPAVQMouseEvent@@@Z

?wheelEvent@QWidget@@MAEXPAVQWheelEvent@@@Z

?contextMenuEvent@QWidget@@MAEXPAVQContextMenuEvent@@@Z

?closeEvent@QWidget@@MAEXPAVQCloseEvent@@@Z

?resizeEvent@QWidget@@MAEXPAVQResizeEvent@@@Z

?moveEvent@QWidget@@MAEXPAVQMoveEvent@@@Z

?paintEvent@QWidget@@MAEXPAVQPaintEvent@@@Z

?leaveEvent@QWidget@@MAEXPAVQEvent@@@Z

?enterEvent@QWidget@@MAEXPAVQEvent@@@Z

?focusOutEvent@QWidget@@MAEXPAVQFocusEvent@@@Z

?focusInEvent@QWidget@@MAEXPAVQFocusEvent@@@Z

?keyReleaseEvent@QWidget@@MAEXPAVQKeyEvent@@@Z

?keyPressEvent@QWidget@@MAEXPAVQKeyEvent@@@Z

qtnetwork4

?supportsSsl@QSslSocket@@SA_NXZ

?setApplicationProxy@QNetworkProxy@@SAXABV1@@Z

?setPassword@QNetworkProxy@@QAEXABVQString@@@Z

?setUser@QNetworkProxy@@QAEXABVQString@@@Z

?setPort@QNetworkProxy@@QAEXG@Z

?setHostName@QNetworkProxy@@QAEXABVQString@@@Z

?setType@QNetworkProxy@@QAEXW4ProxyType@1@@Z

??0QNetworkProxy@@QAE@XZ

??1QNetworkRequest@@QAE@XZ

??0QNetworkRequest@@QAE@ABVQUrl@@@Z

?errorString@QSslError@@QBE?AVQString@@XZ

?url@QNetworkReply@@QBE?AVQUrl@@XZ

??1QNetworkProxy@@QAE@XZ

qtwebkit4

?dragEnterEvent@QWebView@@MAEXPAVQDragEnterEvent@@@Z

?contextMenuEvent@QWebView@@MAEXPAVQContextMenuEvent@@@Z

?resizeEvent@QWebView@@MAEXPAVQResizeEvent@@@Z

?paintEvent@QWebView@@MAEXPAVQPaintEvent@@@Z

?focusOutEvent@QWebView@@MAEXPAVQFocusEvent@@@Z

?focusInEvent@QWebView@@MAEXPAVQFocusEvent@@@Z

?keyReleaseEvent@QWebView@@MAEXPAVQKeyEvent@@@Z

?keyPressEvent@QWebView@@MAEXPAVQKeyEvent@@@Z

?wheelEvent@QWebView@@MAEXPAVQWheelEvent@@@Z

?dragMoveEvent@QWebView@@MAEXPAVQDragMoveEvent@@@Z

?mouseDoubleClickEvent@QWebView@@MAEXPAVQMouseEvent@@@Z

?mouseReleaseEvent@QWebView@@MAEXPAVQMouseEvent@@@Z

?mousePressEvent@QWebView@@MAEXPAVQMouseEvent@@@Z

?sizeHint@QWebView@@UBE?AVQSize@@XZ

?event@QWebView@@UAE_NPAVQEvent@@@Z

?qt_metacall@QWebView@@UAEHW4Call@QMetaObject@@HPAPAX@Z

?qt_metacast@QWebView@@UAEPAXPBD@Z

?metaObject@QWebView@@UBEPBUQMetaObject@@XZ

??0QWebView@@QAE@PAVQWidget@@@Z

?setUrl@QWebView@@QAEXABVQUrl@@@Z

?dragLeaveEvent@QWebView@@MAEXPAVQDragLeaveEvent@@@Z

?dropEvent@QWebView@@MAEXPAVQDropEvent@@@Z

?changeEvent@QWebView@@MAEXPAVQEvent@@@Z

?inputMethodEvent@QWebView@@MAEXPAVQInputMethodEvent@@@Z

?inputMethodQuery@QWebView@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z

?focusNextPrevChild@QWebView@@MAE_N_N@Z

?createWindow@QWebView@@MAEPAV1@W4WebWindowType@QWebPage@@@Z

??1QWebView@@UAE@XZ

?url@QWebView@@QBE?AVQUrl@@XZ

?load@QWebView@@QAEXABVQNetworkRequest@@W4Operation@QNetworkAccessManager@@ABVQByteArray@@@Z

?networkAccessManager@QWebPage@@QBEPAVQNetworkAccessManager@@XZ

?page@QWebView@@QBEPAVQWebPage@@XZ

?mouseMoveEvent@QWebView@@MAEXPAVQMouseEvent@@@Z

msvcr100

__setusermatherr

_commode

_fmode

__set_app_type

_except_handler4_common

_configthreadlocale

_crt_debugger_hook

?terminate@@YAXXZ

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_invoke_watson

_controlfp_s

_initterm_e

_initterm

_acmdln

exit

_ismbblead

_XcptFilter

_exit

_cexit

__getmainargs

_amsg_exit

_onexit

_lock

__dllonexit

_unlock

_CxxThrowException

??2@YAPAXI@Z

??3@YAXPAX@Z

memcpy

__CxxFrameHandler3

kernel32

GetSystemTimeAsFileTime

GetCurrentProcessId

GetCurrentThreadId

GetTickCount

QueryPerformanceCounter

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

GetStartupInfoW

HeapSetInformation

InterlockedCompareExchange

Sleep

InterlockedExchange

DecodePointer

EncodePointer

GetCommandLineW

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/api-ms-win-core-processthreads-l1-1-1.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

2b:7d:ca:c2:1d:8f:e4:ee:68:3f:55:68:6e:ee:d7:a5:55:c3:ae:9e:d8:56:10:32:f2:3b:00:77:cf:30:56:b6
Signer

Actual PE Digest

2b:7d:ca:c2:1d:8f:e4:ee:68:3f:55:68:6e:ee:d7:a5:55:c3:ae:9e:d8:56:10:32:f2:3b:00:77:cf:30:56:b6

Digest Algorithm

sha256

PE Digest Matches

true

3a:0d:45:f4:86:4b:ac:8e:ed:e1:a8:ee:ce:8a:b3:ac:b3:80:83:c6
Signer

Actual PE Digest

3a:0d:45:f4:86:4b:ac:8e:ed:e1:a8:ee:ce:8a:b3:ac:b3:80:83:c6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-processthreads-l1-1-1.pdb

Exports

FlushInstructionCache

GetCurrentProcessorNumber

GetCurrentProcessorNumberEx

GetCurrentThreadStackLimits

GetProcessHandleCount

GetProcessMitigationPolicy

GetThreadContext

GetThreadIdealProcessorEx

GetThreadTimes

IsProcessorFeaturePresent

OpenProcess

SetProcessMitigationPolicy

SetThreadContext

SetThreadIdealProcessorEx

Sections

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-core-profile-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

5f:3f:72:a9:0d:1b:b9:0f:31:df:c3:c2:81:ef:56:73:e3:d5:f3:b0:6f:40:dd:85:41:eb:20:5b:73:f5:08:f1
Signer

Actual PE Digest

5f:3f:72:a9:0d:1b:b9:0f:31:df:c3:c2:81:ef:56:73:e3:d5:f3:b0:6f:40:dd:85:41:eb:20:5b:73:f5:08:f1

Digest Algorithm

sha256

PE Digest Matches

true

c2:52:7c:b8:6d:76:c7:79:18:1c:fc:56:30:40:6f:11:ca:31:69:36
Signer

Actual PE Digest

c2:52:7c:b8:6d:76:c7:79:18:1c:fc:56:30:40:6f:11:ca:31:69:36

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-profile-l1-1-0.pdb

Exports

QueryPerformanceCounter

QueryPerformanceFrequency

Sections

.rdata
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-core-rtlsupport-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

f5:ec:83:e1:f0:57:33:6d:ea:35:e3:a0:f2:f4:79:ec:45:81:9f:2e:35:73:b2:e7:8a:eb:de:11:f4:80:c9:5d
Signer

Actual PE Digest

f5:ec:83:e1:f0:57:33:6d:ea:35:e3:a0:f2:f4:79:ec:45:81:9f:2e:35:73:b2:e7:8a:eb:de:11:f4:80:c9:5d

Digest Algorithm

sha256

PE Digest Matches

true

64:e9:ed:cc:72:0c:b7:d1:30:dc:d9:d9:69:a4:24:77:16:31:95:79
Signer

Actual PE Digest

64:e9:ed:cc:72:0c:b7:d1:30:dc:d9:d9:69:a4:24:77:16:31:95:79

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-rtlsupport-l1-1-0.pdb

Exports

RtlAddFunctionTable

RtlCaptureContext

RtlCaptureStackBackTrace

RtlCompareMemory

RtlDeleteFunctionTable

RtlInstallFunctionTableCallback

RtlLookupFunctionEntry

RtlPcToFileHeader

RtlRaiseException

RtlRestoreContext

RtlUnwind

RtlUnwindEx

RtlVirtualUnwind

Sections

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-core-string-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

23:f7:59:ab:ab:36:6b:42:ba:c7:18:ac:2c:aa:8b:7d:2a:a3:03:60:d7:f7:eb:e4:3f:1e:80:a0:b4:c0:6d:a0
Signer

Actual PE Digest

23:f7:59:ab:ab:36:6b:42:ba:c7:18:ac:2c:aa:8b:7d:2a:a3:03:60:d7:f7:eb:e4:3f:1e:80:a0:b4:c0:6d:a0

Digest Algorithm

sha256

PE Digest Matches

true

a4:dd:9d:4f:3d:e2:1f:37:9b:d2:36:25:fb:92:c5:dc:63:08:f3:97
Signer

Actual PE Digest

a4:dd:9d:4f:3d:e2:1f:37:9b:d2:36:25:fb:92:c5:dc:63:08:f3:97

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-string-l1-1-0.pdb

Exports

CompareStringEx

CompareStringOrdinal

CompareStringW

FoldStringW

GetStringTypeExW

GetStringTypeW

MultiByteToWideChar

WideCharToMultiByte

Sections

.rdata
Size: 1024B - Virtual size: 756B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-core-synch-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

bd:2e:df:93:66:8f:63:8d:ba:91:83:45:84:44:22:43:bd:1e:59:5d:5b:63:12:fb:df:3e:63:d0:62:f9:c6:7e
Signer

Actual PE Digest

bd:2e:df:93:66:8f:63:8d:ba:91:83:45:84:44:22:43:bd:1e:59:5d:5b:63:12:fb:df:3e:63:d0:62:f9:c6:7e

Digest Algorithm

sha256

PE Digest Matches

true

63:1f:d0:c3:03:31:f9:92:bc:68:de:99:6a:f4:ce:2a:06:6a:59:bf
Signer

Actual PE Digest

63:1f:d0:c3:03:31:f9:92:bc:68:de:99:6a:f4:ce:2a:06:6a:59:bf

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-synch-l1-1-0.pdb

Exports

AcquireSRWLockExclusive

AcquireSRWLockShared

CancelWaitableTimer

CreateEventA

CreateEventExA

CreateEventExW

CreateEventW

CreateMutexA

CreateMutexExA

CreateMutexExW

CreateMutexW

CreateSemaphoreExW

CreateWaitableTimerExW

DeleteCriticalSection

EnterCriticalSection

InitializeCriticalSection

InitializeCriticalSectionAndSpinCount

InitializeCriticalSectionEx

InitializeSRWLock

LeaveCriticalSection

OpenEventA

OpenEventW

OpenMutexW

OpenSemaphoreW

OpenWaitableTimerW

ReleaseMutex

ReleaseSRWLockExclusive

ReleaseSRWLockShared

ReleaseSemaphore

ResetEvent

SetCriticalSectionSpinCount

SetEvent

SetWaitableTimer

SetWaitableTimerEx

SleepEx

TryAcquireSRWLockExclusive

TryAcquireSRWLockShared

TryEnterCriticalSection

WaitForMultipleObjectsEx

WaitForSingleObject

WaitForSingleObjectEx

Sections

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-core-synch-l1-2-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

d5:7a:e9:28:76:29:a9:dd:7e:32:0b:ca:61:66:77:95:fc:93:7b:de:af:79:0e:5c:cf:df:10:01:19:98:22:76
Signer

Actual PE Digest

d5:7a:e9:28:76:29:a9:dd:7e:32:0b:ca:61:66:77:95:fc:93:7b:de:af:79:0e:5c:cf:df:10:01:19:98:22:76

Digest Algorithm

sha256

PE Digest Matches

true

75:ed:b7:f2:16:e8:88:7f:f3:08:76:dc:5d:c9:7c:2a:e4:6c:42:f4
Signer

Actual PE Digest

75:ed:b7:f2:16:e8:88:7f:f3:08:76:dc:5d:c9:7c:2a:e4:6c:42:f4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-synch-l1-2-0.pdb

Exports

DeleteSynchronizationBarrier

EnterSynchronizationBarrier

InitOnceBeginInitialize

InitOnceComplete

InitOnceExecuteOnce

InitOnceInitialize

InitializeConditionVariable

InitializeSynchronizationBarrier

SignalObjectAndWait

Sleep

SleepConditionVariableCS

SleepConditionVariableSRW

WaitOnAddress

WakeAllConditionVariable

WakeByAddressAll

WakeByAddressSingle

WakeConditionVariable

Sections

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-core-sysinfo-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

12:27:75:72:0b:20:29:90:7d:8c:9e:91:41:f4:60:f6:13:7f:23:e6:db:39:b5:52:53:24:b2:ff:c5:aa:82:6c
Signer

Actual PE Digest

12:27:75:72:0b:20:29:90:7d:8c:9e:91:41:f4:60:f6:13:7f:23:e6:db:39:b5:52:53:24:b2:ff:c5:aa:82:6c

Digest Algorithm

sha256

PE Digest Matches

true

cb:85:e7:0e:53:77:0d:c1:23:1e:66:5c:b5:7f:87:65:9a:ef:64:d1
Signer

Actual PE Digest

cb:85:e7:0e:53:77:0d:c1:23:1e:66:5c:b5:7f:87:65:9a:ef:64:d1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-sysinfo-l1-1-0.pdb

Exports

GetComputerNameExA

GetComputerNameExW

GetLocalTime

GetLogicalProcessorInformation

GetLogicalProcessorInformationEx

GetSystemDirectoryA

GetSystemDirectoryW

GetSystemInfo

GetSystemTime

GetSystemTimeAdjustment

GetSystemTimeAsFileTime

GetSystemWindowsDirectoryA

GetSystemWindowsDirectoryW

GetTickCount

GetTickCount64

GetVersion

GetVersionExA

GetVersionExW

GetWindowsDirectoryA

GetWindowsDirectoryW

GlobalMemoryStatusEx

SetLocalTime

Sections

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-core-timezone-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

34:6e:05:70:ac:35:c5:e2:d4:9f:8e:22:79:f9:17:3e:2b:3a:d6:d9:78:48:5c:de:73:97:04:6d:84:13:14:35
Signer

Actual PE Digest

34:6e:05:70:ac:35:c5:e2:d4:9f:8e:22:79:f9:17:3e:2b:3a:d6:d9:78:48:5c:de:73:97:04:6d:84:13:14:35

Digest Algorithm

sha256

PE Digest Matches

true

79:39:32:96:a7:50:8e:b4:c7:6d:f9:16:21:28:3e:64:08:f9:7e:77
Signer

Actual PE Digest

79:39:32:96:a7:50:8e:b4:c7:6d:f9:16:21:28:3e:64:08:f9:7e:77

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-timezone-l1-1-0.pdb

Exports

EnumDynamicTimeZoneInformation

FileTimeToSystemTime

GetDynamicTimeZoneInformation

GetDynamicTimeZoneInformationEffectiveYears

GetTimeZoneInformation

GetTimeZoneInformationForYear

SetDynamicTimeZoneInformation

SetTimeZoneInformation

SystemTimeToFileTime

SystemTimeToTzSpecificLocalTime

SystemTimeToTzSpecificLocalTimeEx

TzSpecificLocalTimeToSystemTime

TzSpecificLocalTimeToSystemTimeEx

Sections

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-core-util-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

66:aa:33:af:38:5e:81:d6:7a:9d:39:f9:d7:b9:63:54:26:b3:cc:8e:4c:9c:e0:27:a7:6a:78:a9:3d:f9:8b:23
Signer

Actual PE Digest

66:aa:33:af:38:5e:81:d6:7a:9d:39:f9:d7:b9:63:54:26:b3:cc:8e:4c:9c:e0:27:a7:6a:78:a9:3d:f9:8b:23

Digest Algorithm

sha256

PE Digest Matches

true

30:50:36:e1:d2:8a:3a:ae:51:88:03:ee:e4:39:44:d8:86:85:29:de
Signer

Actual PE Digest

30:50:36:e1:d2:8a:3a:ae:51:88:03:ee:e4:39:44:d8:86:85:29:de

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-core-util-l1-1-0.pdb

Exports

Beep

DecodePointer

DecodeSystemPointer

EncodePointer

EncodeSystemPointer

Sections

.rdata
Size: 1024B - Virtual size: 568B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-conio-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

d2:50:df:4e:50:dd:3b:af:f7:11:ea:2d:4b:2d:fb:a7:12:7b:a5:80:40:51:52:65:2f:89:14:79:4f:e7:7c:ba
Signer

Actual PE Digest

d2:50:df:4e:50:dd:3b:af:f7:11:ea:2d:4b:2d:fb:a7:12:7b:a5:80:40:51:52:65:2f:89:14:79:4f:e7:7c:ba

Digest Algorithm

sha256

PE Digest Matches

true

e1:e6:e3:77:f5:45:0f:39:9e:9f:35:cf:71:5a:fc:78:1f:bb:99:6c
Signer

Actual PE Digest

e1:e6:e3:77:f5:45:0f:39:9e:9f:35:cf:71:5a:fc:78:1f:bb:99:6c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-conio-l1-1-0.pdb

Exports

__conio_common_vcprintf

__conio_common_vcprintf_p

__conio_common_vcprintf_s

__conio_common_vcscanf

__conio_common_vcwprintf

__conio_common_vcwprintf_p

__conio_common_vcwprintf_s

__conio_common_vcwscanf

_cgets

_cgets_s

_cgetws

_cgetws_s

_cputs

_cputws

_getch

_getch_nolock

_getche

_getche_nolock

_getwch

_getwch_nolock

_getwche

_getwche_nolock

_putch

_putch_nolock

_putwch

_putwch_nolock

_ungetch

_ungetch_nolock

_ungetwch

_ungetwch_nolock

Sections

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-convert-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

af:39:f7:9f:d5:a1:46:43:f5:a6:cd:a6:17:8d:2c:bc:99:5b:17:b6:f9:26:2b:86:77:07:e4:0f:72:7d:9f:44
Signer

Actual PE Digest

af:39:f7:9f:d5:a1:46:43:f5:a6:cd:a6:17:8d:2c:bc:99:5b:17:b6:f9:26:2b:86:77:07:e4:0f:72:7d:9f:44

Digest Algorithm

sha256

PE Digest Matches

true

6e:0c:10:bd:e8:f1:57:a4:46:f6:44:ba:7e:c8:8b:38:cd:fe:0e:9e
Signer

Actual PE Digest

6e:0c:10:bd:e8:f1:57:a4:46:f6:44:ba:7e:c8:8b:38:cd:fe:0e:9e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-convert-l1-1-0.pdb

Exports

__toascii

_atodbl

_atodbl_l

_atof_l

_atoflt

_atoflt_l

_atoi64

_atoi64_l

_atoi_l

_atol_l

_atoldbl

_atoldbl_l

_atoll_l

_ecvt

_ecvt_s

_fcvt

_fcvt_s

_gcvt

_gcvt_s

_i64toa

_i64toa_s

_i64tow

_i64tow_s

_itoa

_itoa_s

_itow

_itow_s

_ltoa

_ltoa_s

_ltow

_ltow_s

_strtod_l

_strtof_l

_strtoi64

_strtoi64_l

_strtoimax_l

_strtol_l

_strtold_l

_strtoll_l

_strtoui64

_strtoui64_l

_strtoul_l

_strtoull_l

_strtoumax_l

_ui64toa

_ui64toa_s

_ui64tow

_ui64tow_s

_ultoa

_ultoa_s

_ultow

_ultow_s

_wcstod_l

_wcstof_l

_wcstoi64

_wcstoi64_l

_wcstoimax_l

_wcstol_l

_wcstold_l

_wcstoll_l

_wcstombs_l

_wcstombs_s_l

_wcstoui64

_wcstoui64_l

_wcstoul_l

_wcstoull_l

_wcstoumax_l

_wctomb_l

_wctomb_s_l

_wtof

_wtof_l

_wtoi

_wtoi64

_wtoi64_l

_wtoi_l

_wtol

_wtol_l

_wtoll

_wtoll_l

atof

atoi

atol

atoll

btowc

c16rtomb

c32rtomb

mbrtoc16

mbrtoc32

mbrtowc

mbsrtowcs

mbsrtowcs_s

mbstowcs

mbstowcs_s

mbtowc

strtod

strtof

strtoimax

strtol

strtold

strtoll

strtoul

strtoull

strtoumax

wcrtomb

wcrtomb_s

wcsrtombs

wcsrtombs_s

wcstod

wcstof

wcstoimax

wcstol

wcstold

wcstoll

wcstombs

wcstombs_s

wcstoul

wcstoull

wcstoumax

wctob

wctomb

wctomb_s

wctrans

Sections

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-environment-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

12:50:ab:7d:96:b1:03:e5:9c:33:57:e5:a2:a0:b0:20:c6:70:41:b6:fc:13:b7:33:4e:95:4a:ec:63:2c:b4:a8
Signer

Actual PE Digest

12:50:ab:7d:96:b1:03:e5:9c:33:57:e5:a2:a0:b0:20:c6:70:41:b6:fc:13:b7:33:4e:95:4a:ec:63:2c:b4:a8

Digest Algorithm

sha256

PE Digest Matches

true

c5:39:0c:5d:fd:6d:02:3f:78:e0:49:32:92:57:8b:49:82:d4:9a:26
Signer

Actual PE Digest

c5:39:0c:5d:fd:6d:02:3f:78:e0:49:32:92:57:8b:49:82:d4:9a:26

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-environment-l1-1-0.pdb

Exports

__p__environ

__p__wenviron

_dupenv_s

_putenv

_putenv_s

_searchenv

_searchenv_s

_wdupenv_s

_wgetcwd

_wgetdcwd

_wgetenv

_wgetenv_s

_wputenv

_wputenv_s

_wsearchenv

_wsearchenv_s

getenv

getenv_s

Sections

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-filesystem-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

fc:47:2d:ca:6b:a1:9d:72:3c:5f:36:47:b3:d2:7a:57:1a:d1:90:9b:a8:d2:90:fd:0a:65:1c:c0:c9:09:c1:97
Signer

Actual PE Digest

fc:47:2d:ca:6b:a1:9d:72:3c:5f:36:47:b3:d2:7a:57:1a:d1:90:9b:a8:d2:90:fd:0a:65:1c:c0:c9:09:c1:97

Digest Algorithm

sha256

PE Digest Matches

true

f9:a5:18:70:cc:4c:b9:ed:b4:4d:b8:5d:43:4e:52:ff:7d:59:3a:56
Signer

Actual PE Digest

f9:a5:18:70:cc:4c:b9:ed:b4:4d:b8:5d:43:4e:52:ff:7d:59:3a:56

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-filesystem-l1-1-0.pdb

Exports

_access

_access_s

_chdir

_chdrive

_chmod

_findclose

_findfirst32

_findfirst32i64

_findfirst64

_findfirst64i32

_findnext32

_findnext32i64

_findnext64

_findnext64i32

_fstat32

_fstat32i64

_fstat64

_fstat64i32

_fullpath

_getdiskfree

_getdrive

_getdrives

_lock_file

_makepath

_makepath_s

_mkdir

_rmdir

_splitpath

_splitpath_s

_stat32

_stat32i64

_stat64

_stat64i32

_umask

_umask_s

_unlink

_unlock_file

_waccess

_waccess_s

_wchdir

_wchmod

_wfindfirst32

_wfindfirst32i64

_wfindfirst64

_wfindfirst64i32

_wfindnext32

_wfindnext32i64

_wfindnext64

_wfindnext64i32

_wfullpath

_wmakepath

_wmakepath_s

_wmkdir

_wremove

_wrename

_wrmdir

_wsplitpath

_wsplitpath_s

_wstat32

_wstat32i64

_wstat64

_wstat64i32

_wunlink

remove

rename

Sections

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-heap-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

6e:d6:5e:72:3e:36:d8:eb:18:5a:15:7c:b7:d1:d7:a2:94:3a:0a:f8:1d:12:ef:82:99:65:78:35:67:28:54:40
Signer

Actual PE Digest

6e:d6:5e:72:3e:36:d8:eb:18:5a:15:7c:b7:d1:d7:a2:94:3a:0a:f8:1d:12:ef:82:99:65:78:35:67:28:54:40

Digest Algorithm

sha256

PE Digest Matches

true

14:b3:5f:6d:73:dc:fc:c0:a9:10:3a:cd:c2:7b:b5:5b:25:79:6e:80
Signer

Actual PE Digest

14:b3:5f:6d:73:dc:fc:c0:a9:10:3a:cd:c2:7b:b5:5b:25:79:6e:80

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-heap-l1-1-0.pdb

Exports

_aligned_free

_aligned_malloc

_aligned_msize

_aligned_offset_malloc

_aligned_offset_realloc

_aligned_offset_recalloc

_aligned_realloc

_aligned_recalloc

_callnewh

_calloc_base

_expand

_free_base

_get_heap_handle

_heapchk

_heapmin

_heapwalk

_malloc_base

_msize

_query_new_handler

_query_new_mode

_realloc_base

_recalloc

_set_new_mode

calloc

free

malloc

realloc

Sections

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-locale-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

5a:45:92:9b:72:0d:e4:40:22:56:a2:e1:f6:2a:62:af:87:6b:ea:09:d2:31:d1:f8:19:7d:a0:d3:5a:75:b8:04
Signer

Actual PE Digest

5a:45:92:9b:72:0d:e4:40:22:56:a2:e1:f6:2a:62:af:87:6b:ea:09:d2:31:d1:f8:19:7d:a0:d3:5a:75:b8:04

Digest Algorithm

sha256

PE Digest Matches

true

82:4d:d6:e4:c3:34:d8:4e:2e:38:55:84:0c:2d:a8:9f:20:c3:1b:a7
Signer

Actual PE Digest

82:4d:d6:e4:c3:34:d8:4e:2e:38:55:84:0c:2d:a8:9f:20:c3:1b:a7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-locale-l1-1-0.pdb

Exports

___lc_codepage_func

___lc_collate_cp_func

___lc_locale_name_func

___mb_cur_max_func

___mb_cur_max_l_func

__initialize_lconv_for_unsigned_char

__pctype_func

__pwctype_func

_configthreadlocale

_create_locale

_free_locale

_get_current_locale

_getmbcp

_lock_locales

_setmbcp

_unlock_locales

_wcreate_locale

_wsetlocale

localeconv

setlocale

Sections

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-math-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

3a:0e:44:23:c0:fa:ef:3c:a2:b9:75:e9:78:49:ba:5a:76:a5:a1:f0:55:ca:52:1a:c2:9d:09:8f:b9:66:36:9d
Signer

Actual PE Digest

3a:0e:44:23:c0:fa:ef:3c:a2:b9:75:e9:78:49:ba:5a:76:a5:a1:f0:55:ca:52:1a:c2:9d:09:8f:b9:66:36:9d

Digest Algorithm

sha256

PE Digest Matches

true

33:29:11:ca:36:3c:eb:96:9c:d1:1e:07:b1:15:13:e0:5d:32:92:a8
Signer

Actual PE Digest

33:29:11:ca:36:3c:eb:96:9c:d1:1e:07:b1:15:13:e0:5d:32:92:a8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-math-l1-1-0.pdb

Exports

_Cbuild

_Cmulcc

_Cmulcr

_FCbuild

_FCmulcc

_FCmulcr

_LCbuild

_LCmulcc

_LCmulcr

__setusermatherr

_cabs

_chgsign

_chgsignf

_copysign

_copysignf

_d_int

_dclass

_dexp

_dlog

_dnorm

_dpcomp

_dpoly

_dscale

_dsign

_dsin

_dtest

_dunscale

_except1

_fd_int

_fdclass

_fdexp

_fdlog

_fdnorm

_fdopen

_fdpcomp

_fdpoly

_fdscale

_fdsign

_fdsin

_fdtest

_fdunscale

_finite

_finitef

_fpclass

_fpclassf

_get_FMA3_enable

_hypot

_hypotf

_isnan

_isnanf

_j0

_j1

_jn

_ld_int

_ldclass

_ldexp

_ldlog

_ldpcomp

_ldpoly

_ldscale

_ldsign

_ldsin

_ldtest

_ldunscale

_logb

_logbf

_nextafter

_nextafterf

_scalb

_scalbf

_set_FMA3_enable

_y0

_y1

_yn

acos

acosf

acosh

acoshf

acoshl

asin

asinf

asinh

asinhf

asinhl

atan

atan2

atan2f

atanf

atanh

atanhf

atanhl

cabs

cabsf

cabsl

cacos

cacosf

cacosh

cacoshf

cacoshl

cacosl

carg

cargf

cargl

casin

casinf

casinh

casinhf

casinhl

casinl

catan

catanf

catanh

catanhf

catanhl

catanl

cbrt

cbrtf

cbrtl

ccos

ccosf

ccosh

ccoshf

ccoshl

ccosl

ceil

ceilf

cexp

cexpf

cexpl

cimag

cimagf

cimagl

clog

clog10

clog10f

clog10l

clogf

clogl

conj

conjf

conjl

copysign

copysignf

copysignl

cos

cosf

cosh

coshf

cpow

cpowf

cpowl

cproj

cprojf

cprojl

creal

crealf

creall

csin

csinf

csinh

csinhf

csinhl

csinl

csqrt

csqrtf

csqrtl

ctan

ctanf

ctanh

ctanhf

ctanhl

ctanl

erf

erfc

erfcf

erfcl

erff

erfl

exp

exp2

exp2f

exp2l

expf

expm1

expm1f

expm1l

fabs

fdim

fdimf

fdiml

floor

floorf

fma

fmaf

fmal

fmax

fmaxf

fmaxl

fmin

fminf

fminl

fmod

fmodf

frexp

hypot

ilogb

ilogbf

ilogbl

ldexp

lgamma

lgammaf

lgammal

llrint

llrintf

llrintl

llround

llroundf

llroundl

log

log10

log10f

log1p

log1pf

log1pl

log2

log2f

log2l

logb

logbf

logbl

logf

lrint

lrintf

lrintl

lround

lroundf

lroundl

modf

modff

nan

nanf

nanl

nearbyint

nearbyintf

nearbyintl

nextafter

nextafterf

nextafterl

nexttoward

nexttowardf

nexttowardl

norm

normf

norml

pow

powf

remainder

remainderf

remainderl

remquo

remquof

remquol

rint

rintf

rintl

round

roundf

roundl

scalbln

scalblnf

scalblnl

scalbn

scalbnf

scalbnl

sin

sinf

sinh

sinhf

sqrt

sqrtf

tan

tanf

tanh

tanhf

tgamma

tgammaf

tgammal

trunc

truncf

truncl

Sections

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-multibyte-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

14:80:01:b3:58:1c:85:61:5d:26:39:4b:bf:53:f3:3a:df:7e:95:a1:d9:b9:09:26:4e:2d:38:3c:fa:3d:ac:d8
Signer

Actual PE Digest

14:80:01:b3:58:1c:85:61:5d:26:39:4b:bf:53:f3:3a:df:7e:95:a1:d9:b9:09:26:4e:2d:38:3c:fa:3d:ac:d8

Digest Algorithm

sha256

PE Digest Matches

true

07:eb:e8:45:ea:ad:1d:74:5f:21:29:93:a5:86:52:10:29:e7:63:5d
Signer

Actual PE Digest

07:eb:e8:45:ea:ad:1d:74:5f:21:29:93:a5:86:52:10:29:e7:63:5d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-multibyte-l1-1-0.pdb

Exports

__p__mbcasemap

__p__mbctype

_ismbbalnum

_ismbbalnum_l

_ismbbalpha

_ismbbalpha_l

_ismbbblank

_ismbbblank_l

_ismbbgraph

_ismbbgraph_l

_ismbbkalnum

_ismbbkalnum_l

_ismbbkana

_ismbbkana_l

_ismbbkprint

_ismbbkprint_l

_ismbbkpunct

_ismbbkpunct_l

_ismbblead

_ismbblead_l

_ismbbprint

_ismbbprint_l

_ismbbpunct

_ismbbpunct_l

_ismbbtrail

_ismbbtrail_l

_ismbcalnum

_ismbcalnum_l

_ismbcalpha

_ismbcalpha_l

_ismbcblank

_ismbcblank_l

_ismbcdigit

_ismbcdigit_l

_ismbcgraph

_ismbcgraph_l

_ismbchira

_ismbchira_l

_ismbckata

_ismbckata_l

_ismbcl0

_ismbcl0_l

_ismbcl1

_ismbcl1_l

_ismbcl2

_ismbcl2_l

_ismbclegal

_ismbclegal_l

_ismbclower

_ismbclower_l

_ismbcprint

_ismbcprint_l

_ismbcpunct

_ismbcpunct_l

_ismbcspace

_ismbcspace_l

_ismbcsymbol

_ismbcsymbol_l

_ismbcupper

_ismbcupper_l

_ismbslead

_ismbslead_l

_ismbstrail

_ismbstrail_l

_mbbtombc

_mbbtombc_l

_mbbtype

_mbbtype_l

_mbcasemap

_mbccpy

_mbccpy_l

_mbccpy_s

_mbccpy_s_l

_mbcjistojms

_mbcjistojms_l

_mbcjmstojis

_mbcjmstojis_l

_mbclen

_mbclen_l

_mbctohira

_mbctohira_l

_mbctokata

_mbctokata_l

_mbctolower

_mbctolower_l

_mbctombb

_mbctombb_l

_mbctoupper

_mbctoupper_l

_mblen_l

_mbsbtype

_mbsbtype_l

_mbscat_s

_mbscat_s_l

_mbschr

_mbschr_l

_mbscmp

_mbscmp_l

_mbscoll

_mbscoll_l

_mbscpy_s

_mbscpy_s_l

_mbscspn

_mbscspn_l

_mbsdec

_mbsdec_l

_mbsdup

_mbsicmp

_mbsicmp_l

_mbsicoll

_mbsicoll_l

_mbsinc

_mbsinc_l

_mbslen

_mbslen_l

_mbslwr

_mbslwr_l

_mbslwr_s

_mbslwr_s_l

_mbsnbcat

_mbsnbcat_l

_mbsnbcat_s

_mbsnbcat_s_l

_mbsnbcmp

_mbsnbcmp_l

_mbsnbcnt

_mbsnbcnt_l

_mbsnbcoll

_mbsnbcoll_l

_mbsnbcpy

_mbsnbcpy_l

_mbsnbcpy_s

_mbsnbcpy_s_l

_mbsnbicmp

_mbsnbicmp_l

_mbsnbicoll

_mbsnbicoll_l

_mbsnbset

_mbsnbset_l

_mbsnbset_s

_mbsnbset_s_l

_mbsncat

_mbsncat_l

_mbsncat_s

_mbsncat_s_l

_mbsnccnt

_mbsnccnt_l

_mbsncmp

_mbsncmp_l

_mbsncoll

_mbsncoll_l

_mbsncpy

_mbsncpy_l

_mbsncpy_s

_mbsncpy_s_l

_mbsnextc

_mbsnextc_l

_mbsnicmp

_mbsnicmp_l

_mbsnicoll

_mbsnicoll_l

_mbsninc

_mbsninc_l

_mbsnlen

_mbsnlen_l

_mbsnset

_mbsnset_l

_mbsnset_s

_mbsnset_s_l

_mbspbrk

_mbspbrk_l

_mbsrchr

_mbsrchr_l

_mbsrev

_mbsrev_l

_mbsset

_mbsset_l

_mbsset_s

_mbsset_s_l

_mbsspn

_mbsspn_l

_mbsspnp

_mbsspnp_l

_mbsstr

_mbsstr_l

_mbstok

_mbstok_l

_mbstok_s

_mbstok_s_l

_mbstowcs_l

_mbstowcs_s_l

_mbstrlen

_mbstrlen_l

_mbstrnlen

_mbstrnlen_l

_mbsupr

_mbsupr_l

_mbsupr_s

_mbsupr_s_l

_mbtowc_l

Sections

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-private-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

d5:8f:19:a7:1e:bb:8d:26:d4:25:6c:ec:c1:c1:7f:98:c4:a6:fb:ab:28:b6:f5:96:0f:8f:e9:4f:79:e7:d0:a8
Signer

Actual PE Digest

d5:8f:19:a7:1e:bb:8d:26:d4:25:6c:ec:c1:c1:7f:98:c4:a6:fb:ab:28:b6:f5:96:0f:8f:e9:4f:79:e7:d0:a8

Digest Algorithm

sha256

PE Digest Matches

true

7a:e3:ab:1d:fc:78:38:8e:30:00:80:bc:88:2f:bb:19:eb:17:50:63
Signer

Actual PE Digest

7a:e3:ab:1d:fc:78:38:8e:30:00:80:bc:88:2f:bb:19:eb:17:50:63

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-private-l1-1-0.pdb

Exports

_CreateFrameInfo

_CxxThrowException

_FindAndUnlinkFrame

_GetImageBase

_GetThrowImageBase

_IsExceptionObjectToBeDestroyed

_SetImageBase

_SetThrowImageBase

_SetWinRTOutOfMemoryExceptionCallback

__AdjustPointer

__BuildCatchObject

__BuildCatchObjectHelper

__C_specific_handler

__C_specific_handler_noexcept

__CxxDetectRethrow

__CxxExceptionFilter

__CxxFrameHandler

__CxxFrameHandler2

__CxxFrameHandler3

__CxxQueryExceptionSize

__CxxRegisterExceptionObject

__CxxUnregisterExceptionObject

__DestructExceptionObject

__FrameUnwindFilter

__GetPlatformExceptionInfo

__NLG_Dispatch2

__NLG_Return2

__RTCastToVoid

__RTDynamicCast

__RTtypeid

__TypeMatch

__current_exception

__current_exception_context

__dcrt_get_wide_environment_from_os

__dcrt_initial_narrow_environment

__intrinsic_setjmp

__intrinsic_setjmpex

__processing_throw

__report_gsfailure

__std_exception_copy

__std_exception_destroy

__std_terminate

__std_type_info_compare

__std_type_info_destroy_list

__std_type_info_hash

__std_type_info_name

__unDName

__unDNameEx

__uncaught_exception

__uncaught_exceptions

_get_purecall_handler

_get_unexpected

_is_exception_typeof

_local_unwind

_o__Getdays

_o__Getmonths

_o__Gettnames

_o__Strftime

_o__W_Getdays

_o__W_Getmonths

_o__W_Gettnames

_o__Wcsftime

_o____lc_codepage_func

_o____lc_collate_cp_func

_o____lc_locale_name_func

_o____mb_cur_max_func

_o___acrt_iob_func

_o___conio_common_vcprintf

_o___conio_common_vcprintf_p

_o___conio_common_vcprintf_s

_o___conio_common_vcscanf

_o___conio_common_vcwprintf

_o___conio_common_vcwprintf_p

_o___conio_common_vcwprintf_s

_o___conio_common_vcwscanf

_o___daylight

_o___dstbias

_o___fpe_flt_rounds

_o___p___argc

_o___p___argv

_o___p___wargv

_o___p__acmdln

_o___p__commode

_o___p__environ

_o___p__fmode

_o___p__mbcasemap

_o___p__mbctype

_o___p__pgmptr

_o___p__wcmdln

_o___p__wenviron

_o___p__wpgmptr

_o___pctype_func

_o___pwctype_func

_o___std_exception_copy

_o___std_exception_destroy

_o___std_type_info_destroy_list

_o___std_type_info_name

_o___stdio_common_vfprintf

_o___stdio_common_vfprintf_p

_o___stdio_common_vfprintf_s

_o___stdio_common_vfscanf

_o___stdio_common_vfwprintf

_o___stdio_common_vfwprintf_p

_o___stdio_common_vfwprintf_s

_o___stdio_common_vfwscanf

_o___stdio_common_vsnprintf_s

_o___stdio_common_vsnwprintf_s

_o___stdio_common_vsprintf

_o___stdio_common_vsprintf_p

_o___stdio_common_vsprintf_s

_o___stdio_common_vsscanf

_o___stdio_common_vswprintf

_o___stdio_common_vswprintf_p

_o___stdio_common_vswprintf_s

_o___stdio_common_vswscanf

_o___timezone

_o___tzname

_o___wcserror

_o__access

_o__access_s

_o__aligned_free

_o__aligned_malloc

_o__aligned_msize

_o__aligned_offset_malloc

_o__aligned_offset_realloc

_o__aligned_offset_recalloc

_o__aligned_realloc

_o__aligned_recalloc

_o__atodbl

_o__atodbl_l

_o__atof_l

_o__atoflt

_o__atoflt_l

_o__atoi64

_o__atoi64_l

_o__atoi_l

_o__atol_l

_o__atoldbl

_o__atoldbl_l

_o__atoll_l

_o__beep

_o__beginthread

_o__beginthreadex

_o__cabs

_o__callnewh

_o__calloc_base

_o__cexit

_o__cgets

_o__cgets_s

_o__cgetws

_o__cgetws_s

_o__chdir

_o__chdrive

_o__chmod

_o__chsize

_o__chsize_s

_o__close

_o__commit

_o__configthreadlocale

_o__configure_narrow_argv

_o__configure_wide_argv

_o__controlfp_s

_o__cputs

_o__cputws

_o__creat

_o__create_locale

_o__crt_atexit

_o__ctime32_s

_o__ctime64_s

_o__cwait

_o__d_int

_o__dclass

_o__difftime32

_o__difftime64

_o__dlog

_o__dnorm

_o__dpcomp

_o__dpoly

_o__dscale

_o__dsign

_o__dsin

_o__dtest

_o__dunscale

_o__dup

_o__dup2

_o__dupenv_s

_o__ecvt

_o__ecvt_s

_o__endthread

_o__endthreadex

_o__eof

_o__errno

_o__except1

_o__execute_onexit_table

_o__execv

_o__execve

_o__execvp

_o__execvpe

_o__exit

_o__expand

_o__fclose_nolock

_o__fcloseall

_o__fcvt

_o__fcvt_s

_o__fd_int

_o__fdclass

_o__fdexp

_o__fdlog

_o__fdopen

_o__fdpcomp

_o__fdpoly

_o__fdscale

_o__fdsign

_o__fdsin

_o__fflush_nolock

_o__fgetc_nolock

_o__fgetchar

_o__fgetwc_nolock

_o__fgetwchar

_o__filelength

_o__filelengthi64

_o__fileno

_o__findclose

_o__findfirst32

_o__findfirst32i64

_o__findfirst64

_o__findfirst64i32

_o__findnext32

_o__findnext32i64

_o__findnext64

_o__findnext64i32

_o__flushall

_o__fpclass

_o__fpclassf

_o__fputc_nolock

_o__fputchar

_o__fputwc_nolock

_o__fputwchar

_o__fread_nolock

_o__fread_nolock_s

_o__free_base

_o__free_locale

_o__fseek_nolock

_o__fseeki64

_o__fseeki64_nolock

_o__fsopen

_o__fstat32

_o__fstat32i64

_o__fstat64

_o__fstat64i32

_o__ftell_nolock

_o__ftelli64

_o__ftelli64_nolock

_o__ftime32

_o__ftime32_s

_o__ftime64

_o__ftime64_s

_o__fullpath

_o__futime32

_o__futime64

_o__fwrite_nolock

_o__gcvt

_o__gcvt_s

_o__get_daylight

_o__get_doserrno

_o__get_dstbias

_o__get_errno

_o__get_fmode

_o__get_heap_handle

_o__get_initial_narrow_environment

_o__get_initial_wide_environment

_o__get_invalid_parameter_handler

_o__get_narrow_winmain_command_line

_o__get_osfhandle

_o__get_pgmptr

_o__get_stream_buffer_pointers

_o__get_terminate

_o__get_thread_local_invalid_parameter_handler

_o__get_timezone

_o__get_tzname

_o__get_wide_winmain_command_line

_o__get_wpgmptr

_o__getc_nolock

_o__getch

_o__getch_nolock

_o__getche

_o__getche_nolock

_o__getcwd

_o__getdcwd

_o__getdiskfree

_o__getdllprocaddr

_o__getdrive

_o__getdrives

_o__getmbcp

_o__getsystime

_o__getw

_o__getwc_nolock

_o__getwch

_o__getwch_nolock

_o__getwche

_o__getwche_nolock

_o__getws

_o__getws_s

_o__gmtime32

_o__gmtime32_s

_o__gmtime64

_o__gmtime64_s

_o__heapchk

_o__heapmin

_o__hypot

_o__hypotf

_o__i64toa

_o__i64toa_s

_o__i64tow

_o__i64tow_s

_o__initialize_narrow_environment

_o__initialize_onexit_table

_o__initialize_wide_environment

_o__invalid_parameter_noinfo

_o__invalid_parameter_noinfo_noreturn

_o__isatty

_o__isctype

_o__isctype_l

_o__isleadbyte_l

_o__ismbbalnum

_o__ismbbalnum_l

_o__ismbbalpha

_o__ismbbalpha_l

_o__ismbbblank

_o__ismbbblank_l

_o__ismbbgraph

_o__ismbbgraph_l

_o__ismbbkalnum

_o__ismbbkalnum_l

_o__ismbbkana

_o__ismbbkana_l

_o__ismbbkprint

_o__ismbbkprint_l

_o__ismbbkpunct

_o__ismbbkpunct_l

_o__ismbblead

_o__ismbblead_l

_o__ismbbprint

_o__ismbbprint_l

_o__ismbbpunct

_o__ismbbpunct_l

_o__ismbbtrail

_o__ismbbtrail_l

_o__ismbcalnum

_o__ismbcalnum_l

_o__ismbcalpha

_o__ismbcalpha_l

_o__ismbcblank

_o__ismbcblank_l

_o__ismbcdigit

_o__ismbcdigit_l

_o__ismbcgraph

_o__ismbcgraph_l

_o__ismbchira

_o__ismbchira_l

_o__ismbckata

_o__ismbckata_l

_o__ismbcl0

_o__ismbcl0_l

_o__ismbcl1

_o__ismbcl1_l

_o__ismbcl2

_o__ismbcl2_l

_o__ismbclegal

_o__ismbclegal_l

_o__ismbclower

_o__ismbclower_l

_o__ismbcprint

_o__ismbcprint_l

_o__ismbcpunct

_o__ismbcpunct_l

_o__ismbcspace

_o__ismbcspace_l

_o__ismbcsymbol

_o__ismbcsymbol_l

_o__ismbcupper

_o__ismbcupper_l

_o__ismbslead

_o__ismbslead_l

_o__ismbstrail

_o__ismbstrail_l

_o__iswctype_l

_o__itoa

_o__itoa_s

_o__itow

_o__itow_s

_o__j0

_o__j1

_o__jn

_o__kbhit

_o__ld_int

_o__ldclass

_o__ldexp

_o__ldlog

_o__ldpcomp

_o__ldpoly

_o__ldscale

_o__ldsign

_o__ldsin

_o__ldtest

_o__ldunscale

_o__lfind

_o__lfind_s

_o__loaddll

_o__localtime32

_o__localtime32_s

_o__localtime64

_o__localtime64_s

_o__lock_file

_o__locking

_o__logb

_o__logbf

_o__lsearch

_o__lsearch_s

_o__lseek

_o__lseeki64

_o__ltoa

_o__ltoa_s

_o__ltow

_o__ltow_s

_o__makepath

_o__makepath_s

_o__malloc_base

_o__mbbtombc

_o__mbbtombc_l

_o__mbbtype

_o__mbbtype_l

_o__mbccpy

_o__mbccpy_l

_o__mbccpy_s

_o__mbccpy_s_l

_o__mbcjistojms

_o__mbcjistojms_l

_o__mbcjmstojis

_o__mbcjmstojis_l

_o__mbclen

_o__mbclen_l

_o__mbctohira

_o__mbctohira_l

_o__mbctokata

_o__mbctokata_l

_o__mbctolower

_o__mbctolower_l

_o__mbctombb

_o__mbctombb_l

_o__mbctoupper

_o__mbctoupper_l

_o__mblen_l

_o__mbsbtype

_o__mbsbtype_l

_o__mbscat_s

_o__mbscat_s_l

_o__mbschr

_o__mbschr_l

_o__mbscmp

_o__mbscmp_l

_o__mbscoll

_o__mbscoll_l

_o__mbscpy_s

_o__mbscpy_s_l

_o__mbscspn

_o__mbscspn_l

_o__mbsdec

_o__mbsdec_l

_o__mbsicmp

_o__mbsicmp_l

_o__mbsicoll

_o__mbsicoll_l

_o__mbsinc

_o__mbsinc_l

_o__mbslen

_o__mbslen_l

_o__mbslwr

_o__mbslwr_l

_o__mbslwr_s

_o__mbslwr_s_l

_o__mbsnbcat

_o__mbsnbcat_l

_o__mbsnbcat_s

_o__mbsnbcat_s_l

_o__mbsnbcmp

_o__mbsnbcmp_l

_o__mbsnbcnt

_o__mbsnbcnt_l

_o__mbsnbcoll

_o__mbsnbcoll_l

_o__mbsnbcpy

_o__mbsnbcpy_l

_o__mbsnbcpy_s

_o__mbsnbcpy_s_l

_o__mbsnbicmp

_o__mbsnbicmp_l

_o__mbsnbicoll

_o__mbsnbicoll_l

_o__mbsnbset

Sections

.rdata
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/api-ms-win-crt-process-l1-1-0.dll

.dll windows:10 windows x64 arch:x64

Code Sign

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00 UTC

Not After

18/01/2038, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00 UTC

Not After

02/08/2034, 23:59 UTC

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25/02/2021, 00:00 UTC

Not After

29/02/2024, 23:59 UTC

Subject

CN=Epic Games Inc.,O=Epic Games Inc.,L=Cary,ST=North Carolina,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

Not Before

12/01/2016, 00:00 UTC

Not After

11/01/2031, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00 UTC

Not After

22/03/2029, 23:59 UTC

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

d7:4d:95:42:60:13:dc:77:da:2e:4b:f6:f5:c6:d7:36:3f:ab:86:9d:2f:12:c3:af:7c:3e:c8:72:2f:1e:2d:18
Signer

Actual PE Digest

d7:4d:95:42:60:13:dc:77:da:2e:4b:f6:f5:c6:d7:36:3f:ab:86:9d:2f:12:c3:af:7c:3e:c8:72:2f:1e:2d:18

Digest Algorithm

sha256

PE Digest Matches

true

ad:be:51:42:48:63:74:38:8d:7e:95:8b:ad:67:95:ca:63:a5:fd:b6
Signer

Actual PE Digest

ad:be:51:42:48:63:74:38:8d:7e:95:8b:ad:67:95:ca:63:a5:fd:b6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

api-ms-win-crt-process-l1-1-0.pdb

Exports

_beep

_cwait

_execl

_execle

_execlp

_execlpe

_execv

_execve

_execvp

_execvpe

_loaddll

_spawnl

_spawnle

_spawnlp

_spawnlpe

_spawnv

_spawnve

_spawnvp

_spawnvpe

_unloaddll

_wexecl

_wexecle

_wexeclp

_wexeclpe

_wexecv

_wexecve

_wexecvp

_wexecvpe

_wspawnl

_wspawnle

_wspawnlp

_wspawnlpe

_wspawnv

_wspawnve

_wspawnvp

_wspawnvpe

Sections

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/dsngvls

infected/ks_tyres.ini

infected/msvcp100.dll

.dll windows:5 windows x86 arch:x86

7a0d9f66efd1839f136ca6896fa52dfa

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

Not Before

22/08/2007, 22:31 UTC

Not After

25/08/2012, 07:00 UTC

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:01:cf:3e:00:00:00:00:00:0f
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07/12/2009, 22:40 UTC

Not After

07/03/2011, 22:40 UTC

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

Not Before

16/09/2006, 01:04 UTC

Not After

15/09/2019, 07:00 UTC

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2008, 19:02 UTC

Not After

25/07/2013, 19:12 UTC

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

53:37:d6:73:4e:7e:5f:a4:77:f8:ce:bd:a3:55:a7:30:8b:2c:b5:fa
Signer

Actual PE Digest

53:37:d6:73:4e:7e:5f:a4:77:f8:ce:bd:a3:55:a7:30:8b:2c:b5:fa

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

msvcp100.i386.pdb

Imports

msvcr100

rand_s

memset

memmove

fgetc

ungetc

_lock_file

_unlock_file

fflush

setvbuf

memcpy_s

fwrite

fgetpos

_fseeki64

fsetpos

fclose

_fsopen

_wfsopen

fseek

ldexp

wcslen

memchr

memmove_s

sprintf_s

_Strftime

strcspn

setlocale

_realloc_crt

strcmp

_malloc_crt

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

_purecall

strerror

fgetwc

fputwc

ungetwc

__uncaught_exception

towlower

towupper

_create_locale

_ui64toa_s

_free_locale

__pctype_func

_errno

___mb_cur_max_l_func

___lc_codepage_func

___lc_handle_func

__crtCompareStringA

memcmp

___lc_collate_cp_func

__crtLCMapStringA

__iob_func

?Alloc@Concurrency@@YAPAXI@Z

?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z

?Yield@Context@Concurrency@@SAXXZ

??1critical_section@Concurrency@@QAE@XZ

??0invalid_link_target@Concurrency@@QAE@PBD@Z

??0message_not_found@Concurrency@@QAE@XZ

??0bad_target@Concurrency@@QAE@XZ

??0invalid_operation@Concurrency@@QAE@PBD@Z

?set@event@Concurrency@@QAEXXZ

?wait@event@Concurrency@@QAEII@Z

??1event@Concurrency@@QAE@XZ

??0event@Concurrency@@QAE@XZ

?Free@Concurrency@@YAXPAX@Z

??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

?_UnderlyingYield@details@Concurrency@@YAXXZ

?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ

?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ

?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ

??1_SpinLock@details@Concurrency@@QAE@XZ

??0_SpinLock@details@Concurrency@@QAE@ACJ@Z

?Log2@details@Concurrency@@YAKI@Z

isupper

_calloc_crt

islower

__crtLCMapStringW

isspace

tolower

strtod

__crtCompareStringW

?terminate@@YAXXZ

_unlock

__dllonexit

_lock

_onexit

_encoded_null

_initterm

_initterm_e

_amsg_exit

__CppXcptFilter

?_type_info_dtor_internal_method@type_info@@QAEXXZ

_except_handler4_common

_crt_debugger_hook

__clean_type_info_names_internal

fputs

fputc

abort

log

??0bad_cast@std@@QAE@ABV01@@Z

??1bad_cast@std@@UAE@XZ

??0bad_cast@std@@QAE@PBD@Z

_Getmonths

_Getdays

malloc

__CxxFrameHandler3

??2@YAPAXI@Z

___mb_cur_max_func

memcpy

strlen

??_V@YAXPAX@Z

_Gettnames

localeconv

free

??0exception@std@@QAE@ABQBD@Z

?what@exception@std@@UBEPBDXZ

??0exception@std@@QAE@ABQBDH@Z

??3@YAXPAX@Z

??0exception@std@@QAE@ABV01@@Z

_CxxThrowException

??1exception@std@@UAE@XZ

??0operation_timed_out@Concurrency@@QAE@XZ

??0exception@std@@QAE@XZ

kernel32

GetCurrentProcessId

GetTickCount

QueryPerformanceCounter

DisableThreadLibraryCalls

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

IsProcessorFeaturePresent

Sleep

GetStringTypeW

InterlockedDecrement

InterlockedIncrement

GetLocaleInfoW

GetCurrentThreadId

WideCharToMultiByte

MultiByteToWideChar

InterlockedExchange

InterlockedCompareExchange

DecodePointer

EncodePointer

LeaveCriticalSection

EnterCriticalSection

DeleteCriticalSection

InitializeCriticalSection

GetSystemTimeAsFileTime

Exports

??0?$_Yarn@D@std@@QAE@ABV01@@Z

??0?$_Yarn@D@std@@QAE@PBD@Z

??0?$_Yarn@D@std@@QAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@$$QAV01@@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@DDH@std@@QAE@I@Z

??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@GDH@std@@QAE@I@Z

??0?$codecvt@_WDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@_WDH@std@@QAE@I@Z

??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@D@std@@QAE@PBF_NI@Z

??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@G@std@@QAE@I@Z

??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@_W@std@@QAE@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0Init@ios_base@std@@QAE@XZ

??0_Concurrent_queue_base_v4@details@Concurrency@@IAE@I@Z

??0_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@ABV_Concurrent_queue_base_v4@12@@Z

??0_Container_base12@std@@QAE@ABU01@@Z

??0_Container_base12@std@@QAE@XZ

??0_Init_locks@std@@QAE@XZ

??0_Locimp@locale@std@@AAE@ABV012@@Z

??0_Locimp@locale@std@@AAE@_N@Z

??0_Locinfo@std@@QAE@HPBD@Z

??0_Locinfo@std@@QAE@PBD@Z

??0_Lockit@std@@QAE@H@Z

??0_Lockit@std@@QAE@XZ

??0_Mutex@std@@QAE@W4_Uninitialized@1@@Z

??0_Mutex@std@@QAE@XZ

??0_Runtime_object@details@Concurrency@@QAE@H@Z

??0_Runtime_object@details@Concurrency@@QAE@XZ

??0_Timevec@std@@QAE@ABV01@@Z

??0_Timevec@std@@QAE@PAX@Z

??0_UShinit@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

??0agent@Concurrency@@QAE@AAVScheduleGroup@1@@Z

??0agent@Concurrency@@QAE@AAVScheduler@1@@Z

??0agent@Concurrency@@QAE@XZ

??0codecvt_base@std@@QAE@I@Z

??0ctype_base@std@@QAE@I@Z

??0facet@locale@std@@IAE@I@Z

??0id@locale@std@@QAE@I@Z

??0ios_base@std@@IAE@XZ

??0ios_base@std@@QAE@ABV01@@Z

??0time_base@std@@QAE@I@Z

??1?$_Yarn@D@std@@QAE@XZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$codecvt@DDH@std@@MAE@XZ

??1?$codecvt@GDH@std@@MAE@XZ

??1?$codecvt@_WDH@std@@MAE@XZ

??1?$ctype@D@std@@MAE@XZ

??1?$ctype@G@std@@MAE@XZ

??1?$ctype@_W@std@@MAE@XZ

??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1Init@ios_base@std@@QAE@XZ

??1_Concurrent_queue_base_v4@details@Concurrency@@MAE@XZ

??1_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@XZ

??1_Concurrent_vector_base_v4@details@Concurrency@@IAE@XZ

??1_Container_base12@std@@QAE@XZ

??1_Init_locks@std@@QAE@XZ

??1_Locimp@locale@std@@MAE@XZ

??1_Locinfo@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

??1_Mutex@std@@QAE@XZ

??1_Timevec@std@@QAE@XZ

??1_UShinit@std@@QAE@XZ

??1_Winit@std@@QAE@XZ

??1agent@Concurrency@@UAE@XZ

??1codecvt_base@std@@UAE@XZ

??1ctype_base@std@@UAE@XZ

??1facet@locale@std@@UAE@XZ

??1ios_base@std@@UAE@XZ

??1time_base@std@@UAE@XZ

??4?$_Iosb@H@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAEAAV01@PBD@Z

??4?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@$$QAV01@@Z

??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEAAV01@ABV01@@Z

??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEAAV01@ABV01@@Z

??4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEAAV01@ABV01@@Z

??4?$numeric_limits@C@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@D@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@E@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@F@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@G@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@H@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@I@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@J@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@K@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@M@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@N@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@O@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@_J@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@_K@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@_N@std@@QAEAAV01@ABV01@@Z

??4?$numeric_limits@_W@std@@QAEAAV01@ABV01@@Z

??4Init@ios_base@std@@QAEAAV012@ABV012@@Z

??4_Container_base0@std@@QAEAAU01@ABU01@@Z

??4_Container_base12@std@@QAEAAU01@ABU01@@Z

??4_Init_locks@std@@QAEAAV01@ABV01@@Z

??4_Num_base@std@@QAEAAU01@ABU01@@Z

??4_Num_float_base@std@@QAEAAU01@ABU01@@Z

??4_Num_int_base@std@@QAEAAU01@ABU01@@Z

??4_Timevec@std@@QAEAAV01@ABV01@@Z

??4_UShinit@std@@QAEAAV01@ABV01@@Z

??4_Winit@std@@QAEAAV01@ABV01@@Z

??4ios_base@std@@QAEAAV01@ABV01@@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z

??7ios_base@std@@QBE_NXZ

??Bid@locale@std@@QAEIXZ

??Bios_base@std@@QBEPAXXZ

??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$codecvt@DDH@std@@6B@

??_7?$codecvt@GDH@std@@6B@

??_7?$codecvt@_WDH@std@@6B@

??_7?$ctype@D@std@@6B@

??_7?$ctype@G@std@@6B@

??_7?$ctype@_W@std@@6B@

??_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7_Locimp@locale@std@@6B@

??_7codecvt_base@std@@6B@

??_7ctype_base@std@@6B@

??_7ios_base@std@@6B@

??_7time_base@std@@6B@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@

??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@

??_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_istream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_F?$codecvt@DDH@std@@QAEXXZ

??_F?$codecvt@GDH@std@@QAEXXZ

??_F?$codecvt@_WDH@std@@QAEXXZ

??_F?$ctype@D@std@@QAEXXZ

??_F?$ctype@G@std@@QAEXXZ

??_F?$ctype@_W@std@@QAEXXZ

??_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F_Locimp@locale@std@@QAEXXZ

??_F_Locinfo@std@@QAEXXZ

??_F_Timevec@std@@QAEXXZ

??_Fcodecvt_base@std@@QAEXXZ

??_Fctype_base@std@@QAEXXZ

??_Ffacet@locale@std@@QAEXXZ

??_Fid@locale@std@@QAEXXZ

??_Ftime_base@std@@QAEXXZ

?NFS_Allocate@details@Concurrency@@YAPAXIIPAX@Z

?NFS_Free@details@Concurrency@@YAXPAX@Z

?NFS_GetLineSize@details@Concurrency@@YAIXZ

?_Addcats@_Locinfo@std@@QAEAAV12@HPBD@Z

?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z

?_Addstd@ios_base@std@@SAXPAV12@@Z

?_Advance@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXXZ

?_Assign@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXABV123@@Z

?_Atexit@@YAXP6AXXZ@Z

?_BADOFF@std@@3_JB

?_C_str@?$_Yarn@D@std@@QBEPBDXZ

?_Callfns@ios_base@std@@AAEXW4event@12@@Z

?_Clocptr@_Locimp@locale@std@@0PAV123@A

?_Decref@facet@locale@std@@QAEPAV123@XZ

?_Donarrow@?$ctype@G@std@@IBEDGD@Z

?_Donarrow@?$ctype@_W@std@@IBED_WD@Z

?_Dowiden@?$ctype@G@std@@IBEGD@Z

?_Dowiden@?$ctype@_W@std@@IBE_WD@Z

?_Empty@?$_Yarn@D@std@@QBE_NXZ

?_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADDH@Z

?_Findarr@ios_base@std@@AAEAAU_Iosarray@12@H@Z

?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PBGHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBDIIII@Z

?_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AAVios_base@2@GPBDIIII@Z

?_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBDIIII@Z

?_GetCombinableSize@details@Concurrency@@YAIXZ

?_GetCurrentThreadId@details@Concurrency@@YAKXZ

?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@GDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@facet@locale@std@@SAIPAPBV123@PBV23@@Z

?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ

?_Getctype@_Locinfo@std@@QBE?AU_Ctypevec@@XZ

?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ

?_Getdateorder@_Locinfo@std@@QBEHXZ

?_Getdays@_Locinfo@std@@QBEPBDXZ

?_Getfalse@_Locinfo@std@@QBEPBDXZ

?_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z

?_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z

?_Getffld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z

?_Getffldx@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z

?_Getfmt@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getfmt@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getfmt@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_Getifld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1HABVlocale@2@@Z

?_Getifld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1HABVlocale@2@@Z

?_Getifld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1HABVlocale@2@@Z

?_Getint@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@0HHAAH@Z

?_Getint@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@0HHAAH@Z

?_Getint@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@0HHAAH@Z

?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ

?_Getmonths@_Locinfo@std@@QBEPBDXZ

?_Getname@_Locinfo@std@@QBEPBDXZ

?_Getpfirst@_Container_base12@std@@QBEPAPAU_Iterator_base12@2@XZ

?_Getptr@_Timevec@std@@QBEPAXXZ

?_Gettnames@_Locinfo@std@@QBE?AV_Timevec@2@XZ

?_Gettrue@_Locinfo@std@@QBEPBDXZ

?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ

?_Gnavail@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IBE_JXZ

?_Gnavail@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBE_JXZ

?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gndec@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ

?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ

?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

?_Gnpreinc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ

?_Gnpreinc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ

?_Hexdig@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHDDDD@Z

?_Hexdig@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHGGGG@Z

?_Hexdig@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAH_W000@Z

?_Id_cnt@id@locale@std@@0HA

?_Ifmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Ifmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Ifmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADPBDH@Z

?_Incref@facet@locale@std@@QAEXXZ

Sections

.text
Size: 371KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/msvcr100.dll

.dll windows:5 windows x86 arch:x86

5271d5ce8b44dd47bc92563e27585466

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

Not Before

22/08/2007, 22:31 UTC

Not After

25/08/2012, 07:00 UTC

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:01:cf:3e:00:00:00:00:00:0f
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07/12/2009, 22:40 UTC

Not After

07/03/2011, 22:40 UTC

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

Not Before

16/09/2006, 01:04 UTC

Not After

15/09/2019, 07:00 UTC

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:05:a2:30:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2008, 19:01 UTC

Not After

25/07/2013, 19:11 UTC

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:85D3-305C-5BCF,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

42:49:74:54:aa:4d:83:7a:e5:5d:a1:1f:f1:e8:b6:0a:d3:24:a0:ae
Signer

Actual PE Digest

42:49:74:54:aa:4d:83:7a:e5:5d:a1:1f:f1:e8:b6:0a:d3:24:a0:ae

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

msvcr100.i386.pdb

Imports

kernel32

EncodePointer

DecodePointer

RaiseException

GetModuleFileNameA

GetModuleFileNameW

GetModuleHandleW

GetProcAddress

ExitProcess

WriteFile

GetStdHandle

GetCurrentThreadId

TlsGetValue

GetCommandLineW

GetCommandLineA

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

LeaveCriticalSection

EnterCriticalSection

ExitThread

CloseHandle

GetLastError

ResumeThread

CreateThread

TlsAlloc

TlsSetValue

TlsFree

InterlockedIncrement

SetLastError

InterlockedDecrement

GetCurrentThread

FindNextFileA

FindFirstFileExA

FindClose

FindNextFileW

FindFirstFileExW

GetLogicalDrives

GetDiskFreeSpaceA

FileTimeToSystemTime

FileTimeToLocalFileTime

SetErrorMode

Sleep

Beep

GetFileAttributesA

SetFileAttributesA

SetEnvironmentVariableA

GetCurrentDirectoryA

SetCurrentDirectoryA

GetCurrentDirectoryW

SetCurrentDirectoryW

GetFullPathNameA

GetDriveTypeW

GetCurrentProcessId

CreateDirectoryA

MoveFileA

RemoveDirectoryA

GetDriveTypeA

DeleteFileA

GetFileAttributesW

SetEnvironmentVariableW

SetFileAttributesW

GetFullPathNameW

CreateDirectoryW

MoveFileW

RemoveDirectoryW

DeleteFileW

GetExitCodeProcess

WaitForSingleObject

CreateProcessA

LoadLibraryA

FreeLibrary

CreateProcessW

ReadFile

DuplicateHandle

GetCurrentProcess

GetSystemTimeAsFileTime

GetTimeZoneInformation

GetLocalTime

WideCharToMultiByte

SetFileTime

LocalFileTimeToFileTime

SystemTimeToFileTime

SetLocalTime

InterlockedPopEntrySList

InterlockedFlushSList

QueryDepthSList

InterlockedPushEntrySList

CreateTimerQueue

CreateTimerQueueTimer

DeleteTimerQueueTimer

SetEvent

CreateEventW

SwitchToThread

SignalObjectAndWait

TryEnterCriticalSection

GetTickCount

VirtualFree

GetVersionExW

SetThreadPriority

VirtualAlloc

GetSystemInfo

GetProcessAffinityMask

VirtualProtect

SetThreadAffinityMask

InitializeSListHead

ReleaseSemaphore

CreateSemaphoreW

WaitForMultipleObjects

GetThreadPriority

LoadLibraryW

SleepEx

OutputDebugStringW

FreeLibraryAndExitThread

GetModuleHandleA

GetThreadTimes

DebugBreak

MultiByteToWideChar

GetStringTypeW

GetCPInfo

GetACP

GetOEMCP

IsValidCodePage

GetTimeFormatA

GetDateFormatA

GetTimeFormatW

GetDateFormatW

RtlUnwind

HeapAlloc

HeapFree

HeapCreate

HeapDestroy

HeapQueryInformation

HeapReAlloc

HeapSize

HeapValidate

HeapCompact

HeapWalk

VirtualQuery

SetHandleCount

GetFileType

GetStartupInfoW

GetFileInformationByHandle

PeekNamedPipe

CreateFileA

CreateFileW

SetFilePointer

GetConsoleCP

GetConsoleMode

FlushFileBuffers

CreatePipe

SetStdHandle

ReadConsoleInputA

SetConsoleMode

PeekConsoleInputA

GetNumberOfConsoleInputEvents

ReadConsoleInputW

WriteConsoleW

ReadConsoleW

SetEndOfFile

GetProcessHeap

InterlockedExchange

LockFile

UnlockFile

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

TerminateProcess

SetConsoleCtrlHandler

GetLocaleInfoW

FreeEnvironmentStringsW

GetEnvironmentStringsW

QueryPerformanceCounter

LCMapStringW

CompareStringW

GetUserDefaultLCID

GetLocaleInfoA

EnumSystemLocalesA

IsValidLocale

IsProcessorFeaturePresent

Exports

$I10_OUTPUT

??0?$_SpinWait@$00@details@Concurrency@@QAE@P6AXXZ@Z

??0?$_SpinWait@$0A@@details@Concurrency@@QAE@P6AXXZ@Z

??0SchedulerPolicy@Concurrency@@QAA@IZZ

??0SchedulerPolicy@Concurrency@@QAE@ABV01@@Z

??0SchedulerPolicy@Concurrency@@QAE@XZ

??0_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ

??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_ReaderWriterLock@details@Concurrency@@QAE@XZ

??0_ReentrantBlockingLock@details@Concurrency@@QAE@XZ

??0_ReentrantLock@details@Concurrency@@QAE@XZ

??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_SpinLock@details@Concurrency@@QAE@ACJ@Z

??0_TaskCollection@details@Concurrency@@QAE@XZ

??0_Timer@details@Concurrency@@IAE@I_N@Z

??0__non_rtti_object@std@@QAE@ABV01@@Z

??0__non_rtti_object@std@@QAE@PBD@Z

??0bad_cast@std@@AAE@PBQBD@Z

??0bad_cast@std@@QAE@ABV01@@Z

??0bad_cast@std@@QAE@PBD@Z

??0bad_target@Concurrency@@QAE@PBD@Z

??0bad_target@Concurrency@@QAE@XZ

??0bad_typeid@std@@QAE@ABV01@@Z

??0bad_typeid@std@@QAE@PBD@Z

??0context_self_unblock@Concurrency@@QAE@PBD@Z

??0context_self_unblock@Concurrency@@QAE@XZ

??0context_unblock_unbalanced@Concurrency@@QAE@PBD@Z

??0context_unblock_unbalanced@Concurrency@@QAE@XZ

??0critical_section@Concurrency@@QAE@XZ

??0default_scheduler_exists@Concurrency@@QAE@PBD@Z

??0default_scheduler_exists@Concurrency@@QAE@XZ

??0event@Concurrency@@QAE@XZ

??0exception@std@@QAE@ABQBD@Z

??0exception@std@@QAE@ABQBDH@Z

??0exception@std@@QAE@ABV01@@Z

??0exception@std@@QAE@XZ

??0improper_lock@Concurrency@@QAE@PBD@Z

??0improper_lock@Concurrency@@QAE@XZ

??0improper_scheduler_attach@Concurrency@@QAE@PBD@Z

??0improper_scheduler_attach@Concurrency@@QAE@XZ

??0improper_scheduler_detach@Concurrency@@QAE@PBD@Z

??0improper_scheduler_detach@Concurrency@@QAE@XZ

??0improper_scheduler_reference@Concurrency@@QAE@PBD@Z

??0improper_scheduler_reference@Concurrency@@QAE@XZ

??0invalid_link_target@Concurrency@@QAE@PBD@Z

??0invalid_link_target@Concurrency@@QAE@XZ

??0invalid_multiple_scheduling@Concurrency@@QAE@PBD@Z

??0invalid_multiple_scheduling@Concurrency@@QAE@XZ

??0invalid_operation@Concurrency@@QAE@PBD@Z

??0invalid_operation@Concurrency@@QAE@XZ

??0invalid_oversubscribe_operation@Concurrency@@QAE@PBD@Z

??0invalid_oversubscribe_operation@Concurrency@@QAE@XZ

??0invalid_scheduler_policy_key@Concurrency@@QAE@PBD@Z

??0invalid_scheduler_policy_key@Concurrency@@QAE@XZ

??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@PBD@Z

??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@XZ

??0invalid_scheduler_policy_value@Concurrency@@QAE@PBD@Z

??0invalid_scheduler_policy_value@Concurrency@@QAE@XZ

??0message_not_found@Concurrency@@QAE@PBD@Z

??0message_not_found@Concurrency@@QAE@XZ

??0missing_wait@Concurrency@@QAE@PBD@Z

??0missing_wait@Concurrency@@QAE@XZ

??0nested_scheduler_missing_detach@Concurrency@@QAE@PBD@Z

??0nested_scheduler_missing_detach@Concurrency@@QAE@XZ

??0operation_timed_out@Concurrency@@QAE@PBD@Z

??0operation_timed_out@Concurrency@@QAE@XZ

??0reader_writer_lock@Concurrency@@QAE@XZ

??0scheduler_not_attached@Concurrency@@QAE@PBD@Z

??0scheduler_not_attached@Concurrency@@QAE@XZ

??0scheduler_resource_allocation_error@Concurrency@@QAE@J@Z

??0scheduler_resource_allocation_error@Concurrency@@QAE@PBDJ@Z

??0scoped_lock@critical_section@Concurrency@@QAE@AAV12@@Z

??0scoped_lock@reader_writer_lock@Concurrency@@QAE@AAV12@@Z

??0scoped_lock_read@reader_writer_lock@Concurrency@@QAE@AAV12@@Z

??0task_canceled@details@Concurrency@@QAE@PBD@Z

??0task_canceled@details@Concurrency@@QAE@XZ

??0unsupported_os@Concurrency@@QAE@PBD@Z

??0unsupported_os@Concurrency@@QAE@XZ

??1SchedulerPolicy@Concurrency@@QAE@XZ

??1_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ

??1_ReentrantBlockingLock@details@Concurrency@@QAE@XZ

??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??1_SpinLock@details@Concurrency@@QAE@XZ

??1_TaskCollection@details@Concurrency@@QAE@XZ

??1_Timer@details@Concurrency@@IAE@XZ

??1__non_rtti_object@std@@UAE@XZ

??1bad_cast@std@@UAE@XZ

??1bad_typeid@std@@UAE@XZ

??1critical_section@Concurrency@@QAE@XZ

??1event@Concurrency@@QAE@XZ

??1exception@std@@UAE@XZ

??1reader_writer_lock@Concurrency@@QAE@XZ

??1scoped_lock@critical_section@Concurrency@@QAE@XZ

??1scoped_lock@reader_writer_lock@Concurrency@@QAE@XZ

??1scoped_lock_read@reader_writer_lock@Concurrency@@QAE@XZ

??1type_info@@UAE@XZ

??2@YAPAXI@Z

??2@YAPAXIHPBDH@Z

??3@YAXPAX@Z

??4?$_SpinWait@$00@details@Concurrency@@QAEAAV012@ABV012@@Z

??4?$_SpinWait@$0A@@details@Concurrency@@QAEAAV012@ABV012@@Z

??4SchedulerPolicy@Concurrency@@QAEAAV01@ABV01@@Z

??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z

??4bad_cast@std@@QAEAAV01@ABV01@@Z

??4bad_typeid@std@@QAEAAV01@ABV01@@Z

??4exception@std@@QAEAAV01@ABV01@@Z

??8type_info@@QBE_NABV0@@Z

??9type_info@@QBE_NABV0@@Z

??_7__non_rtti_object@std@@6B@

??_7bad_cast@std@@6B@

??_7bad_typeid@std@@6B@

??_7exception@@6B@

??_7exception@std@@6B@

??_F?$_SpinWait@$00@details@Concurrency@@QAEXXZ

??_F?$_SpinWait@$0A@@details@Concurrency@@QAEXXZ

??_Fbad_cast@std@@QAEXXZ

??_Fbad_typeid@std@@QAEXXZ

??_U@YAPAXI@Z

??_U@YAPAXIHPBDH@Z

??_V@YAXPAX@Z

?Alloc@Concurrency@@YAPAXI@Z

?Block@Context@Concurrency@@SAXXZ

?Create@CurrentScheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z

?Create@Scheduler@Concurrency@@SAPAV12@ABVSchedulerPolicy@2@@Z

?CreateResourceManager@Concurrency@@YAPAUIResourceManager@1@XZ

?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@XZ

?CurrentContext@Context@Concurrency@@SAPAV12@XZ

?Detach@CurrentScheduler@Concurrency@@SAXXZ

?DisableTracing@Concurrency@@YAJXZ

?EnableTracing@Concurrency@@YAJXZ

?Free@Concurrency@@YAXPAX@Z

?Get@CurrentScheduler@Concurrency@@SAPAVScheduler@2@XZ

?GetExecutionContextId@Concurrency@@YAIXZ

?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ

?GetOSVersion@Concurrency@@YA?AW4OSVersion@IResourceManager@1@XZ

?GetPolicy@CurrentScheduler@Concurrency@@SA?AVSchedulerPolicy@2@XZ

?GetPolicyValue@SchedulerPolicy@Concurrency@@QBEIW4PolicyElementKey@2@@Z

?GetProcessorCount@Concurrency@@YAIXZ

?GetProcessorNodeCount@Concurrency@@YAIXZ

?GetSchedulerId@Concurrency@@YAIXZ

?GetSharedTimerQueue@details@Concurrency@@YAPAXXZ

?Id@Context@Concurrency@@SAIXZ

?Id@CurrentScheduler@Concurrency@@SAIXZ

?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ

?Log2@details@Concurrency@@YAKI@Z

?Oversubscribe@Context@Concurrency@@SAX_N@Z

?RegisterShutdownEvent@CurrentScheduler@Concurrency@@SAXPAX@Z

?ResetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXXZ

?ScheduleGroupId@Context@Concurrency@@SAIXZ

?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z

?SetConcurrencyLimits@SchedulerPolicy@Concurrency@@QAEXII@Z

?SetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z

?SetPolicyValue@SchedulerPolicy@Concurrency@@QAEIW4PolicyElementKey@2@I@Z

?VirtualProcessorId@Context@Concurrency@@SAIXZ

?Yield@Context@Concurrency@@SAXXZ

?_Abort@_StructuredTaskCollection@details@Concurrency@@AAEXXZ

?_Acquire@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Acquire@_NonReentrantPPLLock@details@Concurrency@@QAEXPAX@Z

?_Acquire@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Acquire@_ReentrantLock@details@Concurrency@@QAEXXZ

?_Acquire@_ReentrantPPLLock@details@Concurrency@@QAEXPAX@Z

?_AcquireRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_AcquireWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_Cancel@_StructuredTaskCollection@details@Concurrency@@QAEXXZ

?_Cancel@_TaskCollection@details@Concurrency@@QAEXXZ

?_CheckTaskCollection@_UnrealizedChore@details@Concurrency@@IAEXXZ

?_ConcRT_Assert@details@Concurrency@@YAXPBD0H@Z

?_ConcRT_CoreAssert@details@Concurrency@@YAXPBD0H@Z

?_ConcRT_DumpMessage@details@Concurrency@@YAXPB_WZZ

?_ConcRT_Trace@details@Concurrency@@YAXHPB_WZZ

?_Copy_str@exception@std@@AAEXPBD@Z

?_DoYield@?$_SpinWait@$00@details@Concurrency@@IAEXXZ

?_DoYield@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ

?_IsCanceling@_StructuredTaskCollection@details@Concurrency@@QAE_NXZ

?_IsCanceling@_TaskCollection@details@Concurrency@@QAE_NXZ

?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z

?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z

?_NumberOfSpins@?$_SpinWait@$00@details@Concurrency@@IAEKXZ

?_NumberOfSpins@?$_SpinWait@$0A@@details@Concurrency@@IAEKXZ

?_Release@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Release@_NonReentrantPPLLock@details@Concurrency@@QAEXXZ

?_Release@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Release@_ReentrantLock@details@Concurrency@@QAEXXZ

?_Release@_ReentrantPPLLock@details@Concurrency@@QAEXXZ

?_ReleaseRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_ReleaseWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_Reset@?$_SpinWait@$00@details@Concurrency@@IAEXXZ

?_Reset@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ

?_RunAndWait@_StructuredTaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z

?_RunAndWait@_TaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z

?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z

?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z

?_SetSpinCount@?$_SpinWait@$00@details@Concurrency@@QAEXI@Z

?_SetSpinCount@?$_SpinWait@$0A@@details@Concurrency@@QAEXI@Z

?_ShouldSpinAgain@?$_SpinWait@$00@details@Concurrency@@IAE_NXZ

?_ShouldSpinAgain@?$_SpinWait@$0A@@details@Concurrency@@IAE_NXZ

?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ

?_SpinOnce@?$_SpinWait@$0A@@details@Concurrency@@QAE_NXZ

?_SpinYield@Context@Concurrency@@SAXXZ

?_Start@_Timer@details@Concurrency@@IAEXXZ

?_Stop@_Timer@details@Concurrency@@IAEXXZ

?_Tidy@exception@std@@AAEXXZ

?_Trace_ppl_function@Concurrency@@YAXABU_GUID@@EW4ConcRT_EventType@1@@Z

?_TryAcquire@_NonReentrantBlockingLock@details@Concurrency@@QAE_NXZ

?_TryAcquire@_ReentrantBlockingLock@details@Concurrency@@QAE_NXZ

?_TryAcquire@_ReentrantLock@details@Concurrency@@QAE_NXZ

?_TryAcquireWrite@_ReaderWriterLock@details@Concurrency@@QAE_NXZ

?_Type_info_dtor@type_info@@CAXPAV1@@Z

?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z

?_UnderlyingYield@details@Concurrency@@YAXXZ

?_ValidateExecute@@YAHP6GHXZ@Z

?_ValidateRead@@YAHPBXI@Z

?_ValidateWrite@@YAHPAXI@Z

?_Value@_SpinCount@details@Concurrency@@SAIXZ

?__ExceptionPtrAssign@@YAXPAXPBX@Z

?__ExceptionPtrCompare@@YA_NPBX0@Z

?__ExceptionPtrCopy@@YAXPAXPBX@Z

?__ExceptionPtrCopyException@@YAXPAXPBX1@Z

?__ExceptionPtrCreate@@YAXPAX@Z

?__ExceptionPtrCurrentException@@YAXPAX@Z

?__ExceptionPtrDestroy@@YAXPAX@Z

?__ExceptionPtrRethrow@@YAXPBX@Z

?_inconsistency@@YAXXZ

?_invalid_parameter@@YAXPBG00II@Z

?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z

?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z

?_open@@YAHPBDHH@Z

?_query_new_handler@@YAP6AHI@ZXZ

?_query_new_mode@@YAHXZ

?_set_new_handler@@YAP6AHI@ZH@Z

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

?_set_new_mode@@YAHH@Z

?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z

?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z

?_sopen@@YAHPBDHHH@Z

?_type_info_dtor_internal_method@type_info@@QAEXXZ

?_wopen@@YAHPB_WHH@Z

?_wsopen@@YAHPB_WHHH@Z

?before@type_info@@QBEHABV1@@Z

?get_error_code@scheduler_resource_allocation_error@Concurrency@@QBEJXZ

?lock@critical_section@Concurrency@@QAEXXZ

?lock@reader_writer_lock@Concurrency@@QAEXXZ

?lock_read@reader_writer_lock@Concurrency@@QAEXXZ

?name@type_info@@QBEPBDPAU__type_info_node@@@Z

?native_handle@critical_section@Concurrency@@QAEAAV12@XZ

?raw_name@type_info@@QBEPBDXZ

?reset@event@Concurrency@@QAEXXZ

?set@event@Concurrency@@QAEXXZ

?set_new_handler@@YAP6AXXZP6AXXZ@Z

?set_terminate@@YAP6AXXZH@Z

?set_terminate@@YAP6AXXZP6AXXZ@Z

?set_unexpected@@YAP6AXXZH@Z

?set_unexpected@@YAP6AXXZP6AXXZ@Z

?swprintf@@YAHPAGIPBGZZ

?swprintf@@YAHPA_WIPB_WZZ

?terminate@@YAXXZ

?try_lock@critical_section@Concurrency@@QAE_NXZ

?try_lock@reader_writer_lock@Concurrency@@QAE_NXZ

?try_lock_read@reader_writer_lock@Concurrency@@QAE_NXZ

?unexpected@@YAXXZ

?unlock@critical_section@Concurrency@@QAEXXZ

?unlock@reader_writer_lock@Concurrency@@QAEXXZ

?vswprintf@@YAHPA_WIPB_WPAD@Z

?wait@Concurrency@@YAXI@Z

?wait@event@Concurrency@@QAEII@Z

?wait_for_multiple@event@Concurrency@@SAIPAPAV12@I_NI@Z

?what@exception@std@@UBEPBDXZ

_CIacos

_CIasin

_CIatan

_CIatan2

_CIcos

_CIcosh

_CIexp

_CIfmod

_CIlog

_CIlog10

_CIpow

_CIsin

_CIsinh

_CIsqrt

_CItan

_CItanh

_CRT_RTC_INIT

_CRT_RTC_INITW

_CreateFrameInfo

_CxxThrowException

_EH_prolog

_FindAndUnlinkFrame

_Getdays

_Getmonths

_Gettnames

_HUGE

_IsExceptionObjectToBeDestroyed

_NLG_Dispatch2

_NLG_Return

_NLG_Return2

_Strftime

_XcptFilter

__AdjustPointer

__BuildCatchObject

__BuildCatchObjectHelper

__CppXcptFilter

__CxxCallUnwindDelDtor

__CxxCallUnwindDtor

__CxxCallUnwindStdDelDtor

__CxxCallUnwindVecDtor

__CxxDetectRethrow

__CxxExceptionFilter

__CxxFrameHandler

__CxxFrameHandler2

__CxxFrameHandler3

__CxxLongjmpUnwind

__CxxQueryExceptionSize

__CxxRegisterExceptionObject

__CxxUnregisterExceptionObject

__DestructExceptionObject

__FrameUnwindFilter

__RTCastToVoid

__RTDynamicCast

__RTtypeid

__STRINGTOLD

__STRINGTOLD_L

__TypeMatch

___fls_getvalue@4

___fls_setvalue@8

___lc_codepage_func

___lc_collate_cp_func

___lc_handle_func

___mb_cur_max_func

___mb_cur_max_l_func

___setlc_active_func

___unguarded_readlc_active_add_func

__argc

__argv

__badioinfo

__clean_type_info_names_internal

__control87_2

__create_locale

__crtCompareStringA

__crtCompareStringW

__crtLCMapStringA

__crtLCMapStringW

__daylight

__dllonexit

__doserrno

__dstbias

__fpecode

__free_locale

__get_current_locale

__get_flsindex

__get_tlsindex

__getmainargs

__initenv

__iob_func

__isascii

__iscsym

__iscsymf

__iswcsym

__iswcsymf

__lconv

__lconv_init

__libm_sse2_acos

__libm_sse2_acosf

__libm_sse2_asin

__libm_sse2_asinf

__libm_sse2_atan

__libm_sse2_atan2

__libm_sse2_atanf

__libm_sse2_cos

__libm_sse2_cosf

__libm_sse2_exp

__libm_sse2_expf

__libm_sse2_log

__libm_sse2_log10

__libm_sse2_log10f

__libm_sse2_logf

__libm_sse2_pow

__libm_sse2_powf

__libm_sse2_sin

__libm_sse2_sinf

__libm_sse2_tan

__libm_sse2_tanf

__mb_cur_max

__p___argc

__p___argv

__p___initenv

__p___mb_cur_max

__p___wargv

__p___winitenv

__p__acmdln

__p__commode

__p__daylight

__p__dstbias

__p__environ

__p__fmode

__p__iob

__p__mbcasemap

__p__mbctype

__p__pctype

__p__pgmptr

__p__pwctype

__p__timezone

__p__tzname

__p__wcmdln

__p__wenviron

__p__wpgmptr

__pctype_func

__pioinfo

__pwctype_func

__pxcptinfoptrs

__report_gsfailure

__set_app_type

__set_flsgetvalue

__setlc_active

__setusermatherr

__strncnt

__swprintf_l

__sys_errlist

__sys_nerr

__threadhandle

__threadid

__timezone

__toascii

__tzname

__unDName

__unDNameEx

__unDNameHelper

__uncaught_exception

__unguarded_readlc_active

__vswprintf_l

__wargv

__wcserror

__wcserror_s

__wcsncnt

__wgetmainargs

__winitenv

_abnormal_termination

_abs64

_access

_access_s

_acmdln

_aligned_free

_aligned_malloc

_aligned_msize

_aligned_offset_malloc

_aligned_offset_realloc

_aligned_offset_recalloc

_aligned_realloc

_aligned_recalloc

_amsg_exit

_assert

_atodbl

_atodbl_l

_atof_l

_atoflt

_atoflt_l

_atoi64

_atoi64_l

_atoi_l

_atol_l

_atoldbl

_atoldbl_l

_beep

_beginthread

_beginthreadex

_byteswap_uint64

_byteswap_ulong

_byteswap_ushort

_c_exit

_cabs

_callnewh

_calloc_crt

_cexit

_cgets

_cgets_s

_cgetws

_cgetws_s

_chdir

_chdrive

_chgsign

_chkesp

_chmod

_chsize

_chsize_s

_clearfp

_close

_commit

_commode

_configthreadlocale

_control87

_controlfp

_controlfp_s

_copysign

_cprintf

_cprintf_l

_cprintf_p

Sections

.text
Size: 705KB - Virtual size: 705KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/nvdisps.dll

.dll regsvr32 windows:6 windows x64 arch:x64

dfbc2610ae891add5adee324a4d9ad92

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00 UTC

Not After

28/04/2036, 23:59 UTC

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0d:01:94:cd:1e:31:42:20:51:35:d1:c6:36:e4:e9:ba
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

18/10/2022, 00:00 UTC

Not After

15/10/2025, 23:59 UTC

Subject

CN=NVIDIA Corporation,OU=1-F,O=NVIDIA Corporation,L=Santa Clara,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00 UTC

Not After

13/10/2034, 23:59 UTC

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00 UTC

Not After

22/03/2037, 23:59 UTC

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00 UTC

Not After

09/11/2031, 23:59 UTC

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:01:09:5e:de:a2:12:7e:92:81:cc:00:00:00:00:01:09
Certificate

Issuer

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

14/09/2023, 19:14 UTC

Not After

04/09/2024, 19:14 UTC

Subject

CN=Microsoft Windows Hardware Compatibility Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0b:aa:c1:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

18/04/2012, 23:48 UTC

Not After

18/04/2027, 23:58 UTC

Subject

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

f3:b4:35:5c:80:53:cf:e6:3c:25:75:59:e3:d6:04:6c:c1:11:72:d0:f7:d3:6e:59:7e:b5:08:b4:4d:3d:e4:7f
Signer

Actual PE Digest

f3:b4:35:5c:80:53:cf:e6:3c:25:75:59:e3:d6:04:6c:c1:11:72:d0:f7:d3:6e:59:7e:b5:08:b4:4d:3d:e4:7f

Digest Algorithm

sha256

PE Digest Matches

true

f3:b4:35:5c:80:53:cf:e6:3c:25:75:59:e3:d6:04:6c:c1:11:72:d0:f7:d3:6e:59:7e:b5:08:b4:4d:3d:e4:7f
Signer

Actual PE Digest

f3:b4:35:5c:80:53:cf:e6:3c:25:75:59:e3:d6:04:6c:c1:11:72:d0:f7:d3:6e:59:7e:b5:08:b4:4d:3d:e4:7f

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

C:\dvs\p4\build\sw\rel\gpu_drv\r550\r551_40\drivers\ui\SedonaServers\DisplayServer\DisplayServer\x64\Release\bin\nvDispS.pdb

Imports

version

VerQueryValueW

GetFileVersionInfoW

GetFileVersionInfoSizeW

uxtheme

CloseThemeData

GetThemeSysColor

OpenThemeData

DrawThemeText

GetThemePartSize

GetThemeColor

GetCurrentThemeName

GetWindowTheme

IsAppThemed

IsThemeBackgroundPartiallyTransparent

DrawThemeBackground

DrawThemeParentBackground

gdiplus

GdipCreateFromHDC

GdipDeleteGraphics

GdipDrawLineI

GdipDrawRectangleI

GdipFillRectangleI

GdipCreateMatrix

GdipDeleteMatrix

GdipSetMatrixElements

GdipTranslateMatrix

GdipRotateMatrix

GdipCloneImage

GdipDisposeImage

GdipGetImageWidth

GdipFree

GdipCreateBitmapFromResource

GdipSetPenDashArray

GdipDisposeImageAttributes

GdipSetImageAttributesColorMatrix

GdipSetWorldTransform

GdipDrawImageRectRect

GdipCreateSolidFill

GdipSetSmoothingMode

GdipDrawEllipseI

GdipFillEllipseI

GdipCreateFontFamilyFromName

GdipDeleteFontFamily

GdipGetGenericFontFamilySansSerif

GdipCreateFont

GdipDeleteFont

GdiplusShutdown

GdipDeletePen

GdipCreatePen1

GdipCreateLineBrushI

GdipDeleteBrush

GdipCreateImageAttributes

GdipCloneBrush

GdipAlloc

GdipGetImageHeight

GdipDrawImageRectI

GdipCreateBitmapFromHBITMAP

GdipDrawImageI

GdipBitmapUnlockBits

GdipBitmapLockBits

GdipCreateBitmapFromScan0

GdipCreateBitmapFromStream

GdipGetImagePaletteSize

GdipGetImagePalette

GdipGetImagePixelFormat

GdiplusStartup

GdipCreatePath

GdipDeletePath

GdipResetPath

GdipClosePathFigure

GdipAddPathArcI

GdipCreatePen2

GdipSetPenMode

GdipGetDC

GdipReleaseDC

GdipSetPageUnit

GdipDrawLine

GdipDrawPath

GdipFillPath

GdipGetFontStyle

GdipGetFontHeight

GdipDrawString

GdipCreateStringFormat

GdipDeleteStringFormat

GdipSetStringFormatFlags

GdipGetStringFormatFlags

GdipSetStringFormatAlign

GdipSetStringFormatTrimming

GdipSetInterpolationMode

GdipCreateBitmapFromGraphics

GdipGetImageGraphicsContext

GdipFillRectangle

GdipSetCompositingQuality

GdipDrawRectangle

wtsapi32

WTSUnRegisterSessionNotification

WTSRegisterSessionNotification

WTSQueryUserToken

shlwapi

SHGetValueW

SHSetValueW

StrStrW

StrCpyW

PathFindFileNameW

ord219

StrFormatKBSizeW

PathStripToRootW

PathIsUNCW

PathFileExistsW

StrStrIW

PathFindExtensionW

PathRemoveFileSpecW

PathAddBackslashW

msimg32

TransparentBlt

AlphaBlend

GradientFill

kernel32

InitializeCriticalSection

ExpandEnvironmentStringsA

LoadLibraryExA

VirtualProtect

VirtualQuery

GetUserDefaultLangID

GlobalAlloc

GlobalUnlock

GlobalLock

GlobalFree

GetWindowsDirectoryW

GlobalSize

CopyFileW

OutputDebugStringA

GlobalDeleteAtom

GlobalAddAtomW

GlobalFindAtomW

CreateActCtxW

ActivateActCtx

DeactivateActCtx

FindActCtxSectionStringW

QueryActCtxW

lstrcmpA

SetThreadPriority

GetCurrentThread

GetPrivateProfileIntW

GetPrivateProfileStringW

WritePrivateProfileStringW

DeleteFileW

FlushFileBuffers

GetFileSize

GetVolumeInformationW

LockFile

ReadFile

SetEndOfFile

SetFilePointer

UnlockFile

DuplicateHandle

FileTimeToLocalFileTime

GetFileAttributesExW

SystemTimeToTzSpecificLocalTime

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

GlobalReAlloc

GlobalHandle

LocalReAlloc

GlobalGetAtomNameW

GlobalFlags

CompareStringW

GetSystemDefaultUILanguage

lstrcpyW

SetErrorMode

GetCurrentDirectoryW

GetTempFileNameW

GetTempPathW

GetTickCount

GetProfileIntW

SearchPathW

GetUserDefaultLCID

InitializeSListHead

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsProcessorFeaturePresent

IsDebuggerPresent

GetStartupInfoW

VerifyVersionInfoW

LocalAlloc

GetModuleFileNameA

GetTimeFormatA

GetFullPathNameW

VerSetConditionMask

FileTimeToSystemTime

GetFileTime

FindResourceExW

OpenProcess

GetVersionExW

TerminateProcess

TerminateThread

CreateEventW

ResetEvent

GetProcessHeap

HeapSize

HeapFree

GetSystemInfo

SetThreadLocale

DecodePointer

EncodePointer

GetSystemDirectoryW

EnumSystemGeoID

GetGeoInfoW

lstrcatW

GetUserGeoID

LoadLibraryW

GetModuleHandleExW

HeapReAlloc

HeapAlloc

HeapDestroy

HeapCreate

ResumeThread

ExitThread

CreateThread

GetUserDefaultUILanguage

GetThreadLocale

GetLocaleInfoW

WideCharToMultiByte

lstrlenW

lstrcpynW

lstrcmpiW

lstrcmpW

MulDiv

LoadLibraryExW

GetProcAddress

GetModuleHandleW

GetModuleFileNameW

FreeLibrary

GetSystemTimeAsFileTime

ProcessIdToSessionId

GetCurrentThreadId

GetCurrentProcessId

GetCurrentProcess

GetProcessTimes

CreateEventA

CreateMutexW

WaitForSingleObjectEx

WaitForSingleObject

ReleaseMutex

SetEvent

DeleteCriticalSection

InitializeCriticalSectionEx

LeaveCriticalSection

EnterCriticalSection

QueryPerformanceFrequency

QueryPerformanceCounter

RaiseException

CloseHandle

WriteFile

GetFileSizeEx

FindFirstFileW

FindClose

CreateFileW

ExpandEnvironmentStringsW

GetSystemDefaultLCID

OutputDebugStringW

SetFileAttributesW

GetFileAttributesW

MultiByteToWideChar

Sleep

FormatMessageW

LocalFree

WriteConsoleW

FindResourceW

SizeofResource

LockResource

LoadResource

GetLocalTime

SetLastError

GetLastError

GetDateFormatA

FreeResource

CreateProcessW

InterlockedPopEntrySList

InterlockedPushEntrySList

FlushInstructionCache

VirtualAlloc

VirtualFree

GetStringTypeW

LCMapStringW

GetCPInfo

OpenEventA

GetModuleHandleA

FormatMessageA

CreateDirectoryW

FindNextFileW

RemoveDirectoryW

SetFilePointerEx

DeviceIoControl

MoveFileExW

AreFileApisANSI

RtlUnwindEx

RtlPcToFileHeader

InterlockedFlushSList

FreeLibraryAndExitThread

GetCommandLineA

GetCommandLineW

HeapQueryInformation

SetStdHandle

GetFileType

ExitProcess

GetStdHandle

GetTimeZoneInformation

GetDateFormatW

GetTimeFormatW

IsValidLocale

EnumSystemLocalesW

GetConsoleCP

GetConsoleMode

ReadConsoleW

FindFirstFileExW

IsValidCodePage

GetACP

GetOEMCP

GetEnvironmentStringsW

FreeEnvironmentStringsW

SetEnvironmentVariableW

InitializeCriticalSectionAndSpinCount

gdi32

GetTextCharsetInfo

SetDIBColorTable

CreateDIBitmap

GetBkColor

RealizePalette

GetSystemPaletteEntries

GetPaletteEntries

GetNearestPaletteIndex

CreatePalette

EnumFontFamiliesExW

DPtoLP

SetRectRgn

CreateRectRgnIndirect

CreateEllipticRgn

CreatePolygonRgn

Polygon

Polyline

LPtoDP

GetRgnBox

OffsetRgn

FrameRgn

GetBoundsRect

PtInRegion

ExtFloodFill

SetPaletteEntries

SetPixelV

GetWindowOrgEx

GetViewportOrgEx

EnumFontFamiliesW

ScaleWindowExtEx

ScaleViewportExtEx

OffsetWindowOrgEx

OffsetViewportOrgEx

SetWindowOrgEx

SetWindowExtEx

SetViewportOrgEx

ExtTextOutW

MoveToEx

ExtCreatePen

SetTextAlign

SetROP2

SetPolyFillMode

GetLayout

SetLayout

SetMapMode

SelectPalette

ExtSelectClipRgn

SelectClipRgn

SaveDC

RestoreDC

RectVisible

PtVisible

LineTo

IntersectClipRect

GetWindowExtEx

GetViewportExtEx

GetObjectType

GetClipBox

ExcludeClipRect

Escape

CreateHatchBrush

CopyMetaFileW

TextOutW

SetPixel

RoundRect

GetTextColor

GetTextFaceW

Rectangle

CreatePen

SetStretchBltMode

SetBkColor

PatBlt

CreateDCW

GetCurrentObject

CreateBitmap

GetPixel

Ellipse

CreateCompatibleBitmap

BitBlt

GetTextExtentPoint32W

GetObjectW

StretchBlt

DeleteDC

SetBrushOrgEx

CreateDIBSection

GetTextMetricsW

SetTextColor

SetBkMode

SelectObject

GetTextExtentPointW

GetDeviceCaps

FillRgn

DeleteObject

CreateSolidBrush

CreateRoundRectRgn

CreateRectRgn

CreatePatternBrush

CreateFontIndirectW

CreateCompatibleDC

CreateBrushIndirect

CombineRgn

GetStockObject

SetViewportExtEx

winspool.drv

DocumentPropertiesW

OpenPrinterW

ClosePrinter

advapi32

ImpersonateLoggedOnUser

RegSetValueExW

RegQueryValueExW

RegOpenKeyExW

RegCreateKeyExW

RegCloseKey

RevertToSelf

RegDeleteKeyW

RegDeleteValueW

RegEnumKeyExW

RegEnumValueW

TraceMessage

RegisterTraceGuidsW

UnregisterTraceGuids

GetTraceLoggerHandle

GetTraceEnableLevel

GetTraceEnableFlags

RegOpenKeyW

OpenProcessToken

AdjustTokenPrivileges

LookupPrivilegeValueW

RegQueryValueExA

RegOpenKeyExA

RegEnumKeyW

RegQueryValueW

RegQueryInfoKeyW

ole32

OleDuplicateData

ReleaseStgMedium

CoDisconnectObject

DoDragDrop

OleGetClipboard

CoLockObjectExternal

RegisterDragDrop

RevokeDragDrop

CreateStreamOnHGlobal

CoInitialize

CoUninitialize

CoInitializeEx

StringFromGUID2

CoTaskMemFree

CoTaskMemRealloc

CoTaskMemAlloc

OleLockRunning

OleCreateMenuDescriptor

OleDestroyMenuDescriptor

OleTranslateAccelerator

IsAccelerator

StringFromCLSID

CoCreateGuid

CoCreateInstance

oleaut32

LoadRegTypeLi

RegisterTypeLi

UnRegisterTypeLi

VariantInit

VariantClear

VariantChangeType

SystemTimeToVariantTime

VariantTimeToSystemTime

LoadTypeLi

VarUI4FromStr

SysStringLen

SysAllocString

SafeArrayPutElement

VariantCopy

VarBstrFromDate

SafeArrayCreateVector

SysAllocStringLen

SysFreeString

uiautomationcore

UiaHostProviderFromHwnd

UiaReturnRawElementProvider

oleacc

LresultFromObject

AccessibleObjectFromWindow

CreateStdAccessibleObject

winmm

PlaySoundW

imm32

ImmReleaseContext

ImmGetContext

ImmGetOpenStatus

Exports

DllCanUnloadNow

DllGetClassObject

DllRegisterServer

DllUnregisterServer

Sections

.text
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 97KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.didat
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/nvdispsr.dll

.dll windows:6 windows x64 arch:x64

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00 UTC

Not After

28/04/2036, 23:59 UTC

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0d:01:94:cd:1e:31:42:20:51:35:d1:c6:36:e4:e9:ba
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

18/10/2022, 00:00 UTC

Not After

15/10/2025, 23:59 UTC

Subject

CN=NVIDIA Corporation,OU=1-F,O=NVIDIA Corporation,L=Santa Clara,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

38:63:de:f8
Certificate

Issuer

Not Before

24/12/1999, 17:50 UTC

Not After

24/07/2029, 14:15 UTC

Subject

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

Issuer

Not Before

22/07/2015, 19:02 UTC

Not After

22/06/2029, 19:32 UTC

Subject

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

07:d7:13:53:da:25:61:b4:61:e9:90:47:8a:4c:ce:04
Certificate

Issuer

Not Before

19/01/2024, 16:46 UTC

Not After

01/06/2029, 00:00 UTC

Subject

CN=Entrust Timestamp Authority - TSA1,O=Entrust\, Inc.,L=Ottawa,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

33:00:00:01:09:5e:de:a2:12:7e:92:81:cc:00:00:00:00:01:09
Certificate

Issuer

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

14/09/2023, 19:14 UTC

Not After

04/09/2024, 19:14 UTC

Subject

CN=Microsoft Windows Hardware Compatibility Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0b:aa:c1:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

18/04/2012, 23:48 UTC

Not After

18/04/2027, 23:58 UTC

Subject

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7c:4d:db:21:5b:26:b2:bb:b0:b0:14:a1:c1:de:aa:78:26:de:cf:23:23:9f:37:21:70:a9:e8:90:e0:d1:e0:6c
Signer

Actual PE Digest

7c:4d:db:21:5b:26:b2:bb:b0:b0:14:a1:c1:de:aa:78:26:de:cf:23:23:9f:37:21:70:a9:e8:90:e0:d1:e0:6c

Digest Algorithm

sha256

PE Digest Matches

true

7c:4d:db:21:5b:26:b2:bb:b0:b0:14:a1:c1:de:aa:78:26:de:cf:23:23:9f:37:21:70:a9:e8:90:e0:d1:e0:6c
Signer

Actual PE Digest

7c:4d:db:21:5b:26:b2:bb:b0:b0:14:a1:c1:de:aa:78:26:de:cf:23:23:9f:37:21:70:a9:e8:90:e0:d1:e0:6c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

C:\dvs\p4\build\sw\rel\gpu_drv\r550\r551_40\drivers\ui\SedonaServers\DisplayServer\DisplayServer\x64\Release\bin\nvDispSR.pdb

Sections

.rdata
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 11.0MB - Virtual size: 11.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

infected/nvptxJitCompiler32.dll

.dll windows:6 windows x86 arch:x86

a21080ac288fcf24521518c1d5302242

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00 UTC

Not After

28/04/2036, 23:59 UTC

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0d:01:94:cd:1e:31:42:20:51:35:d1:c6:36:e4:e9:ba
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

18/10/2022, 00:00 UTC

Not After

15/10/2025, 23:59 UTC

Subject

CN=NVIDIA Corporation,OU=1-F,O=NVIDIA Corporation,L=Santa Clara,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

38:63:de:f8
Certificate

Issuer

Not Before

24/12/1999, 17:50 UTC

Not After

24/07/2029, 14:15 UTC

Subject

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

Issuer

Not Before

22/07/2015, 19:02 UTC

Not After

22/06/2029, 19:32 UTC

Subject

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

07:d7:13:53:da:25:61:b4:61:e9:90:47:8a:4c:ce:04
Certificate

Issuer

Not Before

19/01/2024, 16:46 UTC

Not After

01/06/2029, 00:00 UTC

Subject

CN=Entrust Timestamp Authority - TSA1,O=Entrust\, Inc.,L=Ottawa,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

33:00:00:01:09:5e:de:a2:12:7e:92:81:cc:00:00:00:00:01:09
Certificate

Issuer

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

14/09/2023, 19:14 UTC

Not After

04/09/2024, 19:14 UTC

Subject

CN=Microsoft Windows Hardware Compatibility Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0b:aa:c1:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

18/04/2012, 23:48 UTC

Not After

18/04/2027, 23:58 UTC

Subject

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

95:33:62:d1:0d:f1:a0:d2:df:ad:ca:14:19:b9:14:f5:b1:b8:ba:a9:9c:a2:83:d3:07:43:6f:c4:1a:81:f6:fc
Signer

Actual PE Digest

95:33:62:d1:0d:f1:a0:d2:df:ad:ca:14:19:b9:14:f5:b1:b8:ba:a9:9c:a2:83:d3:07:43:6f:c4:1a:81:f6:fc

Digest Algorithm

sha256

PE Digest Matches

true

95:33:62:d1:0d:f1:a0:d2:df:ad:ca:14:19:b9:14:f5:b1:b8:ba:a9:9c:a2:83:d3:07:43:6f:c4:1a:81:f6:fc
Signer

Actual PE Digest

95:33:62:d1:0d:f1:a0:d2:df:ad:ca:14:19:b9:14:f5:b1:b8:ba:a9:9c:a2:83:d3:07:43:6f:c4:1a:81:f6:fc

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

QueryPerformanceCounter

QueryPerformanceFrequency

IsDebuggerPresent

GetSystemInfo

GetFileInformationByHandle

CloseHandle

GetStdHandle

SetStdHandle

GetEnvironmentVariableA

SetUnhandledExceptionFilter

GetLastError

WaitForSingleObject

GetCurrentProcess

GetProcAddress

FreeLibrary

HeapCreate

HeapDestroy

InitializeCriticalSection

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

ReleaseSemaphore

CreateThread

ExitThread

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

CreateSemaphoreA

CreateWaitableTimerA

UnhandledExceptionFilter

TerminateProcess

IsProcessorFeaturePresent

InitializeCriticalSectionAndSpinCount

SetEvent

ResetEvent

WaitForSingleObjectEx

CreateEventW

GetModuleHandleW

GetStartupInfoW

GetCurrentProcessId

GetCurrentThreadId

GetSystemTimeAsFileTime

InitializeSListHead

HeapSize

RtlUnwind

InterlockedFlushSList

SetLastError

LoadLibraryExW

EncodePointer

RaiseException

ReadFile

CreateFileW

GetDriveTypeW

GetFileType

PeekNamedPipe

SystemTimeToTzSpecificLocalTime

FileTimeToSystemTime

ExitProcess

GetModuleHandleExW

GetModuleFileNameW

WriteConsoleW

FindClose

FindFirstFileExW

FindNextFileW

GetFullPathNameW

HeapAlloc

HeapFree

CompareStringW

LCMapStringW

FlushFileBuffers

WriteFile

GetConsoleCP

GetConsoleMode

ReadConsoleW

SetFilePointerEx

DecodePointer

GetCurrentDirectoryW

MultiByteToWideChar

HeapReAlloc

OutputDebugStringW

WideCharToMultiByte

SetEnvironmentVariableW

DeleteFileW

RemoveDirectoryW

IsValidCodePage

GetACP

GetOEMCP

GetCPInfo

GetCommandLineA

GetCommandLineW

GetEnvironmentStringsW

FreeEnvironmentStringsW

GetProcessHeap

GetStringTypeW

GetTimeZoneInformation

SetEndOfFile

Exports

__cuda_CallJitEntryPoint

nvLinkerAddCubin

nvLinkerAddFatbin

nvLinkerCreate

nvLinkerDestroy

nvLinkerFinish

nvLinkerGetErrorLog

nvLinkerGetErrorLogSize

nvLinkerGetInfoLog

nvLinkerGetInfoLogSize

nvLinkerGetLinkedCubin

nvLinkerGetLinkedCubinSize

nvPTXCompilerCompile

nvPTXCompilerCreate

nvPTXCompilerDestroy

nvPTXCompilerGetCompiledProgram

nvPTXCompilerGetCompiledProgramSize

nvPTXCompilerGetErrorLog

nvPTXCompilerGetErrorLogSize

nvPTXCompilerGetInfoLog

nvPTXCompilerGetInfoLogSize

nvPTXCompilerGetVersion

Sections

.text
Size: 11.7MB - Virtual size: 11.7MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 4.5MB - Virtual size: 4.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 184KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 249KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/pgjs

infected/trading_api64.dll

.dll windows:5 windows x64 arch:x64

f7d326cb8fdda36f97bcf61c5e808a67

Code Sign

0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00 UTC

Not After

10/11/2031, 00:00 UTC

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00 UTC

Not After

30/12/2020, 23:59 UTC

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00 UTC

Not After

29/12/2020, 23:59 UTC

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

05:4f:46:6c:ec:cb:e9:d6:be:e8:1f:54:35:e6:4d:47
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

04/10/2018, 00:00 UTC

Not After

07/10/2021, 12:00 UTC

Subject

CN=Valve,O=Valve,L=Bellevue,ST=WA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00 UTC

Not After

22/10/2028, 12:00 UTC

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

d6:f4:f2:14:01:39:23:fa:d2:a1:74:05:1b:dd:82:d1:27:84:25:17
Signer

Actual PE Digest

d6:f4:f2:14:01:39:23:fa:d2:a1:74:05:1b:dd:82:d1:27:84:25:17

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

c:\buildslave\steam_rel_client_win64\build\src\steam_api\win64\Release\steam_api64.pdb

Imports

kernel32

InitializeCriticalSection

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

CloseHandle

LoadLibraryExA

LoadLibraryExW

GetModuleFileNameW

GetExitCodeProcess

GetModuleHandleExW

GetCommandLineW

GetEnvironmentVariableA

SetEnvironmentVariableA

OutputDebugStringA

GetFileAttributesW

MultiByteToWideChar

WideCharToMultiByte

OpenProcess

FreeLibrary

GetModuleHandleA

GetProcAddress

SetEndOfFile

ReadConsoleW

InitializeCriticalSectionAndSpinCount

SetEvent

ResetEvent

WaitForSingleObjectEx

CreateEventW

GetModuleHandleW

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

IsDebuggerPresent

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetStartupInfoW

IsProcessorFeaturePresent

QueryPerformanceCounter

GetCurrentProcessId

GetCurrentThreadId

GetSystemTimeAsFileTime

InitializeSListHead

RtlPcToFileHeader

RaiseException

RtlUnwindEx

InterlockedFlushSList

GetLastError

SetLastError

EncodePointer

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

GetCurrentProcess

TerminateProcess

ExitProcess

GetModuleFileNameA

HeapFree

HeapAlloc

GetACP

GetStringTypeW

LCMapStringW

GetStdHandle

GetFileType

FindClose

FindFirstFileExA

FindNextFileA

IsValidCodePage

GetOEMCP

GetCPInfo

GetCommandLineA

GetEnvironmentStringsW

FreeEnvironmentStringsW

GetProcessHeap

FlushFileBuffers

WriteFile

GetConsoleCP

GetConsoleMode

SetStdHandle

CreateFileW

HeapSize

HeapReAlloc

SetFilePointerEx

WriteConsoleW

ReadFile

advapi32

RegOpenKeyExW

RegCloseKey

RegQueryValueExW

shell32

ShellExecuteW

Exports

CAddAppDependencyResult_t_RemoveCallResult

CAddAppDependencyResult_t_SetCallResult

CAddUGCDependencyResult_t_RemoveCallResult

CAddUGCDependencyResult_t_SetCallResult

CAssociateWithClanResult_t_RemoveCallResult

CAssociateWithClanResult_t_SetCallResult

CChangeNumOpenSlotsCallback_t_RemoveCallResult

CChangeNumOpenSlotsCallback_t_SetCallResult

CCheckFileSignature_t_RemoveCallResult

CCheckFileSignature_t_SetCallResult

CClanOfficerListResponse_t_RemoveCallResult

CClanOfficerListResponse_t_SetCallResult

CComputeNewPlayerCompatibilityResult_t_RemoveCallResult

CComputeNewPlayerCompatibilityResult_t_SetCallResult

CCreateBeaconCallback_t_RemoveCallResult

CCreateBeaconCallback_t_SetCallResult

CCreateItemResult_t_RemoveCallResult

CCreateItemResult_t_SetCallResult

CDeleteItemResult_t_RemoveCallResult

CDeleteItemResult_t_SetCallResult

CDurationControl_t_RemoveCallResult

CDurationControl_t_SetCallResult

CEncryptedAppTicketResponse_t_RemoveCallResult

CEncryptedAppTicketResponse_t_SetCallResult

CFileDetailsResult_t_RemoveCallResult

CFileDetailsResult_t_SetCallResult

CFriendsEnumerateFollowingList_t_RemoveCallResult

CFriendsEnumerateFollowingList_t_SetCallResult

CFriendsGetFollowerCount_t_RemoveCallResult

CFriendsGetFollowerCount_t_SetCallResult

CFriendsIsFollowing_t_RemoveCallResult

CFriendsIsFollowing_t_SetCallResult

CGSReputation_t_RemoveCallResult

CGSReputation_t_SetCallResult

CGSStatsReceived_t_RemoveCallResult

CGSStatsReceived_t_SetCallResult

CGSStatsStored_t_RemoveCallResult

CGSStatsStored_t_SetCallResult

CGetAppDependenciesResult_t_RemoveCallResult

CGetAppDependenciesResult_t_SetCallResult

CGetOPFSettingsResult_t_RemoveCallback

CGetOPFSettingsResult_t_SetCallback

CGetUserItemVoteResult_t_RemoveCallResult

CGetUserItemVoteResult_t_SetCallResult

CGlobalAchievementPercentagesReady_t_RemoveCallResult

CGlobalAchievementPercentagesReady_t_SetCallResult

CGlobalStatsReceived_t_RemoveCallResult

CGlobalStatsReceived_t_SetCallResult

CHTML_BrowserReady_t_RemoveCallResult

CHTML_BrowserReady_t_SetCallResult

CJoinClanChatRoomCompletionResult_t_RemoveCallResult

CJoinClanChatRoomCompletionResult_t_SetCallResult

CJoinPartyCallback_t_RemoveCallResult

CJoinPartyCallback_t_SetCallResult

CLeaderboardFindResult_t_RemoveCallResult

CLeaderboardFindResult_t_SetCallResult

CLeaderboardScoreUploaded_t_RemoveCallResult

CLeaderboardScoreUploaded_t_SetCallResult

CLeaderboardScoresDownloaded_t_RemoveCallResult

CLeaderboardScoresDownloaded_t_SetCallResult

CLeaderboardUGCSet_t_RemoveCallResult

CLeaderboardUGCSet_t_SetCallResult

CLobbyCreated_t_RemoveCallResult

CLobbyCreated_t_SetCallResult

CLobbyEnter_t_RemoveCallResult

CLobbyEnter_t_SetCallResult

CLobbyMatchList_t_RemoveCallResult

CLobbyMatchList_t_SetCallResult

CMarketEligibilityResponse_t_RemoveCallResult

CMarketEligibilityResponse_t_SetCallResult

CNumberOfCurrentPlayers_t_RemoveCallResult

CNumberOfCurrentPlayers_t_SetCallResult

CRemoteStorageDeletePublishedFileResult_t_RemoveCallResult

CRemoteStorageDeletePublishedFileResult_t_SetCallResult

CRemoteStorageDownloadUGCResult_t_RemoveCallResult

CRemoteStorageDownloadUGCResult_t_SetCallResult

CRemoteStorageEnumeratePublishedFilesByUserActionResult_t_RemoveCallResult

CRemoteStorageEnumeratePublishedFilesByUserActionResult_t_SetCallResult

CRemoteStorageEnumerateUserPublishedFilesResult_t_RemoveCallResult

CRemoteStorageEnumerateUserPublishedFilesResult_t_SetCallResult

CRemoteStorageEnumerateUserSubscribedFilesResult_t_RemoveCallResult

CRemoteStorageEnumerateUserSubscribedFilesResult_t_SetCallResult

CRemoteStorageEnumerateWorkshopFilesResult_t_RemoveCallResult

CRemoteStorageEnumerateWorkshopFilesResult_t_SetCallResult

CRemoteStorageFileReadAsyncComplete_t_RemoveCallResult

CRemoteStorageFileReadAsyncComplete_t_SetCallResult

CRemoteStorageFileShareResult_t_RemoveCallResult

CRemoteStorageFileShareResult_t_SetCallResult

CRemoteStorageFileWriteAsyncComplete_t_RemoveCallResult

CRemoteStorageFileWriteAsyncComplete_t_SetCallResult

CRemoteStorageGetPublishedFileDetailsResult_t_RemoveCallResult

CRemoteStorageGetPublishedFileDetailsResult_t_SetCallResult

CRemoteStorageGetPublishedItemVoteDetailsResult_t_RemoveCallResult

CRemoteStorageGetPublishedItemVoteDetailsResult_t_SetCallResult

CRemoteStoragePublishFileProgress_t_RemoveCallResult

CRemoteStoragePublishFileProgress_t_SetCallResult

CRemoteStorageSetUserPublishedFileActionResult_t_RemoveCallResult

CRemoteStorageSetUserPublishedFileActionResult_t_SetCallResult

CRemoteStorageSubscribePublishedFileResult_t_RemoveCallResult

CRemoteStorageSubscribePublishedFileResult_t_SetCallResult

CRemoteStorageUnsubscribePublishedFileResult_t_RemoveCallResult

CRemoteStorageUnsubscribePublishedFileResult_t_SetCallResult

CRemoteStorageUpdatePublishedFileResult_t_RemoveCallResult

CRemoteStorageUpdatePublishedFileResult_t_SetCallResult

CRemoteStorageUpdateUserPublishedItemVoteResult_t_RemoveCallResult

CRemoteStorageUpdateUserPublishedItemVoteResult_t_SetCallResult

CRemoveAppDependencyResult_t_RemoveCallResult

CRemoveAppDependencyResult_t_SetCallResult

CRemoveUGCDependencyResult_t_RemoveCallResult

CRemoveUGCDependencyResult_t_SetCallResult

CSetPersonaNameResponse_t_RemoveCallResult

CSetPersonaNameResponse_t_SetCallResult

CSetUserItemVoteResult_t_RemoveCallResult

CSetUserItemVoteResult_t_SetCallResult

CStartPlaytimeTrackingResult_t_RemoveCallResult

CStartPlaytimeTrackingResult_t_SetCallResult

CSteamInventoryEligiblePromoItemDefIDs_t_RemoveCallResult

CSteamInventoryEligiblePromoItemDefIDs_t_SetCallResult

CSteamInventoryRequestPricesResult_t_RemoveCallResult

CSteamInventoryRequestPricesResult_t_SetCallResult

CSteamInventoryStartPurchaseResult_t_RemoveCallResult

CSteamInventoryStartPurchaseResult_t_SetCallResult

CSteamUGCQueryCompleted_t_RemoveCallResult

CSteamUGCQueryCompleted_t_SetCallResult

CStopPlaytimeTrackingResult_t_RemoveCallResult

CStopPlaytimeTrackingResult_t_SetCallResult

CStoreAuthURLResponse_t_RemoveCallResult

CStoreAuthURLResponse_t_SetCallResult

CSubmitItemUpdateResult_t_RemoveCallResult

CSubmitItemUpdateResult_t_SetCallResult

CUserFavoriteItemsListChanged_t_RemoveCallResult

CUserFavoriteItemsListChanged_t_SetCallResult

CUserStatsReceived_t_RemoveCallResult

CUserStatsReceived_t_RemoveCallback

CUserStatsReceived_t_SetCallResult

CUserStatsReceived_t_SetCallback

GetHSteamPipe

GetHSteamUser

SteamAPI_GetHSteamPipe

SteamAPI_GetHSteamUser

SteamAPI_GetSteamInstallPath

SteamAPI_ISteamAppList_GetAppBuildId

SteamAPI_ISteamAppList_GetAppInstallDir

SteamAPI_ISteamAppList_GetAppName

SteamAPI_ISteamAppList_GetInstalledApps

SteamAPI_ISteamAppList_GetNumInstalledApps

SteamAPI_ISteamApps_BGetDLCDataByIndex

SteamAPI_ISteamApps_BIsAppInstalled

SteamAPI_ISteamApps_BIsCybercafe

SteamAPI_ISteamApps_BIsDlcInstalled

SteamAPI_ISteamApps_BIsLowViolence

SteamAPI_ISteamApps_BIsSubscribed

SteamAPI_ISteamApps_BIsSubscribedApp

SteamAPI_ISteamApps_BIsSubscribedFromFamilySharing

SteamAPI_ISteamApps_BIsSubscribedFromFreeWeekend

SteamAPI_ISteamApps_BIsVACBanned

SteamAPI_ISteamApps_GetAppBuildId

SteamAPI_ISteamApps_GetAppInstallDir

SteamAPI_ISteamApps_GetAppOwner

SteamAPI_ISteamApps_GetAvailableGameLanguages

SteamAPI_ISteamApps_GetCurrentBetaName

SteamAPI_ISteamApps_GetCurrentGameLanguage

SteamAPI_ISteamApps_GetDLCCount

SteamAPI_ISteamApps_GetDlcDownloadProgress

SteamAPI_ISteamApps_GetEarliestPurchaseUnixTime

SteamAPI_ISteamApps_GetFileDetails

SteamAPI_ISteamApps_GetInstalledDepots

SteamAPI_ISteamApps_GetLaunchCommandLine

SteamAPI_ISteamApps_GetLaunchQueryParam

SteamAPI_ISteamApps_InstallDLC

SteamAPI_ISteamApps_MarkContentCorrupt

SteamAPI_ISteamApps_RequestAllProofOfPurchaseKeys

SteamAPI_ISteamApps_RequestAppProofOfPurchaseKey

SteamAPI_ISteamApps_UninstallDLC

SteamAPI_ISteamClient_BReleaseSteamPipe

SteamAPI_ISteamClient_BShutdownIfAllPipesClosed

SteamAPI_ISteamClient_ConnectToGlobalUser

SteamAPI_ISteamClient_CreateLocalUser

SteamAPI_ISteamClient_CreateSteamPipe

SteamAPI_ISteamClient_GetIPCCallCount

SteamAPI_ISteamClient_GetISteamAppList

SteamAPI_ISteamClient_GetISteamApps

SteamAPI_ISteamClient_GetISteamController

SteamAPI_ISteamClient_GetISteamFriends

SteamAPI_ISteamClient_GetISteamGameSearch

SteamAPI_ISteamClient_GetISteamGameServer

SteamAPI_ISteamClient_GetISteamGameServerStats

SteamAPI_ISteamClient_GetISteamGenericInterface

SteamAPI_ISteamClient_GetISteamHTMLSurface

SteamAPI_ISteamClient_GetISteamHTTP

SteamAPI_ISteamClient_GetISteamInput

SteamAPI_ISteamClient_GetISteamInventory

SteamAPI_ISteamClient_GetISteamMatchmaking

SteamAPI_ISteamClient_GetISteamMatchmakingServers

SteamAPI_ISteamClient_GetISteamMusic

SteamAPI_ISteamClient_GetISteamMusicRemote

SteamAPI_ISteamClient_GetISteamNetworking

SteamAPI_ISteamClient_GetISteamParentalSettings

SteamAPI_ISteamClient_GetISteamParties

SteamAPI_ISteamClient_GetISteamRemotePlay

SteamAPI_ISteamClient_GetISteamRemoteStorage

SteamAPI_ISteamClient_GetISteamScreenshots

SteamAPI_ISteamClient_GetISteamUGC

SteamAPI_ISteamClient_GetISteamUser

SteamAPI_ISteamClient_GetISteamUserStats

SteamAPI_ISteamClient_GetISteamUtils

SteamAPI_ISteamClient_GetISteamVideo

SteamAPI_ISteamClient_ReleaseUser

SteamAPI_ISteamClient_SetLocalIPBinding

SteamAPI_ISteamClient_SetWarningMessageHook

SteamAPI_ISteamController_ActivateActionSet

SteamAPI_ISteamController_ActivateActionSetLayer

SteamAPI_ISteamController_DeactivateActionSetLayer

SteamAPI_ISteamController_DeactivateAllActionSetLayers

SteamAPI_ISteamController_GetActionOriginFromXboxOrigin

SteamAPI_ISteamController_GetActionSetHandle

SteamAPI_ISteamController_GetActiveActionSetLayers

SteamAPI_ISteamController_GetAnalogActionData

SteamAPI_ISteamController_GetAnalogActionHandle

SteamAPI_ISteamController_GetAnalogActionOrigins

SteamAPI_ISteamController_GetConnectedControllers

SteamAPI_ISteamController_GetControllerBindingRevision

SteamAPI_ISteamController_GetControllerForGamepadIndex

SteamAPI_ISteamController_GetCurrentActionSet

SteamAPI_ISteamController_GetDigitalActionData

SteamAPI_ISteamController_GetDigitalActionHandle

SteamAPI_ISteamController_GetDigitalActionOrigins

SteamAPI_ISteamController_GetGamepadIndexForController

SteamAPI_ISteamController_GetGlyphForActionOrigin

SteamAPI_ISteamController_GetGlyphForXboxOrigin

SteamAPI_ISteamController_GetInputTypeForHandle

SteamAPI_ISteamController_GetMotionData

SteamAPI_ISteamController_GetStringForActionOrigin

SteamAPI_ISteamController_GetStringForXboxOrigin

SteamAPI_ISteamController_Init

SteamAPI_ISteamController_RunFrame

SteamAPI_ISteamController_SetLEDColor

SteamAPI_ISteamController_ShowBindingPanel

SteamAPI_ISteamController_Shutdown

SteamAPI_ISteamController_StopAnalogActionMomentum

SteamAPI_ISteamController_TranslateActionOrigin

SteamAPI_ISteamController_TriggerHapticPulse

SteamAPI_ISteamController_TriggerRepeatedHapticPulse

SteamAPI_ISteamController_TriggerVibration

SteamAPI_ISteamFriends_ActivateGameOverlay

SteamAPI_ISteamFriends_ActivateGameOverlayInviteDialog

SteamAPI_ISteamFriends_ActivateGameOverlayToStore

SteamAPI_ISteamFriends_ActivateGameOverlayToUser

SteamAPI_ISteamFriends_ActivateGameOverlayToWebPage

SteamAPI_ISteamFriends_ClearRichPresence

SteamAPI_ISteamFriends_CloseClanChatWindowInSteam

SteamAPI_ISteamFriends_DownloadClanActivityCounts

SteamAPI_ISteamFriends_EnumerateFollowingList

SteamAPI_ISteamFriends_GetChatMemberByIndex

SteamAPI_ISteamFriends_GetClanActivityCounts

SteamAPI_ISteamFriends_GetClanByIndex

SteamAPI_ISteamFriends_GetClanChatMemberCount

SteamAPI_ISteamFriends_GetClanChatMessage

SteamAPI_ISteamFriends_GetClanCount

SteamAPI_ISteamFriends_GetClanName

SteamAPI_ISteamFriends_GetClanOfficerByIndex

SteamAPI_ISteamFriends_GetClanOfficerCount

SteamAPI_ISteamFriends_GetClanOwner

SteamAPI_ISteamFriends_GetClanTag

SteamAPI_ISteamFriends_GetCoplayFriend

SteamAPI_ISteamFriends_GetCoplayFriendCount

SteamAPI_ISteamFriends_GetFollowerCount

SteamAPI_ISteamFriends_GetFriendByIndex

SteamAPI_ISteamFriends_GetFriendCoplayGame

SteamAPI_ISteamFriends_GetFriendCoplayTime

SteamAPI_ISteamFriends_GetFriendCount

SteamAPI_ISteamFriends_GetFriendCountFromSource

SteamAPI_ISteamFriends_GetFriendFromSourceByIndex

SteamAPI_ISteamFriends_GetFriendGamePlayed

SteamAPI_ISteamFriends_GetFriendMessage

SteamAPI_ISteamFriends_GetFriendPersonaName

SteamAPI_ISteamFriends_GetFriendPersonaNameHistory

SteamAPI_ISteamFriends_GetFriendPersonaState

SteamAPI_ISteamFriends_GetFriendRelationship

SteamAPI_ISteamFriends_GetFriendRichPresence

SteamAPI_ISteamFriends_GetFriendRichPresenceKeyByIndex

SteamAPI_ISteamFriends_GetFriendRichPresenceKeyCount

SteamAPI_ISteamFriends_GetFriendSteamLevel

SteamAPI_ISteamFriends_GetFriendsGroupCount

SteamAPI_ISteamFriends_GetFriendsGroupIDByIndex

SteamAPI_ISteamFriends_GetFriendsGroupMembersCount

SteamAPI_ISteamFriends_GetFriendsGroupMembersList

SteamAPI_ISteamFriends_GetFriendsGroupName

SteamAPI_ISteamFriends_GetLargeFriendAvatar

SteamAPI_ISteamFriends_GetMediumFriendAvatar

SteamAPI_ISteamFriends_GetNumChatsWithUnreadPriorityMessages

SteamAPI_ISteamFriends_GetPersonaName

SteamAPI_ISteamFriends_GetPersonaState

SteamAPI_ISteamFriends_GetPlayerNickname

SteamAPI_ISteamFriends_GetSmallFriendAvatar

SteamAPI_ISteamFriends_GetUserRestrictions

SteamAPI_ISteamFriends_HasFriend

SteamAPI_ISteamFriends_InviteUserToGame

SteamAPI_ISteamFriends_IsClanChatAdmin

SteamAPI_ISteamFriends_IsClanChatWindowOpenInSteam

SteamAPI_ISteamFriends_IsClanOfficialGameGroup

SteamAPI_ISteamFriends_IsClanPublic

SteamAPI_ISteamFriends_IsFollowing

SteamAPI_ISteamFriends_IsUserInSource

SteamAPI_ISteamFriends_JoinClanChatRoom

SteamAPI_ISteamFriends_LeaveClanChatRoom

SteamAPI_ISteamFriends_OpenClanChatWindowInSteam

SteamAPI_ISteamFriends_ReplyToFriendMessage

SteamAPI_ISteamFriends_RequestClanOfficerList

SteamAPI_ISteamFriends_RequestFriendRichPresence

SteamAPI_ISteamFriends_RequestUserInformation

SteamAPI_ISteamFriends_SendClanChatMessage

SteamAPI_ISteamFriends_SetInGameVoiceSpeaking

SteamAPI_ISteamFriends_SetListenForFriendsMessages

SteamAPI_ISteamFriends_SetPersonaName

SteamAPI_ISteamFriends_SetPlayedWith

SteamAPI_ISteamFriends_SetRichPresence

SteamAPI_ISteamGameSearch_AcceptGame

SteamAPI_ISteamGameSearch_AddGameSearchParams

SteamAPI_ISteamGameSearch_CancelRequestPlayersForGame

SteamAPI_ISteamGameSearch_DeclineGame

SteamAPI_ISteamGameSearch_EndGame

SteamAPI_ISteamGameSearch_EndGameSearch

SteamAPI_ISteamGameSearch_HostConfirmGameStart

SteamAPI_ISteamGameSearch_RequestPlayersForGame

SteamAPI_ISteamGameSearch_RetrieveConnectionDetails

SteamAPI_ISteamGameSearch_SearchForGameSolo

SteamAPI_ISteamGameSearch_SearchForGameWithLobby

SteamAPI_ISteamGameSearch_SetConnectionDetails

SteamAPI_ISteamGameSearch_SetGameHostParams

SteamAPI_ISteamGameSearch_SubmitPlayerResult

SteamAPI_ISteamGameServerStats_ClearUserAchievement

SteamAPI_ISteamGameServerStats_GetUserAchievement

SteamAPI_ISteamGameServerStats_GetUserStat

SteamAPI_ISteamGameServerStats_GetUserStat0

SteamAPI_ISteamGameServerStats_RequestUserStats

SteamAPI_ISteamGameServerStats_SetUserAchievement

SteamAPI_ISteamGameServerStats_SetUserStat

SteamAPI_ISteamGameServerStats_SetUserStat0

SteamAPI_ISteamGameServerStats_StoreUserStats

SteamAPI_ISteamGameServerStats_UpdateUserAvgRateStat

SteamAPI_ISteamGameServer_AssociateWithClan

SteamAPI_ISteamGameServer_BLoggedOn

SteamAPI_ISteamGameServer_BSecure

SteamAPI_ISteamGameServer_BUpdateUserData

SteamAPI_ISteamGameServer_BeginAuthSession

SteamAPI_ISteamGameServer_CancelAuthTicket

SteamAPI_ISteamGameServer_ClearAllKeyValues

SteamAPI_ISteamGameServer_ComputeNewPlayerCompatibility

SteamAPI_ISteamGameServer_CreateUnauthenticatedUserConnection

SteamAPI_ISteamGameServer_EnableHeartbeats

SteamAPI_ISteamGameServer_EndAuthSession

SteamAPI_ISteamGameServer_ForceHeartbeat

SteamAPI_ISteamGameServer_GetAuthSessionTicket

SteamAPI_ISteamGameServer_GetGameplayStats

SteamAPI_ISteamGameServer_GetNextOutgoingPacket

SteamAPI_ISteamGameServer_GetPublicIP

SteamAPI_ISteamGameServer_GetServerReputation

SteamAPI_ISteamGameServer_GetSteamID

SteamAPI_ISteamGameServer_HandleIncomingPacket

SteamAPI_ISteamGameServer_InitGameServer

SteamAPI_ISteamGameServer_LogOff

SteamAPI_ISteamGameServer_LogOn

SteamAPI_ISteamGameServer_LogOnAnonymous

SteamAPI_ISteamGameServer_RequestUserGroupStatus

SteamAPI_ISteamGameServer_SendUserConnectAndAuthenticate

SteamAPI_ISteamGameServer_SendUserDisconnect

SteamAPI_ISteamGameServer_SetBotPlayerCount

SteamAPI_ISteamGameServer_SetDedicatedServer

SteamAPI_ISteamGameServer_SetGameData

SteamAPI_ISteamGameServer_SetGameDescription

SteamAPI_ISteamGameServer_SetGameTags

SteamAPI_ISteamGameServer_SetHeartbeatInterval

SteamAPI_ISteamGameServer_SetKeyValue

SteamAPI_ISteamGameServer_SetMapName

SteamAPI_ISteamGameServer_SetMaxPlayerCount

SteamAPI_ISteamGameServer_SetModDir

SteamAPI_ISteamGameServer_SetPasswordProtected

SteamAPI_ISteamGameServer_SetProduct

SteamAPI_ISteamGameServer_SetRegion

SteamAPI_ISteamGameServer_SetServerName

SteamAPI_ISteamGameServer_SetSpectatorPort

SteamAPI_ISteamGameServer_SetSpectatorServerName

SteamAPI_ISteamGameServer_UserHasLicenseForApp

SteamAPI_ISteamGameServer_WasRestartRequested

SteamAPI_ISteamHTMLSurface_AddHeader

SteamAPI_ISteamHTMLSurface_AllowStartRequest

SteamAPI_ISteamHTMLSurface_CopyToClipboard

SteamAPI_ISteamHTMLSurface_CreateBrowser

SteamAPI_ISteamHTMLSurface_DestructISteamHTMLSurface

SteamAPI_ISteamHTMLSurface_ExecuteJavascript

SteamAPI_ISteamHTMLSurface_Find

SteamAPI_ISteamHTMLSurface_GetLinkAtPosition

SteamAPI_ISteamHTMLSurface_GoBack

SteamAPI_ISteamHTMLSurface_GoForward

SteamAPI_ISteamHTMLSurface_Init

SteamAPI_ISteamHTMLSurface_JSDialogResponse

SteamAPI_ISteamHTMLSurface_KeyChar

SteamAPI_ISteamHTMLSurface_KeyDown

SteamAPI_ISteamHTMLSurface_KeyUp

SteamAPI_ISteamHTMLSurface_LoadURL

SteamAPI_ISteamHTMLSurface_MouseDoubleClick

SteamAPI_ISteamHTMLSurface_MouseDown

SteamAPI_ISteamHTMLSurface_MouseMove

SteamAPI_ISteamHTMLSurface_MouseUp

SteamAPI_ISteamHTMLSurface_MouseWheel

SteamAPI_ISteamHTMLSurface_OpenDeveloperTools

SteamAPI_ISteamHTMLSurface_PasteFromClipboard

SteamAPI_ISteamHTMLSurface_Reload

SteamAPI_ISteamHTMLSurface_RemoveBrowser

SteamAPI_ISteamHTMLSurface_SetBackgroundMode

SteamAPI_ISteamHTMLSurface_SetCookie

SteamAPI_ISteamHTMLSurface_SetDPIScalingFactor

SteamAPI_ISteamHTMLSurface_SetHorizontalScroll

SteamAPI_ISteamHTMLSurface_SetKeyFocus

SteamAPI_ISteamHTMLSurface_SetPageScaleFactor

SteamAPI_ISteamHTMLSurface_SetSize

SteamAPI_ISteamHTMLSurface_SetVerticalScroll

SteamAPI_ISteamHTMLSurface_Shutdown

SteamAPI_ISteamHTMLSurface_StopFind

SteamAPI_ISteamHTMLSurface_StopLoad

SteamAPI_ISteamHTMLSurface_ViewSource

SteamAPI_ISteamHTTP_CreateCookieContainer

SteamAPI_ISteamHTTP_CreateHTTPRequest

SteamAPI_ISteamHTTP_DeferHTTPRequest

SteamAPI_ISteamHTTP_GetHTTPDownloadProgressPct

SteamAPI_ISteamHTTP_GetHTTPRequestWasTimedOut

SteamAPI_ISteamHTTP_GetHTTPResponseBodyData

SteamAPI_ISteamHTTP_GetHTTPResponseBodySize

SteamAPI_ISteamHTTP_GetHTTPResponseHeaderSize

SteamAPI_ISteamHTTP_GetHTTPResponseHeaderValue

SteamAPI_ISteamHTTP_GetHTTPStreamingResponseBodyData

SteamAPI_ISteamHTTP_PrioritizeHTTPRequest

SteamAPI_ISteamHTTP_ReleaseCookieContainer

SteamAPI_ISteamHTTP_ReleaseHTTPRequest

SteamAPI_ISteamHTTP_SendHTTPRequest

SteamAPI_ISteamHTTP_SendHTTPRequestAndStreamResponse

SteamAPI_ISteamHTTP_SetCookie

SteamAPI_ISteamHTTP_SetHTTPRequestAbsoluteTimeoutMS

SteamAPI_ISteamHTTP_SetHTTPRequestContextValue

SteamAPI_ISteamHTTP_SetHTTPRequestCookieContainer

SteamAPI_ISteamHTTP_SetHTTPRequestGetOrPostParameter

SteamAPI_ISteamHTTP_SetHTTPRequestHeaderValue

SteamAPI_ISteamHTTP_SetHTTPRequestNetworkActivityTimeout

SteamAPI_ISteamHTTP_SetHTTPRequestRawPostBody

SteamAPI_ISteamHTTP_SetHTTPRequestRequiresVerifiedCertificate

SteamAPI_ISteamHTTP_SetHTTPRequestUserAgentInfo

SteamAPI_ISteamInput_ActivateActionSet

SteamAPI_ISteamInput_ActivateActionSetLayer

SteamAPI_ISteamInput_DeactivateActionSetLayer

SteamAPI_ISteamInput_DeactivateAllActionSetLayers

SteamAPI_ISteamInput_GetActionOriginFromXboxOrigin

SteamAPI_ISteamInput_GetActionSetHandle

SteamAPI_ISteamInput_GetActiveActionSetLayers

SteamAPI_ISteamInput_GetAnalogActionData

SteamAPI_ISteamInput_GetAnalogActionHandle

SteamAPI_ISteamInput_GetAnalogActionOrigins

SteamAPI_ISteamInput_GetConnectedControllers

SteamAPI_ISteamInput_GetControllerForGamepadIndex

SteamAPI_ISteamInput_GetCurrentActionSet

SteamAPI_ISteamInput_GetDeviceBindingRevision

SteamAPI_ISteamInput_GetDigitalActionData

SteamAPI_ISteamInput_GetDigitalActionHandle

SteamAPI_ISteamInput_GetDigitalActionOrigins

SteamAPI_ISteamInput_GetGamepadIndexForController

SteamAPI_ISteamInput_GetGlyphForActionOrigin

SteamAPI_ISteamInput_GetGlyphForXboxOrigin

SteamAPI_ISteamInput_GetInputTypeForHandle

SteamAPI_ISteamInput_GetMotionData

SteamAPI_ISteamInput_GetRemotePlaySessionID

SteamAPI_ISteamInput_GetStringForActionOrigin

SteamAPI_ISteamInput_GetStringForXboxOrigin

SteamAPI_ISteamInput_Init

SteamAPI_ISteamInput_RunFrame

SteamAPI_ISteamInput_SetLEDColor

SteamAPI_ISteamInput_ShowBindingPanel

SteamAPI_ISteamInput_Shutdown

SteamAPI_ISteamInput_StopAnalogActionMomentum

SteamAPI_ISteamInput_TranslateActionOrigin

SteamAPI_ISteamInput_TriggerHapticPulse

SteamAPI_ISteamInput_TriggerRepeatedHapticPulse

SteamAPI_ISteamInput_TriggerVibration

SteamAPI_ISteamInventory_AddPromoItem

SteamAPI_ISteamInventory_AddPromoItems

SteamAPI_ISteamInventory_CheckResultSteamID

SteamAPI_ISteamInventory_ConsumeItem

SteamAPI_ISteamInventory_DeserializeResult

SteamAPI_ISteamInventory_DestroyResult

SteamAPI_ISteamInventory_ExchangeItems

SteamAPI_ISteamInventory_GenerateItems

SteamAPI_ISteamInventory_GetAllItems

SteamAPI_ISteamInventory_GetEligiblePromoItemDefinitionIDs

SteamAPI_ISteamInventory_GetItemDefinitionIDs

SteamAPI_ISteamInventory_GetItemDefinitionProperty

SteamAPI_ISteamInventory_GetItemPrice

SteamAPI_ISteamInventory_GetItemsByID

SteamAPI_ISteamInventory_GetItemsWithPrices

SteamAPI_ISteamInventory_GetNumItemsWithPrices

SteamAPI_ISteamInventory_GetResultItemProperty

SteamAPI_ISteamInventory_GetResultItems

Sections

.text
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

infected/tradingnetworkingsockets.dll

.dll windows:6 windows x64 arch:x64

e917d42bcc53c047e3b944d762080d33

Code Sign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00 UTC

Not After

09/11/2031, 23:59 UTC

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00 UTC

Not After

15/01/2038, 12:00 UTC

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00 UTC

Not After

22/03/2037, 23:59 UTC

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00 UTC

Not After

28/04/2036, 23:59 UTC

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29/03/2022, 00:00 UTC

Not After

14/03/2033, 23:59 UTC

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:89:b3:bc:eb:44:09:89:0a:32:d7:19:76:b1:32:a4
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

07/10/2021, 00:00 UTC

Not After

09/10/2024, 23:59 UTC

Subject

CN=Valve Corp.,O=Valve Corp.,L=Bellevue,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

fa:8a:01:bb:57:5d:f5:1e:0c:89:2b:3d:f2:dd:29:b9:31:92:f0:e3
Signer

Actual PE Digest

fa:8a:01:bb:57:5d:f5:1e:0c:89:2b:3d:f2:dd:29:b9:31:92:f0:e3

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

c:\buildslave\sdr_public_win64\build\obj\steamnetworkingsockets_Release_x642019\steamnetworkingsockets.pdb

Imports

kernel32

LoadLibraryA

CloseHandle

RaiseException

GetLastError

SetEvent

WaitForSingleObject

CreateEventA

GetCurrentThread

GetCurrentThreadId

SetThreadPriority

LocalFree

FormatMessageA

WideCharToMultiByte

GetProcAddress

QueryPerformanceFrequency

QueryPerformanceCounter

TerminateProcess

HeapSize

WriteConsoleW

GetProcessHeap

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetCommandLineW

GetCommandLineA

GetOEMCP

GetACP

IsValidCodePage

FindFirstFileExW

GetTimeZoneInformation

GetFileSizeEx

GetFullPathNameW

SetEndOfFile

SetStdHandle

SetFilePointerEx

FlushFileBuffers

GetCurrentProcess

IsDebuggerPresent

GetCurrentDirectoryW

FindClose

FindFirstFileW

FindNextFileW

SetLastError

MultiByteToWideChar

GetStdHandle

GetEnvironmentVariableW

GetFileType

WriteFile

GetModuleHandleW

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

RtlVirtualUnwind

GetCurrentProcessId

GetSystemTimeAsFileTime

DeleteFiber

ConvertFiberToThread

GetConsoleMode

SetConsoleMode

ReadConsoleA

ReadConsoleW

WaitForSingleObjectEx

GetExitCodeThread

InitializeSRWLock

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

InitializeCriticalSectionEx

TryEnterCriticalSection

InitializeConditionVariable

WakeConditionVariable

WakeAllConditionVariable

SleepConditionVariableCS

SleepConditionVariableSRW

InitOnceBeginInitialize

InitOnceComplete

GetStringTypeW

EncodePointer

DecodePointer

GetCPInfo

ResetEvent

CreateEventW

RtlCaptureContext

RtlLookupFunctionEntry

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsProcessorFeaturePresent

GetStartupInfoW

InitializeSListHead

RtlPcToFileHeader

RtlUnwindEx

InterlockedFlushSList

FreeLibrary

LoadLibraryExW

CreateThread

ExitThread

FreeLibraryAndExitThread

GetModuleHandleExW

ReadFile

SetEnvironmentVariableW

CreateFileW

GetDriveTypeW

GetFileInformationByHandle

PeekNamedPipe

SystemTimeToTzSpecificLocalTime

FileTimeToSystemTime

GetConsoleOutputCP

ExitProcess

SetConsoleCtrlHandler

GetModuleFileNameW

HeapFree

HeapAlloc

HeapReAlloc

CompareStringW

LCMapStringW

ws2_32

WSASendTo

WSAEventSelect

WSAEnumNetworkEvents

WSAGetLastError

getaddrinfo

socket

setsockopt

recvfrom

ntohl

htonl

getsockname

freeaddrinfo

gethostname

WSACleanup

ioctlsocket

closesocket

bind

WSAStartup

recv

send

WSASetLastError

winmm

timeBeginPeriod

timeEndPeriod

iphlpapi

GetAdaptersAddresses

bcrypt

BCryptGenRandom

user32

GetProcessWindowStation

GetUserObjectInformationW

MessageBoxW

advapi32

ReportEventW

RegisterEventSourceW

DeregisterEventSource

Exports

SteamDatagramClient_Init

SteamDatagramClient_InitSteam_InternalV1

SteamDatagramClient_Kill

SteamDatagramClient_SetCredentialsDurableCacheCallbacks

SteamDatagramServer_Init

SteamDatagramServer_InitSteam_InternalV1

SteamDatagramServer_Kill

SteamDatagram_GetNetworkConfigURL

SteamDatagram_Internal_SteamAPIKludge

SteamDatagram_SetAppID

SteamDatagram_SetNetworkConfig

SteamDatagram_SetUniverse

SteamGameServerNetworkingMessages_LibV2

SteamGameServerNetworkingSockets_LibV12

SteamNetworkingIPAddr_GetFakeIPType

SteamNetworkingIPAddr_ParseString

SteamNetworkingIPAddr_ToString

SteamNetworkingIdentity_ParseString

SteamNetworkingIdentity_ToString

SteamNetworkingMessages_LibV2

SteamNetworkingSockets_DefaultPreFormatDebugOutputHandler

SteamNetworkingSockets_LibV12

SteamNetworkingSockets_Poll

SteamNetworkingSockets_SetEnvironmentVariable

SteamNetworkingSockets_SetLockAcquiredCallback

SteamNetworkingSockets_SetLockHeldCallback

SteamNetworkingSockets_SetLockWaitWarningThreshold

SteamNetworkingSockets_SetManualPollMode

SteamNetworkingSockets_SetPreFormatDebugOutputHandler

SteamNetworkingSockets_SetServiceThreadInitCallback

SteamNetworkingUtils_GetIPv4FakeIPType

SteamNetworkingUtils_LibV4

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 885KB - Virtual size: 884KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

94edee571d3a6c3103264e81c1452c8a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

advapi32

ws2_32

msvcp100

msvcr100

Exports

Exports

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 1009KB - Virtual size: 1009KB

.data Size: 10KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 71KB - Virtual size: 71KB

665a7203ee328c8774e946b947bd499e

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

comdlg32

oleaut32

imm32

winmm

winspool.drv

ole32

user32

advapi32

shell32

qtcore4

msvcp100

msvcr100

kernel32

Exports

Exports

Sections

.text Size: 5.6MB - Virtual size: 5.6MB

.rdata Size: 2.1MB - Virtual size: 2.1MB

.data Size: 38KB - Virtual size: 51KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 478KB - Virtual size: 478KB

51d391f74bdd44264db9d63f1a545d8d

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

qtcore4

msvcr100

kernel32

Exports

Exports

Sections

.text Size: 670KB - Virtual size: 669KB

.rdata Size: 272KB - Virtual size: 271KB

.data Size: 6KB - Virtual size: 15KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 78KB - Virtual size: 78KB

b55a1f6c1c8beacf6b60a4dc7ffd6a2f

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

gdi32

shlwapi

user32

version

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 1009KB - Virtual size: 1009KB

.data
Size: 10KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 71KB - Virtual size: 71KB

.text
Size: 5.6MB - Virtual size: 5.6MB

.rdata
Size: 2.1MB - Virtual size: 2.1MB

.data
Size: 38KB - Virtual size: 51KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 478KB - Virtual size: 478KB

.text
Size: 670KB - Virtual size: 669KB

.rdata
Size: 272KB - Virtual size: 271KB

.data
Size: 6KB - Virtual size: 15KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 78KB - Virtual size: 78KB

.text
Size: 8.7MB - Virtual size: 8.7MB

.rdata
Size: 2.9MB - Virtual size: 2.9MB

.data
Size: 194KB - Virtual size: 210KB

.unwante
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 783KB - Virtual size: 783KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

29:8d:c5:f8:c5:e1:37:97:8b:04:65:7c:f5:f2:49:d1
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

d3:8e:f7:4c:4f:3c:51:3e:8f:1d:34:4a:a4:07:77:59:63:c5:87:6d
Signer

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 43KB - Virtual size: 42KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 3KB

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

0d:fe:7b:a4:82:f0:76:db:90:bc:c2:2b:2c:48:7c:bd
Certificate

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate