b4eb607c4af9e0d6dd88dfaee8a96fed_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b4eb607c4af9e0d6dd88dfaee8a96fed_JaffaCakes118
Size

13.1MB
MD5

b4eb607c4af9e0d6dd88dfaee8a96fed
SHA1

94405602d39b4062e8b0769e3d1b7c7dac821b26
SHA256

76586617f0f0492574ede863dd8b661f0da7ae3342e5d61f6d68dd6d7a37342f
SHA512

3d9b362245cbd403de99224cef7e97e16c8579034e92117dee95ee8033c2c016006bbca7ff7749249e12394d2e13b86d083e1f60d229b41c598883e7e26c9af9
SSDEEP

393216:yY2ku6hak4+q/oXa4HTBlYPm1i6U23rQrejmIrXAPL:yYNsN2vY+1i6U23YQZwj

Score

3^/10

Malware Config

Signatures

Unsigned PE 24 IoCs

Checks for missing Authenticode signature.

resource
b4eb607c4af9e0d6dd88dfaee8a96fed_JaffaCakes118
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/$PLUGINSDIR/NSISdl.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/blowfish.dll
unpack001/$PLUGINSDIR/locate.dll
unpack001/$PLUGINSDIR/xml.dll
unpack001/GNU/aspell/bin/aspell6.dll
unpack001/GNU/astyle.exe
unpack001/GNU/ctags.exe
unpack001/GNU/iconv.dll
unpack001/GNU/libxml2.dll
unpack001/GNU/xmllint.exe
unpack001/GNU/zlib1.dll
unpack001/UEDOS32.exe
unpack001/dbghelp.dll
unpack001/idm_tidylib.dll
unpack001/ucres.dll
unpack001/ue32ctmn.dll
unpack001/uehh.exe
unpack001/uejs.dll
unpack001/ueres.dll
unpack001/uninst.exe
unpack001/update.exe

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/uninst.exe	nsis_installer_1
static1/unpack001/uninst.exe	nsis_installer_2

Files

b4eb607c4af9e0d6dd88dfaee8a96fed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
GetPrivateProfileIntA
GlobalLock
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalAlloc

user32

MapWindowPoints
GetDlgCtrlID
CloseClipboard
GetClipboardData
OpenClipboard
PtInRect
SetWindowRgn
LoadIconA
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
GetClientRect

gdi32

SetTextColor
CreateCompatibleDC
GetObjectA
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject

shell32

SHBrowseForFolderA
SHGetDesktopFolder
SHGetPathFromIDListA
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/NSISdl.dll
.dll windows:4 windows x86 arch:x86

9cce555dd3ff1b6c7dc92d64c794c51a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WaitForSingleObject
lstrcpynA
lstrlenA
lstrcatA
GlobalAlloc
GlobalFree
CloseHandle
GetTickCount
DeleteFileA
Sleep
WriteFile
CreateFileA
lstrcmpiA
lstrcpyA
MulDiv
CreateThread

user32

CharPrevA
SetWindowLongA
RegisterWindowMessageA
CallWindowProcA
DestroyWindow
EnableWindow
GetWindowLongA
CreateWindowExA
GetWindowRect
GetClientRect
ShowWindow
IsWindowVisible
GetFocus
GetDlgItem
FindWindowExA
SetWindowTextA
SendMessageA
wsprintfA
SetDlgItemTextA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

ws2_32

gethostbyname
inet_addr
ioctlsocket
htons
socket
closesocket
shutdown
connect
__WSAFDIsSet
select
recv
WSAGetLastError
send
WSACleanup
WSAStartup

Exports

Exports

download
download_quiet

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/blowfish.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

Decrypt
Encrypt

Sections

CODE
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 906B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/locate.dll
.dll windows:4 windows x86 arch:x86

7f8181c74f882a780c7cd485241e8b51

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
MultiByteToWideChar
lstrlenW
lstrlenA
GetWindowsDirectoryW
WideCharToMultiByte
CompareFileTime
FindNextFileA
FindNextFileW
FileTimeToSystemTime
RemoveDirectoryA
RemoveDirectoryW
FindFirstFileA
FindFirstFileW
FindClose
SystemTimeToFileTime
FileTimeToLocalFileTime

user32

SetWindowTextA
SetWindowTextW
GetDlgItem
FindWindowExA
MessageBoxW

Exports

Exports

_Close
_Find
_GetSize
_Open
_RMDirEmpty
_Unload

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/xml.dll
.dll windows:4 windows x86 arch:x86

b5ed5b3a951d4443ce56e5453702d536

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
lstrcpynA
lstrcmpA
lstrcmpiA
lstrcpyA
RtlUnwind
GetModuleFileNameA
RaiseException
GetCommandLineA
GetVersionExA
HeapFree
HeapAlloc
HeapReAlloc
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapSize
GetLastError
LoadLibraryA
ReadFile
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetFilePointer
CloseHandle
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
VirtualAlloc
IsBadWritePtr
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP
GetCPInfo
FlushFileBuffers
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
CreateFileA
VirtualProtect
GetSystemInfo
VirtualQuery
SetStdHandle
GetLocaleInfoA
InterlockedExchange
SetEndOfFile

Exports

Exports

_CloneNode
_Coordinate
_CreateNode
_CreateText
_CurrentAttribute
_DeclarationEncoding
_DeclarationStandalone
_DeclarationVersion
_ElementPath
_FindCloseElement
_FindNextElement
_FirstAttribute
_FirstChild
_FirstChildElement
_FreeNode
_GetAttribute
_GetNodeValue
_GetText
_GotoHandle
_GotoPath
_InsertAfterNode
_InsertBeforeNode
_InsertEndChild
_IsCDATA
_LastAttribute
_LastChild
_LoadFile
_NextAttribute
_NextSibling
_NextSiblingElement
_NoChildren
_NodeHandle
_NodeType
_Parent
_PreviousAttribute
_PreviousSibling
_RemoveAllChild
_RemoveAttribute
_RemoveNode
_ReplaceNode
_RootElement
_SaveFile
_SetAttribute
_SetAttributeName
_SetAttributeValue
_SetCDATA
_SetCondenseWhiteSpace
_SetEncoding
_SetNodeValue
_SetText
_Unload
_XPathAttribute
_XPathNode
_XPathString

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GNU/aspell/COPYING
GNU/aspell/Copyright.en
GNU/aspell/README
GNU/aspell/bin/aspell6.dll
.dll windows:5 windows x86 arch:x86

55cbdfbb04d7130cef096bbcaa98e66b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\jpickle.DOMAIN\Documents\idmcvs\vs_2008\aspell-0.60.6\win32\Release\aspell6.pdb

Imports

kernel32

GetLastError
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileInformationByHandle
PeekNamedPipe
GetFileType
GetFileAttributesA
DeleteFileA
HeapReAlloc
FindFirstFileA
FindNextFileA
FindClose
GetCurrentThreadId
GetCommandLineA
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
HeapSize
ExitProcess
RaiseException
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
VirtualAlloc
WriteFile
GetStdHandle
GetModuleFileNameA
SetHandleCount
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetStdHandle
RtlUnwind
MultiByteToWideChar
ReadFile
CloseHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetTimeZoneInformation
CreateFileA
SetEndOfFile
GetProcessHeap
GetModuleHandleA

Exports

Exports

aerror_affix
aerror_bad_file_format
aerror_bad_input
aerror_bad_key
aerror_bad_magic
aerror_bad_mode_key
aerror_bad_mode_version
aerror_bad_value
aerror_bad_version
aerror_bad_version_string
aerror_cant_change_value
aerror_cant_copy
aerror_cant_create_pipe
aerror_cant_describe_filter
aerror_cant_dlopen_file
aerror_cant_open_file
aerror_cant_read_dir
aerror_cant_read_file
aerror_cant_write_file
aerror_config
aerror_conflicting_flags
aerror_confusing_mode_version
aerror_confusing_version
aerror_conversion_not_supported
aerror_corrupt_affix
aerror_dir
aerror_duplicate
aerror_empty_file_ext
aerror_empty_filter
aerror_encoding
aerror_encoding_not_supported
aerror_expect_mode_key
aerror_expression
aerror_file
aerror_file_magic_pos
aerror_file_magic_range
aerror_filter
aerror_filter_mode_expand
aerror_filter_mode_file
aerror_filter_mode_magic
aerror_identical_option
aerror_inapplicable_affix
aerror_incorrect_encoding
aerror_invalid_affix
aerror_invalid_cond
aerror_invalid_cond_strip
aerror_invalid_expression
aerror_invalid_flag
aerror_invalid_name
aerror_invalid_option_modifier
aerror_invalid_string
aerror_invalid_word
aerror_key_not_bool
aerror_key_not_int
aerror_key_not_list
aerror_key_not_string
aerror_language_not_supported
aerror_language_related
aerror_mismatched_language
aerror_missing_magic
aerror_missing_magic_expression
aerror_mode_extend_expand
aerror_mode_option_name
aerror_mode_version_requirement
aerror_no_filter_to_option
aerror_no_such_filter
aerror_no_value_clear
aerror_no_value_disable
aerror_no_value_enable
aerror_no_value_reset
aerror_no_wordlist_for_lang
aerror_operation_not_supported
aerror_options_only
aerror_other
aerror_pipe
aerror_process_died
aerror_unimplemented_method
aerror_unknown_encoding
aerror_unknown_key
aerror_unknown_language
aerror_unknown_mode
aerror_unknown_soundslike
aerror_unknown_unichar
aerror_version_control
aerror_word_list_flags
aspell_config_assign
aspell_config_clone
aspell_config_elements
aspell_config_error
aspell_config_error_message
aspell_config_error_number
aspell_config_get_default
aspell_config_have
aspell_config_keyinfo
aspell_config_possible_elements
aspell_config_remove
aspell_config_replace
aspell_config_retrieve
aspell_config_retrieve_bool
aspell_config_retrieve_int
aspell_config_retrieve_list
aspell_config_set_extra
aspell_dict_info_enumeration_assign
aspell_dict_info_enumeration_at_end
aspell_dict_info_enumeration_clone
aspell_dict_info_enumeration_next
aspell_dict_info_list_elements
aspell_dict_info_list_empty
aspell_dict_info_list_size
aspell_document_checker_error
aspell_document_checker_error_message
aspell_document_checker_error_number
aspell_document_checker_filter
aspell_document_checker_next_misspelling
aspell_document_checker_process
aspell_document_checker_reset
aspell_error
aspell_error_is_a
aspell_error_message
aspell_error_number
aspell_gettext_init
aspell_key_info_enumeration_assign
aspell_key_info_enumeration_at_end
aspell_key_info_enumeration_clone
aspell_key_info_enumeration_next
aspell_module_info_enumeration_assign
aspell_module_info_enumeration_at_end
aspell_module_info_enumeration_clone
aspell_module_info_enumeration_next
aspell_module_info_list_elements
aspell_module_info_list_empty
aspell_module_info_list_size
aspell_mutable_container_add
aspell_mutable_container_clear
aspell_mutable_container_remove
aspell_mutable_container_to_mutable_container
aspell_reset_cache
aspell_speller_add_to_personal
aspell_speller_add_to_session
aspell_speller_check
aspell_speller_clear_session
aspell_speller_config
aspell_speller_error
aspell_speller_error_message
aspell_speller_error_number
aspell_speller_main_word_list
aspell_speller_personal_word_list
aspell_speller_save_all_word_lists
aspell_speller_session_word_list
aspell_speller_store_replacement
aspell_speller_suggest
aspell_string_enumeration_assign
aspell_string_enumeration_at_end
aspell_string_enumeration_clone
aspell_string_enumeration_next
aspell_string_list_add
aspell_string_list_assign
aspell_string_list_clear
aspell_string_list_clone
aspell_string_list_elements
aspell_string_list_empty
aspell_string_list_remove
aspell_string_list_size
aspell_string_list_to_mutable_container
aspell_string_map_add
aspell_string_map_assign
aspell_string_map_clear
aspell_string_map_clone
aspell_string_map_elements
aspell_string_map_empty
aspell_string_map_insert
aspell_string_map_lookup
aspell_string_map_remove
aspell_string_map_replace
aspell_string_map_size
aspell_string_map_to_mutable_container
aspell_string_pair_enumeration_assign
aspell_string_pair_enumeration_at_end
aspell_string_pair_enumeration_clone
aspell_string_pair_enumeration_next
aspell_word_list_elements
aspell_word_list_empty
aspell_word_list_size
delete_aspell_can_have_error
delete_aspell_config
delete_aspell_dict_info_enumeration
delete_aspell_document_checker
delete_aspell_key_info_enumeration
delete_aspell_module_info_enumeration
delete_aspell_speller
delete_aspell_string_enumeration
delete_aspell_string_list
delete_aspell_string_map
delete_aspell_string_pair_enumeration
get_aspell_dict_info_list
get_aspell_module_info_list
libaspell_speller_default_LTX_new_speller_class
new_aspell_config
new_aspell_document_checker
new_aspell_speller
new_aspell_string_list
new_aspell_string_map
to_aspell_document_checker
to_aspell_speller

Sections

.text
Size: 396KB - Virtual size: 395KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GNU/aspell/data/ASCII.dat
GNU/aspell/data/cp1250.cmap
GNU/aspell/data/cp1250.cset
GNU/aspell/data/cp1251.cmap
GNU/aspell/data/cp1251.cset
GNU/aspell/data/cp1252.cmap
GNU/aspell/data/cp1252.cset
GNU/aspell/data/cp1253.cmap
GNU/aspell/data/cp1253.cset
GNU/aspell/data/cp1254.cmap
GNU/aspell/data/cp1254.cset
GNU/aspell/data/cp1255.cmap
GNU/aspell/data/cp1255.cset
GNU/aspell/data/cp1256.cmap
GNU/aspell/data/cp1256.cset
GNU/aspell/data/cp1257.cmap
GNU/aspell/data/cp1257.cset
GNU/aspell/data/cp1258.cmap
GNU/aspell/data/cp1258.cset
GNU/aspell/data/dvorak.kbd
GNU/aspell/data/en.dat
GNU/aspell/data/en_affix.dat
GNU/aspell/data/en_phonet.dat
GNU/aspell/data/iso-8859-1.cmap
GNU/aspell/data/iso-8859-1.cset
GNU/aspell/data/iso-8859-10.cmap
GNU/aspell/data/iso-8859-10.cset
GNU/aspell/data/iso-8859-11.cmap
GNU/aspell/data/iso-8859-11.cset
GNU/aspell/data/iso-8859-13.cmap
GNU/aspell/data/iso-8859-13.cset
GNU/aspell/data/iso-8859-14.cmap
GNU/aspell/data/iso-8859-14.cset
GNU/aspell/data/iso-8859-15.cmap
GNU/aspell/data/iso-8859-15.cset
GNU/aspell/data/iso-8859-16.cmap
GNU/aspell/data/iso-8859-16.cset
GNU/aspell/data/iso-8859-2.cmap
GNU/aspell/data/iso-8859-2.cset
GNU/aspell/data/iso-8859-3.cmap
GNU/aspell/data/iso-8859-3.cset
GNU/aspell/data/iso-8859-4.cmap
GNU/aspell/data/iso-8859-4.cset
GNU/aspell/data/iso-8859-5.cmap
GNU/aspell/data/iso-8859-5.cset
GNU/aspell/data/iso-8859-6.cmap
GNU/aspell/data/iso-8859-6.cset
GNU/aspell/data/iso-8859-7.cmap
GNU/aspell/data/iso-8859-7.cset
GNU/aspell/data/iso-8859-8.cmap
GNU/aspell/data/iso-8859-8.cset
GNU/aspell/data/iso-8859-9.cmap
GNU/aspell/data/iso-8859-9.cset
GNU/aspell/data/iso8859-1.dat
GNU/aspell/data/iso8859-10.dat
GNU/aspell/data/iso8859-13.dat
GNU/aspell/data/iso8859-14.dat
GNU/aspell/data/iso8859-15.dat
GNU/aspell/data/iso8859-2.dat
GNU/aspell/data/iso8859-3.dat
GNU/aspell/data/iso8859-4.dat
GNU/aspell/data/iso8859-5.dat
GNU/aspell/data/iso8859-6.dat
GNU/aspell/data/iso8859-7.dat
GNU/aspell/data/iso8859-8.dat
GNU/aspell/data/iso8859-9.dat
GNU/aspell/data/koi8-f.dat
GNU/aspell/data/koi8-r.cmap
GNU/aspell/data/koi8-r.cset
GNU/aspell/data/koi8-r.dat
GNU/aspell/data/koi8-u.cmap
GNU/aspell/data/koi8-u.cset
GNU/aspell/data/koi8-u.dat
GNU/aspell/data/split.kbd
GNU/aspell/data/standard.kbd
GNU/aspell/data/tex.conv
GNU/aspell/data/viscii.dat
GNU/aspell/dict/american-w_accents.alias
GNU/aspell/dict/american-wo_accents.alias
GNU/aspell/dict/american.alias
GNU/aspell/dict/british-ise-w_accents.alias
GNU/aspell/dict/british-ise-wo_accents.alias
GNU/aspell/dict/british-ise.alias
GNU/aspell/dict/british-ize-w_accents.alias
GNU/aspell/dict/british-ize-wo_accents.alias
GNU/aspell/dict/british-ize.alias
GNU/aspell/dict/british-w_accents.alias
GNU/aspell/dict/british-wo_accents.alias
GNU/aspell/dict/british.alias
GNU/aspell/dict/canadian-w_accents.alias
GNU/aspell/dict/canadian-wo_accents.alias
GNU/aspell/dict/canadian.alias
GNU/aspell/dict/en-common.rws
GNU/aspell/dict/en-variant_0.multi
GNU/aspell/dict/en-variant_0.rws
GNU/aspell/dict/en-variant_1.multi
GNU/aspell/dict/en-variant_1.rws
GNU/aspell/dict/en-variant_2.multi
GNU/aspell/dict/en-variant_2.rws
GNU/aspell/dict/en-w_accents.multi
GNU/aspell/dict/en-wo_accents.multi
GNU/aspell/dict/en.multi
GNU/aspell/dict/en_CA-w_accents-only.rws
GNU/aspell/dict/en_CA-w_accents.multi
GNU/aspell/dict/en_CA-wo_accents-only.rws
GNU/aspell/dict/en_CA-wo_accents.multi
GNU/aspell/dict/en_CA.multi
GNU/aspell/dict/en_GB-ise-w_accents-only.rws
GNU/aspell/dict/en_GB-ise-w_accents.multi
GNU/aspell/dict/en_GB-ise-wo_accents-only.rws
GNU/aspell/dict/en_GB-ise-wo_accents.multi
GNU/aspell/dict/en_GB-ise.multi
GNU/aspell/dict/en_GB-ize-w_accents-only.rws
GNU/aspell/dict/en_GB-ize-w_accents.multi
GNU/aspell/dict/en_GB-ize-wo_accents-only.rws
GNU/aspell/dict/en_GB-ize-wo_accents.multi
GNU/aspell/dict/en_GB-ize.multi
GNU/aspell/dict/en_GB-w_accents.multi
GNU/aspell/dict/en_GB-wo_accents.multi
GNU/aspell/dict/en_GB.multi
GNU/aspell/dict/en_US-w_accents-only.rws
GNU/aspell/dict/en_US-w_accents.multi
GNU/aspell/dict/en_US-wo_accents-only.rws
GNU/aspell/dict/en_US-wo_accents.multi
GNU/aspell/dict/en_US.multi
GNU/aspell/dict/english-variant_0.alias
GNU/aspell/dict/english-variant_1.alias
GNU/aspell/dict/english-variant_2.alias
GNU/aspell/dict/english-w_accents.alias
GNU/aspell/dict/english-wo_accents.alias
GNU/aspell/dict/english.alias
GNU/aspell/en.prepl
GNU/aspell/en.pws
GNU/astyle.exe
.exe windows:4 windows x86 arch:x86

ef60c9b6ae64add73e9682aa58323e00

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileA
GetLastError
FindNextFileA
GetCurrentDirectoryA
FindClose
Sleep
InterlockedCompareExchange
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
InterlockedExchange

msvcp80

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIABV12@@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IID@Z
?find_last_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?close@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHPBD@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@V?$fpos@H@2@@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?peek@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?uncaught_exception@std@@YA_NXZ
??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@AAD@Z
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?close@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?find_last_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@II@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z

msvcr80

clock
exit
_stat64i32
tolower
rename
_purecall
atoi
getenv
_utime64
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
__initenv
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_controlfp_s
_crt_debugger_hook
remove
isdigit
isalnum
?what@exception@std@@UBEPBDXZ
isalpha
_invalid_parameter_noinfo
??2@YAPAXI@Z
??3@YAXPAX@Z
??0exception@std@@QAE@ABV01@@Z
memmove_s
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
__CxxFrameHandler3
_CxxThrowException

Sections

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
GNU/ctags.exe
.exe windows:4 windows x86 arch:x86

4193f3f57d6cfdd2c70ff37f6b85548c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
GetLastError
DeleteFileA
CloseHandle
SetEndOfFile
GetFileType
CreateFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
GetSystemTimeAsFileTime
HeapAlloc
HeapReAlloc
HeapFree
GetDriveTypeA
GetCurrentDirectoryA
GetFullPathNameA
GetCommandLineA
GetVersionExA
GetACP
GetOEMCP
GetCPInfo
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
WideCharToMultiByte
LCMapStringW
RtlUnwind
WriteFile
ReadFile
SetHandleCount
GetStdHandle
GetStartupInfoA
SetStdHandle
SetFilePointer
FlushFileBuffers
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetFileAttributesA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA
LoadLibraryA

Sections

.text
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
GNU/iconv.dll
.dll .ps1 windows:4 windows x86 arch:x86 polyglot

5e63e66630a8ecd829ce2cfdcfa121ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

AddAtomA
FindAtomA
GetACP
GetAtomNameA
GetModuleFileNameA
GetSystemInfo

msvcrt

_strdup
__dllonexit
_errno
abort
fflush
free
malloc
memcpy
sprintf
strchr
strcmp
strcpy
strlen
strncmp

Exports

Exports

DllGetVersion
_libiconv_version
aliases2_lookup
aliases_lookup
libiconv
libiconv_close
libiconv_open
libiconv_relocate
libiconv_set_relocation_prefix
libiconvctl
libiconvlist
locale_charset

Sections

.text
Size: 945KB - Virtual size: 944KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 656B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 364B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
GNU/libxml2.dll
.dll windows:5 windows x86 arch:x86

b876d89d196ba255d1bdc13808e95134

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
GetModuleHandleA
CreateMutexA
CloseHandle
WaitForSingleObject
ReleaseMutex
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedCompareExchange
GetCurrentThreadId
TlsFree
Sleep
TlsAlloc
InterlockedIncrement
TlsSetValue
TlsGetValue
MultiByteToWideChar
GetVersionExA
HeapSize
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LoadLibraryA
SetEnvironmentVariableA
CompareStringW
CompareStringA
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetProcessHeap
GetLastError
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
HeapFree
HeapAlloc
GetDriveTypeW
FindFirstFileW
HeapReAlloc
GetCommandLineA
GetFullPathNameA
GetFileInformationByHandle
PeekNamedPipe
GetFileType
CreateFileA
GetCurrentDirectoryA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStdHandle
GetStartupInfoA
WideCharToMultiByte
GetModuleHandleW
GetProcAddress
ExitProcess
RtlUnwind
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
GetCPInfo
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
SetLastError
LCMapStringA
LCMapStringW
WriteFile
GetConsoleCP
GetConsoleMode
GetFullPathNameW
CreateFileW
ReadFile
FlushFileBuffers
RaiseException
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetStdHandle
SetFilePointer
SetEndOfFile

ws2_32

WSACleanup
closesocket
recv
ioctlsocket
__WSAFDIsSet
getsockopt
WSAGetLastError
WSAStartup
getsockname
bind
listen
gethostbyname
htons
socket
connect
send
select

iconv

libiconv_close
libiconv_open
libiconv

Exports

Exports

UTF8ToHtml
UTF8Toisolat1
__docbDefaultSAXHandler
__htmlDefaultSAXHandler
__oldXMLWDcompatibility
__xmlBufferAllocScheme
__xmlDefaultBufferSize
__xmlDefaultSAXHandler
__xmlDefaultSAXLocator
__xmlDeregisterNodeDefaultValue
__xmlDoValidityCheckingDefaultValue
__xmlErrEncoding
__xmlGenericError
__xmlGenericErrorContext
__xmlGetWarningsDefaultValue
__xmlIndentTreeOutput
__xmlKeepBlanksDefaultValue
__xmlLastError
__xmlLineNumbersDefaultValue
__xmlLoadExtDtdDefaultValue
__xmlOutputBufferCreateFilenameValue
__xmlParserDebugEntities
__xmlParserInputBufferCreateFilenameValue
__xmlParserVersion
__xmlPedanticParserDefaultValue
__xmlRaiseError
__xmlRegisterNodeDefaultValue
__xmlSaveNoEmptyTags
__xmlSimpleError
__xmlStructuredError
__xmlSubstituteEntitiesDefaultValue
__xmlTreeIndentString
attribute
attributeDecl
cdataBlock
characters
checkNamespace
comment
docbCreateFileParserCtxt
docbCreatePushParserCtxt
docbDefaultSAXHandlerInit
docbEncodeEntities
docbFreeParserCtxt
docbParseChunk
docbParseDoc
docbParseDocument
docbParseFile
docbSAXParseDoc
docbSAXParseFile
elementDecl
emptyExp
endDocument
endElement
entityDecl
externalSubset
forbiddenExp
getColumnNumber
getEntity
getLineNumber
getNamespace
getParameterEntity
getPublicId
getSystemId
globalNamespace
hasExternalSubset
hasInternalSubset
htmlAttrAllowed
htmlAutoCloseTag
htmlCreateFileParserCtxt
htmlCreateMemoryParserCtxt
htmlCreatePushParserCtxt
htmlCtxtReadDoc
htmlCtxtReadFd
htmlCtxtReadFile
htmlCtxtReadIO
htmlCtxtReadMemory
htmlCtxtReset
htmlCtxtUseOptions
htmlDefaultSAXHandlerInit
htmlDocContentDumpFormatOutput
htmlDocContentDumpOutput
htmlDocDump
htmlDocDumpMemory
htmlDocDumpMemoryFormat
htmlElementAllowedHere
htmlElementStatusHere
htmlEncodeEntities
htmlEntityLookup
htmlEntityValueLookup
htmlFreeParserCtxt
htmlGetMetaEncoding
htmlHandleOmittedElem
htmlInitAutoClose
htmlIsAutoClosed
htmlIsBooleanAttr
htmlIsScriptAttribute
htmlNewDoc
htmlNewDocNoDtD
htmlNewParserCtxt
htmlNodeDump
htmlNodeDumpFile
htmlNodeDumpFileFormat
htmlNodeDumpFormatOutput
htmlNodeDumpOutput
htmlNodeStatus
htmlParseCharRef
htmlParseChunk
htmlParseDoc
htmlParseDocument
htmlParseElement
htmlParseEntityRef
htmlParseFile
htmlReadDoc
htmlReadFd
htmlReadFile
htmlReadIO
htmlReadMemory
htmlSAXParseDoc
htmlSAXParseFile
htmlSaveFile
htmlSaveFileEnc
htmlSaveFileFormat
htmlSetMetaEncoding
htmlTagLookup
ignorableWhitespace
initGenericErrorDefaultFunc
initdocbDefaultSAXHandler
inithtmlDefaultSAXHandler
initxmlDefaultSAXHandler
inputPop
inputPush
internalSubset
isStandalone
isolat1ToUTF8
namePop
namePush
namespaceDecl
nodePop
nodePush
notationDecl
processingInstruction
reference
resolveEntity
setDocumentLocator
setNamespace
startDocument
startElement
unparsedEntityDecl
valuePop
valuePush
xlinkGetDefaultDetect
xlinkGetDefaultHandler
xlinkIsLink
xlinkSetDefaultDetect
xlinkSetDefaultHandler
xmlACatalogAdd
xmlACatalogDump
xmlACatalogRemove
xmlACatalogResolve
xmlACatalogResolvePublic
xmlACatalogResolveSystem
xmlACatalogResolveURI
xmlAddAttributeDecl
xmlAddChild
xmlAddChildList
xmlAddDocEntity
xmlAddDtdEntity
xmlAddElementDecl
xmlAddEncodingAlias
xmlAddID
xmlAddNextSibling
xmlAddNotationDecl
xmlAddPrevSibling
xmlAddRef
xmlAddSibling
xmlAllocOutputBuffer
xmlAllocParserInputBuffer
xmlAttrSerializeTxtContent
xmlAutomataCompile
xmlAutomataGetInitState
xmlAutomataIsDeterminist
xmlAutomataNewAllTrans
xmlAutomataNewCountTrans
xmlAutomataNewCountTrans2
xmlAutomataNewCountedTrans
xmlAutomataNewCounter
xmlAutomataNewCounterTrans
xmlAutomataNewEpsilon
xmlAutomataNewNegTrans
xmlAutomataNewOnceTrans
xmlAutomataNewOnceTrans2
xmlAutomataNewState
xmlAutomataNewTransition
xmlAutomataNewTransition2
xmlAutomataSetFinalState
xmlBoolToText
xmlBufferAdd
xmlBufferAddHead
xmlBufferCCat
xmlBufferCat
xmlBufferContent
xmlBufferCreate
xmlBufferCreateSize
xmlBufferCreateStatic
xmlBufferDump
xmlBufferEmpty
xmlBufferFree
xmlBufferGrow
xmlBufferLength
xmlBufferResize
xmlBufferSetAllocationScheme
xmlBufferShrink
xmlBufferWriteCHAR
xmlBufferWriteChar
xmlBufferWriteQuotedString
xmlBuildQName
xmlBuildRelativeURI
xmlBuildURI
xmlByteConsumed
xmlC14NDocDumpMemory
xmlC14NDocSave
xmlC14NDocSaveTo
xmlC14NExecute
xmlCanonicPath
xmlCatalogAdd
xmlCatalogAddLocal
xmlCatalogCleanup
xmlCatalogConvert
xmlCatalogDump
xmlCatalogFreeLocal
xmlCatalogGetDefaults
xmlCatalogGetPublic
xmlCatalogGetSystem
xmlCatalogIsEmpty
xmlCatalogLocalResolve
xmlCatalogLocalResolveURI
xmlCatalogRemove
xmlCatalogResolve
xmlCatalogResolvePublic
xmlCatalogResolveSystem
xmlCatalogResolveURI
xmlCatalogSetDebug
xmlCatalogSetDefaultPrefer
xmlCatalogSetDefaults
xmlCharEncCloseFunc
xmlCharEncFirstLine
xmlCharEncInFunc
xmlCharEncOutFunc
xmlCharInRange
xmlCharStrdup
xmlCharStrndup
xmlCheckFilename
xmlCheckHTTPInput
xmlCheckLanguageID
xmlCheckUTF8
xmlCheckVersion
xmlCleanupCharEncodingHandlers
xmlCleanupEncodingAliases
xmlCleanupGlobals
xmlCleanupInputCallbacks
xmlCleanupMemory
xmlCleanupOutputCallbacks
xmlCleanupParser
xmlCleanupPredefinedEntities
xmlCleanupThreads
xmlClearNodeInfoSeq
xmlClearParserCtxt
xmlConvertSGMLCatalog
xmlCopyAttributeTable
xmlCopyChar
xmlCopyCharMultiByte
xmlCopyDoc
xmlCopyDocElementContent
xmlCopyDtd
xmlCopyElementContent
xmlCopyElementTable
xmlCopyEntitiesTable
xmlCopyEnumeration
xmlCopyError
xmlCopyNamespace
xmlCopyNamespaceList
xmlCopyNode
xmlCopyNodeList
xmlCopyNotationTable
xmlCopyProp
xmlCopyPropList
xmlCreateDocParserCtxt
xmlCreateEntitiesTable
xmlCreateEntityParserCtxt
xmlCreateEnumeration
xmlCreateFileParserCtxt
xmlCreateIOParserCtxt
xmlCreateIntSubset
xmlCreateMemoryParserCtxt
xmlCreatePushParserCtxt
xmlCreateURI
xmlCreateURLParserCtxt
xmlCtxtGetLastError
xmlCtxtReadDoc
xmlCtxtReadFd
xmlCtxtReadFile
xmlCtxtReadIO
xmlCtxtReadMemory
xmlCtxtReset
xmlCtxtResetLastError
xmlCtxtResetPush
xmlCtxtUseOptions
xmlCurrentChar
xmlDOMWrapAdoptNode
xmlDOMWrapCloneNode
xmlDOMWrapFreeCtxt
xmlDOMWrapNewCtxt
xmlDOMWrapReconcileNamespaces
xmlDOMWrapRemoveNode
xmlDebugCheckDocument
xmlDebugDumpAttr
xmlDebugDumpAttrList
xmlDebugDumpDTD
xmlDebugDumpDocument
xmlDebugDumpDocumentHead
xmlDebugDumpEntities
xmlDebugDumpNode
xmlDebugDumpNodeList
xmlDebugDumpOneNode
xmlDebugDumpString
xmlDecodeEntities
xmlDefaultSAXHandlerInit
xmlDelEncodingAlias
xmlDeregisterNodeDefault
xmlDetectCharEncoding
xmlDictCleanup
xmlDictCreate
xmlDictCreateSub
xmlDictExists
xmlDictFree
xmlDictLookup
xmlDictOwns
xmlDictQLookup
xmlDictReference
xmlDictSize
xmlDocCopyNode
xmlDocCopyNodeList
xmlDocDump
xmlDocDumpFormatMemory
xmlDocDumpFormatMemoryEnc
xmlDocDumpMemory
xmlDocDumpMemoryEnc
xmlDocFormatDump
xmlDocGetRootElement
xmlDocSetRootElement
xmlDumpAttributeDecl
xmlDumpAttributeTable
xmlDumpElementDecl
xmlDumpElementTable
xmlDumpEntitiesTable
xmlDumpEntityDecl
xmlDumpNotationDecl
xmlDumpNotationTable
xmlElemDump
xmlEncodeEntities
xmlEncodeEntitiesReentrant
xmlEncodeSpecialChars
xmlErrMemory
xmlExpCtxtNbCons
xmlExpCtxtNbNodes
xmlExpDump
xmlExpExpDerive
xmlExpFree
xmlExpFreeCtxt
xmlExpGetLanguage
xmlExpGetStart
xmlExpIsNillable
xmlExpMaxToken
xmlExpNewAtom
xmlExpNewCtxt
xmlExpNewOr
xmlExpNewRange
xmlExpNewSeq
xmlExpParse
xmlExpRef
xmlExpStringDerive
xmlExpSubsume
xmlFileClose
xmlFileMatch
xmlFileOpen
xmlFileRead
xmlFindCharEncodingHandler
xmlFree
xmlFreeAttributeTable
xmlFreeAutomata
xmlFreeCatalog
xmlFreeDoc
xmlFreeDocElementContent
xmlFreeDtd
xmlFreeElementContent
xmlFreeElementTable
xmlFreeEntitiesTable
xmlFreeEnumeration
xmlFreeIDTable
xmlFreeInputStream
xmlFreeMutex
xmlFreeNode
xmlFreeNodeList
xmlFreeNotationTable
xmlFreeNs
xmlFreeNsList
xmlFreeParserCtxt
xmlFreeParserInputBuffer
xmlFreePattern
xmlFreePatternList
xmlFreeProp
xmlFreePropList
xmlFreeRMutex
xmlFreeRefTable
xmlFreeStreamCtxt
xmlFreeTextReader
xmlFreeTextWriter
xmlFreeURI
xmlFreeValidCtxt
xmlGcMemGet
xmlGcMemSetup
xmlGetBufferAllocationScheme
xmlGetCharEncodingHandler
xmlGetCharEncodingName
xmlGetCompressMode
xmlGetDocCompressMode
xmlGetDocEntity
xmlGetDtdAttrDesc
xmlGetDtdElementDesc
xmlGetDtdEntity
xmlGetDtdNotationDesc
xmlGetDtdQAttrDesc
xmlGetDtdQElementDesc
xmlGetEncodingAlias
xmlGetExternalEntityLoader
xmlGetFeature
xmlGetFeaturesList
xmlGetGlobalState
xmlGetID
xmlGetIntSubset
xmlGetLastChild
xmlGetLastError
xmlGetLineNo
xmlGetNoNsProp
xmlGetNodePath
xmlGetNsList
xmlGetNsProp
xmlGetParameterEntity
xmlGetPredefinedEntity
xmlGetProp
xmlGetRefs
xmlGetThreadId
xmlGetUTF8Char
xmlHandleEntity
xmlHasFeature
xmlHasNsProp
xmlHasProp
xmlHashAddEntry
xmlHashAddEntry2
xmlHashAddEntry3
xmlHashCopy
xmlHashCreate
xmlHashCreateDict
xmlHashFree
xmlHashLookup
xmlHashLookup2
xmlHashLookup3
xmlHashQLookup
xmlHashQLookup2
xmlHashQLookup3
xmlHashRemoveEntry
xmlHashRemoveEntry2
xmlHashRemoveEntry3
xmlHashScan
xmlHashScan3
xmlHashScanFull
xmlHashScanFull3
xmlHashSize
xmlHashUpdateEntry
xmlHashUpdateEntry2
xmlHashUpdateEntry3
xmlIOFTPClose
xmlIOFTPMatch
xmlIOFTPOpen
xmlIOFTPRead
xmlIOHTTPClose
xmlIOHTTPMatch
xmlIOHTTPOpen
xmlIOHTTPOpenW
xmlIOHTTPRead
xmlIOParseDTD
xmlInitCharEncodingHandlers
xmlInitGlobals
xmlInitMemory
xmlInitNodeInfoSeq
xmlInitParser
xmlInitParserCtxt
xmlInitThreads
xmlInitializeCatalog
xmlInitializeGlobalState

Sections

.text
Size: 765KB - Virtual size: 765KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 207KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GNU/licenses/COPYING.aspell
GNU/licenses/COPYING.astyle
GNU/licenses/COPYING.ctags
GNU/licenses/COPYING.iconv
GNU/licenses/libxml2.txt
GNU/src/source_code.txt
GNU/xmllint.exe
.exe windows:4 windows x86 arch:x86

f28c83d0da0f0a7fc71923012e273151

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libxml2

xmlStrndup
xmlFree
xmlStrcat
xmlStrdup
xmlMemFree
xmlMemUsed
xmlMemMalloc
xmlMemRealloc
xmlMemoryStrdup
__xmlGenericErrorContext
__xmlGenericError
xmlEncodeEntitiesReentrant
xmlFreeEnumeration
xmlFreeParserCtxt
xmlFreeDoc
xmlParseDocument
inputPush
xmlNewIOInputStream
xmlFreeParserInputBuffer
xmlNewParserCtxt
xmlSchemaFreeValidCtxt
xmlSchemaValidateStream
xmlSchemaSetValidErrors
xmlSchemaNewValidCtxt
xmlParserInputBufferCreateFilename
xmlStreamPop
xmlFreeStreamCtxt
xmlStreamPush
xmlTextReaderConstLocalName
xmlTextReaderConstNamespaceUri
xmlGetNodePath
xmlPatternMatch
xmlTextReaderCurrentNode
xmlTextReaderDepth
xmlTextReaderHasValue
xmlTextReaderConstValue
xmlTextReaderConstName
xmlTextReaderIsEmptyElement
xmlTextReaderNodeType
xmlFreeTextReader
xmlTextReaderIsValid
xmlTextReaderRead
xmlTextReaderSchemaValidate
xmlTextReaderRelaxNGValidate
xmlTextReaderSetParserProp
xmlPatternGetStreamCtxt
xmlPatterncompile
xmlReaderForFile
xmlReaderWalker
xmlDocGetRootElement
xmlDebugDumpEntities
xmlSchemaValidateDoc
xmlRelaxNGFreeValidCtxt
xmlRelaxNGValidateDoc
xmlRelaxNGSetValidErrors
xmlRelaxNGNewValidCtxt
xmlSchematronFreeValidCtxt
xmlSchematronValidateDoc
xmlSchematronNewValidCtxt
xmlValidateDtd
xmlParseDTD
xmlFreeValidCtxt
xmlValidateDocument
xmlNewValidCtxt
xmlDebugDumpDocument
xmlSaveClose
xmlSaveDoc
xmlSaveToFilename
xmlSaveToFd
xmlDocDump
xmlSaveFormatFile
xmlSaveFileEnc
xmlSaveFormatFileEnc
xmlSaveFile
xmlC14NDocDumpMemory
htmlDocDump
htmlSaveFileFormat
htmlSaveFile
xmlValidGetValidElements
xmlCopyDoc
xmlShell
xmlXPathOrderDocElems
xmlXIncludeProcessFlags
xmlFreeDtd
xmlUnlinkNode
xmlGetIntSubset
xmlReadFile
xmlParseFile
xmlCtxtReadFile
xmlCtxtReadIO
xmlReadIO
xmlReadFd
xmlParseChunk
xmlCtxtUseOptions
xmlCreatePushParserCtxt
htmlReadFile
htmlFreeParserCtxt
htmlParseChunk
htmlCreatePushParserCtxt
xmlDocSetRootElement
xmlNodeSetContent
xmlNewDocNode
xmlNewDoc
xmlHasFeature
__xmlParserVersion
xmlMemoryDump
xmlCleanupParser
xmlFreePattern
xmlRelaxNGCleanupTypes
xmlSchemaFree
xmlRelaxNGFree
xmlSchematronFree
xmlSchemaFreeParserCtxt
xmlSchemaParse
xmlSchemaSetParserErrors
xmlSchemaNewParserCtxt
xmlRelaxNGFreeParserCtxt
xmlRelaxNGParse
xmlRelaxNGSetParserErrors
xmlRelaxNGNewParserCtxt
xmlSchematronFreeParserCtxt
xmlSchematronParse
xmlSchematronNewParserCtxt
__xmlDoValidityCheckingDefaultValue
xmlSubstituteEntitiesDefault
__xmlLoadExtDtdDefaultValue
xmlLineNumbersDefault
xmlGetExternalEntityLoader
__xmlTreeIndentString
xmlDeregisterNodeDefault
xmlRegisterNodeDefault
xmlSAXDefaultVersion
xmlLoadCatalogs
xmlSetCompressMode
xmlPedanticParserDefault
__xmlGetWarningsDefaultValue
__xmlParserDebugEntities
xmlAddEncodingAlias
xmlMemSetup
xmlKeepBlanksDefault
xmlSetExternalEntityLoader
xmlNoNetExternalEntityLoader
xmlCheckVersion

msvcrt

fprintf
_iob
clock
vfprintf
_snprintf
_vsnprintf
malloc
fgets
fread
fclose
printf
exit
fopen
free
getenv
sscanf
_c_exit
_exit
_XcptFilter
_cexit
__initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_write

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
GNU/zlib1.dll
.dll windows:4 windows x86 arch:x86

7e3560e4dd2deaa398fa039458dd4b4b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

free
malloc
strerror
fflush
_errno
fopen
fread
fprintf
_vsnprintf
sprintf
ftell
fseek
fclose
clearerr
_fdopen
_initterm
_adjust_fdiv
fwrite
fputc

kernel32

DisableThreadLibraryCalls

Exports

Exports

adler32
compress
compress2
compressBound
crc32
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePrime
deflateReset
deflateSetDictionary
get_crc_table
gzclearerr
gzclose
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzungetc
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCopy
inflateEnd
inflateInit2_
inflateInit_
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UEDOS32.exe
.exe windows:5 windows x86 arch:x86

33be26173b3ecdfb049856b42791f98e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
WriteFile
ReadFile
ExitThread
ExitProcess
Sleep
GetExitCodeProcess
WaitForSingleObject
SetThreadPriority
CreateThread
CreateProcessA
CloseHandle
DuplicateHandle
GetCurrentProcess
CreatePipe
GetStdHandle
SetFilePointer
CreateFileA
GetWindowsDirectoryA
GetCommandLineA
GetVersion
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
HeapFree
GetModuleHandleW
GetProcAddress
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
RtlUnwind
HeapAlloc
HeapReAlloc
VirtualAlloc
LoadLibraryA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Uedit32.exe
.exe windows:5 windows x86 arch:x86

35e48a0289c467b762cd20838406148e

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16-07-2004 00:00

Not After

15-07-2014 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

69:2e:74:2c:35:89:a0:df:5b:b2:8c:88:b0:8e:ef:65
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

19-03-2008 00:00

Not After

22-04-2011 23:59

Subject

CN=IDM Computer Solutions\, Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IDM Computer Solutions\, Inc.,L=Hamilton,ST=Ohio,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

59:c7:ab:60:e7:a6:cc:94:c5:a4:73:d1:7f:c8:fb:05:e2:b6:e8:f5
Signer

Actual PE Digest

59:c7:ab:60:e7:a6:cc:94:c5:a4:73:d1:7f:c8:fb:05:e2:b6:e8:f5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Build\vs2008\ue_uestudio.dev\PrjOut\UE\release\Uedit32.pdb

Imports

uejs

JS_DefineProperties
JS_DefineObject
JS_NewObject
JS_AddRoot
JS_GetArrayLength
JS_SetElement
JS_DefineUCProperty
JS_DefineUCPropertyWithTinyId
JS_DefineUCFunction
JS_GetProperty
JS_PropertyStub
JS_ResolveStub
JS_ConvertStub
JS_EnumerateStub
JS_GetParent
JS_IsArrayObject
JS_GetUCProperty
JS_GetStringBytes
JS_ValueToString
JS_GetStringChars
JS_DefineFunctions
JS_GetElement
JS_DefineProperty
JS_NewArrayObject
JS_SetParent
JS_InitStandardClasses
JS_NewContext
JS_Init
JS_ExecuteScript
JS_ShutDown
JS_Finish
JS_DestroyContext
JS_CompileUCScript
JS_CompileFile
JS_DestroyScript
JS_CStringsAreUTF8
JS_SetVersion
JS_SetOptions
JS_SetOperationCallback
JS_SetErrorReporter
JS_FinalizeStub
JS_DeleteElement
JS_SetArrayLength
JS_GetStringLength
JS_NewNumberValue
JS_NewUCStringCopyN
JS_NewStringCopyN
JS_SetPrivate
JS_GetClass
JS_ReportError
JS_RemoveRoot
JS_GetPrivate
JS_TriggerAllOperationCallbacks

wininet

InternetOpenA
InternetReadFile
HttpQueryInfoA
InternetConnectA
HttpSendRequestA
InternetErrorDlg
HttpOpenRequestA
InternetCloseHandle

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
ImmSetCompositionWindow

ws2_32

inet_addr
WSAStartup
WSACleanup
gethostbyname
htons

mpr

WNetGetConnectionA
WNetGetConnectionW

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

secur32

GetUserNameExA

idm_tidylib

ord1037
ord1065
ord1014
ord1071
ord1076
ord1077
ord1078
ord2006
ord1002
ord1001
ord1042
ord1040

kernel32

GetVolumeInformationW
MoveFileA
GetDiskFreeSpaceExA
SetErrorMode
GetSystemDirectoryA
GetFileSizeEx
GetDriveTypeA
GetLogicalDriveStringsA
IsDBCSLeadByte
LocalLock
LocalUnlock
LocalAlloc
FlushFileBuffers
GetTempPathA
ExitThread
GetDateFormatA
GetLocalTime
MoveFileW
IsBadWritePtr
IsBadReadPtr
lstrcatA
GetPrivateProfileSectionA
WriteProcessMemory
GetCurrentProcess
IsBadStringPtrA
SetUnhandledExceptionFilter
GetFullPathNameW
SetProcessWorkingSetSize
SetFileTime
FreeResource
GetLongPathNameA
EnumResourceLanguagesA
CompareStringA
LoadLibraryExA
SystemTimeToFileTime
CompareFileTime
DuplicateHandle
GetCurrentThread
DeleteFileW
UnmapViewOfFile
GlobalMemoryStatus
GetDiskFreeSpaceA
MapViewOfFile
CreateFileMappingA
VirtualFree
VirtualAlloc
GlobalMemoryStatusEx
GetCPInfoExA
HeapFree
HeapAlloc
GetProcessHeap
QueryPerformanceCounter
QueryPerformanceFrequency
GetThreadTimes
lstrcmpW
GlobalFindAtomA
lstrcmpA
GetModuleFileNameW
SuspendThread
VirtualProtect
GetAtomNameA
GetStringTypeExA
GetThreadLocale
lstrcmpiA
LockFile
UnlockFile
GetFileAttributesExA
LocalFileTimeToFileTime
RaiseException
GlobalFlags
InterlockedExchange
ConvertDefaultLocale
SearchPathA
TlsGetValue
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetUserDefaultLCID
GetModuleHandleW
FindResourceExA
ExpandEnvironmentStringsA
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
PeekNamedPipe
GetFileType
GetSystemTimeAsFileTime
HeapReAlloc
CreateFileW
GetDriveTypeW
VirtualQuery
HeapSize
GetCommandLineA
GetStartupInfoA
SetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeW
CompareStringW
GetStdHandle
IsValidCodePage
HeapCreate
HeapDestroy
FatalAppExitA
GetStringTypeA
SetHandleCount
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
IsValidLocale
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GlobalGetAtomNameA
InitializeCriticalSectionAndSpinCount
SetConsoleCtrlHandler
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
SetFilePointer
RemoveDirectoryA
_lclose
GetFileSize
OpenFile
LocalSize
GetOEMCP
IsDBCSLeadByteEx
GetCommandLineW
LocalFree
CreateSemaphoreA
GetVersion
FindNextFileW
GetFileAttributesA
ReleaseSemaphore
CreateThread
SetThreadPriority
GetShortPathNameW
GetShortPathNameA
GetComputerNameA
GetTempFileNameA
CreateProcessA
CopyFileA
WinExec
GetProfileStringA
GetProfileIntA
GetExitCodeProcess
GlobalAddAtomA
GlobalDeleteAtom
WritePrivateProfileSectionA
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
lstrcpyA
GetCPInfo
GetFileInformationByHandle
SetCurrentDirectoryW
GetCurrentDirectoryW
FindFirstFileW
GetCurrentProcessId
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
FindClose
GetWindowsDirectoryA
GetSystemTime
ExitProcess
SetFileAttributesA
FileTimeToSystemTime
GetACP
EnumSystemCodePagesA
EnumSystemLocalesA
GetCurrentThreadId
SetEvent
Sleep
GetTickCount
ResetEvent
CreateEventA
WaitForMultipleObjects
GlobalReAlloc
lstrlenW
TerminateThread
ReleaseMutex
InitializeCriticalSection
ResumeThread
WaitForSingleObject
GlobalSize
GlobalAlloc
GetModuleHandleA
ReadFile
WriteFile
CreateFileA
GetFileTime
GetLocaleInfoA
SetLastError
FreeLibrary
CreateDirectoryA
DeleteFileA
GetCurrentDirectoryA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
MultiByteToWideChar
MulDiv
GetPrivateProfileStringA
lstrlenA
WritePrivateProfileStringA
GetPrivateProfileIntA
GlobalLock
GlobalUnlock
SetCurrentDirectoryA
GetLastError
SetEnvironmentVariableA
GetModuleFileNameA
GetEnvironmentVariableA
LoadLibraryA
FormatMessageA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GlobalFree
CloseHandle
CreateMutexA
GetProcAddress
GetVersionExA
GetSystemInfo
CreatePipe
InterlockedCompareExchange
InterlockedDecrement
GetEnvironmentStringsW
InterlockedIncrement
GetStringTypeExW
GetTimeFormatA

user32

AttachThreadInput
RemovePropA
CharLowerBuffA
CharLowerBuffW
GetWindowPlacement
SetWindowPlacement
GetMessageTime
GetLastActivePopup
GetWindowTextLengthA
SendDlgItemMessageA
EnableMenuItem
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckDlgButton
CheckRadioButton
GetDlgItemInt
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
IsDialogMessageA
ScrollWindowEx
EndDialog
CreateDialogIndirectParamA
GetKeyNameTextA
TabbedTextOutA
DrawTextExA
GrayStringA
UnionRect
TranslateAcceleratorA
InsertMenuItemA
GetMenuBarInfo
ReuseDDElParam
UnpackDDElParam
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
MsgWaitForMultipleObjects
PostQuitMessage
ShowOwnedPopups
GetNextDlgGroupItem
CopyIcon
SetWindowContextHelpId
NotifyWinEvent
DrawEdge
IsClipboardFormatAvailable
IsMenu
InSendMessage
CopyAcceleratorTableA
UpdateLayeredWindow
GetMenuDefaultItem
SubtractRect
InvalidateRgn
GetDCEx
ToAsciiEx
CreateAcceleratorTableA
SendNotifyMessageA
CharUpperBuffA
GetWindowRgn
MapVirtualKeyExA
GetPropA
EnumClipboardFormats
CopyImage
GetIconInfo
DrawIconEx
GetWindowDC
CreateMenu
SetWindowTextW
GetDlgItemTextA
FindWindowExA
TrackPopupMenuEx
MessageBoxW
GetTabbedTextExtentW
GetScrollPos
ShowScrollBar
SetWindowRgn
SystemParametersInfoA
WindowFromDC
GetAsyncKeyState
SetKeyboardState
SetMenuItemInfoA
GetMenuInfo
DestroyAcceleratorTable
WinHelpA
GetAncestor
CallWindowProcA
MapVirtualKeyA
DestroyIcon
SetMenu
GetActiveWindow
IsWindowEnabled
DestroyMenu
GetMenuStringA
AdjustWindowRectEx
GetKeyboardState
ToAscii
GetTopWindow
SetMenuInfo
ChildWindowFromPointEx
IsZoomed
DrawMenuBar
GetMenuState
SetMenuDefaultItem
CheckMenuItem
SendMessageW
SetWindowTextA
DrawStateA
FlashWindowEx
ShowWindow
CharUpperW
CharLowerW
IsCharAlphaW
IsCharLowerW
IsCharUpperW
CharUpperA
CharLowerA
IsCharAlphaA
IsCharLowerA
IsCharUpperA
RemoveMenu
ModifyMenuA
GetMenuItemID
OemToCharBuffA
DefWindowProcW
GetUpdateRect
BeginPaint
EndPaint
GetClassLongA
GetKeyboardLayout
TrackMouseEvent
GetClipboardData
GetTabbedTextExtentA
GetScrollRange
GetScrollInfo
SetScrollPos
SetCaretPos
HideCaret
ScrollWindow
CharNextA
SetClassLongA
DestroyCaret
CreateCaret
ShowCaret
SetWindowLongW
GetWindowLongW
GetCaretPos
RegisterWindowMessageA
SetWindowsHookExA
FindWindowA
RegisterClipboardFormatA
TileWindows
GetDoubleClickTime
SetTimer
LoadMenuA
LoadAcceleratorsA
DispatchMessageW
GetMessageW
SetClipboardData
GetForegroundWindow
KillTimer
UnhookWindowsHookEx
GetWindowThreadProcessId
CallNextHookEx
SetForegroundWindow
SetActiveWindow
LockWindowUpdate
GetMenuItemCount
DeleteMenu
SetRect
IsRectEmpty
OffsetRect
SetRectEmpty
BeginDeferWindowPos
EndDeferWindowPos
GetDlgCtrlID
GetSysColorBrush
IsIconic
DrawIcon
GetSubMenu
ValidateRect
SetCursorPos
ReleaseCapture
DrawFrameControl
FillRect
DestroyCursor
SetCursor
ShowCursor
LoadCursorA
SetCapture
GetCapture
BringWindowToTop
RegisterClassA
MessageBoxA
DefWindowProcA
UnregisterClassA
GetMessageA
SetScrollRange
SetScrollInfo
PostThreadMessageA
TrackPopupMenu
EmptyClipboard
CloseClipboard
DrawTextA
OpenClipboard
GetDesktopWindow
PostMessageA
LoadBitmapA
InflateRect
GetCursorPos
LoadImageA
WindowFromPoint
IsWindowVisible
ClientToScreen
InsertMenuA
AppendMenuA
CreatePopupMenu
EqualRect
PtInRect
UpdateWindow
PeekMessageA
TranslateMessage
DispatchMessageA
WaitMessage
GetSysColor
MapDialogRect
GetDialogBaseUnits
GetDlgItem
SetParent
RedrawWindow
ReleaseDC
GetDC
DrawFocusRect
wsprintfA
GetWindowTextA
GetMenu
GetWindow
DestroyWindow
CreateWindowExA
SetWindowPos
GetClassNameA
GetWindowLongA
SetFocus
IsWindowUnicode
IsWindow
GetFocus
IsChild
GetParent
GetSystemMetrics
LoadIconA
GetKeyState
SetWindowLongA
InvalidateRect
CopyRect
GetWindowRect
ScreenToClient
GetClientRect
MoveWindow
SendMessageA
EnableWindow
LoadMenuIndirectA
EnumChildWindows
GetNextDlgTabItem
DrawTextW
CreateWindowExW
GetClassInfoExA
GetMessagePos
GetMenuItemInfoA
MapWindowPoints
GetSystemMenu
FrameRect
IntersectRect
GetClassInfoA
MessageBeep
DeferWindowPos
CharToOemBuffA
SetPropA
LoadStringA
LoadStringW
EnableScrollBar

gdi32

ExcludeClipRect
CopyMetaFileA
CreateDCA
GetDCOrgEx
CreateBitmap
SaveDC
RestoreDC
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
IntersectClipRect
OffsetClipRgn
SetTextAlign
SetTextJustification
GetTextCharsetInfo
GetClipRgn
DeleteDC
TextOutA
Polygon
CreatePolygonRgn
CreateRectRgnIndirect
GetNearestColor
SetPixelV
CreateDIBSection
ExtCreateRegion
CombineRgn
DPtoLP
CreateBrushIndirect
PatBlt
GetClipBox
SetTextCharacterExtra
ScaleWindowExtEx
GetCurrentPositionEx
ArcTo
PolyDraw
CreateRectRgn
PolyBezierTo
Rectangle
CreateDIBPatternBrushPt
CreatePatternBrush
SelectPalette
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
CreateHatchBrush
SetRectRgn
GetMapMode
CreateDIBitmap
EnumFontFamiliesA
CreateRoundRectRgn
CreateEllipticRgn
Ellipse
GetViewportOrgEx
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
Escape
LPtoDP
CreateFontA
StretchDIBits
SetDIBColorTable
GetDIBits
RealizePalette
StretchBlt
SetPixel
OffsetRgn
GetRgnBox
EnumFontFamiliesExA
CreatePalette
GetPaletteEntries
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceA
GetWindowOrgEx
CreateMetaFileA
CloseMetaFile
DeleteMetaFile
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
RectVisible
PtVisible
StartDocA
GetWindowExtEx
MoveToEx
LineTo
PolylineTo
SelectClipRgn
GetViewportExtEx
SelectClipPath
SetColorAdjustment
SetArcDirection
SetMapperFlags
Polyline
GetCharWidth32W
GetCharacterPlacementW
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
ExtCreatePen
CreatePenIndirect
ExtTextOutA
GetCharWidthA
ExtTextOutW
GetTextExtentPoint32W
GetTextExtentPointA
CreatePen
GetCharWidth32A
GetCharacterPlacementA
GetBkMode
SetBkMode
CreateSolidBrush
GetPixel
SelectObject
GetCurrentObject
RoundRect
SetTextColor
SetBkColor
GetStockObject
GetTextMetricsA
GetTextExtentPoint32A
GetTextColor
OffsetViewportOrgEx
GetBkColor
GetDeviceCaps
GetObjectA
CreateFontIndirectA
ExtSelectClipRgn
DeleteObject
SetViewportOrgEx

msimg32

TransparentBlt
GradientFill
AlphaBlend

comdlg32

CommDlgExtendedError
GetOpenFileNameA
GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
GetJobA
ClosePrinter

advapi32

RegQueryValueA
SetFileSecurityA
RegOpenKeyA
RegSetValueA
CryptGenRandom
CryptAcquireContextA
CryptReleaseContext
LookupAccountNameA
GetFileSecurityA
GetSecurityInfo
OpenProcessToken
GetTokenInformation
CopySid
BuildTrusteeWithSidA
GetEffectiveRightsFromAclA
RegGetKeySecurity
GetSecurityDescriptorDacl
GetSecurityDescriptorOwner
GetAclInformation
GetLengthSid
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
RegEnumKeyExA
IsTextUnicode
GetUserNameA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegEnumKeyA
RegCreateKeyA

shell32

DragFinish
Shell_NotifyIconA
CommandLineToArgvW
SHGetFolderPathA
SHGetDesktopFolder
SHGetPathFromIDListW
DragAcceptFiles
DragQueryFileW
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
SHChangeNotify
SHCreateDirectoryExA
SHAppBarMessage
DragQueryFileA
SHFileOperationA
ShellExecuteA
SHGetFileInfoA
ShellExecuteExA
SHBindToParent
SHGetSpecialFolderLocation
ExtractIconA
SHGetFileInfoW

comctl32

ImageList_GetIconSize
ImageList_DrawEx
ImageList_Remove
ImageList_AddMasked
InitCommonControlsEx
ImageList_Duplicate
ImageList_Draw
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Create
ImageList_Destroy

shlwapi

PathRemoveExtensionA
PathFindExtensionA
PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
SHAutoComplete
SHDeleteValueA
PathIsRelativeA
StrStrIA
PathCompactPathExW
PathMatchSpecA
PathRelativePathToA
SHDeleteKeyA
PathFindFileNameA

oledlg

ord8

ole32

OleRegEnumVerbs
OleRegGetMiscStatus
CoDisconnectObject
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CreateStreamOnHGlobal
CoFreeUnusedLibraries
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard
CLSIDFromProgID
CreateFileMoniker
StgOpenStorage
StgIsStorageFile
CoRegisterClassObject
CoRevokeClassObject
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
OleLockRunning
OleSetMenuDescriptor
DoDragDrop
OleSave
WriteClassStm
OleSaveToStream
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreate
OleLoad
GetHGlobalFromILockBytes
OleSetContainedObject
OleCreateFromFile
OleCreateLinkToFile
OleGetIconOfClass
CreateItemMoniker
CreateGenericComposite
OleIsRunning
GetRunningObjectTable
CoGetMalloc
CreateOleAdviseHolder
CreateDataAdviseHolder
OleQueryCreateFromData
OleQueryLinkFromData
CLSIDFromString
StringFromGUID2
CoInitializeEx
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CreateBindCtx
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CoCreateGuid
OleInitialize
OleUninitialize
CoTaskMemFree
CoCreateInstance
CoInitialize
CoUninitialize
StgCreateDocfile
OleRun

oleaut32

SetErrorInfo
RegisterTypeLi
OleCreateFontIndirect
VarBstrFromDate
VarCyFromStr
LoadTypeLi
GetErrorInfo
VarBstrCmp
VarDecFromStr
VarBstrFromDec
VarBstrFromCy
VarDateFromStr
SysReAllocStringLen
SystemTimeToVariantTime
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SysFreeString
VariantClear
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreateVector
SysAllocString
VariantInit
VariantTimeToSystemTime
VariantChangeType
SysStringLen
SysAllocStringByteLen
SysStringByteLen
CreateErrorInfo
VariantCopy
DispCallFunc
LoadRegTypeLi
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayRedim
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCopy
SafeArrayGetElement

winmm

PlaySoundA

gdiplus

GdipGetImageGraphicsContext
GdipAlloc
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipCloneImage
GdipFree
GdipDrawImageI
GdipDeleteGraphics
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM

rpcrt4

RpcStringFreeA
UuidCreate
UuidToStringA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 7.5MB - Virtual size: 7.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 991KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uesapcn
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
dbghelp.dll
.dll windows:4 windows x86 arch:x86

23dbfe3112241abaff4c3d3dfa2c4867

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

dbghelp.pdb

Imports

msvcrt

??3@YAXPAX@Z
_XcptFilter
_adjust_fdiv
_amsg_exit
_initterm
_fileno
_iob
_isatty
_write
__pioinfo
__badioinfo
_lseek
wctomb
_snprintf
__mb_cur_max
mbtowc
isleadbyte
_ismbblead
_errno
iswprint
_vsnwprintf
memmove
__CxxFrameHandler
iswspace
calloc
_itoa
towlower
tolower
_wcslwr
time
_wctime
atol
wcsncpy
sprintf
fclose
_winminor
_winmajor
_osver
_wsplitpath
__unDName
isdigit
strncpy
_CxxThrowException
bsearch
_snwprintf
__dllonexit
fseek
_wfopen
fopen
wcstol
strchr
wcsrchr
_wmakepath
_fullpath
_wfullpath
_mbsicmp
_access
_splitpath
_wcsdup
_fsopen
_wfsopen
_get_osfhandle
_read
_lseeki64
_chsize
_close
_open_osfhandle
_wsopen
_sopen
wprintf
ftell
_wgetenv
_memicmp
_mbscmp
?terminate@@YAXXZ
??1type_info@@UAE@XZ
strncmp
_ltoa
_wcsnicmp
_stricmp
_purecall
isspace
ctime
malloc
_strlwr
free
strstr
_except_handler3
memcpy
_wcsicmp
qsort
wcschr
wcsstr
wcsncmp
_onexit
fread
iswxdigit
memset
??2@YAPAXI@Z

kernel32

LocalFree
InterlockedIncrement
InterlockedDecrement
LCMapStringA
SetFileAttributesA
CopyFileA
InitializeCriticalSectionAndSpinCount
DeleteFileA
DeviceIoControl
GetFileType
ExpandEnvironmentStringsA
MapViewOfFileEx
FlushViewOfFile
InterlockedExchange
GetSystemDirectoryA
GetWindowsDirectoryA
CompareStringA
GetModuleFileNameA
GetThreadSelectorEntry
CreateThread
TerminateThread
VirtualQueryEx
GetPriorityClass
GetThreadPriority
GetThreadTimes
GetThreadContext
ResumeThread
SuspendThread
GetSystemInfo
Sleep
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FindClose
SetLastError
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
CloseHandle
ReadFile
GetFileSize
CreateFileA
GetLastError
TlsSetValue
TlsGetValue
TlsAlloc
TlsFree
HeapDestroy
FreeLibrary
DeleteCriticalSection
HeapCreate
InitializeCriticalSection
GetVersionExA
HeapReAlloc
HeapAlloc
HeapFree
IsDBCSLeadByte
SetFilePointer
GetCurrentProcess
UnmapViewOfFile
CreateDirectoryA
VirtualProtect
VirtualAlloc
DuplicateHandle
MapViewOfFile
CreateFileMappingA
GetModuleHandleA
OpenProcess
GetCurrentProcessId
VirtualFree
OutputDebugStringA
WriteFile
ReadProcessMemory
SetErrorMode
GetFileAttributesA
GetProcessHeap
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetSystemTimeAsFileTime
TerminateProcess
LoadLibraryA

advapi32

CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

rpcrt4

UuidCreate

Exports

Exports

DbgHelpCreateUserDump
DbgHelpCreateUserDumpW
EnumDirTree
EnumDirTreeW
EnumerateLoadedModules
EnumerateLoadedModules64
EnumerateLoadedModulesW64
ExtensionApiVersion
FindDebugInfoFile
FindDebugInfoFileEx
FindExecutableImage
FindExecutableImageEx
FindExecutableImageExW
FindFileInPath
FindFileInSearchPath
GetTimestampForLoadedLibrary
ImageDirectoryEntryToData
ImageDirectoryEntryToDataEx
ImageNtHeader
ImageRvaToSection
ImageRvaToVa
ImagehlpApiVersion
ImagehlpApiVersionEx
MakeSureDirectoryPathExists
MapDebugInformation
MiniDumpReadDumpStream
MiniDumpWriteDump
SearchTreeForFile
SearchTreeForFileW
StackWalk
StackWalk64
SymAddSymbol
SymAddSymbolW
SymCleanup
SymDeleteSymbol
SymDeleteSymbolW
SymEnumLines
SymEnumLinesW
SymEnumProcesses
SymEnumSourceFiles
SymEnumSourceFilesW
SymEnumSourceLines
SymEnumSourceLinesW
SymEnumSym
SymEnumSymbols
SymEnumSymbolsForAddr
SymEnumSymbolsForAddrW
SymEnumSymbolsW
SymEnumTypes
SymEnumTypesW
SymEnumerateModules
SymEnumerateModules64
SymEnumerateModulesW64
SymEnumerateSymbols
SymEnumerateSymbols64
SymEnumerateSymbolsW
SymEnumerateSymbolsW64
SymFindFileInPath
SymFindFileInPathW
SymFromAddr
SymFromAddrW
SymFromIndex
SymFromIndexW
SymFromName
SymFromNameW
SymFromToken
SymFromTokenW
SymFunctionTableAccess
SymFunctionTableAccess64
SymGetFileLineOffsets64
SymGetHomeDirectory
SymGetHomeDirectoryW
SymGetLineFromAddr
SymGetLineFromAddr64
SymGetLineFromAddrW64
SymGetLineFromName
SymGetLineFromName64
SymGetLineFromNameW64
SymGetLineNext
SymGetLineNext64
SymGetLineNextW64
SymGetLinePrev
SymGetLinePrev64
SymGetLinePrevW64
SymGetModuleBase
SymGetModuleBase64
SymGetModuleInfo
SymGetModuleInfo64
SymGetModuleInfoW
SymGetModuleInfoW64
SymGetOmapBlockBase
SymGetOptions
SymGetScope
SymGetScopeW
SymGetSearchPath
SymGetSearchPathW
SymGetSourceFile
SymGetSourceFileFromToken
SymGetSourceFileFromTokenW
SymGetSourceFileToken
SymGetSourceFileTokenW
SymGetSourceFileW
SymGetSourceVarFromToken
SymGetSourceVarFromTokenW
SymGetSymFromAddr
SymGetSymFromAddr64
SymGetSymFromName
SymGetSymFromName64
SymGetSymNext
SymGetSymNext64
SymGetSymPrev
SymGetSymPrev64
SymGetSymbolFile
SymGetSymbolFileW
SymGetTypeFromName
SymGetTypeFromNameW
SymGetTypeInfo
SymGetTypeInfoEx
SymInitialize
SymInitializeW
SymLoadModule
SymLoadModule64
SymLoadModuleEx
SymLoadModuleExW
SymMatchFileName
SymMatchFileNameW
SymMatchString
SymMatchStringA
SymMatchStringW
SymNext
SymNextW
SymPrev
SymPrevW
SymRefreshModuleList
SymRegisterCallback
SymRegisterCallback64
SymRegisterCallbackW64
SymRegisterFunctionEntryCallback
SymRegisterFunctionEntryCallback64
SymSearch
SymSearchW
SymSetContext
SymSetHomeDirectory
SymSetHomeDirectoryW
SymSetOptions
SymSetParentWindow
SymSetSearchPath
SymSetSearchPathW
SymSrvDeltaName
SymSrvDeltaNameW
SymSrvGetFileIndexString
SymSrvGetFileIndexStringW
SymSrvGetFileIndexes
SymSrvGetFileIndexesW
SymSrvGetSupplement
SymSrvGetSupplementW
SymSrvIsStore
SymSrvIsStoreW
SymSrvStoreFile
SymSrvStoreFileW
SymSrvStoreSupplement
SymSrvStoreSupplementW
SymUnDName
SymUnDName64
SymUnloadModule
SymUnloadModule64
UnDecorateSymbolName
UnDecorateSymbolNameW
UnmapDebugInformation
WinDbgExtensionDllInit
block
dbghelp
dh
fptr
homedir
lmi
lminfo
omap
srcfiles
stack_force_ebp
stackdbg
sym
symsrv
vc7fpo

Sections

.text
Size: 938KB - Virtual size: 937KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
extras/images/bg-repeat.gif
.gif
extras/images/footer.gif
.gif
extras/images/header.gif
.gif
extras/images/uc_icon.gif
.gif
extras/images/ue3_icon.gif
.gif
extras/images/ue_icon.gif
.gif
extras/images/ues_icon.gif
.gif
extras/images/us_icon.gif
.gif
extras/style.css
extras/ues_ad.html
.xml
idm_tidylib.dll
.dll windows:5 windows x86 arch:x86

aa6e830c76cda9d729bae71f500ade03

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MapViewOfFile
UnmapViewOfFile
CloseHandle
GetSystemInfo
CreateFileMappingA
GetFileSizeEx
GetFileTime
CreateFileA
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetLastError
HeapReAlloc
HeapFree
GetFileAttributesA
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetCurrentThreadId
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
WriteFile
GetStdHandle
GetModuleFileNameA
DeleteCriticalSection
LoadLibraryA
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetStartupInfoA
VirtualFree
VirtualAlloc
HeapCreate
HeapDestroy
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
WideCharToMultiByte
RtlUnwind
SetStdHandle
GetSystemTimeAsFileTime
GetConsoleCP
GetConsoleMode
FlushFileBuffers
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
HeapSize
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
SetFilePointer
CompareStringA
CompareStringW
SetEnvironmentVariableA
ReadFile
GetTimeZoneInformation
SetEndOfFile
GetProcessHeap
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW

Exports

Exports

tidyAccessWarningCount
tidyAttrFirst
tidyAttrGetABBR
tidyAttrGetALINK
tidyAttrGetALT
tidyAttrGetBGCOLOR
tidyAttrGetById
tidyAttrGetCHECKED
tidyAttrGetCOLSPAN
tidyAttrGetCONTENT
tidyAttrGetDATAFLD
tidyAttrGetFOR
tidyAttrGetHEIGHT
tidyAttrGetHREF
tidyAttrGetHTTP_EQUIV
tidyAttrGetID
tidyAttrGetISMAP
tidyAttrGetId
tidyAttrGetLANG
tidyAttrGetLANGUAGE
tidyAttrGetLINK
tidyAttrGetLONGDESC
tidyAttrGetNAME
tidyAttrGetOnBLUR
tidyAttrGetOnCLICK
tidyAttrGetOnFOCUS
tidyAttrGetOnKEYDOWN
tidyAttrGetOnKEYPRESS
tidyAttrGetOnKEYUP
tidyAttrGetOnMOUSEDOWN
tidyAttrGetOnMOUSEMOVE
tidyAttrGetOnMOUSEOUT
tidyAttrGetOnMOUSEOVER
tidyAttrGetOnMOUSEUP
tidyAttrGetREL
tidyAttrGetROWSPAN
tidyAttrGetSELECTED
tidyAttrGetSRC
tidyAttrGetSTYLE
tidyAttrGetSUMMARY
tidyAttrGetTARGET
tidyAttrGetTEXT
tidyAttrGetTITLE
tidyAttrGetTYPE
tidyAttrGetUSEMAP
tidyAttrGetVALUE
tidyAttrGetVLINK
tidyAttrGetWIDTH
tidyAttrGetXMLNS
tidyAttrIsABBR
tidyAttrIsALINK
tidyAttrIsALT
tidyAttrIsBGCOLOR
tidyAttrIsCHECKED
tidyAttrIsCOLSPAN
tidyAttrIsCONTENT
tidyAttrIsDATAFLD
tidyAttrIsEvent
tidyAttrIsFOR
tidyAttrIsHEIGHT
tidyAttrIsHREF
tidyAttrIsHTTP_EQUIV
tidyAttrIsID
tidyAttrIsISMAP
tidyAttrIsLANG
tidyAttrIsLANGUAGE
tidyAttrIsLINK
tidyAttrIsLONGDESC
tidyAttrIsNAME
tidyAttrIsOnBLUR
tidyAttrIsOnCLICK
tidyAttrIsOnFOCUS
tidyAttrIsOnKEYDOWN
tidyAttrIsOnKEYPRESS
tidyAttrIsOnKEYUP
tidyAttrIsOnMOUSEDOWN
tidyAttrIsOnMOUSEMOVE
tidyAttrIsOnMOUSEOUT
tidyAttrIsOnMOUSEOVER
tidyAttrIsOnMOUSEUP
tidyAttrIsProp
tidyAttrIsREL
tidyAttrIsROWSPAN
tidyAttrIsSELECTED
tidyAttrIsSRC
tidyAttrIsSTYLE
tidyAttrIsSUMMARY
tidyAttrIsTARGET
tidyAttrIsTEXT
tidyAttrIsTITLE
tidyAttrIsTYPE
tidyAttrIsUSEMAP
tidyAttrIsVALUE
tidyAttrIsVLINK
tidyAttrIsWIDTH
tidyAttrIsXMLNS
tidyAttrName
tidyAttrNext
tidyAttrValue
tidyBufAlloc
tidyBufAllocWithAllocator
tidyBufAppend
tidyBufAttach
tidyBufCheckAlloc
tidyBufClear
tidyBufDetach
tidyBufEndOfInput
tidyBufFree
tidyBufGetByte
tidyBufInit
tidyBufInitWithAllocator
tidyBufPopByte
tidyBufPutByte
tidyBufUngetByte
tidyCleanAndRepair
tidyConfigErrorCount
tidyCreate
tidyCreateWithAllocator
tidyDetectedGenericXml
tidyDetectedHtmlVersion
tidyDetectedXhtml
tidyErrorCount
tidyErrorSummary
tidyFileExists
tidyGeneralInfo
tidyGetAppData
tidyGetBody
tidyGetByte
tidyGetChild
tidyGetHead
tidyGetHtml
tidyGetNext
tidyGetNextOption
tidyGetOption
tidyGetOptionByName
tidyGetOptionList
tidyGetParent
tidyGetPrev
tidyGetRoot
tidyInitInputBuffer
tidyInitOutputBuffer
tidyInitSink
tidyInitSource
tidyIsEOF
tidyLoadConfig
tidyLoadConfigEnc
tidyNodeColumn
tidyNodeGetId
tidyNodeGetName
tidyNodeGetText
tidyNodeGetType
tidyNodeGetValue
tidyNodeHasText
tidyNodeIsA
tidyNodeIsADDRESS
tidyNodeIsAPPLET
tidyNodeIsAREA
tidyNodeIsB
tidyNodeIsBASE
tidyNodeIsBASEFONT
tidyNodeIsBIG
tidyNodeIsBLINK
tidyNodeIsBLOCKQUOTE
tidyNodeIsBODY
tidyNodeIsBR
tidyNodeIsCAPTION
tidyNodeIsCENTER
tidyNodeIsCOL
tidyNodeIsCOLGROUP
tidyNodeIsDD
tidyNodeIsDIR
tidyNodeIsDIV
tidyNodeIsDL
tidyNodeIsDT
tidyNodeIsEM
tidyNodeIsEMBED
tidyNodeIsFONT
tidyNodeIsFORM
tidyNodeIsFRAME
tidyNodeIsFRAMESET
tidyNodeIsH1
tidyNodeIsH2
tidyNodeIsH3
tidyNodeIsH4
tidyNodeIsH5
tidyNodeIsH6
tidyNodeIsHEAD
tidyNodeIsHR
tidyNodeIsHTML
tidyNodeIsHeader
tidyNodeIsI
tidyNodeIsIFRAME
tidyNodeIsIMG
tidyNodeIsINPUT
tidyNodeIsISINDEX
tidyNodeIsLABEL
tidyNodeIsLAYER
tidyNodeIsLI
tidyNodeIsLINK
tidyNodeIsLISTING
tidyNodeIsMAP
tidyNodeIsMARQUEE
tidyNodeIsMENU
tidyNodeIsMETA
tidyNodeIsNOBR
tidyNodeIsNOFRAMES
tidyNodeIsNOSCRIPT
tidyNodeIsOBJECT
tidyNodeIsOL
tidyNodeIsOPTGROUP
tidyNodeIsOPTION
tidyNodeIsP
tidyNodeIsPARAM
tidyNodeIsPRE
tidyNodeIsProp
tidyNodeIsQ
tidyNodeIsS
tidyNodeIsSCRIPT
tidyNodeIsSELECT
tidyNodeIsSMALL
tidyNodeIsSPACER
tidyNodeIsSPAN
tidyNodeIsSTRIKE
tidyNodeIsSTRONG
tidyNodeIsSTYLE
tidyNodeIsTABLE
tidyNodeIsTD
tidyNodeIsTEXTAREA
tidyNodeIsTH
tidyNodeIsTITLE
tidyNodeIsTR
tidyNodeIsText
tidyNodeIsU
tidyNodeIsUL
tidyNodeIsWBR
tidyNodeIsXMP
tidyNodeLine
tidyOptCopyConfig
tidyOptDiffThanDefault
tidyOptDiffThanSnapshot
tidyOptGetBool
tidyOptGetCategory
tidyOptGetCurrPick
tidyOptGetDeclTagList
tidyOptGetDefault
tidyOptGetDefaultBool
tidyOptGetDefaultInt
tidyOptGetDoc
tidyOptGetDocLinksList
tidyOptGetEncName
tidyOptGetId
tidyOptGetIdForName
tidyOptGetInt
tidyOptGetName
tidyOptGetNextDeclTag
tidyOptGetNextDocLinks
tidyOptGetNextPick
tidyOptGetPickList
tidyOptGetType
tidyOptGetValue
tidyOptIsReadOnly
tidyOptParseValue
tidyOptResetAllToDefault
tidyOptResetToDefault
tidyOptResetToSnapshot
tidyOptSaveFile
tidyOptSaveSink
tidyOptSetBool
tidyOptSetInt
tidyOptSetValue
tidyOptSnapshot
tidyParseBuffer
tidyParseFile
tidyParseSource
tidyParseStdin
tidyParseString
tidyPutByte
tidyRelease
tidyReleaseDate
tidyRunDiagnostics
tidySaveBuffer
tidySaveFile
tidySaveSink
tidySaveStdout
tidySaveString
tidySetAppData
tidySetCharEncoding
tidySetErrorBuffer
tidySetErrorFile
tidySetErrorSink
tidySetFreeCall
tidySetInCharEncoding
tidySetMallocCall
tidySetOptionCallback
tidySetOutCharEncoding
tidySetPanicCall
tidySetReallocCall
tidySetReportFilter
tidyStatus
tidyUngetByte
tidyWarningCount

Sections

.text
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ipm/images/add_wordfile_icon.gif
.gif
ipm/images/best_value_arrow.gif
.gif
ipm/images/best_value_bg.gif
.gif
ipm/images/bonus.gif
.gif
ipm/images/bookmarks_icon.gif
.gif
ipm/images/browser_preview_icon.gif
.gif
ipm/images/button.gif
.gif
ipm/images/button_big.gif
.gif
ipm/images/clock_bg.png
.png
ipm/images/column_mode_icon.gif
.gif
ipm/images/encrypt.gif
.gif
ipm/images/environment_icon.gif
.gif
ipm/images/faq_icon.gif
.gif
ipm/images/find_dialog.gif
.gif
ipm/images/forums_icon.gif
.gif
ipm/images/ftp_dialog.gif
.gif
ipm/images/key_mapping.gif
.gif
ipm/images/link_local_remote.gif
.gif
ipm/images/lock-key_icon.gif
.gif
ipm/images/macro_icon.gif
.gif
ipm/images/powertip_icon.gif
.gif
ipm/images/progress_bar.gif
.gif
ipm/images/progress_bar_overlay.gif
.gif
ipm/images/projects_dialog.gif
.gif
ipm/images/reminder_clock_icon.gif
.gif
ipm/images/replace_in_files_icon.gif
.gif
ipm/images/scripting_icon.gif
.gif
ipm/images/search_favorites.gif
.gif
ipm/images/sort_icon.gif
.gif
ipm/images/spell_check.gif
.gif
ipm/images/style_builder.gif
.gif
ipm/images/support_icon.gif
.gif
ipm/images/tech_support_icon.gif
.gif
ipm/images/telnet.gif
.gif
ipm/images/templates.gif
.gif
ipm/images/uc_dialog.gif
.gif
ipm/images/uc_merge_icon.gif
.gif
ipm/images/ue_bg.png
.png
ipm/images/ue_icon.gif
.gif
ipm/images/ue_uc_box.gif
.gif
ipm/images/ue_uc_box_big.gif
.gif
ipm/images/uebox_big.gif
.gif
ipm/images/uebox_sm.gif
.gif
ipm/images/ues_icon.gif
.gif
ipm/images/versioned_backup.gif
.gif
ipm/messaging.js
.js
ipm/ngdefault.html
.html
ipm/style.css
ipm/vars.js
.js
qsg/images/ue_icon.gif
.gif
qsg/images/ue_rnd.ico
qsg/images/ues_icon.gif
.gif
qsg/qsg1.html
.html
qsg/qsg2.html
.html
qsg/qsg3.html
.html
qsg/qsg4.html
.html
qsg/style.css
qsg/ues.html
.html
scripts/header.js
.js
scripts/hello.js
scripts/stringvar.js
.js
taglist.uet
ucl.chm
.chm
ucl.exe
.exe windows:5 windows x86 arch:x86

437e4ab77a04a21d32a687d36a2809e5

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16-07-2004 00:00

Not After

15-07-2014 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

69:2e:74:2c:35:89:a0:df:5b:b2:8c:88:b0:8e:ef:65
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

19-03-2008 00:00

Not After

22-04-2011 23:59

Subject

CN=IDM Computer Solutions\, Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=IDM Computer Solutions\, Inc.,L=Hamilton,ST=Ohio,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

58:0e:6c:84:52:ae:b0:78:bd:86:a7:0e:35:d2:d0:73:e6:2d:5f:a6
Signer

Actual PE Digest

58:0e:6c:84:52:ae:b0:78:bd:86:a7:0e:35:d2:d0:73:e6:2d:5f:a6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathRemoveFileSpecW
PathFindExtensionA
StrStrIA

kernel32

HeapCreate
LCMapStringA
GetFileType
SetStdHandle
HeapSize
VirtualQuery
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
ExitProcess
GetDateFormatA
GetTimeFormatA
CreateThread
ExitThread
GetDriveTypeA
GetStartupInfoA
HeapReAlloc
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
HeapAlloc
HeapFree
SetErrorMode
FindResourceExA
GetFileSizeEx
LocalFileTimeToFileTime
GetFileAttributesExA
GetShortPathNameA
GetVolumeInformationA
UnlockFile
LockFile
FlushFileBuffers
GetStringTypeExA
MoveFileA
lstrcmpiA
SearchPathA
GlobalFlags
VirtualFree
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
LocalAlloc
VirtualProtect
SetFileTime
GlobalReAlloc
GetPrivateProfileIntA
GetProfileIntA
GetThreadLocale
RaiseException
ConvertDefaultLocale
EnumResourceLanguagesA
FileTimeToLocalFileTime
GlobalGetAtomNameA
GlobalFindAtomA
GlobalDeleteAtom
SuspendThread
SetThreadPriority
InterlockedDecrement
lstrcmpA
GlobalSize
LocalFree
GetEnvironmentStrings
SetHandleCount
QueryPerformanceCounter
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
WriteConsoleA
GetConsoleOutputCP
GetStdHandle
InterlockedIncrement
SetEnvironmentVariableA
GetProcessHeap
InterlockedExchange
CompareStringA
FormatMessageA
CreateProcessA
DeleteFileA
AllocConsole
GetLocaleInfoA
GetDiskFreeSpaceA
GetExitCodeThread
WriteFile
GetTempFileNameA
GlobalAddAtomA
CopyFileA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
ResetEvent
SetEndOfFile
ReadFile
SetFilePointer
GetOEMCP
GetACP
IsDBCSLeadByte
IsDBCSLeadByteEx
GetWindowsDirectoryA
GlobalMemoryStatus
FindFirstFileA
FindNextFileA
FindClose
GetCurrentDirectoryA
lstrcpyA
SetCurrentDirectoryA
SetUnhandledExceptionFilter
IsBadStringPtrA
IsBadReadPtr
GetCurrentProcessId
WriteProcessMemory
GetSystemInfo
UnmapViewOfFile
GetFileSize
CreateFileMappingA
MapViewOfFile
GetTempPathA
MulDiv
GetModuleFileNameA
GetPrivateProfileSectionA
GetPrivateProfileStringA
WritePrivateProfileStringA
FreeLibrary
CreateDirectoryA
GetFileAttributesA
GetFullPathNameA
AreFileApisANSI
lstrcpynA
GetCurrentProcess
GetCurrentThread
DuplicateHandle
GetCurrentThreadId
CreateFileA
GetFileTime
FileTimeToSystemTime
Sleep
CreateEventA
CreateMutexA
CloseHandle
WaitForMultipleObjects
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ResumeThread
SystemTimeToFileTime
WaitForSingleObject
ReleaseMutex
SetEvent
GetTickCount
GetCommandLineA
FreeResource
GetLastError
SetLastError
GetModuleHandleA
LoadLibraryA
lstrlenA
GetVersion
GetVersionExA
FindResourceA
LoadResource
LockResource
SizeofResource
VirtualAlloc

advapi32

RegSetValueA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA

user32

RemoveMenu
CreateAcceleratorTableA
CopyAcceleratorTableA
CharUpperBuffA
GetClassInfoA
RegisterClassA
CreateWindowExA
DestroyWindow
CheckMenuItem
LoadAcceleratorsA
SetWindowPlacement
GetWindowPlacement
EnumDisplayMonitors
WaitForInputIdle
SystemParametersInfoA
GetMonitorInfoA
TranslateAcceleratorA
GetWindowRgn
IsCharLowerA
DestroyCursor
EnumChildWindows
GetNextDlgGroupItem
GetTabbedTextExtentA
SubtractRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
DefFrameProcA
GetDoubleClickTime
DestroyAcceleratorTable
FindWindowA
GetFocus
DrawFocusRect
GetAsyncKeyState
InflateRect
PtInRect
IsRectEmpty
SetScrollPos
GetKeyboardLayout
GetKeyboardState
MapVirtualKeyExA
ToAsciiEx
GetActiveWindow
KillTimer
SetTimer
GetCaretPos
GetComboBoxInfo
RegisterWindowMessageA
SetForegroundWindow
SetActiveWindow
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnableMenuItem
SetScrollRange
GetScrollRange
GetScrollPos
ShowScrollBar
LockWindowUpdate
CopyIcon
MessageBeep
DeferWindowPos
ReleaseCapture
DefWindowProcA
SetCapture
LoadMenuA
SetRectEmpty
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
LoadStringA
IsWindow
GetDlgCtrlID
GetDesktopWindow
GetClassInfoExA
LoadImageA
RegisterClassExA
IsWindowVisible
PostQuitMessage
IsMenu
GetCursorPos
GetKeyState
LoadCursorA
SetCursor
GetScrollInfo
InvalidateRect
UpdateWindow
ScreenToClient
ClientToScreen
GetWindowRect
GetParent
RedrawWindow
GetClientRect
FrameRect
OffsetRect
PeekMessageA
GetMessageA
PostMessageA
MessageBoxA
PostThreadMessageA
SendMessageA
GetMenuItemInfoA
GetSystemMetrics
DrawIconEx
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
DestroyIcon
ReleaseDC
GetDC
ModifyMenuA
InsertMenuA
GetSubMenu
GetMenuState
GetMenuItemID
GetMenuItemCount
AppendMenuA
DeleteMenu
CreatePopupMenu
CreateMenu
DrawEdge
LoadBitmapA
GetSysColorBrush
FillRect
GetSysColor
CopyRect
SetRect
SetCursorPos
SetMenuDefaultItem
GetMenuDefaultItem
UnregisterClassA
MapDialogRect
GetMenuStringA
UnhookWindowsHookEx
ValidateRect
DispatchMessageA
TranslateMessage
CallNextHookEx
SetWindowsHookExA
GetWindowDC
BeginPaint
EndPaint
DestroyMenu
IntersectRect
EqualRect
IsChild
SetFocus
GetSystemMenu
SetWindowRgn
GetCapture
WindowFromPoint
NotifyWinEvent
IsZoomed
IsIconic
CharUpperA
GetKeyNameTextA
MapVirtualKeyA
IsWindowEnabled
GetLastActivePopup
GetWindowThreadProcessId
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetWindow
SetWindowPos
GetMenu
SetScrollInfo
AdjustWindowRectEx
SetMenu
TrackPopupMenu
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
GetTopWindow
GetForegroundWindow
GetWindowTextA
GetWindowTextLengthA
GetClassNameA
GetClassLongA
WinHelpA
SendDlgItemMessageA
LoadIconA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckDlgButton
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
BringWindowToTop
InsertMenuItemA
ReuseDDElParam
UnpackDDElParam
DrawStateA
DrawFrameControl
GetIconInfo
CopyImage
SetParent
WaitMessage
SetClassLongA
UnionRect
GetUpdateRect
EnableScrollBar
UpdateLayeredWindow
DrawIcon
RegisterClipboardFormatA
ShowOwnedPopups

gdi32

GetNearestColor
GetSystemPaletteEntries
GetNearestPaletteIndex
GetBoundsRect
FrameRgn
PtInRegion
SetPaletteEntries
ExtFloodFill
EnumFontFamiliesExA
GetViewportOrgEx
GetPaletteEntries
StretchDIBits
CreateRectRgnIndirect
SetRectRgn
GetDCOrgEx
CreateEllipticRgn
Polygon
GetTextMetricsA
LPtoDP
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
RoundRect
SetDIBColorTable
GetDIBits
GetPolyFillMode
StretchBlt
SetPixel
CreateRoundRectRgn
EndPage
SetAbortProc
AbortDoc
EndDoc
OffsetRgn
GetRgnBox
GetWindowOrgEx
CreatePalette
GetTextAlign
GetTextFaceA
GetTextExtentPointA
SetPixelV
SetTextAlign
MoveToEx
GetROP2
GetObjectType
SelectPalette
CreateBitmap
CreatePatternBrush
RealizePalette
GetStretchBltMode
ExtSelectClipRgn
GetCurrentPositionEx
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
ResetDCA
Polyline
FillRgn
CombineRgn
CreatePolygonRgn
CreateRectRgn
SetTextColor
SetBkMode
DPtoLP
CreateFontA
GetStockObject
GetTextColor
GetBkColor
GetObjectA
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetTextExtentPoint32A
PatBlt
Rectangle
Ellipse
GetBkMode
GetDeviceCaps
CreateCompatibleBitmap
CreateFontIndirectA
CreateHatchBrush
CreatePen
CreateCompatibleDC
CreateDIBSection
SelectObject
BitBlt
CreateSolidBrush
DeleteObject
DeleteDC
SetViewportExtEx
OffsetViewportOrgEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetStretchBltMode
StartPage
SetViewportOrgEx
StartDocA
GetPixel
SetROP2
SetPolyFillMode
SetBkColor
RestoreDC
SaveDC
CreateDCA
CopyMetaFileA
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
GetCharWidthA

shell32

SHGetFileInfoA
DragQueryFileA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetPathFromIDListA
SHGetMalloc
ExtractIconA
SHAppBarMessage
DragFinish
ShellExecuteA

comdlg32

GetFileTitleA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter
EnumPrintersA
GetJobA

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_GetIconSize
ImageList_LoadImageA
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Create
ImageList_GetImageCount
ImageList_Destroy
ImageList_DrawEx

ole32

OleLockRunning
OleInitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleGetClipboard
CoInitializeEx
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CoCreateInstance
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CoInitialize
CoUninitialize
CoRevokeClassObject
CoRegisterMessageFilter
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleUninitialize

oleaut32

SysAllocString
VariantInit
VariantChangeType
SysStringLen
SysAllocStringLen
VariantClear
SysFreeString

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

gdiplus

GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdiplusStartup
GdiplusShutdown
GdipGetImageGraphicsContext
GdipDrawImageI
GdipCloneImage
GdipFree

winmm

PlaySoundA

oledlg

ord8

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 334KB - Virtual size: 333KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 65B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SHARED
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ucres.dll
.dll windows:5 windows x86 arch:x86

d0b0ab81bf0e4cd20070f6525db9fd67

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
HeapFree
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
WriteFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ue32ctmn.dll
.dll windows:5 windows x86 arch:x86

2e0fd637ca585a14b7ab8f63c5744ced

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAddAtomA
GetModuleFileNameA
GetModuleHandleA
lstrlenW
lstrcmpW
GetPrivateProfileIntA
GetLastError
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
FormatMessageA
LocalFree
Sleep
lstrcpyA
lstrlenA
lstrcpynW
lstrcpynA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
GetCurrentThreadId
GetCommandLineA
HeapFree
GetProcAddress
HeapAlloc
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
WriteFile

user32

ReleaseDC
RegisterWindowMessageA
FindWindowA
SendMessageA
MessageBoxA
SetForegroundWindow
GetSystemMetrics
LoadImageA
wsprintfA
InsertMenuA
SetMenuItemBitmaps
GetDC

gdi32

GetObjectA
GetDIBits
CreateCompatibleBitmap
SetDIBits
DeleteObject

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

shell32

DragQueryFileA
ShellExecuteExA

ole32

ReleaseStgMedium

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uedit32.chm
.chm
uehh.exe
.exe windows:5 windows x86 arch:x86

a79ad4ccffdb20c032349be5d2ea0e0d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Build\vs2008\ue_uestudio.dev\Out\uehh.pdb

Imports

user32

GetMessageA
PostQuitMessage
GetPropA
TranslateMessage
SetPropA
SetWindowLongA
GetWindowLongA
IsWindow
DispatchMessageA
CallWindowProcA

msvcr90

_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
_initterm
__p__fmode
_encode_pointer
__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
_acmdln
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
exit
atol
memset
__p__commode

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
InterlockedCompareExchange
Sleep
InterlockedExchange
LoadLibraryA
GetProcAddress
ExpandEnvironmentStringsA
SetUnhandledExceptionFilter

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
uejs.dll
.dll windows:5 windows x86 arch:x86

3ff3a21916b8d84ed9a69f06a6197e22

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

VirtualFree
VirtualAlloc
GetSystemInfo
DebugBreak
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetSystemTimeAdjustment
QueryPerformanceFrequency
VirtualProtect
CompareStringW
CompareStringA
GetProcessHeap
GetLastError
HeapFree
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
GetTimeFormatA
GetDateFormatA
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
WideCharToMultiByte
GetTimeZoneInformation
GetCurrentThreadId
GetCommandLineA
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapCreate
HeapDestroy
DeleteCriticalSection
WriteFile
GetStdHandle
GetModuleFileNameA
SetHandleCount
GetFileType
GetStartupInfoA
RtlUnwind
CloseHandle
RaiseException
LCMapStringA
MultiByteToWideChar
LCMapStringW
LoadLibraryA
InitializeCriticalSectionAndSpinCount
HeapSize
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
CreateFileA
SetStdHandle
GetModuleHandleA
SetFilePointer
ReadFile
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
SetEnvironmentVariableA

winmm

timeEndPeriod
timeBeginPeriod

Exports

Exports

?js_SetTraceableNativeFailed@@YAXPAUJSContext@@@Z
?js_obj_defineGetter@@YAHPAUJSContext@@IPAH@Z
?js_obj_defineSetter@@YAHPAUJSContext@@IPAH@Z
?resolving_MatchEntry@@YAHPAUJSDHashTable@@PBUJSDHashEntryHdr@@PBX@Z
@JS_DHashTableOperate@12
@js_CloseIterator@8
JS_AddArgumentFormatter
JS_AddExternalStringFinalizer
JS_AddNamedRoot
JS_AddNamedRootRT
JS_AddRoot
JS_AliasElement
JS_AliasProperty
JS_AlreadyHasOwnElement
JS_AlreadyHasOwnProperty
JS_AlreadyHasOwnPropertyById
JS_AlreadyHasOwnUCProperty
JS_ArenaAllocate
JS_ArenaFinish
JS_ArenaGrow
JS_ArenaRealloc
JS_ArenaRelease
JS_ArenaShutDown
JS_Assert
JS_BeginJSONParse
JS_BeginRequest
JS_BufferIsCompilableUnit
JS_CStringsAreUTF8
JS_CallFunction
JS_CallFunctionName
JS_CallFunctionValue
JS_CallTracer
JS_CeilingLog2
JS_CheckAccess
JS_ClearAllTraps
JS_ClearAllWatchPoints
JS_ClearContextThread
JS_ClearInterrupt
JS_ClearNewbornRoots
JS_ClearPendingException
JS_ClearRegExpRoots
JS_ClearRegExpStatics
JS_ClearScope
JS_ClearScriptTraps
JS_ClearTrap
JS_ClearWatchPoint
JS_ClearWatchPointsForObject
JS_CloneFunctionObject
JS_CompareStrings
JS_CompareValues
JS_CompileFile
JS_CompileFileHandle
JS_CompileFileHandleForPrincipals
JS_CompileFunction
JS_CompileFunctionForPrincipals
JS_CompileScript
JS_CompileScriptForPrincipals
JS_CompileUCFunction
JS_CompileUCFunctionForPrincipals
JS_CompileUCScript
JS_CompileUCScriptForPrincipals
JS_ComputeThis
JS_ConcatStrings
JS_ConstructObject
JS_ConstructObjectWithArguments
JS_ConsumeJSONText
JS_ContextIterator
JS_ConvertArguments
JS_ConvertArgumentsVA
JS_ConvertStub
JS_ConvertValue
JS_DHashAllocTable
JS_DHashClearEntryStub
JS_DHashFinalizeStub
JS_DHashFreeStringKey
JS_DHashFreeTable
JS_DHashGetStubOps
JS_DHashMatchEntryStub
JS_DHashMatchStringKey
JS_DHashMoveEntryStub
JS_DHashStringKey
JS_DHashTableDestroy
JS_DHashTableEnumerate
JS_DHashTableFinish
JS_DHashTableInit
JS_DHashTableRawRemove
JS_DHashTableSetAlphaBounds
JS_DHashVoidPtrKeyStub
JS_DecodeBytes
JS_DecompileFunction
JS_DecompileFunctionBody
JS_DecompileScript
JS_DefineConstDoubles
JS_DefineElement
JS_DefineFunction
JS_DefineFunctions
JS_DefineObject
JS_DefineProperties
JS_DefineProperty
JS_DefinePropertyById
JS_DefinePropertyWithTinyId
JS_DefineUCFunction
JS_DefineUCProperty
JS_DefineUCPropertyWithTinyId
JS_DeleteElement
JS_DeleteElement2
JS_DeleteProperty
JS_DeleteProperty2
JS_DeletePropertyById
JS_DeletePropertyById2
JS_DeleteUCProperty2
JS_DestroyContext
JS_DestroyContextMaybeGC
JS_DestroyContextNoGC
JS_DestroyIdArray
JS_DestroyScript
JS_DropExceptionState
JS_EncodeCharacters
JS_EncodeString
JS_EndRequest
JS_EnterLocalRootScope
JS_Enumerate
JS_EnumerateResolvedStandardClasses
JS_EnumerateStandardClasses
JS_EnumerateStub
JS_ErrorFromException
JS_EvalFramePrincipals
JS_EvaluateInStackFrame
JS_EvaluateScript
JS_EvaluateScriptForPrincipals
JS_EvaluateUCInStackFrame
JS_EvaluateUCScript
JS_EvaluateUCScriptForPrincipals
JS_ExecuteScript
JS_ExecuteScriptPart
JS_FinalizeStub
JS_Finish
JS_FinishArenaPool
JS_FinishJSONParse
JS_FlagScriptFilenamePrefix
JS_FloorLog2
JS_ForgetLocalRoot
JS_FrameIterator
JS_FreeArenaPool
JS_GC
JS_GetArrayLength
JS_GetClass
JS_GetClassObject
JS_GetConstructor
JS_GetContextPrivate
JS_GetContextThread
JS_GetElement
JS_GetEmptyStringValue
JS_GetExternalStringGCType
JS_GetFrameAnnotation
JS_GetFrameCallObject
JS_GetFrameCalleeObject
JS_GetFrameFunction
JS_GetFrameFunctionObject
JS_GetFrameObject
JS_GetFramePC
JS_GetFramePrincipalArray
JS_GetFrameReturnValue
JS_GetFrameScopeChain
JS_GetFrameScript
JS_GetFrameThis
JS_GetFunctionArity
JS_GetFunctionFastNative
JS_GetFunctionFlags
JS_GetFunctionId
JS_GetFunctionName
JS_GetFunctionNative
JS_GetFunctionObject
JS_GetFunctionScript
JS_GetFunctionTotalSize
JS_GetGCParameter
JS_GetGCParameterForThread
JS_GetGlobalDebugHooks
JS_GetGlobalForObject
JS_GetGlobalObject
JS_GetImplementationVersion
JS_GetInstancePrivate
JS_GetLocaleCallbacks
JS_GetMethod
JS_GetMethodById
JS_GetNaNValue
JS_GetNegativeInfinityValue
JS_GetObjectId
JS_GetObjectTotalSize
JS_GetOperationCallback
JS_GetOptions
JS_GetParent
JS_GetPendingException
JS_GetPositiveInfinityValue
JS_GetPrivate
JS_GetProperty
JS_GetPropertyAttributes
JS_GetPropertyAttrsGetterAndSetter
JS_GetPropertyAttrsGetterAndSetterById
JS_GetPropertyById
JS_GetPropertyDesc
JS_GetPropertyDescArray
JS_GetPropertyDescriptorById
JS_GetPrototype
JS_GetReservedSlot
JS_GetRuntime
JS_GetRuntimePrivate
JS_GetRuntimeSecurityCallbacks
JS_GetScopeChain
JS_GetScriptBaseLineNumber
JS_GetScriptFilename
JS_GetScriptFilenameFlags
JS_GetScriptLineExtent
JS_GetScriptObject
JS_GetScriptPrincipals
JS_GetScriptTotalSize
JS_GetScriptVersion
JS_GetScriptedCaller
JS_GetSecurityCallbacks
JS_GetStringBytes
JS_GetStringChars
JS_GetStringLength
JS_GetTopScriptFilenameFlags
JS_GetTrapOpcode
JS_GetTypeName
JS_GetUCProperty
JS_GetUCPropertyAttributes
JS_GetUCPropertyAttrsGetterAndSetter
JS_GetVersion
JS_HandleTrap
JS_HasArrayLength
JS_HasElement
JS_HasInstance
JS_HasProperty
JS_HasPropertyById
JS_HasUCProperty
JS_HashString
JS_HashTableAdd
JS_HashTableDestroy
JS_HashTableDump
JS_HashTableEnumerateEntries
JS_HashTableLookup
JS_HashTableRawAdd
JS_HashTableRawLookup
JS_HashTableRawRemove
JS_HashTableRemove
JS_IdToValue
JS_Init
JS_InitArenaPool
JS_InitClass
JS_InitStandardClasses
JS_InstanceOf
JS_InternString
JS_InternUCString
JS_InternUCStringN
JS_IsAboutToBeFinalized
JS_IsArrayObject
JS_IsAssigning
JS_IsConstructing
JS_IsConstructorFrame
JS_IsDebuggerFrame
JS_IsExceptionPending
JS_IsGCMarkingTracer
JS_IsNativeFrame
JS_IsRunning
JS_IsSystemObject
JS_LeaveLocalRootScope
JS_LeaveLocalRootScopeWithResult
JS_LineNumberToPC
JS_Lock
JS_LockGCThing
JS_LockGCThingRT
JS_LookupElement
JS_LookupProperty
JS_LookupPropertyById
JS_LookupPropertyWithFlags
JS_LookupPropertyWithFlagsById
JS_LookupUCProperty
JS_MakeStringImmutable
JS_MapGCRoots
JS_MarkGCThing
JS_MaybeGC
JS_NewArrayObject
JS_NewContext
JS_NewDHashTable
JS_NewDependentString
JS_NewDouble
JS_NewDoubleValue
JS_NewExternalString
JS_NewFunction
JS_NewGrowableString
JS_NewHashTable
JS_NewNumberValue
JS_NewObject
JS_NewObjectWithGivenProto
JS_NewPropertyIterator
JS_NewRegExpObject
JS_NewScriptObject
JS_NewString
JS_NewStringCopyN
JS_NewStringCopyZ
JS_NewSystemObject
JS_NewUCRegExpObject
JS_NewUCString
JS_NewUCStringCopyN
JS_NewUCStringCopyZ
JS_NextProperty
JS_Now
JS_ObjectIsFunction
JS_PCToLineNumber
JS_PopArguments
JS_PropertyIterator
JS_PropertyStub
JS_PushArguments
JS_PushArgumentsVA
JS_PutPropertyDescArray
JS_RemoveArgumentFormatter
JS_RemoveExternalStringFinalizer
JS_RemoveRoot
JS_RemoveRootRT
JS_ReportAllocationOverflow
JS_ReportError
JS_ReportErrorFlagsAndNumber
JS_ReportErrorFlagsAndNumberUC
JS_ReportErrorNumber
JS_ReportErrorNumberUC
JS_ReportOutOfMemory
JS_ReportPendingException
JS_ReportWarning
JS_ResolveStandardClass
JS_ResolveStub
JS_RestoreExceptionState
JS_RestoreFrameChain
JS_ResumeRequest
JS_SaveExceptionState
JS_SaveFrameChain
JS_SealObject
JS_SetArrayLength
JS_SetCStringsAreUTF8
JS_SetCallHook
JS_SetCallReturnValue2
JS_SetContextCallback
JS_SetContextDebugHooks
JS_SetContextPrivate
JS_SetContextSecurityCallbacks
JS_SetContextThread
JS_SetDebugErrorHook
JS_SetDebuggerHandler
JS_SetDestroyScriptHookProc
JS_SetElement
JS_SetErrorReporter
JS_SetExecuteHook
JS_SetExtraGCRoots
JS_SetFrameAnnotation
JS_SetFrameReturnValue
JS_SetGCCallback
JS_SetGCCallbackRT
JS_SetGCParameter
JS_SetGCParameterForThread
JS_SetGlobalObject
JS_SetInterrupt
JS_SetLocaleCallbacks
JS_SetNewScriptHookProc
JS_SetObjectHook
JS_SetOperationCallback
JS_SetOptions
JS_SetParent
JS_SetPendingException
JS_SetPrivate
JS_SetProperty
JS_SetPropertyAttributes
JS_SetPropertyById
JS_SetPrototype
JS_SetRegExpInput
JS_SetReservedSlot
JS_SetRuntimePrivate
JS_SetRuntimeSecurityCallbacks
JS_SetScriptStackQuota
JS_SetSourceHandler
JS_SetThreadStackLimit
JS_SetThrowHook
JS_SetTrap
JS_SetUCProperty
JS_SetUCPropertyAttributes
JS_SetVersion
JS_SetWatchPoint
JS_ShutDown
JS_StackFramePrincipals
JS_StrictlyEqual
JS_StringToVersion
JS_Stringify
JS_SuspendRequest
JS_ThrowReportedError
JS_ThrowStopIteration
JS_ToggleOptions
JS_TraceChildren
JS_TraceRuntime
JS_TriggerAllOperationCallbacks
JS_TriggerOperationCallback
JS_TryJSON
JS_TypeOfValue
JS_UndependString
JS_Unlock
JS_UnlockGCThing
JS_UnlockGCThingRT
JS_ValueToBoolean
JS_ValueToConstructor
JS_ValueToECMAInt32
JS_ValueToECMAUint32
JS_ValueToFunction
JS_ValueToId
JS_ValueToInt32
JS_ValueToNumber
JS_ValueToObject
JS_ValueToSource
JS_ValueToString
JS_ValueToUint16
JS_VersionToString
JS_XDRBytes
JS_XDRCString
JS_XDRCStringOrNull
JS_XDRDestroy
JS_XDRDouble
JS_XDRFindClassById
JS_XDRFindClassIdByName
JS_XDRInitBase
JS_XDRMemDataLeft
JS_XDRMemGetData
JS_XDRMemResetData
JS_XDRMemSetData
JS_XDRNewMem
JS_XDRRegisterClass
JS_XDRScript
JS_XDRString
JS_XDRStringOrNull
JS_XDRUint16
JS_XDRUint32
JS_XDRUint8
JS_XDRValue
JS_YieldRequest
JS_dtobasestr
JS_dtostr
JS_free
JS_malloc
JS_realloc
JS_smprintf
JS_smprintf_free
JS_snprintf
JS_sprintf_append
JS_strdup
JS_strtod
JS_sxprintf
JS_vsmprintf
JS_vsnprintf
JS_vsprintf_append
JS_vsxprintf
js_AllocStack
js_AnyNameClass
js_AttributeNameClass
js_CallClass
js_CallDestroyScriptHook
js_CallIteratorNext
js_CallNewScriptHook
js_CheckUndeclaredVarAssignment
js_CoerceArrayToCanvasImageData
js_DateGetDate
js_DateGetHours
js_DateGetMinutes
js_DateGetMonth
js_DateGetMsecSinceEpoch
js_DateGetSeconds
js_DateGetYear
js_DateIsValid
js_DateSetDate
js_DateSetHours
js_DateSetMinutes
js_DateSetMonth
js_DateSetSeconds
js_DateSetYear
js_DeepBail
js_FindProperty
js_FinishDtoa
js_FreeStack
js_FunctionClass
js_GeneratorClass
js_GetErrorMessage
js_GetGCThingTraceKind
js_GetScriptLineExtent
js_GetSrcNoteOffset
js_GetterOnlyPropertyStub
js_InitDtoa
js_IntervalNow
js_Invoke
js_LookupProperty
js_MapKeywords
js_NamespaceClass
js_NewDateObject
js_NewDateObjectMsec
js_NextActiveContext
js_ObjectOps

Sections

.text
Size: 789KB - Virtual size: 788KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 628B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ueres.dll
.dll windows:5 windows x86 arch:x86

d0b0ab81bf0e4cd20070f6525db9fd67

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
HeapFree
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
WriteFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninst.exe
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
update.exe
.exe windows:5 windows x86 arch:x86

f2bbc751ddad3b6498b0a6f8c4fa3ac7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Build\vs2008\ueUpdate\Release\ueUpdate.pdb

Imports

wininet

InternetSetOptionW
HttpSendRequestW
InternetErrorDlg
InternetCloseHandle
InternetConnectW
InternetOpenW
HttpQueryInfoW
HttpOpenRequestW
InternetReadFile

kernel32

GetFileInformationByHandle
PeekNamedPipe
GetCurrentDirectoryA
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
LCMapStringA
GetCPInfo
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetEnvironmentVariableA
SetEnvironmentVariableW
GetProcessHeap
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetDriveTypeA
CreateFileA
QueryPerformanceCounter
VirtualFree
HeapCreate
InterlockedCompareExchange
GetStartupInfoA
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
GetFileType
SetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapSize
CreateThread
ExitThread
ExitProcess
HeapReAlloc
HeapAlloc
HeapFree
GetDriveTypeW
GetSystemTimeAsFileTime
RtlUnwind
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
FindResourceExW
VirtualProtect
Sleep
GetProfileIntW
GetTickCount
SearchPathW
GetTempPathW
GetTempFileNameW
SetErrorMode
lstrcpyW
GetCurrentDirectoryW
lstrlenA
GlobalGetAtomNameW
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
InterlockedIncrement
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateFileW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
GetModuleHandleA
GetCurrentProcessId
SuspendThread
SetThreadPriority
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
InterlockedDecrement
WideCharToMultiByte
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
LoadLibraryW
CompareStringW
LoadLibraryA
FreeLibrary
lstrcmpW
GetProcAddress
GetVersionExA
FreeResource
SetLastError
GlobalFree
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
lstrlenW
MulDiv
FindFirstFileW
CopyFileW
FindClose
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
MultiByteToWideChar
GetFileAttributesW
CreateDirectoryW
GetLongPathNameW
GetLastError
GetModuleHandleW
FormatMessageW
LocalFree
ResumeThread
GetCurrentThreadId
WaitForMultipleObjects
GetExitCodeThread
SetEvent
CloseHandle
CreateEventW
GetCommandLineW
GetModuleFileNameW
RemoveDirectoryW
DeleteFileW
WaitForSingleObject
CreateProcessW
FindResourceW
LoadResource
LockResource
SizeofResource
IsValidCodePage
GetOEMCP
GetACP
LCMapStringW

user32

IsCharLowerW
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
SetCursorPos
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
GetNextDlgGroupItem
InvalidateRgn
SetRect
CharNextW
EmptyClipboard
CloseClipboard
SetClipboardData
LoadImageW
DestroyIcon
CopyImage
OpenClipboard
DrawStateW
RegisterClipboardFormatW
EnumChildWindows
LockWindowUpdate
BringWindowToTop
IsRectEmpty
KillTimer
SetTimer
InvalidateRect
IsMenu
GetSystemMenu
SetClassLongW
SetParent
CreatePopupMenu
NotifyWinEvent
SetWindowRgn
CreateAcceleratorTableW
LoadAcceleratorsW
DestroyAcceleratorTable
GetAsyncKeyState
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
CopyAcceleratorTableW
PostThreadMessageW
SetRectEmpty
DeleteMenu
WaitMessage
ReleaseCapture
WindowFromPoint
SetCapture
UnregisterClassW
DestroyMenu
GetMenuItemInfoW
InflateRect
LoadCursorW
GetSysColorBrush
CharUpperW
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
MapVirtualKeyW
GetKeyNameTextW
GetWindowThreadProcessId
ShowOwnedPopups
SetCursor
GetMessageW
GetCursorPos
ValidateRect
SetWindowContextHelpId
MapDialogRect
SystemParametersInfoW
RedrawWindow
IsZoomed
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
UpdateWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
CopyRect
PtInRect
GetMenu
SetWindowLongW
DestroyCursor
GetWindowRgn
CreateMenu
GetDoubleClickTime
GetIconInfo
SubtractRect
CopyIcon
CharUpperBuffW
GetUpdateRect
FrameRect
TranslateMDISysAccel
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindow
GetWindowRect
LoadMenuW
GetDesktopWindow
GetActiveWindow
SetActiveWindow
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
IsClipboardFormatAvailable
MessageBeep
MapVirtualKeyExW
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetParent
GetNextDlgTabItem
EndDialog
GetMenuState
GetMenuStringW
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
GetDC
MessageBoxW
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
PostMessageW
DispatchMessageW
TranslateMessage
PeekMessageW
FindWindowW
RegisterWindowMessageW
SendMessageW
LoadIconW
EnableWindow
ReleaseDC

gdi32

GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
GetTextMetricsW
TextOutW
CreateFontIndirectW
OffsetRgn
GetRgnBox
CreateDIBitmap
CreateCompatibleBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
GetTextColor
SetDIBColorTable
GetDIBits
RealizePalette
CombineRgn
StretchBlt
SetPixel
CreateDIBSection
GetBkColor
SetRectRgn
GetMapMode
DPtoLP
CreateEllipticRgn
CreatePolygonRgn
Polyline
Ellipse
Rectangle
RoundRect
GetStockObject
GetPaletteEntries
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
LPtoDP
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
RectVisible
PtVisible
Polygon
SelectPalette
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
GetClipBox
GetDCOrgEx
CopyMetaFileW
GetDeviceCaps
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
CreatePalette
GetTextExtentPoint32W
CreateRectRgn
SelectClipRgn
DeleteObject
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
PatBlt
CreateRectRgnIndirect
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
ExtTextOutW

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegEnumKeyExW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
RegOpenKeyExW
RegQueryValueW

shell32

SHGetFolderPathW
SHGetFileInfoW
DragQueryFileW
DragFinish
ShellExecuteW
SHAppBarMessage
SHBrowseForFolderW
SHGetPathFromIDListW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW

oledlg

OleUIBusyW

ole32

OleIsCurrentClipboard
OleLockRunning
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CreateStreamOnHGlobal
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitializeEx
CoUninitialize
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleGetClipboard
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
OleFlushClipboard

oleaut32

SysAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocString
OleCreateFontIndirect
SysFreeString

winmm

PlaySoundW

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

gdiplus

GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipBitmapLockBits
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipBitmapUnlockBits
GdiplusStartup
GdiplusShutdown
GdipGetImageGraphicsContext
GdipDrawImageI
GdipGetImagePaletteSize
GdipCloneImage

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 290KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
wodCertificate.dll
.dll regsvr32 windows:5 windows x86 arch:x86

8fa8ca9745954dfe6b98107cd3270021

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e8:18:33:3c:36:75:c7:f8:02:61:fb:28:95:b8:19:ec
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

29-08-2008 00:00

Not After

29-08-2011 23:59

Subject

CN=WeOnlyDo Software,O=WeOnlyDo Software,POSTALCODE=19809,STREET=501 Silverside Road\, Suite 105,L=Wilmington,ST=DE,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

cryptui

CryptUIDlgSelectCertificateA
CryptUIDlgViewCertificateA

winmm

PlaySoundA

crypt32

CertEnumSystemStore
CertDuplicateCertificateContext
CertOpenStore
CertGetNameStringA
CertOpenSystemStoreA
CertEnumCertificatesInStore
CertCloseStore
CertCreateCertificateContext
CryptAcquireCertificatePrivateKey
CertFreeCertificateContext

kernel32

GetFileType
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
CloseHandle
GetVersionExA
FlushConsoleInputBuffer
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoA
GetVersion
GetStringTypeA
GetProcessHeap
SetEndOfFile
InitializeCriticalSectionAndSpinCount
FlushFileBuffers
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
GetConsoleCP
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
CreateFileA
SetStdHandle
GetStartupInfoA
SetHandleCount
GetCurrentThreadId
GetModuleHandleA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
IsDBCSLeadByte
GetModuleHandleW
GetProcAddress
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls
lstrcmpiA
GetLastError
GetStringTypeW
DeleteCriticalSection
InitializeCriticalSection
RaiseException
WideCharToMultiByte
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
lstrlenW
GetTickCount
MultiByteToWideChar
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
lstrcatA
lstrlenA
WinExec
lstrcpyA
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
WriteFile
ExitProcess
Sleep
HeapDestroy
HeapCreate
VirtualFree
SetConsoleCtrlHandler
GetConsoleMode
SetConsoleMode
ReadConsoleInputA
GetCommandLineA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
VirtualQuery
HeapAlloc
HeapFree
HeapReAlloc
ReadFile
SetFilePointer
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo

user32

GetWindowRect
GetSysColorBrush
GetSysColor
GetDC
ReleaseDC
SetWindowPos
IsWindowVisible
InvalidateRect
MessageBoxA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW
CharNextW
CharNextA
LoadStringA
CreateDialogParamA
UpdateWindow
EnableWindow
GetMessageA
TranslateMessage
DispatchMessageA
wsprintfA
GetDlgItem
SetWindowTextA
ShowWindow
KillTimer
DestroyWindow
LoadCursorA
CopyIcon
SetTimer
SetCapture
PostQuitMessage
DefWindowProcA
GetCursorPos
SetCursor
GetClientRect

gdi32

DeleteObject
SetBkColor
SetTextColor
SetBkMode
GetStockObject
CreateSolidBrush
GetDeviceCaps

advapi32

CryptGenRandom
RegQueryValueExA
RegOpenKeyExA
RegisterEventSourceA
CryptReleaseContext
CryptAcquireContextA
CryptDestroyKey
CryptGetUserKey
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumKeyExA
DeregisterEventSource
ReportEventA
RegCloseKey

shell32

ShellExecuteA

ole32

ProgIDFromCLSID
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
StringFromGUID2
CoTaskMemFree

oleaut32

VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
VariantTimeToSystemTime
LoadTypeLi
LoadRegTypeLi
CreateErrorInfo
SetErrorInfo
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysAllocStringLen
VarBstrCat
SystemTimeToVariantTime
SysStringLen
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 501KB - Virtual size: 501KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
wodFtpDLX.dll
.dll regsvr32 windows:5 windows x86 arch:x86

a9bf52f2208e70c6514401a3c06216a3

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e8:18:33:3c:36:75:c7:f8:02:61:fb:28:95:b8:19:ec
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

29-08-2008 00:00

Not After

29-08-2011 23:59

Subject

CN=WeOnlyDo Software,O=WeOnlyDo Software,POSTALCODE=19809,STREET=501 Silverside Road\, Suite 105,L=Wilmington,ST=DE,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

ntohs
gethostbyname
WSASetLastError
WSAGetLastError
ioctlsocket
htons
getpeername
gethostname
shutdown
setsockopt
listen
inet_addr
getsockname
closesocket
bind
accept
WSAStartup
send
recv
WSACleanup
socket
WSAAsyncSelect
connect

winmm

PlaySoundA

kernel32

LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetLastError
lstrcmpiA
DisableThreadLibraryCalls
InterlockedIncrement
InterlockedDecrement
GetModuleFileNameA
GetProcAddress
GetModuleHandleW
IsDBCSLeadByte
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
GetModuleHandleA
CreateThread
CloseHandle
IsBadReadPtr
GetTickCount
TerminateThread
GetCurrentProcessId
GetCurrentThreadId
CreateDirectoryW
LocalFree
FormatMessageA
FindClose
FindNextFileW
FindFirstFileW
ReadFile
SetFilePointer
CreateFileW
GetTempFileNameA
GetTempPathA
GetFileAttributesW
WriteFile
SetEndOfFile
GetVersion
GetFileType
GetStdHandle
GlobalMemoryStatus
QueryPerformanceCounter
GetVersionExA
FlushConsoleInputBuffer
SetLastError
CreateFileA
EnterCriticalSection
GetConsoleOutputCP
WriteConsoleA
GetStartupInfoA
SetHandleCount
SetStdHandle
LCMapStringW
LCMapStringA
GetTimeZoneInformation
HeapSize
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
ExitProcess
Sleep
HeapDestroy
HeapCreate
VirtualFree
SetConsoleCtrlHandler
SetConsoleMode
ReadConsoleInputA
GetCommandLineA
DeleteFileA
GetConsoleMode
GetConsoleCP
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapReAlloc
HeapFree
HeapAlloc
RaiseException
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
GetUserDefaultLCID
lstrcatA
lstrlenA
WinExec
lstrcpyA
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
FlushFileBuffers
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetProcessHeap
CompareStringA
CompareStringW
SetEnvironmentVariableA
FindFirstFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetFullPathNameA
GetCurrentDirectoryA
WriteConsoleW

user32

GetWindowRect
GetDC
ReleaseDC
SetWindowPos
wsprintfA
GetSysColorBrush
GetSysColor
MessageBoxA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW
LoadStringA
wvsprintfA
GetWindowThreadProcessId
WaitMessage
MsgWaitForMultipleObjects
CharLowerBuffA
RegisterClassA
CreateWindowExA
GetWindowLongA
SetWindowLongA
PeekMessageA
SendMessageA
IsWindow
PostMessageA
CharNextW
CharNextA
CreateDialogParamA
UpdateWindow
EnableWindow
GetMessageA
TranslateMessage
DispatchMessageA
GetDlgItem
SetWindowTextA
ShowWindow
KillTimer
LoadCursorA
CopyIcon
SetTimer
SetCapture
PostQuitMessage
DefWindowProcA
DestroyWindow
GetCursorPos
SetCursor
GetClientRect
InvalidateRect
IsWindowVisible

gdi32

DeleteObject
SetBkColor
SetTextColor
SetBkMode
GetStockObject
CreateSolidBrush
GetDeviceCaps

advapi32

RegisterEventSourceA
ReportEventA
DeregisterEventSource
CryptAcquireContextA
CryptGenRandom
CryptGetUserKey
CryptCreateHash
CryptGetHashParam
CryptSetHashParam
CryptSignHashA
CryptDestroyHash
CryptDestroyKey
CryptReleaseContext
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

ShellExecuteA

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoCreateInstance
ProgIDFromCLSID
StringFromGUID2

oleaut32

RegisterTypeLi
SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayDestroy
CreateErrorInfo
SetErrorInfo
SysStringLen
SysFreeString
VariantClear
SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysAllocStringLen
LoadTypeLi
UnRegisterTypeLi
VarUI4FromStr
LoadRegTypeLi
VarBstrCat
VariantInit
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantCopy
VarBstrCmp
VariantChangeType

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 779KB - Virtual size: 779KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 225KB - Virtual size: 225KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
wodTelnetDLX.ocx
.dll regsvr32 windows:5 windows x86 arch:x86

aff17ed946bd792ab4fb5705b6c5f2b9

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

e8:18:33:3c:36:75:c7:f8:02:61:fb:28:95:b8:19:ec
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

29-08-2008 00:00

Not After

29-08-2011 23:59

Subject

CN=WeOnlyDo Software,O=WeOnlyDo Software,POSTALCODE=19809,STREET=501 Silverside Road\, Suite 105,L=Wilmington,ST=DE,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

PlaySoundA

crypt32

CertFreeCertificateContext
CertCreateCertificateContext
CertCloseStore
CertEnumCertificatesInStore
CertAddCertificateContextToStore
CertOpenSystemStoreA
CertOpenStore
CryptAcquireCertificatePrivateKey

wsock32

closesocket
htons
ioctlsocket
inet_addr
shutdown
ntohs
recv
send
gethostbyname
WSASetLastError
WSAGetLastError
socket
connect
WSACleanup
setsockopt
WSAAsyncSelect
gethostname
bind
WSAStartup

kernel32

DeleteCriticalSection
GetLastError
lstrcmpiA
GlobalAlloc
DisableThreadLibraryCalls
GetModuleFileNameA
GetModuleHandleW
IsDBCSLeadByte
SetLastError
SizeofResource
LockResource
LoadResource
FindResourceA
GlobalFree
LoadLibraryExA
GetModuleHandleA
WriteFile
CloseHandle
ReadFile
GetFileSize
GetVersion
GetFileType
GetStdHandle
GlobalMemoryStatus
QueryPerformanceCounter
GetVersionExA
FlushConsoleInputBuffer
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
InitializeCriticalSection
HeapDestroy
HeapCreate
SetConsoleCtrlHandler
SetConsoleMode
ReadConsoleInputA
GetCommandLineA
VirtualQuery
GetSystemInfo
VirtualProtect
GetConsoleMode
GetConsoleCP
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
RtlUnwind
HeapReAlloc
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
SetStdHandle
SetHandleCount
GetStartupInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
HeapSize
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
FlushFileBuffers
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
RaiseException
CreateThread
FormatMessageA
LocalFree
GlobalLock
GlobalUnlock
LocalAlloc
LocalLock
LocalUnlock
CreateFileA
SetFilePointer
Sleep
MulDiv
GetCurrentProcess
FlushInstructionCache
IsBadReadPtr
EnterCriticalSection
LeaveCriticalSection
GetTickCount
GetCurrentProcessId
GetCurrentThreadId
InterlockedIncrement
LCMapStringW
GetProcAddress
InterlockedDecrement
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
GetUserDefaultLCID
lstrcatA
lstrlenA
WinExec
lstrcpyA
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
GetLocaleInfoA
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetTimeZoneInformation
FindFirstFileA
FindClose
LCMapStringA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetFullPathNameA
GetCurrentDirectoryA
ExitProcess

user32

TrackPopupMenu
GetClassNameA
GetDesktopWindow
DestroyMenu
DestroyIcon
CallWindowProcA
ReleaseCapture
InvertRect
DrawIcon
IsClipboardFormatAvailable
GetClipboardData
SetMenuItemInfoA
EmptyClipboard
SetClipboardData
FillRect
LoadStringA
GetSystemMetrics
DestroyCaret
CreateCaret
LoadIconA
SetCaretPos
IntersectRect
EqualRect
CloseClipboard
GetMenuItemInfoA
OffsetRect
SetWindowRgn
SetScrollInfo
ShowCaret
HideCaret
OpenClipboard
GetParent
SetScrollPos
ScreenToClient
ClientToScreen
GetSubMenu
SetDlgItemTextA
wvsprintfA
PeekMessageA
WaitMessage
UnhookWindowsHookEx
LoadMenuA
GetAsyncKeyState
CharNextA
CharNextW
PtInRect
UnionRect
GetClassInfoExA
EndPaint
BeginPaint
IsChild
GetKeyState
RegisterClassExA
MoveWindow
IsDialogMessageA
GetDlgItemTextA
SendDlgItemMessageA
MessageBoxA
GetDialogBaseUnits
WinHelpA
CheckDlgButton
IsDlgButtonChecked
MessageBeep
GetUserObjectInformationW
GetProcessWindowStation
SetFocus
SetWindowsHookExA
GetFocus
SendMessageA
CallNextHookEx
IsWindow
RegisterClassA
CreateWindowExA
GetWindowLongA
SetWindowLongA
PostMessageA
CreateDialogParamA
UpdateWindow
EnableWindow
GetMessageA
TranslateMessage
DispatchMessageA
GetDlgItem
SetWindowTextA
ShowWindow
KillTimer
LoadCursorA
CopyIcon
SetTimer
SetCapture
PostQuitMessage
DefWindowProcA
DestroyWindow
GetCursorPos
SetCursor
GetClientRect
InvalidateRect
IsWindowVisible
GetSysColor
GetSysColorBrush
wsprintfA
GetWindowRect
GetDC
ReleaseDC
SetWindowPos
UnregisterClassA
MapVirtualKeyA

gdi32

DeleteDC
SaveDC
CreateMetaFileA
CreateDCA
SetViewportOrgEx
SetMapMode
LPtoDP
GetTextExtentPointA
SetWindowExtEx
GetObjectA
CreateFontIndirectA
CreatePen
SelectObject
Polyline
CreateRectRgnIndirect
DeleteObject
GetDeviceCaps
CreateSolidBrush
GetStockObject
RestoreDC
CloseMetaFile
DeleteMetaFile
CreateCompatibleDC
CreateCompatibleBitmap
SetTextAlign
TextOutA
GetTextMetricsA
BitBlt
SetBkMode
SetWindowOrgEx
SetBkColor
SetTextColor

advapi32

ReportEventA
DeregisterEventSource
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
CryptGetUserKey
CryptCreateHash
CryptGetHashParam
CryptSetHashParam
CryptSignHashA
CryptDestroyHash
CryptDestroyKey
CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegisterEventSourceA

shell32

ShellExecuteA

ole32

StringFromGUID2
CoCreateInstance
CoTaskMemFree
ProgIDFromCLSID
CoTaskMemAlloc
CoTaskMemRealloc
OleLoadFromStream
OleRegEnumVerbs
OleRegGetUserType
OleRegGetMiscStatus
CreateDataAdviseHolder
CreateOleAdviseHolder
WriteClassStm
OleSaveToStream
CreateStreamOnHGlobal

oleaut32

GetErrorInfo
OleCreatePropertyFrame
LoadRegTypeLi
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SafeArrayDestroy
SafeArrayCreate
OleCreateFontIndirect
SafeArrayAccessData
SafeArrayUnaccessData
CreateErrorInfo
SetErrorInfo
VariantChangeType
VariantInit
VarBstrCat
SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
SysAllocString
VariantClear
SysFreeString
SysStringLen
OleLoadPicture

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 725KB - Virtual size: 725KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 210KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
wordfiles/c_cplusplus.uew
wordfiles/csharp.uew
wordfiles/css.uew
wordfiles/html.uew
wordfiles/java.uew
wordfiles/javascript.uew
.js
wordfiles/mysql.uew
wordfiles/perl.uew
wordfiles/php.uew
wordfiles/ruby.uew
wordfiles/vbscript.uew
.vbs
wordfiles/visualbasic.uew
.vbs
wordfiles/xml.uew

Sharing

General

Malware Config

Signatures

Files

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 80KB

.rsrc Size: 12KB - Virtual size: 12KB

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1KB - Virtual size: 1KB

9cce555dd3ff1b6c7dc92d64c794c51a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 25KB

.reloc Size: 1024B - Virtual size: 836B

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 1024B - Virtual size: 784B

.data Size: 512B - Virtual size: 100B

.reloc Size: 1024B - Virtual size: 520B

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 13KB - Virtual size: 13KB

DATA Size: 4KB - Virtual size: 4KB

BSS Size: - Virtual size: 1KB

.idata Size: 1024B - Virtual size: 906B

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 80KB

.rsrc
Size: 12KB - Virtual size: 12KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 25KB

.reloc
Size: 1024B - Virtual size: 836B

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 1024B - Virtual size: 520B

CODE
Size: 13KB - Virtual size: 13KB

DATA
Size: 4KB - Virtual size: 4KB

BSS
Size: - Virtual size: 1KB

.idata
Size: 1024B - Virtual size: 906B

.edata
Size: 512B - Virtual size: 89B

.reloc
Size: 1024B - Virtual size: 880B

.rsrc
Size: 512B - Virtual size: 512B

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 6KB

.reloc
Size: 1024B - Virtual size: 848B

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 11KB

.reloc
Size: 7KB - Virtual size: 7KB

.text
Size: 396KB - Virtual size: 395KB

.rdata
Size: 62KB - Virtual size: 62KB

.data
Size: 30KB - Virtual size: 37KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 31KB - Virtual size: 31KB

.text
Size: 80KB - Virtual size: 77KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 428B

.text
Size: 156KB - Virtual size: 153KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 8KB - Virtual size: 13KB