Additional Software-Private[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

Additional Software-Private.zip
Size

184.3MB
MD5

85672952fa1535fda9442aa5236cdd74
SHA1

473bf751aa2ad79eae022457aa9c2633618d3ac4
SHA256

dc745a51331883eb7427e900210fe4f784ac12ebeb2387c74b7624b8b0b37ad9
SHA512

1ab4941b43ce23e4a239eadeb825a7fb0431387de08ee3237ab6bfe721a49fbd92fd69a56836c7314ade1f69e0cbc3e576c17ca5a222015a7f7c3d388c3d9b18
SSDEEP

3145728:70UmfNyCnYNRHZTMAO+6o9oNMxH9nZJNiBYyXLxqQH+9rckXs+tz2vyMfdgbj:70UmlPnYJMPJo9QMNR8BYyXNqs+9rckT

Score

5^/10

upx

Malware Config

Signatures

AutoIT Executable 1 IoCs

AutoIT scripts compiled to PE executables.

resource	yara_rule
static1/unpack002/out.upx	autoit_exe

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/Download these/01 - Sordum DControl/dControl.exe	upx

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack002/out.upx
unpack001/Download these/04 - EaseUS RecExperts Pro 3.8.0/Crack/ActiveMgr.dll
unpack001/Download these/04 - EaseUS RecExperts Pro 3.8.0/Crack/RecExperts.exe

Files

Additional Software-Private.zip
.zip
Download these/01 - Sordum DControl/Defender_Settings.vbs
.vbs
Download these/01 - Sordum DControl/dControl.exe
.exe windows:5 windows x86 arch:x86

Code Sign

69:98:6c:80:0a:7c:5b:8e:47:86:45:a0:3e:86:d5:40
Certificate

Issuer

CN=Sordum Software

Not Before

11-09-2021 21:00

Not After

31-07-2030 21:00

Subject

CN=Sordum Software

Extended Key Usages

ExtKeyUsageCodeSigning

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31-05-2021 06:43

Not After

17-09-2029 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

f1:64:25:8c:09:b6:e2:7b:e2:0e:32:60:8e:4b:f4:a8
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

19-05-2021 05:42

Not After

18-05-2032 05:42

Subject

CN=Certum Timestamp 2021,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19-05-2021 05:32

Not After

18-05-2036 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

13:f6:ef:3f:06:29:49:56:6c:21:59:e0:0c:ac:6f:83:24:95:fa:e4
Signer

Actual PE Digest

13:f6:ef:3f:06:29:49:56:6c:21:59:e0:0c:ac:6f:83:24:95:fa:e4

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 492KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 262KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 514KB - Virtual size: 513KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/01 - Sordum DControl/dControl.ini
Download these/02 - Windows Updates Blocker/ReadMe.txt
Download these/02 - Windows Updates Blocker/Wub.exe
.exe windows:5 windows x86 arch:x86

870b8e75c7190e202e9c6c81dff1040c

Code Sign

79:9e:5f:0f:69:be:cb:93:49:4a:b3:10:ef:62:cc:c3
Certificate

Issuer

CN=Sordum Software

Not Before

15-08-2021 21:00

Not After

31-07-2032 21:00

Subject

CN=Sordum Software

Extended Key Usages

ExtKeyUsageCodeSigning

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

10-12-2014 00:00

Not After

10-12-2034 00:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

20-06-2018 00:00

Not After

10-12-2034 00:00

Subject

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:48:90:3d:c2:8a:bc:a7:a1:19:4d:0c:1c:57:b8:29
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Not Before

06-04-2022 07:41

Not After

08-05-2033 07:41

Subject

CN=Globalsign TSA for MS Authenticode Advanced - G4,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

ce:a3:d7:4e:89:0b:26:a8:99:dd:81:85:cf:0e:ee:ee:5d:3b:1e:98
Signer

Actual PE Digest

ce:a3:d7:4e:89:0b:26:a8:99:dd:81:85:cf:0e:ee:ee:5d:3b:1e:98

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

__WSAFDIsSet
setsockopt
ntohs
recvfrom
sendto
htons
select
listen
WSAStartup
bind
closesocket
connect
socket
send
WSACleanup
ioctlsocket
accept
WSAGetLastError
inet_addr
gethostbyname
gethostname
recv

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

winmm

timeGetTime
waveOutSetVolume
mciSendStringW

comctl32

ImageList_Remove
ImageList_SetDragCursorImage
ImageList_BeginDrag
ImageList_DragEnter
ImageList_DragLeave
ImageList_EndDrag
ImageList_DragMove
ImageList_ReplaceIcon
ImageList_Create
InitCommonControlsEx
ImageList_Destroy

mpr

WNetCancelConnection2W
WNetGetConnectionW
WNetAddConnection2W
WNetUseConnectionW

wininet

InternetReadFile
InternetCloseHandle
InternetOpenW
InternetSetOptionW
InternetCrackUrlW
HttpQueryInfoW
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
FtpOpenFileW
FtpGetFileSize
InternetOpenUrlW
InternetQueryOptionW
InternetQueryDataAvailable

psapi

EnumProcesses
GetModuleBaseNameW
GetProcessMemoryInfo
EnumProcessModules

userenv

CreateEnvironmentBlock
DestroyEnvironmentBlock
UnloadUserProfile
LoadUserProfileW

kernel32

HeapAlloc
Sleep
GetCurrentThreadId
RaiseException
MulDiv
GetVersionExW
GetSystemInfo
MultiByteToWideChar
WideCharToMultiByte
GetModuleHandleW
QueryPerformanceCounter
VirtualFreeEx
OpenProcess
VirtualAllocEx
WriteProcessMemory
ReadProcessMemory
CreateFileW
SetFilePointerEx
ReadFile
WriteFile
FlushFileBuffers
TerminateProcess
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
SetFileTime
GetFileAttributesW
FindFirstFileW
FindClose
DeleteFileW
FindNextFileW
lstrcmpiW
MoveFileW
CopyFileW
CreateDirectoryW
RemoveDirectoryW
SetSystemPowerState
QueryPerformanceFrequency
FindResourceW
LoadResource
LockResource
SizeofResource
GetProcessHeap
OutputDebugStringW
GetLocalTime
CompareStringW
CompareStringA
InterlockedIncrement
InterlockedDecrement
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetStdHandle
CreatePipe
InterlockedExchange
TerminateThread
GetTempPathW
GetTempFileNameW
VirtualFree
FormatMessageW
GetExitCodeProcess
SetErrorMode
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileSectionW
WritePrivateProfileSectionW
GetPrivateProfileSectionNamesW
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetDriveTypeW
GetDiskFreeSpaceExW
GetDiskFreeSpaceW
GetVolumeInformationW
SetVolumeLabelW
CreateHardLinkW
DeviceIoControl
SetFileAttributesW
GetShortPathNameW
CreateEventW
SetEvent
GetEnvironmentVariableW
SetEnvironmentVariableW
GlobalLock
GlobalUnlock
GlobalAlloc
GetFileSize
GlobalFree
GlobalMemoryStatusEx
Beep
GetComputerNameW
GetWindowsDirectoryW
GetSystemDirectoryW
GetCurrentProcessId
GetCurrentThread
GetProcessIoCounters
CreateProcessW
SetPriorityClass
LoadLibraryW
VirtualAlloc
LoadLibraryExW
HeapFree
WaitForSingleObject
CreateThread
DuplicateHandle
GetLastError
CloseHandle
GetCurrentProcess
GetProcAddress
LoadLibraryA
FreeLibrary
GetModuleFileNameW
GetFullPathNameW
ExitProcess
ExitThread
GetSystemTimeAsFileTime
SetCurrentDirectoryW
IsDebuggerPresent
GetCurrentDirectoryW
ResumeThread
GetStartupInfoW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapSize
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleFileNameA
HeapReAlloc
HeapCreate
SetHandleCount
GetFileType
GetStartupInfoA
SetStdHandle
GetConsoleCP
GetConsoleMode
LCMapStringW
LCMapStringA
RtlUnwind
SetFilePointer
GetTimeZoneInformation
GetTimeFormatA
GetDateFormatA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetTickCount
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetModuleHandleA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEndOfFile
EnumResourceNamesW
SetEnvironmentVariableA

user32

SetWindowPos
GetCursorInfo
RegisterHotKey
ClientToScreen
GetKeyboardLayoutNameW
IsCharAlphaW
IsCharAlphaNumericW
IsCharLowerW
IsCharUpperW
GetMenuStringW
GetSubMenu
GetCaretPos
IsZoomed
MonitorFromPoint
GetMonitorInfoW
SetWindowLongW
SetLayeredWindowAttributes
FlashWindow
GetClassLongW
TranslateAcceleratorW
IsDialogMessageW
GetSysColor
InflateRect
DrawFocusRect
DrawTextW
FrameRect
DrawFrameControl
FillRect
PtInRect
DestroyAcceleratorTable
CreateAcceleratorTableW
SetCursor
GetWindowDC
GetSystemMetrics
GetActiveWindow
CharNextW
wsprintfW
RedrawWindow
DrawMenuBar
DestroyMenu
SetMenu
GetWindowTextLengthW
CreateMenu
IsDlgButtonChecked
DefDlgProcW
ReleaseCapture
SetCapture
WindowFromPoint
CreateIconFromResourceEx
mouse_event
ExitWindowsEx
SetActiveWindow
FindWindowExW
EnumThreadWindows
SetMenuDefaultItem
InsertMenuItemW
IsMenu
TrackPopupMenuEx
GetCursorPos
DeleteMenu
CheckMenuRadioItem
CopyImage
GetMenuItemCount
SetMenuItemInfoW
GetMenuItemInfoW
SetForegroundWindow
IsIconic
FindWindowW
SystemParametersInfoW
PeekMessageW
SendInput
GetAsyncKeyState
SetKeyboardState
GetKeyboardState
GetKeyState
VkKeyScanW
LoadStringW
DialogBoxParamW
MessageBeep
EndDialog
SendDlgItemMessageW
GetDlgItem
SetWindowTextW
CopyRect
ReleaseDC
GetDC
EndPaint
BeginPaint
GetClientRect
GetMenu
DestroyWindow
EnumWindows
GetDesktopWindow
IsWindow
IsWindowEnabled
IsWindowVisible
EnableWindow
InvalidateRect
GetWindowThreadProcessId
AttachThreadInput
GetFocus
GetWindowTextW
ScreenToClient
SendMessageTimeoutW
EnumChildWindows
CharUpperBuffW
GetClassNameW
GetParent
GetDlgCtrlID
SendMessageW
MapVirtualKeyW
PostMessageW
GetWindowRect
SetUserObjectSecurity
GetUserObjectSecurity
CloseDesktop
CloseWindowStation
OpenDesktopW
SetProcessWindowStation
GetProcessWindowStation
OpenWindowStationW
MessageBoxW
DefWindowProcW
MoveWindow
AdjustWindowRectEx
SetRect
SetClipboardData
EmptyClipboard
CountClipboardFormats
CloseClipboard
GetClipboardData
IsClipboardFormatAvailable
OpenClipboard
BlockInput
GetMessageW
LockWindowUpdate
DispatchMessageW
GetMenuItemID
TranslateMessage
SetFocus
PostQuitMessage
KillTimer
CreatePopupMenu
RegisterWindowMessageW
SetTimer
ShowWindow
CreateWindowExW
RegisterClassExW
LoadIconW
LoadCursorW
GetSysColorBrush
GetForegroundWindow
MessageBoxA
DestroyIcon
UnregisterHotKey
CharLowerBuffW
MonitorFromRect
keybd_event
LoadImageW
GetWindowLongW

gdi32

DeleteObject
GetObjectW
GetTextExtentPoint32W
ExtCreatePen
StrokeAndFillPath
StrokePath
EndPath
SetPixel
CloseFigure
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
StretchBlt
GetDIBits
LineTo
AngleArc
MoveToEx
Ellipse
PolyDraw
BeginPath
Rectangle
GetDeviceCaps
SetBkMode
RoundRect
SetBkColor
CreatePen
CreateSolidBrush
SetTextColor
CreateFontW
GetTextFaceW
GetStockObject
CreateDCW
GetPixel
DeleteDC
SetViewportOrgEx

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegEnumValueW
RegDeleteValueW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
GetUserNameW
RegConnectRegistryW
RegEnumKeyExW
CloseServiceHandle
UnlockServiceDatabase
LockServiceDatabase
OpenSCManagerW
InitiateSystemShutdownExW
AdjustTokenPrivileges
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
OpenThreadToken
OpenProcessToken
LookupPrivilegeValueW
DuplicateTokenEx
CreateProcessAsUserW
CreateProcessWithLogonW
InitializeSecurityDescriptor
InitializeAcl
GetLengthSid
SetSecurityDescriptorDacl
CopySid
LogonUserW
GetTokenInformation
GetAclInformation
GetAce
AddAce
GetSecurityDescriptorDacl

shell32

DragQueryPoint
ShellExecuteExW
SHGetFolderPathW
DragQueryFileW
SHEmptyRecycleBinW
SHBrowseForFolderW
SHFileOperationW
SHGetPathFromIDListW
SHGetDesktopFolder
SHGetMalloc
ExtractIconExW
Shell_NotifyIconW
ShellExecuteW
DragFinish

ole32

OleSetMenuDescriptor
MkParseDisplayName
OleSetContainedObject
CoInitialize
CoUninitialize
CoCreateInstance
CreateStreamOnHGlobal
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
StringFromCLSID
IIDFromString
StringFromIID
OleInitialize
CreateBindCtx
CLSIDFromProgID
CoInitializeSecurity
CoCreateInstanceEx
CoSetProxyBlanket
OleUninitialize

oleaut32

SafeArrayAllocData
SafeArrayAllocDescriptorEx
SysAllocString
OleLoadPicture
SafeArrayGetVartype
SafeArrayDestroyData
SafeArrayAccessData
VarR8FromDec
VariantTimeToSystemTime
VariantClear
VariantCopy
VariantInit
SafeArrayDestroyDescriptor
LoadRegTypeLi
GetActiveObject
SafeArrayUnaccessData

Sections

.text
Size: 512KB - Virtual size: 512KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/02 - Windows Updates Blocker/Wub.ini
Download these/02 - Windows Updates Blocker/Wub_x64.exe
.exe windows:5 windows x64 arch:x64

42b8d4fa3bc2c4336a20de1bdf1422d8

Code Sign

79:9e:5f:0f:69:be:cb:93:49:4a:b3:10:ef:62:cc:c3
Certificate

Issuer

CN=Sordum Software

Not Before

15-08-2021 21:00

Not After

31-07-2032 21:00

Subject

CN=Sordum Software

Extended Key Usages

ExtKeyUsageCodeSigning

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

10-12-2014 00:00

Not After

10-12-2034 00:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

20-06-2018 00:00

Not After

10-12-2034 00:00

Subject

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:48:90:3d:c2:8a:bc:a7:a1:19:4d:0c:1c:57:b8:29
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Not Before

06-04-2022 07:41

Not After

08-05-2033 07:41

Subject

CN=Globalsign TSA for MS Authenticode Advanced - G4,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

22:8c:20:21:a8:7d:2d:05:97:59:54:86:c4:a2:59:bc:a7:2f:99:ef
Signer

Actual PE Digest

22:8c:20:21:a8:7d:2d:05:97:59:54:86:c4:a2:59:bc:a7:2f:99:ef

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

wsock32

__WSAFDIsSet
setsockopt
ntohs
recvfrom
sendto
htons
select
listen
WSAStartup
bind
closesocket
connect
socket
send
WSACleanup
ioctlsocket
accept
WSAGetLastError
inet_addr
gethostbyname
gethostname
recv

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

winmm

timeGetTime
waveOutSetVolume
mciSendStringW

comctl32

ImageList_Remove
ImageList_SetDragCursorImage
ImageList_BeginDrag
ImageList_DragEnter
ImageList_DragLeave
ImageList_EndDrag
ImageList_DragMove
ImageList_ReplaceIcon
ImageList_Create
InitCommonControlsEx
ImageList_Destroy

mpr

WNetCancelConnection2W
WNetGetConnectionW
WNetAddConnection2W
WNetUseConnectionW

wininet

InternetReadFile
InternetCloseHandle
InternetOpenW
InternetSetOptionW
InternetCrackUrlW
HttpQueryInfoW
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
FtpOpenFileW
FtpGetFileSize
InternetOpenUrlW
InternetQueryOptionW
InternetQueryDataAvailable

psapi

EnumProcesses
GetModuleBaseNameW
GetProcessMemoryInfo
EnumProcessModules

userenv

CreateEnvironmentBlock
DestroyEnvironmentBlock
UnloadUserProfile
LoadUserProfileW

kernel32

HeapAlloc
Sleep
GetCurrentThreadId
RaiseException
MulDiv
GetVersionExW
GetSystemInfo
MultiByteToWideChar
WideCharToMultiByte
GetModuleHandleW
QueryPerformanceCounter
VirtualFreeEx
OpenProcess
VirtualAllocEx
WriteProcessMemory
ReadProcessMemory
CreateFileW
SetFilePointerEx
ReadFile
WriteFile
FlushFileBuffers
TerminateProcess
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
SetFileTime
GetFileAttributesW
FindFirstFileW
FindClose
DeleteFileW
FindNextFileW
lstrcmpiW
MoveFileW
CopyFileW
CreateDirectoryW
RemoveDirectoryW
SetSystemPowerState
QueryPerformanceFrequency
FindResourceW
LoadResource
LockResource
SizeofResource
EnumResourceNamesW
OutputDebugStringW
GetProcessHeap
CompareStringW
CompareStringA
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetStdHandle
CreatePipe
TerminateThread
GetTempPathW
GetTempFileNameW
VirtualFree
FormatMessageW
GetExitCodeProcess
SetErrorMode
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileSectionW
WritePrivateProfileSectionW
GetPrivateProfileSectionNamesW
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetDriveTypeW
GetDiskFreeSpaceExW
GetDiskFreeSpaceW
GetVolumeInformationW
SetVolumeLabelW
CreateHardLinkW
DeviceIoControl
SetFileAttributesW
GetShortPathNameW
CreateEventW
SetEvent
GetEnvironmentVariableW
SetEnvironmentVariableW
GlobalLock
GlobalUnlock
GlobalAlloc
GetFileSize
GlobalFree
GlobalMemoryStatusEx
Beep
GetComputerNameW
GetWindowsDirectoryW
GetSystemDirectoryW
GetCurrentProcessId
GetCurrentThread
GetProcessIoCounters
CreateProcessW
SetPriorityClass
LoadLibraryW
VirtualAlloc
LoadLibraryExW
HeapFree
WaitForSingleObject
CreateThread
DuplicateHandle
GetLastError
CloseHandle
GetCurrentProcess
GetProcAddress
LoadLibraryA
FreeLibrary
GetModuleFileNameW
GetFullPathNameW
ExitProcess
ExitThread
GetSystemTimeAsFileTime
ResumeThread
GetStartupInfoW
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
SetCurrentDirectoryW
IsDebuggerPresent
GetCurrentDirectoryW
FlsFree
SetLastError
FlsAlloc
HeapSize
RtlUnwindEx
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
RtlPcToFileHeader
GetModuleFileNameA
HeapSetInformation
HeapCreate
SetHandleCount
GetFileType
GetStartupInfoA
SetStdHandle
GetConsoleCP
GetConsoleMode
LCMapStringW
LCMapStringA
SetFilePointer
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetTickCount
HeapReAlloc
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEndOfFile
GetLocalTime
SetEnvironmentVariableA

user32

IsCharLowerW
IsCharUpperW
GetMenuStringW
GetSubMenu
GetCaretPos
IsZoomed
GetWindowLongW
MonitorFromPoint
GetMonitorInfoW
SetWindowLongW
SetLayeredWindowAttributes
FlashWindow
GetClassLongPtrW
TranslateAcceleratorW
IsDialogMessageW
GetSysColor
InflateRect
DrawFocusRect
DrawTextW
FrameRect
DrawFrameControl
FillRect
PtInRect
DestroyAcceleratorTable
CreateAcceleratorTableW
SetCursor
GetWindowDC
GetSystemMetrics
SetWindowLongPtrW
GetActiveWindow
CharNextW
wsprintfW
RedrawWindow
DrawMenuBar
DestroyMenu
SetMenu
GetWindowTextLengthW
CreateMenu
IsDlgButtonChecked
DefDlgProcW
ReleaseCapture
SetCapture
WindowFromPoint
DispatchMessageW
TranslateMessage
PeekMessageW
UnregisterHotKey
CharLowerBuffW
MonitorFromRect
LoadImageW
CreateIconFromResourceEx
mouse_event
ExitWindowsEx
SetActiveWindow
FindWindowExW
EnumThreadWindows
SetMenuDefaultItem
InsertMenuItemW
IsMenu
IsCharAlphaNumericW
GetCursorPos
DeleteMenu
CheckMenuRadioItem
GetMenuItemID
GetMenuItemCount
SetMenuItemInfoW
GetMenuItemInfoW
SetForegroundWindow
IsIconic
FindWindowW
IsClipboardFormatAvailable
keybd_event
SendInput
GetAsyncKeyState
SetKeyboardState
GetKeyboardState
GetKeyState
VkKeyScanW
LoadStringW
DialogBoxParamW
MessageBeep
EndDialog
SendDlgItemMessageW
GetDlgItem
SetWindowTextW
CopyRect
ReleaseDC
GetDC
EndPaint
BeginPaint
GetClientRect
GetMenu
DestroyWindow
EnumWindows
IsWindow
IsWindowEnabled
IsWindowVisible
EnableWindow
InvalidateRect
GetWindowLongPtrW
GetWindowThreadProcessId
AttachThreadInput
GetFocus
GetWindowTextW
ScreenToClient
SendMessageTimeoutW
EnumChildWindows
CharUpperBuffW
GetClassNameW
GetParent
GetDlgCtrlID
SendMessageW
MapVirtualKeyW
PostMessageW
GetWindowRect
SetUserObjectSecurity
GetUserObjectSecurity
CloseDesktop
CloseWindowStation
IsCharAlphaW
GetKeyboardLayoutNameW
ClientToScreen
RegisterHotKey
GetCursorInfo
SetWindowPos
CopyImage
AdjustWindowRectEx
SetRect
SetClipboardData
EmptyClipboard
CountClipboardFormats
CloseClipboard
TrackPopupMenuEx
GetClipboardData
OpenDesktopW
SetProcessWindowStation
GetProcessWindowStation
OpenWindowStationW
MessageBoxW
DefWindowProcW
MoveWindow
SetFocus
PostQuitMessage
KillTimer
CreatePopupMenu
RegisterWindowMessageW
SetTimer
ShowWindow
CreateWindowExW
RegisterClassExW
LoadIconW
LoadCursorW
GetSysColorBrush
GetForegroundWindow
MessageBoxA
DestroyIcon
OpenClipboard
BlockInput
GetMessageW
SystemParametersInfoW
LockWindowUpdate
GetDesktopWindow

gdi32

DeleteObject
GetObjectW
GetTextExtentPoint32W
ExtCreatePen
StrokeAndFillPath
StrokePath
EndPath
SetPixel
CloseFigure
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
StretchBlt
GetDIBits
LineTo
AngleArc
MoveToEx
Ellipse
PolyDraw
BeginPath
Rectangle
GetDeviceCaps
SetBkMode
RoundRect
SetBkColor
CreatePen
CreateSolidBrush
SetTextColor
CreateFontW
GetTextFaceW
GetStockObject
CreateDCW
GetPixel
DeleteDC
SetViewportOrgEx

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegEnumValueW
RegDeleteValueW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
GetUserNameW
RegConnectRegistryW
RegEnumKeyExW
CloseServiceHandle
UnlockServiceDatabase
LockServiceDatabase
OpenSCManagerW
InitiateSystemShutdownExW
AdjustTokenPrivileges
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
OpenThreadToken
OpenProcessToken
LookupPrivilegeValueW
DuplicateTokenEx
CreateProcessAsUserW
CreateProcessWithLogonW
InitializeSecurityDescriptor
InitializeAcl
GetLengthSid
CopySid
SetSecurityDescriptorDacl
LogonUserW
GetTokenInformation
GetAclInformation
GetAce
AddAce
GetSecurityDescriptorDacl

shell32

DragQueryPoint
ShellExecuteExW
SHGetFolderPathW
DragQueryFileW
SHEmptyRecycleBinW
SHBrowseForFolderW
SHFileOperationW
SHGetPathFromIDListW
SHGetDesktopFolder
SHGetMalloc
ExtractIconExW
Shell_NotifyIconW
ShellExecuteW
DragFinish

ole32

OleSetMenuDescriptor
MkParseDisplayName
OleSetContainedObject
CoInitialize
CoUninitialize
CoCreateInstance
CreateStreamOnHGlobal
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
StringFromCLSID
IIDFromString
StringFromIID
OleInitialize
CreateBindCtx
CLSIDFromProgID
CoInitializeSecurity
CoCreateInstanceEx
CoSetProxyBlanket
OleUninitialize

oleaut32

SafeArrayAllocData
SafeArrayAllocDescriptorEx
SysAllocString
OleLoadPicture
SafeArrayGetVartype
SafeArrayDestroyData
SafeArrayAccessData
VariantInit
VariantCopy
VariantClear
VariantTimeToSystemTime
SafeArrayDestroyDescriptor
LoadRegTypeLi
GetActiveObject
SafeArrayUnaccessData
VarR8FromDec

Sections

.text
Size: 599KB - Virtual size: 598KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/install_all.bat
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2005_x64.exe
.exe windows:5 windows x86 arch:x86

0ebb3c09b06b1666d307952e824c8697

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22-08-2007 22:31

Not After

25-08-2012 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21-02-2011 20:53

Not After

21-05-2012 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16-09-2006 01:04

Not After

15-09-2019 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25-07-2008 19:02

Not After

25-07-2013 19:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

72:eb:ec:84:ec:eb:2c:99:f6:93:1a:22:55:c2:43:bc:37:c7:56:59
Signer

Actual PE Digest

72:eb:ec:84:ec:eb:2c:99:f6:93:1a:22:55:c2:43:bc:37:c7:56:59

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

wextract.pdb

Imports

advapi32

FreeSid
AllocateAndInitializeSid
EqualSid
GetTokenInformation
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA

kernel32

LocalFree
LocalAlloc
GetLastError
GetCurrentProcess
lstrlenA
GetModuleFileNameA
GetSystemDirectoryA
_lclose
_llseek
_lopen
WritePrivateProfileStringA
GetWindowsDirectoryA
CreateDirectoryA
GetFileAttributesA
ExpandEnvironmentStringsA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
IsDBCSLeadByte
GetShortPathNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpiA
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
lstrcmpA
FindFirstFileA
FreeResource
GetProcAddress
LoadResource
SizeofResource
FindResourceA
lstrcatA
CloseHandle
WriteFile
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetCurrentDirectoryA
GetTempFileNameA
ExitProcess
CreateFileA
LoadLibraryExA
lstrcpynA
GetVolumeInformationA
FormatMessageA
GetCurrentDirectoryA
GetVersionExA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetTempPathA
GetSystemInfo
CreateMutexA
SetEvent
CreateEventA
CreateThread
ResetEvent
TerminateThread
GetDriveTypeA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
ReadFile
LoadLibraryA
GetDiskFreeSpaceA
MulDiv
EnumResourceLanguagesA
FreeLibrary
LockResource

gdi32

GetDeviceCaps

user32

ExitWindowsEx
wsprintfA
CharNextA
CharUpperA
CharPrevA
SetWindowLongA
GetWindowLongA
CallWindowProcA
DispatchMessageA
MsgWaitForMultipleObjects
PeekMessageA
SendMessageA
SetWindowPos
ReleaseDC
GetDC
GetWindowRect
SendDlgItemMessageA
GetDlgItem
SetForegroundWindow
SetWindowTextA
MessageBoxA
DialogBoxIndirectParamA
ShowWindow
EnableWindow
GetDlgItemTextA
EndDialog
GetDesktopWindow
MessageBeep
SetDlgItemTextA
LoadStringA
GetSystemMetrics

comctl32

ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2005_x86.exe
.exe windows:5 windows x86 arch:x86

0ebb3c09b06b1666d307952e824c8697

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22-08-2007 22:31

Not After

25-08-2012 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21-02-2011 20:53

Not After

21-05-2012 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16-09-2006 01:04

Not After

15-09-2019 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25-07-2008 19:02

Not After

25-07-2013 19:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

5d:9a:9e:30:e8:b4:79:bd:b9:25:8e:b1:69:72:67:0f:90:ec:0f:7f
Signer

Actual PE Digest

5d:9a:9e:30:e8:b4:79:bd:b9:25:8e:b1:69:72:67:0f:90:ec:0f:7f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

wextract.pdb

Imports

advapi32

FreeSid
AllocateAndInitializeSid
EqualSid
GetTokenInformation
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA

kernel32

LocalFree
LocalAlloc
GetLastError
GetCurrentProcess
lstrlenA
GetModuleFileNameA
GetSystemDirectoryA
_lclose
_llseek
_lopen
WritePrivateProfileStringA
GetWindowsDirectoryA
CreateDirectoryA
GetFileAttributesA
ExpandEnvironmentStringsA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
IsDBCSLeadByte
GetShortPathNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpiA
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
lstrcmpA
FindFirstFileA
FreeResource
GetProcAddress
LoadResource
SizeofResource
FindResourceA
lstrcatA
CloseHandle
WriteFile
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetCurrentDirectoryA
GetTempFileNameA
ExitProcess
CreateFileA
LoadLibraryExA
lstrcpynA
GetVolumeInformationA
FormatMessageA
GetCurrentDirectoryA
GetVersionExA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetTempPathA
GetSystemInfo
CreateMutexA
SetEvent
CreateEventA
CreateThread
ResetEvent
TerminateThread
GetDriveTypeA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
ReadFile
LoadLibraryA
GetDiskFreeSpaceA
MulDiv
EnumResourceLanguagesA
FreeLibrary
LockResource

gdi32

GetDeviceCaps

user32

ExitWindowsEx
wsprintfA
CharNextA
CharUpperA
CharPrevA
SetWindowLongA
GetWindowLongA
CallWindowProcA
DispatchMessageA
MsgWaitForMultipleObjects
PeekMessageA
SendMessageA
SetWindowPos
ReleaseDC
GetDC
GetWindowRect
SendDlgItemMessageA
GetDlgItem
SetForegroundWindow
SetWindowTextA
MessageBoxA
DialogBoxIndirectParamA
ShowWindow
EnableWindow
GetDlgItemTextA
EndDialog
GetDesktopWindow
MessageBeep
SetDlgItemTextA
LoadStringA
GetSystemMetrics

comctl32

ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2008_x64.exe
.exe windows:5 windows x86 arch:x86

092eb6daba2f17cbda102fd1a32acd00

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22-08-2007 22:31

Not After

25-08-2012 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21-02-2011 20:53

Not After

21-05-2012 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16-09-2006 01:04

Not After

15-09-2019 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25-07-2008 19:02

Not After

25-07-2013 19:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

8f:01:df:78:ce:80:39:28:c8:49:b3:c7:c4:01:28:81:cc:40:e4:47
Signer

Actual PE Digest

8f:01:df:78:ce:80:39:28:c8:49:b3:c7:c4:01:28:81:cc:40:e4:47

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateFileA
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetEndOfFile
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
FindClose
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.9MB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2008_x86.exe
.exe windows:5 windows x86 arch:x86

092eb6daba2f17cbda102fd1a32acd00

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22-08-2007 22:31

Not After

25-08-2012 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21-02-2011 20:53

Not After

21-05-2012 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16-09-2006 01:04

Not After

15-09-2019 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:05:a2:30:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25-07-2008 19:01

Not After

25-07-2013 19:11

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:85D3-305C-5BCF,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

d0:b8:36:c9:ae:3b:cb:20:6d:59:26:4f:5f:9c:95:6f:4b:15:75:3a
Signer

Actual PE Digest

d0:b8:36:c9:ae:3b:cb:20:6d:59:26:4f:5f:9c:95:6f:4b:15:75:3a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
SetEvent
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
GetVersionExA
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
CreateFileA
FindNextFileA
FindFirstFileA
CopyFileA
SetFileAttributesA
SystemTimeToFileTime
GetSystemTime
GetDiskFreeSpaceA
QueryDosDeviceA
GetCurrentDirectoryA
SetEndOfFile
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetExitCodeProcess
CreateProcessA
ExpandEnvironmentStringsA
GetFileSize
CreateThread
CreateEventA
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CloseHandle
DeviceIoControl
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetErrorMode
GetTickCount
CreateDirectoryA
GetLastError
RemoveDirectoryA
MoveFileExA
SetFilePointer
FindClose
ReadFile

msvcrt

strchr
_strnicmp
_stricmp
strrchr
_strlwr
strncpy
strstr
_snprintf
sprintf

advapi32

AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
InitializeSecurityDescriptor
OpenProcessToken

user32

ShowWindow
SendDlgItemMessageA
SendMessageA
DialogBoxParamA
LoadStringA
EndDialog
SetParent
MessageBoxA

ntdll

NtShutdownSystem
NtAdjustPrivilegesToken
NtClose
NtOpenProcessToken

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.2MB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2010_x64.exe
.exe windows:5 windows x86 arch:x86

a1f6f100bff4507a3332f3f0cdfc24f5

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22-08-2007 22:31

Not After

25-08-2012 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21-02-2011 20:53

Not After

21-05-2012 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16-09-2006 01:04

Not After

15-09-2019 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25-07-2008 19:02

Not After

25-07-2013 19:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

3e:29:68:50:9f:c0:15:85:b2:43:f6:40:df:72:7e:8c:87:c3:b3:4f
Signer

Actual PE Digest

3e:29:68:50:9f:c0:15:85:b2:43:f6:40:df:72:7e:8c:87:c3:b3:4f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

sfxcab.pdb

Imports

msvcrt

__setusermatherr
_initterm
__getmainargs
__initenv
exit
_cexit
_adjust_fdiv
_exit
_c_exit
strncpy
strstr
_strlwr
strrchr
_stricmp
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_XcptFilter
_snprintf
sprintf
strchr
_strnicmp
_vsnprintf

advapi32

InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
AllocateAndInitializeSid
OpenProcessToken
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
InitializeSecurityDescriptor

kernel32

CreateThread
GetFileSize
ExpandEnvironmentStringsA
CreateProcessA
GetExitCodeProcess
InitializeCriticalSectionAndSpinCount
LocalFileTimeToFileTime
SetFileTime
SetEndOfFile
CreateEventA
QueryDosDeviceA
GetDiskFreeSpaceA
GetSystemTime
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentDirectoryA
GetProcessHeap
CopyFileA
SetFileAttributesA
DosDateTimeToFileTime
SetEvent
GetVersionExA
ReadFile
SetFilePointer
MoveFileExA
RemoveDirectoryA
GetLastError
CreateDirectoryA
GetTickCount
SetErrorMode
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
CloseHandle
DeviceIoControl
CreateFileA
GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
FindFirstFileA
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
FindClose
FindNextFileA
SystemTimeToFileTime

user32

SendDlgItemMessageA
SendMessageA
DialogBoxParamA
MessageBoxA
SetParent
EndDialog
LoadStringA
ShowWindow

ntdll

NtOpenProcessToken
NtAdjustPrivilegesToken
NtClose
NtShutdownSystem

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9.8MB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2010_x86.exe
.exe windows:5 windows x86 arch:x86

a1f6f100bff4507a3332f3f0cdfc24f5

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22-08-2007 22:31

Not After

25-08-2012 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21-02-2011 20:53

Not After

21-05-2012 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16-09-2006 01:04

Not After

15-09-2019 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:05:a2:30:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25-07-2008 19:01

Not After

25-07-2013 19:11

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:85D3-305C-5BCF,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

58:5d:c5:26:99:03:d9:98:d7:bd:f4:32:05:e3:4e:3b:e4:dd:15:47
Signer

Actual PE Digest

58:5d:c5:26:99:03:d9:98:d7:bd:f4:32:05:e3:4e:3b:e4:dd:15:47

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

sfxcab.pdb

Imports

msvcrt

__setusermatherr
_initterm
__getmainargs
__initenv
exit
_cexit
_adjust_fdiv
_exit
_c_exit
strncpy
strstr
_strlwr
strrchr
_stricmp
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_XcptFilter
_snprintf
sprintf
strchr
_strnicmp
_vsnprintf

advapi32

InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
AllocateAndInitializeSid
OpenProcessToken
GetTokenInformation
GetLengthSid
InitiateSystemShutdownA
InitializeSecurityDescriptor

kernel32

CreateThread
GetFileSize
ExpandEnvironmentStringsA
CreateProcessA
GetExitCodeProcess
InitializeCriticalSectionAndSpinCount
LocalFileTimeToFileTime
SetFileTime
SetEndOfFile
CreateEventA
QueryDosDeviceA
GetDiskFreeSpaceA
GetSystemTime
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentDirectoryA
GetProcessHeap
CopyFileA
SetFileAttributesA
DosDateTimeToFileTime
SetEvent
GetVersionExA
ReadFile
SetFilePointer
MoveFileExA
RemoveDirectoryA
GetLastError
CreateDirectoryA
GetTickCount
SetErrorMode
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
CloseHandle
DeviceIoControl
CreateFileA
GetDriveTypeA
HeapFree
FormatMessageA
LeaveCriticalSection
DeleteFileA
EnterCriticalSection
TerminateProcess
WaitForMultipleObjects
CreateEventW
FindFirstFileA
Sleep
SetEnvironmentVariableA
GetEnvironmentVariableA
WideCharToMultiByte
HeapAlloc
SetLastError
WriteFile
MoveFileA
ExitProcess
DeleteCriticalSection
FlushFileBuffers
WaitForSingleObject
OpenEventA
GetCurrentProcess
GetFileAttributesA
GetCommandLineA
GetModuleFileNameA
FindClose
FindNextFileA
SystemTimeToFileTime

user32

SendDlgItemMessageA
SendMessageA
DialogBoxParamA
MessageBoxA
SetParent
EndDialog
LoadStringA
ShowWindow

ntdll

NtOpenProcessToken
NtAdjustPrivilegesToken
NtClose
NtShutdownSystem

comctl32

ord17

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8.5MB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2012_x64.exe
.exe windows:5 windows x86 arch:x86

33c6db41ca15b47cfcec52de6c2ab2b7

Code Sign

33:00:00:00:2b:39:32:48:c1:b2:c9:48:f3:00:00:00:00:00:2b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04-09-2012 21:12

Not After

04-12-2013 21:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:C0F4-3086-DEF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24-01-2013 22:33

Not After

24-04-2014 22:33

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31-08-2010 22:19

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:1a:77:bb:74:b3:07:d1:16:b8:00:00:00:00:00:1a
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24-09-2013 17:41

Not After

24-12-2014 17:41

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08-07-2011 20:59

Not After

08-07-2026 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f9:21:a8:7f:5a:3b:9a:0a:03:ac:c7:ff:64:14:0d:fb:d7:83:d6:35:6f:b3:45:b4:6a:5d:07:98:a0:f2:ce:30
Signer

Actual PE Digest

f9:21:a8:7f:5a:3b:9a:0a:03:ac:c7:ff:64:14:0d:fb:d7:83:d6:35:6f:b3:45:b4:6a:5d:07:98:a0:f2:ce:30

Digest Algorithm

sha256

PE Digest Matches

true

fa:4d:cd:f6:4c:96:60:0c:ed:96:a4:ab:84:4d:56:72:9b:e5:6f:2f
Signer

Actual PE Digest

fa:4d:cd:f6:4c:96:60:0c:ed:96:a4:ab:84:4d:56:72:9b:e5:6f:2f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

E:\delivery\Dev\wix36_dev11\build\ship\x86\x86\burn.pdb

Imports

kernel32

CopyFileExW
MapViewOfFile
CreateFileMappingW
CreateMutexW
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
ResetEvent
SetEndOfFile
DeleteFileW
GetThreadLocale
UnmapViewOfFile
GetFullPathNameW
GetTempFileNameW
CreateDirectoryW
GetLocalTime
SetFilePointer
GetComputerNameW
CreateFileA
GetProcessHeap
GetModuleHandleA
CopyFileW
MoveFileExW
GlobalFree
GlobalAlloc
GetFileSizeEx
GetCurrentDirectoryW
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
RaiseException
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FormatMessageW
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
FreeLibrary
InterlockedExchange
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
WideCharToMultiByte
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
GetTimeZoneInformation
CompareStringW
InitializeCriticalSection
CloseHandle
LocalFree
ReleaseMutex
GetVersionExW
GetProcessId
ReadFile
CreateNamedPipeW
ConnectNamedPipe
SetNamedPipeHandleState
lstrlenW
WaitForSingleObject
OpenProcess
CreateFileW
SetFilePointerEx
lstrlenA
RemoveDirectoryW
GetFileAttributesW
ExpandEnvironmentStringsW
VerifyVersionInfoW
VerSetConditionMask
GetTempPathW
GetSystemDirectoryW
GetSystemWow64DirectoryW
GetVolumePathNameW
GetWindowsDirectoryW
GetSystemDefaultLangID
GetUserDefaultLangID
GetDateFormatW
GetSystemTime
LoadLibraryW
InterlockedCompareExchange
GetExitCodeThread
CreateThread
SetEvent
WaitForMultipleObjects
CreateEventW
ProcessIdToSessionId
SetFileAttributesW
FindClose
FindNextFileW
FindFirstFileW
CreateProcessW
GetExitCodeProcess
SetThreadExecutionState
FlushFileBuffers

msi

ord171
ord45
ord137
ord125
ord17
ord8
ord141
ord238
ord190
ord88
ord90
ord173
ord111
ord70
ord169
ord118
ord115
ord116
ord205

shell32

SHGetFolderPathW
ShellExecuteExW
CommandLineToArgvW

rpcrt4

UuidCreate

wininet

HttpQueryInfoW
InternetCrackUrlW
InternetSetOptionW
InternetConnectW
InternetCloseHandle
InternetOpenW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetErrorDlg
InternetReadFile
HttpSendRequestW

wintrust

WinVerifyTrust
WTHelperGetProvSignerFromChain
WTHelperProvDataFromStateData
CryptCATAdminCalcHashFromFileHandle

crypt32

CertGetCertificateContextProperty
CryptHashPublicKeyInfo

gdi32

DeleteDC
DeleteObject
GetObjectW
CreateCompatibleDC
SelectObject
StretchBlt

cabinet

ord23
ord22
ord20

advapi32

CryptAcquireContextW
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext
SetNamedSecurityInfoW
AllocateAndInitializeSid
CheckTokenMembership
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyExW
RegEnumValueW
RegQueryInfoKeyW
RegSetValueExW
InitializeSecurityDescriptor
SetEntriesInAclA
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
RegOpenKeyExW
GetTokenInformation
OpenSCManagerW
OpenServiceW
QueryServiceStatus
CloseServiceHandle
ChangeServiceConfigW
DecryptFileW
SetEntriesInAclW
InitializeAcl
CreateWellKnownSid
InitiateSystemShutdownExW
GetUserNameW
RegQueryValueExW
RegDeleteValueW
RegCloseKey
ConvertStringSecurityDescriptorToSecurityDescriptorW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
QueryServiceConfigW

oleaut32

SysFreeString
SysAllocString
VariantInit
VariantClear

ole32

CLSIDFromProgID
CoInitializeSecurity
CoTaskMemFree
CoCreateInstance
CoInitialize
CoInitializeEx
CoUninitialize
StringFromGUID2

user32

LoadBitmapW
IsWindow
PostMessageW
PeekMessageW
GetMessageW
GetWindowLongW
SetWindowLongW
DefWindowProcW
UnregisterClassW
DispatchMessageW
TranslateMessage
IsDialogMessageW
CreateWindowExW
RegisterClassW
MsgWaitForMultipleObjects
LoadCursorW
PostQuitMessage
GetCursorPos
MonitorFromPoint
GetMonitorInfoW
PostThreadMessageW
MessageBoxW

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Sections

.text
Size: 312KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wixburn
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2012_x86.exe
.exe windows:5 windows x86 arch:x86

33c6db41ca15b47cfcec52de6c2ab2b7

Code Sign

33:00:00:00:2b:39:32:48:c1:b2:c9:48:f3:00:00:00:00:00:2b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04-09-2012 21:12

Not After

04-12-2013 21:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:C0F4-3086-DEF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24-01-2013 22:33

Not After

24-04-2014 22:33

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31-08-2010 22:19

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:1a:77:bb:74:b3:07:d1:16:b8:00:00:00:00:00:1a
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24-09-2013 17:41

Not After

24-12-2014 17:41

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08-07-2011 20:59

Not After

08-07-2026 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

51:3c:0e:d0:e9:29:66:d4:05:e1:26:24:9d:da:d9:c0:63:79:c5:68:38:c7:69:c5:25:f3:62:ab:0e:b8:a4:f6
Signer

Actual PE Digest

51:3c:0e:d0:e9:29:66:d4:05:e1:26:24:9d:da:d9:c0:63:79:c5:68:38:c7:69:c5:25:f3:62:ab:0e:b8:a4:f6

Digest Algorithm

sha256

PE Digest Matches

true

8c:12:40:11:a9:d9:22:02:f1:9b:18:34:2a:70:2d:89:dc:3c:69:a5
Signer

Actual PE Digest

8c:12:40:11:a9:d9:22:02:f1:9b:18:34:2a:70:2d:89:dc:3c:69:a5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

E:\delivery\Dev\wix36_dev11\build\ship\x86\x86\burn.pdb

Imports

kernel32

CopyFileExW
MapViewOfFile
CreateFileMappingW
CreateMutexW
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
ResetEvent
SetEndOfFile
DeleteFileW
GetThreadLocale
UnmapViewOfFile
GetFullPathNameW
GetTempFileNameW
CreateDirectoryW
GetLocalTime
SetFilePointer
GetComputerNameW
CreateFileA
GetProcessHeap
GetModuleHandleA
CopyFileW
MoveFileExW
GlobalFree
GlobalAlloc
GetFileSizeEx
GetCurrentDirectoryW
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
RaiseException
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FormatMessageW
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
FreeLibrary
InterlockedExchange
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
WideCharToMultiByte
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
GetTimeZoneInformation
CompareStringW
InitializeCriticalSection
CloseHandle
LocalFree
ReleaseMutex
GetVersionExW
GetProcessId
ReadFile
CreateNamedPipeW
ConnectNamedPipe
SetNamedPipeHandleState
lstrlenW
WaitForSingleObject
OpenProcess
CreateFileW
SetFilePointerEx
lstrlenA
RemoveDirectoryW
GetFileAttributesW
ExpandEnvironmentStringsW
VerifyVersionInfoW
VerSetConditionMask
GetTempPathW
GetSystemDirectoryW
GetSystemWow64DirectoryW
GetVolumePathNameW
GetWindowsDirectoryW
GetSystemDefaultLangID
GetUserDefaultLangID
GetDateFormatW
GetSystemTime
LoadLibraryW
InterlockedCompareExchange
GetExitCodeThread
CreateThread
SetEvent
WaitForMultipleObjects
CreateEventW
ProcessIdToSessionId
SetFileAttributesW
FindClose
FindNextFileW
FindFirstFileW
CreateProcessW
GetExitCodeProcess
SetThreadExecutionState
FlushFileBuffers

msi

ord171
ord45
ord137
ord125
ord17
ord8
ord141
ord238
ord190
ord88
ord90
ord173
ord111
ord70
ord169
ord118
ord115
ord116
ord205

shell32

SHGetFolderPathW
ShellExecuteExW
CommandLineToArgvW

rpcrt4

UuidCreate

wininet

HttpQueryInfoW
InternetCrackUrlW
InternetSetOptionW
InternetConnectW
InternetCloseHandle
InternetOpenW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetErrorDlg
InternetReadFile
HttpSendRequestW

wintrust

WinVerifyTrust
WTHelperGetProvSignerFromChain
WTHelperProvDataFromStateData
CryptCATAdminCalcHashFromFileHandle

crypt32

CertGetCertificateContextProperty
CryptHashPublicKeyInfo

gdi32

DeleteDC
DeleteObject
GetObjectW
CreateCompatibleDC
SelectObject
StretchBlt

cabinet

ord23
ord22
ord20

advapi32

CryptAcquireContextW
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext
SetNamedSecurityInfoW
AllocateAndInitializeSid
CheckTokenMembership
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyExW
RegEnumValueW
RegQueryInfoKeyW
RegSetValueExW
InitializeSecurityDescriptor
SetEntriesInAclA
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
RegOpenKeyExW
GetTokenInformation
OpenSCManagerW
OpenServiceW
QueryServiceStatus
CloseServiceHandle
ChangeServiceConfigW
DecryptFileW
SetEntriesInAclW
InitializeAcl
CreateWellKnownSid
InitiateSystemShutdownExW
GetUserNameW
RegQueryValueExW
RegDeleteValueW
RegCloseKey
ConvertStringSecurityDescriptorToSecurityDescriptorW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
QueryServiceConfigW

oleaut32

SysFreeString
SysAllocString
VariantInit
VariantClear

ole32

CLSIDFromProgID
CoInitializeSecurity
CoTaskMemFree
CoCreateInstance
CoInitialize
CoInitializeEx
CoUninitialize
StringFromGUID2

user32

LoadBitmapW
IsWindow
PostMessageW
PeekMessageW
GetMessageW
GetWindowLongW
SetWindowLongW
DefWindowProcW
UnregisterClassW
DispatchMessageW
TranslateMessage
IsDialogMessageW
CreateWindowExW
RegisterClassW
MsgWaitForMultipleObjects
LoadCursorW
PostQuitMessage
GetCursorPos
MonitorFromPoint
GetMonitorInfoW
PostThreadMessageW
MessageBoxW

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Sections

.text
Size: 312KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wixburn
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2013_x64.exe
.exe windows:5 windows x86 arch:x86

8e2588a9cf43886de3449dfff03137b6

Code Sign

33:00:00:00:c8:47:22:9d:a3:0d:ca:c0:58:00:00:00:00:00:c8
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07-09-2016 17:58

Not After

07-09-2018 17:58

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:98FD-C61E-E641,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:40:96:a9:ee:70:56:fe:cc:07:00:01:00:00:01:40
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

18-08-2016 20:17

Not After

02-11-2017 20:17

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31-08-2010 22:19

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:8e:87:91:a4:57:1a:5f:ca:3e:00:00:00:00:00:8e
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

17-11-2016 22:09

Not After

17-02-2018 22:09

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08-07-2011 20:59

Not After

08-07-2026 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d2:15:be:d8:35:8b:b3:7c:e3:4d:4d:50:1d:e6:91:02:c5:a1:a4:0d:b3:8f:12:4d:59:61:61:e5:59:2d:0e:e7
Signer

Actual PE Digest

d2:15:be:d8:35:8b:b3:7c:e3:4d:4d:50:1d:e6:91:02:c5:a1:a4:0d:b3:8f:12:4d:59:61:61:e5:59:2d:0e:e7

Digest Algorithm

sha256

PE Digest Matches

true

44:91:26:71:a4:e4:9a:f9:12:6b:88:da:fb:ae:ae:f6:69:04:19:21
Signer

Actual PE Digest

44:91:26:71:a4:e4:9a:f9:12:6b:88:da:fb:ae:ae:f6:69:04:19:21

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

E:\delivery\Dev\wix37\build\ship\x86\burn.pdb

Imports

gdiplus

GdiplusShutdown
GdiplusStartup
GdipDeleteGraphics
GdipFree
GdipCloneImage
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromResource
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipAlloc

advapi32

QueryServiceConfigW
CryptAcquireContextW
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyExW
RegEnumValueW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegCloseKey
RegDeleteValueW
RegQueryValueExW
GetUserNameW
InitiateSystemShutdownExW
CreateWellKnownSid
InitializeAcl
SetEntriesInAclW
DecryptFileW
ChangeServiceConfigW
ControlService
CloseServiceHandle
QueryServiceStatus
OpenServiceW
OpenSCManagerW
RegQueryInfoKeyW
RegSetValueExW
SetEntriesInAclA
SetSecurityDescriptorGroup
RegOpenKeyExW
GetTokenInformation
CheckTokenMembership
AllocateAndInitializeSid
FreeSid
LookupAccountNameW
SetNamedSecurityInfoW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner

user32

GetMessageW
PeekMessageW
PostMessageW
IsWindow
PostQuitMessage
GetWindowLongW
SetWindowLongW
DefWindowProcW
UnregisterClassW
DispatchMessageW
TranslateMessage
IsDialogMessageW
MsgWaitForMultipleObjects
WaitForInputIdle
LoadCursorW
BeginPaint
EndPaint
GetCursorPos
MonitorFromPoint
GetMonitorInfoW
ReleaseDC
MessageBoxW
PostThreadMessageW
RegisterClassW
CreateWindowExW

oleaut32

VariantClear
VariantInit
SysAllocString
SysFreeString

gdi32

GetDeviceCaps
CreateDCW

shell32

ShellExecuteExW
SHGetFolderPathW
CommandLineToArgvW

ole32

CoTaskMemFree
CoCreateInstance
CoInitialize
CoUninitialize
CoInitializeEx
StringFromGUID2
CoInitializeSecurity
CLSIDFromProgID

kernel32

GetCurrentProcess
InitializeCriticalSection
TlsFree
DeleteCriticalSection
CloseHandle
TlsGetValue
Sleep
GetLastError
ReleaseMutex
TlsSetValue
TlsAlloc
GetCurrentThreadId
GetVersionExW
GetModuleHandleW
ReadFile
SetFilePointerEx
CreateFileW
GetCurrentProcessId
GetProcessId
WriteFile
ConnectNamedPipe
SetNamedPipeHandleState
lstrlenW
CompareStringW
LocalFree
CreateNamedPipeW
WaitForSingleObject
OpenProcess
lstrlenA
RemoveDirectoryW
GetFileAttributesW
ExpandEnvironmentStringsW
LeaveCriticalSection
EnterCriticalSection
FreeLibrary
GetProcAddress
VerifyVersionInfoW
VerSetConditionMask
GetComputerNameW
GetTempPathW
GetSystemDirectoryW
GetSystemWow64DirectoryW
GetVolumePathNameW
HeapAlloc
GetSystemDefaultLangID
GetUserDefaultLangID
GetDateFormatW
GetSystemTime
InterlockedExchange
LoadLibraryW
InterlockedCompareExchange
GetExitCodeThread
CreateThread
SetEvent
WaitForMultipleObjects
CreateEventW
ProcessIdToSessionId
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
SetFileAttributesW
FindClose
FindNextFileW
FindFirstFileW
CreateProcessW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetExitCodeProcess
SetThreadExecutionState
CopyFileExW
HeapSetInformation
MapViewOfFile
CreateFileMappingW
CreateMutexW
SetEndOfFile
ResetEvent
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
CreateFileA
GetSystemTimeAsFileTime
VirtualFree
VirtualAlloc
DeleteFileW
GetThreadLocale
GetTimeZoneInformation
TerminateProcess
UnhandledExceptionFilter
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
GlobalAlloc
IsProcessorFeaturePresent
GetTickCount
QueryPerformanceCounter
HeapCreate
SetLastError
EncodePointer
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
GlobalFree
MoveFileExW
CopyFileW
GetFileSizeEx
GetModuleHandleA
RaiseException
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
HeapSize
HeapReAlloc
LCMapStringW
MultiByteToWideChar
SetStdHandle
WriteConsoleW
FlushFileBuffers
GetLocalTime
UnmapViewOfFile
IsDebuggerPresent
DuplicateHandle
HeapFree
FormatMessageW
GetTempFileNameW
GetWindowsDirectoryW
CompareStringA
FreeEnvironmentStringsW
GetModuleFileNameW
GetStdHandle
DecodePointer
ExitProcess
SetUnhandledExceptionFilter
GetStartupInfoW
GetCommandLineW
GetFullPathNameW
CreateDirectoryW
GetProcessHeap

cabinet

ord22
ord20
ord23

crypt32

CertGetCertificateContextProperty
CryptHashPublicKeyInfo

msi

ord88
ord17
ord125
ord116
ord115
ord118
ord8
ord171
ord205
ord45
ord137
ord141
ord238
ord190
ord169
ord90
ord173
ord111
ord70

rpcrt4

UuidCreate

wininet

InternetCloseHandle
HttpAddRequestHeadersW
HttpOpenRequestW
InternetErrorDlg
InternetReadFile
HttpSendRequestW
InternetSetOptionW
InternetOpenW
HttpQueryInfoW
InternetCrackUrlW
InternetConnectW

wintrust

WinVerifyTrust
WTHelperGetProvSignerFromChain
WTHelperProvDataFromStateData
CryptCATAdminCalcHashFromFileHandle

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

Sections

.text
Size: 229KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wixburn
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2013_x86.exe
.exe windows:5 windows x86 arch:x86

8e2588a9cf43886de3449dfff03137b6

Code Sign

33:00:00:00:c6:78:80:36:01:75:1a:69:72:00:00:00:00:00:c6
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07-09-2016 17:58

Not After

07-09-2018 17:58

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:F528-3777-8A76,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:40:96:a9:ee:70:56:fe:cc:07:00:01:00:00:01:40
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

18-08-2016 20:17

Not After

02-11-2017 20:17

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31-08-2010 22:19

Not After

31-08-2020 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03-04-2007 12:53

Not After

03-04-2021 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:8e:87:91:a4:57:1a:5f:ca:3e:00:00:00:00:00:8e
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

17-11-2016 22:09

Not After

17-02-2018 22:09

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08-07-2011 20:59

Not After

08-07-2026 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:23:3d:61:a3:c7:a5:8d:8d:8c:82:da:a0:4b:34:8f:7b:f4:1d:29:40:64:85:23:a9:3c:34:b5:c4:85:42:3f
Signer

Actual PE Digest

52:23:3d:61:a3:c7:a5:8d:8d:8c:82:da:a0:4b:34:8f:7b:f4:1d:29:40:64:85:23:a9:3c:34:b5:c4:85:42:3f

Digest Algorithm

sha256

PE Digest Matches

true

55:93:21:ff:30:02:58:ca:25:32:ed:9f:50:2b:ee:cc:82:3b:d9:62
Signer

Actual PE Digest

55:93:21:ff:30:02:58:ca:25:32:ed:9f:50:2b:ee:cc:82:3b:d9:62

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

E:\delivery\Dev\wix37\build\ship\x86\burn.pdb

Imports

gdiplus

GdiplusShutdown
GdiplusStartup
GdipDeleteGraphics
GdipFree
GdipCloneImage
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromResource
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipAlloc

advapi32

QueryServiceConfigW
CryptAcquireContextW
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyExW
RegEnumValueW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegCloseKey
RegDeleteValueW
RegQueryValueExW
GetUserNameW
InitiateSystemShutdownExW
CreateWellKnownSid
InitializeAcl
SetEntriesInAclW
DecryptFileW
ChangeServiceConfigW
ControlService
CloseServiceHandle
QueryServiceStatus
OpenServiceW
OpenSCManagerW
RegQueryInfoKeyW
RegSetValueExW
SetEntriesInAclA
SetSecurityDescriptorGroup
RegOpenKeyExW
GetTokenInformation
CheckTokenMembership
AllocateAndInitializeSid
FreeSid
LookupAccountNameW
SetNamedSecurityInfoW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner

user32

GetMessageW
PeekMessageW
PostMessageW
IsWindow
PostQuitMessage
GetWindowLongW
SetWindowLongW
DefWindowProcW
UnregisterClassW
DispatchMessageW
TranslateMessage
IsDialogMessageW
MsgWaitForMultipleObjects
WaitForInputIdle
LoadCursorW
BeginPaint
EndPaint
GetCursorPos
MonitorFromPoint
GetMonitorInfoW
ReleaseDC
MessageBoxW
PostThreadMessageW
RegisterClassW
CreateWindowExW

oleaut32

VariantClear
VariantInit
SysAllocString
SysFreeString

gdi32

GetDeviceCaps
CreateDCW

shell32

ShellExecuteExW
SHGetFolderPathW
CommandLineToArgvW

ole32

CoTaskMemFree
CoCreateInstance
CoInitialize
CoUninitialize
CoInitializeEx
StringFromGUID2
CoInitializeSecurity
CLSIDFromProgID

kernel32

GetCurrentProcess
InitializeCriticalSection
TlsFree
DeleteCriticalSection
CloseHandle
TlsGetValue
Sleep
GetLastError
ReleaseMutex
TlsSetValue
TlsAlloc
GetCurrentThreadId
GetVersionExW
GetModuleHandleW
ReadFile
SetFilePointerEx
CreateFileW
GetCurrentProcessId
GetProcessId
WriteFile
ConnectNamedPipe
SetNamedPipeHandleState
lstrlenW
CompareStringW
LocalFree
CreateNamedPipeW
WaitForSingleObject
OpenProcess
lstrlenA
RemoveDirectoryW
GetFileAttributesW
ExpandEnvironmentStringsW
LeaveCriticalSection
EnterCriticalSection
FreeLibrary
GetProcAddress
VerifyVersionInfoW
VerSetConditionMask
GetComputerNameW
GetTempPathW
GetSystemDirectoryW
GetSystemWow64DirectoryW
GetVolumePathNameW
HeapAlloc
GetSystemDefaultLangID
GetUserDefaultLangID
GetDateFormatW
GetSystemTime
InterlockedExchange
LoadLibraryW
InterlockedCompareExchange
GetExitCodeThread
CreateThread
SetEvent
WaitForMultipleObjects
CreateEventW
ProcessIdToSessionId
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
SetFileAttributesW
FindClose
FindNextFileW
FindFirstFileW
CreateProcessW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetExitCodeProcess
SetThreadExecutionState
CopyFileExW
HeapSetInformation
MapViewOfFile
CreateFileMappingW
CreateMutexW
SetEndOfFile
ResetEvent
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
CreateFileA
GetSystemTimeAsFileTime
VirtualFree
VirtualAlloc
DeleteFileW
GetThreadLocale
GetTimeZoneInformation
TerminateProcess
UnhandledExceptionFilter
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
GlobalAlloc
IsProcessorFeaturePresent
GetTickCount
QueryPerformanceCounter
HeapCreate
SetLastError
EncodePointer
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
GlobalFree
MoveFileExW
CopyFileW
GetFileSizeEx
GetModuleHandleA
RaiseException
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
HeapSize
HeapReAlloc
LCMapStringW
MultiByteToWideChar
SetStdHandle
WriteConsoleW
FlushFileBuffers
GetLocalTime
UnmapViewOfFile
IsDebuggerPresent
DuplicateHandle
HeapFree
FormatMessageW
GetTempFileNameW
GetWindowsDirectoryW
CompareStringA
FreeEnvironmentStringsW
GetModuleFileNameW
GetStdHandle
DecodePointer
ExitProcess
SetUnhandledExceptionFilter
GetStartupInfoW
GetCommandLineW
GetFullPathNameW
CreateDirectoryW
GetProcessHeap

cabinet

ord22
ord20
ord23

crypt32

CertGetCertificateContextProperty
CryptHashPublicKeyInfo

msi

ord88
ord17
ord125
ord116
ord115
ord118
ord8
ord171
ord205
ord45
ord137
ord141
ord238
ord190
ord169
ord90
ord173
ord111
ord70

rpcrt4

UuidCreate

wininet

InternetCloseHandle
HttpAddRequestHeadersW
HttpOpenRequestW
InternetErrorDlg
InternetReadFile
HttpSendRequestW
InternetSetOptionW
InternetOpenW
HttpQueryInfoW
InternetCrackUrlW
InternetConnectW

wintrust

WinVerifyTrust
WTHelperGetProvSignerFromChain
WTHelperProvDataFromStateData
CryptCATAdminCalcHashFromFileHandle

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

Sections

.text
Size: 229KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wixburn
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2015_2017_2019_2022_x64.exe
.exe windows:6 windows x86 arch:x86

e277f1464e7729ad9df5ec047611738a

Code Sign

33:00:00:04:03:bd:d5:95:5d:0f:3b:18:ad:00:00:00:00:04:03
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2024 20:11

Not After

11-09-2025 20:11

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08-07-2011 20:59

Not After

08-07-2026 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

87:0e:96:d3:9f:d0:31:80:c7:4a:e4:bc:c1:c4:b6:20:3a:f3:6a:ab:da:c3:72:10:77:3c:12:7f:37:39:30:36
Signer

Actual PE Digest

87:0e:96:d3:9f:d0:31:80:c7:4a:e4:bc:c1:c4:b6:20:3a:f3:6a:ab:da:c3:72:10:77:3c:12:7f:37:39:30:36

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

C:\agent\_work\36\s\wix\build\ship\x86\burn.pdb

Imports

advapi32

RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegEnumValueW
RegQueryInfoKeyW
RegQueryValueExW
RegSetValueExW
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueW
InitiateSystemShutdownExW
GetUserNameW
CloseEventLog
OpenEventLogW
ReportEventW
ConvertStringSecurityDescriptorToSecurityDescriptorW
CreateWellKnownSid
InitializeAcl
DecryptFileW
SetEntriesInAclW
ChangeServiceConfigW
CloseServiceHandle
ControlService
OpenSCManagerW
OpenServiceW
QueryServiceStatus
SetNamedSecurityInfoW
CheckTokenMembership
AllocateAndInitializeSid
SetEntriesInAclA
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
GetTokenInformation
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW
QueryServiceConfigW

user32

PeekMessageW
PostMessageW
IsWindow
WaitForInputIdle
PostQuitMessage
GetMessageW
TranslateMessage
MsgWaitForMultipleObjects
PostThreadMessageW
GetMonitorInfoW
MonitorFromPoint
IsDialogMessageW
LoadCursorW
LoadBitmapW
SetWindowLongW
GetWindowLongW
GetCursorPos
MessageBoxW
CreateWindowExW
UnregisterClassW
RegisterClassW
DefWindowProcW
DispatchMessageW

oleaut32

VariantInit
SysAllocString
VariantClear
SysFreeString

gdi32

DeleteDC
DeleteObject
SelectObject
StretchBlt
GetObjectW
CreateCompatibleDC

shell32

CommandLineToArgvW
SHGetFolderPathW
ShellExecuteExW

ole32

CoUninitialize
CoInitializeEx
CoInitialize
StringFromGUID2
CoCreateInstance
CoTaskMemFree
CoInitializeSecurity
CLSIDFromProgID

kernel32

GetFileType
GetStdHandle
EncodePointer
InitializeCriticalSectionAndSpinCount
SetLastError
RtlUnwind
CreateFileW
CloseHandle
ExitProcess
CreateFileA
SetFilePointer
WriteFile
GetLastError
GetCurrentProcessId
GetSystemDirectoryW
LoadLibraryW
lstrlenA
HeapSetInformation
GetModuleHandleW
GetProcAddress
LocalFree
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
DeleteFileW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesW
GetTempFileNameW
RemoveDirectoryW
SetFileAttributesW
GetTempPathW
MoveFileExW
FormatMessageW
lstrlenW
MultiByteToWideChar
IsValidCodePage
LCMapStringW
ExpandEnvironmentStringsW
GetFileSizeEx
GetFullPathNameW
ReadFile
SetFilePointerEx
SetFileTime
Sleep
GlobalAlloc
GlobalFree
CopyFileW
GetLocalTime
GetModuleFileNameW
CompareStringW
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
FreeLibrary
InitializeCriticalSection
DeleteCriticalSection
ReleaseMutex
GetCurrentProcess
FindFirstFileExW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
CreateProcessW
GetVersionExW
VerSetConditionMask
GetVolumePathNameW
EnterCriticalSection
LeaveCriticalSection
GetSystemTime
GetWindowsDirectoryW
GetNativeSystemInfo
GetSystemWow64DirectoryW
GetModuleHandleExW
GetComputerNameW
VerifyVersionInfoW
GetDateFormatW
GetUserDefaultUILanguage
GetUserDefaultLangID
GetSystemDefaultLangID
GetStringTypeW
DuplicateHandle
LoadLibraryExW
CreateEventW
ProcessIdToSessionId
ConnectNamedPipe
SetNamedPipeHandleState
CreateNamedPipeW
WaitForSingleObject
GetProcessId
OpenProcess
CreateThread
GetExitCodeThread
SetEvent
WaitForMultipleObjects
LocalFileTimeToFileTime
SetEndOfFile
ResetEvent
DosDateTimeToFileTime
CompareStringA
GetExitCodeProcess
SetThreadExecutionState
CopyFileExW
CreateMutexW
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GetThreadLocale
GetStartupInfoW
IsDebuggerPresent
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
DecodePointer
WriteConsoleW
GetModuleHandleA
VirtualAlloc
VirtualFree
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
GetCurrentThreadId
WideCharToMultiByte
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LoadLibraryExA
VirtualQuery
VirtualProtect
GetSystemInfo
RaiseException
GetTimeZoneInformation

rpcrt4

UuidCreate

Sections

.text
Size: 307KB - Virtual size: 306KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wixburn
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Download these/03 - Visual-C-Runtimes-All-in-One-May-2024/vcredist2015_2017_2019_2022_x86.exe
.exe windows:6 windows x86 arch:x86

e277f1464e7729ad9df5ec047611738a

Code Sign

33:00:00:04:03:bd:d5:95:5d:0f:3b:18:ad:00:00:00:00:04:03
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

12-09-2024 20:11

Not After

11-09-2025 20:11

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08-07-2011 20:59

Not After

08-07-2026 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c1:56:c7:77:78:2e:d6:58:27:4a:cb:81:40:76:8d:5d:2f:ae:39:65:4f:b0:b9:15:1e:7f:1e:1e:d9:de:ae:62
Signer

Actual PE Digest

c1:56:c7:77:78:2e:d6:58:27:4a:cb:81:40:76:8d:5d:2f:ae:39:65:4f:b0:b9:15:1e:7f:1e:1e:d9:de:ae:62

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

C:\agent\_work\36\s\wix\build\ship\x86\burn.pdb

Imports

advapi32

RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegEnumValueW
RegQueryInfoKeyW
RegQueryValueExW
RegSetValueExW
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueW
InitiateSystemShutdownExW
GetUserNameW
CloseEventLog
OpenEventLogW
ReportEventW
ConvertStringSecurityDescriptorToSecurityDescriptorW
CreateWellKnownSid
InitializeAcl
DecryptFileW
SetEntriesInAclW
ChangeServiceConfigW
CloseServiceHandle
ControlService
OpenSCManagerW
OpenServiceW
QueryServiceStatus
SetNamedSecurityInfoW
CheckTokenMembership
AllocateAndInitializeSid
SetEntriesInAclA
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
GetTokenInformation
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW
QueryServiceConfigW

user32

PeekMessageW
PostMessageW
IsWindow
WaitForInputIdle
PostQuitMessage
GetMessageW
TranslateMessage
MsgWaitForMultipleObjects
PostThreadMessageW
GetMonitorInfoW
MonitorFromPoint
IsDialogMessageW
LoadCursorW
LoadBitmapW
SetWindowLongW
GetWindowLongW
GetCursorPos
MessageBoxW
CreateWindowExW
UnregisterClassW
RegisterClassW
DefWindowProcW
DispatchMessageW

oleaut32

VariantInit
SysAllocString
VariantClear
SysFreeString

gdi32

DeleteDC
DeleteObject
SelectObject
StretchBlt
GetObjectW
CreateCompatibleDC

shell32

CommandLineToArgvW
SHGetFolderPathW
ShellExecuteExW

ole32

CoUninitialize
CoInitializeEx
CoInitialize
StringFromGUID2
CoCreateInstance
CoTaskMemFree
CoInitializeSecurity
CLSIDFromProgID

kernel32

GetFileType
GetStdHandle
EncodePointer
InitializeCriticalSectionAndSpinCount
SetLastError
RtlUnwind
CreateFileW
CloseHandle
ExitProcess
CreateFileA
SetFilePointer
WriteFile
GetLastError
GetCurrentProcessId
GetSystemDirectoryW
LoadLibraryW
lstrlenA
HeapSetInformation
GetModuleHandleW
GetProcAddress
LocalFree
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
DeleteFileW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesW
GetTempFileNameW
RemoveDirectoryW
SetFileAttributesW
GetTempPathW
MoveFileExW
FormatMessageW
lstrlenW
MultiByteToWideChar
IsValidCodePage
LCMapStringW
ExpandEnvironmentStringsW
GetFileSizeEx
GetFullPathNameW
ReadFile
SetFilePointerEx
SetFileTime
Sleep
GlobalAlloc
GlobalFree
CopyFileW
GetLocalTime
GetModuleFileNameW
CompareStringW
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
FreeLibrary
InitializeCriticalSection
DeleteCriticalSection
ReleaseMutex
GetCurrentProcess
FindFirstFileExW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
CreateProcessW
GetVersionExW
VerSetConditionMask
GetVolumePathNameW
EnterCriticalSection
LeaveCriticalSection
GetSystemTime
GetWindowsDirectoryW
GetNativeSystemInfo
GetSystemWow64DirectoryW
GetModuleHandleExW
GetComputerNameW
VerifyVersionInfoW
GetDateFormatW
GetUserDefaultUILanguage
GetUserDefaultLangID
GetSystemDefaultLangID
GetStringTypeW
DuplicateHandle
LoadLibraryExW
CreateEventW
ProcessIdToSessionId
ConnectNamedPipe
SetNamedPipeHandleState
CreateNamedPipeW
WaitForSingleObject
GetProcessId
OpenProcess
CreateThread
GetExitCodeThread
SetEvent
WaitForMultipleObjects
LocalFileTimeToFileTime
SetEndOfFile
ResetEvent
DosDateTimeToFileTime
CompareStringA
GetExitCodeProcess
SetThreadExecutionState
CopyFileExW
CreateMutexW
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GetThreadLocale
GetStartupInfoW
IsDebuggerPresent
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
DecodePointer
WriteConsoleW
GetModuleHandleA
VirtualAlloc
VirtualFree
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
GetCurrentThreadId
WideCharToMultiByte
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LoadLibraryExA
VirtualQuery
VirtualProtect
GetSystemInfo
RaiseException
GetTimeZoneInformation

rpcrt4

UuidCreate

Sections

.text
Size: 307KB - Virtual size: 306KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wixburn
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Download these/04 - EaseUS RecExperts Pro 3.8.0/Crack/ActiveMgr.dll
.dll windows:6 windows x86 arch:x86

d27ec2f3cd38d5932290a4ce2751ebe6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLocalTime
GetModuleFileNameW
GetProcAddress
LoadLibraryA
LocalAlloc
LocalFree
GetPrivateProfileStringW
CreateProcessW
GetCurrentThreadId
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
GetExitCodeProcess
MultiByteToWideChar
SetUnhandledExceptionFilter
GetCurrentProcessId
CreateMutexW
WaitForSingleObject
ReleaseMutex
GetLastError
CloseHandle
OutputDebugStringW
InitializeCriticalSection
GetTempPathW
GetCurrentProcess
UnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
IsDebuggerPresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

advapi32

RegOpenKeyW
RegCloseKey
SetEntriesInAclW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
FreeSid
AllocateAndInitializeSid
RegQueryValueExW

qt5svg

?render@QSvgRenderer@@QAEXPAVQPainter@@@Z
??1QSvgRenderer@@UAE@XZ
??0QSvgRenderer@@QAE@ABVQString@@PAVQObject@@@Z

qt5quickwidgets

?showEvent@QQuickWidget@@MAEXPAVQShowEvent@@@Z
?sizeHint@QQuickWidget@@UBE?AVQSize@@XZ
?resizeEvent@QQuickWidget@@MAEXPAVQResizeEvent@@@Z
?paintEvent@QQuickWidget@@MAEXPAVQPaintEvent@@@Z
?mouseReleaseEvent@QQuickWidget@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QQuickWidget@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QQuickWidget@@MAEXPAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QQuickWidget@@MAEXPAVQMouseEvent@@@Z
?keyReleaseEvent@QQuickWidget@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QQuickWidget@@MAEXPAVQKeyEvent@@@Z
?hideEvent@QQuickWidget@@MAEXPAVQHideEvent@@@Z
?wheelEvent@QQuickWidget@@MAEXPAVQWheelEvent@@@Z
?focusNextPrevChild@QQuickWidget@@MAE_N_N@Z
?focusInEvent@QQuickWidget@@MAEXPAVQFocusEvent@@@Z
?event@QQuickWidget@@MAE_NPAVQEvent@@@Z
?dropEvent@QQuickWidget@@MAEXPAVQDropEvent@@@Z
?dragMoveEvent@QQuickWidget@@MAEXPAVQDragMoveEvent@@@Z
?dragLeaveEvent@QQuickWidget@@MAEXPAVQDragLeaveEvent@@@Z
?dragEnterEvent@QQuickWidget@@MAEXPAVQDragEnterEvent@@@Z
?setSource@QQuickWidget@@QAEXABVQUrl@@@Z
?setClearColor@QQuickWidget@@QAEXABVQColor@@@Z
?errors@QQuickWidget@@QBE?AV?$QList@VQQmlError@@@@XZ
?rootObject@QQuickWidget@@QBEPAVQQuickItem@@XZ
?rootContext@QQuickWidget@@QBEPAVQQmlContext@@XZ
??1QQuickWidget@@UAE@XZ
??0QQuickWidget@@QAE@PAVQWidget@@@Z
?metaObject@QQuickWidget@@UBEPBUQMetaObject@@XZ
?timerEvent@QQuickWidget@@MAEXPAVQTimerEvent@@@Z
?qt_metacall@QQuickWidget@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QQuickWidget@@UAEPAXPBD@Z
?focusOutEvent@QQuickWidget@@MAEXPAVQFocusEvent@@@Z
?staticMetaObject@QQuickWidget@@2UQMetaObject@@B

qt5widgets

?expandingDirections@QLayout@@UBE?AV?$QFlags@W4Orientation@Qt@@@@XZ
?count@QStackedLayout@@UBEHXZ
?addItem@QStackedLayout@@UAEXPAVQLayoutItem@@@Z
?setFocusPolicy@QWidget@@QAEXW4FocusPolicy@Qt@@@Z
?isActiveWindow@QWidget@@QBE_NXZ
?setCurrentWidget@QStackedLayout@@QAEXPAVQWidget@@@Z
?currentWidget@QStackedLayout@@QBEPAVQWidget@@XZ
?addWidget@QStackedLayout@@QAEHPAVQWidget@@@Z
??1QStackedLayout@@UAE@XZ
??0QStackedLayout@@QAE@XZ
?height@QWidget@@QBEHXZ
?y@QWidget@@QBEHXZ
?x@QWidget@@QBEHXZ
?geometry@QWidget@@QBEABVQRect@@XZ
?timerEvent@QAbstractButton@@MAEXPAVQTimerEvent@@@Z
?spacerItem@QSpacerItem@@UAEPAV1@XZ
?sizeHint@QSpacerItem@@UBE?AVQSize@@XZ
?sizeHint@QPushButton@@UBE?AVQSize@@XZ
?sizeHint@QFrame@@UBE?AVQSize@@XZ
?showEvent@QWidget@@MAEXPAVQShowEvent@@@Z
?setGeometry@QSpacerItem@@UAEXABVQRect@@@Z
?qt_metacast@QPushButton@@UAEPAXPBD@Z
?qt_metacall@QPushButton@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?paintEvent@QFrame@@MAEXPAVQPaintEvent@@@Z
?nextCheckState@QAbstractButton@@MAEXXZ
?mouseReleaseEvent@QAbstractButton@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QAbstractButton@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QAbstractButton@@MAEXPAVQMouseEvent@@@Z
?minimumSizeHint@QPushButton@@UBE?AVQSize@@XZ
?minimumSize@QSpacerItem@@UBE?AVQSize@@XZ
?minimumHeightForWidth@QLayoutItem@@UBEHH@Z
?maximumSize@QSpacerItem@@UBE?AVQSize@@XZ
?layout@QLayoutItem@@UAEPAVQLayout@@XZ
?keyReleaseEvent@QAbstractButton@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QPushButton@@MAEXPAVQKeyEvent@@@Z
?isEmpty@QSpacerItem@@UBE_NXZ
?invalidate@QLayoutItem@@UAEXXZ
?hitButton@QAbstractButton@@MBE_NABVQPoint@@@Z
?heightForWidth@QLayoutItem@@UBEHH@Z
?hasHeightForWidth@QLayoutItem@@UBE_NXZ
?geometry@QSpacerItem@@UBE?AVQRect@@XZ
?focusOutEvent@QPushButton@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QPushButton@@MAEXPAVQFocusEvent@@@Z
?expandingDirections@QSpacerItem@@UBE?AV?$QFlags@W4Orientation@Qt@@@@XZ
?event@QPushButton@@MAE_NPAVQEvent@@@Z
?event@QFrame@@MAE_NPAVQEvent@@@Z
?controlTypes@QLayoutItem@@UBE?AV?$QFlags@W4ControlType@QSizePolicy@@@@XZ
?checkStateSet@QAbstractButton@@MAEXXZ
?changeEvent@QFrame@@MAEXPAVQEvent@@@Z
?changeEvent@QAbstractButton@@MAEXPAVQEvent@@@Z
?addLayout@QBoxLayout@@QAEXPAVQLayout@@H@Z
?addSpacerItem@QBoxLayout@@QAEXPAVQSpacerItem@@@Z
??1QSpacerItem@@UAE@XZ
??0QSpacerItem@@QAE@HHW4Policy@QSizePolicy@@0@Z
??1QFrame@@UAE@XZ
??0QFrame@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z
?maximumSize@QLayout@@UBE?AVQSize@@XZ
??0QPushButton@@QAE@PAVQWidget@@@Z
?resizeEvent@QWidget@@MAEXPAVQResizeEvent@@@Z
?hasHeightForWidth@QStackedLayout@@UBE_NXZ
?update@QWidget@@QAEXXZ
?width@QWidget@@QBEHXZ
?pos@QWidget@@QBE?AVQPoint@@XZ
?widget@QLayoutItem@@UAEPAVQWidget@@XZ
?wheelEvent@QWidget@@MAEXPAVQWheelEvent@@@Z
?takeAt@QBoxLayout@@UAEPAVQLayoutItem@@H@Z
?tabletEvent@QWidget@@MAEXPAVQTabletEvent@@@Z
?spacerItem@QLayoutItem@@UAEPAVQSpacerItem@@XZ
?sizeHint@QDialog@@UBE?AVQSize@@XZ
?sizeHint@QBoxLayout@@UBE?AVQSize@@XZ
?showEvent@QDialog@@MAEXPAVQShowEvent@@@Z
?sharedPainter@QWidget@@MBEPAVQPainter@@XZ
?setVisible@QWidget@@UAEX_N@Z
?setVisible@QDialog@@UAEX_N@Z
?setGeometry@QBoxLayout@@UAEXABVQRect@@@Z
?resizeEvent@QDialog@@MAEXPAVQResizeEvent@@@Z
?reject@QDialog@@UAEXXZ
?redirected@QWidget@@MBEPAVQPaintDevice@@PAVQPoint@@@Z
?qt_metacast@QHBoxLayout@@UAEPAXPBD@Z
?qt_metacall@QHBoxLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?paintEvent@QWidget@@MAEXPAVQPaintEvent@@@Z
?paintEngine@QWidget@@UBEPAVQPaintEngine@@XZ
?open@QDialog@@UAEXXZ
?nativeEvent@QWidget@@MAE_NABVQByteArray@@PAXPAJ@Z
?moveEvent@QWidget@@MAEXPAVQMoveEvent@@@Z
?mouseReleaseEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?minimumSizeHint@QWidget@@UBE?AVQSize@@XZ
?minimumSizeHint@QDialog@@UBE?AVQSize@@XZ
?minimumSize@QBoxLayout@@UBE?AVQSize@@XZ
?minimumHeightForWidth@QBoxLayout@@UBEHH@Z
?metric@QWidget@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?metaObject@QHBoxLayout@@UBEPBUQMetaObject@@XZ
?maximumSize@QBoxLayout@@UBE?AVQSize@@XZ
?leaveEvent@QWidget@@MAEXPAVQEvent@@@Z
?layout@QLayout@@UAEPAV1@XZ
?keyReleaseEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QDialog@@MAEXPAVQKeyEvent@@@Z
?itemAt@QBoxLayout@@UBEPAVQLayoutItem@@H@Z
?isEmpty@QLayout@@UBE_NXZ
?invalidate@QBoxLayout@@UAEXXZ
?inputMethodQuery@QWidget@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QWidget@@MAEXPAVQInputMethodEvent@@@Z
?initPainter@QWidget@@MBEXPAVQPainter@@@Z
?indexOf@QLayout@@UBEHPAVQWidget@@@Z
?hideEvent@QWidget@@MAEXPAVQHideEvent@@@Z
?heightForWidth@QWidget@@UBEHH@Z
?heightForWidth@QBoxLayout@@UBEHH@Z
?hasHeightForWidth@QWidget@@UBE_NXZ
?hasHeightForWidth@QBoxLayout@@UBE_NXZ
?geometry@QLayout@@UBE?AVQRect@@XZ
?focusOutEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?focusNextPrevChild@QWidget@@MAE_N_N@Z
?focusInEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?expandingDirections@QBoxLayout@@UBE?AV?$QFlags@W4Orientation@Qt@@@@XZ
?eventFilter@QDialog@@MAE_NPAVQObject@@PAVQEvent@@@Z
?event@QWidget@@MAE_NPAVQEvent@@@Z
?enterEvent@QWidget@@MAEXPAVQEvent@@@Z
?dropEvent@QWidget@@MAEXPAVQDropEvent@@@Z
?dragMoveEvent@QWidget@@MAEXPAVQDragMoveEvent@@@Z
?dragLeaveEvent@QWidget@@MAEXPAVQDragLeaveEvent@@@Z
?dragEnterEvent@QWidget@@MAEXPAVQDragEnterEvent@@@Z
?done@QDialog@@UAEXH@Z
?devType@QWidget@@UBEHXZ
?count@QBoxLayout@@UBEHXZ
?controlTypes@QLayout@@UBE?AV?$QFlags@W4ControlType@QSizePolicy@@@@XZ
?contextMenuEvent@QWidget@@MAEXPAVQContextMenuEvent@@@Z
?contextMenuEvent@QDialog@@MAEXPAVQContextMenuEvent@@@Z
?closeEvent@QWidget@@MAEXPAVQCloseEvent@@@Z
?closeEvent@QDialog@@MAEXPAVQCloseEvent@@@Z
?childEvent@QLayout@@MAEXPAVQChildEvent@@@Z
?changeEvent@QWidget@@MAEXPAVQEvent@@@Z
?addItem@QBoxLayout@@UAEXPAVQLayoutItem@@@Z
?actionEvent@QWidget@@MAEXPAVQActionEvent@@@Z
?accept@QDialog@@UAEXXZ
?exec@QDialog@@UAEHXZ
??1QDialog@@UAE@XZ
??0QDialog@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z
?setAttribute@QWidget@@QAEXW4WidgetAttribute@Qt@@_N@Z
?windowFlags@QWidget@@QBE?AV?$QFlags@W4WindowType@Qt@@@@XZ
?setWindowFlags@QWidget@@QAEXV?$QFlags@W4WindowType@Qt@@@@@Z
?setLayout@QWidget@@QAEXPAVQLayout@@@Z
?move@QWidget@@QAEXHH@Z
?hide@QWidget@@QAEXXZ
?show@QWidget@@QAEXXZ
?mapToGlobal@QWidget@@QBE?AVQPoint@@ABV2@@Z
?setFixedSize@QWidget@@QAEXHH@Z
??1QHBoxLayout@@UAE@XZ
??0QHBoxLayout@@QAE@XZ
?heightForWidth@QStackedLayout@@UBEHH@Z
?itemAt@QStackedLayout@@UBEPAVQLayoutItem@@H@Z
?move@QWidget@@QAEXABVQPoint@@@Z
?metaObject@QStackedLayout@@UBEPBUQMetaObject@@XZ
?minimumSize@QStackedLayout@@UBE?AVQSize@@XZ
?qt_metacall@QStackedLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QStackedLayout@@UAEPAXPBD@Z
?setGeometry@QStackedLayout@@UAEXABVQRect@@@Z
?sizeHint@QStackedLayout@@UBE?AVQSize@@XZ
?takeAt@QStackedLayout@@UAEPAVQLayoutItem@@H@Z
??0QVBoxLayout@@QAE@XZ
??1QVBoxLayout@@UAE@XZ
?isEnabled@QWidget@@QBE_NXZ
?rect@QWidget@@QBE?AVQRect@@XZ
?setFixedSize@QWidget@@QAEXABVQSize@@@Z
?nativeParentWidget@QWidget@@QBEPAV1@XZ
?setCursor@QWidget@@QAEXABVQCursor@@@Z
?setMouseTracking@QWidget@@QAEX_N@Z
?metaObject@QVBoxLayout@@UBEPBUQMetaObject@@XZ
?qt_metacall@QVBoxLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QVBoxLayout@@UAEPAXPBD@Z
?invalidate@QLayout@@UAEXXZ
?staticMetaObject@QPushButton@@2UQMetaObject@@B
?staticMetaObject@QFrame@@2UQMetaObject@@B
?qt_metacall@QFrame@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QFrame@@UAEPAXPBD@Z
?staticMetaObject@QDialog@@2UQMetaObject@@B
?qt_metacall@QDialog@@UAEHW4Call@QMetaObject@@HPAPAX@Z
??1QPushButton@@UAE@XZ
?qt_metacast@QDialog@@UAEPAXPBD@Z
?setContentsMargins@QLayout@@QAEXHHHH@Z
?addWidget@QBoxLayout@@QAEXPAVQWidget@@HV?$QFlags@W4AlignmentFlag@Qt@@@@@Z
?setSpacing@QBoxLayout@@QAEXH@Z

qt5quick

?setHeight@QQuickItem@@QAEXN@Z

qt5gui

?globalPos@QMouseEvent@@QBE?AVQPoint@@XZ
?setRenderHints@QPainter@@QAEXV?$QFlags@W4RenderHint@QPainter@@@@_N@Z
?drawPixmap@QPainter@@QAEXABVQRect@@ABVQPixmap@@@Z
?setPen@QPainter@@QAEXW4PenStyle@Qt@@@Z
??1QPainter@@QAE@XZ
??0QPainter@@QAE@PAVQPaintDevice@@@Z
?isNull@QPixmap@@QBE_NXZ
??1QCursor@@QAE@XZ
??0QCursor@@QAE@W4CursorShape@Qt@@@Z
?setText@QClipboard@@QAEXABVQString@@W4Mode@1@@Z
?clipboard@QGuiApplication@@SAPAVQClipboard@@XZ
?openUrl@QDesktopServices@@SA_NABVQUrl@@@Z
?geometry@QScreen@@QBE?AVQRect@@XZ
?screens@QGuiApplication@@SA?AV?$QList@PAVQScreen@@@@XZ
?focusWindow@QGuiApplication@@SAPAVQWindow@@XZ
?geometry@QWindow@@QBE?AVQRect@@XZ
??1QPixmap@@UAE@XZ
??0QPixmap@@QAE@ABVQString@@PBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
??0QColor@@QAE@W4GlobalColor@Qt@@@Z

qt5qml

?setContextProperty@QQmlContext@@QAEXABVQString@@ABVQVariant@@@Z
?setContextProperty@QQmlContext@@QAEXABVQString@@PAVQObject@@@Z
?description@QQmlError@@QBE?AVQString@@XZ
??1QQmlError@@QAE@XZ

qt5core

??0QString@@QAE@ABV0@@Z
?staticMetaObject@QObject@@2UQMetaObject@@B
?qt_metacall@QObject@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QObject@@UAEPAXPBD@Z
?dynamicMetaObject@QObjectData@@QBEPAUQMetaObject@@XZ
?activate@QMetaObject@@SAXPAVQObject@@PBU1@HPAPAX@Z
?qResourceFeatureZlib@@YAEXZ
?qUnregisterResourceData@@YA_NHPBE00@Z
?qRegisterResourceData@@YA_NHPBE00@Z
?contains@QString@@QBE_NABV1@W4CaseSensitivity@Qt@@@Z
?sharedNull@QArrayData@@SAPAU1@XZ
?deallocate@QArrayData@@SAXPAU1@II@Z
?allocate@QArrayData@@SAPAU1@IIIV?$QFlags@W4AllocationOption@QArrayData@@@@@Z
?data@QArrayData@@QAEPAXXZ
??0QSize@@QAE@HH@Z
?qBadAlloc@@YAXXZ
?staticMetaObject@QTimer@@2UQMetaObject@@B
?shared_null@QListData@@2UData@1@B
?toJson@QJsonDocument@@QBE?AVQByteArray@@W4JsonFormat@1@@Z
??1QJsonDocument@@QAE@XZ
??0QJsonDocument@@QAE@ABVQJsonObject@@@Z
??AQJsonObject@@QAE?AVQJsonValueRef@@ABVQString@@@Z
?isEmpty@QJsonObject@@QBE_NXZ
??1QJsonObject@@QAE@XZ
??0QJsonObject@@QAE@XZ
??4QJsonValueRef@@QAEAAV0@ABVQJsonValue@@@Z
??1QJsonValue@@QAE@XZ
??0QJsonValue@@QAE@PBD@Z
??0QJsonValue@@QAE@ABVQString@@@Z
?mkpath@QDir@@QBE_NABVQString@@@Z
?toNativeSeparators@QDir@@SA?AVQString@@ABV2@@Z
??1QDir@@QAE@XZ
??0QDir@@QAE@ABVQString@@@Z
?value@QSettings@@QBE?AVQVariant@@ABVQString@@ABV2@@Z
?setValue@QSettings@@QAEXABVQString@@ABVQVariant@@@Z
??1QSettings@@UAE@XZ
??0QSettings@@QAE@ABVQString@@W4Format@0@PAVQObject@@@Z
?timeout@QTimer@@QAEXUQPrivateSignal@1@@Z
?stop@QTimer@@QAEXXZ
?start@QTimer@@QAEXH@Z
??1QTimer@@UAE@XZ
??0QTimer@@QAE@PAVQObject@@@Z
?startDetached@QProcess@@SA_NABVQString@@ABVQStringList@@@Z
?setCreateProcessArgumentsModifier@QProcess@@QAEXV?$function@$$A6AXPAUCreateProcessArguments@QProcess@@@Z@std@@@Z
??1QProcess@@UAE@XZ
??0QProcess@@QAE@PAVQObject@@@Z
?writableLocation@QStandardPaths@@SA?AVQString@@W4StandardLocation@1@@Z
??6QDebug@@QAEAAV0@PBD@Z
?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ
?instance@QCoreApplication@@SAPAV1@XZ
?toString@QVariant@@QBE?AVQString@@XZ
??0QVariant@@QAE@ABVQString@@@Z
?property@QObject@@QBE?AVQVariant@@PBD@Z
?append@QListData@@QAEPAPAXXZ
?detach_grow@QListData@@QAEPAUData@1@PAHH@Z
?fromStdString@QString@@SA?AV1@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??9QString@@QBE_NPBD@Z
??8QString@@QBE_NPBD@Z
??YQString@@QAEAAV0@PBD@Z
?append@QString@@QAEAAV1@PBD@Z
??4QString@@QAEAAV0@PBD@Z
??0QString@@QAE@ABVQByteArray@@@Z
?number@QString@@SA?AV1@_JH@Z
?toInt@QString@@QBEHPA_NH@Z
?toWCharArray@QString@@QBEHPA_W@Z
?fromLocal8Bit@QString@@SA?AV1@PBDH@Z
?fromUtf8@QString@@SA?AV1@PBDH@Z
??YQString@@QAEAAV0@ABV0@@Z
?append@QString@@QAEAAV1@ABV1@@Z
?left@QString@@QBE?AV1@H@Z
?arg@QString@@QBE?AV1@ABV1@HVQChar@@@Z
?clear@QString@@QAEXXZ
?length@QString@@QBEHXZ
??0QChar@@QAE@UQLatin1Char@@@Z
??BConnection@QMetaObject@@QBEPQ01@PAXXZ
??BQByteArray@@QBEPBDXZ
??1QByteArray@@QAE@XZ
?warning@QMessageLogger@@QBE?AVQDebug@@XZ
?toMap@QVariant@@QBE?AV?$QMap@VQString@@VQVariant@@@@XZ
?toBool@QVariant@@QBE_NXZ
?toInt@QVariant@@QBEHPA_N@Z
?isValid@QVariant@@QBE_NXZ
??4QVariant@@QAEAAV0@ABV0@@Z
??0QVariant@@QAE@ABV0@@Z
??0QVariant@@QAE@XZ
?freeData@QMapDataBase@@SAXPAU1@@Z
?createData@QMapDataBase@@SAPAU1@XZ
?freeTree@QMapDataBase@@QAEXPAUQMapNodeBase@@H@Z
?createNode@QMapDataBase@@QAEPAUQMapNodeBase@@HHPAU2@_N@Z
?recalcMostLeftNode@QMapDataBase@@QAEXXZ
?freeNodeAndRebalance@QMapDataBase@@QAEXPAUQMapNodeBase@@@Z
?setParent@QMapNodeBase@@QAEXPAU1@@Z
?setColor@QMapNodeBase@@QAEXW4Color@1@@Z
?color@QMapNodeBase@@QBE?AW4Color@1@XZ
?intersects@QRect@@QBE_NABV1@@Z
?height@QRect@@QBEHXZ
?width@QRect@@QBEHXZ
?y@QRect@@QBEHXZ
?x@QRect@@QBEHXZ
?getAndRef@ExternalRefCountData@QtSharedPointer@@SAPAU12@PBVQObject@@@Z
?sender@QObject@@IBEPAV1@XZ
?isWidgetType@QObject@@QBE_NXZ
?end@QListData@@QBEPAPAXXZ
?begin@QListData@@QBEPAPAXXZ
?dispose@QListData@@QAEXXZ
?detach@QListData@@QAEPAUData@1@H@Z
?argToQString@QtPrivate@@YA?AVQString@@VQStringView@@IPAPBUArgBase@1@@Z
?toStdString@QString@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
??M@YA_NABVQString@@0@Z
?number@QString@@SA?AV1@HH@Z
?data@QString@@QBEPBVQChar@@XZ
?isEmpty@QString@@QBE_NXZ
?size@QString@@QBEHXZ
??1QObject@@UAE@XZ
??0QObject@@QAE@PAV0@@Z
??4QString@@QAEAAV0@ABV0@@Z
?connectImpl@QObject@@CA?AVConnection@QMetaObject@@PBV1@PAPAX01PAVQSlotObjectBase@QtPrivate@@W4ConnectionType@Qt@@PBHPBU3@@Z
??1QUrl@@QAE@XZ
??0QUrl@@QAE@ABVQString@@W4ParsingMode@0@@Z
??6QDebug@@QAEAAV0@ABVQString@@@Z
??1QDebug@@QAE@XZ
??0QVariant@@QAE@_N@Z
??0QVariant@@QAE@H@Z
??1QVariant@@QAE@XZ
?setProperty@QObject@@QAE_NPBDABVQVariant@@@Z
?connect@QObject@@SA?AVConnection@QMetaObject@@PBV1@PBD01W4ConnectionType@Qt@@@Z
?setParent@QObject@@QAEXPAV1@@Z
??1Connection@QMetaObject@@QAE@XZ
?at@QListData@@QBEPAPAXH@Z
?isEmpty@QListData@@QBE_NXZ
?dispose@QListData@@SAXPAUData@1@@Z
?y@QPoint@@QBEHXZ
?x@QPoint@@QBEHXZ
??0QPoint@@QAE@HH@Z
??0QPoint@@QAE@XZ
??0QString@@QAE@UQStringDataPtr@@@Z
??0QString@@QAE@PBD@Z
?debug@QMessageLogger@@QBE?AVQDebug@@XZ
??0QMessageLogger@@QAE@PBDH0@Z
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?event@QObject@@UAE_NPAVQEvent@@@Z
?disconnectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?connectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?toStdWString@QString@@QBE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?fromWCharArray@QString@@SA?AV1@PB_WH@Z
??4QString@@QAEAAV0@$$QAV0@@Z
??0QString@@QAE@$$QAV0@@Z
??1QString@@QAE@XZ
??0QString@@QAE@XZ

msvcp140

_Thrd_start
?_Throw_Cpp_error@std@@YAXH@Z
?_Throw_C_error@std@@YAXH@Z
_Cnd_do_broadcast_at_thread_exit
_Cnd_signal
_Cnd_wait
_Cnd_destroy
_Cnd_init
_Mtx_unlock
_Mtx_lock
_Mtx_destroy
_Mtx_init
_Thrd_id
_Thrd_join
?_Xlength_error@std@@YAXPBD@Z

vcruntime140

_except_handler4_common
__std_exception_destroy
memcmp
__std_exception_copy
_purecall
wcsrchr
__RTDynamicCast
_CxxThrowException
memset
memmove
memcpy
__CxxFrameHandler3
__std_type_info_destroy_list

api-ms-win-crt-runtime-l1-1-0

abort
terminate
_register_onexit_function
_initialize_narrow_environment
_crt_atexit
_initialize_onexit_table
_initterm_e
_initterm
_configure_narrow_argv
_invalid_parameter_noinfo_noreturn
_execute_onexit_table
_cexit
_seh_filter_dll

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vswprintf
__stdio_common_vswprintf_s
fclose
fflush
fseek
fwrite
ftell
_wfopen

api-ms-win-crt-string-l1-1-0

_wcsicmp

api-ms-win-crt-time-l1-1-0

_time64
_difftime64

api-ms-win-crt-heap-l1-1-0

malloc
free
_callnewh

Exports

Exports

BuildImp

Sections

.text
Size: - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 770KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.~rL
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.s77
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$('
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 726B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/04 - EaseUS RecExperts Pro 3.8.0/Crack/RecExperts.exe
.exe windows:6 windows x86 arch:x86

d5d0eb85260fd81038243b6abe5a9f17

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClassNameW
GetWindowThreadProcessId
GetWindow
GetWindowRect
FindWindowW
IsWindowVisible
GetParent
EnumWindows
GetTopWindow
RegisterDeviceNotificationW
ExitWindowsEx
GetDesktopWindow
DestroyIcon
GetClientRect
SetRect
SystemParametersInfoW
EnumDisplaySettingsW
RegisterHotKey
UnregisterHotKey
VkKeyScanW
GetSystemMetrics
SetWindowLongW
GetWindowLongW
GetWindowPlacement
ReleaseCapture
GetClassNameA
GetWindowTextW
SendMessageTimeoutW
SendMessageW
GetWindowTextA

shell32

ShellExecuteExA
SHAppBarMessage
SHGetSpecialFolderPathW
CommandLineToArgvW

kernel32

GetProcessHeap
HeapFree
FormatMessageA
AreFileApisANSI
CloseHandle
OpenProcess
IsWow64Process
GetModuleFileNameA
GetModuleHandleW
GetProcAddress
QueryFullProcessImageNameW
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileSectionA
GetConsoleWindow
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
Thread32First
Thread32Next
OutputDebugStringW
GetLastError
GetTempPathW
ReleaseMutex
WaitForSingleObject
CreateMutexW
GetCurrentProcessId
GetCurrentThreadId
GetLocalTime
GetModuleFileNameW
LocalAlloc
LocalFree
DeleteFileW
LoadLibraryA
WaitForMultipleObjectsEx
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
LoadLibraryW
K32GetProcessImageFileNameA
InitializeCriticalSectionEx
GetPrivateProfileStringW
SetEvent
ResetEvent
CreateEventW
Sleep
SetThreadExecutionState
CreateFileW
GetTempFileNameW
CreateProcessW
GetPrivateProfileIntW
SetUnhandledExceptionFilter
GetCurrentProcess
GetCurrentThread
GetTickCount
FormatMessageW
QueryPerformanceCounter
QueryPerformanceFrequency
CreateEventA
CreateDirectoryW
GetExitCodeProcess
WideCharToMultiByte
MultiByteToWideChar
FindFirstFileW
FindNextFileW
FindClose
QueryFullProcessImageNameA
SetLastError
OpenEventA
SetWaitableTimer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleA
CreateWaitableTimerA
IsValidCodePage
IsDBCSLeadByteEx
InitializeSListHead
GetSystemTimeAsFileTime
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
UnhandledExceptionFilter
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
GetCommandLineW
DeviceIoControl
GetFileAttributesW
GetFileAttributesExW
RemoveDirectoryW
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

advapi32

LookupPrivilegeValueW
AdjustTokenPrivileges
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
RevertToSelf
IsValidSecurityDescriptor
InitializeAcl
ImpersonateSelf
GetLengthSid
AddAccessAllowedAce
AccessCheck
OpenThreadToken
OpenProcessToken
RegGetValueW
RegSetValueExW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyW
RegCloseKey
SetEntriesInAclW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
FreeSid
AllocateAndInitializeSid

ole32

CoInitializeEx
CoUninitialize
CoCreateInstance
CoInitialize

oleaut32

VariantClear
VariantInit

qt5svg

?render@QSvgRenderer@@QAEXPAVQPainter@@@Z
??0QSvgRenderer@@QAE@ABVQString@@PAVQObject@@@Z
??1QSvgRenderer@@UAE@XZ

qt5quickwidgets

?keyReleaseEvent@QQuickWidget@@MAEXPAVQKeyEvent@@@Z
?mouseDoubleClickEvent@QQuickWidget@@MAEXPAVQMouseEvent@@@Z
?keyPressEvent@QQuickWidget@@MAEXPAVQKeyEvent@@@Z
?hideEvent@QQuickWidget@@MAEXPAVQHideEvent@@@Z
?focusOutEvent@QQuickWidget@@MAEXPAVQFocusEvent@@@Z
?focusNextPrevChild@QQuickWidget@@MAE_N_N@Z
?focusInEvent@QQuickWidget@@MAEXPAVQFocusEvent@@@Z
?event@QQuickWidget@@MAE_NPAVQEvent@@@Z
?dropEvent@QQuickWidget@@MAEXPAVQDropEvent@@@Z
?dragMoveEvent@QQuickWidget@@MAEXPAVQDragMoveEvent@@@Z
?dragLeaveEvent@QQuickWidget@@MAEXPAVQDragLeaveEvent@@@Z
?dragEnterEvent@QQuickWidget@@MAEXPAVQDragEnterEvent@@@Z
?setSource@QQuickWidget@@QAEXABVQUrl@@@Z
?setClearColor@QQuickWidget@@QAEXABVQColor@@@Z
?setResizeMode@QQuickWidget@@QAEXW4ResizeMode@1@@Z
?rootObject@QQuickWidget@@QBEPAVQQuickItem@@XZ
??1QQuickWidget@@UAE@XZ
??0QQuickWidget@@QAE@PAVQWidget@@@Z
?mousePressEvent@QQuickWidget@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QQuickWidget@@MAEXPAVQMouseEvent@@@Z
?paintEvent@QQuickWidget@@MAEXPAVQPaintEvent@@@Z
?resizeEvent@QQuickWidget@@MAEXPAVQResizeEvent@@@Z
?showEvent@QQuickWidget@@MAEXPAVQShowEvent@@@Z
?sizeHint@QQuickWidget@@UBE?AVQSize@@XZ
?timerEvent@QQuickWidget@@MAEXPAVQTimerEvent@@@Z
?wheelEvent@QQuickWidget@@MAEXPAVQWheelEvent@@@Z
?qt_metacast@QQuickWidget@@UAEPAXPBD@Z
?qt_metacall@QQuickWidget@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?staticMetaObject@QQuickWidget@@2UQMetaObject@@B
?mouseMoveEvent@QQuickWidget@@MAEXPAVQMouseEvent@@@Z

qt5widgets

?resize@QWidget@@QAEXHH@Z
?update@QWidget@@QAEXABVQRect@@@Z
?setWindowTitle@QWidget@@QAEXABVQString@@@Z
?pos@QWidget@@QBE?AVQPoint@@XZ
?takeAt@QStackedLayout@@UAEPAVQLayoutItem@@H@Z
?sizeHint@QStackedLayout@@UBE?AVQSize@@XZ
?setGeometry@QStackedLayout@@UAEXABVQRect@@@Z
?qt_metacast@QStackedLayout@@UAEPAXPBD@Z
?qt_metacall@QStackedLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?minimumSize@QStackedLayout@@UBE?AVQSize@@XZ
?metaObject@QStackedLayout@@UBEPBUQMetaObject@@XZ
?maximumSize@QLayout@@UBE?AVQSize@@XZ
?itemAt@QStackedLayout@@UBEPAVQLayoutItem@@H@Z
?invalidate@QLayout@@UAEXXZ
?heightForWidth@QStackedLayout@@UBEHH@Z
?hasHeightForWidth@QStackedLayout@@UBE_NXZ
?expandingDirections@QLayout@@UBE?AV?$QFlags@W4Orientation@Qt@@@@XZ
?count@QStackedLayout@@UBEHXZ
?addItem@QStackedLayout@@UAEXPAVQLayoutItem@@@Z
?setCurrentWidget@QStackedLayout@@QAEXPAVQWidget@@@Z
?addWidget@QStackedLayout@@QAEHPAVQWidget@@@Z
??1QStackedLayout@@UAE@XZ
??0QStackedLayout@@QAE@XZ
?removeWidget@QLayout@@QAEXPAVQWidget@@@Z
?setVerticalStretch@QSizePolicy@@QAEXH@Z
?setHorizontalStretch@QSizePolicy@@QAEXH@Z
??0QSizePolicy@@QAE@W4Policy@0@0W4ControlType@0@@Z
?qt_metacast@QWidget@@UAEPAXPBD@Z
?qt_metacall@QWidget@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?metaObject@QWidget@@UBEPBUQMetaObject@@XZ
?setGeometry@QWidget@@QAEXABVQRect@@@Z
?resize@QWidget@@QAEXABVQSize@@@Z
?mouseGrabber@QWidget@@SAPAV1@XZ
?releaseMouse@QWidget@@QAEXXZ
?minimumHeight@QWidget@@QBEHXZ
?minimumWidth@QWidget@@QBEHXZ
?y@QWidget@@QBEHXZ
?x@QWidget@@QBEHXZ
?frameGeometry@QWidget@@QBE?AVQRect@@XZ
?setStyleSheet@QApplication@@QAEXABVQString@@@Z
?exec@QApplication@@SAHXZ
?setFont@QApplication@@SAXABVQFont@@PBD@Z
??1QApplication@@UAE@XZ
??0QApplication@@QAE@AAHPAPADH@Z
?staticMetaObject@QAction@@2UQMetaObject@@B
?wheelEvent@QMenu@@MAEXPAVQWheelEvent@@@Z
?timerEvent@QMenu@@MAEXPAVQTimerEvent@@@Z
?sizeHint@QMenu@@UBE?AVQSize@@XZ
?qt_metacast@QAction@@UAEPAXPBD@Z
?qt_metacall@QAction@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?mouseReleaseEvent@QMenu@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QMenu@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QMenu@@MAEXPAVQMouseEvent@@@Z
?metaObject@QAction@@UBEPBUQMetaObject@@XZ
?leaveEvent@QMenu@@MAEXPAVQEvent@@@Z
?keyPressEvent@QMenu@@MAEXPAVQKeyEvent@@@Z
?hideEvent@QMenu@@MAEXPAVQHideEvent@@@Z
?focusNextPrevChild@QMenu@@MAE_N_N@Z
?event@QMenu@@MAE_NPAVQEvent@@@Z
?event@QAction@@MAE_NPAVQEvent@@@Z
?enterEvent@QMenu@@MAEXPAVQEvent@@@Z
?changeEvent@QMenu@@MAEXPAVQEvent@@@Z
?actionEvent@QMenu@@MAEXPAVQActionEvent@@@Z
?actionGeometry@QMenu@@QBE?AVQRect@@PAVQAction@@@Z
?addSeparator@QMenu@@QAEPAVQAction@@XZ
??1QMenu@@UAE@XZ
??0QMenu@@QAE@PAVQWidget@@@Z
?triggered@QAction@@QAEX_N@Z
?isSeparator@QAction@@QBE_NXZ
?text@QAction@@QBE?AVQString@@XZ
?icon@QAction@@QBE?AVQIcon@@XZ
??1QAction@@UAE@XZ
??0QAction@@QAE@ABVQIcon@@ABVQString@@PAVQObject@@@Z
?actions@QWidget@@QBE?AV?$QList@PAVQAction@@@@XZ
?removeAction@QWidget@@QAEXPAVQAction@@@Z
?addAction@QWidget@@QAEXPAVQAction@@@Z
?setStyleSheet@QWidget@@QAEXABVQString@@@Z
?qt_metacast@QSystemTrayIcon@@UAEPAXPBD@Z
?qt_metacall@QSystemTrayIcon@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?metaObject@QSystemTrayIcon@@UBEPBUQMetaObject@@XZ
?event@QSystemTrayIcon@@MAE_NPAVQEvent@@@Z
?popup@QMenu@@QAEXABVQPoint@@PAVQAction@@@Z
?hide@QSystemTrayIcon@@QAEXXZ
?show@QSystemTrayIcon@@QAEXXZ
?setIcon@QSystemTrayIcon@@QAEXABVQIcon@@@Z
?setContextMenu@QSystemTrayIcon@@QAEXPAVQMenu@@@Z
??1QSystemTrayIcon@@UAE@XZ
??0QSystemTrayIcon@@QAE@PAVQObject@@@Z
?getColor@QColorDialog@@SA?AVQColor@@ABV2@PAVQWidget@@ABVQString@@V?$QFlags@W4ColorDialogOption@QColorDialog@@@@@Z
?repaint@QWidget@@QAEXXZ
?wheelEvent@QGraphicsView@@MAEXPAVQWheelEvent@@@Z
?viewportEvent@QGraphicsView@@MAE_NPAVQEvent@@@Z
?sizeHint@QGraphicsView@@UBE?AVQSize@@XZ
?showEvent@QGraphicsView@@MAEXPAVQShowEvent@@@Z
?setupViewport@QGraphicsView@@MAEXPAVQWidget@@@Z
?scrollContentsBy@QGraphicsView@@MAEXHH@Z
?resizeEvent@QGraphicsView@@MAEXPAVQResizeEvent@@@Z
?paintEvent@QGraphicsView@@MAEXPAVQPaintEvent@@@Z
?mouseDoubleClickEvent@QGraphicsView@@MAEXPAVQMouseEvent@@@Z
?keyReleaseEvent@QGraphicsView@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QGraphicsView@@MAEXPAVQKeyEvent@@@Z
?inputMethodQuery@QGraphicsView@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QGraphicsView@@MAEXPAVQInputMethodEvent@@@Z
?focusOutEvent@QGraphicsView@@MAEXPAVQFocusEvent@@@Z
?focusNextPrevChild@QGraphicsView@@MAE_N_N@Z
?focusInEvent@QGraphicsView@@MAEXPAVQFocusEvent@@@Z
?event@QGraphicsView@@MAE_NPAVQEvent@@@Z
?dropEvent@QGraphicsView@@MAEXPAVQDropEvent@@@Z
?drawItems@QGraphicsView@@MAEXPAVQPainter@@HQAPAVQGraphicsItem@@QBVQStyleOptionGraphicsItem@@@Z
?drawForeground@QGraphicsView@@MAEXPAVQPainter@@ABVQRectF@@@Z
?drawBackground@QGraphicsView@@MAEXPAVQPainter@@ABVQRectF@@@Z
?dragMoveEvent@QGraphicsView@@MAEXPAVQDragMoveEvent@@@Z
?dragLeaveEvent@QGraphicsView@@MAEXPAVQDragLeaveEvent@@@Z
?dragEnterEvent@QGraphicsView@@MAEXPAVQDragEnterEvent@@@Z
?contextMenuEvent@QGraphicsView@@MAEXPAVQContextMenuEvent@@@Z
?mouseReleaseEvent@QGraphicsView@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QGraphicsView@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QGraphicsView@@MAEXPAVQMouseEvent@@@Z
?sceneRect@QGraphicsView@@QBE?AVQRectF@@XZ
??1QGraphicsView@@UAE@XZ
??0QGraphicsView@@QAE@PAVQGraphicsScene@@PAVQWidget@@@Z
?setCursor@QWidget@@QAEXABVQCursor@@@Z
?wheelEvent@QGraphicsScene@@MAEXPAVQGraphicsSceneWheelEvent@@@Z
?type@QGraphicsTextItem@@UBEHXZ
?supportsExtension@QGraphicsTextItem@@MBE_NW4Extension@QGraphicsItem@@@Z
?shape@QGraphicsTextItem@@UBE?AVQPainterPath@@XZ
?setExtension@QGraphicsTextItem@@MAEXW4Extension@QGraphicsItem@@ABVQVariant@@@Z
?sceneEvent@QGraphicsTextItem@@MAE_NPAVQEvent@@@Z
?qt_metacast@QGraphicsTextItem@@UAEPAXPBD@Z
?qt_metacall@QGraphicsTextItem@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?paint@QGraphicsTextItem@@UAEXPAVQPainter@@PBVQStyleOptionGraphicsItem@@PAVQWidget@@@Z
?opaqueArea@QGraphicsTextItem@@UBE?AVQPainterPath@@XZ
?mouseReleaseEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?mousePressEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?mouseMoveEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?mouseDoubleClickEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?mouseDoubleClickEvent@QGraphicsScene@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?metaObject@QGraphicsTextItem@@UBEPBUQMetaObject@@XZ
?keyReleaseEvent@QGraphicsTextItem@@MAEXPAVQKeyEvent@@@Z
?keyReleaseEvent@QGraphicsScene@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QGraphicsTextItem@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QGraphicsScene@@MAEXPAVQKeyEvent@@@Z
?isObscuredBy@QGraphicsTextItem@@UBE_NPBVQGraphicsItem@@@Z
?inputMethodQuery@QGraphicsTextItem@@MBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodQuery@QGraphicsScene@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QGraphicsTextItem@@MAEXPAVQInputMethodEvent@@@Z
?inputMethodEvent@QGraphicsScene@@MAEXPAVQInputMethodEvent@@@Z
?hoverMoveEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneHoverEvent@@@Z
?hoverLeaveEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneHoverEvent@@@Z
?hoverEnterEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneHoverEvent@@@Z
?helpEvent@QGraphicsScene@@MAEXPAVQGraphicsSceneHelpEvent@@@Z
?focusOutEvent@QGraphicsTextItem@@MAEXPAVQFocusEvent@@@Z
?focusOutEvent@QGraphicsScene@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QGraphicsTextItem@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QGraphicsScene@@MAEXPAVQFocusEvent@@@Z
?extension@QGraphicsTextItem@@MBE?AVQVariant@@ABV2@@Z
?eventFilter@QGraphicsScene@@MAE_NPAVQObject@@PAVQEvent@@@Z
?event@QGraphicsScene@@MAE_NPAVQEvent@@@Z
?event@QGraphicsObject@@MAE_NPAVQEvent@@@Z
?dropEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dropEvent@QGraphicsScene@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?drawItems@QGraphicsScene@@MAEXPAVQPainter@@HQAPAVQGraphicsItem@@QBVQStyleOptionGraphicsItem@@PAVQWidget@@@Z
?drawBackground@QGraphicsScene@@MAEXPAVQPainter@@ABVQRectF@@@Z
?dragMoveEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragMoveEvent@QGraphicsScene@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragLeaveEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragLeaveEvent@QGraphicsScene@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragEnterEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragEnterEvent@QGraphicsScene@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?contextMenuEvent@QGraphicsTextItem@@MAEXPAVQGraphicsSceneContextMenuEvent@@@Z
?contextMenuEvent@QGraphicsScene@@MAEXPAVQGraphicsSceneContextMenuEvent@@@Z
?contains@QGraphicsTextItem@@UBE_NABVQPointF@@@Z
?boundingRect@QGraphicsTextItem@@UBE?AVQRectF@@XZ
?setTextInteractionFlags@QGraphicsTextItem@@QAEXV?$QFlags@W4TextInteractionFlag@Qt@@@@@Z
?setDefaultTextColor@QGraphicsTextItem@@QAEXABVQColor@@@Z
?setFont@QGraphicsTextItem@@QAEXABVQFont@@@Z
??1QGraphicsTextItem@@UAE@XZ
??0QGraphicsTextItem@@QAE@ABVQString@@PAVQGraphicsItem@@@Z
?setPath@QGraphicsPathItem@@QAEXABVQPainterPath@@@Z
?setBrush@QAbstractGraphicsShapeItem@@QAEXABVQBrush@@@Z
?setPen@QAbstractGraphicsShapeItem@@QAEXABVQPen@@@Z
?setData@QGraphicsItem@@QAEXHABVQVariant@@@Z
?data@QGraphicsItem@@QBE?AVQVariant@@H@Z
?moveBy@QGraphicsItem@@QAEXNN@Z
?setPos@QGraphicsItem@@QAEXABVQPointF@@@Z
?clearFocus@QGraphicsItem@@QAEXXZ
?setFocus@QGraphicsItem@@QAEXW4FocusReason@Qt@@@Z
?setActive@QGraphicsItem@@QAEX_N@Z
?show@QGraphicsItem@@QAEXXZ
?scene@QGraphicsItem@@QBEPAVQGraphicsScene@@XZ
?removeItem@QGraphicsScene@@QAEXPAVQGraphicsItem@@@Z
?addItem@QGraphicsScene@@QAEXPAVQGraphicsItem@@@Z
?items@QGraphicsScene@@QBE?AV?$QList@PAVQGraphicsItem@@@@W4SortOrder@Qt@@@Z
?sceneRect@QGraphicsScene@@QBE?AVQRectF@@XZ
??1QGraphicsScene@@UAE@XZ
??0QGraphicsScene@@QAE@PAVQObject@@@Z
?buttons@QGraphicsSceneMouseEvent@@QBE?AV?$QFlags@W4MouseButton@Qt@@@@XZ
?lastScenePos@QGraphicsSceneMouseEvent@@QBE?AVQPointF@@XZ
?scenePos@QGraphicsSceneMouseEvent@@QBE?AVQPointF@@XZ
?wheelEvent@QScrollBar@@MAEXPAVQWheelEvent@@@Z
?timerEvent@QAbstractSlider@@MAEXPAVQTimerEvent@@@Z
?sliderChange@QScrollBar@@MAEXW4SliderChange@QAbstractSlider@@@Z
?sizeHint@QScrollBar@@UBE?AVQSize@@XZ
?qt_metacast@QScrollBar@@UAEPAXPBD@Z
?qt_metacall@QScrollBar@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?paintEvent@QScrollBar@@MAEXPAVQPaintEvent@@@Z
?mouseReleaseEvent@QScrollBar@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QScrollBar@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QScrollBar@@MAEXPAVQMouseEvent@@@Z
?metaObject@QScrollBar@@UBEPBUQMetaObject@@XZ
?keyPressEvent@QAbstractSlider@@MAEXPAVQKeyEvent@@@Z
?hideEvent@QScrollBar@@MAEXPAVQHideEvent@@@Z
?event@QScrollBar@@UAE_NPAVQEvent@@@Z
?contextMenuEvent@QScrollBar@@MAEXPAVQContextMenuEvent@@@Z
?changeEvent@QAbstractSlider@@MAEXPAVQEvent@@@Z
??1QScrollBar@@UAE@XZ
??0QScrollBar@@QAE@PAVQWidget@@@Z
?setRange@QAbstractSlider@@QAEXHH@Z
?setValue@QAbstractSlider@@QAEXH@Z
?value@QAbstractSlider@@QBEHXZ
?pageStep@QAbstractSlider@@QBEHXZ
?setPageStep@QAbstractSlider@@QAEXH@Z
?maximum@QAbstractSlider@@QBEHXZ
?minimum@QAbstractSlider@@QBEHXZ
?setGeometry@QWidget@@QAEXHHHH@Z
?qt_metacast@QVBoxLayout@@UAEPAXPBD@Z
?qt_metacast@QPushButton@@UAEPAXPBD@Z
?qt_metacast@QButtonGroup@@UAEPAXPBD@Z
?qt_metacall@QVBoxLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QPushButton@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QButtonGroup@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?paintEvent@QPushButton@@MAEXPAVQPaintEvent@@@Z
?paintEvent@QFrame@@MAEXPAVQPaintEvent@@@Z
?metaObject@QVBoxLayout@@UBEPBUQMetaObject@@XZ
?metaObject@QPushButton@@UBEPBUQMetaObject@@XZ
?metaObject@QButtonGroup@@UBEPBUQMetaObject@@XZ
??0QPushButton@@QAE@ABVQString@@PAVQWidget@@@Z
?setChecked@QAbstractButton@@QAEX_N@Z
?isChecked@QAbstractButton@@QBE_NXZ
?setCheckable@QAbstractButton@@QAEX_N@Z
?isVisible@QWidget@@QBE_NXZ
?raise@QWidget@@QAEXXZ
?hasFocus@QWidget@@QBE_NXZ
?setFocus@QWidget@@QAEXW4FocusReason@Qt@@@Z
?setMinimumWidth@QWidget@@QAEXH@Z
?setDisabled@QWidget@@QAEX_N@Z
?addButton@QButtonGroup@@QAEXPAVQAbstractButton@@H@Z
??1QButtonGroup@@UAE@XZ
??0QButtonGroup@@QAE@PAVQObject@@@Z
??1QVBoxLayout@@UAE@XZ
??0QVBoxLayout@@QAE@XZ
??0QHBoxLayout@@QAE@XZ
?addLayout@QBoxLayout@@QAEXPAVQLayout@@H@Z
?wheelEvent@QListView@@MAEXPAVQWheelEvent@@@Z
?visualRegionForSelection@QListView@@MBE?AVQRegion@@ABVQItemSelection@@@Z
?visualRect@QListView@@UBE?AVQRect@@ABVQModelIndex@@@Z
?viewportSizeHint@QListView@@MBE?AVQSize@@XZ
?viewportEvent@QAbstractItemView@@MAE_NPAVQEvent@@@Z
?viewOptions@QListView@@MBE?AVQStyleOptionViewItem@@XZ
?verticalScrollbarValueChanged@QAbstractItemView@@MAEXH@Z
?verticalScrollbarAction@QAbstractItemView@@MAEXH@Z
?verticalOffset@QListView@@MBEHXZ
?updateGeometries@QListView@@MAEXXZ
?updateEditorGeometry@QStyledItemDelegate@@UBEXPAVQWidget@@ABVQStyleOptionViewItem@@ABVQModelIndex@@@Z
?updateEditorGeometries@QAbstractItemView@@MAEXXZ
?updateEditorData@QAbstractItemView@@MAEXXZ
?timerEvent@QListView@@MAEXPAVQTimerEvent@@@Z
?startDrag@QListView@@MAEXV?$QFlags@W4DropAction@Qt@@@@@Z
?sizeHintForRow@QAbstractItemView@@UBEHH@Z
?sizeHintForColumn@QAbstractItemView@@UBEHH@Z
?setSelectionModel@QAbstractItemView@@UAEXPAVQItemSelectionModel@@@Z
?setSelection@QListView@@MAEXABVQRect@@V?$QFlags@W4SelectionFlag@QItemSelectionModel@@@@@Z
?setRootIndex@QListView@@UAEXABVQModelIndex@@@Z
?setModelData@QStyledItemDelegate@@UBEXPAVQWidget@@PAVQAbstractItemModel@@ABVQModelIndex@@@Z
?setEditorData@QStyledItemDelegate@@UBEXPAVQWidget@@ABVQModelIndex@@@Z
?selectionCommand@QAbstractItemView@@MBE?AV?$QFlags@W4SelectionFlag@QItemSelectionModel@@@@ABVQModelIndex@@PBVQEvent@@@Z
?selectionChanged@QListView@@MAEXABVQItemSelection@@0@Z
?selectedIndexes@QListView@@MBE?AV?$QList@VQModelIndex@@@@XZ
?selectAll@QAbstractItemView@@UAEXXZ
?scrollTo@QListView@@UAEXABVQModelIndex@@W4ScrollHint@QAbstractItemView@@@Z
?scrollContentsBy@QListView@@MAEXHH@Z
?rowsInserted@QListView@@MAEXABVQModelIndex@@HH@Z
?rowsAboutToBeRemoved@QListView@@MAEXABVQModelIndex@@HH@Z
?resizeEvent@QListView@@MAEXPAVQResizeEvent@@@Z
?reset@QListView@@UAEXXZ
?qt_metacast@QStyledItemDelegate@@UAEPAXPBD@Z
?qt_metacall@QStyledItemDelegate@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?paintingRoles@QAbstractItemDelegate@@UBE?AV?$QVector@H@@XZ
?paintEvent@QListView@@MAEXPAVQPaintEvent@@@Z
?moveCursor@QListView@@MAE?AVQModelIndex@@W4CursorAction@QAbstractItemView@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z
?mousePressEvent@QAbstractItemView@@MAEXPAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QAbstractItemView@@MAEXPAVQMouseEvent@@@Z
?metaObject@QStyledItemDelegate@@UBEPBUQMetaObject@@XZ
?keyboardSearch@QAbstractItemView@@UAEXABVQString@@@Z
??1QShortcut@@UAE@XZ
?isIndexHidden@QListView@@MBE_NABVQModelIndex@@@Z
?inputMethodQuery@QAbstractItemView@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QAbstractItemView@@MAEXPAVQInputMethodEvent@@@Z
?initStyleOption@QStyledItemDelegate@@MBEXPAVQStyleOptionViewItem@@ABVQModelIndex@@@Z
?indexAt@QListView@@UBE?AVQModelIndex@@ABVQPoint@@@Z
?horizontalScrollbarValueChanged@QAbstractItemView@@MAEXH@Z
?horizontalScrollbarAction@QAbstractItemView@@MAEXH@Z
?horizontalOffset@QListView@@MBEHXZ
?helpEvent@QAbstractItemDelegate@@UAE_NPAVQHelpEvent@@PAVQAbstractItemView@@ABVQStyleOptionViewItem@@ABVQModelIndex@@@Z
?focusOutEvent@QAbstractItemView@@MAEXPAVQFocusEvent@@@Z
?focusNextPrevChild@QAbstractItemView@@MAE_N_N@Z
?focusInEvent@QAbstractItemView@@MAEXPAVQFocusEvent@@@Z
?eventFilter@QStyledItemDelegate@@MAE_NPAVQObject@@PAVQEvent@@@Z
?eventFilter@QAbstractItemView@@MAE_NPAVQObject@@PAVQEvent@@@Z
?event@QListView@@MAE_NPAVQEvent@@@Z
?editorEvent@QStyledItemDelegate@@MAE_NPAVQEvent@@PAVQAbstractItemModel@@ABVQStyleOptionViewItem@@ABVQModelIndex@@@Z
?editorDestroyed@QAbstractItemView@@MAEXPAVQObject@@@Z
?edit@QAbstractItemView@@MAE_NABVQModelIndex@@W4EditTrigger@1@PAVQEvent@@@Z
?dropEvent@QListView@@MAEXPAVQDropEvent@@@Z
?dragMoveEvent@QListView@@MAEXPAVQDragMoveEvent@@@Z
?dragLeaveEvent@QListView@@MAEXPAVQDragLeaveEvent@@@Z
?dragEnterEvent@QAbstractItemView@@MAEXPAVQDragEnterEvent@@@Z
?doItemsLayout@QListView@@UAEXXZ
?displayText@QStyledItemDelegate@@UBE?AVQString@@ABVQVariant@@ABVQLocale@@@Z
?destroyEditor@QAbstractItemDelegate@@UBEXPAVQWidget@@ABVQModelIndex@@@Z
?dataChanged@QListView@@MAEXABVQModelIndex@@0ABV?$QVector@H@@@Z
?currentChanged@QListView@@MAEXABVQModelIndex@@0@Z
?createEditor@QStyledItemDelegate@@UBEPAVQWidget@@PAV2@ABVQStyleOptionViewItem@@ABVQModelIndex@@@Z
?contextMenuEvent@QAbstractScrollArea@@MAEXPAVQContextMenuEvent@@@Z
?commitData@QAbstractItemView@@MAEXPAVQWidget@@@Z
?closeEditor@QAbstractItemView@@MAEXPAVQWidget@@W4EndEditHint@QAbstractItemDelegate@@@Z
?setSceneRect@QGraphicsScene@@QAEXABVQRectF@@@Z
??1QStyledItemDelegate@@UAE@XZ
??0QStyledItemDelegate@@QAE@PAVQObject@@@Z
??1QListView@@UAE@XZ
??0QListView@@QAE@PAVQWidget@@@Z
?scrollToTop@QAbstractItemView@@QAEXXZ
?setVerticalScrollMode@QAbstractItemView@@QAEXW4ScrollMode@1@@Z
?setEditTriggers@QAbstractItemView@@QAEXV?$QFlags@W4EditTrigger@QAbstractItemView@@@@@Z
?setItemDelegate@QAbstractItemView@@QAEXPAVQAbstractItemDelegate@@@Z
?setModel@QAbstractItemView@@UAEXPAVQAbstractItemModel@@@Z
?viewport@QAbstractScrollArea@@QBEPAVQWidget@@XZ
?setHorizontalScrollBarPolicy@QAbstractScrollArea@@QAEXW4ScrollBarPolicy@Qt@@@Z
?setVerticalScrollBarPolicy@QAbstractScrollArea@@QAEXW4ScrollBarPolicy@Qt@@@Z
?hideText@QToolTip@@SAXXZ
?showText@QToolTip@@SAXABVQPoint@@ABVQString@@PAVQWidget@@@Z
?setFixedWidth@QWidget@@QAEXH@Z
?type@QGraphicsPathItem@@UBEHXZ
?supportsExtension@QGraphicsPathItem@@MBE_NW4Extension@QGraphicsItem@@@Z
?shape@QGraphicsPathItem@@UBE?AVQPainterPath@@XZ
?setExtension@QGraphicsPathItem@@MAEXW4Extension@QGraphicsItem@@ABVQVariant@@@Z
?opaqueArea@QGraphicsPathItem@@UBE?AVQPainterPath@@XZ
?isObscuredBy@QGraphicsPathItem@@UBE_NPBVQGraphicsItem@@@Z
?extension@QGraphicsPathItem@@MBE?AVQVariant@@ABV2@@Z
?contains@QGraphicsPathItem@@UBE_NABVQPointF@@@Z
?boundingRect@QGraphicsPathItem@@UBE?AVQRectF@@XZ
?paint@QGraphicsPathItem@@UAEXPAVQPainter@@PBVQStyleOptionGraphicsItem@@PAVQWidget@@@Z
?path@QGraphicsPathItem@@QBE?AVQPainterPath@@XZ
??1QGraphicsPathItem@@UAE@XZ
??0QGraphicsPathItem@@QAE@PAVQGraphicsItem@@@Z
?brush@QAbstractGraphicsShapeItem@@QBE?AVQBrush@@XZ
?pen@QAbstractGraphicsShapeItem@@QBE?AVQPen@@XZ
?screenGeometry@QDesktopWidget@@QBE?BVQRect@@H@Z
?desktop@QApplication@@SAPAVQDesktopWidget@@XZ
?mousePressEvent@QSplashScreen@@MAEXPAVQMouseEvent@@@Z
?event@QSplashScreen@@MAE_NPAVQEvent@@@Z
?drawContents@QSplashScreen@@MAEXPAVQPainter@@@Z
??1QSplashScreen@@UAE@XZ
??0QSplashScreen@@QAE@ABVQPixmap@@V?$QFlags@W4WindowType@Qt@@@@@Z
?mapFromGlobal@QWidget@@QBE?AVQPoint@@ABV2@@Z
?mapToGlobal@QWidget@@QBE?AVQPoint@@ABV2@@Z
?geometry@QSystemTrayIcon@@QBE?AVQRect@@XZ
?move@QWidget@@QAEXHH@Z
?geometry@QWidget@@QBEABVQRect@@XZ
?wheelEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneWheelEvent@@@Z
?type@QGraphicsItem@@UBEHXZ
?supportsExtension@QGraphicsItem@@MBE_NW4Extension@1@@Z
?shape@QGraphicsItem@@UBE?AVQPainterPath@@XZ
?setExtension@QGraphicsItem@@MAEXW4Extension@1@ABVQVariant@@@Z
?sceneEventFilter@QGraphicsItem@@MAE_NPAV1@PAVQEvent@@@Z
?sceneEvent@QGraphicsItem@@MAE_NPAVQEvent@@@Z
?opaqueArea@QGraphicsItem@@UBE?AVQPainterPath@@XZ
?mouseReleaseEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?mousePressEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?mouseMoveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?mouseDoubleClickEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?keyReleaseEvent@QGraphicsItem@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QGraphicsItem@@MAEXPAVQKeyEvent@@@Z
?itemChange@QGraphicsItem@@MAE?AVQVariant@@W4GraphicsItemChange@1@ABV2@@Z
?isObscuredBy@QGraphicsItem@@UBE_NPBV1@@Z
?inputMethodQuery@QGraphicsItem@@MBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QGraphicsItem@@MAEXPAVQInputMethodEvent@@@Z
?hoverMoveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneHoverEvent@@@Z
?hoverLeaveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneHoverEvent@@@Z
?hoverEnterEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneHoverEvent@@@Z
?focusOutEvent@QGraphicsItem@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QGraphicsItem@@MAEXPAVQFocusEvent@@@Z
?extension@QGraphicsItem@@MBE?AVQVariant@@ABV2@@Z
?dropEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragMoveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragLeaveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragEnterEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?contextMenuEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneContextMenuEvent@@@Z
?contains@QGraphicsItem@@UBE_NABVQPointF@@@Z
?collidesWithPath@QGraphicsItem@@UBE_NABVQPainterPath@@W4ItemSelectionMode@Qt@@@Z
?collidesWithItem@QGraphicsItem@@UBE_NPBV1@W4ItemSelectionMode@Qt@@@Z
?advance@QGraphicsItem@@UAEXH@Z
?update@QGraphicsItem@@QAEXABVQRectF@@@Z
??1QGraphicsItem@@UAE@XZ
??0QGraphicsItem@@QAE@PAV0@@Z
?staticMetaObject@QPushButton@@2UQMetaObject@@B
?spacerItem@QSpacerItem@@UAEPAV1@XZ
?sizeHint@QWidget@@UBE?AVQSize@@XZ
?sizeHint@QSpacerItem@@UBE?AVQSize@@XZ
?sizeHint@QLabel@@UBE?AVQSize@@XZ
?setGeometry@QSpacerItem@@UAEXABVQRect@@@Z
?qt_metacast@QLabel@@UAEPAXPBD@Z
?qt_metacall@QLabel@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?paintEvent@QLabel@@MAEXPAVQPaintEvent@@@Z
?mouseReleaseEvent@QLabel@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QLabel@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QLabel@@MAEXPAVQMouseEvent@@@Z
?minimumSizeHint@QLabel@@UBE?AVQSize@@XZ
?minimumSize@QSpacerItem@@UBE?AVQSize@@XZ
?minimumHeightForWidth@QLayoutItem@@UBEHH@Z
?metaObject@QLabel@@UBEPBUQMetaObject@@XZ
?maximumSize@QSpacerItem@@UBE?AVQSize@@XZ
?layout@QLayoutItem@@UAEPAVQLayout@@XZ
?keyPressEvent@QLabel@@MAEXPAVQKeyEvent@@@Z
?isEmpty@QSpacerItem@@UBE_NXZ
?invalidate@QLayoutItem@@UAEXXZ
?heightForWidth@QLayoutItem@@UBEHH@Z
?heightForWidth@QLabel@@UBEHH@Z
?hasHeightForWidth@QLayoutItem@@UBE_NXZ
?geometry@QSpacerItem@@UBE?AVQRect@@XZ
?focusOutEvent@QLabel@@MAEXPAVQFocusEvent@@@Z
?focusNextPrevChild@QLabel@@MAE_N_N@Z
?focusInEvent@QLabel@@MAEXPAVQFocusEvent@@@Z
?expandingDirections@QSpacerItem@@UBE?AV?$QFlags@W4Orientation@Qt@@@@XZ
?event@QWidget@@MAE_NPAVQEvent@@@Z
?event@QLabel@@MAE_NPAVQEvent@@@Z
?controlTypes@QLayoutItem@@UBE?AV?$QFlags@W4ControlType@QSizePolicy@@@@XZ
?contextMenuEvent@QLabel@@MAEXPAVQContextMenuEvent@@@Z
?changeEvent@QWidget@@MAEXPAVQEvent@@@Z
?changeEvent@QLabel@@MAEXPAVQEvent@@@Z
?style@QApplication@@SAPAVQStyle@@XZ
?setSpacing@QBoxLayout@@QAEXH@Z
?addSpacerItem@QBoxLayout@@QAEXPAVQSpacerItem@@@Z
?addSpacing@QBoxLayout@@QAEXH@Z
??1QSpacerItem@@UAE@XZ
??0QSpacerItem@@QAE@HHW4Policy@QSizePolicy@@0@Z
?setFlat@QPushButton@@QAEX_N@Z
?clicked@QAbstractButton@@QAEX_N@Z
?setPixmap@QLabel@@QAEXABVQPixmap@@@Z
?setText@QLabel@@QAEXABVQString@@@Z
?setScaledContents@QLabel@@QAEX_N@Z
??1QLabel@@UAE@XZ
??0QLabel@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z
?windowFlags@QWidget@@QBE?AV?$QFlags@W4WindowType@Qt@@@@XZ
?setLayout@QWidget@@QAEXPAVQLayout@@@Z
?setSizePolicy@QWidget@@QAEXW4Policy@QSizePolicy@@0@Z
?isMaximized@QWidget@@QBE_NXZ
?showNormal@QWidget@@QAEXXZ
?showMaximized@QWidget@@QAEXXZ
?showMinimized@QWidget@@QAEXXZ
?setToolTip@QWidget@@QAEXABVQString@@@Z
?windowIcon@QWidget@@QBE?AVQIcon@@XZ
?windowTitle@QWidget@@QBE?AVQString@@XZ
?window@QWidget@@QBEPAV1@XZ
?setFixedHeight@QWidget@@QAEXH@Z
?size@QWidget@@QBE?AVQSize@@XZ
?setEnabled@QWidget@@QAEX_N@Z
?isTopLevel@QWidget@@QBE_NXZ
?setStyle@QWidget@@QAEXPAVQStyle@@@Z
?winId@QWidget@@QBEIXZ
??1QWidget@@UAE@XZ
??0QWidget@@QAE@PAV0@V?$QFlags@W4WindowType@Qt@@@@@Z
?widget@QLayoutItem@@UAEPAVQWidget@@XZ
?wheelEvent@QTextEdit@@MAEXPAVQWheelEvent@@@Z
?viewportSizeHint@QAbstractScrollArea@@MBE?AVQSize@@XZ
?viewportEvent@QAbstractScrollArea@@MAE_NPAVQEvent@@@Z
?timerEvent@QTextEdit@@MAEXPAVQTimerEvent@@@Z
?takeAt@QBoxLayout@@UAEPAVQLayoutItem@@H@Z
?spacerItem@QLayoutItem@@UAEPAVQSpacerItem@@XZ
?sizeHint@QFrame@@UBE?AVQSize@@XZ
?sizeHint@QBoxLayout@@UBE?AVQSize@@XZ
?sizeHint@QAbstractScrollArea@@UBE?AVQSize@@XZ
?showEvent@QTextEdit@@MAEXPAVQShowEvent@@@Z
?setupViewport@QAbstractScrollArea@@UAEXPAVQWidget@@@Z
?setGeometry@QBoxLayout@@UAEXABVQRect@@@Z
?scrollContentsBy@QTextEdit@@MAEXHH@Z
?resizeEvent@QTextEdit@@MAEXPAVQResizeEvent@@@Z
?qt_metacast@QTextEdit@@UAEPAXPBD@Z
?qt_metacast@QHBoxLayout@@UAEPAXPBD@Z
?qt_metacast@QFrame@@UAEPAXPBD@Z
?qt_metacall@QTextEdit@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QHBoxLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QFrame@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?paintEvent@QTextEdit@@MAEXPAVQPaintEvent@@@Z
?mouseReleaseEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QTextEdit@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QTextEdit@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QTextEdit@@MAEXPAVQMouseEvent@@@Z

qt5multimedia

??4QVideoSurfaceFormat@@QAEAAV0@ABV0@@Z
?isValid@QVideoSurfaceFormat@@QBE_NXZ
??0QVideoFrame@@QAE@XZ
??0QVideoFrame@@QAE@ABV0@@Z
?staticMetaObject@QAbstractVideoSurface@@2UQMetaObject@@B
??0QVideoSurfaceFormat@@QAE@ABVQSize@@W4PixelFormat@QVideoFrame@@W4HandleType@QAbstractVideoBuffer@@@Z
??0QVideoSurfaceFormat@@QAE@XZ
?isActive@QAbstractVideoSurface@@QBE_NXZ
?bits@QVideoFrame@@QAEPAEXZ
?unmap@QVideoFrame@@QAEXXZ
??0QVideoFrame@@QAE@HABVQSize@@HW4PixelFormat@0@@Z
??1QVideoFrame@@QAE@XZ
?isValid@QVideoFrame@@QBE_NXZ
?map@QVideoFrame@@QAE_NW4MapMode@QAbstractVideoBuffer@@@Z
??1QVideoSurfaceFormat@@QAE@XZ

qt5winextras

?fromHICON@QtWin@@YA?AVQPixmap@@PAUHICON__@@@Z

qt5quick

?imageType@QQuickImageProvider@@UBE?AW4ImageType@QQmlImageProviderBase@@XZ
?requestTexture@QQuickImageProvider@@UAEPAVQQuickTextureFactory@@ABVQString@@PAVQSize@@ABV4@@Z
??1QQuickImageProvider@@UAE@XZ
?flags@QQuickImageProvider@@UBE?AV?$QFlags@W4Flag@QQmlImageProviderBase@@@@XZ
??0QQuickImageProvider@@QAE@W4ImageType@QQmlImageProviderBase@@V?$QFlags@W4Flag@QQmlImageProviderBase@@@@@Z
?requestImage@QQuickImageProvider@@UAE?AVQImage@@ABVQString@@PAVQSize@@ABV4@@Z

qt5gui

?load@QPixmap@@QAE_NABVQString@@PBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?key@QKeyEvent@@QBEHXZ
??0QColor@@QAE@ABVQString@@@Z
??4QColor@@QAEAAV0@$$QAV0@@Z
??BQColor@@QBE?AVQVariant@@XZ
?isValid@QColor@@QBE_NXZ
?name@QColor@@QBE?AVQString@@XZ
?red@QColor@@QBEHXZ
?green@QColor@@QBEHXZ
?blue@QColor@@QBEHXZ
?redF@QColor@@QBENXZ
?family@QFont@@QBE?AVQString@@XZ
?openUrl@QDesktopServices@@SA_NABVQUrl@@@Z
?families@QFontDatabase@@QBE?AVQStringList@@W4WritingSystem@1@@Z
?systemFont@QFontDatabase@@SA?AVQFont@@W4SystemFont@1@@Z
??0QIcon@@QAE@ABVQString@@@Z
?width@QPixmap@@QBEHXZ
?drawLine@QPainter@@QAEXHHHH@Z
?drawRect@QPainter@@QAEXABVQRect@@@Z
?setQuitOnLastWindowClosed@QGuiApplication@@SAX_N@Z
?setHighDpiScaleFactorRoundingPolicy@QGuiApplication@@SAXW4HighDpiScaleFactorRoundingPolicy@Qt@@@Z
?globalPos@QMouseEvent@@QBE?AVQPoint@@XZ
??0QPixmap@@QAE@HH@Z
?fill@QPixmap@@QAEXABVQColor@@@Z
??0QBrush@@QAE@ABVQGradient@@@Z
?setColorAt@QGradient@@QAEXNABVQColor@@@Z
??0QRadialGradient@@QAE@NNNNN@Z
??1QRadialGradient@@QAE@XZ
?drawEllipse@QPainter@@QAEXABVQPoint@@HH@Z
?currentPosition@QPainterPath@@QBE?AVQPointF@@XZ
??0QImage@@QAE@ABVQSize@@W4Format@0@@Z
??1QImage@@UAE@XZ
?isNull@QImage@@QBE_NXZ
?fill@QImage@@QAEXW4GlobalColor@Qt@@@Z
??0QBrush@@QAE@ABV0@@Z
??0QPen@@QAE@ABV0@@Z
?translate@QPainter@@QAEXABVQPoint@@@Z
?drawImage@QPainter@@QAEXHHABVQImage@@HHHHV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?devType@QImage@@UBEHXZ
?metric@QImage@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?paintEngine@QImage@@UBEPAVQPaintEngine@@XZ
??0QKeySequence@@QAE@XZ
??0QKeySequence@@QAE@HHHH@Z
?count@QKeySequence@@QBEHXZ
?isEmpty@QKeySequence@@QBE_NXZ
??AQKeySequence@@QBEHI@Z
??0QColor@@QAE@I@Z
??0QRegion@@QAE@ABVQRect@@W4RegionType@0@@Z
??1QRegion@@QAE@XZ
?xored@QRegion@@QBE?AV1@ABV1@@Z
?addRoundedRect@QPainterPath@@QAEXABVQRectF@@NNW4SizeMode@Qt@@@Z
?valid@QImage@@QBE_NHH@Z
?pixel@QImage@@QBEIHH@Z
?height@QPixmap@@QBEHXZ
?toImage@QPixmap@@QBE?AVQImage@@XZ
?copy@QPixmap@@QBE?AV1@ABVQRect@@@Z
?setStyle@QPen@@QAEXW4PenStyle@Qt@@@Z
?setWidth@QPen@@QAEXH@Z
?setColor@QPen@@QAEXABVQColor@@@Z
?setClipRegion@QPainter@@QAEXABVQRegion@@W4ClipOperation@Qt@@@Z
?setClipPath@QPainter@@QAEXABVQPainterPath@@W4ClipOperation@Qt@@@Z
?drawLine@QPainter@@QAEXABVQLine@@@Z
?drawLine@QPainter@@QAEXABVQPoint@@0@Z
?drawEllipse@QPainter@@QAEXABVQRect@@@Z
??0QKeySequence@@QAE@ABVQString@@W4SequenceFormat@0@@Z
??1QKeySequence@@QAE@XZ
?buttons@QMouseEvent@@QBE?AV?$QFlags@W4MouseButton@Qt@@@@XZ
?pixelSize@QFont@@QBEHXZ
?drawText@QPainter@@QAEXABVQRectF@@HABVQString@@PAV2@@Z
?addText@QPainterPath@@QAEXNNABVQFont@@ABVQString@@@Z
??0QPixmap@@QAE@ABVQSize@@@Z
?rect@QPixmap@@QBE?AVQRect@@XZ
?setDevicePixelRatio@QPixmap@@QAEXN@Z
?ascent@QFontMetrics@@QBEHXZ
?strokePath@QPainter@@QAEXABVQPainterPath@@ABVQPen@@@Z
?fillPath@QPainter@@QAEXABVQPainterPath@@ABVQBrush@@@Z
?setItalic@QFont@@QAEX_N@Z
?setUnderline@QFont@@QAEX_N@Z
??BQFont@@QBE?AVQVariant@@XZ
??0QImage@@QAE@PAEHHHW4Format@0@P6AXPAX@Z2@Z
?fromImage@QPixmap@@SA?AV1@ABVQImage@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?qt_metacast@QValidator@@UAEPAXPBD@Z
?qt_metacall@QValidator@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?staticMetaObject@QValidator@@2UQMetaObject@@B
??4QKeySequence@@QAEAAV0@$$QAV0@@Z
??0QCursor@@QAE@W4CursorShape@Qt@@@Z
?button@QMouseEvent@@QBE?AW4MouseButton@Qt@@XZ
??4QFont@@QAEAAV0@ABV0@@Z
??0QFont@@QAE@ABV0@@Z
??4QPen@@QAEAAV0@$$QAV0@@Z
??0QPen@@QAE@ABVQColor@@@Z
??0QPen@@QAE@XZ
??0QBrush@@QAE@W4BrushStyle@Qt@@@Z
?setFillRule@QPainterPath@@QAEXW4FillRule@Qt@@@Z
?addPath@QPainterPath@@QAEXABV1@@Z
?addEllipse@QPainterPath@@QAEXABVQRectF@@@Z
?addRect@QPainterPath@@QAEXABVQRectF@@@Z
?quadTo@QPainterPath@@QAEXABVQPointF@@0@Z
??1QCursor@@QAE@XZ
?moveTo@QPainterPath@@QAEXABVQPointF@@@Z
?clear@QPainterPath@@QAEXXZ
??4QPainterPath@@QAEAAV0@$$QAV0@@Z
??4QColor@@QAEAAV0@ABV0@@Z
?name@QColor@@QBE?AVQString@@W4NameFormat@1@@Z
??0QColor@@QAE@$$QAV0@@Z
??0QColor@@QAE@XZ
?angleDelta@QWheelEvent@@QBE?AVQPoint@@XZ
?drawRoundRect@QPainter@@QAEXABVQRect@@HH@Z
?save@QPixmap@@QBE_NABVQString@@PBDH@Z
?isNull@QPixmap@@QBE_NXZ
?setAlpha@QColor@@QAEXH@Z
?pos@QMouseEvent@@QBE?AVQPoint@@XZ
?setRenderHint@QPainter@@QAEXW4RenderHint@1@_N@Z
?drawText@QPainter@@QAEXABVQRect@@HABVQString@@PAV2@@Z
?elidedText@QFontMetrics@@QBE?AVQString@@ABV2@W4TextElideMode@Qt@@HH@Z
?setFamily@QFont@@QAEXABVQString@@@Z
??0QFont@@QAE@XZ
??0QColor@@QAE@HHHH@Z
?scaled@QPixmap@@QBE?AV1@ABVQSize@@W4AspectRatioMode@Qt@@W4TransformationMode@4@@Z
?size@QPixmap@@QBE?AVQSize@@XZ
?drawRect@QPainter@@QAEXABVQRectF@@@Z
?drawPath@QPainter@@QAEXABVQPainterPath@@@Z
?setPen@QPainter@@QAEXABVQPen@@@Z
?setCompositionMode@QPainter@@QAEXW4CompositionMode@1@@Z
??1QPen@@QAE@XZ
??0QPen@@QAE@ABVQBrush@@NW4PenStyle@Qt@@W4PenCapStyle@3@W4PenJoinStyle@3@@Z
??0QPen@@QAE@W4PenStyle@Qt@@@Z
??0QBrush@@QAE@W4GlobalColor@Qt@@W4BrushStyle@2@@Z
?boundingRect@QPainterPath@@QBE?AVQRectF@@XZ
?primaryScreen@QGuiApplication@@SAPAVQScreen@@XZ
?virtualGeometry@QScreen@@QBE?AVQRect@@XZ
?virtualSize@QScreen@@QBE?AVQSize@@XZ
?size@QScreen@@QBE?AVQSize@@XZ
?serialNumber@QScreen@@QBE?AVQString@@XZ
?name@QScreen@@QBE?AVQString@@XZ
?fixup@QValidator@@UBEXAAVQString@@@Z
??1QValidator@@UAE@XZ
??0QValidator@@QAE@PAVQObject@@@Z
?drawText@QPainter@@QAEXABVQPointF@@ABVQString@@@Z
?setFont@QPainter@@QAEXABVQFont@@@Z
?sharedPainter@QPaintDevice@@MBEPAVQPainter@@XZ
?redirected@QPaintDevice@@MBEPAV1@PAVQPoint@@@Z
?paintEngine@QPixmap@@UBEPAVQPaintEngine@@XZ
?metric@QPixmap@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?initPainter@QPaintDevice@@MBEXPAVQPainter@@@Z
?devType@QPixmap@@UBEHXZ
??4QPixmap@@QAEAAV0@$$QAV0@@Z
??4QPixmap@@QAEAAV0@ABV0@@Z
??0QPixmap@@QAE@ABV0@@Z
??0QPixmap@@QAE@XZ
?grabWindow@QScreen@@QAE?AVQPixmap@@IHHHH@Z
?close@QZipReader@@QAEXXZ
?extractAll@QZipReader@@QBE_NABVQString@@@Z
?fileInfoList@QZipReader@@QBE?AV?$QVector@UFileInfo@QZipReader@@@@XZ
??1QZipReader@@QAE@XZ
??0QZipReader@@QAE@ABVQString@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?availableGeometry@QScreen@@QBE?AVQRect@@XZ
?screens@QGuiApplication@@SA?AV?$QList@PAVQScreen@@@@XZ
??0QColor@@QAE@W4GlobalColor@Qt@@@Z
?drawPoints@QPainter@@QAEXPBVQPoint@@H@Z
?setBrush@QPainter@@QAEXW4BrushStyle@Qt@@@Z
?setPen@QPainter@@QAEXABVQColor@@@Z
?isEmpty@QPainterPath@@QBE_NXZ
?contains@QPainterPath@@QBE_NABVQPointF@@@Z
?addEllipse@QPainterPath@@QAEXABVQPointF@@NN@Z
??1QPainterPath@@QAE@XZ
??0QPainterPath@@QAE@XZ
??0QColor@@QAE@ABV0@@Z
?pixmap@QIcon@@QBE?AVQPixmap@@ABVQSize@@W4Mode@1@W4State@1@@Z
??1QIcon@@QAE@XZ
?hasFamily@QFontDatabase@@QBE_NABVQString@@@Z
??0QFontDatabase@@QAE@XZ
?drawRoundedRect@QPainter@@QAEXABVQRect@@NNW4SizeMode@Qt@@@Z
?restore@QPainter@@QAEXXZ
?save@QPainter@@QAEXXZ
?setBrush@QPainter@@QAEXABVQBrush@@@Z
?width@QFontMetrics@@QBEHABVQString@@H@Z
?height@QFontMetrics@@QBEHXZ
??1QFontMetrics@@QAE@XZ
??0QFontMetrics@@QAE@ABVQFont@@@Z
?setWeight@QFont@@QAEXH@Z
?setPixelSize@QFont@@QAEXH@Z
??1QFont@@QAE@XZ
??0QFont@@QAE@ABVQString@@HH_N@Z
??1QBrush@@QAE@XZ
??0QBrush@@QAE@ABVQColor@@W4BrushStyle@Qt@@@Z
??0QColor@@QAE@PBD@Z
?geometry@QScreen@@QBE?AVQRect@@XZ
?screenAt@QGuiApplication@@SAPAVQScreen@@ABVQPoint@@@Z
?pos@QCursor@@SA?AVQPoint@@XZ
?setRenderHints@QPainter@@QAEXV?$QFlags@W4RenderHint@QPainter@@@@_N@Z
?drawPixmap@QPainter@@QAEXABVQRect@@ABVQPixmap@@@Z
?setPen@QPainter@@QAEXW4PenStyle@Qt@@@Z
??1QPainter@@QAE@XZ
??0QPainter@@QAE@PAVQPaintDevice@@@Z
??1QPixmap@@UAE@XZ
??0QPixmap@@QAE@ABVQString@@PBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
?lineTo@QPainterPath@@QAEXABVQPointF@@@Z
??0QCursor@@QAE@ABVQPixmap@@HH@Z

qt5qml

?rootContext@QQmlEngine@@QBEPAVQQmlContext@@XZ
?staticMetaObject@QQmlApplicationEngine@@2UQMetaObject@@B
??0QQmlApplicationEngine@@QAE@PAVQObject@@@Z
??1QQmlApplicationEngine@@UAE@XZ
?qmlregister@QQmlPrivate@@YAHW4RegistrationType@1@PAX@Z
?load@QQmlApplicationEngine@@QAEXABVQUrl@@@Z
?objectCreated@QQmlApplicationEngine@@QAEXPAVQObject@@ABVQUrl@@@Z
?setContextProperty@QQmlContext@@QAEXABVQString@@PAVQObject@@@Z
?setContextProperty@QQmlContext@@QAEXABVQString@@ABVQVariant@@@Z
?qdeclarativeelement_destructor@QQmlPrivate@@YAXPAVQObject@@@Z

qt5core

??0QSequentialAnimationGroup@@QAE@PAVQObject@@@Z
?qt_metacall@QThread@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QThread@@UAEPAXPBD@Z
?staticMetaObject@QAbstractListModel@@2UQMetaObject@@B
?staticMetaObject@QSortFilterProxyModel@@2UQMetaObject@@B
?qt_metacall@QSortFilterProxyModel@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QSortFilterProxyModel@@UAEPAXPBD@Z
?activate@QMetaObject@@SAXPAVQObject@@PBU1@HPAPAX@Z
?staticMetaObject@QObject@@2UQMetaObject@@B
?dynamicMetaObject@QObjectData@@QBEPAUQMetaObject@@XZ
?qResourceFeatureZlib@@YAEXZ
?qUnregisterResourceData@@YA_NHPBE00@Z
?qRegisterResourceData@@YA_NHPBE00@Z
??0QVariant@@QAE@ABVQDateTime@@@Z
?supportedDropActions@QSortFilterProxyModel@@UBE?AV?$QFlags@W4DropAction@Qt@@@@XZ
?supportedDragActions@QAbstractProxyModel@@UBE?AV?$QFlags@W4DropAction@Qt@@@@XZ
?submit@QAbstractProxyModel@@UAE_NXZ
?span@QSortFilterProxyModel@@UBE?AVQSize@@ABVQModelIndex@@@Z
?sibling@QSortFilterProxyModel@@UBE?AVQModelIndex@@HHABV2@@Z
?setItemData@QAbstractProxyModel@@UAE_NABVQModelIndex@@ABV?$QMap@HVQVariant@@@@@Z
?setHeaderData@QSortFilterProxyModel@@UAE_NHW4Orientation@Qt@@ABVQVariant@@H@Z
?setData@QSortFilterProxyModel@@UAE_NABVQModelIndex@@ABVQVariant@@H@Z
?rowCount@QSortFilterProxyModel@@UBEHABVQModelIndex@@@Z
?revert@QAbstractProxyModel@@UAEXXZ
?removeRows@QSortFilterProxyModel@@UAE_NHHABVQModelIndex@@@Z
?removeColumns@QSortFilterProxyModel@@UAE_NHHABVQModelIndex@@@Z
?parent@QSortFilterProxyModel@@UBE?AVQModelIndex@@ABV2@@Z
?mimeTypes@QSortFilterProxyModel@@UBE?AVQStringList@@XZ
?mimeData@QSortFilterProxyModel@@UBEPAVQMimeData@@ABV?$QList@VQModelIndex@@@@@Z
?match@QSortFilterProxyModel@@UBE?AV?$QList@VQModelIndex@@@@ABVQModelIndex@@HABVQVariant@@HV?$QFlags@W4MatchFlag@Qt@@@@@Z
?mapToSource@QSortFilterProxyModel@@UBE?AVQModelIndex@@ABV2@@Z
?mapSelectionToSource@QSortFilterProxyModel@@UBE?AVQItemSelection@@ABV2@@Z
?mapSelectionFromSource@QSortFilterProxyModel@@UBE?AVQItemSelection@@ABV2@@Z
?mapFromSource@QSortFilterProxyModel@@UBE?AVQModelIndex@@ABV2@@Z
?itemData@QAbstractProxyModel@@UBE?AV?$QMap@HVQVariant@@@@ABVQModelIndex@@@Z
?insertRows@QSortFilterProxyModel@@UAE_NHHABVQModelIndex@@@Z
?insertColumns@QSortFilterProxyModel@@UAE_NHHABVQModelIndex@@@Z
?index@QSortFilterProxyModel@@UBE?AVQModelIndex@@HHABV2@@Z
?headerData@QSortFilterProxyModel@@UBE?AVQVariant@@HW4Orientation@Qt@@H@Z
?hasChildren@QSortFilterProxyModel@@UBE_NABVQModelIndex@@@Z
?flags@QSortFilterProxyModel@@UBE?AV?$QFlags@W4ItemFlag@Qt@@@@ABVQModelIndex@@@Z
?filterAcceptsColumn@QSortFilterProxyModel@@MBE_NHABVQModelIndex@@@Z
?fetchMore@QSortFilterProxyModel@@UAEXABVQModelIndex@@@Z
?dropMimeData@QSortFilterProxyModel@@UAE_NPBVQMimeData@@W4DropAction@Qt@@HHABVQModelIndex@@@Z
?data@QSortFilterProxyModel@@UBE?AVQVariant@@ABVQModelIndex@@H@Z
?columnCount@QSortFilterProxyModel@@UBEHABVQModelIndex@@@Z
?canFetchMore@QSortFilterProxyModel@@UBE_NABVQModelIndex@@@Z
?canDropMimeData@QAbstractProxyModel@@UBE_NPBVQMimeData@@W4DropAction@Qt@@HHABVQModelIndex@@@Z
?buddy@QSortFilterProxyModel@@UBE?AVQModelIndex@@ABV2@@Z
?sort@QSortFilterProxyModel@@UAEXHW4SortOrder@Qt@@@Z
?setSourceModel@QSortFilterProxyModel@@UAEXPAVQAbstractItemModel@@@Z
??1QSortFilterProxyModel@@UAE@XZ
??0QSortFilterProxyModel@@QAE@PAVQObject@@@Z
?toDateTime@QVariant@@QBE?AVQDateTime@@XZ
?suffix@QFileInfo@@QBE?AVQString@@XZ
?fileName@QFileInfo@@QBE?AVQString@@XZ
?copy@QFile@@QAE_NABVQString@@@Z
?exists@QFile@@QBE_NXZ
?toLocalTime@QDateTime@@QBE?AV1@XZ
??OQDate@@QBE_NABV0@@Z
??8QDate@@QBE_NABV0@@Z
?setBottom@QRect@@QAEXH@Z
?setRight@QRect@@QAEXH@Z
?setTop@QRect@@QAEXH@Z
?setLeft@QRect@@QAEXH@Z
??NQDateTime@@QBE_NABV0@@Z
?secsTo@QDateTime@@QBE_JABV1@@Z
?addSecs@QDateTime@@QBE?AV1@_J@Z
?addDays@QDateTime@@QBE?AV1@_J@Z
?setDate@QDateTime@@QAEXABVQDate@@@Z
?isValid@QDateTime@@QBE_NXZ
??4QDateTime@@QAEAAV0@ABV0@@Z
??4QDateTime@@QAEAAV0@$$QAV0@@Z
??0QDateTime@@QAE@ABVQDate@@ABVQTime@@W4TimeSpec@Qt@@@Z
??0QDateTime@@QAE@XZ
?secsTo@QTime@@QBEHABV1@@Z
?addSecs@QTime@@QBE?AV1@H@Z
?toString@QTime@@QBE?AVQString@@ABV2@@Z
??0QTime@@QAE@HHHH@Z
??0QDate@@QAE@HHH@Z
?endRemoveRows@QAbstractItemModel@@IAEXXZ
?beginRemoveRows@QAbstractItemModel@@IAEXABVQModelIndex@@HH@Z
?endInsertRows@QAbstractItemModel@@IAEXXZ
?beginInsertRows@QAbstractItemModel@@IAEXABVQModelIndex@@HH@Z
?removeRow@QAbstractItemModel@@QAE_NHABVQModelIndex@@@Z
?toList@QVariant@@QBE?AV?$QList@VQVariant@@@@XZ
??0QVariant@@QAE@ABV?$QList@VQVariant@@@@@Z
?append@QString@@QAEAAV1@PBD@Z
?append@QString@@QAEAAV1@ABV1@@Z
?startsWith@QString@@QBE_NABV1@W4CaseSensitivity@Qt@@@Z
??1QMutexLocker@@QAE@XZ
??0QMutexLocker@@QAE@PAVQBasicMutex@@@Z
??1QMutex@@QAE@XZ
??0QMutex@@QAE@XZ
?wakeOne@QWaitCondition@@QAEXXZ
?wait@QWaitCondition@@QAE_NPAVQMutex@@K@Z
??1QWaitCondition@@QAE@XZ
??0QWaitCondition@@QAE@XZ
?msec@QTime@@QBEHXZ
?staticMetaObject@QProcess@@2UQMetaObject@@B
?event@QThread@@UAE_NPAVQEvent@@@Z
?msleep@QThread@@SAXK@Z
??1QThread@@UAE@XZ
??0QThread@@QAE@PAVQObject@@@Z
?currentPath@QDir@@SA?AVQString@@XZ
?toSecsSinceEpoch@QDateTime@@QBE_JXZ
??AQJsonObject@@QBE?AVQJsonValue@@ABVQString@@@Z
??4QJsonObject@@QAEAAV0@ABV0@@Z
?toObject@QJsonValueRef@@QBE?AVQJsonObject@@XZ
?toArray@QJsonValueRef@@QBE?AVQJsonArray@@XZ
?toInt@QJsonValueRef@@QBEHXZ
??4QJsonValueRef@@QAEAAV0@ABV0@@Z
?toDouble@QJsonValue@@QBENN@Z
??0QJsonValue@@QAE@_J@Z
??RQLoggingCategory@@QBEABV0@XZ
?rename@QFile@@SA_NABVQString@@0@Z
?remove@QFile@@SA_NABVQString@@@Z
?remove@QFile@@QAE_NXZ
?kill@QProcess@@QAEXXZ
?startDetached@QProcess@@SA_NABVQString@@ABVQStringList@@0PA_J@Z
?start@QProcess@@QAEXABVQString@@ABVQStringList@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?disconnect@QObject@@SA_NPBV1@PBD01@Z
?compare_helper@QString@@CAHPBVQChar@@HPBDHW4CaseSensitivity@Qt@@@Z
??PQString@@QBE_NPBD@Z
?toLongLong@QString@@QBE_JPA_NH@Z
?remove@QString@@QAEAAV1@ABV1@W4CaseSensitivity@Qt@@@Z
?arg@QString@@QBE?AV1@KHHVQChar@@@Z
?arg@QString@@QBE?AV1@_KHHVQChar@@@Z
?arg@QString@@QBE?AV1@_JHHVQChar@@@Z
?constData@QString@@QBEPBVQChar@@XZ
?productVersion@QSysInfo@@SA?AVQString@@XZ
?isInfoEnabled@QLoggingCategory@@QBE_NXZ
?isDebugEnabled@QLoggingCategory@@QBE_NXZ
??0QLoggingCategory@@QAE@PBDW4QtMsgType@@@Z
??6QDebug@@QAEAAV0@J@Z
??0QLine@@QAE@ABVQPoint@@0@Z
?asprintf@QString@@SA?AV1@PBDZZ
??0QRectF@@QAE@ABVQRect@@@Z
??6@YA?AVQDebug@@V0@ABVQRect@@@Z
?isValid@QRect@@QBE_NXZ
?info@QMessageLogger@@QBE?AVQDebug@@XZ
??6QTextStream@@QAEAAV0@ABVQByteArray@@@Z
?setCodec@QTextStream@@QAEXPBD@Z
??1QTextStream@@UAE@XZ
??0QTextStream@@QAE@PAVQIODevice@@@Z
?isOpen@QIODevice@@QBE_NXZ
??0QJsonObject@@QAE@$$QAV0@@Z
?toLocal8Bit@QString@@QHAE?AVQByteArray@@XZ
?staticQtMetaObject@QObject@@1UQMetaObject@@B
?currentThread@QThread@@SAPAV1@XZ
?fromSignalImpl@QMetaMethod@@CA?AV1@PBUQMetaObject@@PAPAX@Z
?invoke@QMetaMethod@@QBE_NPAVQObject@@W4ConnectionType@Qt@@VQGenericArgument@@222222222@Z
?removeNativeEventFilter@QAbstractEventDispatcher@@QAEXPAVQAbstractNativeEventFilter@@@Z
?installNativeEventFilter@QAbstractEventDispatcher@@QAEXPAVQAbstractNativeEventFilter@@@Z
?eventDispatcher@QCoreApplication@@SAPAVQAbstractEventDispatcher@@XZ
?categoryName@QLoggingCategory@@QBEPBDXZ
?isWarningEnabled@QLoggingCategory@@QBE_NXZ
??1QLoggingCategory@@QAE@XZ
??0QLoggingCategory@@QAE@PBD@Z
?qt_QMetaEnum_flagDebugOperator@@YA?AVQDebug@@AAV1@_KPBUQMetaObject@@PBD@Z
?qt_QMetaEnum_debugOperator@@YA?AVQDebug@@AAV1@HPBUQMetaObject@@PBD@Z
?nextNode@QHashData@@SAPAUNode@1@PAU21@@Z
?freeNode@QHashData@@QAEXPAX@Z
?thread@QObject@@QBEPAVQThread@@XZ
?invokeMethod@QMetaObject@@SA_NPAVQObject@@PBDW4ConnectionType@Qt@@VQGenericReturnArgument@@VQGenericArgument@@444444444@Z
??0QGenericReturnArgument@@QAE@PBDPAX@Z
??0QGenericArgument@@QAE@PBDPBX@Z
?warning@QMessageLogger@@QBE?AVQDebug@@XZ
?warning@QMessageLogger@@QBAXPBDZZ
??0QMessageLogger@@QAE@PBDH00@Z
??6@YA?AVQDebug@@V0@ABVQSize@@@Z
??6@YA?AVQDebug@@V0@ABVQPoint@@@Z
?adjusted@QRectF@@QBE?AV1@NNNN@Z
?setHeight@QRect@@QAEXH@Z
?setWidth@QRect@@QAEXH@Z
?setY@QRect@@QAEXH@Z
?setX@QRect@@QAEXH@Z
?parent@QObject@@QBEPAV1@XZ
?translate@QTranslator@@UBE?AVQString@@PBD00H@Z
?qt_metacast@QTranslator@@UAEPAXPBD@Z
?qt_metacall@QTranslator@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?metaObject@QTranslator@@UBEPBUQMetaObject@@XZ
?isEmpty@QTranslator@@UBE_NXZ
?setCurrent@QDir@@SA_NABVQString@@@Z
?fromNativeSeparators@QDir@@SA?AVQString@@ABV2@@Z
?currentTime@QTime@@SA?AV1@XZ
?toString@QTime@@QBE?AVQString@@W4DateFormat@Qt@@@Z
?locate@QStandardPaths@@SA?AVQString@@W4StandardLocation@1@ABV2@V?$QFlags@W4LocateOption@QStandardPaths@@@@@Z
?load@QTranslator@@QAE_NABVQString@@000@Z
??1QTranslator@@UAE@XZ
??0QTranslator@@QAE@PAVQObject@@@Z
??6QDebug@@QAEAAV0@D@Z
?setAutoInsertSpaces@QDebug@@QAEX_N@Z
?autoInsertSpaces@QDebug@@QBE_NXZ
?maybeSpace@QDebug@@QAEAAV1@XZ
?nospace@QDebug@@QAEAAV1@XZ
??8QUrl@@QBE_NABV0@@Z
??0QUrl@@QAE@ABV0@@Z
?installTranslator@QCoreApplication@@SA_NPAVQTranslator@@@Z
?exit@QCoreApplication@@SAXH@Z
?processEvents@QCoreApplication@@SAXV?$QFlags@W4ProcessEventsFlag@QEventLoop@@@@@Z
?setOrganizationName@QCoreApplication@@SAXABVQString@@@Z
?setAttribute@QCoreApplication@@SAXW4ApplicationAttribute@Qt@@_N@Z
?className@QMetaObject@@QBEPBDXZ
?toLocal8Bit@QString@@QGBE?AVQByteArray@@XZ
?toUtf8@QString@@QHAE?AVQByteArray@@XZ
?replace@QString@@QAEAAV1@ABV1@0W4CaseSensitivity@Qt@@@Z
?append@QByteArray@@QAEAAV1@PBD@Z
?append@QByteArray@@QAEAAV1@D@Z
?reserve@QByteArray@@QAEXH@Z
?qInstallMessageHandler@@YAP6AXW4QtMsgType@@ABVQMessageLogContext@@ABVQString@@@ZP6AX012@Z@Z
?critical@QMessageLogger@@QBE?AVQDebug@@XZ
?qputenv@@YA_NPBDABVQByteArray@@@Z
?isNull@QRect@@QBE_NXZ
?writeData@QProcess@@MAE_JPBD_J@Z
?waitForReadyRead@QProcess@@UAE_NH@Z
?waitForBytesWritten@QProcess@@UAE_NH@Z
?size@QIODevice@@UBE_JXZ
?setupChildProcess@QProcess@@MAEXXZ
?seek@QIODevice@@UAE_N_J@Z
?reset@QIODevice@@UAE_NXZ
?readLineData@QIODevice@@MAE_JPAD_J@Z
?readData@QProcess@@MAE_JPAD_J@Z
?qt_metacast@QProcess@@UAEPAXPBD@Z
?qt_metacall@QProcess@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?pos@QIODevice@@UBE_JXZ
?open@QProcess@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?metaObject@QProcess@@UBEPBUQMetaObject@@XZ
?isSequential@QProcess@@UBE_NXZ
?canReadLine@QProcess@@UBE_NXZ
?bytesToWrite@QProcess@@UBE_JXZ
?bytesAvailable@QProcess@@UBE_JXZ
?atEnd@QProcess@@UBE_NXZ
??6QDebug@@QAEAAV0@N@Z
?remove@QSettings@@QAEXABVQString@@@Z
?applicationFilePath@QCoreApplication@@SA?AVQString@@XZ
?currentDate@QDate@@SA?AV1@XZ
?startDetached@QProcess@@SA_NABVQString@@@Z
?startDetached@QProcess@@SA_NABVQString@@ABVQStringList@@@Z
?execute@QProcess@@SAHABVQString@@@Z
?close@QProcess@@UAEXXZ
?readAllStandardOutput@QProcess@@QAE?AVQByteArray@@XZ
?waitForFinished@QProcess@@QAE_NH@Z
?start@QProcess@@QAEXABVQString@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??1QProcess@@UAE@XZ
??0QProcess@@QAE@PAVQObject@@@Z
?fromLocalFile@QUrl@@SA?AV1@ABVQString@@@Z
?fileSystemType@QStorageInfo@@QBE?AVQByteArray@@XZ
??1QStorageInfo@@QAE@XZ
??0QStorageInfo@@QAE@ABVQString@@@Z
?exists@QDir@@QBE_NXZ
?absolutePath@QFileInfo@@QBE?AVQString@@XZ
?system@QLocale@@SA?AV1@XZ
?script@QLocale@@QBE?AW4Script@1@XZ
?language@QLocale@@QBE?AW4Language@1@XZ
??1QLocale@@QAE@XZ
?toULongLong@QVariant@@QBE_KPA_N@Z
??0QVariant@@QAE@ABVQUrl@@@Z
??9QString@@QBE_NPBD@Z
??0QString@@QAE@ABVQByteArray@@@Z
?compare@QString@@QBEHABV1@W4CaseSensitivity@Qt@@@Z
?toUcs4@QString@@QBE?AV?$QVector@I@@XZ
?contains@QString@@QBE_NABV1@W4CaseSensitivity@Qt@@@Z
?contains@QSettings@@QBE_NABVQString@@@Z
?insert@QJsonArray@@QAEXHABVQJsonValue@@@Z
?isEmpty@QSize@@QBE_NXZ
?toRect@QVariant@@QBE?AVQRect@@XZ
?ry@QPoint@@QAEAAHXZ
?rx@QPoint@@QAEAAHXZ
?number@QString@@SA?AV1@JH@Z
?exists@QDir@@QBE_NABVQString@@@Z
?time@QDateTime@@QBE?AVQTime@@XZ
?date@QDateTime@@QBE?AVQDate@@XZ
?second@QTime@@QBEHXZ
?minute@QTime@@QBEHXZ
?hour@QTime@@QBEHXZ
?day@QDate@@QBEHXZ
?month@QDate@@QBEHXZ
?year@QDate@@QBEHXZ
?staticMetaObject@QThread@@2UQMetaObject@@B
?finished@QThread@@QAEXUQPrivateSignal@1@@Z
?isRunning@QThread@@QBE_NXZ
??6QDebug@@QAEAAV0@H@Z
?quit@QCoreApplication@@SAXXZ
?deleteLater@QObject@@QAEXXZ
?isWindowType@QObject@@QBE_NXZ
?argToQString@QtPrivate@@YA?AVQString@@VQStringView@@IPAPBUArgBase@1@@Z
?number@QString@@SA?AV1@NDH@Z
?number@QString@@SA?AV1@_KH@Z
?number@QString@@SA?AV1@_JH@Z
?rightJustified@QString@@QBE?AV1@HVQChar@@_N@Z
?arg@QString@@QBE?AV1@NHDHVQChar@@@Z
?arg@QString@@QBE?AV1@JHHVQChar@@@Z
?data@QString@@QBEPBVQChar@@XZ
?size@QString@@QBEHXZ
?constData@QByteArray@@QBEPBDXZ
??0QChar@@QAE@H@Z
?createThreadImpl@QThread@@CAPAV1@$$QAV?$future@X@std@@@Z
?wait@QThread@@QAE_NK@Z
?start@QThread@@QAEXW4Priority@1@@Z
?valueToKey@QMetaEnum@@QBEPBDH@Z
?enumerator@QMetaObject@@QBE?AVQMetaEnum@@H@Z
?indexOfEnumerator@QMetaObject@@QBEHPBD@Z
?fileTime@QFileInfo@@QBE?AVQDateTime@@W4FileTime@QFileDevice@@@Z
?size@QFileInfo@@QBE_JXZ
?exists@QFileInfo@@QBE_NXZ
??0QVariant@@QAE@_J@Z
??MQDateTime@@QBE_NABV0@@Z
?fromStdWString@QString@@SA?AV1@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?fromStdString@QString@@SA?AV1@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?mid@QString@@QBE?AV1@HH@Z
?toLongLong@QVariant@@QBE_JPA_N@Z
??0QVariant@@QAE@M@Z
?toUpper@QString@@QGBE?AV1@XZ
?right@QString@@QBE?AV1@H@Z
?indexOf@QString@@QBEHABV1@HW4CaseSensitivity@Qt@@@Z
?setValue@QSettings@@QAEXABVQString@@ABVQVariant@@@Z
?toSize@QVariant@@QBE?AVQSize@@XZ
?toPoint@QVariant@@QBE?AVQPoint@@XZ
??0QSize@@QAE@XZ
?contains@QJsonObject@@QBE_NABVQString@@@Z
?value@QJsonObject@@QBE?AVQJsonValue@@ABVQString@@@Z
?fromVariantMap@QJsonObject@@SA?AV1@ABV?$QMap@VQString@@VQVariant@@@@@Z
??4QJsonObject@@QAEAAV0@$$QAV0@@Z
?object@QJsonDocument@@QBE?AVQJsonObject@@XZ
?toObject@QJsonValue@@QBE?AVQJsonObject@@XZ
?rename@QFile@@QAE_NABVQString@@@Z
?toInt@QString@@QBEHPA_NH@Z
?toWCharArray@QString@@QBEHPA_W@Z
?split@QString@@QBE?AVQStringList@@ABV1@W4SplitBehavior@1@W4CaseSensitivity@Qt@@@Z
?left@QString@@QBE?AV1@H@Z
?absolutePath@QDir@@QBE?AVQString@@XZ
?append@QJsonArray@@QAEXABVQJsonValue@@@Z
??0QJsonValue@@QAE@ABVQJsonObject@@@Z
??0QJsonValue@@QAE@PBD@Z
??0QVariant@@QAE@ABVQJsonArray@@@Z
??0QVariant@@QAE@ABVQPoint@@@Z
??0QVariant@@QAE@ABVQSize@@@Z
?isNull@QPoint@@QBE_NXZ
?arg@QString@@QBE?AV1@HHHVQChar@@@Z
?height@QRectF@@QBENXZ
?width@QRectF@@QBENXZ
??0QJsonObject@@QAE@ABV0@@Z
?toJson@QJsonDocument@@QBE?AVQByteArray@@W4JsonFormat@1@@Z
??0QJsonDocument@@QAE@ABVQJsonObject@@@Z
??4QJsonValueRef@@QAEAAV0@ABVQJsonValue@@@Z
?length@QLineF@@QBENXZ
?dy@QLineF@@QBENXZ
?dx@QLineF@@QBENXZ
??0QLineF@@QAE@ABVQPointF@@0@Z
?setAccepted@QEvent@@QAEX_N@Z
?toStdString@QString@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?toRect@QRectF@@QBE?AVQRect@@XZ
??0QRectF@@QAE@ABVQPointF@@0@Z
??0QPointF@@QAE@XZ
?shared_null@QHashData@@2U1@B
?index@QAbstractListModel@@UBE?AVQModelIndex@@HHABV2@@Z
??6QDebug@@QAEAAV0@ABVQString@@@Z
??0QDebug@@QAE@ABV0@@Z
?layoutChanged@QAbstractItemModel@@QAEXABV?$QList@VQPersistentModelIndex@@@@W4LayoutChangeHint@1@@Z
?dataChanged@QAbstractItemModel@@QAEXABVQModelIndex@@0ABV?$QVector@H@@@Z
??1QPersistentModelIndex@@QAE@XZ
??0QModelIndex@@QAE@XZ
??6@YA?AVQDebug@@V0@ABVQVariant@@@Z
?toJsonArray@QVariant@@QBE?AVQJsonArray@@XZ
?toJsonObject@QVariant@@QBE?AVQJsonObject@@XZ
?toJsonValue@QVariant@@QBE?AVQJsonValue@@XZ
?toMap@QVariant@@QBE?AV?$QMap@VQString@@VQVariant@@@@XZ
?toBool@QVariant@@QBE_NXZ
?toInt@QVariant@@QBEHPA_N@Z
??4QVariant@@QAEAAV0@ABV0@@Z
??0QVariant@@QAE@ABVQJsonObject@@@Z
??0QVariant@@QAE@ABV?$QMap@VQString@@VQVariant@@@@@Z
??0QVariant@@QAE@ABVQStringList@@@Z
??0QVariant@@QAE@ABVQString@@@Z
??0QVariant@@QAE@_N@Z
??0QVariant@@QAE@_K@Z
?free_helper@QHashData@@QAEXP6AXPAUNode@1@@Z@Z
?willGrow@QHashData@@QAE_NXZ
?detach_helper@QHashData@@QAEPAU1@P6AXPAUNode@1@PAX@ZP6AX0@ZHH@Z
?allocateNode@QHashData@@QAEPAXH@Z
?nextNode@QMapNodeBase@@QAEPAU1@XZ
?insert@QJsonObject@@QAE?AViterator@1@ABVQString@@ABVQJsonValue@@@Z
?find@QJsonObject@@QAE?AViterator@1@ABVQString@@@Z
?remove@QJsonObject@@QAEXABVQString@@@Z
??AQJsonObject@@QAE?AVQJsonValueRef@@ABVQString@@@Z
?isEmpty@QJsonObject@@QBE_NXZ
?toVariantMap@QJsonObject@@QBE?AV?$QMap@VQString@@VQVariant@@@@XZ
??1QJsonObject@@QAE@XZ
??0QJsonObject@@QAE@XZ
?push_back@QJsonArray@@QAEXABVQJsonValue@@@Z
?end@QJsonArray@@QAE?AViterator@1@XZ
?begin@QJsonArray@@QAE?AViterator@1@XZ
?replace@QJsonArray@@QAEXHABVQJsonValue@@@Z
??1QJsonArray@@QAE@XZ
??0QJsonArray@@QAE@XZ
??AQJsonDocument@@QBE?BVQJsonValue@@ABVQString@@@Z
?setObject@QJsonDocument@@QAEXABVQJsonObject@@@Z
?toJson@QJsonDocument@@QBE?AVQByteArray@@XZ
?fromJson@QJsonDocument@@SA?AV1@ABVQByteArray@@PAUQJsonParseError@@@Z
??1QJsonDocument@@QAE@XZ
??0QJsonDocument@@QAE@XZ
??8QJsonValueRef@@QBE_NABVQJsonValue@@@Z
?toString@QJsonValueRef@@QBE?AVQString@@XZ
??BQJsonValueRef@@QBE?AVQJsonValue@@XZ
??0QJsonValueRef@@QAE@PAVQJsonObject@@H@Z
??0QJsonValueRef@@QAE@PAVQJsonArray@@H@Z
??6@YA?AVQDebug@@V0@ABVQJsonValue@@@Z
??AQJsonValue@@QBE?BV0@ABVQString@@@Z
?toArray@QJsonValue@@QBE?AVQJsonArray@@XZ
?isNull@QJsonValue@@QBE_NXZ
?toVariant@QJsonValue@@QBE?AVQVariant@@XZ
?fromVariant@QJsonValue@@SA?AV1@ABVQVariant@@@Z
??4QJsonValue@@QAEAAV0@$$QAV0@@Z
??1QJsonValue@@QAE@XZ
??0QJsonValue@@QAE@ABVQJsonArray@@@Z
??0QJsonValue@@QAE@ABVQString@@@Z
??0QJsonValue@@QAE@H@Z
?open@QFile@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??1QFile@@UAE@XZ
??0QFile@@QAE@ABVQString@@@Z
?close@QFileDevice@@UAEXXZ
?write@QIODevice@@QAE_JABVQByteArray@@@Z
?readAll@QIODevice@@QAE?AVQByteArray@@XZ
?remove@QListData@@QAEXH@Z
?insert@QListData@@QAEPAPAXH@Z
??M@YA_NABVQString@@0@Z
?number@QString@@SA?AV1@HH@Z
?swap@QString@@QAEXAAV1@@Z
?isEmpty@QByteArray@@QBE_NXZ
??4QByteArray@@QAEAAV0@PBD@Z
??0QByteArray@@QAE@ABV0@@Z
??0QByteArray@@QAE@XZ
?intersects@QRect@@QBE_NABV1@@Z
?currentDateTime@QDateTime@@SA?AV1@XZ
?toString@QDateTime@@QBE?AVQString@@ABV2@@Z
??6QDebug@@QAEAAV0@PBD@Z
??1QDebug@@QAE@XZ
?tr@QObject@@SA?AVQString@@PBD0H@Z
?prepend@QListData@@QAEPAPAXXZ
?number@QString@@SA?AV1@KH@Z
?toUtf8@QString@@QGBE?AVQByteArray@@XZ
??BQByteArray@@QBEPBDXZ
?debug@QMessageLogger@@QBE?AVQDebug@@XZ
??0QMessageLogger@@QAE@PBDH0@Z
?supportedDropActions@QAbstractItemModel@@UBE?AV?$QFlags@W4DropAction@Qt@@@@XZ
?supportedDragActions@QAbstractItemModel@@UBE?AV?$QFlags@W4DropAction@Qt@@@@XZ
?submit@QAbstractItemModel@@UAE_NXZ
?span@QAbstractItemModel@@UBE?AVQSize@@ABVQModelIndex@@@Z
?sort@QAbstractItemModel@@UAEXHW4SortOrder@Qt@@@Z
?sibling@QAbstractListModel@@UBE?AVQModelIndex@@HHABV2@@Z
?setItemData@QAbstractItemModel@@UAE_NABVQModelIndex@@ABV?$QMap@HVQVariant@@@@@Z
?setHeaderData@QAbstractItemModel@@UAE_NHW4Orientation@Qt@@ABVQVariant@@H@Z
?setData@QAbstractItemModel@@UAE_NABVQModelIndex@@ABVQVariant@@H@Z
?roleNames@QAbstractItemModel@@UBE?AV?$QHash@HVQByteArray@@@@XZ
?revert@QAbstractItemModel@@UAEXXZ
?removeRows@QAbstractItemModel@@UAE_NHHABVQModelIndex@@@Z
?removeColumns@QAbstractItemModel@@UAE_NHHABVQModelIndex@@@Z
?qt_metacast@QAbstractListModel@@UAEPAXPBD@Z
?qt_metacall@QAbstractListModel@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?parent@QAbstractListModel@@EBE?AVQModelIndex@@ABV2@@Z
?moveRows@QAbstractItemModel@@UAE_NABVQModelIndex@@HH0H@Z
?moveColumns@QAbstractItemModel@@UAE_NABVQModelIndex@@HH0H@Z
?mimeTypes@QAbstractItemModel@@UBE?AVQStringList@@XZ
?mimeData@QAbstractItemModel@@UBEPAVQMimeData@@ABV?$QList@VQModelIndex@@@@@Z
?metaObject@QAbstractListModel@@UBEPBUQMetaObject@@XZ
?match@QAbstractItemModel@@UBE?AV?$QList@VQModelIndex@@@@ABVQModelIndex@@HABVQVariant@@HV?$QFlags@W4MatchFlag@Qt@@@@@Z
?itemData@QAbstractItemModel@@UBE?AV?$QMap@HVQVariant@@@@ABVQModelIndex@@@Z
?insertRows@QAbstractItemModel@@UAE_NHHABVQModelIndex@@@Z
?insertColumns@QAbstractItemModel@@UAE_NHHABVQModelIndex@@@Z
?headerData@QAbstractItemModel@@UBE?AVQVariant@@HW4Orientation@Qt@@H@Z
?hasChildren@QAbstractListModel@@EBE_NABVQModelIndex@@@Z
?flags@QAbstractListModel@@UBE?AV?$QFlags@W4ItemFlag@Qt@@@@ABVQModelIndex@@@Z
?fetchMore@QAbstractItemModel@@UAEXABVQModelIndex@@@Z
?dropMimeData@QAbstractListModel@@UAE_NPBVQMimeData@@W4DropAction@Qt@@HHABVQModelIndex@@@Z
?columnCount@QAbstractListModel@@EBEHABVQModelIndex@@@Z
?canFetchMore@QAbstractItemModel@@UBE_NABVQModelIndex@@@Z
?canDropMimeData@QAbstractItemModel@@UBE_NPBVQMimeData@@W4DropAction@Qt@@HHABVQModelIndex@@@Z
?buddy@QAbstractItemModel@@UBE?AVQModelIndex@@ABV2@@Z
??1QAbstractListModel@@UAE@XZ
??0QAbstractListModel@@QAE@PAVQObject@@@Z
?endResetModel@QAbstractItemModel@@IAEXXZ
?beginResetModel@QAbstractItemModel@@IAEXXZ
?createIndex@QAbstractItemModel@@IBE?AVQModelIndex@@HHPAX@Z
?isValid@QModelIndex@@QBE_NXZ
?data@QModelIndex@@QBE?AVQVariant@@H@Z
?internalPointer@QModelIndex@@QBEPAXXZ
?row@QModelIndex@@QBEHXZ
?convert@QVariant@@QBE_NHPAX@Z
??9QVariant@@QBE_NABV0@@Z
?constData@QVariant@@QBEPBXXZ
?isDetached@QVariant@@QBE_NXZ
?userType@QVariant@@QBEHXZ
??4QVariant@@QAEAAV0@$$QAV0@@Z
??0QVariant@@QAE@$$QAV0@@Z
??0QVariant@@QAE@HPBXI@Z
?isAccepted@QEvent@@QBE_NXZ
?setHeight@QSize@@QAEXH@Z
?setWidth@QSize@@QAEXH@Z
?mkpath@QDir@@QBE_NABVQString@@@Z

msvcp140

?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
_Make_dir
?in@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPA_W3AAPA_W@Z
?out@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PB_W1AAPB_WPAD3AAPAD@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z
?_Locimp_Addfac@_Locimp@locale@std@@CAXPAV123@PAVfacet@23@I@Z
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QAE@I@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??1?$codecvt@_WDU_Mbstatet@@@std@@MAE@XZ
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
?__ExceptionPtrAssign@@YAXPAXPBX@Z
??Bid@locale@std@@QAEIXZ
?always_noconv@codecvt_base@std@@QBE_NXZ
?rdstate@ios_base@std@@QBEHXZ
?width@ios_base@std@@QBE_JXZ
?width@ios_base@std@@QAE_J_J@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
_Stat
?__ExceptionPtrCreate@@YAXPAX@Z
?_Winerror_map@std@@YAHH@Z
?_Winerror_message@std@@YAKKPADK@Z
_Cnd_timedwait
_Mtx_current_owns
_Thrd_id
_Thrd_join
_Thrd_sleep
_Xtime_get_ticks
?_Throw_Cpp_error@std@@YAXH@Z
_Cnd_do_broadcast_at_thread_exit
_Cnd_signal
_Cnd_destroy
_Cnd_init
_Mtx_destroy
_Mtx_init
_Thrd_detach
_Thrd_start
?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z
?_Throw_future_error@std@@YAXABVerror_code@1@@Z
?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QAEXXZ
?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QAEXXZ
?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QAEXXZ
?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QAEXXZ
?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QAEXXZ
?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QAEX_N@Z
??0task_continuation_context@Concurrency@@AAE@XZ
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AAEXXZ
?_Capture@_ContextCallback@details@Concurrency@@AAEXXZ
?_Reset@_ContextCallback@details@Concurrency@@AAEXXZ
?_CallInContext@_ContextCallback@details@Concurrency@@QBEXV?$function@$$A6AXXZ@std@@_N@Z
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?_ReportUnobservedException@details@Concurrency@@YAXXZ
?_Release_chore@details@Concurrency@@YAXPAU_Threadpool_chore@12@@Z
?_Schedule_chore@details@Concurrency@@YAHPAU_Threadpool_chore@12@@Z
?_Throw_C_error@std@@YAXH@Z
_Cnd_unregister_at_thread_exit
_Cnd_register_at_thread_exit
_Cnd_broadcast
_Cnd_wait
_Cnd_destroy_in_situ
_Cnd_init_in_situ
_Mtx_unlock
_Mtx_lock
_Mtx_destroy_in_situ
_Mtx_init_in_situ
?_Xbad_function_call@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Xout_of_range@std@@YAXPBD@Z
?_XGetLastError@std@@YAXXZ
?_Execute_once@std@@YAHAAUonce_flag@1@P6GHPAX1PAPAX@Z1@Z
?_Xlength_error@std@@YAXPBD@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrToBool@@YA_NPBX@Z

dwmapi

DwmUpdateThumbnailProperties
DwmUnregisterThumbnail
DwmRegisterThumbnail
DwmQueryThumbnailSourceSize

vcruntime140

_CxxThrowException
memcmp
memmove
memset
strrchr
wcsrchr
__CxxFrameHandler3
__std_exception_copy
__std_exception_destroy
wcsstr
__RTDynamicCast
__std_terminate
_except_handler4_common
_purecall
memchr
memcpy

api-ms-win-crt-runtime-l1-1-0

_cexit
_get_narrow_winmain_command_line
_initterm_e
_exit
_crt_atexit
_c_exit
_register_thread_local_exe_atexit_callback
_set_app_type
_initialize_onexit_table
_controlfp_s
_initialize_narrow_environment
_configure_narrow_argv
strerror
exit
_endthreadex
abort
_register_onexit_function
_beginthreadex
terminate
_invalid_parameter_noinfo_noreturn
_errno
_seh_filter_exe
_initterm

api-ms-win-crt-string-l1-1-0

strcmp
_wcsnicmp
wcslen
wcsncpy_s
_wcsicmp
strcpy
wcsncat_s
strlen
_strnicmp
strncpy
towupper
wcsncpy
wcscmp
wcscat_s
tolower
_stricmp
wcscpy_s
wcscat

api-ms-win-crt-stdio-l1-1-0

fgetc
fputc
__acrt_iob_func
__stdio_common_vfwprintf
__stdio_common_vfprintf
__stdio_common_vsscanf
__stdio_common_vswprintf_s
_wfopen
fclose
fflush
fseek
__stdio_common_vswprintf
ftell
__stdio_common_vsnwprintf_s
__p__commode
__stdio_common_vsprintf
__stdio_common_vsnprintf_s
fwrite
ungetc
setvbuf
fsetpos
_fseeki64
__stdio_common_vsprintf_s
_set_fmode
fgetpos
__stdio_common_vswscanf
fread
_get_stream_buffer_pointers

api-ms-win-crt-utility-l1-1-0

abs
rand

api-ms-win-crt-math-l1-1-0

acos
cos
_dsign
fmaxf
pow
sin
sqrt
__setusermatherr
_except1
_dtest

api-ms-win-crt-heap-l1-1-0

_callnewh
free
_set_new_mode
malloc

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-locale-l1-1-0

localeconv
_configthreadlocale

api-ms-win-crt-convert-l1-1-0

strtoll
strtoull
strtod

api-ms-win-crt-filesystem-l1-1-0

_lock_file
_unlock_file

Sections

.text
Size: - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 6.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.S'g
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DCv
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sji
Size: 7.9MB - Virtual size: 7.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/04 - EaseUS RecExperts Pro 3.8.0/Setup.exe
.exe windows:6 windows x86 arch:x86

5a594319a0d69dbc452e748bcf05892e

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

03:bd:22:19:37:f2:d7:96:fa:70:29:54:7b:19:03:01
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

02-12-2024 23:59

Subject

SERIALNUMBER=91510107765360104N,CN=CHENGDU YIWO Tech Development Co.\, Ltd.,O=CHENGDU YIWO Tech Development Co.\, Ltd.,L=成都市,ST=四川省,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#0c09e6ada6e4beafe58cba,1.3.6.1.4.1.311.60.2.1.2=#0c09e59b9be5b79de79c81,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14-07-2023 00:00

Not After

13-10-2034 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

db:df:80:0d:ab:3b:f1:3f:2e:56:aa:bc:b1:fd:e9:ba:34:56:cd:0c:6c:63:be:0e:48:a7:4b:f5:50:35:f5:d8
Signer

Actual PE Digest

db:df:80:0d:ab:3b:f1:3f:2e:56:aa:bc:b1:fd:e9:ba:34:56:cd:0c:6c:63:be:0e:48:a7:4b:f5:50:35:f5:d8

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetACP
GetExitCodeProcess
LocalFree
CloseHandle
SizeofResource
VirtualProtect
VirtualFree
GetFullPathNameW
ExitProcess
HeapAlloc
GetCPInfoExW
RtlUnwind
GetCPInfo
GetStdHandle
GetModuleHandleW
FreeLibrary
HeapDestroy
ReadFile
CreateProcessW
GetLastError
GetModuleFileNameW
SetLastError
FindResourceW
CreateThread
CompareStringW
LoadLibraryA
ResetEvent
GetVersion
RaiseException
FormatMessageW
SwitchToThread
GetExitCodeThread
GetCurrentThread
LoadLibraryExW
LockResource
GetCurrentThreadId
UnhandledExceptionFilter
VirtualQuery
VirtualQueryEx
Sleep
EnterCriticalSection
SetFilePointer
LoadResource
SuspendThread
GetTickCount
GetFileSize
GetStartupInfoW
GetFileAttributesW
InitializeCriticalSection
GetThreadPriority
SetThreadPriority
GetCurrentProcess
VirtualAlloc
GetSystemInfo
GetCommandLineW
LeaveCriticalSection
GetProcAddress
ResumeThread
GetVersionExW
VerifyVersionInfoW
HeapCreate
GetWindowsDirectoryW
VerSetConditionMask
GetDiskFreeSpaceW
FindFirstFileW
GetUserDefaultUILanguage
lstrlenW
QueryPerformanceCounter
SetEndOfFile
HeapFree
WideCharToMultiByte
FindClose
MultiByteToWideChar
LoadLibraryW
SetEvent
CreateFileW
GetLocaleInfoW
GetSystemDirectoryW
DeleteFileW
GetLocalTime
GetEnvironmentVariableW
WaitForSingleObject
WriteFile
ExitThread
DeleteCriticalSection
TlsGetValue
GetDateFormatW
SetErrorMode
IsValidLocale
TlsSetValue
CreateDirectoryW
GetSystemDefaultUILanguage
EnumCalendarInfoW
LocalAlloc
GetUserDefaultLangID
RemoveDirectoryW
CreateEventW
SetThreadLocale
GetThreadLocale

comctl32

InitCommonControls

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

user32

CreateWindowExW
TranslateMessage
CharLowerBuffW
CallWindowProcW
CharUpperW
PeekMessageW
GetSystemMetrics
SetWindowLongW
MessageBoxW
DestroyWindow
CharUpperBuffW
CharNextW
MsgWaitForMultipleObjects
LoadStringW
ExitWindowsEx
DispatchMessageW

oleaut32

SysAllocStringLen
SafeArrayPtrOfIndex
VariantCopy
SafeArrayGetLBound
SafeArrayGetUBound
VariantInit
VariantClear
SysFreeString
SysReAllocStringLen
VariantChangeType
SafeArrayCreate

netapi32

NetWkstaGetInfo
NetApiBufferFree

advapi32

RegQueryValueExW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegCloseKey
OpenProcessToken
RegOpenKeyExW

Exports

Exports

TMethodImplementationIntercept
__dbk_fcall_wrapper
dbkFCallWrapperAddr

Sections

.text
Size: 718KB - Virtual size: 717KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 27KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 154B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 24B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/04 - EaseUS RecExperts Pro 3.8.0/instructions.txt
Download these/05 - DirectX-Runtimes_setup.exe
.exe windows:5 windows x86 arch:x86

1494de9b53e05fc1f40cb92afbdd6ce4

Code Sign

33:00:00:01:87:72:17:72:15:59:40:c7:09:00:00:00:00:01:87
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04-03-2020 18:39

Not After

03-03-2021 18:39

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08-07-2011 20:59

Not After

08-07-2026 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

27:76:a5:a9:c5:b9:5a:43:1b:2c:30:b6:5e:2d:45:20:bf:45:97:ec:05:e8:52:14:50:01:2c:09:4d:ce:b4:84
Signer

Actual PE Digest

27:76:a5:a9:c5:b9:5a:43:1b:2c:30:b6:5e:2d:45:20:bf:45:97:ec:05:e8:52:14:50:01:2c:09:4d:ce:b4:84

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

FreeSid
AllocateAndInitializeSid
EqualSid
GetTokenInformation
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA

kernel32

LocalFree
LocalAlloc
GetLastError
GetCurrentProcess
GetModuleFileNameA
lstrlenA
GetSystemDirectoryA
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
lstrcmpA
FindFirstFileA
lstrcatA
lstrcpyA
_lclose
_llseek
_lopen
WritePrivateProfileStringA
GetWindowsDirectoryA
CreateDirectoryA
GetFileAttributesA
ExpandEnvironmentStringsA
IsDBCSLeadByte
GetShortPathNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpiA
GetProcAddress
GlobalUnlock
GlobalLock
GlobalAlloc
FreeResource
CloseHandle
LoadResource
SizeofResource
FindResourceA
ReadFile
WriteFile
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetCurrentDirectoryA
GetTempFileNameA
ExitProcess
CreateFileA
LoadLibraryExA
lstrcpynA
GetVolumeInformationA
FormatMessageA
GetCurrentDirectoryA
GetVersionExA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetTempPathA
GetSystemInfo
CreateMutexA
SetEvent
CreateEventA
CreateThread
ResetEvent
TerminateThread
GetDriveTypeA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
LockResource
LoadLibraryA
GetDiskFreeSpaceA
MulDiv
EnumResourceLanguagesA
FreeLibrary
GlobalFree

gdi32

GetDeviceCaps

user32

ExitWindowsEx
wsprintfA
CharNextA
CharUpperA
CharPrevA
SetWindowLongA
GetWindowLongA
CallWindowProcA
DispatchMessageA
MsgWaitForMultipleObjects
PeekMessageA
SendMessageA
SetWindowPos
ReleaseDC
GetDC
GetWindowRect
SendDlgItemMessageA
GetDlgItem
SetForegroundWindow
SetWindowTextA
MessageBoxA
DialogBoxIndirectParamA
ShowWindow
EnableWindow
GetDlgItemTextA
EndDialog
GetDesktopWindow
MessageBeep
SetDlgItemTextA
LoadStringA
GetSystemMetrics

comctl32

ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 243KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Download these/06 - winrar-x64-701.exe
.exe windows:6 windows x64 arch:x64

39da3cace27ab9503fa46001ce968ea6

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:8b:08:39:9e:c7:03:62:3c:72:cd:20:77:ad:65:d9
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

08-08-2023 00:00

Not After

07-08-2026 23:59

Subject

SERIALNUMBER=HRB 109885,CN=win.rar GmbH,O=win.rar GmbH,L=Berlin,ST=Berlin,C=DE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#130e436861726c6f7474656e62757267,1.3.6.1.4.1.311.60.2.1.2=#13064265726c696e,1.3.6.1.4.1.311.60.2.1.3=#13024445

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14-07-2023 00:00

Not After

13-10-2034 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d1:d4:c8:14:12:24:32:bd:c4:95:b0:bc:a3:04:97:ee:93:9e:e1:70:3c:22:e5:40:01:ce:1b:48:03:be:a6:c5
Signer

Actual PE Digest

d1:d4:c8:14:12:24:32:bd:c4:95:b0:bc:a3:04:97:ee:93:9e:e1:70:3c:22:e5:40:01:ce:1b:48:03:be:a6:c5

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Projects\WinRAR\sfx\setup\build\sfxrar64\Release\sfxrar.pdb

Imports

kernel32

GetLastError
FormatMessageW
LocalFree
SetLastError
CreateHardLinkW
SetFileTime
GetCurrentProcess
CloseHandle
CreateFileW
DeviceIoControl
RemoveDirectoryW
DeleteFileW
GetLongPathNameW
GetShortPathNameW
MoveFileW
GetStdHandle
WriteFile
ReadFile
SetFilePointer
SetEndOfFile
FlushFileBuffers
GetFileType
CreateDirectoryW
GetFileAttributesW
SetFileAttributesW
GetCurrentProcessId
FindClose
FindFirstFileW
FindNextFileW
GetVersionExW
GetFullPathNameW
FoldStringW
GetModuleFileNameW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetModuleHandleW
FindResourceW
FreeLibrary
GetProcAddress
ExpandEnvironmentStringsW
SetThreadExecutionState
CompareStringW
AllocConsole
AttachConsole
WriteConsoleW
Sleep
FreeConsole
ExitProcess
GetSystemDirectoryW
LoadLibraryW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateThread
WaitForSingleObject
GetProcessAffinityMask
CreateSemaphoreW
CreateEventW
ReleaseSemaphore
SetThreadPriority
SetEvent
ResetEvent
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
LocalFileTimeToFileTime
TzSpecificLocalTimeToSystemTime
GetSystemTime
WideCharToMultiByte
MultiByteToWideChar
GetCPInfo
IsDBCSLeadByte
GlobalAlloc
SizeofResource
LoadResource
LockResource
GlobalLock
GlobalUnlock
GlobalFree
GetDateFormatW
GetTimeFormatW
GlobalMemoryStatusEx
GetLocaleInfoW
GetNumberFormatW
GetCommandLineW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
SetEnvironmentVariableW
GetLocalTime
GetTickCount
CreateFileMappingW
MoveFileExW
GetTempPathW
GetExitCodeProcess
GetConsoleMode
GetConsoleOutputCP
HeapSize
SetFilePointerEx
GetStringTypeW
SetStdHandle
GetProcessHeap
LCMapStringW
FlsFree
FlsSetValue
RaiseException
GetSystemInfo
VirtualProtect
VirtualQuery
LoadLibraryExA
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
RtlUnwindEx
RtlPcToFileHeader
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
QueryPerformanceFrequency
GetModuleHandleExW
HeapFree
HeapAlloc
HeapReAlloc
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlsAlloc
FlsGetValue

oleaut32

SysAllocString
SysFreeString
VariantClear

gdiplus

GdipFree
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipCreateHBITMAPFromBitmap
GdiplusStartup
GdiplusShutdown
GdipCreateBitmapFromStream

Sections

.text
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 1024B - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 152KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
For Win 11 only/DisableCoreIso.reg
For Win 11 only/w11fix.reg

Sharing

General

Malware Config

Signatures

Files

Code Sign

69:98:6c:80:0a:7c:5b:8e:47:86:45:a0:3e:86:d5:40Certificate

Extended Key Usages

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

f1:64:25:8c:09:b6:e2:7b:e2:0e:32:60:8e:4b:f4:a8Certificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

13:f6:ef:3f:06:29:49:56:6c:21:59:e0:0c:ac:6f:83:24:95:fa:e4Signer

Headers

DLL Characteristics

File Characteristics

Sections

UPX0 Size: - Virtual size: 492KB

UPX1 Size: 262KB - Virtual size: 264KB

.rsrc Size: 57KB - Virtual size: 60KB

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 514KB - Virtual size: 513KB

.rdata Size: 56KB - Virtual size: 55KB

.data Size: 26KB - Virtual size: 105KB

.rsrc Size: 56KB - Virtual size: 56KB

870b8e75c7190e202e9c6c81dff1040c

Code Sign

79:9e:5f:0f:69:be:cb:93:49:4a:b3:10:ef:62:cc:c3Certificate

Extended Key Usages

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51Certificate

Key Usages

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74Certificate

Key Usages

01:48:90:3d:c2:8a:bc:a7:a1:19:4d:0c:1c:57:b8:29Certificate

Extended Key Usages

Key Usages

ce:a3:d7:4e:89:0b:26:a8:99:dd:81:85:cf:0e:ee:ee:5d:3b:1e:98Signer

Headers

DLL Characteristics

File Characteristics

Imports

wsock32

version

winmm

comctl32

mpr

wininet

psapi

userenv

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 512KB - Virtual size: 512KB

.rdata Size: 54KB - Virtual size: 54KB

.data Size: 26KB - Virtual size: 105KB

.rsrc Size: 79KB - Virtual size: 78KB

42b8d4fa3bc2c4336a20de1bdf1422d8

Code Sign

79:9e:5f:0f:69:be:cb:93:49:4a:b3:10:ef:62:cc:c3Certificate

Extended Key Usages

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51Certificate

Key Usages

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74Certificate

Key Usages

01:48:90:3d:c2:8a:bc:a7:a1:19:4d:0c:1c:57:b8:29Certificate

Extended Key Usages

Key Usages

69:98:6c:80:0a:7c:5b:8e:47:86:45:a0:3e:86:d5:40
Certificate

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

f1:64:25:8c:09:b6:e2:7b:e2:0e:32:60:8e:4b:f4:a8
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

13:f6:ef:3f:06:29:49:56:6c:21:59:e0:0c:ac:6f:83:24:95:fa:e4
Signer

UPX0
Size: - Virtual size: 492KB

UPX1
Size: 262KB - Virtual size: 264KB

.rsrc
Size: 57KB - Virtual size: 60KB

.text
Size: 514KB - Virtual size: 513KB

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 26KB - Virtual size: 105KB

.rsrc
Size: 56KB - Virtual size: 56KB

79:9e:5f:0f:69:be:cb:93:49:4a:b3:10:ef:62:cc:c3
Certificate

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

01:48:90:3d:c2:8a:bc:a7:a1:19:4d:0c:1c:57:b8:29
Certificate

ce:a3:d7:4e:89:0b:26:a8:99:dd:81:85:cf:0e:ee:ee:5d:3b:1e:98
Signer

.text
Size: 512KB - Virtual size: 512KB

.rdata
Size: 54KB - Virtual size: 54KB

.data
Size: 26KB - Virtual size: 105KB

.rsrc
Size: 79KB - Virtual size: 78KB

79:9e:5f:0f:69:be:cb:93:49:4a:b3:10:ef:62:cc:c3
Certificate

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

01:48:90:3d:c2:8a:bc:a7:a1:19:4d:0c:1c:57:b8:29
Certificate

22:8c:20:21:a8:7d:2d:05:97:59:54:86:c4:a2:59:bc:a7:2f:99:ef
Signer

.text
Size: 599KB - Virtual size: 598KB

.rdata
Size: 86KB - Virtual size: 85KB

.data
Size: 29KB - Virtual size: 114KB

.pdata
Size: 27KB - Virtual size: 26KB

.rsrc
Size: 78KB - Virtual size: 78KB

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

61:01:b2:9b:00:00:00:00:00:15
Certificate

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

61:06:94:2d:00:00:00:00:00:09
Certificate

72:eb:ec:84:ec:eb:2c:99:f6:93:1a:22:55:c2:43:bc:37:c7:56:59
Signer

.text
Size: 38KB - Virtual size: 38KB

.data
Size: 1024B - Virtual size: 6KB

.rsrc
Size: 3.0MB - Virtual size: 3.0MB

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

61:01:b2:9b:00:00:00:00:00:15
Certificate

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate