antinashook[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

antinashook.zip
Size

9.9MB
MD5

f1ad64a42933a7fa7c9b090c1894787a
SHA1

475377ee153f738d1bdbe24d560d958ee62c2e18
SHA256

150ac1fb1dfc122655f683b3ec40e672d815c03699fb68a69917eb7b8ae8373d
SHA512

b6b263491a3234a8217dc3203d40dc1bea3518167515f2b4c8bbd3b06e9544b517a6749ed4da6818fc6f27ec9d4468f2699f56c981942ca8dd4f47648b45d266
SSDEEP

196608:QG01oGGyvdaOU/dzrBC/O6Z+vGkYQJppqj/cD+YhS/W162nuOn4PEoWFARRO:QtZ1aOU/pU/O6Z+Ok7JTqbshSOIO3FA6

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/antinashook/WinRes32.exe
unpack001/antinashook/hook.dll

Files

antinashook.zip
.rar
antinashook/WinRes32.exe
.exe windows:4 windows x86 arch:x86

a9c887a4f18a3fede2cc29ceea138ed3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

malloc
memset
strcmp
strcpy
getenv
sprintf
fopen
fwrite
fclose
__argc
__argv
_environ
_XcptFilter
__set_app_type
_controlfp
__getmainargs
exit

shell32

ShellExecuteA

kernel32

SetUnhandledExceptionFilter

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 948KB - Virtual size: 948KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
antinashook/discord_voice.rar
.rar
discord_voice/discord_voice.node
.dll windows:6 windows x64 arch:x64

9a11e6942d26d258ca7887c3ea9d2c4c

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:e9:cf:2e:71:83:64:a0:06:2e:0d:83:09:3e:34:d7
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

24/09/2024, 00:00

Not After

24/09/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

26/09/2024, 00:00

Not After

25/11/2035, 23:59

Subject

CN=DigiCert Timestamp 2024,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1f:40:15:83:56:88:12:b9:19:73:08:7d:d2:88:10:76:02:75:81:b4:24:f0:0a:85:13:70:56:73:94:0e:36:27
Signer

Actual PE Digest

1f:40:15:83:56:88:12:b9:19:73:08:7d:d2:88:10:76:02:75:81:b4:24:f0:0a:85:13:70:56:73:94:0e:36:27

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

B:\b\discord_desktop\build_x64\obj\discord_desktop\native_modules\discord_voice\_b\discord_voice.node.pdb

Imports

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AreFileApisANSI
CloseHandle
CompareStringEx
CompareStringOrdinal
CompareStringW
CreateDirectoryW
CreateEventA
CreateEventExW
CreateEventW
CreateFileMappingA
CreateFileW
CreateJobObjectW
CreateMutexA
CreateNamedPipeW
CreateProcessW
CreateSemaphoreW
CreateThread
CreateWaitableTimerExW
DebugBreak
DecodePointer
DeleteCriticalSection
DeleteFileW
DeleteProcThreadAttributeList
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
FindClose
FindFirstFileExW
FindFirstFileW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FormatMessageA
FormatMessageW
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetDynamicTimeZoneInformation
GetEnvironmentStringsW
GetEnvironmentVariableW
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileInformationByHandleEx
GetFileSizeEx
GetFileType
GetFullPathNameW
GetLastError
GetLocaleInfoEx
GetLocaleInfoW
GetLogicalProcessorInformation
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessTimes
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetSystemTimePreciseAsFileTime
GetThreadGroupAffinity
GetThreadId
GetTimeFormatW
GetTimeZoneInformation
GetTimeZoneInformationForYear
GetUserDefaultLCID
GetVersionExW
GetWindowsDirectoryW
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitOnceBeginInitialize
InitOnceComplete
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
InitializeProcThreadAttributeList
InitializeSListHead
InitializeSRWLock
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
K32GetProcessMemoryInfo
LCMapStringEx
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
MapViewOfFile
MoveFileExW
MultiByteToWideChar
OpenFileMappingA
OpenProcess
OutputDebugStringA
ProcessIdToSessionId
QueryFullProcessImageNameW
QueryPerformanceCounter
QueryPerformanceFrequency
QueueUserAPC
RaiseException
ReadConsoleW
ReadFile
ReadFileEx
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ReleaseSemaphore
ResetEvent
ResumeThread
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetConsoleMode
SetConsoleTextAttribute
SetEndOfFile
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileInformationByHandle
SetFilePointerEx
SetInformationJobObject
SetLastError
SetStdHandle
SetThreadErrorMode
SetThreadPriority
SetThreadStackGuarantee
SetUnhandledExceptionFilter
SetWaitableTimer
Sleep
SleepConditionVariableCS
SleepConditionVariableSRW
SleepEx
SwitchToThread
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
UnmapViewOfFile
UpdateProcThreadAttribute
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualProtect
VirtualQuery
WTSGetActiveConsoleSessionId
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
WriteFileEx
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW

ws2_32

WSAGetLastError
freeaddrinfo
getaddrinfo
htonl
htons

qwave

QOSAddSocketToFlow
QOSCloseHandle
QOSCreateHandle
QOSRemoveSocketFromFlow

ole32

CoCreateInstance
CoIncrementMTAUsage
CoInitializeEx
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
PropVariantClear
StringFromGUID2

advapi32

AdjustTokenPrivileges
ConvertSidToStringSidA
ConvertStringSecurityDescriptorToSecurityDescriptorA
GetTokenInformation
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
SystemFunction036

ffmpeg

av_buffer_create
av_buffer_get_opaque
av_buffer_make_writable
av_channel_layout_copy
av_dict_get
av_dict_set
av_frame_alloc
av_frame_free
av_frame_get_buffer
av_frame_make_writable
av_frame_unref
av_free
av_guess_format
av_image_check_size
av_init_packet
av_interleaved_write_frame
av_malloc
av_new_packet
av_packet_alloc
av_packet_free
av_packet_ref
av_packet_rescale_ts
av_packet_unref
av_read_frame
av_realloc_f
av_rescale_q
av_seek_frame
av_strerror
av_write_trailer
avcodec_align_dimensions
avcodec_alloc_context3
avcodec_find_decoder
avcodec_find_encoder
avcodec_free_context
avcodec_open2
avcodec_parameters_copy
avcodec_parameters_to_context
avcodec_receive_frame
avcodec_receive_packet
avcodec_send_frame
avcodec_send_packet
avformat_alloc_context
avformat_alloc_output_context2
avformat_close_input
avformat_find_stream_info
avformat_free_context
avformat_new_stream
avformat_open_input
avformat_write_header
avio_alloc_context
avio_close
avio_open

openh264-2.2.0-win64

WelsCreateSVCEncoder
WelsDestroySVCEncoder

user32

BringWindowToTop
ClientToScreen
CloseDesktop
CopyIcon
DestroyIcon
DispatchMessageW
DisplayConfigGetDeviceInfo
DrawIcon
EnumChildWindows
EnumDisplayDevicesW
EnumDisplaySettingsExW
EnumDisplaySettingsW
EnumWindows
FindWindowExW
GetAncestor
GetAsyncKeyState
GetClassNameW
GetClientRect
GetCursorInfo
GetDC
GetDisplayConfigBufferSizes
GetIconInfo
GetLayeredWindowAttributes
GetMonitorInfoA
GetMonitorInfoW
GetSystemMetrics
GetThreadDesktop
GetUserObjectInformationW
GetWindow
GetWindowDC
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowRgn
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
InvalidateRect
IsIconic
IsWindow
IsWindowVisible
KillTimer
MonitorFromPoint
MonitorFromRect
MonitorFromWindow
MsgWaitForMultipleObjectsEx
OpenInputDesktop
PeekMessageW
PostThreadMessageW
PrintWindow
QueryDisplayConfig
ReleaseDC
SendMessageTimeoutW
SetForegroundWindow
SetProcessDpiAwarenessContext
SetRectEmpty
SetThreadDesktop
SetTimer
TranslateMessage
WindowFromPoint

mediapipe

media_pipe_get_last_error_message
media_pipe_gpu_buffer_create_opengl
media_pipe_gpu_buffer_destroy
media_pipe_gpu_buffer_get_opengl_name
media_pipe_graph_create
media_pipe_graph_destroy
media_pipe_graph_run_on_gpu_thread
media_pipe_graph_set_egl
media_pipe_graph_set_side_packet_int
media_pipe_graph_start
media_pipe_graph_submit_gpu
media_pipe_graph_terminate
media_pipe_graph_wait_next
media_pipe_initialize_egl
media_pipe_initialize_opengl
media_pipe_packet_destroy
media_pipe_packet_get_gpu_buffer
media_pipe_packet_get_timestamp
media_pipe_set_resource_provider
media_pipe_string_buffer_set_data

d3d11

CreateDirect3D11DeviceFromDXGIDevice
D3D11CreateDevice

oleaut32

GetErrorInfo
OleCreatePropertyFrame
SetErrorInfo
SysAllocString
SysFreeString
SysStringLen
VariantClear
VariantInit

shlwapi

PathFindFileNameW
PathRemoveFileSpecW

shell32

SHQueryUserNotificationState

ncrypt

NCryptCreatePersistedKey
NCryptExportKey
NCryptFinalizeKey
NCryptFreeObject
NCryptOpenKey
NCryptOpenStorageProvider
NCryptSetProperty

dxgi

CreateDXGIFactory1

avrt

AvRevertMmThreadCharacteristics
AvSetMmThreadCharacteristicsA

winmm

mixerClose
mixerGetControlDetailsW
mixerGetDevCapsW
mixerGetID
mixerGetLineControlsW
mixerGetLineInfoW
mixerGetNumDevs
mixerOpen
mixerSetControlDetails
timeBeginPeriod
timeEndPeriod
timeGetTime
timeKillEvent
timeSetEvent
waveInAddBuffer
waveInClose
waveInGetDevCapsW
waveInGetErrorTextW
waveInGetID
waveInGetNumDevs
waveInGetPosition
waveInMessage
waveInOpen
waveInPrepareHeader
waveInReset
waveInStart
waveInStop
waveInUnprepareHeader
waveOutClose
waveOutGetDevCapsW
waveOutGetErrorTextW
waveOutGetID
waveOutGetNumDevs
waveOutGetPosition
waveOutGetVolume
waveOutMessage
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutSetVolume
waveOutUnprepareHeader
waveOutWrite

msdmo

MoFreeMediaType
MoInitMediaType

gdi32

BitBlt
CreateCompatibleDC
CreateDCA
CreateDIBSection
CreateRectRgn
D3DKMTCloseAdapter
D3DKMTOpenAdapterFromLuid
D3DKMTQueryAdapterInfo
DeleteDC
DeleteObject
GetClipBox
GetCurrentObject
GetDeviceCaps
GetObjectW
GetPixel
GetRgnBox
SelectObject
SetPixel

api-ms-win-core-synch-l1-2-0

WaitOnAddress
WakeByAddressAll
WakeByAddressSingle

ntdll

NtWriteFile
RtlNtStatusToDosError

bcryptprimitives

ProcessPrng

dwmapi

DwmGetWindowAttribute

api-ms-win-core-winrt-l1-1-0

RoGetActivationFactory

propsys

PropVariantToBSTR

bcrypt

BCryptGenRandom

Exports

Exports

??0ConnectionInfo@discord@@QEAA@$$QEAU01@@Z
??0ConnectionInfo@discord@@QEAA@AEBU01@@Z
??0ConnectionInfo@discord@@QEAA@XZ
??0DeviceDescription@media@discord@@QEAA@XZ
??0Discord@@QEAA@UDiscordConfig@@@Z
??0DiscordConfig@@QEAA@$$QEAU0@@Z
??0DiscordConfig@@QEAA@AEBU0@@Z
??0DiscordConfig@@QEAA@XZ
??0EncryptionSettings@discord@@QEAA@$$QEAU01@@Z
??0EncryptionSettings@discord@@QEAA@AEBU01@@Z
??0EncryptionSettings@discord@@QEAA@XZ
??0FrameOp@stats@discord@@QEAA@XZ
??0MediaEngine@discord@@QEAA@$$QEAV01@@Z
??0MediaEngine@discord@@QEAA@AEBV01@@Z
??0MediaEngine@discord@@QEAA@V?$shared_ptr@VThreadedEventLoop@uv@discord@@@std@@AEBUEngineConfig@media@1@@Z
??0Packet@stats@discord@@QEAA@XZ
??0VideoFrameI420@media@discord@@QEAA@AEBV012@@Z
??0VideoFrameI420@media@discord@@QEAA@PEAVVideoFrameBuffer@webrtc@@HW4VideoInputDeviceFacing@12@_J@Z
??0VideoFrameI420@media@discord@@QEAA@PEAVVideoFrameBuffer@webrtc@@H_J@Z
??0VideoFrameRgba@media@discord@@QEAA@$$QEAV012@@Z
??0VideoFrameRgba@media@discord@@QEAA@AEBV012@@Z
??0VideoFrameRgba@media@discord@@QEAA@V?$shared_ptr@VVideoFrameBuffer@media@discord@@@std@@@Z
??0VideoInputDeviceDescription@media@discord@@QEAA@XZ
??0VideoInputInitializationInfo@media@discord@@QEAA@XZ
??0VideoSend@stats@discord@@QEAA@XZ
??1ConnectionInfo@discord@@QEAA@XZ
??1Discord@@QEAA@XZ
??1DiscordConfig@@QEAA@XZ
??1EncryptionSettings@discord@@QEAA@XZ
??1MediaEngine@discord@@QEAA@XZ
??1VideoFrameI420@media@discord@@QEAA@XZ
??1VideoFrameRgba@media@discord@@QEAA@XZ
??4ConnectionInfo@discord@@QEAAAEAU01@$$QEAU01@@Z
??4ConnectionInfo@discord@@QEAAAEAU01@AEBU01@@Z
??4DeviceDescription@media@discord@@QEAAAEAU012@$$QEAU012@@Z
??4DeviceDescription@media@discord@@QEAAAEAU012@AEBU012@@Z
??4DiscordConfig@@QEAAAEAU0@$$QEAU0@@Z
??4DiscordConfig@@QEAAAEAU0@AEBU0@@Z
??4EncryptionSettings@discord@@QEAAAEAU01@$$QEAU01@@Z
??4EncryptionSettings@discord@@QEAAAEAU01@AEBU01@@Z
??4FrameOp@stats@discord@@QEAAAEAU012@$$QEAU012@@Z
??4FrameOp@stats@discord@@QEAAAEAU012@AEBU012@@Z
??4MediaEngine@discord@@QEAAAEAV01@$$QEAV01@@Z
??4MediaEngine@discord@@QEAAAEAV01@AEBV01@@Z
??4Packet@stats@discord@@QEAAAEAU012@$$QEAU012@@Z
??4Packet@stats@discord@@QEAAAEAU012@AEBU012@@Z
??4VideoFrameI420@media@discord@@QEAAAEAV012@AEBV012@@Z
??4VideoFrameRgba@media@discord@@QEAAAEAV012@$$QEAV012@@Z
??4VideoFrameRgba@media@discord@@QEAAAEAV012@AEBV012@@Z
??4VideoInputDeviceDescription@media@discord@@QEAAAEAU012@$$QEAU012@@Z
??4VideoInputDeviceDescription@media@discord@@QEAAAEAU012@AEBU012@@Z
??4VideoInputInitializationInfo@media@discord@@QEAAAEAU012@$$QEAU012@@Z
??4VideoInputInitializationInfo@media@discord@@QEAAAEAU012@AEBU012@@Z
??4VideoSend@stats@discord@@QEAAAEAU012@$$QEAU012@@Z
??4VideoSend@stats@discord@@QEAAAEAU012@AEBU012@@Z
??8DeviceDescription@media@discord@@QEBA_NAEBU012@@Z
??9DeviceDescription@media@discord@@QEBA_NAEBU012@@Z
??_FDiscord@@QEAAXXZ
?AcquireAudioEngine@Discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?AddDirectVideoOutputSink@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?AddLogCallback@Discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z@std@@H@Z
?ApplyMediaFilterSettings@Discord@@QEAAXV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UFilterSettings@discord@@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UFilterSettings@discord@@@std@@@2@@std@@V?$function@$$A6AXXZ@3@@Z
?ApplySettings@Connection@voice@discord@@QEAAXAEBUConnectionSettings@3@@Z
?ApplySidechainCompressionSettings@Discord@@QEAAXUSidechainCompressionSettings@discord@@@Z
?ClearDesktopSource@Connection@voice@discord@@QEAAXXZ
?ClearGoLiveDevices@Connection@voice@discord@@QEAAXXZ
?Connect@Discord@@QEAA?AV?$shared_ptr@VConnection@voice@discord@@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@AEBUBridgeConnectionOptions@discord@@V?$function@$$A6AXAEBUConnectionInfo@discord@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@3@V?$function@$$A6AXI@Z@3@V?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBF_KH2IAEA_N@Z@3@@Z
?ConnectToLog@Discord@@QEAA?AV?$shared_ptr@VConnection@voice@discord@@@std@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@V?$function@$$A6AXAEBUConnectionInfo@discord@@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@3@@Z
?ConnectUser@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEAV?$vector@IV?$allocator@I@std@@@5@_NM2@Z
?DisableUserVideo@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z
?DisconnectUser@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?EnableBuiltInAEC@Discord@@QEAAX_N@Z
?ExecuteSecureFramesTransition@Connection@voice@discord@@QEAAXG@Z
?FastUdpReconnect@Connection@voice@discord@@QEAAXXZ
?GetAudioSubsystem@Discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z@std@@@Z
?GetCodecCapabilities@Discord@@QEBAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?GetCodecSurvey@Discord@@QEBAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?GetCurrentPlayoutDevice@Discord@@QEAAXV?$function@$$A6AXAEBUDeviceDescription@media@discord@@@Z@std@@@Z
?GetCurrentRecordingDevice@Discord@@QEAAXV?$function@$$A6AXAEBUDeviceDescription@media@discord@@@Z@std@@@Z
?GetDevices@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UDeviceDescription@media@discord@@V?$allocator@UDeviceDescription@media@discord@@@std@@@std@@0AEBV?$vector@UVideoInputDeviceDescription@media@discord@@V?$allocator@UVideoInputDeviceDescription@media@discord@@@std@@@2@@Z@std@@@Z
?GetEncryptionModes@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@std@@@Z
?GetFrameOpStats@Connection@voice@discord@@QEAAXV?$function@$$A6AXUFrameOp@stats@discord@@@Z@std@@@Z
?GetMLSKeyPackage@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$vector@EV?$allocator@E@std@@@std@@@Z@std@@@Z
?GetMLSPairwiseFingerprint@Connection@voice@discord@@QEAAXGV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$function@$$A6AXAEBV?$vector@EV?$allocator@E@std@@@std@@@Z@5@@Z
?GetPacketStats@Connection@voice@discord@@QEAAXV?$function@$$A6AXUPacket@stats@discord@@@Z@std@@@Z
?GetPlayoutDevices@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UDeviceDescription@media@discord@@V?$allocator@UDeviceDescription@media@discord@@@std@@@std@@@Z@std@@@Z
?GetRecordingDevices@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UDeviceDescription@media@discord@@V?$allocator@UDeviceDescription@media@discord@@@std@@@std@@@Z@std@@@Z
?GetScreenPreviews@Discord@@QEAAX_K0V?$function@$$A6AXAEBV?$vector@USourcePreview@media@discord@@V?$allocator@USourcePreview@media@discord@@@std@@@std@@@Z@std@@@Z
?GetStats@Connection@voice@discord@@QEAAXV?$function@$$A6AXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@W4StatsFilter@23@@Z
?GetSupportedBandwidthEstimationExperiments@Discord@@QEBAXV?$function@$$A6AXAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@std@@@Z
?GetSupportedVideoCodecs@Discord@@QEBAXV?$function@$$A6AXAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@std@@@Z
?GetUserMuteState@Connection@voice@discord@@QEAA_NAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?GetUserPlayoutVolume@Connection@voice@discord@@QEAAMAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?GetVideoInputDevices@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UVideoInputDeviceDescription@media@discord@@V?$allocator@UVideoInputDeviceDescription@media@discord@@@std@@@std@@@Z@std@@@Z
?GetVideoSendStats@Connection@voice@discord@@QEAAXV?$function@$$A6AXUVideoSend@stats@discord@@@Z@std@@@Z
?GetWindowPreviews@Discord@@QEAAX_K0V?$function@$$A6AXAEBV?$vector@USourcePreview@media@discord@@V?$allocator@USourcePreview@media@discord@@@std@@@std@@@Z@std@@@Z
?Guid@DeviceDescription@media@discord@@QEAA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?IsRemoteUserSpeaking@Connection@voice@discord@@QEAA_NAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?MuteUser@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z
?Name@DeviceDescription@media@discord@@QEAA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?PingVoiceThread@Discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?PrepareMLSCommitTransition@Connection@voice@discord@@QEAAXGV?$vector@EV?$allocator@E@std@@@std@@V?$function@$$A6AXV?$optional@V?$map@_KV?$vector@EV?$allocator@E@std@@@std@@U?$less@_K@2@V?$allocator@U?$pair@$$CB_KV?$vector@EV?$allocator@E@std@@@std@@@std@@@2@@std@@@std@@G@Z@5@@Z
?PrepareSecureFramesEpoch@Connection@voice@discord@@QEAAX_KG0@Z
?PrepareSecureFramesTransition@Connection@voice@discord@@QEAAXGGV?$function@$$A6AXXZ@std@@@Z
?PresentDesktopSourcePicker@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?PresentNativeDesktopVideoSourcePicker@Discord@@QEAA_NAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?ProcessMLSProposals@Connection@voice@discord@@QEAAXV?$vector@EV?$allocator@E@std@@@std@@V?$function@$$A6AXAEBV?$vector@EV?$allocator@E@std@@@std@@@Z@5@@Z
?ProcessMLSWelcome@Connection@voice@discord@@QEAAXGV?$vector@EV?$allocator@E@std@@@std@@V?$function@$$A6AXV?$optional@V?$map@_KV?$vector@EV?$allocator@E@std@@@std@@U?$less@_K@2@V?$allocator@U?$pair@$$CB_KV?$vector@EV?$allocator@E@std@@@std@@@std@@@2@@std@@@std@@G@Z@5@@Z
?RankRtcRegions@Discord@@QEAAXV?$vector@URtcRegionWithIps@discord@@V?$allocator@URtcRegionWithIps@discord@@@std@@@std@@V?$function@$$A6AXV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z@3@@Z
?ReleaseAudioEngine@Discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?ReleaseNativeDesktopVideoSourcePickerStream@Discord@@QEAA_NXZ
?RemoveDirectVideoOutputSink@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?SetAecDump@Discord@@QEAAX_N@Z
?SetAudioDeviceModuleErrorCallback@Discord@@QEAAXV?$function@$$A6AXHV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?SetAudioInputEnabled@Discord@@QEAAX_N@Z
?SetAutomaticGainControl@Discord@@QEAAXH@Z
?SetAutomaticGainControl@Discord@@QEAAX_N@Z
?SetAv1Enabled@Discord@@QEAAX_N@Z
?SetClipRecordUser@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4ClipDataType@23@_N@Z
?SetDesktopSource@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4DesktopCapturerType@3@UDesktopSourceOptions@23@@Z
?SetDesktopSourceStatusCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?SetDeviceChangeCallback@Discord@@QEAAXV?$function@$$A6AXAEBV?$vector@UDeviceDescription@media@discord@@V?$allocator@UDeviceDescription@media@discord@@@std@@@std@@0AEBV?$vector@UVideoInputDeviceDescription@media@discord@@V?$allocator@UVideoInputDeviceDescription@media@discord@@@std@@@2@@Z@std@@@Z
?SetDuckingPreference@Discord@@QEAAX_N@Z
?SetEchoCancellation@Discord@@QEAAXH@Z
?SetEchoCancellation@Discord@@QEAAX_N@Z
?SetGoLiveDevices@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?SetH264Enabled@Discord@@QEAAX_N@Z
?SetH265Enabled@Discord@@QEAAX_N@Z
?SetHasFullbandPerformance@Discord@@QEAAX_N@Z
?SetIdleJitterBufferFlush@Discord@@QEAAX_N@Z
?SetKeepAliveChannel@Discord@@QEAAX_N@Z
?SetLocalVoiceLevelChangedCallback@Discord@@QEAAXAEBV?$function@$$A6AXMI@Z@std@@@Z
?SetLoopback@Discord@@QEAAX_NAEBV?$function@$$A6AXMI@Z@std@@@Z
?SetMaxSyncDelayOverride@Discord@@QEAAXH@Z
?SetMicVolume@Discord@@QEAAXM@Z
?SetNativeDesktopVideoSourcePickerActive@Discord@@QEAA_N_N@Z
?SetNativeScreenSharePickerCallbacks@Discord@@QEAAXV?$function@$$A6AX_N@Z@std@@0V?$function@$$A6AXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@3@@Z
?SetNoAudioInputCallback@Discord@@QEAAXV?$function@$$A6AX_N@Z@std@@@Z
?SetNoAudioInputThreshold@Discord@@QEAAXM@Z
?SetNoiseCancellation@Discord@@QEAAX_N@Z
?SetNoiseSuppression@Discord@@QEAAXH@Z
?SetNoiseSuppression@Discord@@QEAAX_N@Z
?SetOnDesktopSourceEnded@Connection@voice@discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?SetOnFirstFrameCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I0@Z@std@@@Z
?SetOnMLSFailureCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z@std@@@Z
?SetOnRtcpMessageCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z@std@@@Z
?SetOnSoundshareCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AX_N@Z@std@@@Z
?SetOnSoundshareEndedCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXXZ@std@@@Z
?SetOnSoundshareFailedCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXIV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z@std@@@Z
?SetOnVideoCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I0AEBV?$vector@UStreamParameters@discord@@V?$allocator@UStreamParameters@discord@@@std@@@2@@Z@std@@@Z
?SetOnVideoEncoderFallbackCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@std@@@Z
?SetPTTActive@Connection@voice@discord@@QEAAX_N0@Z
?SetPlayoutDevice@Discord@@QEAAXH@Z
?SetPlayoutDevice@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?SetRecordingDevice@Discord@@QEAAXH@Z
?SetRecordingDevice@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?SetRemoteUserCanHavePriority@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z
?SetRemoteUserSpeaking@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I_N@Z
?SetSecureFramesStateUpdateCallback@Connection@voice@discord@@QEAAXV?$function@$$A6AXUSecureFramesStateUpdate@voice@discord@@@Z@std@@@Z
?SetSidechainCompression@Discord@@QEAAX_N@Z
?SetSpeakerVolume@Discord@@QEAAXM@Z
?SetUserPlayoutPan@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@MM@Z
?SetUserPlayoutVolume@Connection@voice@discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@M@Z
?SetVideoBroadcast@Connection@voice@discord@@QEAAX_N@Z
?SetVideoInputDevice@Discord@@QEAAXH@Z
?SetVideoInputDevice@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?SetVideoInputInitializationCallback@Discord@@QEAAXV?$function@$$A6AXAEBUVideoInputInitializationInfo@media@discord@@@Z@std@@@Z
?SetVideoOutputSink@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$function@$$A6A_NAEBVVideoFrameRgba@media@discord@@@Z@3@@Z
?SetVoiceThreadPriority@Discord@@QEAAXH@Z
?SignalVideoOutputSinkReady@Discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?StartReplay@Connection@voice@discord@@QEAAXXZ
?StartSamplesLocalPlayback@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HMV?$vector@V?$vector@MV?$allocator@M@std@@@std@@V?$allocator@V?$vector@MV?$allocator@M@std@@@std@@@2@@5@V?$function@$$A6AXHV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z@5@@Z
?StopAllSamplesLocalPlayback@Connection@voice@discord@@QEAAXXZ
?StopSamplesLocalPlayback@Connection@voice@discord@@QEAAXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?UpdateAudioSession@Discord@@QEAAX_NV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?UpdateMLSExternalSender@Connection@voice@discord@@QEAAXV?$vector@EV?$allocator@E@std@@@std@@@Z
?WriteAudioDebugState@Discord@@QEAAXXZ
?WriteConsoleLog@Discord@@QEAAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?buffer@VideoFrameI420@media@discord@@QEBAPEAVVideoFrameBuffer@webrtc@@XZ
?bytesPerPixel@VideoFrameRgba@media@discord@@QEBAHXZ
?data@VideoFrameRgba@media@discord@@QEBAPEBEXZ
?dataU@VideoFrameI420@media@discord@@QEBAPEBEXZ
?dataV@VideoFrameI420@media@discord@@QEBAPEBEXZ
?dataY@VideoFrameI420@media@discord@@QEBAPEBEXZ
?engine@MediaEngine@discord@@QEBA?AV?$shared_ptr@VEngine@media@discord@@@std@@XZ
?height@VideoFrameI420@media@discord@@QEBAHXZ
?height@VideoFrameRgba@media@discord@@QEBAHXZ
?ok@VideoFrameI420@media@discord@@QEBA_NXZ
?ok@VideoFrameRgba@media@discord@@QEBA_NXZ
?rotation@VideoFrameI420@media@discord@@QEBAHXZ
?sourceFacing@VideoFrameI420@media@discord@@QEBA?AW4VideoInputDeviceFacing@23@XZ
?strideU@VideoFrameI420@media@discord@@QEBAHXZ
?strideV@VideoFrameI420@media@discord@@QEBAHXZ
?strideY@VideoFrameI420@media@discord@@QEBAHXZ
?timestamp_us@VideoFrameI420@media@discord@@QEBA_JXZ
?width@VideoFrameI420@media@discord@@QEBAHXZ
?width@VideoFrameRgba@media@discord@@QEBAHXZ
napi_register_module_v1
node_api_module_get_api_version_v1

Sections

.text
Size: 14.6MB - Virtual size: 14.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 1021KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 297KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 72B

.rodata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 889B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 116B

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

malloc_h
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
discord_voice/gpu_encoder_helper.exe
.exe windows:6 windows x64 arch:x64

701707a37af04e75aa2e1eff93c0cad6

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:e9:cf:2e:71:83:64:a0:06:2e:0d:83:09:3e:34:d7
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

24/09/2024, 00:00

Not After

24/09/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

26/09/2024, 00:00

Not After

25/11/2035, 23:59

Subject

CN=DigiCert Timestamp 2024,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f4:1a:fc:cc:5f:ff:61:62:45:bf:f3:10:6f:45:84:cd:2f:a1:b7:51:54:cc:82:23:3f:c4:66:87:5e:13:bf:69
Signer

Actual PE Digest

f4:1a:fc:cc:5f:ff:61:62:45:bf:f3:10:6f:45:84:cd:2f:a1:b7:51:54:cc:82:23:3f:c4:66:87:5e:13:bf:69

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

gpu_encoder_helper.pdb

Imports

api-ms-win-core-synch-l1-2-0

WaitOnAddress
WakeByAddressSingle
WakeByAddressAll

kernel32

GetCurrentThread
GetModuleHandleA
GetConsoleMode
SetConsoleMode
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
CloseHandle
LoadLibraryW
RtlLookupFunctionEntry
GetCurrentProcess
RtlCaptureContext
ReleaseMutex
WaitForSingleObjectEx
LoadLibraryA
CreateMutexA
LoadLibraryExA
FreeLibrary
SetThreadErrorMode
FindFirstFileW
FormatMessageW
GetLastError
HeapSize
GetProcAddress
LCMapStringW
FreeEnvironmentStringsW
AddVectoredExceptionHandler
SetThreadStackGuarantee
SwitchToThread
QueryPerformanceCounter
RtlVirtualUnwind
SetLastError
GetCurrentDirectoryW
GetEnvironmentStringsW
GetEnvironmentVariableW
CompareStringW
GetCommandLineW
FlushFileBuffers
SetFilePointerEx
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
HeapFree
GetStringTypeW
SetStdHandle
HeapAlloc
GetOEMCP
GetACP
GetStdHandle
GetCurrentProcessId
IsValidCodePage
TerminateProcess
GetCommandLineA
HeapReAlloc
lstrlenW
GetModuleHandleExW
FindNextFileW
FindClose
CreateFileW
GetFileInformationByHandleEx
FindFirstFileExW
ReadFile
WriteFile
GetFileType
RtlPcToFileHeader
LoadLibraryExW
TlsFree
GetModuleHandleW
GetModuleFileNameW
SetEnvironmentVariableW
ExitProcess
GetFileAttributesW
GetConsoleOutputCP
MultiByteToWideChar
WriteConsoleW
WideCharToMultiByte
ReadConsoleW
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetProcessHeap
GetCPInfo
WaitForSingleObject
LeaveCriticalSection
EnterCriticalSection
RaiseException
EncodePointer
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
RtlUnwindEx
SetEndOfFile

advapi32

RegQueryInfoKeyW
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

d3d11

D3D11CreateDevice

oleaut32

GetErrorInfo
SysStringLen
SysFreeString

ntdll

NtWriteFile
RtlNtStatusToDosError

Sections

.text
Size: 587KB - Virtual size: 587KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 165KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
discord_voice/index.js
.js
discord_voice/manifest.json
discord_voice/mediapipe.dll
.dll windows:6 windows x64 arch:x64

c131ba9dca7624ac089c3aa733ea2eaf

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:e9:cf:2e:71:83:64:a0:06:2e:0d:83:09:3e:34:d7
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

24/09/2024, 00:00

Not After

24/09/2027, 23:59

Subject

SERIALNUMBER=5128862,CN=Discord Inc.,O=Discord Inc.,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

26/09/2024, 00:00

Not After

25/11/2035, 23:59

Subject

CN=DigiCert Timestamp 2024,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

50:90:7f:b3:91:df:a1:00:67:3e:0c:65:41:f3:44:b2:71:cf:c2:a0:18:94:fb:ed:5a:a2:3a:1a:71:af:90:e5
Signer

Actual PE Digest

50:90:7f:b3:91:df:a1:00:67:3e:0c:65:41:f3:44:b2:71:cf:c2:a0:18:94:fb:ed:5a:a2:3a:1a:71:af:90:e5

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\users\agent\_bazel_agent\qhmpxrhq\execroot\mediapipe\bazel-out\x64_windows-opt\bin\mediapipe\discord\mediapipe.pdb

Imports

dbghelp

UnDecorateSymbolName
SymFromAddr
SymInitialize
SymCleanup
SymSetOptions

kernel32

GetEnvironmentStringsW
WriteConsoleW
FreeEnvironmentStringsW
DeleteFileW
EncodePointer
GetProcAddress
LoadLibraryA
GetCurrentDirectoryW
FindClose
FindNextFileW
GetLastError
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InitOnceExecuteOnce
CloseHandle
SetEvent
ResetEvent
ReleaseMutex
WaitForSingleObject
CreateMutexW
CreateEventW
CreateThread
GetSystemInfo
HeapAlloc
HeapFree
GetProcessHeap
GetLogicalProcessorInformationEx
GetModuleHandleW
GetMaximumProcessorGroupCount
GetMaximumProcessorCount
GetStdHandle
WriteFile
IsDebuggerPresent
FindFirstFileExW
GetFullPathNameW
GetTempPathA
OutputDebugStringA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetWindowsDirectoryA
GetComputerNameA
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
RtlCaptureStackBackTrace
GetCurrentThreadId
GetSystemTimeAsFileTime
Sleep
GetCurrentProcess
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeConditionVariable
WakeConditionVariable
SleepConditionVariableSRW
GetModuleHandleA
VirtualAlloc
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
InitializeSListHead
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
InitializeCriticalSectionEx
TryEnterCriticalSection
InitOnceBeginInitialize
InitOnceComplete
GetStringTypeW
SwitchToThread
GetExitCodeThread
GetNativeSystemInfo
QueryPerformanceFrequency
WakeAllConditionVariable
SleepConditionVariableCS
RtlUnwind
DecodePointer
LCMapStringEx
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringEx
GetCPInfo
GetCommandLineW
InterlockedPushEntrySList
InterlockedFlushSList
RtlPcToFileHeader
RaiseException
RtlUnwindEx
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
SetEnvironmentVariableW
GetFileAttributesExW
CreateFileW
GetFileType
GetDriveTypeW
GetFileInformationByHandle
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
DuplicateHandle
ReadFile
GetConsoleMode
ReadConsoleW
GetConsoleOutputCP
ExitThread
FreeLibraryAndExitThread
CreateProcessW
SetConsoleCtrlHandler
GetModuleFileNameW
HeapReAlloc
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
SetStdHandle
SetEndOfFile
SetFilePointerEx
HeapSize
GetFileSizeEx
IsValidCodePage
GetACP
GetOEMCP
GetExitCodeProcess
CreatePipe
GetTimeZoneInformation
GetCommandLineA

Exports

Exports

??$MakeCheckOpValueString@C@google@@YAXPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEBC@Z
??$MakeCheckOpValueString@D@google@@YAXPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEBD@Z
??$MakeCheckOpValueString@E@google@@YAXPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEBE@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@W4_Uninitialized@1@_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@AEBV01@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0CheckOpMessageBuilder@base@google@@QEAA@PEBD@Z
??0ErrnoLogMessage@google@@QEAA@PEBDHHHP8LogMessage@1@EAAXXZ@Z
??0LogMessage@google@@QEAA@PEBDH@Z
??0LogMessage@google@@QEAA@PEBDHAEBUCheckOpString@1@@Z
??0LogMessage@google@@QEAA@PEBDHH@Z
??0LogMessage@google@@QEAA@PEBDHHHP801@EAAXXZ@Z
??0LogMessage@google@@QEAA@PEBDHHPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0LogMessage@google@@QEAA@PEBDHHPEAV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
??0LogMessage@google@@QEAA@PEBDHHPEAVLogSink@1@_N@Z
??0LogMessageFatal@google@@QEAA@PEBDH@Z
??0LogMessageFatal@google@@QEAA@PEBDHAEBUCheckOpString@1@@Z
??0LogMessageVoidify@google@@QEAA@XZ
??0LogSink@google@@QEAA@AEBV01@@Z
??0LogSink@google@@QEAA@XZ
??0LogStream@LogMessage@google@@QEAA@PEADHH@Z
??0LogStreamBuf@base_logging@google@@QEAA@$$QEAV012@@Z
??0LogStreamBuf@base_logging@google@@QEAA@AEBV012@@Z
??0LogStreamBuf@base_logging@google@@QEAA@PEADH@Z
??0Logger@base@google@@QEAA@AEBV012@@Z
??0Logger@base@google@@QEAA@XZ
??0NullStream@google@@QEAA@PEBDHAEBUCheckOpString@1@@Z
??0NullStream@google@@QEAA@XZ
??0NullStreamFatal@google@@QEAA@PEBDHAEBUCheckOpString@1@@Z
??0NullStreamFatal@google@@QEAA@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1CheckOpMessageBuilder@base@google@@QEAA@XZ
??1ErrnoLogMessage@google@@QEAA@XZ
??1LogMessage@google@@QEAA@XZ
??1LogMessageFatal@google@@QEAA@XZ
??1LogSink@google@@UEAA@XZ
??1LogStream@LogMessage@google@@UEAA@XZ
??1LogStreamBuf@base_logging@google@@UEAA@XZ
??1Logger@base@google@@UEAA@XZ
??1NullStream@google@@UEAA@XZ
??1NullStreamFatal@google@@UEAA@XZ
??4?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAAEAV01@AEBV01@@Z
??4CheckOpMessageBuilder@base@google@@QEAAAEAV012@AEBV012@@Z
??4LogMessageVoidify@google@@QEAAAEAV01@$$QEAV01@@Z
??4LogMessageVoidify@google@@QEAAAEAV01@AEBV01@@Z
??4LogSink@google@@QEAAAEAV01@AEBV01@@Z
??4LogStreamBuf@base_logging@google@@QEAAAEAV012@$$QEAV012@@Z
??4LogStreamBuf@base_logging@google@@QEAAAEAV012@AEBV012@@Z
??4Logger@base@google@@QEAAAEAV012@AEBV012@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV?$basic_ios@DU?$char_traits@D@std@@@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_N@Z
??6google@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBW4PRIVATE_Counter@0@@Z
??ILogMessageVoidify@google@@QEAAXAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@@Z
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@
??_7LogSink@google@@6B@
??_7LogStream@LogMessage@google@@6B@
??_7LogStreamBuf@base_logging@google@@6B@
??_7Logger@base@google@@6B@
??_7NullStream@google@@6B@
??_7NullStreamFatal@google@@6B@
??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@
??_8LogStream@LogMessage@google@@7B@
??_8NullStream@google@@7B@
??_8NullStreamFatal@google@@7B@
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??_DLogStream@LogMessage@google@@QEAAXXZ
??_DNullStream@google@@QEAAXXZ
??_DNullStreamFatal@google@@QEAAXXZ
?AddLogSink@google@@YAXPEAVLogSink@1@@Z
?CheckstrcasecmpfalseImpl@google@@YAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD00@Z
?CheckstrcasecmptrueImpl@google@@YAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD00@Z
?CheckstrcmpfalseImpl@google@@YAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD00@Z
?CheckstrcmptrueImpl@google@@YAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD00@Z
?Demangle@google@@YA_NPEBDPEADH@Z
?DisableLogCleaner@google@@YAXXZ
?EnableLogCleaner@google@@YAXH@Z
?FLAGS_alsologtostderr@fLB@@3_NA
?FLAGS_colorlogtostderr@fLB@@3_NA
?FLAGS_log_dir@fLS@@3AEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@EA
?FLAGS_log_link@fLS@@3AEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@EA
?FLAGS_log_prefix@fLB@@3_NA
?FLAGS_logbuflevel@fLI@@3HA
?FLAGS_logbufsecs@fLI@@3HA
?FLAGS_logfile_mode@fLI@@3HA
?FLAGS_logtostderr@fLB@@3_NA
?FLAGS_max_log_size@fLI@@3HA
?FLAGS_minloglevel@fLI@@3HA
?FLAGS_stderrthreshold@fLI@@3HA
?FLAGS_stop_logging_if_full_disk@fLB@@3_NA
?FLAGS_v@fLI@@3HA
?Fail@LogMessage@google@@SAXXZ
?Flush@LogMessage@google@@QEAAXXZ
?FlushLogFiles@google@@YAXH@Z
?FlushLogFilesUnsafe@google@@YAXH@Z
?ForVar1@CheckOpMessageBuilder@base@google@@QEAAPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@XZ
?ForVar2@CheckOpMessageBuilder@base@google@@QEAAPEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@XZ
?GetExistingTempDirectories@google@@YAXPEAV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
?GetLogSeverityName@google@@YAPEBDH@Z
?GetLogger@base@google@@YAPEAVLogger@12@H@Z
?GetLoggingDirectories@google@@YAAEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?GetStackTrace@google@@YAHPEAPEAXHH@Z
?Init@LogMessage@google@@AEAAXPEBDHHP812@EAAXXZ@Z
?InitGoogleLogging@google@@YAXPEBD@Z
?InitVLOG3__@google@@YA_NPEAPEAHPEAHPEBDH@Z
?InstallFailureFunction@google@@YAXP6AXXZ@Z
?InstallFailureSignalHandler@google@@YAXXZ
?InstallFailureWriter@google@@YAXP6AXPEBDH@Z@Z
?IsFailureSignalHandlerInstalled@glog_internal_namespace_@google@@YA_NXZ
?LogSeverityNames@google@@3QBQEBDB
?LogToStderr@google@@YAXXZ
?NewString@CheckOpMessageBuilder@base@google@@QEAAPEAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?RawLog__@google@@YAXHPEBDH0ZZ
?RecordCrashReason@LogMessage@google@@AEAAXPEAUCrashReason@glog_internal_namespace_@2@@Z
?RemoveLogSink@google@@YAXPEAVLogSink@1@@Z
?ReprintFatalMessage@google@@YAXXZ
?SafeFNMatch_@glog_internal_namespace_@google@@YA_NPEBD_K01@Z
?SaveOrSendToLog@LogMessage@google@@AEAAXXZ
?SendEmail@google@@YA_NPEBD00@Z
?SendToLog@LogMessage@google@@QEAAXXZ
?SendToSink@LogMessage@google@@AEAAXXZ
?SendToSinkAndLog@LogMessage@google@@AEAAXXZ
?SendToSyslogAndLog@LogMessage@google@@QEAAXXZ
?SetEmailLogging@google@@YAXHPEBD@Z
?SetLogDestination@google@@YAXHPEBD@Z
?SetLogFilenameExtension@google@@YAXPEBD@Z
?SetLogSymlink@google@@YAXHPEBD@Z
?SetLogger@base@google@@YAXHPEAVLogger@12@@Z
?SetStderrLogging@google@@YAXH@Z
?SetVLOGLevel@google@@YAHPEBDH@Z
?ShutdownGoogleLogging@google@@YAXXZ
?StrError@google@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
?Symbolize@google@@YA_NPEAXPEADH@Z
?ToString@LogSink@google@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HPEBDHPEBUtm@@0_K@Z
?ToString@LogSink@google@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HPEBDHPEBUtm@@0_KH@Z
?TruncateLogFile@google@@YAXPEBD_J1@Z
?TruncateStdoutStderr@google@@YAXXZ
?WaitTillSent@LogSink@google@@UEAAXXZ
?WriteToStringAndLog@LogMessage@google@@AEAAXXZ
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAPEAD0PEAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?copyfmt@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAAEAV12@AEBV12@@Z
?ctr@LogStream@LogMessage@google@@QEBAHXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAADD@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?g_logging_fail_func@google@@3P6AXXZEA
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?in_avail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JXZ
?init@?$basic_ios@DU?$char_traits@D@std@@@std@@IEAAXPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@_N@Z
?kMaxLogMessageLen@LogMessage@google@@2_KB
?localtime_r@@YAPEAUtm@@PEB_JPEAU1@@Z
?move@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAX$$QEAV12@@Z
?move@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXAEAV12@@Z
?narrow@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADDD@Z
?num_messages@LogMessage@google@@SA_JH@Z
?num_messages_@LogMessage@google@@0PA_JA
?opfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA_NXZ
?osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?overflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?overflow@LogStreamBuf@base_logging@google@@UEAAHH@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pbase@LogStream@LogMessage@google@@QEBAPEADXZ
?pbase@LogStreamBuf@base_logging@google@@QEBAPEADXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?pcount@LogStream@LogMessage@google@@QEBA_KXZ
?pcount@LogStreamBuf@base_logging@google@@QEBA_KXZ
?posix_strerror_r@google@@YAHHPEAD_K@Z
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?preserved_errno@LogMessage@google@@QEBAHXZ
?pubimbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
?pubseekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?pubseekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?pubsetbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAPEAV12@PEAD_J@Z
?pubsync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@PEAV32@@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?safe_vsnprintf@@YAHPEAD_KPEBD0@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@V?$fpos@U_Mbstatet@@@2@@Z
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?self@LogStream@LogMessage@google@@QEBAPEAV123@XZ
?send@LogSink@google@@UEAAXHPEBD0HPEBUtm@@0_KH@Z
?set_ctr@LogStream@LogMessage@google@@QEAAXH@Z
?set_rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sputbackc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?str@LogStream@LogMessage@google@@QEBAPEADXZ
?stream@LogMessage@google@@QEAAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@XZ
?stream@NullStream@google@@QEAAAEAV12@XZ
?sungetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?swap@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXAEAV12@@Z
?swap@?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?swap@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@PEAV32@@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
TfLiteGlCompileOptionsDefault
TfLiteGpuDelegateBindBufferToTensor
TfLiteGpuDelegateCreate
TfLiteGpuDelegateDelete
TfLiteGpuDelegateGetModelMetadata
TfLiteGpuDelegateOptionsDefault
media_pipe_get_last_error_message
media_pipe_gpu_buffer_create_opengl
media_pipe_gpu_buffer_destroy
media_pipe_gpu_buffer_get_opengl_name
media_pipe_graph_create
media_pipe_graph_destroy
media_pipe_graph_run_on_gpu_thread
media_pipe_graph_set_egl
media_pipe_graph_set_side_packet_int
media_pipe_graph_start
media_pipe_graph_submit_gpu
media_pipe_graph_terminate
media_pipe_graph_wait_next
media_pipe_initialize_egl
media_pipe_initialize_opengl
media_pipe_packet_destroy
media_pipe_packet_get_gpu_buffer
media_pipe_packet_get_timestamp
media_pipe_set_resource_provider
media_pipe_string_buffer_set_data

Sections

.text
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 929KB - Virtual size: 928KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
discord_voice/node_modules/.yarn-integrity
discord_voice/openh264-2.2.0-win64.dll
.dll windows:6 windows x64 arch:x64

98f946cee94de86ddbd8fd8f37522dfe

Code Sign

01:99:3e:38:97:0d:e6:08:8d:e6:b6:cb:39:bb:ee:24
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06/03/2020, 00:00

Not After

07/02/2023, 12:00

Subject

CN=Cisco WebEx LLC,O=Cisco WebEx LLC,L=San Jose,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:99:3e:38:97:0d:e6:08:8d:e6:b6:cb:39:bb:ee:24
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06/03/2020, 00:00

Not After

07/02/2023, 12:00

Subject

CN=Cisco WebEx LLC,O=Cisco WebEx LLC,L=San Jose,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d3:93:da:4b:92:e2:96:d2:a4:dd:58:1c:2a:fa:6e:b4:a7:d6:7d:a4:ba:b1:d4:37:29:ab:ce:84:2a:71:dd:96
Signer

Actual PE Digest

d3:93:da:4b:92:e2:96:d2:a4:dd:58:1c:2a:fa:6e:b4:a7:d6:7d:a4:ba:b1:d4:37:29:ab:ce:84:2a:71:dd:96

Digest Algorithm

sha256

PE Digest Matches

true

7c:45:91:4a:c1:e8:11:0e:29:d6:07:e2:de:a5:ea:8f:15:1f:56:ab
Signer

Actual PE Digest

7c:45:91:4a:c1:e8:11:0e:29:d6:07:e2:de:a5:ea:8f:15:1f:56:ab

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\Jenkins_Home\workspace\video-codec\openh264\openh264-build-ut-windows\openh264\openh264.pdb

Imports

kernel32

QueryPerformanceCounter
QueryPerformanceFrequency
CloseHandle
SetEvent
ResetEvent
ReleaseSemaphore
WaitForSingleObject
CreateEventA
CreateSemaphoreA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
Sleep
CreateThread
GetSystemInfo
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
IsDebuggerPresent
GetStartupInfoW
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
RtlUnwindEx
RtlPcToFileHeader
RaiseException
InterlockedFlushSList
GetLastError
SetLastError
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
MultiByteToWideChar
WideCharToMultiByte
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
LCMapStringW
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
GetStdHandle
GetFileType
GetFileSizeEx
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetStringTypeW
CreateFileW
SetStdHandle
HeapSize
HeapReAlloc
WriteConsoleW

Exports

Exports

WelsCreateDecoder
WelsCreateSVCEncoder
WelsDestroyDecoder
WelsDestroySVCEncoder
WelsGetCodecVersion
WelsGetCodecVersionEx

Sections

.text
Size: 750KB - Virtual size: 750KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
discord_voice/selfie_segmentation.tflite
discord_voice/selfie_segmentation_landscape.tflite
antinashook/hook.dll
.dll windows:6 windows x64 arch:x64

26afe997779b41409c55f27bcbbf67b1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

d3d9

Direct3DCreate9

kernel32

GetCurrentProcessId
GetModuleHandleW
FlushInstructionCache
SetThreadContext
OpenThread
LoadLibraryW
GetCurrentThread
WaitForSingleObject
CreateProcessA
CreateFileA
ExitProcess
IsDebuggerPresent
CheckRemoteDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SleepEx
GetSystemDirectoryA
FreeLibrary
VerifyVersionInfoA
GetTickCount
MoveFileExA
WaitForSingleObjectEx
GetEnvironmentVariableA
GetStdHandle
GetFileType
ReadFile
PeekNamedPipe
WaitForMultipleObjects
GetThreadContext
FormatMessageA
GetFileSizeEx
AreFileApisANSI
HeapDestroy
HeapAlloc
CloseHandle
HeapReAlloc
GetFileInformationByHandleEx
GetLastError
Sleep
CreateToolhelp32Snapshot
ResumeThread
SuspendThread
GetCurrentThreadId
Thread32First
Thread32Next
GetCurrentProcess
HeapFree
VirtualProtect
HeapCreate
VirtualQuery
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
InitializeSListHead
GetSystemInfo
VirtualAlloc
VirtualFree
CreateThread
GlobalUnlock
WideCharToMultiByte
GlobalLock
GlobalFree
GlobalAlloc
QueryPerformanceCounter
VerSetConditionMask
GetProcAddress
QueryPerformanceFrequency
LoadLibraryA
GetFileAttributesExW
MultiByteToWideChar
GetLocaleInfoA
GetModuleHandleA
SetLastError
LocalFree
GetLocaleInfoEx
CreateFileW
FindClose
FindFirstFileW

user32

IsWindowUnicode
SetCursorPos
GetClientRect
SetCursor
GetCursorPos
SetCapture
LoadCursorW
GetForegroundWindow
ReleaseCapture
UpdateWindow
GetKeyboardLayout
DefWindowProcW
DestroyWindow
CreateWindowExW
UnregisterClassW
TrackMouseEvent
ShowWindow
GetAsyncKeyState
DispatchMessageW
PeekMessageW
SetWindowDisplayAffinity
TranslateMessage
PostQuitMessage
RegisterClassExW
FindWindowW
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardData
SetClipboardData
GetKeyState
GetMessageExtraInfo
ScreenToClient
GetCapture
ClientToScreen

advapi32

CryptAcquireContextA
CryptGetHashParam
CryptGenRandom
CryptCreateHash
CryptHashData
CryptDestroyHash
CryptEncrypt
CryptImportKey
CryptDestroyKey
CryptReleaseContext

shell32

ShellExecuteA

imm32

ImmReleaseContext
ImmGetContext
ImmSetCompositionWindow
ImmSetCandidateWindow

msvcp140

?_Syserror_map@std@@YAPEBDH@Z
?_Winerror_map@std@@YAHH@Z
_Thrd_detach
?_Throw_Cpp_error@std@@YAXH@Z
_Query_perf_counter
?_Xlength_error@std@@YAXPEBD@Z
_Query_perf_frequency
_Cnd_do_broadcast_at_thread_exit

ntdll

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
RtlAdjustPrivilege
NtRaiseHardError

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__std_terminate
strstr
strchr
wcsstr
__std_exception_destroy
__std_type_info_destroy_list
_CxxThrowException
memchr
memcmp
memmove
strrchr
memset
memcpy
__C_specific_handler
__std_exception_copy

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
fseek
fclose
fflush
__acrt_iob_func
_wfopen
_open
_close
_write
_read
fread
ftell
__stdio_common_vsscanf
_lseeki64
fgets
fputc
feof
fputs
fopen
fwrite

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-string-l1-1-0

strpbrk
tolower
strncpy
_strdup
isupper
strspn
strcspn
strcmp
strncmp

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
realloc
calloc
free

api-ms-win-crt-convert-l1-1-0

strtoll
strtol
strtoul
atoi
atof

api-ms-win-crt-runtime-l1-1-0

exit
_seh_filter_dll
_configure_narrow_argv
_invalid_parameter_noinfo_noreturn
_beginthreadex
terminate
_initialize_narrow_environment
_errno
_initialize_onexit_table
strerror
_execute_onexit_table
_cexit
_initterm
_getpid
abort
__sys_nerr
_initterm_e

api-ms-win-crt-time-l1-1-0

_time64
_gmtime64

api-ms-win-crt-filesystem-l1-1-0

_fstat64
_unlink
_access
_stat64

api-ms-win-crt-locale-l1-1-0

___lc_codepage_func

normaliz

IdnToAscii

crypt32

CertEnumCertificatesInStore
CertCloseStore
CertFindCertificateInStore
CertFreeCertificateContext
CertOpenStore
CryptStringToBinaryA
CryptDecodeObjectEx
CertAddCertificateContextToStore
CertFindExtension
CertFreeCertificateChain
CertGetCertificateChain
CertFreeCertificateChainEngine
CertCreateCertificateChainEngine
CryptQueryObject
CertGetNameStringA
PFXImportCertStore

wldap32

ord211
ord60
ord45
ord50
ord41
ord46
ord26
ord27
ord32
ord33
ord35
ord143
ord22
ord200
ord79
ord30
ord301
ord217

ws2_32

closesocket
send
WSAGetLastError
bind
connect
getpeername
getsockname
getsockopt
htons
ntohs
setsockopt
socket
ntohl
WSASetLastError
gethostname
sendto
recvfrom
freeaddrinfo
getaddrinfo
select
WSAIoctl
__WSAFDIsSet
WSAStartup
ioctlsocket
listen
WSACleanup
accept
recv
htonl

api-ms-win-crt-math-l1-1-0

cosf
cos
sqrtf
acosf
exp
floor
fmodf
log
pow
sinf
sqrt
ceilf

Sections

.text
Size: 651KB - Virtual size: 651KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9c887a4f18a3fede2cc29ceea138ed3

Headers

File Characteristics

Imports

msvcrt

shell32

kernel32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 948KB - Virtual size: 948KB

.bss Size: - Virtual size: 4B

.rsrc Size: 1024B - Virtual size: 744B

9a11e6942d26d258ca7887c3ea9d2c4c

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0d:e9:cf:2e:71:83:64:a0:06:2e:0d:83:09:3e:34:d7Certificate

Extended Key Usages

Key Usages

0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

1f:40:15:83:56:88:12:b9:19:73:08:7d:d2:88:10:76:02:75:81:b4:24:f0:0a:85:13:70:56:73:94:0e:36:27Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

ws2_32

qwave

ole32

advapi32

ffmpeg

openh264-2.2.0-win64

user32

mediapipe

d3d11

oleaut32

shlwapi

shell32

ncrypt

dxgi

avrt

winmm

msdmo

gdi32

api-ms-win-core-synch-l1-2-0

ntdll

bcryptprimitives

dwmapi

api-ms-win-core-winrt-l1-1-0

propsys

bcrypt

Exports

Exports

Sections

.text Size: 14.6MB - Virtual size: 14.6MB

.rdata Size: 2.6MB - Virtual size: 2.6MB

.data Size: 122KB - Virtual size: 1021KB

.pdata Size: 297KB - Virtual size: 296KB

.gxfg Size: 15KB - Virtual size: 14KB

.retplne Size: 512B - Virtual size: 72B

.rodata Size: 2KB - Virtual size: 2KB

.tls Size: 1024B - Virtual size: 889B

.voltbl Size: 512B - Virtual size: 116B

_RDATA Size: 512B - Virtual size: 244B

malloc_h Size: 512B - Virtual size: 304B

.reloc Size: 68KB - Virtual size: 68KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 948KB - Virtual size: 948KB

.bss
Size: - Virtual size: 4B

.rsrc
Size: 1024B - Virtual size: 744B

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0d:e9:cf:2e:71:83:64:a0:06:2e:0d:83:09:3e:34:d7
Certificate

0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

1f:40:15:83:56:88:12:b9:19:73:08:7d:d2:88:10:76:02:75:81:b4:24:f0:0a:85:13:70:56:73:94:0e:36:27
Signer

.text
Size: 14.6MB - Virtual size: 14.6MB

.rdata
Size: 2.6MB - Virtual size: 2.6MB

.data
Size: 122KB - Virtual size: 1021KB

.pdata
Size: 297KB - Virtual size: 296KB

.gxfg
Size: 15KB - Virtual size: 14KB

.retplne
Size: 512B - Virtual size: 72B

.rodata
Size: 2KB - Virtual size: 2KB

.tls
Size: 1024B - Virtual size: 889B

.voltbl
Size: 512B - Virtual size: 116B

_RDATA
Size: 512B - Virtual size: 244B

malloc_h
Size: 512B - Virtual size: 304B

.reloc
Size: 68KB - Virtual size: 68KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0d:e9:cf:2e:71:83:64:a0:06:2e:0d:83:09:3e:34:d7
Certificate

0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

f4:1a:fc:cc:5f:ff:61:62:45:bf:f3:10:6f:45:84:cd:2f:a1:b7:51:54:cc:82:23:3f:c4:66:87:5e:13:bf:69
Signer

.text
Size: 587KB - Virtual size: 587KB

.rdata
Size: 165KB - Virtual size: 165KB

.data
Size: 4KB - Virtual size: 11KB

.pdata
Size: 17KB - Virtual size: 17KB

.reloc
Size: 5KB - Virtual size: 4KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0d:e9:cf:2e:71:83:64:a0:06:2e:0d:83:09:3e:34:d7
Certificate

0b:ae:66:bc:5a:ba:7f:95:87:c6:f9:e9:04:e3:33:04
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

50:90:7f:b3:91:df:a1:00:67:3e:0c:65:41:f3:44:b2:71:cf:c2:a0:18:94:fb:ed:5a:a2:3a:1a:71:af:90:e5
Signer

.text
Size: 4.6MB - Virtual size: 4.6MB

.rdata
Size: 929KB - Virtual size: 928KB

.data
Size: 141KB - Virtual size: 250KB

.pdata
Size: 173KB - Virtual size: 173KB

_RDATA
Size: 512B - Virtual size: 244B

.reloc
Size: 24KB - Virtual size: 24KB

01:99:3e:38:97:0d:e6:08:8d:e6:b6:cb:39:bb:ee:24
Certificate