getuname[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

getuname.zip
Size

3.1MB
MD5

16b13445843c75d166f34120691de87c
SHA1

060926e71b593d955e796e5b61396bc260318371
SHA256

05e971644f982bad382bab47fb7831417bf1e526661a9128e1793b396d18db7b
SHA512

72d0222fdc3193e2a1d6d50fbc04466fd1c0fb9dc2112d6ade05389b8d258dce551339a93a71188149d431b73526c2cae1be16b269c1dffc9f51b428f239ec3b
SSDEEP

98304:7NaVx9kGrbRboocCY4aJPpc3AM/85dqNkqVF:7N+oGJbJa43AMcnqj

Score

3^/10

Malware Config

Signatures

Unsigned PE 24 IoCs

Checks for missing Authenticode signature.

resource
unpack001/KBDTAM99.DLL
unpack001/TsUsbRedirectionGroupPolicyExtension.dll
unpack001/WiaExtensionHost64.dll
unpack001/cksini (2).exe
unpack001/comcat.dll
unpack001/getuname.dll
unpack001/ifsutilx.dll
unpack001/manual/OpenAL32.dll
unpack001/manual/Qt6Svg.dll
unpack001/manual/libwinpthread-1.dll
unpack001/mprext.dll
unpack001/msidle.dll
unpack001/msidntld.dll
unpack001/mssmp3.asi
unpack001/mssvoice.asi
unpack001/neth.dll
unpack001/netmsg.dll
unpack001/panmap.dll
unpack001/prflbmsg.dll
unpack001/provdiagnostics.dll
unpack001/radio/OpenAL32.dll
unpack001/radio/libssp-0.dll
unpack001/radio/libwinpthread-1.dll
unpack001/wiatrace.dll

Files

getuname.zip
.zip
AudioCapture.dll
.dll windows:5 windows x86 arch:x86

b8a1db56beebf8e839dde8e0df72f492

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:af
Certificate

Issuer

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Not Before

09/09/2021, 00:00

Not After

08/09/2024, 23:59

Subject

CN=NetSupport Ltd,O=NetSupport Ltd,ST=Cambridgeshire,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/10/2020, 00:00

Not After

22/01/2032, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #2,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:af
Certificate

Issuer

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Not Before

09/09/2021, 00:00

Not After

08/09/2024, 23:59

Subject

CN=NetSupport Ltd,O=NetSupport Ltd,ST=Cambridgeshire,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/10/2020, 00:00

Not After

22/01/2032, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #2,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

dc:e1:81:f3:38:7b:08:1c:26:8a:38:cf:5a:5c:37:c6:71:3a:51:1c:80:bd:de:31:76:ad:67:b2:6c:d1:1a:f5
Signer

Actual PE Digest

dc:e1:81:f3:38:7b:08:1c:26:8a:38:cf:5a:5c:37:c6:71:3a:51:1c:80:bd:de:31:76:ad:67:b2:6c:d1:1a:f5

Digest Algorithm

sha256

PE Digest Matches

true

59:5a:26:d4:2a:01:38:38:e7:97:cc:93:42:13:93:47:93:f4:f1:70
Signer

Actual PE Digest

59:5a:26:d4:2a:01:38:38:e7:97:cc:93:42:13:93:47:93:f4:f1:70

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\nsmsrc\nsm\1280\1280f12\AudioCapture\Release\AudioCapture.pdb

Imports

kernel32

WaitForSingleObject
GetCurrentThread
TerminateThread
Sleep
SetThreadPriority
CloseHandle
LocalFree
CreateThread
GetTickCount
GetLastError
GetStringTypeW
MultiByteToWideChar
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LoadLibraryW
EncodePointer
DecodePointer
GetCurrentThreadId
GetCommandLineA
RaiseException
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
IsProcessorFeaturePresent
HeapSize
GetProcAddress
GetModuleHandleW
ExitProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
WriteFile
GetModuleFileNameW
LeaveCriticalSection
EnterCriticalSection
RtlUnwind
HeapReAlloc

user32

UnregisterDeviceNotification
RegisterDeviceNotificationW
DestroyWindow
PostMessageW

ole32

CoTaskMemFree
CoInitializeEx
CoCreateInstance
CoUninitialize

Exports

Exports

AddAudioCaptureEventListener
DeviceChange
Initialise
IsCapturing
RegisterWindow
RemoveAudioCaptureEventListener
StartCapturing
StopCapturing
UnInitialise

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HTCTL32.DLL
.dll windows:5 windows x86 arch:x86

a6ab0ac73d733ac12db0454e9a7326f3

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:31:89:c6:37:e8
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

02/08/2011, 10:00

Not After

02/08/2019, 10:00

Subject

CN=GlobalSign CodeSigning CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

11:21:87:b3:98:71:ea:55:e9:2e:60:a8:a6:31:92:dd:60:f0
Certificate

Issuer

CN=GlobalSign CodeSigning CA - SHA256 - G2,O=GlobalSign nv-sa,C=BE

Not Before

03/09/2015, 15:59

Not After

22/11/2018, 15:54

Subject

CN=CrossTec Corporation,O=CrossTec Corporation,L=Boca Raton,ST=Florida,C=US,1.2.840.113549.1.9.1=#0c196a6566664063726f7373746563736f6674776172652e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\nsmsrc\NSN\300\CVA_300F1\Ctl32\release\htctl32.pdb

Imports

wsock32

getpeername
ntohs
socket
setsockopt
bind
htons
WSASetBlockingHook
WSAUnhookBlockingHook
send
getsockname
gethostname
connect
__WSAFDIsSet
recv
WSASetLastError
ioctlsocket
gethostbyname
closesocket
WSACancelBlockingCall
inet_ntoa
select
WSAGetLastError
WSAStartup
WSACleanup
inet_addr

kernel32

IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
GetLocaleInfoW
LoadLibraryW
SetConsoleCtrlHandler
FatalAppExitA
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
HeapSize
ReadFile
GetStartupInfoW
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
IsDBCSLeadByte
CompareStringA
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
OutputDebugStringA
LoadLibraryA
FreeLibrary
SetLastError
WritePrivateProfileStringA
CloseHandle
FlushFileBuffers
SetFilePointer
GetFileSize
GetPrivateProfileIntA
CreateFileA
GetLastError
WriteFile
GetLocalTime
GetDateFormatA
CopyFileA
InterlockedExchange
Sleep
SetStdHandle
EnterCriticalSection
SetEvent
GetVersionExA
GetTickCount
SystemTimeToFileTime
GetSystemTime
OpenProcess
GetCurrentProcessId
InterlockedDecrement
GetCurrentThreadId
InterlockedIncrement
GetTempPathA
ReleaseMutex
WaitForSingleObject
DeleteCriticalSection
TerminateThread
lstrlenA
CreateMutexA
SetThreadPriority
CreateThread
CreateEventA
InitializeCriticalSection
ExitProcess
MultiByteToWideChar
WideCharToMultiByte
PulseEvent
GlobalFree
CreateFileW
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LCMapStringW
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
GetConsoleCP
GetConsoleMode
WriteConsoleW
SetEndOfFile
GetProcessHeap
LeaveCriticalSection
HeapAlloc
HeapFree
RtlUnwind
HeapReAlloc
RaiseException
EncodePointer
DecodePointer
GetCommandLineA
GetModuleHandleW
GetStdHandle
GetModuleFileNameW
HeapCreate
HeapDestroy
IsProcessorFeaturePresent
GetCPInfo

user32

PostThreadMessageA
PostMessageA
GetMessageA
TranslateMessage
DispatchMessageA
SetTimer
KillTimer
PeekMessageA
PostQuitMessage
GetDesktopWindow
MessageBoxA
wvsprintfA
wsprintfA

advapi32

GetTokenInformation
LogonUserA
ImpersonateLoggedOnUser
RevertToSelf
GetUserNameA
OpenProcessToken

Exports

Exports

ctl_adddomain
ctl_addoperator
ctl_bridgename
ctl_broadcast
ctl_broadcastdata
ctl_call
ctl_callremote
ctl_clearpin
ctl_clientpinrequest
ctl_clientstatus
ctl_close
ctl_closeremote
ctl_connected
ctl_controlpinrequest
ctl_controlsendpin
ctl_findslaves
ctl_findslaves2
ctl_findslavesex
ctl_getconnectivityinfo
ctl_getfailedreason
ctl_getfileinfo
ctl_getsession
ctl_hangup
ctl_helpreq
ctl_installed
ctl_licenseinfo
ctl_maxpacket
ctl_messageacknowledged
ctl_messagereceived
ctl_myaddr
ctl_netname
ctl_networks
ctl_nsessions
ctl_open
ctl_openremote
ctl_pause
ctl_pingnet
ctl_pittmanfunc
ctl_publishservice
ctl_publishserviceex
ctl_putfile
ctl_putfilelink
ctl_remotename
ctl_removedomain
ctl_removeoperator
ctl_send
ctl_sendif
ctl_sendto
ctl_subset
ctl_userstatus
ctl_version

Sections

.text
Size: 240KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KBDTAM99.DLL
.dll windows:10 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

kbdtam99.pdb

Exports

Exports

KbdLayerDescriptor

Sections

.text
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
NSM.LIC
NSM.ini
PCICHEK.DLL
.dll windows:5 windows x86 arch:x86

e05a5a3d0a2f8611baa7485a20209a99

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:af
Certificate

Issuer

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Not Before

09/09/2021, 00:00

Not After

08/09/2024, 23:59

Subject

CN=NetSupport Ltd,O=NetSupport Ltd,ST=Cambridgeshire,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/10/2020, 00:00

Not After

22/01/2032, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #2,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

25/05/2021, 00:00

Not After

31/12/2028, 23:59

Subject

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

Issuer

CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

Not Before

22/03/2021, 00:00

Not After

21/03/2036, 23:59

Subject

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:af
Certificate

Issuer

CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB

Not Before

09/09/2021, 00:00

Not After

08/09/2024, 23:59

Subject

CN=NetSupport Ltd,O=NetSupport Ltd,ST=Cambridgeshire,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/10/2020, 00:00

Not After

22/01/2032, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #2,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

aa:c6:41:a5:39:2a:06:44:f8:a6:47:af:8c:fc:9c:9f:16:08:c2:fa:70:e3:6f:a9:f7:31:4f:e1:a5:79:0a:06
Signer

Actual PE Digest

aa:c6:41:a5:39:2a:06:44:f8:a6:47:af:8c:fc:9c:9f:16:08:c2:fa:70:e3:6f:a9:f7:31:4f:e1:a5:79:0a:06

Digest Algorithm

sha256

PE Digest Matches

true

b4:cd:b6:c8:71:1f:ab:d1:4a:7a:c3:f8:8f:5b:ac:26:23:2e:31:2a
Signer

Actual PE Digest

b4:cd:b6:c8:71:1f:ab:d1:4a:7a:c3:f8:8f:5b:ac:26:23:2e:31:2a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\nsmsrc\nsm\1280\1280\ctl32\release_unicode\pcichek.pdb

Imports

kernel32

GetVersionExW
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
ExitProcess

user32

LoadStringW
wsprintfW
MessageBoxW

msvcr100

_except_handler4_common
_crt_debugger_hook
memset

Exports

Exports

CheckLicenseString
IsILS
IsJPIK

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 994B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 498B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PCICL32.DLL
.dll windows:5 windows x86 arch:x86

285f1795dfcbaca038bd1222a3a96f0b

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

29:47:c5:9f:3a:9d:70:5c:58:91:06:b8:79:3f:de
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

23/06/2014, 00:00

Not After

21/09/2017, 23:59

Subject

CN=NetSupport Ltd,O=NetSupport Ltd,L=Peterborough,ST=Cambridgeshire,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\nsmsrc\nsm\1201\1201F2\client32\Release\PCICL32.pdb

Imports

shfolder

SHGetFolderPathA

pcichek

IsILS
CheckLicenseString

pcicapi

CapiListen
CapiOpen
CapiClose
CapiHangup

mpr

WNetCancelConnection2A
WNetGetConnectionA
WNetAddConnection2A

comctl32

ImageList_Draw
ImageList_LoadImageA
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_GetImageCount
ord17
ImageList_DrawEx
ImageList_GetIconSize
ImageList_GetIcon
ImageList_Create

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

winmm

waveOutClose
waveOutReset
waveInClose
waveInUnprepareHeader
waveInReset
waveInStop
waveOutUnprepareHeader
waveInPrepareHeader
waveOutSetVolume
waveOutOpen
waveInStart
waveInOpen
waveOutWrite
waveOutPrepareHeader
timeGetTime
timeEndPeriod
timeBeginPeriod
PlaySoundA
waveInAddBuffer

wsock32

send
bind
listen
accept
htons
socket
connect
getpeername
gethostbyname
recv
shutdown
closesocket
WSACleanup
WSAStartup
WSAGetLastError
gethostname
htonl
ioctlsocket
inet_addr
setsockopt

kernel32

SizeofResource
CreateDirectoryA
RemoveDirectoryA
MoveFileA
MulDiv
GetDiskFreeSpaceA
GetCurrentDirectoryA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetVolumeInformationA
FileTimeToDosDateTime
FileTimeToLocalFileTime
OpenEventA
MultiByteToWideChar
OutputDebugStringA
SetCurrentDirectoryA
IsBadReadPtr
GetTimeFormatW
GetDateFormatW
RaiseException
InitializeCriticalSectionAndSpinCount
WideCharToMultiByte
lstrlenW
lstrlenA
lstrcmpiA
FlushInstructionCache
lstrcmpA
FindResourceExA
TerminateThread
ReleaseMutex
WaitForSingleObjectEx
GlobalReAlloc
CreateNamedPipeA
ConnectNamedPipe
SetProcessShutdownParameters
SetConsoleCtrlHandler
IsDBCSLeadByteEx
DisconnectNamedPipe
WriteProfileStringA
DefineDosDeviceA
QueryDosDeviceA
ResumeThread
VirtualQueryEx
GetThreadContext
ReadProcessMemory
PulseEvent
CreateRemoteThread
SetThreadContext
PostQueuedCompletionStatus
CreateIoCompletionPort
GetQueuedCompletionStatus
Beep
GetSystemDefaultLangID
GetSystemInfo
SuspendThread
OpenThread
GetProcessVersion
GlobalGetAtomNameA
VirtualQuery
GetModuleHandleW
VirtualAlloc
VirtualProtect
GetSystemTimeAsFileTime
HeapReAlloc
RtlUnwind
DecodePointer
EncodePointer
InterlockedCompareExchange
GetProcessHeap
HeapAlloc
HeapFree
FindResourceA
LoadResource
LockResource
VirtualProtectEx
WriteProcessMemory
GetExitCodeThread
CompareStringA
SetFilePointer
GetProfileStringA
GetOEMCP
GetShortPathNameA
TerminateProcess
SystemTimeToFileTime
CreateFileMappingA
OpenFileMappingA
MapViewOfFile
UnmapViewOfFile
CreatePipe
DuplicateHandle
SetHandleInformation
FormatMessageA
LocalFree
SetNamedPipeHandleState
GetPriorityClass
WinExec
ExpandEnvironmentStringsA
SearchPathA
IsValidCodePage
SetSystemTime
_lopen
_lclose
DeleteFileA
SetFileAttributesA
GetSystemDirectoryA
GetDateFormatA
GetTimeFormatA
GlobalSize
SetUnhandledExceptionFilter
OpenMutexA
CreateMutexA
SetErrorMode
GetACP
SetPriorityClass
GetFileAttributesA
GetTempFileNameA
CopyFileA
FileTimeToSystemTime
GetComputerNameA
ExitProcess
GetExitCodeProcess
GetCurrentProcess
LoadLibraryExA
ExitThread
GetDriveTypeA
GetWindowsDirectoryA
IsDBCSLeadByte
GetLocalTime
GetFileSize
GlobalAlloc
GlobalLock
ReadFile
GlobalUnlock
GlobalFree
GetSystemPowerStatus
FindFirstFileA
FindNextFileA
FindClose
GetUserDefaultUILanguage
GetUserDefaultLangID
GetModuleHandleA
GetModuleFileNameA
GetCurrentProcessId
CreateProcessA
DeleteCriticalSection
InitializeCriticalSection
GetVersion
CreateThread
SetThreadPriority
InterlockedIncrement
WaitForMultipleObjects
GetOverlappedResult
ResetEvent
InterlockedDecrement
LeaveCriticalSection
EnterCriticalSection
GetLastError
DeviceIoControl
InterlockedExchange
SetLastError
GetProcAddress
FreeLibrary
LoadLibraryA
CreateFileA
GetTempPathA
WriteFile
GetCurrentThreadId
CreateEventA
WaitForSingleObject
SetEvent
GlobalDeleteAtom
Sleep
GlobalAddAtomA
OpenProcess
GetVersionExA
GetTickCount
CloseHandle
GetConsoleMode
GetCommandLineA
LCMapStringW
GetCPInfo
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapCreate
HeapDestroy
GetStdHandle
GetModuleFileNameW
HeapSize
GetLocaleInfoW
SetHandleCount
GetFileType
GetStartupInfoW
GetConsoleCP
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
GetTimeZoneInformation
CreateFileW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
FlushFileBuffers
LoadLibraryW
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
InterlockedPushEntrySList
VirtualFree
InterlockedPopEntrySList
LocalAlloc

user32

SetActiveWindow
AdjustWindowRectEx
GetCursorInfo
TrackPopupMenuEx
SetMenuDefaultItem
InsertMenuItemA
SetClassLongA
EndMenu
GetScrollInfo
SetScrollInfo
TileWindows
RemoveMenu
DrawIconEx
ClipCursor
SetScrollRange
SetScrollPos
ScrollWindow
OemToCharBuffA
HideCaret
CreateCursor
GetScrollRange
GetWindowRgn
GetAsyncKeyState
EnumThreadWindows
EnumDisplaySettingsA
CreateDesktopA
PostMessageW
OpenInputDesktop
GetMenuItemRect
mouse_event
MapVirtualKeyA
CharLowerBuffA
ShowCursor
SwitchDesktop
GetIconInfo
AttachThreadInput
GetCursor
CreateDialogIndirectParamA
DialogBoxIndirectParamA
DialogBoxParamA
CreateAcceleratorTableA
DestroyAcceleratorTable
RedrawWindow
InvalidateRgn
CharNextA
LoadAcceleratorsA
ScreenToClient
ModifyMenuA
CreateMenu
MoveWindow
SetCursorPos
DrawTextW
IsDialogMessageA
UnionRect
DrawFocusRect
wsprintfW
EndDialog
OpenWindowStationA
GetProcessWindowStation
SetProcessWindowStation
CloseWindowStation
MsgWaitForMultipleObjects
GetUserObjectSecurity
SetUserObjectSecurity
MessageBoxIndirectA
WinHelpA
UnhookWindowsHookEx
SetWindowsHookExA
CreateDialogParamA
GetLastActivePopup
CallNextHookEx
GetUpdateRect
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyCursor
SystemParametersInfoA
GetActiveWindow
IsZoomed
CreatePopupMenu
AppendMenuA
WindowFromPoint
EqualRect
LoadStringA
ClientToScreen
DeferWindowPos
IsChild
GetWindowPlacement
TranslateAcceleratorA
SetRectEmpty
SetMenu
SetWindowPlacement
GetForegroundWindow
CharUpperBuffA
WaitForInputIdle
OpenDesktopA
EnumDesktopWindows
GetUserObjectInformationA
GetCursorPos
IntersectRect
CheckDlgButton
SetForegroundWindow
EnumChildWindows
RegisterClipboardFormatA
CountClipboardFormats
EnumClipboardFormats
GetClipboardData
IsClipboardFormatAvailable
GetClipboardFormatNameA
UnregisterClassA
SetTimer
KillTimer
SetDlgItemTextA
SendMessageA
SendDlgItemMessageA
PostMessageA
ShowWindow
DefWindowProcA
CallWindowProcA
PostThreadMessageA
GetQueueStatus
GetDlgItem
GetDlgCtrlID
GetDC
ReleaseDC
InvalidateRect
RegisterWindowMessageA
DestroyIcon
CharUpperA
ExitWindowsEx
GetDesktopWindow
MessageBoxA
keybd_event
GetThreadDesktop
SetThreadDesktop
CloseDesktop
wvsprintfA
CreateCaret
ShowCaret
DestroyCaret
GetKeyState
PeekMessageA
SetCaretPos
DrawMenuBar
GetSystemMenu
OpenClipboard
EmptyClipboard
SetClipboardData
MessageBeep
CloseClipboard
FindWindowExA
DeleteMenu
GetWindowTextLengthA
GetFocus
GetClassInfoExA
DestroyWindow
DefDlgProcA
RegisterClassExA
IsDlgButtonChecked
GetDlgItemTextA
IsIconic
GetMenu
EnumWindows
IsWindowVisible
GetWindow
GetClassNameA
SendMessageTimeoutA
GetClassLongA
CopyIcon
CopyImage
LoadImageA
GetClassInfoA
LoadIconA
RegisterClassA
BringWindowToTop
GetMessageA
TranslateMessage
DispatchMessageA
SetPropA
GetPropA
RemovePropA
GetCapture
SetCapture
ReleaseCapture
CreateWindowExA
BeginPaint
EndPaint
wsprintfA
PostQuitMessage
GetMenuItemID
CheckMenuItem
EnableMenuItem
GetMenuItemInfoA
SetMenuItemInfoA
PtInRect
GetWindowDC
LoadMenuA
GetSubMenu
GetMenuItemCount
DestroyMenu
InflateRect
GetSystemMetrics
FindWindowA
GetWindowThreadProcessId
IsWindow
SetFocus
MapWindowPoints
GetClientRect
DrawTextA
OffsetRect
IsWindowEnabled
SetRect
GetWindowRect
FillRect
LoadBitmapA
GetSysColor
SetCursor
LoadCursorA
UpdateWindow
EnableWindow
SetWindowLongA
GetWindowLongA
SetWindowTextA
GetWindowTextA
GetParent
SetWindowPos
CopyRect

gdi32

RemoveFontResourceA
AddFontResourceA
SetTextCharacterExtra
EndPage
CombineRgn
StartPage
ExtEscape
GetBitmapBits
CreateDIBitmap
GetSystemPaletteEntries
SelectPalette
RealizePalette
CreateBrushIndirect
EqualRgn
GetDCOrgEx
SetBrushOrgEx
PatBlt
CreatePatternBrush
GetTextMetricsA
StretchBlt
GetDIBits
CreateDIBSection
GetNearestPaletteIndex
GetBkMode
CreateFontIndirectW
GetTextColor
GetBkColor
SetBitmapBits
UnrealizeObject
SetTextJustification
SetWindowOrgEx
SetRectRgn
CreatePenIndirect
GetClipRgn
GetWindowOrgEx
IntersectClipRect
Arc
Chord
Pie
Polyline
RoundRect
ExtTextOutA
SetPolyFillMode
GetStockObject
CreatePen
CreateSolidBrush
GetTextExtentPointA
SetBkMode
SetTextColor
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
GetObjectA
GdiFlush
BitBlt
DeleteDC
RectVisible
SetDIBits
DeleteObject
CreateRectRgn
CreateRectRgnIndirect
PtInRegion
RectInRegion
CreatePalette
GetPaletteEntries
GetTextExtentPoint32A
GetMapMode
SetMapMode
GetStretchBltMode
SetStretchBltMode
BeginPath
TextOutA
EndPath
PathToRegion
GetRgnBox
OffsetRgn
FillRgn
FrameRgn
CreateBitmap
CreateDCA
SelectClipRgn
LineDDA
Polygon
CreateFontIndirectA
CreateHatchBrush
GetDeviceCaps
SetBkColor
ExtFloodFill
GetPixel
SetPixel
SetPixelV
Ellipse
Rectangle
SetROP2
MoveToEx
LineTo
GetRegionData

winspool.drv

DeletePrinter
AddPrinterA
EnumPrintersA
ord201
EnumPrinterDriversA
ClosePrinter
EnumJobsA
SetJobA
AbortPrinter
StartPagePrinter
WritePrinter
StartDocPrinterA
EndPagePrinter
EndDocPrinter
OpenPrinterA
GetPrinterA
ord202

comdlg32

ChooseFontA
PageSetupDlgA
GetOpenFileNameA
GetSaveFileNameA

advapi32

EnumServicesStatusA
RegisterServiceCtrlHandlerA
RegisterEventSourceA
ReportEventA
DeregisterEventSource
RegCreateKeyA
SetTokenInformation
SetServiceStatus
StartServiceCtrlDispatcherA
LogonUserA
ControlService
StartServiceA
RegQueryInfoKeyW
CryptGetProvParam
CryptReleaseContext
AllocateLocallyUniqueId
FreeSid
GetSecurityDescriptorSacl
SetSecurityDescriptorSacl
LookupPrivilegeValueA
AdjustTokenPrivileges
QueryServiceConfigA
RegQueryValueExA
LookupAccountSidA
GetSidIdentifierAuthority
GetSidSubAuthorityCount
GetSidSubAuthority
AllocateAndInitializeSid
CreateProcessAsUserA
GetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
GetAclInformation
InitializeAcl
GetAce
EqualSid
AddAce
AddAccessAllowedAce
IsValidSid
GetLengthSid
CopySid
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumKeyExA
RegEnumValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegEnumKeyA
RegFlushKey
RegOpenKeyExA
RegCloseKey
OpenSCManagerA
OpenServiceA
QueryServiceStatus
CloseServiceHandle
GetUserNameA
GetTokenInformation
LookupPrivilegeNameA
RevertToSelf
OpenProcessToken
ImpersonateLoggedOnUser
GetUserNameW

shell32

SHGetPathFromIDListA
SHGetDesktopFolder
ExtractIconA
SHGetMalloc
SHGetFileInfoA
SHGetSpecialFolderPathA
ExtractIconExA
FindExecutableA
Shell_NotifyIconA
ShellExecuteA

ole32

CreateStreamOnHGlobal
StringFromGUID2
CoUninitialize
CoCreateInstance
CoInitialize
ReleaseStgMedium
OleDuplicateData
CreateDataAdviseHolder
CoTaskMemFree
CLSIDFromProgID
OleInitialize
OleUninitialize
CoTaskMemAlloc
CoTaskMemRealloc
OleLockRunning
CoGetClassObject
CLSIDFromString
OleSetContainedObject
CoInitializeSecurity
OleCreateStaticFromData
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes

oleaut32

SafeArrayUnaccessData
VariantCopy
OleLoadPicture
SysFreeString
SysAllocString
VariantClear
VariantInit
VariantChangeType
SysStringLen
SysAllocStringLen
VarUI4FromStr
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
OleCreatePictureIndirect
SysStringByteLen
SafeArrayAccessData
SafeArrayGetElemsize
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetDim
SafeArrayCreate

netapi32

NetApiBufferFree
NetUserEnum

wininet

InternetCrackUrlA

Exports

Exports

_GetWMIStringW@16
_IsAcerA@8
_NSMClient32@8
_NSMFindClass@12
br_close
br_open
br_poll
br_status

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 307KB - Virtual size: 307KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 21B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hhshare
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
PrivacySandboxAttestationsPreloaded/manifest.json
PrivacySandboxAttestationsPreloaded/privacy-sandbox-attestations.dat
TsUsbRedirectionGroupPolicyExtension.dll
.dll windows:10 windows x64 arch:x64

54be2b7c7bffa0cee4af2cdb42cf9085

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

TsUsbRedirectionGroupPolicyExtension.pdb

Imports

msvcrt

_callnewh
malloc
free
_vsnwprintf
memset

kernel32

GetWindowsDirectoryW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
RtlCaptureContext
GetLastError
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
WriteFile
LoadResource
GetModuleHandleExA
GetProcAddress
FreeLibrary
VerifyVersionInfoW
VerSetConditionMask
CloseHandle
LockResource
CreateFileW
SizeofResource
RtlLookupFunctionEntry
FindResourceW
GetTempFileNameW
LoadLibraryW
DeleteFileW
GetTempPathW

advapi32

TraceMessage
CloseServiceHandle
RegCloseKey
RegSetValueExW
RegCreateKeyExW
QueryServiceConfigW
OpenServiceW
OpenSCManagerW
RegQueryValueExW
RegOpenKeyW

setupapi

InstallHinfSectionW

Exports

Exports

ExecuteProcessGroupPolicyEx
ExecuteProcessGroupPolicyExWithError
ProcessGroupPolicyEx

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WiaExtensionHost64.dll
.dll windows:10 windows x64 arch:x64

39f7abf43a82831d6b4792c9ce9d440f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

WiaExtensionHost64.pdb

Imports

msvcrt

free
_initterm
_amsg_exit
_XcptFilter
_callnewh
malloc
__C_specific_handler

kernel32

GetCurrentThreadId
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetTickCount
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
Sleep
TerminateProcess

ole32

CoCreateInstance
CoInitializeEx
CoUninitialize

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cksini (2).exe
.exe windows:5 windows x86 arch:x86

748ba3d33edbb3b82dfd3a86267de575

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleW
InterlockedIncrement
GetVersionExW
GetLocalTime
GetTempPathW
GetModuleFileNameW
OutputDebugStringW
GetCurrentThreadId
GetTickCount
GetLastError
ExitProcess
SetLastError
GetCurrentProcessId
WideCharToMultiByte
MoveFileW
DeleteFileW
SetEndOfFile
WriteConsoleW
HeapSize
CreateFileW
FlushFileBuffers
Sleep
GetSystemTimeAsFileTime
OpenProcess
CloseHandle
MultiByteToWideChar
HeapAlloc
HeapFree
RaiseException
HeapReAlloc
RtlUnwind
DecodePointer
GetCommandLineW
HeapSetInformation
GetCPInfo
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LCMapStringW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
GetStringTypeW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
WriteFile
GetStdHandle
HeapCreate
SetHandleCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetConsoleCP
GetConsoleMode
SetFilePointer
ReadFile
SetStdHandle
LoadLibraryW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetProcessHeap

user32

wvsprintfW
GetMessageW
TranslateMessage
DispatchMessageW
SetTimer
MessageBoxW
KillTimer
PeekMessageW
PostQuitMessage
wsprintfW

advapi32

OpenProcessToken
GetTokenInformation
IsTextUnicode

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
client32.exe
.exe windows:5 windows x86 arch:x86

a9d50692e95b79723f3e76fcf70d023e

Code Sign

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

28/07/2020, 00:00

Not After

18/03/2029, 00:00

Subject

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

Issuer

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Not Before

28/07/2020, 00:00

Not After

28/07/2030, 00:00

Subject

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1f:6c:98:ca:ad:2a:e7:c1:8a:bb:ca:ad
Certificate

Issuer

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

17/06/2022, 13:01

Not After

17/06/2025, 13:01

Subject

SERIALNUMBER=02386638,CN=NETSUPPORT LTD.,O=NETSUPPORT LTD.,STREET=Netsupport House Towngate East\, Market Deeping,L=Peterborough,ST=Cambridgeshire,C=GB,1.2.840.113549.1.9.1=#0c196973406e6574737570706f7274736f6674776172652e636f6d,1.3.6.1.4.1.311.60.2.1.3=#13024742,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

01:b2:8b:d4:cf:ee:ee:0d:be:d0:b3:0d:9b:f8:43:6a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Not Before

06/04/2022, 07:45

Not After

08/05/2033, 07:45

Subject

CN=Globalsign TSA for CodeSign1 - R6,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

20/06/2018, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

10/12/2014, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

78:03:18:42:45:70:8a:41:cf:6f:01:b8:ee:b4:a9:54
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

28/07/2020, 00:00

Not After

18/03/2029, 00:00

Subject

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

77:bd:0e:05:b7:59:0b:b6:1d:47:61:53:1e:3f:75:ed
Certificate

Issuer

CN=GlobalSign Code Signing Root R45,O=GlobalSign nv-sa,C=BE

Not Before

28/07/2020, 00:00

Not After

28/07/2030, 00:00

Subject

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1f:6c:98:ca:ad:2a:e7:c1:8a:bb:ca:ad
Certificate

Issuer

CN=GlobalSign GCC R45 EV CodeSigning CA 2020,O=GlobalSign nv-sa,C=BE

Not Before

17/06/2022, 13:01

Not After

17/06/2025, 13:01

Subject

SERIALNUMBER=02386638,CN=NETSUPPORT LTD.,O=NETSUPPORT LTD.,STREET=Netsupport House Towngate East\, Market Deeping,L=Peterborough,ST=Cambridgeshire,C=GB,1.2.840.113549.1.9.1=#0c196973406e6574737570706f7274736f6674776172652e636f6d,1.3.6.1.4.1.311.60.2.1.3=#13024742,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

01:b2:8b:d4:cf:ee:ee:0d:be:d0:b3:0d:9b:f8:43:6a
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Not Before

06/04/2022, 07:45

Not After

08/05/2033, 07:45

Subject

CN=Globalsign TSA for CodeSign1 - R6,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

20/06/2018, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

45:e6:bb:03:83:33:c3:85:65:48:e6:ff:45:51
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

10/12/2014, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

99:bf:eb:03:e7:e0:f6:db:1a:a9:22:a1:d1:c5:e7:d5:fc:7f:5a:0a:af:df:df:56:5b:e5:36:a7:b1:2b:6f:7c
Signer

Actual PE Digest

99:bf:eb:03:e7:e0:f6:db:1a:a9:22:a1:d1:c5:e7:d5:fc:7f:5a:0a:af:df:df:56:5b:e5:36:a7:b1:2b:6f:7c

Digest Algorithm

sha256

PE Digest Matches

true

5f:69:b2:71:61:de:fe:8f:bf:fe:5f:3c:d2:cb:ae:53:e2:46:5e:14
Signer

Actual PE Digest

5f:69:b2:71:61:de:fe:8f:bf:fe:5f:3c:d2:cb:ae:53:e2:46:5e:14

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\nsmsrc\nsm\1410\1410\client32\release_unicode\client32.pdb

Imports

pcicl32

_NSMClient32@8

kernel32

GetCommandLineW
ExitProcess
GetModuleHandleW
GetStartupInfoW

Sections

.text
Size: 512B - Virtual size: 194B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 350B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
client32.ini
comcat.dll
.dll regsvr32 windows:10 windows x64 arch:x64

5c317b4785c1c3ce395f95788fb0f892

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

comcat.pdb

Imports

msvcrt

__C_specific_handler
_XcptFilter
_initterm
malloc
free
_amsg_exit

kernel32

QueryPerformanceCounter
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
Sleep
GetCurrentProcessId

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
getuname.dll
.dll windows:10 windows x64 arch:x64

b5f02961939c3c6edf46e7379484f547

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

GetUName.pdb

Imports

msvcrt

__C_specific_handler
_XcptFilter
malloc
free
_initterm
_amsg_exit

api-ms-win-core-libraryloader-l1-2-0

LoadStringW

api-ms-win-core-synch-l1-2-0

Sleep

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-0

TerminateProcess
GetCurrentProcess
GetCurrentThreadId
GetCurrentProcessId

api-ms-win-core-sysinfo-l1-1-0

GetTickCount
GetSystemTimeAsFileTime

api-ms-win-core-rtlsupport-l1-1-0

RtlCaptureContext
RtlVirtualUnwind
RtlLookupFunctionEntry

api-ms-win-core-errorhandling-l1-1-0

UnhandledExceptionFilter
SetUnhandledExceptionFilter

Exports

Exports

GetUName

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ifsutilx.dll
.dll windows:10 windows x64 arch:x64

f0120248cc8015539d8aaf42f8d64a47

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

ifsutilx.pdb

Imports

msvcrt

_initterm
_vsnwprintf
_XcptFilter
__C_specific_handler
free
wcsncmp
malloc
memcpy
_amsg_exit
memset

ntdll

RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
DbgPrint

api-ms-win-core-libraryloader-l1-2-0

LoadLibraryExW
GetProcAddress
FreeLibrary
DisableThreadLibraryCalls

api-ms-win-core-errorhandling-l1-1-0

GetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter

api-ms-win-core-synch-l1-2-0

Sleep

api-ms-win-core-localization-l1-2-0

FormatMessageW

api-ms-win-core-heap-l2-1-0

LocalFree

api-ms-win-core-com-l1-1-0

CoInitializeEx
CoUninitialize
CoCreateInstance

api-ms-win-core-file-l1-1-0

CreateFileW

api-ms-win-core-io-l1-1-0

DeviceIoControl

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-0

GetCurrentProcessId
TerminateProcess
GetCurrentThreadId
GetCurrentProcess

api-ms-win-core-sysinfo-l1-1-0

GetTickCount
GetSystemTimeAsFileTime

ifsutil

RegisterExtensionCallbacks

ulib

?Initialize@WSTRING@@QEAAEPEBGK@Z

api-ms-win-core-delayload-l1-1-1

ResolveDelayLoadedAPI

api-ms-win-core-delayload-l1-1-0

DelayLoadFailureHook

Exports

Exports

CheckSnapshotPresence
CreateVolumeSnapshot
GetSnapshotErrorMessage
InitializeCOM
ReleaseVolumeSnapshot
UninitializeCOM

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
logos/8ball1.bmp
logos/Cookies
logos/andre.bmp
logos/camp1.bmp
logos/chick1.bmp
logos/chuckskull.bmp
logos/colormap.lmp
logos/conback.lmp
logos/data_0
logos/data_1
logos/data_2
logos/data_3
logos/devl1.bmp
logos/f_000001
.gz
f_000001
.js
logos/gun1.bmp
logos/lambda.bmp
logos/palette.bmp
logos/palette.lmp
logos/skull.bmp
logos/smiley.bmp
logos/splatt.bmp
logos/tiki.bmp
logos/v_1.bmp
manual/OpenAL32.dll
.dll windows:4 windows x64 arch:x64

634948513595a916d3204cda06247a72

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateEventA
CreateThread
DebugBreak
DeleteCriticalSection
EnterCriticalSection
ExitThread
FreeLibrary
GetCurrentThread
GetCurrentThreadId
GetExitCodeThread
GetLastError
GetModuleHandleExW
GetProcAddress
GetSystemTimeAsFileTime
InitializeCriticalSection
IsDBCSLeadByteEx
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
ResetEvent
SetEvent
SetThreadPriority
Sleep
SwitchToThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
lstrlenW

msvcrt

___lc_codepage_func
___mb_cur_max_func
__iob_func
__setusermatherr
_aligned_free
_aligned_malloc
_amsg_exit
_errno
_fpreset
_initterm
_lock
_snwprintf
_stricmp
_strnicmp
_unlock
_wfopen
_wgetenv
abort
atoi
calloc
clearerr
fclose
feof
ferror
fflush
fgetc
fputc
fread
free
fseek
ftell
fwrite
getc
getenv
isalnum
isspace
isxdigit
localeconv
log10
malloc
memcmp
memcpy
memmove
memset
realloc
sinh
strchr
strcmp
strerror
strlen
strncmp
strncpy
strpbrk
strtol
strtoul
tolower
ungetc
vfprintf
wcscmp
wcslen
_strtoui64
_strtoi64
_strdup

ole32

CoCreateInstance
CoInitialize
CoTaskMemFree
CoUninitialize
PropVariantClear
StringFromCLSID

shell32

SHGetSpecialFolderPathW

user32

GetForegroundWindow
GetMessageA
PeekMessageA
PostThreadMessageA

winmm

waveInAddBuffer
waveInClose
waveInGetDevCapsW
waveInGetNumDevs
waveInOpen
waveInPrepareHeader
waveInReset
waveInStart
waveInStop
waveInUnprepareHeader
waveOutClose
waveOutGetDevCapsW
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite

Exports

Exports

alAuxiliaryEffectSlotf
alAuxiliaryEffectSlotfv
alAuxiliaryEffectSloti
alAuxiliaryEffectSlotiv
alBuffer3f
alBuffer3i
alBufferData
alBufferSamplesSOFT
alBufferSubDataSOFT
alBufferSubSamplesSOFT
alBufferf
alBufferfv
alBufferi
alBufferiv
alDeferUpdatesSOFT
alDeleteAuxiliaryEffectSlots
alDeleteBuffers
alDeleteEffects
alDeleteFilters
alDeleteFontsoundsSOFT
alDeletePresetsSOFT
alDeleteSoundfontsSOFT
alDeleteSources
alDisable
alDistanceModel
alDopplerFactor
alDopplerVelocity
alEffectf
alEffectfv
alEffecti
alEffectiv
alEnable
alFilterf
alFilterfv
alFilteri
alFilteriv
alFontsound2iSOFT
alFontsoundModulatoriSOFT
alFontsoundiSOFT
alFontsoundivSOFT
alGenAuxiliaryEffectSlots
alGenBuffers
alGenEffects
alGenFilters
alGenFontsoundsSOFT
alGenPresetsSOFT
alGenSoundfontsSOFT
alGenSources
alGetAuxiliaryEffectSlotf
alGetAuxiliaryEffectSlotfv
alGetAuxiliaryEffectSloti
alGetAuxiliaryEffectSlotiv
alGetBoolean
alGetBooleanv
alGetBuffer3f
alGetBuffer3i
alGetBufferSamplesSOFT
alGetBufferf
alGetBufferfv
alGetBufferi
alGetBufferiv
alGetDouble
alGetDoublev
alGetEffectf
alGetEffectfv
alGetEffecti
alGetEffectiv
alGetEnumValue
alGetError
alGetFilterf
alGetFilterfv
alGetFilteri
alGetFilteriv
alGetFloat
alGetFloatv
alGetFontsoundModulatorivSOFT
alGetFontsoundivSOFT
alGetInteger
alGetInteger64SOFT
alGetInteger64vSOFT
alGetIntegerv
alGetListener3f
alGetListener3i
alGetListenerf
alGetListenerfv
alGetListeneri
alGetListeneriv
alGetPresetivSOFT
alGetProcAddress
alGetSoundfontivSOFT
alGetSource3dSOFT
alGetSource3f
alGetSource3i
alGetSource3i64SOFT
alGetSourcedSOFT
alGetSourcedvSOFT
alGetSourcef
alGetSourcefv
alGetSourcei
alGetSourcei64SOFT
alGetSourcei64vSOFT
alGetSourceiv
alGetString
alIsAuxiliaryEffectSlot
alIsBuffer
alIsBufferFormatSupportedSOFT
alIsEffect
alIsEnabled
alIsExtensionPresent
alIsFilter
alIsFontsoundSOFT
alIsPresetSOFT
alIsSoundfontSOFT
alIsSource
alListener3f
alListener3i
alListenerf
alListenerfv
alListeneri
alListeneriv
alLoadSoundfontSOFT
alMidiEventSOFT
alMidiGainSOFT
alMidiPauseSOFT
alMidiPlaySOFT
alMidiResetSOFT
alMidiSoundfontSOFT
alMidiSoundfontvSOFT
alMidiStopSOFT
alMidiSysExSOFT
alPresetFontsoundsSOFT
alPresetiSOFT
alPresetivSOFT
alProcessUpdatesSOFT
alSoundfontPresetsSOFT
alSource3dSOFT
alSource3f
alSource3i
alSource3i64SOFT
alSourcePause
alSourcePausev
alSourcePlay
alSourcePlayv
alSourceQueueBuffers
alSourceRewind
alSourceRewindv
alSourceStop
alSourceStopv
alSourceUnqueueBuffers
alSourcedSOFT
alSourcedvSOFT
alSourcef
alSourcefv
alSourcei
alSourcei64SOFT
alSourcei64vSOFT
alSourceiv
alSpeedOfSound
alcCaptureCloseDevice
alcCaptureOpenDevice
alcCaptureSamples
alcCaptureSamplesLoopback
alcCaptureStart
alcCaptureStop
alcCloseDevice
alcCreateContext
alcDestroyContext
alcDevicePauseSOFT
alcDeviceResumeSOFT
alcGetContextsDevice
alcGetCurrentContext
alcGetEnumValue
alcGetError
alcGetInteger64vSOFT
alcGetIntegerv
alcGetProcAddress
alcGetString
alcGetThreadContext
alcIsExtensionPresent
alcIsRenderFormatSupportedSOFT
alcLoopbackOpenDeviceSOFT
alcMakeContextCurrent
alcOpenDevice
alcProcessContext
alcRenderSamplesSOFT
alcSetThreadContext
alcSuspendContext

Sections

.text
Size: 384KB - Virtual size: 384KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 75KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
manual/Qt6Svg.dll
.dll windows:4 windows x64 arch:x64

eaced0a5365d1eee6139f3255b0f94a2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetLastError
GetModuleHandleW
GetProcAddress
InitializeCriticalSection
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryW
Sleep
TerminateProcess
TlsGetValue
VirtualProtect
VirtualQuery

msvcrt

__iob_func
__setusermatherr
_amsg_exit
_errno
_hypot
_initterm
_lock
_unlock
abort
calloc
free
fwrite
malloc
memcmp
memcpy
memmove
realloc
strcmp
strlen
strncmp
tan
vfprintf
_write

libstdc++-6

_ZSt18_Rb_tree_decrementPSt18_Rb_tree_node_base
_ZSt21__glibcxx_assert_failPKciS0_S0_
_ZSt29_Rb_tree_insert_and_rebalancebPSt18_Rb_tree_node_baseS0_RS_
_ZTVN10__cxxabiv117__class_type_infoE
_ZTVN10__cxxabiv120__si_class_type_infoE
_ZdaPv
_ZdaPvy
_ZdlPvy
_Znay
_Znwy
__cxa_guard_acquire
__cxa_guard_release
__dynamic_cast

qt6core

_Z11qFpClassifyf
_Z11qt_assert_xPKcS0_S0_i
_Z16qt_check_pointerPKci
_Z26qt_QMetaEnum_debugOperatorR6QDebugxPK11QMetaObjectPKc
_Z28qEnvironmentVariableIntValuePKcPb
_Z30qt_QMetaEnum_flagDebugOperatorR6QDebugyj
_Z5qHash11QStringViewy
_Z9qIsFinited
_Z9qt_assertPKcS0_i
_ZN10QArrayData19reallocateUnalignedEPS_PvxxNS_16AllocationOptionE
_ZN10QArrayData8allocateEPPS_xxxNS_16AllocationOptionE
_ZN10QByteArray10fromBase64ERKS_6QFlagsINS_12Base64OptionEE
_ZN10QByteArray11reallocDataExN10QArrayData16AllocationOptionE
_ZN10QByteArray4chopEx
_ZN10QByteArray4fillEcx
_ZN10QByteArray6_emptyE
_ZN10QByteArray6appendERKS_
_ZN10QByteArray6appendEc
_ZN10QByteArray6insertEx14QByteArrayView
_ZN10QByteArray6numberExi
_ZN10QByteArray6resizeEx
_ZN10QByteArrayC1ExN2Qt14InitializationE
_ZN10QByteArrayaSERKS_
_ZN11QDataStreamlsEa
_ZN11QDataStreamlsEi
_ZN11QDataStreamrsERb
_ZN11QDataStreamrsERi
_ZN11QMetaObject10ConnectionD1Ev
_ZN11QMetaObject14normalizedTypeEPKc
_ZN11QMetaObject8activateEP7QObjectPKS_iPPv
_ZN11QTextStream7readAllEv
_ZN11QTextStream9setDeviceEP9QIODevice
_ZN11QTextStream9setStringEP7QString6QFlagsIN13QIODeviceBase12OpenModeFlagEE
_ZN11QTextStreamC1EP7QString6QFlagsIN13QIODeviceBase12OpenModeFlagEE
_ZN11QTextStreamC1ERK10QByteArray6QFlagsIN13QIODeviceBase12OpenModeFlagEE
_ZN11QTextStreamD1Ev
_ZN11QTextStreamlsE13QLatin1String
_ZN11QTextStreamlsEPKc
_ZN11QTextStreamlsERK10QByteArray
_ZN11QTextStreamlsERK7QString
_ZN11QTextStreamlsEc
_ZN11QTextStreamlsEd
_ZN11QTextStreamlsEf
_ZN11QTextStreamlsEi
_ZN11QTextStreamlsEx
_ZN14QObjectPrivateC2Ei
_ZN14QObjectPrivateD2Ev
_ZN16QLoggingCategoryC1EPKc9QtMsgType
_ZN16QLoggingCategoryD1Ev
_ZN16QXmlStreamReader22setNamespaceProcessingEb
_ZN16QXmlStreamReader8readNextEv
_ZN16QXmlStreamReaderC1EP9QIODevice
_ZN16QXmlStreamReaderC1ERK10QByteArrayNS_21PrivateConstructorTagE
_ZN16QXmlStreamReaderD1Ev
_ZN18QRegularExpressionC1ERK7QString6QFlagsINS_13PatternOptionEE
_ZN18QRegularExpressionD1Ev
_ZN20QXmlStreamAttributes6appendERK7QStringS2_S2_
_ZN23QRegularExpressionMatchD1Ev
_ZN2Qt16staticMetaObjectE
_ZN2Qt4endlER11QTextStream
_ZN31QRegularExpressionMatchIterator4nextEv
_ZN31QRegularExpressionMatchIteratorD1Ev
_ZN4QDir18toNativeSeparatorsERK7QString
_ZN4QDirD1Ev
_ZN4QUrlC1ERK7QStringNS_11ParsingModeE
_ZN4QUrlD1Ev
_ZN5QChar14isSpace_helperEDi
_ZN5QFile16staticMetaObjectE
_ZN5QFile4openE6QFlagsIN13QIODeviceBase12OpenModeFlagEE
_ZN5QFileC1ERK7QString
_ZN5QFileD1Ev
_ZN6QDebug12putByteArrayEPKcyNS_13Latin1ContentE
_ZN6QDebug9putStringEPK5QChary
_ZN6QDebugD1Ev
_ZN6QTimer16staticMetaObjectE
_ZN6QTimer4stopEv
_ZN6QTimer5startEi
_ZN6QTimer7timeoutENS_14QPrivateSignalE
_ZN6QTimerC1EP7QObject
_ZN7QBuffer4openE6QFlagsIN13QIODeviceBase12OpenModeFlagEE
_ZN7QBuffer5closeEv
_ZN7QBuffer7setDataERK10QByteArray
_ZN7QBufferC1EP10QByteArrayP7QObject
_ZN7QBufferC1EP7QObject
_ZN7QBufferD1Ev
_ZN7QLocaleC1Ev
_ZN7QLocaleD1Ev
_ZN7QObject10childEventEP11QChildEvent
_ZN7QObject10timerEventEP11QTimerEvent
_ZN7QObject11connectImplEPKS_PPvS1_S3_PN9QtPrivate15QSlotObjectBaseEN2Qt14ConnectionTypeEPKiPK11QMetaObject
_ZN7QObject11customEventEP6QEvent
_ZN7QObject11eventFilterEPS_P6QEvent
_ZN7QObject11qt_metacallEN11QMetaObject4CallEiPPv
_ZN7QObject11qt_metacastEPKc
_ZN7QObject13connectNotifyERK11QMetaMethod
_ZN7QObject16disconnectNotifyERK11QMetaMethod
_ZN7QObject16staticMetaObjectE
_ZN7QObject5eventEP6QEvent
_ZN7QObjectC2ER14QObjectPrivatePS_
_ZN7QObjectD2Ev
_ZN7QString10fromLatin1E14QByteArrayView
_ZN7QString11fromRawDataEPK5QCharx
_ZN7QString11reallocDataExN10QArrayData16AllocationOptionE
_ZN7QString14toLower_helperERKS_
_ZN7QString14trimmed_helperERKS_
_ZN7QString14trimmed_helperERS_
_ZN7QString15toLatin1_helperERKS_
_ZN7QString17simplified_helperERKS_
_ZN7QString17toIntegral_helperE11QStringViewPbi
_ZN7QString18toLocal8Bit_helperEPK5QCharx
_ZN7QString4chopEx
_ZN7QString6_emptyE
_ZN7QString6appendE5QChar
_ZN7QString6appendERKS_
_ZN7QString6insertEx13QLatin1String
_ZN7QString6numberEdci
_ZN7QString6numberEii
_ZN7QString6numberExi
_ZN7QString6removeExx
_ZN7QString6resizeEx
_ZN7QString7replaceE5QCharS0_N2Qt15CaseSensitivityE
_ZN7QString8fromUtf8E14QByteArrayView
_ZN7QStringC1EPK5QCharx
_ZN7QStringC1ExN2Qt14InitializationE
_ZN7QStringaSE13QLatin1String
_ZN7QStringaSERKS_
_ZN8QVariantC1ERKS_
_ZN8QVariantD1Ev
_ZN9QDateTime22currentMSecsSinceEpochEv
_ZN9QFileInfoC1ERK7QString
_ZN9QFileInfoD1Ev
_ZN9QHashSeed10globalSeedEv
_ZN9QIODevice4peekEPcx
_ZN9QIODevice4readEx
_ZN9QIODevice7readAllEv
_ZN9QMetaType14registerHelperEPKN9QtPrivate18QMetaTypeInterfaceE
_ZN9QMetaType25registerNormalizedTypedefERK10QByteArrayS_
_ZN9QtPrivate10findStringE11QStringViewx13QLatin1StringN2Qt15CaseSensitivityE
_ZN9QtPrivate10startsWithE11QStringView13QLatin1StringN2Qt15CaseSensitivityE
_ZN9QtPrivate10startsWithE14QByteArrayViewS0_
_ZN9QtPrivate12argToQStringE11QStringViewyPPKNS_7ArgBaseE
_ZN9QtPrivate12argToQStringE13QLatin1StringyPPKNS_7ArgBaseE
_ZN9QtPrivate12equalStringsE11QStringView13QLatin1String
_ZN9QtPrivate12equalStringsE11QStringViewS0_
_ZN9QtPrivate12equalStringsE13QLatin1String11QStringView
_ZN9QtPrivate13compareMemoryE14QByteArrayViewS0_
_ZN9QtPrivate14compareStringsE11QStringView13QLatin1StringN2Qt15CaseSensitivityE
_ZN9QtPrivate14compareStringsE11QStringViewS0_N2Qt15CaseSensitivityE
_ZN9QtPrivate20QStringList_containsEPK5QListI7QStringE11QStringViewN2Qt15CaseSensitivityE
_ZN9QtPrivate7trimmedE11QStringView
_ZN9QtPrivate8endsWithE11QStringView13QLatin1StringN2Qt15CaseSensitivityE
_ZN9QtPrivate8qustrchrE11QStringViewDs
_ZNK10QByteArray8toBase64E6QFlagsINS_12Base64OptionEE
_ZNK10QByteArray8toDoubleEPb
_ZNK11QMetaObject4castEPK7QObject
_ZNK11QMetaObject9classNameEv
_ZNK11QObjectData17dynamicMetaObjectEv
_ZNK11QStringView8toDoubleEPb
_ZNK14QMessageLogger5debugEPKcz
_ZNK14QMessageLogger5debugEv
_ZNK14QMessageLogger7warningEPKcz
_ZNK14QMessageLogger7warningEv
_ZNK14QObjectPrivate15flagsForDumpingB5cxx11Ev
_ZNK14QObjectPrivate18writeToDebugStreamER6QDebug
_ZNK16QXmlStreamReader10attributesEv
_ZNK16QXmlStreamReader10lineNumberEv
_ZNK16QXmlStreamReader11errorStringEv
_ZNK16QXmlStreamReader12columnNumberEv
_ZNK16QXmlStreamReader25processingInstructionDataEv
_ZNK16QXmlStreamReader27processingInstructionTargetEv
_ZNK16QXmlStreamReader4nameEv
_ZNK16QXmlStreamReader4textEv
_ZNK16QXmlStreamReader5atEndEv
_ZNK16QXmlStreamReader5errorEv
_ZNK16QXmlStreamReader6deviceEv
_ZNK18QRegularExpression11globalMatchERK7QStringxNS_9MatchTypeE6QFlagsINS_11MatchOptionEE
_ZNK18QRegularExpression5matchERK7QStringxNS_9MatchTypeE6QFlagsINS_11MatchOptionEE
_ZNK20QXmlStreamAttributes5valueE14QAnyStringView
_ZNK23QRegularExpressionMatch8capturedEi
_ZNK31QRegularExpressionMatchIterator7hasNextEv
_ZNK4QDir16absoluteFilePathERK7QString
_ZNK4QUrl10isRelativeEv
_ZNK6QLineF5angleEv
_ZNK6QRectF10normalizedEv
_ZNK6QRectF13toAlignedRectEv
_ZNK6QRectFanERKS_
_ZNK6QRectForERKS_
_ZNK6QSizeF6scaledERKS_N2Qt15AspectRatioModeE
_ZNK7QLocale4nameENS_12TagSeparatorE
_ZNK7QString10startsWithE13QLatin1StringN2Qt15CaseSensitivityE
_ZNK7QString10startsWithE5QCharN2Qt15CaseSensitivityE
_ZNK7QString10startsWithERKS_N2Qt15CaseSensitivityE
_ZNK7QString11lastIndexOfE13QLatin1StringxN2Qt15CaseSensitivityE
_ZNK7QString13toHtmlEscapedEv
_ZNK7QString3argERKS_i5QChar
_ZNK7QString3argEdici5QChar
_ZNK7QString3argExii5QChar
_ZNK7QString5splitE5QChar6QFlagsIN2Qt18SplitBehaviorFlagsEENS2_15CaseSensitivityE
_ZNK7QString5splitERK18QRegularExpression6QFlagsIN2Qt18SplitBehaviorFlagsEE
_ZNK7QString5splitERKS_6QFlagsIN2Qt18SplitBehaviorFlagsEENS3_15CaseSensitivityE
_ZNK7QString7compareERKS_N2Qt15CaseSensitivityE
_ZNK7QString7indexOfE13QLatin1StringxN2Qt15CaseSensitivityE
_ZNK7QString7indexOfERKS_xN2Qt15CaseSensitivityE
_ZNK7QString8endsWithE13QLatin1StringN2Qt15CaseSensitivityE
_ZNK7QString8endsWithE5QCharN2Qt15CaseSensitivityE
_ZNK7QString8endsWithERKS_N2Qt15CaseSensitivityE
_ZNK8QVariant12toStringListEv
_ZNK8QVariant5toIntEPb
_ZNK9QFileInfo11absoluteDirEv
_ZNK9QFileInfo16absoluteFilePathEv
_ZNK9QFileInfo6existsEv
_ZNK9QIODevice10isReadableEv
_ZNK9QIODevice10isWritableEv
_ZNK9QIODevice11errorStringEv
_ZNK9QIODevice6isOpenEv
_ZNKR7QString3midExx
_Zls6QDebugRK5QSize
_Zls6QDebugRK6QLineF
_Zls6QDebugRK6QRectF
_Zls6QDebugRK7QPointF
_ZlsR11QDataStreamRK10QByteArray
_ZlsR11QDataStreamRK6QRectF
_ZlsR11QDataStreamRK7QString
_ZrsR11QDataStreamR10QByteArray
_ZrsR11QDataStreamR6QRectF
_ZrsR11QDataStreamR7QString
qt_version_tag_6_8
z_inflate
z_inflateEnd
z_inflateInit2_
z_inflateReset

qt6gui

_Z16qt_imageForBrushib
_Z17qHasPixmapTextureRK6QBrush
_ZN10QTransform5resetEv
_ZN10QTransform5scaleEdd
_ZN10QTransform5shearEdd
_ZN10QTransform6rotateEdN2Qt4AxisE
_ZN10QTransform9fromScaleEdd
_ZN10QTransform9translateEdd
_ZN10QTransformmLERKS_
_ZN11QTextFormat11setPropertyEiRK8QVariant
_ZN11QTextFormatC2ERKS_
_ZN11QTextFormatD2Ev
_ZN11QTextLayout10createLineEv
_ZN11QTextLayout10setFormatsERK5QListINS_11FormatRangeEE
_ZN11QTextLayout11beginLayoutEv
_ZN11QTextLayout13setTextOptionERK11QTextOption
_ZN11QTextLayout9endLayoutEv
_ZN11QTextLayoutC1ERK7QString
_ZN11QTextLayoutD1Ev
_ZN11QTextOptionC1ERKS_
_ZN11QTextOptionD1Ev
_ZN12QImageReader11imageFormatERK7QString
_ZN12QPaintDeviceC2Ev
_ZN12QPaintDeviceD2Ev
_ZN12QPaintEngine10drawPointsEPK6QPointi
_ZN12QPaintEngine10drawPointsEPK7QPointFi
_ZN12QPaintEngine11drawEllipseERK5QRect
_ZN12QPaintEngine11drawPolygonEPK6QPointiNS_15PolygonDrawModeE
_ZN12QPaintEngine12createPixmapE5QSize
_ZN12QPaintEngine12drawTextItemERK7QPointFRK9QTextItem
_ZN12QPaintEngine15drawTiledPixmapERK6QRectFRK7QPixmapRK7QPointF
_ZN12QPaintEngine21createPixmapFromImageE6QImage6QFlagsIN2Qt19ImageConversionFlagEE
_ZN12QPaintEngine9drawLinesEPK5QLinei
_ZN12QPaintEngine9drawLinesEPK6QLineFi
_ZN12QPaintEngine9drawRectsEPK5QRecti
_ZN12QPaintEngineC2ER19QPaintEnginePrivate6QFlagsINS_18PaintEngineFeatureEE
_ZN12QPaintEngineD2Ev
_ZN12QPainterPath10addEllipseERK6QRectF
_ZN12QPainterPath10addPolygonERK9QPolygonF
_ZN12QPainterPath11setFillRuleEN2Qt8FillRuleE
_ZN12QPainterPath12closeSubpathEv
_ZN12QPainterPath6lineToERK7QPointF
_ZN12QPainterPath6moveToERK7QPointF
_ZN12QPainterPath6quadToERK7QPointFS2_
_ZN12QPainterPath7addRectERK6QRectF
_ZN12QPainterPath7cubicToERK7QPointFS2_S2_
_ZN12QPainterPathC1ERK7QPointF
_ZN12QPainterPathC1ERKS_
_ZN12QPainterPathC1Ev
_ZN12QPainterPathD1Ev
_ZN13QFontMetricsFC1ERK5QFont
_ZN13QFontMetricsFD1Ev
_ZN15QImageIOHandler13allocateImageE5QSizeN6QImage6FormatEPS1_
_ZN15QLinearGradientC1Edddd
_ZN15QRadialGradientC1Edddddd
_ZN15QTextCharFormat7setFontERK5QFontNS_33FontPropertiesInheritanceBehaviorE
_ZN15QTextCharFormatC1Ev
_ZN19QPaintEnginePrivateD2Ev
_ZN19QPainterPathStroker12setJoinStyleEN2Qt12PenJoinStyleE
_ZN19QPainterPathStroker13setMiterLimitEd
_ZN19QPainterPathStroker8setWidthEd
_ZN19QPainterPathStrokerC1Ev
_ZN19QPainterPathStrokerD1Ev
_ZN4QCss13StyleSelector19declarationsForNodeENS0_7NodePtrEPKc
_ZN4QCss13StyleSelectorD2Ev
_ZN4QCss6Parser4initERK7QStringb
_ZN4QCss6Parser4testENS_9TokenTypeE
_ZN4QCss6Parser5parseEPNS_10StyleSheetEN2Qt15CaseSensitivityE
_ZN4QCss6ParserC1ERK7QStringb
_ZN4QCss6ParserC1Ev
_ZN4QPen11setCapStyleEN2Qt11PenCapStyleE
_ZN4QPen11setCosmeticEb
_ZN4QPen12setJoinStyleEN2Qt12PenJoinStyleE
_ZN4QPen13setDashOffsetEd
_ZN4QPen13setMiterLimitEd
_ZN4QPen14setDashPatternERK5QListIdE
_ZN4QPen8setBrushERK6QBrush
_ZN4QPen8setColorERK6QColor
_ZN4QPen8setStyleEN2Qt8PenStyleE
_ZN4QPen9setWidthFEd
_ZN4QPenC1EN2Qt8PenStyleE
_ZN4QPenC1ERK6QBrushdN2Qt8PenStyleENS3_11PenCapStyleENS3_12PenJoinStyleE
_ZN4QPenC1ERKS_
_ZN4QPenC1Ev
_ZN4QPenD1Ev
_ZN4QPenaSERKS_
_ZN5QFont11setFamiliesERK5QListI7QStringE
_ZN5QFont12setPixelSizeEi
_ZN5QFont13setPointSizeFEd
_ZN5QFont17setCapitalizationENS_14CapitalizationE
_ZN5QFont8setStyleENS_5StyleE
_ZN5QFont9setWeightENS_6WeightE
_ZN5QFontC1ERKS_
_ZN5QFontC1Ev
_ZN5QFontD1Ev
_ZN5QFontaSERKS_
_ZN6QBrush12setTransformERK10QTransform
_ZN6QBrush8setColorERK6QColor
_ZN6QBrushC1EN2Qt10BrushStyleE
_ZN6QBrushC1EN2Qt11GlobalColorENS0_10BrushStyleE
_ZN6QBrushC1ERK6QColorN2Qt10BrushStyleE
_ZN6QBrushC1ERK6QImage
_ZN6QBrushC1ERK9QGradient
_ZN6QBrushC1ERKS_
_ZN6QBrushC1Ev
_ZN6QBrushD1Ev
_ZN6QBrushaSERKS_
_ZN6QColor10fromStringE14QAnyStringView
_ZN6QColor6setRgbEj
_ZN6QColor8fromRgbaEj
_ZN6QColor9setAlphaFEf
_ZN6QColorC1EN2Qt11GlobalColorE
_ZN6QImage13setColorCountEi
_ZN6QImage4bitsEv
_ZN6QImage4fillEN2Qt11GlobalColorE
_ZN6QImage4fillERK6QColor
_ZN6QImage8fromDataE14QByteArrayViewPKc
_ZN6QImage8scanLineEi
_ZN6QImage8setColorEij
_ZN6QImage9setOffsetERK6QPoint
_ZN6QImageC1ERK5QSizeNS_6FormatE
_ZN6QImageC1ERK7QStringPKc
_ZN6QImageC1ERKS_
_ZN6QImageC1EiiNS_6FormatE
_ZN6QImageC1Ev
_ZN6QImageD1Ev
_ZN6QImageaSERKS_
_ZN7QBitmap8fromDataERK5QSizePKhN6QImage6FormatE
_ZN7QBitmapD1Ev
_ZN7QPixmapD1Ev
_ZN7QRegionC1ERK7QBitmap
_ZN7QRegionC1Ev
_ZN7QRegionD1Ev
_ZN8QPainter10setOpacityEd
_ZN8QPainter11drawEllipseERK6QRectF
_ZN8QPainter11drawPolygonEPK7QPointFiN2Qt8FillRuleE
_ZN8QPainter11setClipRectERK6QRectFN2Qt13ClipOperationE
_ZN8QPainter12drawPolylineEPK7QPointFi
_ZN8QPainter12setTransformERK10QTransformb
_ZN8QPainter13setRenderHintENS_10RenderHintEb
_ZN8QPainter14resetTransformEv
_ZN8QPainter14setRenderHintsE6QFlagsINS_10RenderHintEEb
_ZN8QPainter15drawRoundedRectERK6QRectFddN2Qt8SizeModeE
_ZN8QPainter16staticMetaObjectE
_ZN8QPainter17setWorldTransformERK10QTransformb
_ZN8QPainter18setCompositionModeENS_15CompositionModeE
_ZN8QPainter3endEv
_ZN8QPainter4saveEv
_ZN8QPainter5scaleEdd
_ZN8QPainter6rotateEd
_ZN8QPainter6setPenEN2Qt8PenStyleE
_ZN8QPainter6setPenERK4QPen
_ZN8QPainter7restoreEv
_ZN8QPainter7setFontERK5QFont
_ZN8QPainter8drawPathERK12QPainterPath
_ZN8QPainter8fillPathERK12QPainterPathRK6QBrush
_ZN8QPainter8fillRectERK5QRectRK6QColor
_ZN8QPainter8setBrushEN2Qt10BrushStyleE
_ZN8QPainter8setBrushERK6QBrush
_ZN8QPainter9drawImageERK6QRectFRK6QImageS2_6QFlagsIN2Qt19ImageConversionFlagEE
_ZN8QPainter9drawImageERK7QPointFRK6QImage
_ZN8QPainter9drawLinesEPK6QLineFi
_ZN8QPainter9drawRectsEPK6QRectFi
_ZN8QPainter9setWindowERK5QRect
_ZN8QPainter9translateERK7QPointF
_ZN8QPainterC1EP12QPaintDevice
_ZN8QPainterD1Ev
_ZN9QGradient10setColorAtEdRK6QColor
_ZN9QGradient17setCoordinateModeENS_14CoordinateModeE
_ZN9QGradient20setInterpolationModeENS_17InterpolationModeE
_ZN9QGradient8setStopsERK5QListISt4pairId6QColorEE
_ZN9QGradientD1Ev
_ZN9QPolygonFC1ERK6QRectF
_ZN9QTextLine11setPositionERK7QPointF
_ZN9QTextLine12setLineWidthEd
_ZNK10QTransform3mapERK12QPainterPath
_ZNK10QTransform3mapERK6QPoint
_ZNK10QTransform3mapERK7QPointF
_ZNK10QTransform3mapERK9QPolygonF
_ZNK10QTransform4typeEv
_ZNK10QTransform7mapRectERK6QRectF
_ZNK10QTransform8invertedEPb
_ZNK10QTransformmlERKS_
_ZNK11QTextLayout10textOptionEv
_ZNK11QTextLayout4drawEP8QPainterRK7QPointFRK5QListINS_11FormatRangeEERK6QRectF
_ZNK11QTextLayout6lineAtEi
_ZNK11QTextLayout9lineCountEv
_ZNK12QPaintDevice10redirectedEP6QPoint
_ZNK12QPaintDevice11initPainterEP8QPainter
_ZNK12QPaintDevice13sharedPainterEv
_ZNK12QPaintEngine16coordinateOffsetEv
_ZNK12QPaintEngine7painterEv
_ZNK12QPainterPath12boundingRectEv
_ZNK12QPainterPath12elementCountEv
_ZNK12QPainterPath14angleAtPercentEd
_ZNK12QPainterPath14pointAtPercentEd
_ZNK12QPainterPath16controlPointRectEv
_ZNK12QPainterPath8fillRuleEv
_ZNK12QPainterPath9elementAtEi
_ZNK13QFontMetricsF16averageCharWidthEv
_ZNK13QFontMetricsF6heightEv
_ZNK13QFontMetricsF8maxWidthEv
_ZNK15QLinearGradient5startEv
_ZNK15QLinearGradient9finalStopEv
_ZNK15QRadialGradient10focalPointEv
_ZNK15QRadialGradient6centerEv
_ZNK15QRadialGradient6radiusEv
_ZNK17QPaintEngineState11renderHintsEv
_ZNK17QPaintEngineState13clipOperationEv
_ZNK17QPaintEngineState13isClipEnabledEv
_ZNK17QPaintEngineState3penEv
_ZNK17QPaintEngineState4fontEv
_ZNK17QPaintEngineState5brushEv
_ZNK17QPaintEngineState7opacityEv
_ZNK17QPaintEngineState9transformEv
_ZNK19QPainterPathStroker12createStrokeERK12QPainterPath
_ZNK4QCss5Value8toStringEv
_ZNK4QCss6Symbol5lexemEv
_ZNK4QPen10dashOffsetEv
_ZNK4QPen10isCosmeticEv
_ZNK4QPen10miterLimitEv
_ZNK4QPen11dashPatternEv
_ZNK4QPen5brushEv
_ZNK4QPen5colorEv
_ZNK4QPen5styleEv
_ZNK4QPen5widthEv
_ZNK4QPen6widthFEv
_ZNK4QPen8capStyleEv
_ZNK4QPen9joinStyleEv
_ZNK4QPencv8QVariantEv
_ZNK4QPeneqERKS_
_ZNK5QFont10pointSizeFEv
_ZNK5QFont14capitalizationEv
_ZNK5QFont5styleEv
_ZNK5QFont6familyEv
_ZNK5QFont6weightEv
_ZNK5QFont8familiesEv
_ZNK5QFont9pixelSizeEv
_ZNK5QFont9pointSizeEv
_ZNK6QBrush12textureImageEv
_ZNK6QBrush7textureEv
_ZNK6QBrush8gradientEv
_ZNK6QBrushcv8QVariantEv
_ZNK6QBrusheqERKS_
_ZNK6QColor3redEv
_ZNK6QColor4blueEv
_ZNK6QColor4nameENS_10NameFormatE
_ZNK6QColor4rgbaEv
_ZNK6QColor5alphaEv
_ZNK6QColor5greenEv
_ZNK6QColor6alphaFEv
_ZNK6QImage22convertToFormat_helperENS_6FormatE6QFlagsIN2Qt19ImageConversionFlagEE
_ZNK6QImage4copyERK5QRect
_ZNK6QImage4rectEv
_ZNK6QImage4saveEP9QIODevicePKci
_ZNK6QImage4sizeEv
_ZNK6QImage5depthEv
_ZNK6QImage5widthEv
_ZNK6QImage6formatEv
_ZNK6QImage6heightEv
_ZNK6QImage6isNullEv
_ZNK6QImage6offsetEv
_ZNK6QImage8cacheKeyEv
_ZNK6QImage9constBitsEv
_ZNK7QPixmap7toImageEv
_ZNK7QPixmap9isQBitmapEv
_ZNK7QRegion3endEv
_ZNK7QRegion5beginEv
_ZNK8QPainter11renderHintsEv
_ZNK8QPainter14worldTransformEv
_ZNK8QPainter15compositionModeEv
_ZNK8QPainter3penEv
_ZNK8QPainter4fontEv
_ZNK8QPainter5brushEv
_ZNK8QPainter6deviceEv
_ZNK8QPainter7opacityEv
_ZNK8QPainter8clipPathEv
_ZNK8QPainter9transformEv
_ZNK9QGradient14coordinateModeEv
_ZNK9QGradient17interpolationModeEv
_ZNK9QGradient5stopsEv
_ZNK9QPolygonF12boundingRectEv
_ZNK9QTextItem4fontEv
_ZNK9QTextLine15naturalTextRectEv
_ZNK9QTextLine16naturalTextWidthEv
_ZNK9QTextLine6ascentEv
_ZNK9QTextLine6heightEv
_ZTV19QPaintEnginePrivate
_ZTV6QImage
_Zls6QDebugRK6QImage
qt_inv_premul_factor

Exports

Exports

_ZN10QSvgMarker10drawHelperEPK8QSvgNodeP8QPainterR15QSvgExtraStatesP6QRectF
_ZN10QSvgMarker11drawCommandEP8QPainterR15QSvgExtraStates
_ZN10QSvgMarker18drawMarkersForNodeEP8QSvgNodeP8QPainterR15QSvgExtraStates
_ZN10QSvgMarker20markersBoundsForNodeEPK8QSvgNodeP8QPainterR15QSvgExtraStates
_ZN10QSvgMarkerC1EP8QSvgNode6QRectFS2_7QPointF6QFlagsIN14QSvgSymbolLike19PreserveAspectRatioEENS5_8OverflowENS_11OrientationEdNS_11MarkerUnitsE
_ZN10QSvgMarkerC2EP8QSvgNode6QRectFS2_7QPointF6QFlagsIN14QSvgSymbolLike19PreserveAspectRatioEENS5_8OverflowENS_11OrientationEdNS_11MarkerUnitsE
_ZN10QSvgSwitch11drawCommandEP8QPainterR15QSvgExtraStates
_ZN10QSvgSwitch4initEv
_ZN10QSvgSwitchC1EP8QSvgNode
_ZN10QSvgSwitchC2EP8QSvgNode
_ZN10QSvgSymbol11drawCommandEP8QPainterR15QSvgExtraStates
_ZN10QSvgSymbolC1EP8QSvgNode6QRectFS2_7QPointF6QFlagsIN14QSvgSymbolLike19PreserveAspectRatioEENS5_8OverflowE
_ZN10QSvgSymbolC2EP8QSvgNode6QRectFS2_7QPointF6QFlagsIN14QSvgSymbolLike19PreserveAspectRatioEENS5_8OverflowE
_ZN11QSvgAnimate14setRepeatCountEd
_ZN11QSvgAnimate14setRunningTimeEiiii
_ZN11QSvgAnimate23currentIterTimeFractionEd
_ZN11QSvgAnimateC1Ev
_ZN11QSvgAnimateC2Ev
_ZN11QSvgEllipse11drawCommandEP8QPainterR15QSvgExtraStates
_ZN11QSvgEllipseC1EP8QSvgNodeRK6QRectF
_ZN11QSvgEllipseC2EP8QSvgNodeRK6QRectF
_ZN11QSvgFeFloodC1EP8QSvgNode7QStringS2_RK9QSvgRectFRK6QColor
_ZN11QSvgFeFloodC2EP8QSvgNode7QStringS2_RK9QSvgRectFRK6QColor
_ZN11QSvgFeMergeC1EP8QSvgNode7QStringS2_RK9QSvgRectF
_ZN11QSvgFeMergeC2EP8QSvgNode7QStringS2_RK9QSvgRectF
_ZN11QSvgHandler10charactersE11QStringView
_ZN11QSvgHandler10endElementE11QStringView
_ZN11QSvgHandler10setInStyleEb
_ZN11QSvgHandler12resolveNodesEv
_ZN11QSvgHandler12startElementERK7QStringRK20QXmlStreamAttributes
_ZN11QSvgHandler13pushColorCopyEv
_ZN11QSvgHandler13setAnimPeriodEii
_ZN11QSvgHandler18parseCSStoXMLAttrsERK7QStringP5QListI16QSvgCssAttributeE
_ZN11QSvgHandler19resolvePaintServersEP8QSvgNodei
_ZN11QSvgHandler21processingInstructionERK7QStringS2_
_ZN11QSvgHandler26setDefaultCoordinateSystemENS_10LengthTypeE
_ZN11QSvgHandler4initEv
_ZN11QSvgHandler5parseEv
_ZN11QSvgHandler8popColorEv
_ZN11QSvgHandler9pushColorERK6QColor
_ZN11QSvgHandlerC1EP16QXmlStreamReader6QFlagsIN5QtSvg6OptionEE
_ZN11QSvgHandlerC1EP9QIODevice6QFlagsIN5QtSvg6OptionEE
_ZN11QSvgHandlerC1ERK10QByteArray6QFlagsIN5QtSvg6OptionEE
_ZN11QSvgHandlerC2EP16QXmlStreamReader6QFlagsIN5QtSvg6OptionEE
_ZN11QSvgHandlerC2EP9QIODevice6QFlagsIN5QtSvg6OptionEE
_ZN11QSvgHandlerC2ERK10QByteArray6QFlagsIN5QtSvg6OptionEE
_ZN11QSvgHandlerD1Ev
_ZN11QSvgHandlerD2Ev
_ZN11QSvgPattern12patternImageEP8QPainterR15QSvgExtraStatesPK8QSvgNode
_ZN11QSvgPattern13renderPatternE5QSizedd
_ZN11QSvgPattern25calculateAppliedTransformER10QTransform6QRectF5QSize
_ZN11QSvgPatternC1EP8QSvgNode9QSvgRectF6QRectFN5QtSvg9UnitTypesE10QTransform
_ZN11QSvgPatternC2EP8QSvgNode9QSvgRectF6QRectFN5QtSvg9UnitTypesE10QTransform
_ZN11QSvgPolygon11drawCommandEP8QPainterR15QSvgExtraStates
_ZN11QSvgPolygonC1EP8QSvgNodeRK9QPolygonF
_ZN11QSvgPolygonC2EP8QSvgNodeRK9QPolygonF
_ZN11QSvgVisitor8traverseEPK17QSvgStructureNode
_ZN11QSvgVisitor8traverseEPK8QSvgNode
_ZN12QSvgFeOffsetC1EP8QSvgNode7QStringS2_RK9QSvgRectFdd
_ZN12QSvgFeOffsetC2EP8QSvgNode7QStringS2_RK9QSvgRectFdd
_ZN12QSvgPolyline11drawCommandEP8QPainterR15QSvgExtraStates
_ZN12QSvgPolylineC1EP8QSvgNodeRK9QPolygonF
_ZN12QSvgPolylineC2EP8QSvgNodeRK9QPolygonF
_ZN12QSvgRenderer10setOptionsE6QFlagsIN5QtSvg6OptionEE
_ZN12QSvgRenderer10setViewBoxERK5QRect
_ZN12QSvgRenderer10setViewBoxERK6QRectF
_ZN12QSvgRenderer11qt_metacallEN11QMetaObject4CallEiPPv
_ZN12QSvgRenderer11qt_metacastEPKc
_ZN12QSvgRenderer13repaintNeededEv
_ZN12QSvgRenderer15setCurrentFrameEi
_ZN12QSvgRenderer16staticMetaObjectE
_ZN12QSvgRenderer17setDefaultOptionsE6QFlagsIN5QtSvg6OptionEE
_ZN12QSvgRenderer18qt_static_metacallEP7QObjectN11QMetaObject4CallEiPPv
_ZN12QSvgRenderer18setAspectRatioModeEN2Qt15AspectRatioModeE
_ZN12QSvgRenderer18setFramesPerSecondEi
_ZN12QSvgRenderer19setAnimationEnabledEb
_ZN12QSvgRenderer4loadEP16QXmlStreamReader
_ZN12QSvgRenderer4loadERK10QByteArray
_ZN12QSvgRenderer4loadERK7QString
_ZN12QSvgRenderer6renderEP8QPainter
_ZN12QSvgRenderer6renderEP8QPainterRK6QRectF
_ZN12QSvgRenderer6renderEP8QPainterRK7QStringRK6QRectF
_ZN12QSvgRendererC1EP16QXmlStreamReaderP7QObject
_ZN12QSvgRendererC1EP7QObject
_ZN12QSvgRendererC1ERK10QByteArrayP7QObject
_ZN12QSvgRendererC1ERK7QStringP7QObject
_ZN12QSvgRendererC2EP16QXmlStreamReaderP7QObject
_ZN12QSvgRendererC2EP7QObject
_ZN12QSvgRendererC2ERK10QByteArrayP7QObject
_ZN12QSvgRendererC2ERK7QStringP7QObject
_ZN12QSvgRendererD0Ev
_ZN12QSvgRendererD1Ev
_ZN12QSvgRendererD2Ev
_ZN13QSvgAnimation11drawCommandEP8QPainterR15QSvgExtraStates
_ZN13QSvgFillStyle11setFillRuleEN2Qt8FillRuleE
_ZN13QSvgFillStyle12setFillStyleEP22QSvgPaintStyleProperty
_ZN13QSvgFillStyle14setFillOpacityEd
_ZN13QSvgFillStyle5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN13QSvgFillStyle6revertEP8QPainterR15QSvgExtraStates
_ZN13QSvgFillStyle8setBrushE6QBrush
_ZN13QSvgFillStyleC1Ev
_ZN13QSvgFillStyleC2Ev
_ZN13QSvgFontStyle5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN13QSvgFontStyle6revertEP8QPainterR15QSvgExtraStates
_ZN13QSvgFontStyleC1EP8QSvgFontP16QSvgTinyDocument
_ZN13QSvgFontStyleC1Ev
_ZN13QSvgFontStyleC2EP8QSvgFontP16QSvgTinyDocument
_ZN13QSvgFontStyleC2Ev
_ZN13QSvgGenerator10setViewBoxERK5QRect
_ZN13QSvgGenerator10setViewBoxERK6QRectF
_ZN13QSvgGenerator11setFileNameERK7QString
_ZN13QSvgGenerator13setResolutionEi
_ZN13QSvgGenerator14setDescriptionERK7QString
_ZN13QSvgGenerator15setOutputDeviceEP9QIODevice
_ZN13QSvgGenerator7setSizeERK5QSize
_ZN13QSvgGenerator8setTitleERK7QString
_ZN13QSvgGeneratorC1ENS_10SvgVersionE
_ZN13QSvgGeneratorC1Ev
_ZN13QSvgGeneratorC2ENS_10SvgVersionE
_ZN13QSvgGeneratorC2Ev
_ZN13QSvgGeneratorD0Ev
_ZN13QSvgGeneratorD1Ev
_ZN13QSvgGeneratorD2Ev
_ZN14QSvgSymbolLikeC1EP8QSvgNode6QRectFS2_7QPointF6QFlagsINS_19PreserveAspectRatioEENS_8OverflowE
_ZN14QSvgSymbolLikeC2EP8QSvgNode6QRectFS2_7QPointF6QFlagsINS_19PreserveAspectRatioEENS_8OverflowE
_ZN15QSvgCompOpStyle5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN15QSvgCompOpStyle6revertEP8QPainterR15QSvgExtraStates
_ZN15QSvgCompOpStyleC1EN8QPainter15CompositionModeE
_ZN15QSvgCompOpStyleC2EN8QPainter15CompositionModeE
_ZN15QSvgExtraStatesC1Ev
_ZN15QSvgExtraStatesC2Ev
_ZN15QSvgFeCompositeC1EP8QSvgNode7QStringS2_RK9QSvgRectFS2_NS_8OperatorE9QVector4D
_ZN15QSvgFeCompositeC2EP8QSvgNode7QStringS2_RK9QSvgRectFS2_NS_8OperatorE9QVector4D
_ZN15QSvgFeMergeNodeC1EP8QSvgNode7QStringS2_RK9QSvgRectF
_ZN15QSvgFeMergeNodeC2EP8QSvgNode7QStringS2_RK9QSvgRectF
_ZN15QSvgStrokeStyle12setDashArrayERK5QListIdE
_ZN15QSvgStrokeStyle5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN15QSvgStrokeStyle6revertEP8QPainterR15QSvgExtraStates
_ZN15QSvgStrokeStyleC1Ev
_ZN15QSvgStrokeStyleC2Ev
_ZN16QSvgAnimateColor5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN16QSvgAnimateColor6revertEP8QPainterR15QSvgExtraStates
_ZN16QSvgAnimateColor7setArgsEbRK5QListI6QColorE
_ZN16QSvgAnimateColor9setFreezeEb
_ZN16QSvgAnimateColorC1Ev
_ZN16QSvgAnimateColorC2Ev
_ZN16QSvgOpacityStyle5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN16QSvgOpacityStyle6revertEP8QPainterR15QSvgExtraStates
_ZN16QSvgOpacityStyleC1Ed
_ZN16QSvgOpacityStyleC2Ed
_ZN16QSvgPatternStyle5brushEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN16QSvgPatternStyleC1EP11QSvgPattern
_ZN16QSvgPatternStyleC2EP11QSvgPattern
_ZN16QSvgQualityStyle17setImageRenderingENS_14ImageRenderingE
_ZN16QSvgQualityStyle5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN16QSvgQualityStyle6revertEP8QPainterR15QSvgExtraStates
_ZN16QSvgQualityStyleC1Ei
_ZN16QSvgQualityStyleC2Ei
_ZN16QSvgTinyDocument10addSvgFontEP8QSvgFont
_ZN16QSvgTinyDocument10setViewBoxERK6QRectF
_ZN16QSvgTinyDocument11drawCommandEP8QPainterR15QSvgExtraStates
_ZN16QSvgTinyDocument11isLikelySvgEP9QIODevicePb
_ZN16QSvgTinyDocument11setAnimatedEb
_ZN16QSvgTinyDocument12addNamedNodeERK7QStringP8QSvgNode
_ZN16QSvgTinyDocument13addNamedStyleERK7QStringP22QSvgPaintStyleProperty
_ZN16QSvgTinyDocument15setCurrentFrameEi
_ZN16QSvgTinyDocument16restartAnimationEv
_ZN16QSvgTinyDocument17mapSourceToTargetEP8QPainterRK6QRectFS4_
_ZN16QSvgTinyDocument18setFramesPerSecondEi
_ZN16QSvgTinyDocument22setPreserveAspectRatioEb
_ZN16QSvgTinyDocument4drawEP8QPainter
_ZN16QSvgTinyDocument4drawEP8QPainterRK6QRectF
_ZN16QSvgTinyDocument4drawEP8QPainterRK7QStringRK6QRectF
_ZN16QSvgTinyDocument4loadEP16QXmlStreamReader6QFlagsIN5QtSvg6OptionEE
_ZN16QSvgTinyDocument4loadERK10QByteArray6QFlagsIN5QtSvg6OptionEE
_ZN16QSvgTinyDocument4loadERK7QString6QFlagsIN5QtSvg6OptionEE
_ZN16QSvgTinyDocument8setWidthEib
_ZN16QSvgTinyDocument9setHeightEib
_ZN16QSvgTinyDocumentC1E6QFlagsIN5QtSvg6OptionEE
_ZN16QSvgTinyDocumentC2E6QFlagsIN5QtSvg6OptionEE
_ZN16QSvgTinyDocumentD0Ev
_ZN16QSvgTinyDocumentD1Ev
_ZN16QSvgTinyDocumentD2Ev
_ZN17QSvgFeColorMatrixC1EP8QSvgNode7QStringS2_RK9QSvgRectFNS_14ColorShiftTypeE14QGenericMatrixILi5ELi5EdE
_ZN17QSvgFeColorMatrixC2EP8QSvgNode7QStringS2_RK9QSvgRectFNS_14ColorShiftTypeE14QGenericMatrixILi5ELi5EdE
_ZN17QSvgFeUnsupportedC1EP8QSvgNode7QStringS2_RK9QSvgRectF
_ZN17QSvgFeUnsupportedC2EP8QSvgNode7QStringS2_RK9QSvgRectF
_ZN17QSvgGradientStyle11setStopLinkERK7QStringP16QSvgTinyDocument
_ZN17QSvgGradientStyle12resolveStopsEv
_ZN17QSvgGradientStyle12setTransformERK10QTransform
_ZN17QSvgGradientStyle19resolveStops_helperEP5QListI7QStringE
_ZN17QSvgGradientStyle5brushEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN17QSvgGradientStyleC1EP9QGradient
_ZN17QSvgGradientStyleC2EP9QGradient
_ZN17QSvgStructureNode8addChildEP8QSvgNodeRK7QString
_ZN17QSvgStructureNodeC1EP8QSvgNode
_ZN17QSvgStructureNodeC2EP8QSvgNode
_ZN17QSvgStructureNodeD0Ev
_ZN17QSvgStructureNodeD1Ev
_ZN17QSvgStructureNodeD2Ev
_ZN17QSvgStylePropertyD0Ev
_ZN17QSvgStylePropertyD1Ev
_ZN17QSvgStylePropertyD2Ev
_ZN18QSvgFeGaussianBlurC1EP8QSvgNode7QStringS2_RK9QSvgRectFddNS_8EdgeModeE
_ZN18QSvgFeGaussianBlurC2EP8QSvgNode7QStringS2_RK9QSvgRectFddNS_8EdgeModeE
_ZN18QSvgTransformStyle5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN18QSvgTransformStyle6revertEP8QPainterR15QSvgExtraStates
_ZN18QSvgTransformStyleC1ERK10QTransform
_ZN18QSvgTransformStyleC2ERK10QTransform
_ZN19QSvgFilterContainer12setSupportedEb
_ZN19QSvgFilterContainerC1EP8QSvgNodeRK9QSvgRectFN5QtSvg9UnitTypesES6_
_ZN19QSvgFilterContainerC2EP8QSvgNodeRK9QSvgRectFN5QtSvg9UnitTypesES6_
_ZN19QSvgSolidColorStyleC1ERK6QColor
_ZN19QSvgSolidColorStyleC2ERK6QColor
_ZN20QSvgAnimateTransform13resolveMatrixEPK8QSvgNode
_ZN20QSvgAnimateTransform5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN20QSvgAnimateTransform6revertEP8QPainterR15QSvgExtraStates
_ZN20QSvgAnimateTransform7setArgsENS_13TransformTypeENS_8AdditiveERK5QListIdE
_ZN20QSvgAnimateTransform9setFreezeEb
_ZN20QSvgAnimateTransformC1Ev
_ZN20QSvgAnimateTransformC2Ev
_ZN21QSvgFeFilterPrimitive21castToFilterPrimitiveEPK8QSvgNode
_ZN21QSvgFeFilterPrimitiveC1EP8QSvgNode7QStringS2_RK9QSvgRectF
_ZN21QSvgFeFilterPrimitiveC2EP8QSvgNode7QStringS2_RK9QSvgRectF
_ZN21QSvgViewportFillStyle5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN21QSvgViewportFillStyle6revertEP8QPainterR15QSvgExtraStates
_ZN21QSvgViewportFillStyleC1ERK6QBrush
_ZN21QSvgViewportFillStyleC2ERK6QBrush
_ZN22QSvgPaintStyleProperty5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN22QSvgPaintStyleProperty6revertEP8QPainterR15QSvgExtraStates
_ZN5QSvgG11drawCommandEP8QPainterR15QSvgExtraStates
_ZN5QSvgGC1EP8QSvgNode
_ZN5QSvgGC2EP8QSvgNode
_ZN8QSvgDefsC1EP8QSvgNode
_ZN8QSvgDefsC2EP8QSvgNode
_ZN8QSvgFont13setFamilyNameERK7QString
_ZN8QSvgFont13setUnitsPerEmEd
_ZN8QSvgFont8addGlyphE5QCharRK12QPainterPathd
_ZN8QSvgFontC1Ed
_ZN8QSvgFontC2Ed
_ZN8QSvgLine11drawCommandEP8QPainterR15QSvgExtraStates
_ZN8QSvgLineC1EP8QSvgNodeRK6QLineF
_ZN8QSvgLineC2EP8QSvgNodeRK6QLineF
_ZN8QSvgMaskC1EP8QSvgNode9QSvgRectFN5QtSvg9UnitTypesE
_ZN8QSvgMaskC2EP8QSvgNode9QSvgRectFN5QtSvg9UnitTypesE
_ZN8QSvgNode10setVisibleEb
_ZN8QSvgNode11initPainterEP8QPainter
_ZN8QSvgNode11setFilterIdERK7QString
_ZN8QSvgNode11setXmlClassERK7QString
_ZN8QSvgNode11strokeWidthEP8QPainter
_ZN8QSvgNode12drawWithMaskEP8QPainterR15QSvgExtraStatesRK6QImageRK5QRect
_ZN8QSvgNode14boundsOnStrokeEP8QPainterRK12QPainterPathdNS_10BoundsModeE
_ZN8QSvgNode14drawIntoBufferEP8QPainterR15QSvgExtraStatesRK5QRect
_ZN8QSvgNode14fillThenStrokeEP8QPainterR15QSvgExtraStates
_ZN8QSvgNode14setDisplayModeENS_11DisplayModeE
_ZN8QSvgNode14setMarkerEndIdERK7QString
_ZN8QSvgNode14setMarkerMidIdERK7QString
_ZN8QSvgNode16setMarkerStartIdERK7QString
_ZN8QSvgNode16setRequiredFontsERK5QListI7QStringE
_ZN8QSvgNode18setRequiredFormatsERK5QListI7QStringE
_ZN8QSvgNode19appendStylePropertyEP17QSvgStylePropertyRK7QString
_ZN8QSvgNode19setRequiredFeaturesERK5QListI7QStringE
_ZN8QSvgNode20setRequiredLanguagesERK5QListI7QStringE
_ZN8QSvgNode21setRequiredExtensionsERK5QListI7QStringE
_ZN8QSvgNode4drawEP8QPainterR15QSvgExtraStates
_ZN8QSvgNode9setMaskIdERK7QString
_ZN8QSvgNode9setNodeIdERK7QString
_ZN8QSvgNodeC1EPS_
_ZN8QSvgNodeC2EPS_
_ZN8QSvgNodeD0Ev
_ZN8QSvgNodeD1Ev
_ZN8QSvgNodeD2Ev
_ZN8QSvgPath11drawCommandEP8QPainterR15QSvgExtraStates
_ZN8QSvgPathC1EP8QSvgNodeRK12QPainterPath
_ZN8QSvgPathC2EP8QSvgNodeRK12QPainterPath
_ZN8QSvgRect11drawCommandEP8QPainterR15QSvgExtraStates
_ZN8QSvgRectC1EP8QSvgNodeRK6QRectFdd
_ZN8QSvgRectC2EP8QSvgNodeRK6QRectFdd
_ZN8QSvgText11drawCommandEP8QPainterR15QSvgExtraStates
_ZN8QSvgText11setTextAreaERK6QSizeF
_ZN8QSvgText7addTextERK7QString
_ZN8QSvgText9LINEBREAKE
_ZN8QSvgTextC1EP8QSvgNodeRK7QPointF
_ZN8QSvgTextC2EP8QSvgNodeRK7QPointF
_ZN8QSvgTextD0Ev
_ZN8QSvgTextD1Ev
_ZN8QSvgTextD2Ev
_ZN9QSvgGlyphC1E5QCharRK12QPainterPathd
_ZN9QSvgGlyphC2E5QCharRK12QPainterPathd
_ZN9QSvgImage11drawCommandEP8QPainterR15QSvgExtraStates
_ZN9QSvgImageC1EP8QSvgNodeRK6QImageRK7QStringRK6QRectF
_ZN9QSvgImageC2EP8QSvgNodeRK6QImageRK7QStringRK6QRectF
_ZN9QSvgStyle5applyEP8QPainterPK8QSvgNodeR15QSvgExtraStates
_ZN9QSvgStyle6revertEP8QPainterR15QSvgExtraStates
_ZN9QSvgStyleD1Ev
_ZN9QSvgStyleD2Ev
_ZNK10QSvgCircle4typeEv
_ZNK10QSvgMarker4typeEv
_ZNK10QSvgSwitch13childToRenderEv
_ZNK10QSvgSwitch4typeEv
_ZNK10QSvgSymbol4typeEv
_ZNK11QSvgAnimate4lerpEddd
_ZNK11QSvgEllipse14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK11QSvgEllipse18internalFastBoundsEP8QPainterR15QSvgExtraStates
_ZNK11QSvgEllipse18separateFillStrokeEv
_ZNK11QSvgEllipse23decoratedInternalBoundsEP8QPainterR15QSvgExtraStates
_ZNK11QSvgEllipse4typeEv
_ZNK11QSvgFeFlood4typeEv
_ZNK11QSvgFeFlood5applyERK4QMapI7QString6QImageEP8QPainterRK6QRectFSA_N5QtSvg9UnitTypesESC_
_ZNK11QSvgFeMerge19requiresSourceAlphaEv
_ZNK11QSvgFeMerge4typeEv
_ZNK11QSvgFeMerge5applyERK4QMapI7QString6QImageEP8QPainterRK6QRectFSA_N5QtSvg9UnitTypesESC_
_ZNK11QSvgHandler12currentColorEv
_ZNK11QSvgHandler17animationDurationEv
_ZNK11QSvgHandler17trustedSourceModeEv
_ZNK11QSvgHandler23defaultCoordinateSystemEv
_ZNK11QSvgHandler6deviceEv
_ZNK11QSvgHandler7inStyleEv
_ZNK11QSvgHandler7optionsEv
_ZNK11QSvgHandler8documentEv
_ZNK11QSvgHandler8selectorEv
_ZNK11QSvgPattern14shouldDrawNodeEP8QPainterR15QSvgExtraStates
_ZNK11QSvgPattern4typeEv
_ZNK11QSvgPolygon14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK11QSvgPolygon14internalBoundsEP8QPainterR15QSvgExtraStatesN8QSvgNode10BoundsModeE
_ZNK11QSvgPolygon18internalFastBoundsEP8QPainterR15QSvgExtraStates
_ZNK11QSvgPolygon18separateFillStrokeEv
_ZNK11QSvgPolygon22requiresGroupRenderingEv
_ZNK11QSvgPolygon23decoratedInternalBoundsEP8QPainterR15QSvgExtraStates
_ZNK11QSvgPolygon4typeEv
_ZNK12QSvgFeOffset4typeEv
_ZNK12QSvgFeOffset5applyERK4QMapI7QString6QImageEP8QPainterRK6QRectFSA_N5QtSvg9UnitTypesESC_
_ZNK12QSvgPolyline14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK12QSvgPolyline14internalBoundsEP8QPainterR15QSvgExtraStatesN8QSvgNode10BoundsModeE
_ZNK12QSvgPolyline18internalFastBoundsEP8QPainterR15QSvgExtraStates
_ZNK12QSvgPolyline18separateFillStrokeEv
_ZNK12QSvgPolyline22requiresGroupRenderingEv
_ZNK12QSvgPolyline23decoratedInternalBoundsEP8QPainterR15QSvgExtraStates
_ZNK12QSvgPolyline4typeEv
_ZNK12QSvgRenderer10metaObjectEv
_ZNK12QSvgRenderer11defaultSizeEv
_ZNK12QSvgRenderer12currentFrameEv
_ZNK12QSvgRenderer13elementExistsERK7QString
_ZNK12QSvgRenderer15aspectRatioModeEv
_ZNK12QSvgRenderer15boundsOnElementERK7QString
_ZNK12QSvgRenderer15framesPerSecondEv
_ZNK12QSvgRenderer17animationDurationEv
_ZNK12QSvgRenderer18isAnimationEnabledEv
_ZNK12QSvgRenderer19transformForElementERK7QString
_ZNK12QSvgRenderer7isValidEv
_ZNK12QSvgRenderer7optionsEv
_ZNK12QSvgRenderer7viewBoxEv
_ZNK12QSvgRenderer8animatedEv
_ZNK12QSvgRenderer8viewBoxFEv
_ZNK13QSvgAnimation4typeEv
_ZNK13QSvgFillStyle4typeEv
_ZNK13QSvgFontStyle4typeEv
_ZNK13QSvgGenerator10resolutionEv
_ZNK13QSvgGenerator10svgVersionEv
_ZNK13QSvgGenerator11descriptionEv
_ZNK13QSvgGenerator11paintEngineEv
_ZNK13QSvgGenerator12outputDeviceEv
_ZNK13QSvgGenerator4sizeEv
_ZNK13QSvgGenerator5titleEv
_ZNK13QSvgGenerator6metricEN12QPaintDevice17PaintDeviceMetricE
_ZNK13QSvgGenerator7viewBoxEv
_ZNK13QSvgGenerator8fileNameEv
_ZNK13QSvgGenerator8viewBoxFEv
_ZNK14QSvgSymbolLike22requiresGroupRenderingEv
_ZNK14QSvgSymbolLike23decoratedInternalBoundsEP8QPainterR15QSvgExtraStates
_ZNK14QSvgSymbolLike29setPainterToRectAndAdjustmentEP8QPainter
_ZNK15QSvgCompOpStyle4typeEv
_ZNK15QSvgFeComposite19requiresSourceAlphaEv
_ZNK15QSvgFeComposite4typeEv
_ZNK15QSvgFeComposite5applyERK4QMapI7QString6QImageEP8QPainterRK6QRectFSA_N5QtSvg9UnitTypesESC_
_ZNK15QSvgFeMergeNode4typeEv
_ZNK15QSvgFeMergeNode5applyERK4QMapI7QString6QImageEP8QPainterRK6QRectFSA_N5QtSvg9UnitTypesESC_
_ZNK15QSvgStrokeStyle4typeEv
_ZNK16QSvgAnimateColor4typeEv
_ZNK16QSvgOpacityStyle4typeEv
_ZNK16QSvgPatternStyle4typeEv
_ZNK16QSvgQualityStyle4typeEv
_ZNK16QSvgTinyDocument10namedStyleERK7QString
_ZNK16QSvgTinyDocument12currentFrameEv
_ZNK16QSvgTinyDocument13elementExistsERK7QString
_ZNK16QSvgTinyDocument15boundsOnElementERK7QString
_ZNK16QSvgTinyDocument19transformForElementERK7QString
_ZNK16QSvgTinyDocument4typeEv
_ZNK16QSvgTinyDocument7optionsEv
_ZNK16QSvgTinyDocument7svgFontERK7QString
_ZNK16QSvgTinyDocument8animatedEv
_ZNK16QSvgTinyDocument9namedNodeERK7QString
_ZNK17QSvgFeColorMatrix4typeEv
_ZNK17QSvgFeColorMatrix5applyERK4QMapI7QString6QImageEP8QPainterRK6QRectFSA_N5QtSvg9UnitTypesESC_
_ZNK17QSvgFeUnsupported4typeEv
_ZNK17QSvgFeUnsupported5applyERK4QMapI7QString6QImageEP8QPainterRK6QRectFSA_N5QtSvg9UnitTypesESC_
_ZNK17QSvgGradientStyle4typeEv
_ZNK17QSvgStructureNode14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK17QSvgStructureNode19previousSiblingNodeEP8QSvgNode
_ZNK17QSvgStructureNode23decoratedInternalBoundsEP8QPainterR15QSvgExtraStates
_ZNK17QSvgStructureNode9scopeNodeERK7QString
_ZNK18QSvgFeGaussianBlur4typeEv
_ZNK18QSvgFeGaussianBlur5applyERK4QMapI7QString6QImageEP8QPainterRK6QRectFSA_N5QtSvg9UnitTypesESC_
_ZNK18QSvgTransformStyle4typeEv
_ZNK19QSvgFilterContainer11applyFilterERK6QImageP8QPainterRK6QRectF
_ZNK19QSvgFilterContainer12filterRegionERK6QRectF
_ZNK19QSvgFilterContainer14shouldDrawNodeEP8QPainterR15QSvgExtraStates
_ZNK19QSvgFilterContainer4typeEv
_ZNK19QSvgFilterContainer9supportedEv
_ZNK19QSvgSolidColorStyle4typeEv
_ZNK20QSvgAnimateTransform4typeEv
_ZNK21QSvgFeFilterPrimitive14localSubRegionERK6QRectFS2_N5QtSvg9UnitTypesES4_
_ZNK21QSvgFeFilterPrimitive14shouldDrawNodeEP8QPainterR15QSvgExtraStates
_ZNK21QSvgFeFilterPrimitive15globalSubRegionEP8QPainterRK6QRectFS4_N5QtSvg9UnitTypesES6_
_ZNK21QSvgFeFilterPrimitive19requiresSourceAlphaEv
_ZNK21QSvgFeFilterPrimitive23clipToTransformedBoundsEP6QImageP8QPainterRK6QRectF
_ZNK21QSvgViewportFillStyle4typeEv
_ZNK5QSvgG14shouldDrawNodeEP8QPainterR15QSvgExtraStates
_ZNK5QSvgG22requiresGroupRenderingEv
_ZNK5QSvgG4typeEv
_ZNK8QSvgDefs14shouldDrawNodeEP8QPainterR15QSvgExtraStates
_ZNK8QSvgDefs4typeEv
_ZNK8QSvgFont10familyNameEv
_ZNK8QSvgFont11draw_helperEP8QPainterRK7QPointFRK7QStringd6QFlagsIN2Qt13AlignmentFlagEEP6QRectF
_ZNK8QSvgFont12boundingRectEP8QPainterRK7QPointFRK7QStringd6QFlagsIN2Qt13AlignmentFlagEE
_ZNK8QSvgFont4drawEP8QPainterRK7QPointFRK7QStringd6QFlagsIN2Qt13AlignmentFlagEE
_ZNK8QSvgLine14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgLine14internalBoundsEP8QPainterR15QSvgExtraStatesN8QSvgNode10BoundsModeE
_ZNK8QSvgLine18internalFastBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgLine22requiresGroupRenderingEv
_ZNK8QSvgLine23decoratedInternalBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgLine4typeEv
_ZNK8QSvgMask10createMaskEP8QPainterR15QSvgExtraStatesP8QSvgNodeP6QRectF
_ZNK8QSvgMask10createMaskEP8QPainterR15QSvgExtraStatesRK6QRectFPS4_
_ZNK8QSvgMask14shouldDrawNodeEP8QPainterR15QSvgExtraStates
_ZNK8QSvgMask4typeEv
_ZNK8QSvgNode10applyStyleEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode11displayModeEv
_ZNK8QSvgNode11markerEndIdEv
_ZNK8QSvgNode11markerMidIdEv
_ZNK8QSvgNode11revertStyleEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode12filterRegionE6QRectF
_ZNK8QSvgNode12hasAnyMarkerEv
_ZNK8QSvgNode12hasMarkerEndEv
_ZNK8QSvgNode12hasMarkerMidEv
_ZNK8QSvgNode13markerStartIdEv
_ZNK8QSvgNode13requiredFontsEv
_ZNK8QSvgNode13stylePropertyEN17QSvgStyleProperty4TypeE
_ZNK8QSvgNode13stylePropertyERK7QString
_ZNK8QSvgNode14hasMarkerStartEv
_ZNK8QSvgNode14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode14isDescendantOfEPKS_
_ZNK8QSvgNode14shouldDrawNodeEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode15decoratedBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode15requiredFormatsEv
_ZNK8QSvgNode16requiredFeaturesEv
_ZNK8QSvgNode17applyMaskToBufferEP6QImageS0_
_ZNK8QSvgNode17requiredLanguagesEv
_ZNK8QSvgNode18internalFastBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode18requiredExtensionsEv
_ZNK8QSvgNode19applyBufferToCanvasEP8QPainter6QImage
_ZNK8QSvgNode19applyStyleRecursiveEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode20revertStyleRecursiveEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode22requiresGroupRenderingEv
_ZNK8QSvgNode23decoratedInternalBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode6boundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgNode6boundsEv
_ZNK8QSvgNode6maskIdEv
_ZNK8QSvgNode7hasMaskEv
_ZNK8QSvgNode8documentEv
_ZNK8QSvgNode8filterIdEv
_ZNK8QSvgNode8typeNameEv
_ZNK8QSvgNode9hasFilterEv
_ZNK8QSvgPath14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgPath18internalFastBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgPath18separateFillStrokeEv
_ZNK8QSvgPath22requiresGroupRenderingEv
_ZNK8QSvgPath23decoratedInternalBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgPath4typeEv
_ZNK8QSvgRect14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgRect14internalBoundsEP8QPainterR15QSvgExtraStatesN8QSvgNode10BoundsModeE
_ZNK8QSvgRect18internalFastBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgRect18separateFillStrokeEv
_ZNK8QSvgRect23decoratedInternalBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgRect4typeEv
_ZNK8QSvgText11draw_helperEP8QPainterR15QSvgExtraStatesP6QRectF
_ZNK8QSvgText14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgText14shouldDrawNodeEP8QPainterR15QSvgExtraStates
_ZNK8QSvgText18internalFastBoundsEP8QPainterR15QSvgExtraStates
_ZNK8QSvgText4typeEv
_ZNK9QSvgImage14internalBoundsEP8QPainterR15QSvgExtraStates
_ZNK9QSvgImage4typeEv
_ZTI10QSvgCircle
_ZTI10QSvgMarker
_ZTI10QSvgSwitch
_ZTI10QSvgSymbol
_ZTI11QSvgAnimate
_ZTI11QSvgEllipse
_ZTI11QSvgFeFlood
_ZTI11QSvgFeMerge

Sections

.text
Size: 412KB - Virtual size: 411KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 608B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
manual/libwinpthread-1.dll
.dll windows:4 windows x64 arch:x64

fea7be972a0bb7dd20cc26160803dae6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

AddVectoredExceptionHandler
CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
FileTimeToSystemTime
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetHandleInformation
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetProcessTimes
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
GetThreadContext
GetThreadPriority
GetThreadTimes
GetTickCount64
InitializeCriticalSection
IsDebuggerPresent
LeaveCriticalSection
OpenProcess
OutputDebugStringA
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReleaseSemaphore
RemoveVectoredExceptionHandler
ResetEvent
ResumeThread
SetEvent
SetLastError
SetProcessAffinityMask
SetSystemTime
SetThreadContext
SetThreadPriority
Sleep
SuspendThread
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject

msvcrt

__C_specific_handler
__iob_func
_amsg_exit
_beginthreadex
_endthreadex
_errno
_initterm
_lock
_setjmp
_ultoa
_unlock
abort
calloc
exit
fprintf
free
fwrite
longjmp
malloc
memmove
memset
printf
realloc
signal
strlen
strncmp
vfprintf
_strdup

Exports

Exports

__pth_gpointer_locked
__pthread_clock_nanosleep
_pthread_cleanup_dest
_pthread_get_state
_pthread_invoke_cancel
_pthread_key_dest
_pthread_rel_time_in_ms
_pthread_set_state
_pthread_time_in_ms
_pthread_time_in_ms_from_timespec
_pthread_tryjoin
clock_getres
clock_gettime
clock_nanosleep
clock_settime
nanosleep
pthread_attr_destroy
pthread_attr_getdetachstate
pthread_attr_getinheritsched
pthread_attr_getschedparam
pthread_attr_getschedpolicy
pthread_attr_getscope
pthread_attr_getstack
pthread_attr_getstackaddr
pthread_attr_getstacksize
pthread_attr_init
pthread_attr_setdetachstate
pthread_attr_setinheritsched
pthread_attr_setschedparam
pthread_attr_setschedpolicy
pthread_attr_setscope
pthread_attr_setstack
pthread_attr_setstackaddr
pthread_attr_setstacksize
pthread_barrier_destroy
pthread_barrier_init
pthread_barrier_wait
pthread_barrierattr_destroy
pthread_barrierattr_getpshared
pthread_barrierattr_init
pthread_barrierattr_setpshared
pthread_cancel
pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_init
pthread_cond_signal
pthread_cond_timedwait
pthread_cond_timedwait_relative_np
pthread_cond_wait
pthread_condattr_destroy
pthread_condattr_getclock
pthread_condattr_getpshared
pthread_condattr_init
pthread_condattr_setclock
pthread_condattr_setpshared
pthread_create
pthread_create_wrapper
pthread_delay_np
pthread_detach
pthread_equal
pthread_exit
pthread_get_concurrency
pthread_getclean
pthread_getconcurrency
pthread_getevent
pthread_gethandle
pthread_getname_np
pthread_getschedparam
pthread_getspecific
pthread_join
pthread_key_create
pthread_key_delete
pthread_kill
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_timedlock
pthread_mutex_trylock
pthread_mutex_unlock
pthread_mutexattr_destroy
pthread_mutexattr_getprioceiling
pthread_mutexattr_getprotocol
pthread_mutexattr_getpshared
pthread_mutexattr_gettype
pthread_mutexattr_init
pthread_mutexattr_setprioceiling
pthread_mutexattr_setprotocol
pthread_mutexattr_setpshared
pthread_mutexattr_settype
pthread_num_processors_np
pthread_once
pthread_rwlock_destroy
pthread_rwlock_init
pthread_rwlock_rdlock
pthread_rwlock_timedrdlock
pthread_rwlock_timedwrlock
pthread_rwlock_tryrdlock
pthread_rwlock_trywrlock
pthread_rwlock_unlock
pthread_rwlock_wrlock
pthread_rwlockattr_destroy
pthread_rwlockattr_getpshared
pthread_rwlockattr_init
pthread_rwlockattr_setpshared
pthread_self
pthread_set_concurrency
pthread_set_num_processors_np
pthread_setcancelstate
pthread_setcanceltype
pthread_setconcurrency
pthread_setname_np
pthread_setschedparam
pthread_setspecific
pthread_spin_destroy
pthread_spin_init
pthread_spin_lock
pthread_spin_trylock
pthread_spin_unlock
pthread_testcancel
pthread_timechange_handler_np
pthread_tls_init
sched_get_priority_max
sched_get_priority_min
sched_getscheduler
sched_setscheduler
sched_yield
sem_close
sem_destroy
sem_getvalue
sem_init
sem_open
sem_post
sem_post_multiple
sem_timedwait
sem_trywait
sem_unlink
sem_wait

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 400B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mprext.dll
.dll windows:10 windows x64 arch:x64

8c4eb7a549c77fac0467b83cebc5d650

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

mprext.pdb

Imports

ntdll

__C_specific_handler
RtlLookupFunctionEntry
swprintf_s
wcscat_s
RtlUpcaseUnicodeChar
RtlCaptureContext
RtlVirtualUnwind
memset

api-ms-win-core-libraryloader-l1-2-0

LoadStringW
DisableThreadLibraryCalls

api-ms-win-core-errorhandling-l1-1-0

UnhandledExceptionFilter
GetLastError
SetUnhandledExceptionFilter
SetLastError

api-ms-win-core-localization-l1-2-0

FormatMessageW

api-ms-win-core-heap-l2-1-0

LocalFree
LocalAlloc

api-ms-win-core-synch-l1-1-0

SetEvent

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-0

GetCurrentProcess
TerminateProcess
GetCurrentThreadId
GetCurrentProcessId

api-ms-win-core-sysinfo-l1-1-0

GetTickCount
GetSystemTimeAsFileTime

api-ms-win-core-delayload-l1-1-1

ResolveDelayLoadedAPI

api-ms-win-core-delayload-l1-1-0

DelayLoadFailureHook

Exports

Exports

DoBroadcastSystemMessageWorker
DoCommandLinePromptWorker
DoPasswordDialogWorker
DoProfileErrorDialogWorker
ShowReconnectDialogEndWorker
ShowReconnectDialogUIWorker
ShowReconnectDialogWorker
WNetConnectionDialog1WWorker
WNetConnectionDialogWorker
WNetDisconnectDialog1WWorker
WNetDisconnectDialogWorker

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msidle.dll
.dll windows:10 windows x64 arch:x64

14fd2ad264e565ddd6fbeaa5eeae6e57

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

msidle.pdb

Imports

msvcrt

__C_specific_handler
_amsg_exit
_initterm
malloc
free
_XcptFilter

api-ms-win-core-threadpool-l1-2-0

SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolTimer

api-ms-win-core-errorhandling-l1-1-0

UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetLastError

api-ms-win-core-libraryloader-l1-2-0

DisableThreadLibraryCalls

api-ms-win-core-sysinfo-l1-1-0

GetTickCount
GetSystemTimeAsFileTime

api-ms-win-core-synch-l1-2-0

Sleep

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-0

GetCurrentProcess
GetCurrentProcessId
TerminateProcess
GetCurrentThreadId

api-ms-win-core-rtlsupport-l1-1-0

RtlVirtualUnwind
RtlCaptureContext
RtlLookupFunctionEntry

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msidntld.dll
.dll windows:10 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.rdata
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
mssmp3.asi
.dll windows:5 windows x86 arch:x86

eb47f3eba69cd506a684fe741aa6a115

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\devel\projects\mss\build\win\mssmp3.pdb

Imports

user32

GetCursorPos
MessageBoxA

kernel32

DisableThreadLibraryCalls
TerminateProcess
GetCurrentProcess
GetTickCount

Exports

Exports

_IggyAudioGetMP3Decoder@0
_RIB_Main@20
_miles_mp3_close@4
_miles_mp3_getdata@16
_miles_mp3_open@20

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mssvoice.asi
.dll windows:5 windows x86 arch:x86

244b9cd72a14e84ff437d70121ef4a41

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\devel\projects\mss\build\win\mssvoice.pdb

Imports

user32

GetCursorPos

kernel32

DisableThreadLibraryCalls
GetTickCount
GlobalAlloc
GlobalFree

mss32

_AIL_mem_free_lock@4
_RIB_alloc_provider_handle@4
_AIL_mem_alloc_lock_info@12

Exports

Exports

_RIB_Main@20

Sections

.text
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

CODE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcr100.dll
.dll windows:5 windows x86 arch:x86

5271d5ce8b44dd47bc92563e27585466

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21/02/2011, 20:53

Not After

21/05/2012, 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2008, 19:02

Not After

25/07/2013, 19:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

8d:91:f0:a3:ff:41:70:8c:67:d0:ba:79:6d:52:da:88:0c:59:23:cc
Signer

Actual PE Digest

8d:91:f0:a3:ff:41:70:8c:67:d0:ba:79:6d:52:da:88:0c:59:23:cc

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr100.i386.pdb

Imports

kernel32

EncodePointer
DecodePointer
RaiseException
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetCurrentThreadId
TlsGetValue
GetCommandLineW
GetCommandLineA
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitThread
CloseHandle
GetLastError
ResumeThread
CreateThread
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
FindNextFileA
FindFirstFileExA
FindClose
FindNextFileW
FindFirstFileExW
GetLogicalDrives
GetDiskFreeSpaceA
FileTimeToSystemTime
FileTimeToLocalFileTime
SetErrorMode
Sleep
Beep
GetFileAttributesA
SetFileAttributesA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetCurrentDirectoryW
SetCurrentDirectoryW
GetFullPathNameA
GetDriveTypeW
GetCurrentProcessId
CreateDirectoryA
MoveFileA
RemoveDirectoryA
GetDriveTypeA
DeleteFileA
GetFileAttributesW
SetEnvironmentVariableW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
MoveFileW
RemoveDirectoryW
DeleteFileW
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
LoadLibraryA
FreeLibrary
CreateProcessW
ReadFile
DuplicateHandle
GetCurrentProcess
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetLocalTime
WideCharToMultiByte
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetLocalTime
InterlockedPopEntrySList
InterlockedFlushSList
QueryDepthSList
InterlockedPushEntrySList
CreateTimerQueue
CreateTimerQueueTimer
DeleteTimerQueueTimer
SetEvent
CreateEventW
SwitchToThread
SignalObjectAndWait
TryEnterCriticalSection
GetTickCount
VirtualFree
GetVersionExW
SetThreadPriority
VirtualAlloc
GetSystemInfo
GetProcessAffinityMask
VirtualProtect
SetThreadAffinityMask
InitializeSListHead
ReleaseSemaphore
CreateSemaphoreW
WaitForMultipleObjects
GetThreadPriority
LoadLibraryW
SleepEx
OutputDebugStringW
FreeLibraryAndExitThread
GetModuleHandleA
GetThreadTimes
DebugBreak
MultiByteToWideChar
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeFormatA
GetDateFormatA
GetTimeFormatW
GetDateFormatW
RtlUnwind
HeapAlloc
HeapFree
HeapCreate
HeapDestroy
HeapQueryInformation
HeapReAlloc
HeapSize
HeapValidate
HeapCompact
HeapWalk
VirtualQuery
SetHandleCount
GetFileType
GetStartupInfoW
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
CreateFileW
SetFilePointer
GetConsoleCP
GetConsoleMode
FlushFileBuffers
CreatePipe
SetStdHandle
ReadConsoleInputA
SetConsoleMode
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
WriteConsoleW
ReadConsoleW
SetEndOfFile
GetProcessHeap
InterlockedExchange
LockFile
UnlockFile
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
SetConsoleCtrlHandler
GetLocaleInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
LCMapStringW
CompareStringW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsProcessorFeaturePresent

Exports

Exports

$I10_OUTPUT
??0?$_SpinWait@$00@details@Concurrency@@QAE@P6AXXZ@Z
??0?$_SpinWait@$0A@@details@Concurrency@@QAE@P6AXXZ@Z
??0SchedulerPolicy@Concurrency@@QAA@IZZ
??0SchedulerPolicy@Concurrency@@QAE@ABV01@@Z
??0SchedulerPolicy@Concurrency@@QAE@XZ
??0_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ
??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_ReaderWriterLock@details@Concurrency@@QAE@XZ
??0_ReentrantBlockingLock@details@Concurrency@@QAE@XZ
??0_ReentrantLock@details@Concurrency@@QAE@XZ
??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_SpinLock@details@Concurrency@@QAE@ACJ@Z
??0_TaskCollection@details@Concurrency@@QAE@XZ
??0_Timer@details@Concurrency@@IAE@I_N@Z
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0__non_rtti_object@std@@QAE@PBD@Z
??0bad_cast@std@@AAE@PBQBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_target@Concurrency@@QAE@PBD@Z
??0bad_target@Concurrency@@QAE@XZ
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0context_self_unblock@Concurrency@@QAE@PBD@Z
??0context_self_unblock@Concurrency@@QAE@XZ
??0context_unblock_unbalanced@Concurrency@@QAE@PBD@Z
??0context_unblock_unbalanced@Concurrency@@QAE@XZ
??0critical_section@Concurrency@@QAE@XZ
??0default_scheduler_exists@Concurrency@@QAE@PBD@Z
??0default_scheduler_exists@Concurrency@@QAE@XZ
??0event@Concurrency@@QAE@XZ
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??0improper_lock@Concurrency@@QAE@PBD@Z
??0improper_lock@Concurrency@@QAE@XZ
??0improper_scheduler_attach@Concurrency@@QAE@PBD@Z
??0improper_scheduler_attach@Concurrency@@QAE@XZ
??0improper_scheduler_detach@Concurrency@@QAE@PBD@Z
??0improper_scheduler_detach@Concurrency@@QAE@XZ
??0improper_scheduler_reference@Concurrency@@QAE@PBD@Z
??0improper_scheduler_reference@Concurrency@@QAE@XZ
??0invalid_link_target@Concurrency@@QAE@PBD@Z
??0invalid_link_target@Concurrency@@QAE@XZ
??0invalid_multiple_scheduling@Concurrency@@QAE@PBD@Z
??0invalid_multiple_scheduling@Concurrency@@QAE@XZ
??0invalid_operation@Concurrency@@QAE@PBD@Z
??0invalid_operation@Concurrency@@QAE@XZ
??0invalid_oversubscribe_operation@Concurrency@@QAE@PBD@Z
??0invalid_oversubscribe_operation@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_key@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_key@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_value@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_value@Concurrency@@QAE@XZ
??0message_not_found@Concurrency@@QAE@PBD@Z
??0message_not_found@Concurrency@@QAE@XZ
??0missing_wait@Concurrency@@QAE@PBD@Z
??0missing_wait@Concurrency@@QAE@XZ
??0nested_scheduler_missing_detach@Concurrency@@QAE@PBD@Z
??0nested_scheduler_missing_detach@Concurrency@@QAE@XZ
??0operation_timed_out@Concurrency@@QAE@PBD@Z
??0operation_timed_out@Concurrency@@QAE@XZ
??0reader_writer_lock@Concurrency@@QAE@XZ
??0scheduler_not_attached@Concurrency@@QAE@PBD@Z
??0scheduler_not_attached@Concurrency@@QAE@XZ
??0scheduler_resource_allocation_error@Concurrency@@QAE@J@Z
??0scheduler_resource_allocation_error@Concurrency@@QAE@PBDJ@Z
??0scoped_lock@critical_section@Concurrency@@QAE@AAV12@@Z
??0scoped_lock@reader_writer_lock@Concurrency@@QAE@AAV12@@Z
??0scoped_lock_read@reader_writer_lock@Concurrency@@QAE@AAV12@@Z
??0task_canceled@details@Concurrency@@QAE@PBD@Z
??0task_canceled@details@Concurrency@@QAE@XZ
??0unsupported_os@Concurrency@@QAE@PBD@Z
??0unsupported_os@Concurrency@@QAE@XZ
??1SchedulerPolicy@Concurrency@@QAE@XZ
??1_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ
??1_ReentrantBlockingLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_SpinLock@details@Concurrency@@QAE@XZ
??1_TaskCollection@details@Concurrency@@QAE@XZ
??1_Timer@details@Concurrency@@IAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1critical_section@Concurrency@@QAE@XZ
??1event@Concurrency@@QAE@XZ
??1exception@std@@UAE@XZ
??1reader_writer_lock@Concurrency@@QAE@XZ
??1scoped_lock@critical_section@Concurrency@@QAE@XZ
??1scoped_lock@reader_writer_lock@Concurrency@@QAE@XZ
??1scoped_lock_read@reader_writer_lock@Concurrency@@QAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??2@YAPAXIHPBDH@Z
??3@YAXPAX@Z
??4?$_SpinWait@$00@details@Concurrency@@QAEAAV012@ABV012@@Z
??4?$_SpinWait@$0A@@details@Concurrency@@QAEAAV012@ABV012@@Z
??4SchedulerPolicy@Concurrency@@QAEAAV01@ABV01@@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4exception@std@@QAEAAV01@ABV01@@Z
??8type_info@@QBE_NABV0@@Z
??9type_info@@QBE_NABV0@@Z
??_7__non_rtti_object@std@@6B@
??_7bad_cast@std@@6B@
??_7bad_typeid@std@@6B@
??_7exception@@6B@
??_7exception@std@@6B@
??_F?$_SpinWait@$00@details@Concurrency@@QAEXXZ
??_F?$_SpinWait@$0A@@details@Concurrency@@QAEXXZ
??_Fbad_cast@std@@QAEXXZ
??_Fbad_typeid@std@@QAEXXZ
??_U@YAPAXI@Z
??_U@YAPAXIHPBDH@Z
??_V@YAXPAX@Z
?Alloc@Concurrency@@YAPAXI@Z
?Block@Context@Concurrency@@SAXXZ
?Create@CurrentScheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z
?Create@Scheduler@Concurrency@@SAPAV12@ABVSchedulerPolicy@2@@Z
?CreateResourceManager@Concurrency@@YAPAUIResourceManager@1@XZ
?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@XZ
?CurrentContext@Context@Concurrency@@SAPAV12@XZ
?Detach@CurrentScheduler@Concurrency@@SAXXZ
?DisableTracing@Concurrency@@YAJXZ
?EnableTracing@Concurrency@@YAJXZ
?Free@Concurrency@@YAXPAX@Z
?Get@CurrentScheduler@Concurrency@@SAPAVScheduler@2@XZ
?GetExecutionContextId@Concurrency@@YAIXZ
?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ
?GetOSVersion@Concurrency@@YA?AW4OSVersion@IResourceManager@1@XZ
?GetPolicy@CurrentScheduler@Concurrency@@SA?AVSchedulerPolicy@2@XZ
?GetPolicyValue@SchedulerPolicy@Concurrency@@QBEIW4PolicyElementKey@2@@Z
?GetProcessorCount@Concurrency@@YAIXZ
?GetProcessorNodeCount@Concurrency@@YAIXZ
?GetSchedulerId@Concurrency@@YAIXZ
?GetSharedTimerQueue@details@Concurrency@@YAPAXXZ
?Id@Context@Concurrency@@SAIXZ
?Id@CurrentScheduler@Concurrency@@SAIXZ
?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ
?Log2@details@Concurrency@@YAKI@Z
?Oversubscribe@Context@Concurrency@@SAX_N@Z
?RegisterShutdownEvent@CurrentScheduler@Concurrency@@SAXPAX@Z
?ResetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXXZ
?ScheduleGroupId@Context@Concurrency@@SAIXZ
?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z
?SetConcurrencyLimits@SchedulerPolicy@Concurrency@@QAEXII@Z
?SetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z
?SetPolicyValue@SchedulerPolicy@Concurrency@@QAEIW4PolicyElementKey@2@I@Z
?VirtualProcessorId@Context@Concurrency@@SAIXZ
?Yield@Context@Concurrency@@SAXXZ
?_Abort@_StructuredTaskCollection@details@Concurrency@@AAEXXZ
?_Acquire@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Acquire@_NonReentrantPPLLock@details@Concurrency@@QAEXPAX@Z
?_Acquire@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Acquire@_ReentrantLock@details@Concurrency@@QAEXXZ
?_Acquire@_ReentrantPPLLock@details@Concurrency@@QAEXPAX@Z
?_AcquireRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_AcquireWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_Cancel@_StructuredTaskCollection@details@Concurrency@@QAEXXZ
?_Cancel@_TaskCollection@details@Concurrency@@QAEXXZ
?_CheckTaskCollection@_UnrealizedChore@details@Concurrency@@IAEXXZ
?_ConcRT_Assert@details@Concurrency@@YAXPBD0H@Z
?_ConcRT_CoreAssert@details@Concurrency@@YAXPBD0H@Z
?_ConcRT_DumpMessage@details@Concurrency@@YAXPB_WZZ
?_ConcRT_Trace@details@Concurrency@@YAXHPB_WZZ
?_Copy_str@exception@std@@AAEXPBD@Z
?_DoYield@?$_SpinWait@$00@details@Concurrency@@IAEXXZ
?_DoYield@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ
?_IsCanceling@_StructuredTaskCollection@details@Concurrency@@QAE_NXZ
?_IsCanceling@_TaskCollection@details@Concurrency@@QAE_NXZ
?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_NumberOfSpins@?$_SpinWait@$00@details@Concurrency@@IAEKXZ
?_NumberOfSpins@?$_SpinWait@$0A@@details@Concurrency@@IAEKXZ
?_Release@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Release@_NonReentrantPPLLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantPPLLock@details@Concurrency@@QAEXXZ
?_ReleaseRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_ReleaseWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_Reset@?$_SpinWait@$00@details@Concurrency@@IAEXXZ
?_Reset@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ
?_RunAndWait@_StructuredTaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z
?_RunAndWait@_TaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z
?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z
?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z
?_SetSpinCount@?$_SpinWait@$00@details@Concurrency@@QAEXI@Z
?_SetSpinCount@?$_SpinWait@$0A@@details@Concurrency@@QAEXI@Z
?_ShouldSpinAgain@?$_SpinWait@$00@details@Concurrency@@IAE_NXZ
?_ShouldSpinAgain@?$_SpinWait@$0A@@details@Concurrency@@IAE_NXZ
?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ
?_SpinOnce@?$_SpinWait@$0A@@details@Concurrency@@QAE_NXZ
?_SpinYield@Context@Concurrency@@SAXXZ
?_Start@_Timer@details@Concurrency@@IAEXXZ
?_Stop@_Timer@details@Concurrency@@IAEXXZ
?_Tidy@exception@std@@AAEXXZ
?_Trace_ppl_function@Concurrency@@YAXABU_GUID@@EW4ConcRT_EventType@1@@Z
?_TryAcquire@_NonReentrantBlockingLock@details@Concurrency@@QAE_NXZ
?_TryAcquire@_ReentrantBlockingLock@details@Concurrency@@QAE_NXZ
?_TryAcquire@_ReentrantLock@details@Concurrency@@QAE_NXZ
?_TryAcquireWrite@_ReaderWriterLock@details@Concurrency@@QAE_NXZ
?_Type_info_dtor@type_info@@CAXPAV1@@Z
?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z
?_UnderlyingYield@details@Concurrency@@YAXXZ
?_ValidateExecute@@YAHP6GHXZ@Z
?_ValidateRead@@YAHPBXI@Z
?_ValidateWrite@@YAHPAXI@Z
?_Value@_SpinCount@details@Concurrency@@SAIXZ
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrCompare@@YA_NPBX0@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrCopyException@@YAXPAXPBX1@Z
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?_inconsistency@@YAXXZ
?_invalid_parameter@@YAXPBG00II@Z
?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
?_open@@YAHPBDHH@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZH@Z
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?_sopen@@YAHPBDHHH@Z
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?_wopen@@YAHPB_WHH@Z
?_wsopen@@YAHPB_WHHH@Z
?before@type_info@@QBEHABV1@@Z
?get_error_code@scheduler_resource_allocation_error@Concurrency@@QBEJXZ
?lock@critical_section@Concurrency@@QAEXXZ
?lock@reader_writer_lock@Concurrency@@QAEXXZ
?lock_read@reader_writer_lock@Concurrency@@QAEXXZ
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
?native_handle@critical_section@Concurrency@@QAEAAV12@XZ
?raw_name@type_info@@QBEPBDXZ
?reset@event@Concurrency@@QAEXXZ
?set@event@Concurrency@@QAEXXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZH@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZH@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?swprintf@@YAHPAGIPBGZZ
?swprintf@@YAHPA_WIPB_WZZ
?terminate@@YAXXZ
?try_lock@critical_section@Concurrency@@QAE_NXZ
?try_lock@reader_writer_lock@Concurrency@@QAE_NXZ
?try_lock_read@reader_writer_lock@Concurrency@@QAE_NXZ
?unexpected@@YAXXZ
?unlock@critical_section@Concurrency@@QAEXXZ
?unlock@reader_writer_lock@Concurrency@@QAEXXZ
?vswprintf@@YAHPA_WIPB_WPAD@Z
?wait@Concurrency@@YAXI@Z
?wait@event@Concurrency@@QAEII@Z
?wait_for_multiple@event@Concurrency@@SAIPAPAV12@I_NI@Z
?what@exception@std@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CRT_RTC_INITW
_CreateFrameInfo
_CxxThrowException
_EH_prolog
_FindAndUnlinkFrame
_Getdays
_Getmonths
_Gettnames
_HUGE
_IsExceptionObjectToBeDestroyed
_NLG_Dispatch2
_NLG_Return
_NLG_Return2
_Strftime
_XcptFilter
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__CppXcptFilter
__CxxCallUnwindDelDtor
__CxxCallUnwindDtor
__CxxCallUnwindStdDelDtor
__CxxCallUnwindVecDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__STRINGTOLD_L
__TypeMatch
___fls_getvalue@4
___fls_setvalue@8
___lc_codepage_func
___lc_collate_cp_func
___lc_handle_func
___mb_cur_max_func
___mb_cur_max_l_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__clean_type_info_names_internal
__control87_2
__create_locale
__crtCompareStringA
__crtCompareStringW
__crtLCMapStringA
__crtLCMapStringW
__daylight
__dllonexit
__doserrno
__dstbias
__fpecode
__free_locale
__get_current_locale
__get_flsindex
__get_tlsindex
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__iswcsym
__iswcsymf
__lconv
__lconv_init
__libm_sse2_acos
__libm_sse2_acosf
__libm_sse2_asin
__libm_sse2_asinf
__libm_sse2_atan
__libm_sse2_atan2
__libm_sse2_atanf
__libm_sse2_cos
__libm_sse2_cosf
__libm_sse2_exp
__libm_sse2_expf
__libm_sse2_log
__libm_sse2_log10
__libm_sse2_log10f
__libm_sse2_logf
__libm_sse2_pow
__libm_sse2_powf
__libm_sse2_sin
__libm_sse2_sinf
__libm_sse2_tan
__libm_sse2_tanf
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__report_gsfailure
__set_app_type
__set_flsgetvalue
__setlc_active
__setusermatherr
__strncnt
__swprintf_l
__sys_errlist
__sys_nerr
__threadhandle
__threadid
__timezone
__toascii
__tzname
__unDName
__unDNameEx
__unDNameHelper
__uncaught_exception
__unguarded_readlc_active
__vswprintf_l
__wargv
__wcserror
__wcserror_s
__wcsncnt
__wgetmainargs
__winitenv
_abnormal_termination
_abs64
_access
_access_s
_acmdln
_aligned_free
_aligned_malloc
_aligned_msize
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_offset_recalloc
_aligned_realloc
_aligned_recalloc
_amsg_exit
_assert
_atodbl
_atodbl_l
_atof_l
_atoflt
_atoflt_l
_atoi64
_atoi64_l
_atoi_l
_atol_l
_atoldbl
_atoldbl_l
_beep
_beginthread
_beginthreadex
_byteswap_uint64
_byteswap_ulong
_byteswap_ushort
_c_exit
_cabs
_callnewh
_calloc_crt
_cexit
_cgets
_cgets_s
_cgetws
_cgetws_s
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_chsize_s
_clearfp
_close
_commit
_commode
_configthreadlocale
_control87
_controlfp
_controlfp_s
_copysign
_cprintf
_cprintf_l
_cprintf_p

Sections

.text
Size: 709KB - Virtual size: 708KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
neth.dll
.dll windows:10 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.rdata
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
netmsg.dll
.dll windows:10 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.rdata
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
nskbfltr.inf
nsm_vpro.ini
panmap.dll
.dll windows:10 windows x64 arch:x64

e9dbf5df0a9e862645294faf11ef4307

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

panmap.pdb

Imports

ntdll

RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
memcpy

api-ms-win-core-heap-l1-1-0

GetProcessHeap
HeapFree
HeapAlloc

api-ms-win-core-libraryloader-l1-2-0

DisableThreadLibraryCalls

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-0

GetCurrentThreadId
GetCurrentProcess
TerminateProcess
GetCurrentProcessId

api-ms-win-core-sysinfo-l1-1-0

GetTickCount
GetSystemTimeAsFileTime

api-ms-win-core-errorhandling-l1-1-0

UnhandledExceptionFilter
SetUnhandledExceptionFilter

kernel32

MulDiv

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pcicapi.dll
.dll windows:5 windows x86 arch:x86

f8282f99f39314d8a05a0ff650027272

Code Sign

e8:cb:c7:6f:b7:59:9a:2d:1f:79:37:f8:3b:77:9a:77
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

06/04/2019, 00:00

Not After

05/04/2022, 23:59

Subject

CN=CrossTec Corporation,O=CrossTec Corporation,POSTALCODE=33431,STREET=500 NE Spanish River Boulevard,L=Boca Raton,ST=FL,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/03/2019, 00:00

Not After

31/12/2028, 23:59

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/10/2020, 00:00

Not After

22/01/2032, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #2,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

e8:cb:c7:6f:b7:59:9a:2d:1f:79:37:f8:3b:77:9a:77
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

06/04/2019, 00:00

Not After

05/04/2022, 23:59

Subject

CN=CrossTec Corporation,O=CrossTec Corporation,POSTALCODE=33431,STREET=500 NE Spanish River Boulevard,L=Boca Raton,ST=FL,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:72:44:3a:f9:22:b7:51:d7:d3:6c:10:dd:31:35:95
Certificate

Issuer

CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/03/2019, 00:00

Not After

31/12/2028, 23:59

Subject

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/10/2020, 00:00

Not After

22/01/2032, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #2,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5e:b8:f3:cd:f4:ca:cd:08:13:de:76:63:6b:49:6c:91:4a:86:62:73:62:a2:06:7f:47:d9:7a:93:0f:8e:d2:5e
Signer

Actual PE Digest

5e:b8:f3:cd:f4:ca:cd:08:13:de:76:63:6b:49:6c:91:4a:86:62:73:62:a2:06:7f:47:d9:7a:93:0f:8e:d2:5e

Digest Algorithm

sha256

PE Digest Matches

true

3a:bf:28:2a:8d:92:2a:9d:3c:7f:11:54:6a:41:36:21:a2:9c:98:04
Signer

Actual PE Digest

3a:bf:28:2a:8d:92:2a:9d:3c:7f:11:54:6a:41:36:21:a2:9c:98:04

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\nsmsrc\nsm\1280\1280\ctl32\release_unicode\pcicapi.pdb

Imports

kernel32

GetModuleFileNameW
GetProcAddress
GetModuleHandleW
OutputDebugStringW
LoadLibraryW
FreeLibrary
CloseHandle
OpenProcess
GetCurrentProcessId
CreateEventW
InterlockedIncrement
GetVersionExW
GetLocalTime
GetTempPathW
GetSystemTimeAsFileTime
GetProcessTimes
GetCurrentProcess
GetCurrentThreadId
GetTickCount
GetLastError
GetVersion
SetLastError
DisableThreadLibraryCalls
Sleep
LeaveCriticalSection
EnterCriticalSection
SetEvent
InterlockedDecrement
WaitForSingleObject
DeleteCriticalSection
CreateThread
InitializeCriticalSection
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
InterlockedCompareExchange
InterlockedExchange
DecodePointer
EncodePointer
MultiByteToWideChar
ExitProcess
WideCharToMultiByte
QueryPerformanceCounter

user32

DispatchMessageW
TranslateMessage
GetMessageW
GetGuiResources
SetTimer
MessageBoxW
KillTimer
PeekMessageW
PostQuitMessage
wvsprintfW
wsprintfW

advapi32

GetTokenInformation
OpenProcessToken

msvcr100

_except_handler4_common
_onexit
_lock
malloc
wcsrchr
wcsncmp
fclose
_wfopen
wcsncat
fputws
strrchr
memset
iswctype
memcpy
free
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit

Exports

Exports

CapiClose
CapiConnected
CapiDial
CapiHangup
CapiListen
CapiNotify
CapiOpen
CapiOpen2
CapiRead
CapiSend

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
prflbmsg.dll
.dll windows:10 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.rdata
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
provdiagnostics.dll
.dll windows:10 windows x64 arch:x64

66e2d1b2cdab292d56111a45637c4a3c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

provdiagnostics.pdb

Imports

msvcrt

__C_specific_handler
_initterm
malloc
free
_amsg_exit
_XcptFilter

api-ms-win-core-synch-l1-2-0

Sleep

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-processthreads-l1-1-0

GetCurrentThreadId
GetCurrentProcessId

api-ms-win-core-sysinfo-l1-1-0

GetSystemTimeAsFileTime
GetTickCount

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radio/OpenAL32.dll
.dll windows:4 windows x64 arch:x64

634948513595a916d3204cda06247a72

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateEventA
CreateThread
DebugBreak
DeleteCriticalSection
EnterCriticalSection
ExitThread
FreeLibrary
GetCurrentThread
GetCurrentThreadId
GetExitCodeThread
GetLastError
GetModuleHandleExW
GetProcAddress
GetSystemTimeAsFileTime
InitializeCriticalSection
IsDBCSLeadByteEx
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
ResetEvent
SetEvent
SetThreadPriority
Sleep
SwitchToThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
lstrlenW

msvcrt

___lc_codepage_func
___mb_cur_max_func
__iob_func
__setusermatherr
_aligned_free
_aligned_malloc
_amsg_exit
_errno
_fpreset
_initterm
_lock
_snwprintf
_stricmp
_strnicmp
_unlock
_wfopen
_wgetenv
abort
atoi
calloc
clearerr
fclose
feof
ferror
fflush
fgetc
fputc
fread
free
fseek
ftell
fwrite
getc
getenv
isalnum
isspace
isxdigit
localeconv
log10
malloc
memcmp
memcpy
memmove
memset
realloc
sinh
strchr
strcmp
strerror
strlen
strncmp
strncpy
strpbrk
strtol
strtoul
tolower
ungetc
vfprintf
wcscmp
wcslen
_strtoui64
_strtoi64
_strdup

ole32

CoCreateInstance
CoInitialize
CoTaskMemFree
CoUninitialize
PropVariantClear
StringFromCLSID

shell32

SHGetSpecialFolderPathW

user32

GetForegroundWindow
GetMessageA
PeekMessageA
PostThreadMessageA

winmm

waveInAddBuffer
waveInClose
waveInGetDevCapsW
waveInGetNumDevs
waveInOpen
waveInPrepareHeader
waveInReset
waveInStart
waveInStop
waveInUnprepareHeader
waveOutClose
waveOutGetDevCapsW
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite

Exports

Exports

alAuxiliaryEffectSlotf
alAuxiliaryEffectSlotfv
alAuxiliaryEffectSloti
alAuxiliaryEffectSlotiv
alBuffer3f
alBuffer3i
alBufferData
alBufferSamplesSOFT
alBufferSubDataSOFT
alBufferSubSamplesSOFT
alBufferf
alBufferfv
alBufferi
alBufferiv
alDeferUpdatesSOFT
alDeleteAuxiliaryEffectSlots
alDeleteBuffers
alDeleteEffects
alDeleteFilters
alDeleteFontsoundsSOFT
alDeletePresetsSOFT
alDeleteSoundfontsSOFT
alDeleteSources
alDisable
alDistanceModel
alDopplerFactor
alDopplerVelocity
alEffectf
alEffectfv
alEffecti
alEffectiv
alEnable
alFilterf
alFilterfv
alFilteri
alFilteriv
alFontsound2iSOFT
alFontsoundModulatoriSOFT
alFontsoundiSOFT
alFontsoundivSOFT
alGenAuxiliaryEffectSlots
alGenBuffers
alGenEffects
alGenFilters
alGenFontsoundsSOFT
alGenPresetsSOFT
alGenSoundfontsSOFT
alGenSources
alGetAuxiliaryEffectSlotf
alGetAuxiliaryEffectSlotfv
alGetAuxiliaryEffectSloti
alGetAuxiliaryEffectSlotiv
alGetBoolean
alGetBooleanv
alGetBuffer3f
alGetBuffer3i
alGetBufferSamplesSOFT
alGetBufferf
alGetBufferfv
alGetBufferi
alGetBufferiv
alGetDouble
alGetDoublev
alGetEffectf
alGetEffectfv
alGetEffecti
alGetEffectiv
alGetEnumValue
alGetError
alGetFilterf
alGetFilterfv
alGetFilteri
alGetFilteriv
alGetFloat
alGetFloatv
alGetFontsoundModulatorivSOFT
alGetFontsoundivSOFT
alGetInteger
alGetInteger64SOFT
alGetInteger64vSOFT
alGetIntegerv
alGetListener3f
alGetListener3i
alGetListenerf
alGetListenerfv
alGetListeneri
alGetListeneriv
alGetPresetivSOFT
alGetProcAddress
alGetSoundfontivSOFT
alGetSource3dSOFT
alGetSource3f
alGetSource3i
alGetSource3i64SOFT
alGetSourcedSOFT
alGetSourcedvSOFT
alGetSourcef
alGetSourcefv
alGetSourcei
alGetSourcei64SOFT
alGetSourcei64vSOFT
alGetSourceiv
alGetString
alIsAuxiliaryEffectSlot
alIsBuffer
alIsBufferFormatSupportedSOFT
alIsEffect
alIsEnabled
alIsExtensionPresent
alIsFilter
alIsFontsoundSOFT
alIsPresetSOFT
alIsSoundfontSOFT
alIsSource
alListener3f
alListener3i
alListenerf
alListenerfv
alListeneri
alListeneriv
alLoadSoundfontSOFT
alMidiEventSOFT
alMidiGainSOFT
alMidiPauseSOFT
alMidiPlaySOFT
alMidiResetSOFT
alMidiSoundfontSOFT
alMidiSoundfontvSOFT
alMidiStopSOFT
alMidiSysExSOFT
alPresetFontsoundsSOFT
alPresetiSOFT
alPresetivSOFT
alProcessUpdatesSOFT
alSoundfontPresetsSOFT
alSource3dSOFT
alSource3f
alSource3i
alSource3i64SOFT
alSourcePause
alSourcePausev
alSourcePlay
alSourcePlayv
alSourceQueueBuffers
alSourceRewind
alSourceRewindv
alSourceStop
alSourceStopv
alSourceUnqueueBuffers
alSourcedSOFT
alSourcedvSOFT
alSourcef
alSourcefv
alSourcei
alSourcei64SOFT
alSourcei64vSOFT
alSourceiv
alSpeedOfSound
alcCaptureCloseDevice
alcCaptureOpenDevice
alcCaptureSamples
alcCaptureSamplesLoopback
alcCaptureStart
alcCaptureStop
alcCloseDevice
alcCreateContext
alcDestroyContext
alcDevicePauseSOFT
alcDeviceResumeSOFT
alcGetContextsDevice
alcGetCurrentContext
alcGetEnumValue
alcGetError
alcGetInteger64vSOFT
alcGetIntegerv
alcGetProcAddress
alcGetString
alcGetThreadContext
alcIsExtensionPresent
alcIsRenderFormatSupportedSOFT
alcLoopbackOpenDeviceSOFT
alcMakeContextCurrent
alcOpenDevice
alcProcessContext
alcRenderSamplesSOFT
alcSetThreadContext
alcSuspendContext

Sections

.text
Size: 384KB - Virtual size: 384KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 75KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radio/blow.wav
radio/bombdef.wav
radio/bombpl.wav
radio/circleback.wav
radio/libssp-0.dll
.dll windows:4 windows x64 arch:x64

550703e32944da81749eeb979a022099

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

CryptAcquireContextA
CryptGenRandom
CryptReleaseContext

kernel32

DeleteCriticalSection
EnterCriticalSection
GetLastError
InitializeCriticalSection
LeaveCriticalSection
Sleep
TlsGetValue
VirtualProtect
VirtualQuery

msvcrt

__iob_func
_amsg_exit
_exit
_initterm
_lock
_unlock
abort
calloc
fgets
free
fwrite
gets
malloc
memcpy
memmove
memset
realloc
strlen
strncmp
strncpy
vfprintf
_write
_open
_close

Exports

Exports

__chk_fail
__gets_chk
__memcpy_chk
__memmove_chk
__mempcpy_chk
__memset_chk
__stack_chk_fail
__stack_chk_guard
__stpcpy_chk
__strcat_chk
__strcpy_chk
__strncat_chk
__strncpy_chk

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 272B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 361B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radio/libwinpthread-1.dll
.dll windows:4 windows x64 arch:x64

fea7be972a0bb7dd20cc26160803dae6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

AddVectoredExceptionHandler
CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
FileTimeToSystemTime
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetHandleInformation
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetProcessTimes
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
GetThreadContext
GetThreadPriority
GetThreadTimes
GetTickCount64
InitializeCriticalSection
IsDebuggerPresent
LeaveCriticalSection
OpenProcess
OutputDebugStringA
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReleaseSemaphore
RemoveVectoredExceptionHandler
ResetEvent
ResumeThread
SetEvent
SetLastError
SetProcessAffinityMask
SetSystemTime
SetThreadContext
SetThreadPriority
Sleep
SuspendThread
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject

msvcrt

__C_specific_handler
__iob_func
_amsg_exit
_beginthreadex
_endthreadex
_errno
_initterm
_lock
_setjmp
_ultoa
_unlock
abort
calloc
exit
fprintf
free
fwrite
longjmp
malloc
memmove
memset
printf
realloc
signal
strlen
strncmp
vfprintf
_strdup

Exports

Exports

__pth_gpointer_locked
__pthread_clock_nanosleep
_pthread_cleanup_dest
_pthread_get_state
_pthread_invoke_cancel
_pthread_key_dest
_pthread_rel_time_in_ms
_pthread_set_state
_pthread_time_in_ms
_pthread_time_in_ms_from_timespec
_pthread_tryjoin
clock_getres
clock_gettime
clock_nanosleep
clock_settime
nanosleep
pthread_attr_destroy
pthread_attr_getdetachstate
pthread_attr_getinheritsched
pthread_attr_getschedparam
pthread_attr_getschedpolicy
pthread_attr_getscope
pthread_attr_getstack
pthread_attr_getstackaddr
pthread_attr_getstacksize
pthread_attr_init
pthread_attr_setdetachstate
pthread_attr_setinheritsched
pthread_attr_setschedparam
pthread_attr_setschedpolicy
pthread_attr_setscope
pthread_attr_setstack
pthread_attr_setstackaddr
pthread_attr_setstacksize
pthread_barrier_destroy
pthread_barrier_init
pthread_barrier_wait
pthread_barrierattr_destroy
pthread_barrierattr_getpshared
pthread_barrierattr_init
pthread_barrierattr_setpshared
pthread_cancel
pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_init
pthread_cond_signal
pthread_cond_timedwait
pthread_cond_timedwait_relative_np
pthread_cond_wait
pthread_condattr_destroy
pthread_condattr_getclock
pthread_condattr_getpshared
pthread_condattr_init
pthread_condattr_setclock
pthread_condattr_setpshared
pthread_create
pthread_create_wrapper
pthread_delay_np
pthread_detach
pthread_equal
pthread_exit
pthread_get_concurrency
pthread_getclean
pthread_getconcurrency
pthread_getevent
pthread_gethandle
pthread_getname_np
pthread_getschedparam
pthread_getspecific
pthread_join
pthread_key_create
pthread_key_delete
pthread_kill
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_timedlock
pthread_mutex_trylock
pthread_mutex_unlock
pthread_mutexattr_destroy
pthread_mutexattr_getprioceiling
pthread_mutexattr_getprotocol
pthread_mutexattr_getpshared
pthread_mutexattr_gettype
pthread_mutexattr_init
pthread_mutexattr_setprioceiling
pthread_mutexattr_setprotocol
pthread_mutexattr_setpshared
pthread_mutexattr_settype
pthread_num_processors_np
pthread_once
pthread_rwlock_destroy
pthread_rwlock_init
pthread_rwlock_rdlock
pthread_rwlock_timedrdlock
pthread_rwlock_timedwrlock
pthread_rwlock_tryrdlock
pthread_rwlock_trywrlock
pthread_rwlock_unlock
pthread_rwlock_wrlock
pthread_rwlockattr_destroy
pthread_rwlockattr_getpshared
pthread_rwlockattr_init
pthread_rwlockattr_setpshared
pthread_self
pthread_set_concurrency
pthread_set_num_processors_np
pthread_setcancelstate
pthread_setcanceltype
pthread_setconcurrency
pthread_setname_np
pthread_setschedparam
pthread_setspecific
pthread_spin_destroy
pthread_spin_init
pthread_spin_lock
pthread_spin_trylock
pthread_spin_unlock
pthread_testcancel
pthread_timechange_handler_np
pthread_tls_init
sched_get_priority_max
sched_get_priority_min
sched_getscheduler
sched_setscheduler
sched_yield
sem_close
sem_destroy
sem_getvalue
sem_init
sem_open
sem_post
sem_post_multiple
sem_timedwait
sem_trywait
sem_unlink
sem_wait

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 400B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
remcmdstub.exe
.exe windows:5 windows x86 arch:x86

99c0cd957fc7334714fefa3daa61a6ea

Code Sign

79:90:6f:af:4f:bd:75:ba:a1:0b:32:23:56:a0:7f:6d
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

15/09/2017, 00:00

Not After

22/09/2020, 23:59

Subject

CN=NetSupport Ltd,O=NetSupport Ltd,L=Peterborough,ST=Cambridgeshire,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

79:90:6f:af:4f:bd:75:ba:a1:0b:32:23:56:a0:7f:6d
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

15/09/2017, 00:00

Not After

22/09/2020, 23:59

Subject

CN=NetSupport Ltd,O=NetSupport Ltd,L=Peterborough,ST=Cambridgeshire,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3d:1a:35:72:30:15:82:63:30:d0:13:71:7e:82:41:08
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/05/2019, 00:00

Not After

01/08/2030, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #1,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:5b:db:b1:80:13:58:6a:fb:17:c4:72:52:4f:73:4e:82:c0:d3:d6:30:b8:41:55:f2:be:7f:46:2f:b8:e4:f4
Signer

Actual PE Digest

33:5b:db:b1:80:13:58:6a:fb:17:c4:72:52:4f:73:4e:82:c0:d3:d6:30:b8:41:55:f2:be:7f:46:2f:b8:e4:f4

Digest Algorithm

sha256

PE Digest Matches

true

1d:42:a2:20:c0:fa:8a:93:d6:9c:f1:f0:85:d9:8b:8f:0a:94:27:ac
Signer

Actual PE Digest

1d:42:a2:20:c0:fa:8a:93:d6:9c:f1:f0:85:d9:8b:8f:0a:94:27:ac

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
FreeLibrary
GetProcAddress
SetLastError
GetVersionExA
GetLastError
GetModuleFileNameA
WaitForSingleObject
Sleep
WriteFile
GetExitCodeProcess
GenerateConsoleCtrlEvent
WaitForMultipleObjects
CloseHandle
CreateProcessA
SetConsoleCtrlHandler
SetConsoleMode
GetConsoleMode
GetStdHandle
ExpandEnvironmentStringsA
SetStdHandle
WriteConsoleW
HeapSize
SetFilePointer
FlushFileBuffers
GetCommandLineA
HeapSetInformation
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
DecodePointer
TlsFree
GetModuleHandleW
GetCurrentThreadId
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
IsProcessorFeaturePresent
ExitProcess
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
HeapFree
HeapAlloc
RtlUnwind
LoadLibraryW
HeapReAlloc
GetConsoleCP
CreateFileW

user32

EnumWindows
GetClassNameA
SendMessageA
EnumThreadWindows

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
wiatrace.dll
.dll windows:10 windows x64 arch:x64

7146ee63c835f34bc9729fe5ed9f8dbe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

wiatrace.pdb

Imports

msvcrt

__C_specific_handler
_initterm
malloc
free
_amsg_exit
_XcptFilter
_splitpath_s
_vsnprintf
memset

kernel32

CopyFileA
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
Sleep
TlsFree
GetModuleFileNameA
TlsSetValue
WriteFile
ExpandEnvironmentStringsA
SetEndOfFile
WaitForSingleObject
ReleaseMutex
TlsGetValue
TlsAlloc
GetLocalTime
SetFilePointerEx
GetCurrentProcessId
TerminateProcess

Exports

Exports

WIATRACE_DecrementIndentLevel
WIATRACE_GetIndentLevel
WIATRACE_GetTraceSettings
WIATRACE_IncrementIndentLevel
WIATRACE_Init
WIATRACE_OutputString
WIATRACE_SetTraceSettings
WIATRACE_Term

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b8a1db56beebf8e839dde8e0df72f492

Code Sign

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0aCertificate

Extended Key Usages

Key Usages

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:afCertificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6bCertificate

Extended Key Usages

Key Usages

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16Certificate

Extended Key Usages

Key Usages

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0aCertificate

Extended Key Usages

Key Usages

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:afCertificate

Extended Key Usages

Key Usages

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6bCertificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

dc:e1:81:f3:38:7b:08:1c:26:8a:38:cf:5a:5c:37:c6:71:3a:51:1c:80:bd:de:31:76:ad:67:b2:6c:d1:1a:f5Signer

59:5a:26:d4:2a:01:38:38:e7:97:cc:93:42:13:93:47:93:f4:f1:70Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 3KB - Virtual size: 6KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 5KB - Virtual size: 5KB

a6ab0ac73d733ac12db0454e9a7326f3

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:31:89:c6:37:e8Certificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

11:21:87:b3:98:71:ea:55:e9:2e:60:a8:a6:31:92:dd:60:f0Certificate

Extended Key Usages

Key Usages

Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

wsock32

kernel32

user32

advapi32

Exports

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:af
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:af
Certificate

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

dc:e1:81:f3:38:7b:08:1c:26:8a:38:cf:5a:5c:37:c6:71:3a:51:1c:80:bd:de:31:76:ad:67:b2:6c:d1:1a:f5
Signer

59:5a:26:d4:2a:01:38:38:e7:97:cc:93:42:13:93:47:93:f4:f1:70
Signer

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 3KB - Virtual size: 6KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 5KB - Virtual size: 5KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

04:00:00:00:00:01:31:89:c6:37:e8
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

11:21:87:b3:98:71:ea:55:e9:2e:60:a8:a6:31:92:dd:60:f0
Certificate

.text
Size: 240KB - Virtual size: 240KB

.rdata
Size: 34KB - Virtual size: 34KB

.data
Size: 10KB - Virtual size: 29KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 12KB

.text
Size: 512B - Virtual size: 24B

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 180B

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:af
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16
Certificate

62:1d:6d:0c:52:01:9e:3b:90:79:15:20:89:21:1c:0a
Certificate

2e:d9:8a:cb:d5:87:ca:8b:87:d8:3e:d0:b4:68:46:af
Certificate

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

aa:c6:41:a5:39:2a:06:44:f8:a6:47:af:8c:fc:9c:9f:16:08:c2:fa:70:e3:6f:a9:f7:31:4f:e1:a5:79:0a:06
Signer

b4:cd:b6:c8:71:1f:ab:d1:4a:7a:c3:f8:8f:5b:ac:26:23:2e:31:2a
Signer

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 994B

.data
Size: 512B - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 512B - Virtual size: 498B