Skip to content

Instantly share code, notes, and snippets.

@akawashiro

akawashiro/dumpbin

Created June 23, 2024 09:43
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save akawashiro/99659e552bec8e9cc3af84c16ef97bcd to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save akawashiro/99659e552bec8e9cc3af84c16ef97bcd to your computer and use it in GitHub Desktop.
Download ZIP

Revisions

  1. akawashiro created this gist Jun 23, 2024.
    772 changes: 772 additions & 0 deletions dumpbin
    View file
    Original file line number Diff line number Diff line change
    @@ -0,0 +1,772 @@
    PS C:\Program Files (x86)\Microsoft Visual Studio\2019\Community> dumpbin /imports C:\Windows\notepad.exe
    Microsoft (R) COFF/PE Dumper Version 14.26.28806.0
    Copyright (C) Microsoft Corporation. All rights reserved.


    Dump of file C:\Windows\notepad.exe

    File Type: EXECUTABLE IMAGE

    Section contains the following imports:

    GDI32.dll
    140029930 Import Address Table
    140030D50 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    391 SetMapMode
    3A5 SetViewportExtEx
    3A9 SetWindowExtEx
    2F7 LPtoDP
    37C SetBkMode
    2E7 GetTextMetricsW
    3B6 TextOutW
    0 AbortDoc
    199 EndDoc
    376 SetAbortProc
    3AD StartDocW
    3AF StartPage
    34 CreateDCW
    1D2 EnumFontsW
    2E5 GetTextFaceW
    28B GetDeviceCaps
    18C DeleteDC
    18F DeleteObject
    37B SetBkColor
    5A CreateSolidBrush
    2DF GetTextExtentPoint32W
    374 SelectObject
    31 CreateCompatibleDC
    19C EndPage
    43 CreateFontIndirectW

    USER32.dll
    140029A00 Import Address Table
    140030E20 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    2AF PostQuitMessage
    11 BeginPaint
    F4 EndPaint
    110 FillRect
    DE DrawTextW
    D2 DrawFocusRect
    A7 DefWindowProcW
    3B3 TrackMouseEvent
    224 InvalidateRect
    B1 DestroyIcon
    36F SetThreadDpiAwarenessContext
    BA DialogBoxParamW
    25B LoadIconW
    159 GetFocus
    28B MessageBoxW
    39A ShowWindow
    32C SetCursor
    31E SetActiveWindow
    E9 EnableMenuItem
    237 IsIconic
    33B SetFocus
    283 MessageBeep
    15A GetForegroundWindow
    14D GetDlgCtrlID
    382 SetWindowPos
    2DB RedrawWindow
    16B GetKeyboardLayout
    34 CharNextW
    376 SetWinEventHook
    18B GetMessageW
    3B8 TranslateAcceleratorW
    233 IsDialogMessageW
    3BA TranslateMessage
    BD DispatchMessageW
    3BD UnhookWinEvent
    387 SetWindowTextW
    179 GetMenu
    1C4 GetSubMenu
    29C OpenClipboard
    230 IsClipboardFormatAvailable
    4F CloseClipboard
    43 CheckMenuItem
    338 SetDlgItemTextW
    151 GetDlgItemTextW
    F2 EndDialog
    312 SendDlgItemMessageW
    363 SetScrollPos
    3D4 UpdateWindow
    1F0 GetWindowPlacement
    381 SetWindowPlacement
    3F CharUpperW
    1C8 GetSystemMenu
    253 LoadAcceleratorsW
    380 SetWindowLongW
    290 MonitorFromWindow
    2FD RegisterWindowMessageW
    259 LoadCursorW
    25D LoadImageW
    2DF RegisterClassExW
    1EB GetWindowLongW
    2AA PeekMessageW
    1F9 GetWindowTextW
    EF EnableWindow
    6A CreateDialogParamW
    DD DrawTextExW
    248 IsWindow
    68 CreateDialogIndirectParamW
    1B3 GetPropW
    35F SetPropW
    14E GetDlgItem
    305 RemovePropW
    42 CheckDlgButton
    47 CheckRadioButton
    234 IsDlgButtonChecked
    295 NotifyWinEvent
    76 CreateWindowExW
    1F8 GetWindowTextLengthW
    133 GetClientRect
    B5 DestroyWindow
    156 GetDpiForWindow
    3A9 SystemParametersInfoForDpi
    31B SendMessageW
    291 MoveWindow
    143 GetDC
    268 LoadStringW
    2AE PostMessageW
    2FF ReleaseDC

    api-ms-win-crt-string-l1-1-0.dll
    14002A3B0 Import Address Table
    1400317D0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    9E wcscmp
    A9 wcsnlen
    83 memset

    api-ms-win-crt-runtime-l1-1-0.dll
    14002A388 Import Address Table
    1400317A8 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    15 _c_exit
    37 _initterm_e
    36 _initterm
    3D _register_thread_local_exe_atexit_callback

    api-ms-win-crt-private-l1-1-0.dll
    14002A248 Import Address Table
    140031668 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    119 _o__get_wide_winmain_command_line
    13D _o__initialize_onexit_table
    13E _o__initialize_wide_environment
    13F _o__invalid_parameter_noinfo
    243 _o__purecall
    251 _o__register_onexit_function
    25A _o__seh_filter_exe
    25C _o__set_app_type
    25F _o__set_fmode
    262 _o__set_new_mode
    2CD _o__wcsicmp
    337 _o__wtol
    36D _o_exit
    38D _o_free
    3B1 _o_iswdigit
    3D8 _o_malloc
    436 _o_terminate
    12 __CxxFrameHandler3
    20 __current_exception
    21 __current_exception_context
    1 _CxxThrowException
    A7 _o__crt_atexit
    70 _o___stdio_common_vswprintf
    A1 _o__configure_wide_argv
    5F _o___std_exception_destroy
    5E _o___std_exception_copy
    9F _o__configthreadlocale
    53 _o___p__commode
    C7 _o__exit
    93 _o__cexit
    91 _o__callnewh
    8F _o__beginthreadex
    C0 _o__errno
    46C wcsrchr
    46B wcschr
    C __C_specific_handler
    462 memcmp
    463 memcpy
    464 memmove

    api-ms-win-core-libraryloader-l1-2-0.dll
    140029ED0 Import Address Table
    1400312F0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    1E LockResource
    14 GetModuleHandleExW
    A FindResourceExW
    1B LoadResource
    12 GetModuleHandleA
    10 GetModuleFileNameA
    D FreeLibrary
    16 GetProcAddress
    15 GetModuleHandleW
    11 GetModuleFileNameW

    api-ms-win-core-synch-l1-1-0.dll
    14002A110 Import Address Table
    140031530 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    1D LeaveCriticalSection
    1A InitializeCriticalSectionEx
    36 WaitForSingleObject
    26 ReleaseSemaphore
    24 ReleaseSRWLockExclusive
    11 EnterCriticalSection
    29 SetEvent
    5 CreateEventExW
    0 AcquireSRWLockExclusive
    23 ReleaseMutex
    37 WaitForSingleObjectEx
    F DeleteCriticalSection
    1 AcquireSRWLockShared
    9 CreateMutexExW
    21 OpenSemaphoreW
    25 ReleaseSRWLockShared
    B CreateSemaphoreExW

    api-ms-win-core-heap-l1-1-0.dll
    140029E28 Import Address Table
    140031248 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    0 GetProcessHeap
    2 HeapAlloc
    A HeapSetInformation
    6 HeapFree

    api-ms-win-core-errorhandling-l1-1-0.dll
    140029D78 Import Address Table
    140031198 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    11 UnhandledExceptionFilter
    F SetUnhandledExceptionFilter
    7 RaiseException
    5 GetLastError
    D SetLastError

    api-ms-win-core-threadpool-l1-2-0.dll
    14002A1B8 Import Address Table
    1400315D8 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    6 CloseThreadpoolTimer
    22 WaitForThreadpoolTimerCallbacks
    C CreateThreadpoolTimer
    1A SetThreadpoolTimer

    api-ms-win-core-processthreads-l1-1-0.dll
    140029FB0 Import Address Table
    1400313D0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    C GetCurrentProcess
    34 OpenProcessToken
    3 CreateProcessW
    55 TerminateProcess
    11 GetCurrentThreadId
    22 GetStartupInfoW
    D GetCurrentProcessId

    api-ms-win-core-localization-l1-2-0.dll
    140029F38 Import Address Table
    140031358 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    9 FormatMessageW
    6 FindNLSString
    15 GetLocaleInfoW
    A GetACP

    api-ms-win-core-debug-l1-1-0.dll
    140029D38 Import Address Table
    140031158 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    5 IsDebuggerPresent
    7 OutputDebugStringW
    4 DebugBreak

    api-ms-win-core-handle-l1-1-0.dll
    140029E18 Import Address Table
    140031238 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    0 CloseHandle

    api-ms-win-core-com-l1-1-0.dll
    140029CD0 Import Address Table
    1400310F0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    43 CoTaskMemFree
    9 CoCreateInstance
    28 CoInitializeEx
    50 PropVariantClear
    46 CoUninitialize
    49 CoWaitForMultipleHandles
    8 CoCreateGuid
    42 CoTaskMemAlloc
    7 CoCreateFreeThreadedMarshaler

    api-ms-win-core-registry-l1-1-1.dll
    14002A078 Import Address Table
    140031498 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    2C RegSetKeyValueW

    api-ms-win-core-largeinteger-l1-1-0.dll
    140029EC0 Import Address Table
    1400312E0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    47 MulDiv

    api-ms-win-core-shlwapi-legacy-l1-1-0.dll
    14002A0B8 Import Address Table
    1400314D8 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    16 PathFindExtensionW
    22 PathIsFileSpecW
    14 PathFileExistsW

    api-ms-win-core-winrt-string-l1-1-0.dll
    14002A220 Import Address Table
    140031640 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    C WindowsDeleteString
    A WindowsCreateString
    B WindowsCreateStringReference
    10 WindowsGetStringRawBuffer

    api-ms-win-core-registry-l1-1-0.dll
    14002A028 Import Address Table
    140031448 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    25 RegQueryValueExW
    14 RegGetValueW
    2E RegSetValueExW
    10 RegEnumValueW
    21 RegQueryInfoKeyW
    3 RegCreateKeyExW
    0 RegCloseKey
    1E RegOpenKeyExW
    5 RegDeleteKeyExW

    api-ms-win-core-winrt-l1-1-0.dll
    14002A210 Import Address Table
    140031630 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    1 RoGetActivationFactory

    api-ms-win-core-heap-l2-1-0.dll
    140029E50 Import Address Table
    140031270 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    E LocalUnlock
    A LocalFree
    B LocalLock
    0 GlobalAlloc
    2 GlobalFree
    8 LocalAlloc
    C LocalReAlloc

    api-ms-win-core-file-l1-1-0.dll
    140029DA8 Import Address Table
    1400311C8 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    A DeleteFileW
    2D GetFileAttributesW
    51 SetEndOfFile
    2C GetFileAttributesExW
    2E GetFileInformationByHandle
    D FindClose
    15 FindFirstFileW
    7 CreateFileW
    4C ReadFile
    24 GetDiskFreeSpaceExW
    36 GetFullPathNameW
    4 CreateDirectoryW
    5E WriteFile

    api-ms-win-shcore-obsolete-l1-1-0.dll
    14002A408 Import Address Table
    140031828 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    2 SHStrDupW

    api-ms-win-security-base-l1-1-0.dll
    14002A3F8 Import Address Table
    140031818 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    42 GetTokenInformation

    api-ms-win-core-processenvironment-l1-1-0.dll
    140029F90 Import Address Table
    1400313B0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    7 GetCurrentDirectoryW
    5 GetCommandLineW
    12 SetCurrentDirectoryW

    api-ms-win-core-string-l1-1-0.dll
    14002A0D8 Import Address Table
    1400314F8 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    3 FoldStringW
    7 WideCharToMultiByte
    1 CompareStringOrdinal
    6 MultiByteToWideChar

    api-ms-win-core-psapi-l1-1-0.dll
    14002A018 Import Address Table
    140031438 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    A K32GetModuleFileNameExW

    api-ms-win-core-localization-obsolete-l1-2-0.dll
    140029F60 Import Address Table
    140031380 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    8 GetUserDefaultUILanguage

    api-ms-win-core-sysinfo-l1-1-0.dll
    14002A1A0 Import Address Table
    1400315C0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    6 GetLocalTime
    17 GetSystemTimeAsFileTime

    api-ms-win-core-datetime-l1-1-0.dll
    140029D20 Import Address Table
    140031140 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    2 GetDateFormatW
    6 GetTimeFormatW

    api-ms-win-shcore-path-l1-1-0.dll
    14002A418 Import Address Table
    140031838 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    Ordinal 170

    api-ms-win-core-memory-l1-1-0.dll
    140029F70 Import Address Table
    140031390 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    12 MapViewOfFile
    6 CreateFileMappingW
    29 UnmapViewOfFile

    api-ms-win-core-registry-l2-1-0.dll
    14002A088 Import Address Table
    1400314A8 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    6 RegCreateKeyW

    api-ms-win-core-heap-obsolete-l1-1-0.dll
    140029E90 Import Address Table
    1400312B0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    D LocalSize
    4 GlobalLock
    7 GlobalUnlock

    api-ms-win-shcore-scaling-l1-1-1.dll
    14002A428 Import Address Table
    140031848 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    0 GetDpiForMonitor

    api-ms-win-core-string-obsolete-l1-1-0.dll
    14002A100 Import Address Table
    140031520 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    5 lstrcmpiW

    api-ms-win-core-windowserrorreporting-l1-1-3.dll
    14002A1E0 Import Address Table
    140031600 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    2 RegisterApplicationRestart

    api-ms-win-eventing-provider-l1-1-0.dll
    14002A3D0 Import Address Table
    1400317F0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    3 EventRegister
    5 EventUnregister
    9 EventWriteTransfer
    4 EventSetInformation

    api-ms-win-base-util-l1-1-0.dll
    140029CC0 Import Address Table
    1400310E0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    0 IsTextUnicode

    api-ms-win-core-libraryloader-l1-2-1.dll
    140029F28 Import Address Table
    140031348 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    1D FindResourceW

    api-ms-win-core-rtlsupport-l1-1-0.dll
    14002A098 Import Address Table
    1400314B8 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    652 RtlVirtualUnwind
    50C RtlLookupFunctionEntry
    305 RtlCaptureContext

    api-ms-win-core-processthreads-l1-1-1.dll
    140029FF0 Import Address Table
    140031410 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    32 IsProcessorFeaturePresent
    1D GetProcessMitigationPolicy

    api-ms-win-core-profile-l1-1-0.dll
    14002A008 Import Address Table
    140031428 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    0 QueryPerformanceCounter

    api-ms-win-core-interlocked-l1-1-0.dll
    140029EB0 Import Address Table
    1400312D0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    0 InitializeSListHead

    api-ms-win-core-winrt-error-l1-1-0.dll
    14002A1F0 Import Address Table
    140031610 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    12 SetRestrictedErrorInfo

    api-ms-win-core-winrt-error-l1-1-1.dll
    14002A200 Import Address Table
    140031620 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    6 RoGetMatchingRestrictedErrorInfo

    COMCTL32.dll
    1400298D0 Import Address Table
    140030CF0 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    54 ImageList_Create
    72 ImageList_SetBkColor
    Ordinal 381
    70 ImageList_ReplaceIcon
    Ordinal 410
    5B ImageList_Draw
    64 ImageList_GetIconSize
    Ordinal 413
    55 ImageList_Destroy
    Ordinal 345
    C CreateStatusWindowW

    api-ms-win-core-delayload-l1-1-1.dll
    140029D68 Import Address Table
    140031188 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    1 ResolveDelayLoadedAPI

    api-ms-win-core-delayload-l1-1-0.dll
    140029D58 Import Address Table
    140031178 Import Name Table
    0 time date stamp
    0 Index of first forwarder reference

    0 DelayLoadFailureHook

    Section contains the following delay load imports:

    ADVAPI32.dll
    00000001 Characteristics
    0000000140035248 Address of HMODULE
    0000000140039000 Import Address Table
    0000000140030508 Import Name Table
    00000001400307F8 Bound Import Name Table
    0000000000000000 Unload Import Name Table
    0 time date stamp

    0000000140002AE4 EA DecryptFileW
    0000000140002A59 EF DuplicateEncryptionInfoFile

    COMDLG32.dll
    00000001 Characteristics
    0000000140035250 Address of HMODULE
    0000000140039018 Import Address Table
    0000000140030520 Import Name Table
    0000000140030810 Bound Import Name Table
    0000000000000000 Unload Import Name Table
    0 time date stamp

    0000000140002AF6 4 CommDlgExtendedError
    0000000140002BED E GetSaveFileNameW
    0000000140002B81 3 ChooseFontW
    0000000140002B93 11 PageSetupDlgW
    0000000140002BA5 14 PrintDlgExW
    0000000140002BB7 8 FindTextW
    0000000140002BC9 17 ReplaceTextW
    0000000140002BDB C GetOpenFileNameW
    0000000140002BFF A GetFileTitleW

    PROPSYS.dll
    00000001 Characteristics
    0000000140035258 Address of HMODULE
    0000000140039068 Import Address Table
    0000000140030570 Import Name Table
    0000000140030860 Bound Import Name Table
    0000000000000000 Unload Import Name Table
    0 time date stamp

    0000000140002C11 3E PSGetPropertyDescriptionListFromString
    0000000140002C9C 96 PropVariantToStringVectorAlloc

    SHELL32.dll
    00000001 Characteristics
    0000000140035260 Address of HMODULE
    0000000140039080 Import Address Table
    0000000140030588 Import Name Table
    0000000140030878 Bound Import Name Table
    0000000000000000 Unload Import Name Table
    0 time date stamp

    0000000140002CAE A1 SHCreateItemFromParsingName
    0000000140002DA5 15A SHGetKnownFolderPath
    0000000140002D39 1B0 ShellExecuteW
    0000000140002D4B 1A8 ShellAboutW
    0000000140002D5D 2A DragQueryFileW
    0000000140002D6F 26 DragFinish
    0000000140002D81 7E SHAddToRecentDocs
    0000000140002D93 25 DragAcceptFiles

    WINSPOOL.DRV
    00000001 Characteristics
    0000000140035268 Address of HMODULE
    00000001400390C8 Import Address Table
    00000001400305D0 Import Name Table
    00000001400308C0 Bound Import Name Table
    0000000000000000 Unload Import Name Table
    0 time date stamp

    0000000140002E54 1D ClosePrinter
    0000000140002E42 8C GetPrinterDriverW
    0000000140002DB7 96 OpenPrinterW

    urlmon.dll
    00000001 Characteristics
    0000000140035270 Address of HMODULE
    00000001400390E8 Import Address Table
    00000001400305F0 Import Name Table
    00000001400308E0 Bound Import Name Table
    0000000000000000 Unload Import Name Table
    0 time date stamp

    0000000140002E66 3B FindMimeFromData

    Summary

    3000 .data
    1000 .didat
    2000 .pdata
    B000 .rdata
    1000 .reloc
    1F000 .rsrc
    28000 .text