Re: Native and Builtin dll

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

thank you vitamin, but I've tryed copy and paste an free simple program HoverSnap.exe and its HoverKHook.dll and I didn't installed anything else and It runs. However, i've understand that built-in dlls are of use Wine and they are implementation of the Windows API.

For my thesis I find a simple program for windows that dump an exe file and this is dump's HoverSnap.exe. Is correct to say that wine look for dll reading into exe file? in fact, here all built-in dlls are listed and only one is native.

Imports Table:
  KERNEL32.DLL
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FD9D4
  Ordn  Name
     0  LoadLibraryA
     0  GetProcAddress
     0  ExitProcess

  advapi32.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FD9E4
  Ordn  Name
     0  RegCloseKey

  comctl32.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FD9EC
  Ordn  Name
     0  ImageList_Add

  gdi32.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FD9F4
  Ordn  Name
     0  SaveDC

  HoverKHook.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FD9FC
  Ordn  Name
     0  StopHook

  ole32.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FDA04
  Ordn  Name
     0  IsEqualGUID

  oleaut32.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FDA0C
  Ordn  Name
     0  VariantClear

  shell32.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FDA14
  Ordn  Name
     0  ShellExecuteA

  user32.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FDA1C
  Ordn  Name
     0  GetDC

  version.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FDA24
  Ordn  Name
     0  VerQueryValueA

  winmm.dll
  OrigFirstThunk:  00000000 (Unbound IAT)
  TimeDateStamp:   00000000 -> Thu Jan 01 01:00:00 1970
  ForwarderChain:  00000000
  First thunk RVA: 000FDA2C
  Ordn  Name
     0  PlaySoundA
[Index of Archives]     [Gimp for Windows]     [Red Hat]     [Samba]     [Yosemite Camping]     [Graphics Cards]     [Wine Home]

  Powered by Linux