pdm.dll
Description: Process Debug Manager
Authors: © Microsoft Corporation. All rights reserved.
Version: 17.0.157.0
Architecture: 64-bit
Operating System: Windows
SHA256: 52928b87a455491722a29d3f8ef213a9
File Size: 520.0 KB
Uploaded At: Dec. 1, 2025, 2:42 p.m.
Views: 6
Security Warning
This file has been flagged as potentially dangerous.
Reason: Detected potentially dangerous functions used for process injection: OpenProcess
Exported Functions
- DllCanUnloadNow (Ordinal: 1, Address: 0x29e40)
- DllGetClassObject (Ordinal: 2, Address: 0x29e90)
- DllRegisterServer (Ordinal: 3, Address: 0x29fc0)
- DllUnregisterServer (Ordinal: 4, Address: 0x29fd0)
Imported DLLs & Functions
ADVAPI32.dll
- AddAce (Address: 0x18005c070)
- CopySid (Address: 0x18005c038)
- EqualSid (Address: 0x18005c060)
- GetAclInformation (Address: 0x18005c010)
- GetLengthSid (Address: 0x18005c088)
- GetSecurityDescriptorControl (Address: 0x18005c030)
- GetSecurityDescriptorDacl (Address: 0x18005c008)
- GetSecurityDescriptorGroup (Address: 0x18005c018)
- GetSecurityDescriptorOwner (Address: 0x18005c050)
- GetSecurityDescriptorSacl (Address: 0x18005c100)
- GetSidIdentifierAuthority (Address: 0x18005c0e8)
- GetSidLengthRequired (Address: 0x18005c028)
- GetSidSubAuthority (Address: 0x18005c020)
- GetSidSubAuthorityCount (Address: 0x18005c0f8)
- GetTokenInformation (Address: 0x18005c048)
- InitializeAcl (Address: 0x18005c080)
- InitializeSecurityDescriptor (Address: 0x18005c078)
- InitializeSid (Address: 0x18005c040)
- IsValidSid (Address: 0x18005c068)
- MakeAbsoluteSD (Address: 0x18005c090)
- OpenProcessToken (Address: 0x18005c0f0)
- RegCloseKey (Address: 0x18005c0c8)
- RegCreateKeyExW (Address: 0x18005c0a8)
- RegDeleteKeyW (Address: 0x18005c0a0)
- RegDeleteValueW (Address: 0x18005c0c0)
- RegEnumKeyExW (Address: 0x18005c0b0)
- RegEnumKeyW (Address: 0x18005c058)
- RegOpenKeyExW (Address: 0x18005c0d0)
- RegQueryInfoKeyW (Address: 0x18005c098)
- RegQueryValueExW (Address: 0x18005c0d8)
- RegSetValueExW (Address: 0x18005c0b8)
- SetSecurityDescriptorDacl (Address: 0x18005c000)
- SetSecurityDescriptorSacl (Address: 0x18005c0e0)
KERNEL32.dll
- CloseHandle (Address: 0x18005c450)
- CreateEventW (Address: 0x18005c1d8)
- CreateFileMappingW (Address: 0x18005c198)
- CreateFileW (Address: 0x18005c3a0)
- CreateMutexW (Address: 0x18005c110)
- CreateSemaphoreW (Address: 0x18005c400)
- CreateThread (Address: 0x18005c138)
- DecodePointer (Address: 0x18005c440)
- DeleteCriticalSection (Address: 0x18005c430)
- DuplicateHandle (Address: 0x18005c1c8)
- EncodePointer (Address: 0x18005c148)
- EnterCriticalSection (Address: 0x18005c488)
- ExitProcess (Address: 0x18005c2b0)
- FindClose (Address: 0x18005c2f8)
- FindFirstFileExW (Address: 0x18005c300)
- FindNextFileW (Address: 0x18005c308)
- FindResourceExW (Address: 0x18005c3d8)
- FindResourceW (Address: 0x18005c3c8)
- FlsAlloc (Address: 0x18005c2c0)
- FlsFree (Address: 0x18005c2d8)
- FlsGetValue (Address: 0x18005c2c8)
- FlsSetValue (Address: 0x18005c2d0)
- FlushFileBuffers (Address: 0x18005c378)
- FormatMessageA (Address: 0x18005c4b8)
- FormatMessageW (Address: 0x18005c4c8)
- FreeEnvironmentStringsW (Address: 0x18005c350)
- FreeLibrary (Address: 0x18005c268)
- FreeLibraryAndExitThread (Address: 0x18005c130)
- GetACP (Address: 0x18005c318)
- GetCommandLineA (Address: 0x18005c330)
- GetCommandLineW (Address: 0x18005c338)
- GetComputerNameW (Address: 0x18005c4a0)
- GetConsoleMode (Address: 0x18005c390)
- GetConsoleOutputCP (Address: 0x18005c388)
- GetCPInfo (Address: 0x18005c328)
- GetCurrentProcess (Address: 0x18005c1b0)
- GetCurrentProcessId (Address: 0x18005c128)
- GetCurrentThread (Address: 0x18005c1f8)
- GetCurrentThreadId (Address: 0x18005c118)
- GetEnvironmentStringsW (Address: 0x18005c348)
- GetFileAttributesW (Address: 0x18005c200)
- GetFileType (Address: 0x18005c2f0)
- GetLastError (Address: 0x18005c460)
- GetModuleFileNameW (Address: 0x18005c498)
- GetModuleHandleExW (Address: 0x18005c2b8)
- GetModuleHandleW (Address: 0x18005c3b0)
- GetOEMCP (Address: 0x18005c320)
- GetProcAddress (Address: 0x18005c3b8)
- GetProcessHeap (Address: 0x18005c428)
- GetStartupInfoW (Address: 0x18005c248)
- GetStdHandle (Address: 0x18005c2e8)
- GetStringTypeW (Address: 0x18005c368)
- GetSystemInfo (Address: 0x18005c290)
- GetSystemTimeAsFileTime (Address: 0x18005c258)
- GetThreadLocale (Address: 0x18005c140)
- GetTickCount (Address: 0x18005c1a8)
- GetVersion (Address: 0x18005c4b0)
- GlobalAlloc (Address: 0x18005c160)
- GlobalFree (Address: 0x18005c168)
- GlobalLock (Address: 0x18005c170)
- GlobalUnlock (Address: 0x18005c178)
- HeapAlloc (Address: 0x18005c448)
- HeapDestroy (Address: 0x18005c438)
- HeapFree (Address: 0x18005c490)
- HeapReAlloc (Address: 0x18005c458)
- HeapSize (Address: 0x18005c468)
- InitializeCriticalSectionAndSpinCount (Address: 0x18005c288)
- InitializeCriticalSectionEx (Address: 0x18005c470)
- InitializeSListHead (Address: 0x18005c260)
- InterlockedFlushSList (Address: 0x18005c278)
- IsDebuggerPresent (Address: 0x18005c240)
- IsProcessorFeaturePresent (Address: 0x18005c238)
- IsValidCodePage (Address: 0x18005c310)
- LCMapStringW (Address: 0x18005c2e0)
- LeaveCriticalSection (Address: 0x18005c478)
- LoadLibraryExA (Address: 0x18005c4d0)
- LoadLibraryExW (Address: 0x18005c158)
- LoadLibraryW (Address: 0x18005c358)
- LoadResource (Address: 0x18005c3d0)
- LocalFree (Address: 0x18005c4c0)
- LockResource (Address: 0x18005c3e0)
- lstrcmpiW (Address: 0x18005c150)
- MapViewOfFile (Address: 0x18005c1a0)
- MultiByteToWideChar (Address: 0x18005c3c0)
- OpenEventW (Address: 0x18005c1c0)
- OpenFileMappingW (Address: 0x18005c180)
- OpenProcess (Address: 0x18005c1d0)
- OutputDebugStringW (Address: 0x18005c398)
- ProcessIdToSessionId (Address: 0x18005c4a8)
- QueryPerformanceCounter (Address: 0x18005c250)
- RaiseException (Address: 0x18005c408)
- RegisterWaitForSingleObject (Address: 0x18005c1b8)
- ReleaseMutex (Address: 0x18005c120)
- ReleaseSemaphore (Address: 0x18005c480)
- RtlCaptureContext (Address: 0x18005c208)
- RtlLookupFunctionEntry (Address: 0x18005c210)
- RtlPcToFileHeader (Address: 0x18005c270)
- RtlUnwindEx (Address: 0x18005c4d8)
- RtlVirtualUnwind (Address: 0x18005c218)
- SetEvent (Address: 0x18005c1e0)
- SetFilePointerEx (Address: 0x18005c360)
- SetLastError (Address: 0x18005c280)
- SetStdHandle (Address: 0x18005c370)
- SetUnhandledExceptionFilter (Address: 0x18005c228)
- SizeofResource (Address: 0x18005c3e8)
- Sleep (Address: 0x18005c190)
- TerminateProcess (Address: 0x18005c230)
- TlsAlloc (Address: 0x18005c410)
- TlsFree (Address: 0x18005c3f0)
- TlsGetValue (Address: 0x18005c3f8)
- TlsSetValue (Address: 0x18005c420)
- UnhandledExceptionFilter (Address: 0x18005c220)
- UnmapViewOfFile (Address: 0x18005c188)
- UnregisterWaitEx (Address: 0x18005c1e8)
- VirtualAlloc (Address: 0x18005c298)
- VirtualProtect (Address: 0x18005c2a0)
- VirtualQuery (Address: 0x18005c2a8)
- WaitForMultipleObjects (Address: 0x18005c1f0)
- WaitForSingleObject (Address: 0x18005c418)
- WideCharToMultiByte (Address: 0x18005c340)
- WriteConsoleW (Address: 0x18005c3a8)
- WriteFile (Address: 0x18005c380)
ole32.dll
- CLSIDFromString (Address: 0x18005c6f0)
- CoCreateInstance (Address: 0x18005c6f8)
- CoGetObjectContext (Address: 0x18005c670)
- CoInitializeEx (Address: 0x18005c6b8)
- CoMarshalInterface (Address: 0x18005c6e0)
- CoQueryProxyBlanket (Address: 0x18005c698)
- CoRegisterClassObject (Address: 0x18005c690)
- CoRegisterMessageFilter (Address: 0x18005c6a8)
- CoRegisterPSClsid (Address: 0x18005c6a0)
- CoReleaseMarshalData (Address: 0x18005c6e8)
- CoSetProxyBlanket (Address: 0x18005c688)
- CoTaskMemAlloc (Address: 0x18005c680)
- CoTaskMemFree (Address: 0x18005c6c0)
- CoTaskMemRealloc (Address: 0x18005c6c8)
- CoUninitialize (Address: 0x18005c6b0)
- CoUnmarshalInterface (Address: 0x18005c6d8)
- CoWaitForMultipleHandles (Address: 0x18005c668)
- CreateStreamOnHGlobal (Address: 0x18005c6d0)
- StringFromGUID2 (Address: 0x18005c678)
OLEAUT32.dll
- SafeArrayGetDim (Address: 0x18005c4e8)
- SafeArrayGetLBound (Address: 0x18005c500)
- SafeArrayGetUBound (Address: 0x18005c4f8)
- SafeArrayPtrOfIndex (Address: 0x18005c550)
- SysAllocString (Address: 0x18005c518)
- SysAllocStringByteLen (Address: 0x18005c568)
- SysAllocStringLen (Address: 0x18005c530)
- SysFreeString (Address: 0x18005c520)
- SysStringByteLen (Address: 0x18005c528)
- SysStringLen (Address: 0x18005c538)
- VarBstrCat (Address: 0x18005c558)
- VariantChangeType (Address: 0x18005c540)
- VariantClear (Address: 0x18005c510)
- VariantCopy (Address: 0x18005c508)
- VariantCopyInd (Address: 0x18005c548)
- VariantInit (Address: 0x18005c4f0)
- VarUI4FromStr (Address: 0x18005c560)
RPCRT4.dll
- CStdStubBuffer_AddRef (Address: 0x18005c588)
- CStdStubBuffer_Connect (Address: 0x18005c5d0)
- CStdStubBuffer_CountRefs (Address: 0x18005c598)
- CStdStubBuffer_DebugServerQueryInterface (Address: 0x18005c578)
- CStdStubBuffer_DebugServerRelease (Address: 0x18005c5b0)
- CStdStubBuffer_Disconnect (Address: 0x18005c5b8)
- CStdStubBuffer_Invoke (Address: 0x18005c5e8)
- CStdStubBuffer_IsIIDSupported (Address: 0x18005c5c8)
- CStdStubBuffer_QueryInterface (Address: 0x18005c5a0)
- IUnknown_AddRef_Proxy (Address: 0x18005c5f0)
- IUnknown_QueryInterface_Proxy (Address: 0x18005c5c0)
- IUnknown_Release_Proxy (Address: 0x18005c590)
- NdrCStdStubBuffer_Release (Address: 0x18005c5e0)
- NdrDllGetClassObject (Address: 0x18005c5d8)
- NdrOleAllocate (Address: 0x18005c5a8)
- NdrOleFree (Address: 0x18005c580)
USER32.dll
- CharNextW (Address: 0x18005c608)
- CreateWindowExW (Address: 0x18005c630)
- DefWindowProcW (Address: 0x18005c650)
- DestroyWindow (Address: 0x18005c640)
- GetWindowLongPtrW (Address: 0x18005c618)
- IsWindow (Address: 0x18005c600)
- MsgWaitForMultipleObjects (Address: 0x18005c658)
- PostMessageW (Address: 0x18005c648)
- RegisterClassW (Address: 0x18005c610)
- SendMessageW (Address: 0x18005c628)
- SetWindowLongPtrW (Address: 0x18005c638)
- UnregisterClassW (Address: 0x18005c620)