VsGraphicsCapture.dll

Description: Microsoft Visual Studio Graphics Capture

Authors: © Microsoft Corporation. All rights reserved.

Version: 10.0.19041.4355

Architecture: 64-bit

Operating System: Windows NT

SHA256: 944c15dfc8dd1ff2d79154c146928f18

File Size: 159.0 KB

Uploaded At: Dec. 1, 2025, 7:42 a.m.

Views: 3

Security Warning

This file has been flagged as potentially dangerous.

Reason: Detected potentially dangerous functions used for process injection: OpenProcess

Exported Functions

  • PixCapture_BeginCommunication_2 (Ordinal: 1, Address: 0x6f20)
  • PixCapture_BeginCommunication (Ordinal: 2, Address: 0x6dd0)
  • PixCapture_EndCommunication (Ordinal: 3, Address: 0x72a0)
  • PixCapture_ExitProcess (Ordinal: 4, Address: 0x7300)
  • PixCapture_IsLegacyMachine (Ordinal: 5, Address: 0x70b0)
  • PixCapture_RunAction (Ordinal: 6, Address: 0x7240)
  • PixCapture_RunAction_2 (Ordinal: 7, Address: 0x7260)
  • PixCapture_RunAction_3 (Ordinal: 8, Address: 0x7280)
  • PixCapture_RunExperiment (Ordinal: 9, Address: 0x70c0)

Imported DLLs & Functions

api-ms-win-core-com-l1-1-0.dll
  • CoCreateInstance (Address: 0x18001aa18)
  • CoInitializeEx (Address: 0x18001aa10)
  • CoTaskMemAlloc (Address: 0x18001aa20)
  • CoTaskMemFree (Address: 0x18001aa30)
  • CoTaskMemRealloc (Address: 0x18001aa28)
  • CoUninitialize (Address: 0x18001aa08)
api-ms-win-core-debug-l1-1-0.dll
  • DebugBreak (Address: 0x18001aa40)
  • IsDebuggerPresent (Address: 0x18001aa50)
  • OutputDebugStringW (Address: 0x18001aa48)
api-ms-win-core-delayload-l1-1-0.dll
  • DelayLoadFailureHook (Address: 0x18001aa60)
api-ms-win-core-delayload-l1-1-1.dll
  • ResolveDelayLoadedAPI (Address: 0x18001aa70)
api-ms-win-core-errorhandling-l1-1-0.dll
  • GetLastError (Address: 0x18001aa98)
  • RaiseException (Address: 0x18001aa90)
  • SetLastError (Address: 0x18001aaa0)
  • SetUnhandledExceptionFilter (Address: 0x18001aa80)
  • UnhandledExceptionFilter (Address: 0x18001aa88)
api-ms-win-core-file-l1-1-0.dll
  • CreateFileW (Address: 0x18001aad8)
  • DeleteFileW (Address: 0x18001aac8)
  • FlushFileBuffers (Address: 0x18001aab8)
  • GetFileAttributesW (Address: 0x18001aab0)
  • GetFileSize (Address: 0x18001aac0)
  • GetFileSizeEx (Address: 0x18001aaf0)
  • GetFullPathNameW (Address: 0x18001aae0)
  • GetTempFileNameW (Address: 0x18001aad0)
  • ReadFile (Address: 0x18001ab00)
  • SetFilePointerEx (Address: 0x18001aaf8)
  • WriteFile (Address: 0x18001aae8)
api-ms-win-core-file-l1-2-0.dll
  • GetTempPathW (Address: 0x18001ab10)
api-ms-win-core-handle-l1-1-0.dll
  • CloseHandle (Address: 0x18001ab20)
api-ms-win-core-heap-l1-1-0.dll
  • GetProcessHeap (Address: 0x18001ab30)
  • HeapAlloc (Address: 0x18001ab48)
  • HeapDestroy (Address: 0x18001ab50)
  • HeapFree (Address: 0x18001ab58)
  • HeapReAlloc (Address: 0x18001ab40)
  • HeapSize (Address: 0x18001ab38)
api-ms-win-core-heap-obsolete-l1-1-0.dll
  • LocalFree (Address: 0x18001ab68)
api-ms-win-core-interlocked-l1-1-0.dll
  • InitializeSListHead (Address: 0x18001ab78)
api-ms-win-core-io-l1-1-0.dll
  • GetOverlappedResult (Address: 0x18001ab88)
api-ms-win-core-kernel32-legacy-l1-1-0.dll
  • CreateSemaphoreW (Address: 0x18001ab98)
api-ms-win-core-libraryloader-l1-2-0.dll
  • FindResourceExW (Address: 0x18001abb0)
  • FreeLibrary (Address: 0x18001abb8)
  • GetModuleFileNameA (Address: 0x18001abc8)
  • GetModuleFileNameW (Address: 0x18001abe8)
  • GetModuleHandleExW (Address: 0x18001abd0)
  • GetModuleHandleW (Address: 0x18001abe0)
  • GetProcAddress (Address: 0x18001abd8)
  • LoadLibraryExW (Address: 0x18001abc0)
  • LoadResource (Address: 0x18001aba8)
  • LockResource (Address: 0x18001abf0)
  • SizeofResource (Address: 0x18001abf8)
api-ms-win-core-localization-l1-2-0.dll
  • FormatMessageW (Address: 0x18001ac10)
  • GetThreadLocale (Address: 0x18001ac18)
  • SetThreadLocale (Address: 0x18001ac08)
api-ms-win-core-memory-l1-1-0.dll
  • CreateFileMappingW (Address: 0x18001ac28)
  • MapViewOfFile (Address: 0x18001ac38)
  • UnmapViewOfFile (Address: 0x18001ac30)
api-ms-win-core-namedpipe-l1-1-0.dll
  • DisconnectNamedPipe (Address: 0x18001ac50)
  • WaitNamedPipeW (Address: 0x18001ac48)
api-ms-win-core-processenvironment-l1-1-0.dll
  • GetEnvironmentVariableW (Address: 0x18001ac60)
api-ms-win-core-processthreads-l1-1-0.dll
  • CreateProcessW (Address: 0x18001aca0)
  • CreateThread (Address: 0x18001ac70)
  • GetCurrentProcess (Address: 0x18001ac90)
  • GetCurrentProcessId (Address: 0x18001aca8)
  • GetCurrentThreadId (Address: 0x18001ac80)
  • ProcessIdToSessionId (Address: 0x18001ac88)
  • ResumeThread (Address: 0x18001ac78)
  • TerminateProcess (Address: 0x18001ac98)
api-ms-win-core-processthreads-l1-1-1.dll
  • IsProcessorFeaturePresent (Address: 0x18001acb8)
  • OpenProcess (Address: 0x18001acc0)
api-ms-win-core-profile-l1-1-0.dll
  • QueryPerformanceCounter (Address: 0x18001acd0)
api-ms-win-core-psapi-l1-1-0.dll
  • QueryFullProcessImageNameW (Address: 0x18001ace0)
api-ms-win-core-registry-l1-1-0.dll
  • RegCloseKey (Address: 0x18001ad18)
  • RegCreateKeyExW (Address: 0x18001acf0)
  • RegDeleteValueW (Address: 0x18001ad10)
  • RegEnumKeyExW (Address: 0x18001ad00)
  • RegOpenKeyExW (Address: 0x18001ad28)
  • RegQueryInfoKeyW (Address: 0x18001ad08)
  • RegQueryValueExW (Address: 0x18001ad20)
  • RegSetValueExW (Address: 0x18001acf8)
api-ms-win-core-rtlsupport-l1-1-0.dll
  • RtlCaptureContext (Address: 0x18001ad48)
  • RtlLookupFunctionEntry (Address: 0x18001ad40)
  • RtlVirtualUnwind (Address: 0x18001ad38)
api-ms-win-core-string-l1-1-0.dll
  • MultiByteToWideChar (Address: 0x18001ad58)
api-ms-win-core-string-l2-1-0.dll
  • CharNextW (Address: 0x18001ad68)
api-ms-win-core-string-obsolete-l1-1-0.dll
  • lstrcmpiW (Address: 0x18001ad78)
api-ms-win-core-synch-l1-1-0.dll
  • CreateEventW (Address: 0x18001ad90)
  • CreateMutexExW (Address: 0x18001adb8)
  • CreateSemaphoreExW (Address: 0x18001adc0)
  • DeleteCriticalSection (Address: 0x18001ada8)
  • EnterCriticalSection (Address: 0x18001adf8)
  • InitializeCriticalSection (Address: 0x18001adb0)
  • InitializeCriticalSectionAndSpinCount (Address: 0x18001ad98)
  • LeaveCriticalSection (Address: 0x18001ada0)
  • OpenSemaphoreW (Address: 0x18001adc8)
  • ReleaseMutex (Address: 0x18001ade0)
  • ReleaseSemaphore (Address: 0x18001adf0)
  • SetEvent (Address: 0x18001add8)
  • WaitForMultipleObjectsEx (Address: 0x18001ad88)
  • WaitForSingleObject (Address: 0x18001ade8)
  • WaitForSingleObjectEx (Address: 0x18001add0)
api-ms-win-core-synch-l1-2-0.dll
  • Sleep (Address: 0x18001ae08)
api-ms-win-core-sysinfo-l1-1-0.dll
  • GetLocalTime (Address: 0x18001ae28)
  • GetSystemDirectoryW (Address: 0x18001ae18)
  • GetSystemTimeAsFileTime (Address: 0x18001ae20)
api-ms-win-core-toolhelp-l1-1-0.dll
  • CreateToolhelp32Snapshot (Address: 0x18001ae38)
  • Process32FirstW (Address: 0x18001ae48)
  • Process32NextW (Address: 0x18001ae40)
api-ms-win-core-version-l1-1-0.dll
  • GetFileVersionInfoExW (Address: 0x18001ae60)
  • GetFileVersionInfoSizeExW (Address: 0x18001ae68)
  • VerQueryValueW (Address: 0x18001ae58)
api-ms-win-crt-private-l1-1-0.dll
  • __C_specific_handler (Address: 0x18001af78)
  • __CxxFrameHandler3 (Address: 0x18001af80)
  • __std_type_info_compare (Address: 0x18001af70)
  • _CxxThrowException (Address: 0x18001af08)
  • _o___std_exception_copy (Address: 0x18001af68)
  • _o___std_exception_destroy (Address: 0x18001af60)
  • _o___std_type_info_destroy_list (Address: 0x18001af58)
  • _o___stdio_common_vsnprintf_s (Address: 0x18001af50)
  • _o___stdio_common_vswprintf (Address: 0x18001af48)
  • _o___stdio_common_vswprintf_s (Address: 0x18001af40)
  • _o__callnewh (Address: 0x18001af38)
  • _o__cexit (Address: 0x18001af30)
  • _o__configure_narrow_argv (Address: 0x18001af28)
  • _o__crt_atexit (Address: 0x18001af20)
  • _o__errno (Address: 0x18001af18)
  • _o__execute_onexit_table (Address: 0x18001af10)
  • _o__initialize_narrow_environment (Address: 0x18001ae78)
  • _o__initialize_onexit_table (Address: 0x18001ae80)
  • _o__invalid_parameter_noinfo (Address: 0x18001ae88)
  • _o__invalid_parameter_noinfo_noreturn (Address: 0x18001ae90)
  • _o__purecall (Address: 0x18001ae98)
  • _o__recalloc (Address: 0x18001aea0)
  • _o__register_onexit_function (Address: 0x18001aea8)
  • _o__seh_filter_dll (Address: 0x18001aeb0)
  • _o__wcsnicmp (Address: 0x18001aec0)
  • _o_calloc (Address: 0x18001aec8)
  • _o_free (Address: 0x18001aed0)
  • _o_malloc (Address: 0x18001aed8)
  • _o_terminate (Address: 0x18001aee0)
  • _o_wcscat_s (Address: 0x18001aee8)
  • _o_wcscpy_s (Address: 0x18001aef0)
  • _o_wcsncpy_s (Address: 0x18001aef8)
  • _o_wmemcpy_s (Address: 0x18001af00)
  • memcpy (Address: 0x18001af88)
  • memmove (Address: 0x18001aeb8)
api-ms-win-crt-runtime-l1-1-0.dll
  • _initterm (Address: 0x18001afa0)
  • _initterm_e (Address: 0x18001af98)
api-ms-win-crt-string-l1-1-0.dll
  • memset (Address: 0x18001afb0)
api-ms-win-security-base-l1-1-0.dll
  • AddAccessAllowedAceEx (Address: 0x18001aff0)
  • AddAce (Address: 0x18001afe8)
  • CreateWellKnownSid (Address: 0x18001afd8)
  • GetAce (Address: 0x18001afc8)
  • GetAclInformation (Address: 0x18001b010)
  • GetFileSecurityW (Address: 0x18001b008)
  • GetLengthSid (Address: 0x18001afc0)
  • InitializeAcl (Address: 0x18001b000)
  • MakeAbsoluteSD (Address: 0x18001afd0)
  • SetFileSecurityW (Address: 0x18001afe0)
  • SetSecurityDescriptorDacl (Address: 0x18001aff8)
DXToolsMonitor.dll
  • CreateSerializationController (Address: 0x18001a9b0)
  • CreateWin8Injector (Address: 0x18001a9a8)
OLEAUT32.dll
  • SysAllocString (Address: 0x18001a9c8)
  • SysAllocStringByteLen (Address: 0x18001a9e8)
  • SysAllocStringLen (Address: 0x18001a9d8)
  • SysFreeString (Address: 0x18001a9f8)
  • SysStringByteLen (Address: 0x18001a9e0)
  • VariantClear (Address: 0x18001a9c0)
  • VariantInit (Address: 0x18001a9f0)
  • VarUI4FromStr (Address: 0x18001a9d0)