VsGraphicsHelper.dll
Description: Microsoft Visual Studio Graphics Helper DLL (64-bit)
Authors: © Microsoft Corporation. All rights reserved.
Version: 17.0.36015.10
Architecture: 64-bit
Operating System: Windows
SHA256: 9aba66217d61fdfc3e7512e91f39a16e
File Size: 2.0 MB
Uploaded At: Dec. 1, 2025, 7:42 a.m.
Views: 3
Security Warning
This file has been flagged as potentially dangerous.
Reason: Detected potentially dangerous functions used for process injection: WriteProcessMemory, VirtualAllocEx
Exported Functions
- DisableD3DSpy (Ordinal: 1, Address: 0x80400)
- VsgDbgAddHUDMessage (Ordinal: 2, Address: 0x2bb50)
- VsgDbgBeginCapture (Ordinal: 3, Address: 0x2ba80)
- VsgDbgCaptureCurrentFrame (Ordinal: 4, Address: 0x2ba40)
- VsgDbgCopy (Ordinal: 5, Address: 0x2bae0)
- VsgDbgEndCapture (Ordinal: 6, Address: 0x2bab0)
- VsgDbgInit (Ordinal: 7, Address: 0x2b9c0)
- VsgDbgInitDelayed (Ordinal: 8, Address: 0x2b900)
- VsgDbgToggleHUD (Ordinal: 9, Address: 0x2ba20)
- VsgDbgUnInit (Ordinal: 10, Address: 0x2ba00)
Imported DLLs & Functions
ADVAPI32.dll
- CreateProcessAsUserA (Address: 0x1800f7000)
- CreateProcessAsUserW (Address: 0x1800f7008)
- RegCloseKey (Address: 0x1800f7010)
- RegCreateKeyExW (Address: 0x1800f7038)
- RegDeleteKeyExW (Address: 0x1800f7040)
- RegDeleteValueW (Address: 0x1800f7048)
- RegGetValueW (Address: 0x1800f7028)
- RegOpenKeyExW (Address: 0x1800f7018)
- RegQueryValueExW (Address: 0x1800f7020)
- RegSetValueExW (Address: 0x1800f7030)
d2d1.dll
- (Address: 0x1800f7550)
d3d11.dll
- D3D11CreateDevice (Address: 0x1800f7560)
DWrite.dll
- DWriteCreateFactory (Address: 0x1800f7058)
dxgi.dll
- CreateDXGIFactory1 (Address: 0x1800f7570)
GDI32.dll
- GetDeviceCaps (Address: 0x1800f7068)
imagehlp.dll
- UnMapAndLoad (Address: 0x1800f7580)
KERNEL32.dll
- CloseHandle (Address: 0x1800f70f8)
- CopyFileExW (Address: 0x1800f7230)
- CreateEventW (Address: 0x1800f70d8)
- CreateFileMappingW (Address: 0x1800f7178)
- CreateFileW (Address: 0x1800f70e8)
- CreateProcessA (Address: 0x1800f7390)
- CreateProcessW (Address: 0x1800f7388)
- CreateThread (Address: 0x1800f7220)
- CreateToolhelp32Snapshot (Address: 0x1800f7298)
- DecodePointer (Address: 0x1800f7340)
- DeleteCriticalSection (Address: 0x1800f7148)
- DeleteFileW (Address: 0x1800f71c8)
- EncodePointer (Address: 0x1800f7470)
- EnterCriticalSection (Address: 0x1800f71d0)
- ExitProcess (Address: 0x1800f7238)
- FileTimeToSystemTime (Address: 0x1800f72d8)
- FindClose (Address: 0x1800f72c8)
- FindFirstFileExW (Address: 0x1800f74d8)
- FindFirstFileW (Address: 0x1800f72c0)
- FindNextFileW (Address: 0x1800f74e0)
- FindResourceExW (Address: 0x1800f71a0)
- FindResourceW (Address: 0x1800f70b0)
- FlushFileBuffers (Address: 0x1800f74d0)
- FlushInstructionCache (Address: 0x1800f73a0)
- FormatMessageW (Address: 0x1800f7338)
- FreeEnvironmentStringsW (Address: 0x1800f73c8)
- FreeLibrary (Address: 0x1800f7088)
- GetACP (Address: 0x1800f73f8)
- GetCommandLineA (Address: 0x1800f73e0)
- GetCommandLineW (Address: 0x1800f73d8)
- GetConsoleMode (Address: 0x1800f74c8)
- GetConsoleOutputCP (Address: 0x1800f74c0)
- GetCPInfo (Address: 0x1800f73e8)
- GetCurrentProcess (Address: 0x1800f7158)
- GetCurrentProcessId (Address: 0x1800f7200)
- GetCurrentThreadId (Address: 0x1800f7208)
- GetEnvironmentStringsW (Address: 0x1800f73d0)
- GetExitCodeProcess (Address: 0x1800f7120)
- GetFileSizeEx (Address: 0x1800f7268)
- GetFileTime (Address: 0x1800f72d0)
- GetFileType (Address: 0x1800f74b0)
- GetLastError (Address: 0x1800f7108)
- GetModuleFileNameA (Address: 0x1800f7320)
- GetModuleFileNameW (Address: 0x1800f7080)
- GetModuleHandleA (Address: 0x1800f71b0)
- GetModuleHandleExW (Address: 0x1800f7308)
- GetModuleHandleW (Address: 0x1800f7408)
- GetOEMCP (Address: 0x1800f73f0)
- GetOverlappedResult (Address: 0x1800f7110)
- GetProcAddress (Address: 0x1800f71a8)
- GetProcessHeap (Address: 0x1800f71e8)
- GetStartupInfoW (Address: 0x1800f7438)
- GetStdHandle (Address: 0x1800f74a8)
- GetStringTypeW (Address: 0x1800f73c0)
- GetSystemDirectoryW (Address: 0x1800f7248)
- GetSystemInfo (Address: 0x1800f7498)
- GetSystemTimeAsFileTime (Address: 0x1800f7218)
- GetTempFileNameW (Address: 0x1800f71c0)
- GetTempPathW (Address: 0x1800f71b8)
- GetThreadContext (Address: 0x1800f7360)
- GetThreadLocale (Address: 0x1800f7090)
- GetTickCount (Address: 0x1800f7288)
- GetVersionExW (Address: 0x1800f7210)
- HeapAlloc (Address: 0x1800f70d0)
- HeapDestroy (Address: 0x1800f70b8)
- HeapFree (Address: 0x1800f7358)
- HeapReAlloc (Address: 0x1800f70c8)
- HeapSize (Address: 0x1800f70c0)
- InitializeCriticalSection (Address: 0x1800f7250)
- InitializeCriticalSectionAndSpinCount (Address: 0x1800f71e0)
- InitializeCriticalSectionEx (Address: 0x1800f7190)
- InitializeSListHead (Address: 0x1800f7440)
- InterlockedFlushSList (Address: 0x1800f7458)
- InterlockedPopEntrySList (Address: 0x1800f73a8)
- InterlockedPushEntrySList (Address: 0x1800f7450)
- IsDebuggerPresent (Address: 0x1800f7430)
- IsProcessorFeaturePresent (Address: 0x1800f7428)
- IsValidCodePage (Address: 0x1800f74e8)
- IsWow64Process (Address: 0x1800f7368)
- K32EnumProcessModules (Address: 0x1800f7168)
- K32GetModuleFileNameExW (Address: 0x1800f7170)
- K32GetModuleInformation (Address: 0x1800f7150)
- LCMapStringW (Address: 0x1800f74b8)
- LeaveCriticalSection (Address: 0x1800f71d8)
- LoadLibraryExA (Address: 0x1800f7398)
- LoadLibraryExW (Address: 0x1800f7078)
- LoadLibraryW (Address: 0x1800f7240)
- LoadResource (Address: 0x1800f70a8)
- LocalFree (Address: 0x1800f70e0)
- LockResource (Address: 0x1800f70a0)
- lstrcmpiW (Address: 0x1800f7290)
- lstrlenA (Address: 0x1800f7260)
- lstrlenW (Address: 0x1800f7198)
- MapViewOfFile (Address: 0x1800f7180)
- Module32FirstW (Address: 0x1800f72a0)
- Module32NextW (Address: 0x1800f72a8)
- MultiByteToWideChar (Address: 0x1800f7160)
- OutputDebugStringA (Address: 0x1800f7310)
- OutputDebugStringW (Address: 0x1800f7228)
- PeekNamedPipe (Address: 0x1800f7140)
- QueryPerformanceCounter (Address: 0x1800f7280)
- QueryPerformanceFrequency (Address: 0x1800f7278)
- RaiseException (Address: 0x1800f7468)
- ReadFile (Address: 0x1800f7128)
- ReadProcessMemory (Address: 0x1800f7138)
- ResumeThread (Address: 0x1800f71f0)
- RtlCaptureContext (Address: 0x1800f7350)
- RtlCaptureStackBackTrace (Address: 0x1800f7318)
- RtlLookupFunctionEntry (Address: 0x1800f7410)
- RtlPcToFileHeader (Address: 0x1800f7460)
- RtlUnwindEx (Address: 0x1800f7448)
- RtlVirtualUnwind (Address: 0x1800f7418)
- SetFilePointerEx (Address: 0x1800f7258)
- SetLastError (Address: 0x1800f7330)
- SetNamedPipeHandleState (Address: 0x1800f70f0)
- SetStdHandle (Address: 0x1800f73b8)
- SetThreadContext (Address: 0x1800f7348)
- SetUnhandledExceptionFilter (Address: 0x1800f71f8)
- SizeofResource (Address: 0x1800f7098)
- Sleep (Address: 0x1800f7130)
- SystemTimeToTzSpecificLocalTime (Address: 0x1800f72e0)
- TerminateProcess (Address: 0x1800f7400)
- TerminateThread (Address: 0x1800f7270)
- TlsAlloc (Address: 0x1800f7478)
- TlsFree (Address: 0x1800f7490)
- TlsGetValue (Address: 0x1800f7480)
- TlsSetValue (Address: 0x1800f7488)
- UnhandledExceptionFilter (Address: 0x1800f7420)
- UnmapViewOfFile (Address: 0x1800f7188)
- VirtualAlloc (Address: 0x1800f72e8)
- VirtualAllocEx (Address: 0x1800f7380)
- VirtualFree (Address: 0x1800f72f0)
- VirtualProtect (Address: 0x1800f7328)
- VirtualProtectEx (Address: 0x1800f7378)
- VirtualQuery (Address: 0x1800f74a0)
- VirtualQueryEx (Address: 0x1800f7370)
- WaitForSingleObject (Address: 0x1800f7118)
- WideCharToMultiByte (Address: 0x1800f72f8)
- Wow64DisableWow64FsRedirection (Address: 0x1800f72b0)
- Wow64RevertWow64FsRedirection (Address: 0x1800f72b8)
- WriteConsoleW (Address: 0x1800f73b0)
- WriteFile (Address: 0x1800f7100)
- WriteProcessMemory (Address: 0x1800f7300)
ole32.dll
- CoCreateInstance (Address: 0x1800f7598)
- CoInitializeEx (Address: 0x1800f75a0)
- CoUninitialize (Address: 0x1800f7590)
OLEAUT32.dll
- SysAllocString (Address: 0x1800f7510)
- SysFreeString (Address: 0x1800f74f8)
- VariantClear (Address: 0x1800f7508)
- VariantInit (Address: 0x1800f7500)
SHLWAPI.dll
- PathAppendW (Address: 0x1800f7520)
VERSION.dll
- GetFileVersionInfoExW (Address: 0x1800f7530)
- GetFileVersionInfoSizeExW (Address: 0x1800f7540)
- VerQueryValueW (Address: 0x1800f7538)