问题描述

这是我运行dumpbin .exe文件时得到的内容的一部分.

Here is a part of what I got when run dumpbin .exe file.

  Section contains the following imports:

    KERNEL32.dll
                5A71E8 Import Address Table
                620468 Import Name Table
                     0 time date stamp
                     0 Index of first forwarder reference

                  458 SetErrorMode
                  2B9 GlobalFlags
                   64 CompareStringW
                  206 GetLocaleInfoW
                  26E GetSystemDefaultUILanguage
                  418 RtlUnwind
                  300 IsDebuggerPresent
                  304 IsProcessorFeaturePresent
                   B5 CreateThread
                  11A ExitThread
                  119 ExitProcess
                  217 GetModuleHandleExW
                  2D1 HeapQueryInformation
                  487 SetStdHandle
                  1F3 GetFileType
                  4F1 VirtualQuery
                  264 GetStdHandle
                  263 GetStartupInfoW

此部分在SECTION HEADER#2下(.rdata名称...)我不知道这些行在KERNEL32.dll下是什么意思?谢谢

This part is under SECTION HEADER #2( .rdata name...)I don't know what is these lines under the line KERNEL32.dll mean?Thanks

推荐答案

458 SetErrorMode
2B9 GlobalFlags
 64 CompareStringW
206 GetLocaleInfoW

右列是函数的名称，左列是kernel33.dll的导入表中该函数的索引(以十六进制表示).

The right-hand column is the name of the function, the left-hand column is the index of the function in kernel33.dll's import table, in hexadecimal.

根据代码页设置，后缀"W"表示函数采用UTF-16宽"字符串，后缀"A"表示其采用ASCII或其他8位字符串.其中包括UTF-8.

The 'W' suffix indicates that the function takes UTF-16 'Wide' strings, a 'A' suffix indicates that it takes ASCII, or other 8-bit string, according to the codepage settings. This includes UTF-8.

这篇关于.dll导入部分下方的转储输出含义的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！