ZeroRat3[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

ZeroRat3.rar
Size

30.1MB
MD5

e363f9d7b82d94eb1bc7dd194dcb6f72
SHA1

b9bfb5c9a3a3f97f495354885834fb82c641855b
SHA256

2ff299d392ac558f5d81b603d37a3ebdb24675ff68e57cf5718505247f61d256
SHA512

5ce5eccb9c780c80ac7be7118b12e3ca6872ecca0d7f5c478c13f7d8ea717f8846a1caff9f4fed7154d143edac4fe8afaebda15e4661b87ec7546d08264cc6d4
SSDEEP

786432:aNJfUu/iiCsRFJueawuLOlWIEGKgAyAHkztP4jKWk:aLL/spylWIJKgnNjt

Score

3^/10

pyinstaller

Malware Config

Signatures

Detects Pyinstaller 3 IoCs

pyinstaller

resource	yara_rule
static1/unpack001/resources/app/Backend/cl.exe	pyinstaller
static1/unpack001/resources/app/Backend/defendHelper.exe	pyinstaller
static1/unpack001/resources/app/Backend/packager.exe	pyinstaller

Unsigned PE 5 IoCs

Checks for missing Authenticode signature.

resource
unpack001/resources/app/Backend/cl.exe
unpack001/resources/app/Backend/defendHelper.exe
unpack001/resources/app/Backend/packager.exe
unpack001/swiftshader/libEGL.dll
unpack001/swiftshader/libGLESv2.dll

Files

ZeroRat3.rar
.rar
resources/app/.idea/.gitignore
resources/app/.idea/Zer0Day2.iml
.xml
resources/app/.idea/dataSources.local.xml
.xml
resources/app/.idea/dataSources.xml
.xml
resources/app/.idea/dataSources/7e33b50a-24fa-4abd-912c-50c5974e9def.xml
.xml
resources/app/.idea/dataSources/7e33b50a-24fa-4abd-912c-50c5974e9def/storage_v2/_src_/database/qvomktas.nnAgAA.meta
resources/app/.idea/dataSources/7e33b50a-24fa-4abd-912c-50c5974e9def/storage_v2/_src_/database/qvomktas.nnAgAA/schema/information_schema.FNRwLQ.meta
resources/app/.idea/dataSources/7e33b50a-24fa-4abd-912c-50c5974e9def/storage_v2/_src_/database/qvomktas.nnAgAA/schema/pg_catalog.0S1ZNQ.meta
resources/app/.idea/dataSources/7e33b50a-24fa-4abd-912c-50c5974e9def/storage_v2/_src_/database/qvomktas.nnAgAA/schema/public.abK9xQ.meta
resources/app/.idea/dataSources/7e33b50a-24fa-4abd-912c-50c5974e9def/storage_v2/_src_/database/qvomktas.nnAgAA/schema/public.abK9xQ.zip
.zip
routine/earth.abO9BQ.meta
routine/earth.abO9BQ.sql
routine/earth_box.Rk3LJA.meta
routine/earth_box.Rk3LJA.sql
routine/earth_distance.gfBvpA.meta
routine/earth_distance.gfBvpA.sql
routine/gc_to_sec.npMpEg.meta
routine/gc_to_sec.npMpEg.sql
routine/latitude.BeIycA.meta
routine/latitude.BeIycA.sql
routine/ll_to_earth.QFpq6g.meta
routine/ll_to_earth.QFpq6g.sql
routine/longitude.SD83zg.meta
routine/longitude.SD83zg.sql
routine/regexp_match.-xdnNg.meta
routine/regexp_match.-xdnNg.sql
routine/regexp_match.qsv_0w.meta
routine/regexp_match.qsv_0w.sql
routine/regexp_matches.6ZwoaA.meta
routine/regexp_matches.6ZwoaA.sql
routine/regexp_matches.mFDBBQ.meta
routine/regexp_matches.mFDBBQ.sql
routine/regexp_replace.asZGdw.meta
routine/regexp_replace.asZGdw.sql
routine/regexp_replace.uYTHtw.meta
routine/regexp_replace.uYTHtw.sql
routine/regexp_split_to_array._D3IaA.meta
routine/regexp_split_to_array._D3IaA.sql
routine/regexp_split_to_array.q_FgBg.meta
routine/regexp_split_to_array.q_FgBg.sql
routine/regexp_split_to_table.ILtkBw.meta
routine/regexp_split_to_table.ILtkBw.sql
routine/regexp_split_to_table.cQfMaQ.meta
routine/regexp_split_to_table.cQfMaQ.sql
routine/replace.hmUsvA.meta
routine/replace.hmUsvA.sql
routine/sec_to_gc.ALoxhQ.meta
routine/sec_to_gc.ALoxhQ.sql
routine/split_part.pbnOTg.meta
routine/split_part.pbnOTg.sql
routine/strpos.HpthLA.meta
routine/strpos.HpthLA.sql
routine/translate.Ol60Ag.meta
routine/translate.Ol60Ag.sql
routine/trigger_set_timestamp.Ua765A.meta
routine/trigger_set_timestamp.Ua765A.sql
routine/xpath_list.G5Ks7Q.meta
routine/xpath_list.G5Ks7Q.sql
routine/xpath_nodeset.6j-MZQ.meta
routine/xpath_nodeset.6j-MZQ.sql
routine/xpath_nodeset.mRA8Dw.meta
routine/xpath_nodeset.mRA8Dw.sql
view/pg_stat_statements.Z22N7w.meta
view/pg_stat_statements.Z22N7w.sql
resources/app/.idea/inspectionProfiles/profiles_settings.xml
resources/app/.idea/jsLibraryMappings.xml
.xml
resources/app/.idea/misc.xml
.xml
resources/app/.idea/modules.xml
.xml
resources/app/.idea/workspace.xml
.xml
resources/app/Backend/cl.exe
.exe windows x64

a6cec5b1a631d592d80900ab7e1de8df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

CreateWindowExW
MessageBoxW
MessageBoxA
SystemParametersInfoW
DestroyIcon
SetWindowLongPtrW
GetWindowLongPtrW
GetClientRect
InvalidateRect
ReleaseDC
GetDC
DrawTextW
GetDialogBaseUnits
EndDialog
DialogBoxIndirectParamW
MoveWindow
SendMessageW

comctl32

ord380

kernel32

IsValidCodePage
GetStringTypeW
GetFileAttributesExW
HeapReAlloc
FlushFileBuffers
GetCurrentDirectoryW
GetACP
GetOEMCP
GetModuleHandleW
MulDiv
GetLastError
SetDllDirectoryW
GetModuleFileNameW
GetProcAddress
GetCommandLineW
GetEnvironmentVariableW
GetCPInfo
ExpandEnvironmentStringsW
CreateDirectoryW
GetTempPathW
WaitForSingleObject
Sleep
GetExitCodeProcess
CreateProcessW
GetStartupInfoW
FreeLibrary
LoadLibraryExW
SetConsoleCtrlHandler
FindClose
FindFirstFileExW
CloseHandle
GetCurrentProcess
LocalFree
FormatMessageW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetTimeZoneInformation
HeapSize
WriteConsoleW
SetEndOfFile
SetEnvironmentVariableW
RtlUnwindEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
EncodePointer
RaiseException
RtlPcToFileHeader
GetCommandLineA
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFullPathNameW
RemoveDirectoryW
FindNextFileW
SetStdHandle
DeleteFileW
ReadFile
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
HeapFree
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetFileSizeEx
HeapAlloc
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringW
LCMapStringW

advapi32

OpenProcessToken
GetTokenInformation
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSidToStringSidW

gdi32

SelectObject
DeleteObject
CreateFontIndirectW

Sections

.text
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
resources/app/Backend/defendHelper.exe
.exe windows x64

7320b3cae0f7c7e579e85728a091f04b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

CreateWindowExW
MessageBoxW
MessageBoxA
SystemParametersInfoW
DestroyIcon
SetWindowLongPtrW
GetWindowLongPtrW
GetClientRect
InvalidateRect
ReleaseDC
GetDC
DrawTextW
GetDialogBaseUnits
EndDialog
DialogBoxIndirectParamW
MoveWindow
SendMessageW

comctl32

ord380

kernel32

GetOEMCP
GetACP
IsValidCodePage
GetFileAttributesExW
FlushFileBuffers
GetCurrentDirectoryW
GetCPInfo
GetEnvironmentStringsW
GetModuleHandleW
MulDiv
GetLastError
SetDllDirectoryW
GetModuleFileNameW
GetProcAddress
GetCommandLineW
FreeEnvironmentStringsW
SetEnvironmentVariableW
ExpandEnvironmentStringsW
CreateDirectoryW
GetTempPathW
WaitForSingleObject
Sleep
GetExitCodeProcess
CreateProcessW
GetStartupInfoW
FreeLibrary
LoadLibraryExW
CloseHandle
GetCurrentProcess
LoadLibraryA
LocalFree
FormatMessageW
MultiByteToWideChar
WideCharToMultiByte
GetStringTypeW
GetProcessHeap
GetTimeZoneInformation
HeapSize
HeapReAlloc
WriteConsoleW
SetEndOfFile
GetEnvironmentVariableW
RtlUnwindEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
RaiseException
GetCommandLineA
ReadFile
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFullPathNameW
RemoveDirectoryW
FindClose
FindFirstFileExW
FindNextFileW
SetStdHandle
SetConsoleCtrlHandler
DeleteFileW
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
HeapFree
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetFileSizeEx
HeapAlloc
CompareStringW
LCMapStringW

advapi32

OpenProcessToken
GetTokenInformation
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSidToStringSidW

gdi32

SelectObject
DeleteObject
CreateFontIndirectW

Sections

.text
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
resources/app/Backend/packager.exe
.exe windows x64

a6cec5b1a631d592d80900ab7e1de8df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

CreateWindowExW
MessageBoxW
MessageBoxA
SystemParametersInfoW
DestroyIcon
SetWindowLongPtrW
GetWindowLongPtrW
GetClientRect
InvalidateRect
ReleaseDC
GetDC
DrawTextW
GetDialogBaseUnits
EndDialog
DialogBoxIndirectParamW
MoveWindow
SendMessageW

comctl32

ord380

kernel32

IsValidCodePage
GetStringTypeW
GetFileAttributesExW
HeapReAlloc
FlushFileBuffers
GetCurrentDirectoryW
GetACP
GetOEMCP
GetModuleHandleW
MulDiv
GetLastError
SetDllDirectoryW
GetModuleFileNameW
GetProcAddress
GetCommandLineW
GetEnvironmentVariableW
GetCPInfo
ExpandEnvironmentStringsW
CreateDirectoryW
GetTempPathW
WaitForSingleObject
Sleep
GetExitCodeProcess
CreateProcessW
GetStartupInfoW
FreeLibrary
LoadLibraryExW
SetConsoleCtrlHandler
FindClose
FindFirstFileExW
CloseHandle
GetCurrentProcess
LocalFree
FormatMessageW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetTimeZoneInformation
HeapSize
WriteConsoleW
SetEndOfFile
SetEnvironmentVariableW
RtlUnwindEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
EncodePointer
RaiseException
RtlPcToFileHeader
GetCommandLineA
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFullPathNameW
RemoveDirectoryW
FindNextFileW
SetStdHandle
DeleteFileW
ReadFile
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
HeapFree
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetFileSizeEx
HeapAlloc
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringW
LCMapStringW

advapi32

OpenProcessToken
GetTokenInformation
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSidToStringSidW

gdi32

SelectObject
DeleteObject
CreateFontIndirectW

Sections

.text
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
resources/app/Backend/packagerLin.py
resources/app/css/about.css
resources/app/css/consolidate.css
resources/app/css/create.css
resources/app/css/index.css
resources/app/css/splash.css
resources/app/css/terminal.css
resources/app/external_libs/bootstrap/bootstrap.min.css
resources/app/external_libs/bootstrap/bootstrap.min.js
.js
resources/app/external_libs/crypto/crypto.js
.js
resources/app/external_libs/customScrollBar/customScroll.css
resources/app/external_libs/customScrollBar/customScroll.js
.js
resources/app/external_libs/initVector/appendInitVect.js
resources/app/external_libs/jquery/jquery.js
.js
resources/app/external_libs/owl/owl.css
resources/app/external_libs/owl/pageStyle.css
resources/app/external_libs/popper/popper.js
.js
resources/app/external_libs/sidenav/sidenav.js
.js
resources/app/html/about.html
.html .js
resources/app/html/consolidate.html
.html .js
resources/app/html/create.html
.html .js
resources/app/html/index.html
.html .js
resources/app/html/splash.html
.html .js
resources/app/html/terminal.html
.html .js
resources/app/main.js
.js
resources/app/node_modules/.package-lock.json
resources/app/node_modules/buffer-writer/.travis.yml
resources/app/node_modules/buffer-writer/LICENSE
resources/app/node_modules/buffer-writer/README.md
.js
resources/app/node_modules/buffer-writer/index.js
.js
resources/app/node_modules/buffer-writer/package.json
resources/app/node_modules/buffer-writer/test/mocha.opts
resources/app/node_modules/buffer-writer/test/writer-tests.js
.js
resources/app/node_modules/crypto/README.md
resources/app/node_modules/crypto/package.json
resources/app/node_modules/doc-ready/.npmignore
resources/app/node_modules/doc-ready/README.md
.js
resources/app/node_modules/doc-ready/bower.json
resources/app/node_modules/doc-ready/component.json
resources/app/node_modules/doc-ready/doc-ready.js
.js
resources/app/node_modules/doc-ready/examples/require-js.html
.html
resources/app/node_modules/doc-ready/examples/require-js.js
.js
resources/app/node_modules/doc-ready/index.html
.html .js
resources/app/node_modules/doc-ready/package.json
resources/app/node_modules/electron-prompt/.editorconfig
resources/app/node_modules/electron-prompt/.travis.yml
resources/app/node_modules/electron-prompt/LICENSE
resources/app/node_modules/electron-prompt/README.md
resources/app/node_modules/electron-prompt/lib/index.js
.js
resources/app/node_modules/electron-prompt/lib/page/prompt.css
resources/app/node_modules/electron-prompt/lib/page/prompt.html
.html
resources/app/node_modules/electron-prompt/lib/page/prompt.js
.js
resources/app/node_modules/electron-prompt/package.json
resources/app/node_modules/eventie/README.md
.js
resources/app/node_modules/eventie/bower.json
resources/app/node_modules/eventie/component.json
resources/app/node_modules/eventie/eventie.js
.js
resources/app/node_modules/eventie/package.json
resources/app/node_modules/eventie/test.html
.html .js
resources/app/node_modules/inherits/LICENSE
resources/app/node_modules/inherits/README.md
.js
resources/app/node_modules/inherits/inherits.js
.js
resources/app/node_modules/inherits/inherits_browser.js
.js
resources/app/node_modules/inherits/package.json
resources/app/node_modules/line-reader/.eslintrc
resources/app/node_modules/line-reader/.npmignore
resources/app/node_modules/line-reader/LICENSE
resources/app/node_modules/line-reader/README.md
.js
resources/app/node_modules/line-reader/lib/line_reader.js
.js
resources/app/node_modules/line-reader/package.json
resources/app/node_modules/line-reader/test.js
.js
resources/app/node_modules/line-reader/test/data/mac_os_9_file.txt
resources/app/node_modules/line-reader/test/data/multi_separator_file.txt
resources/app/node_modules/line-reader/test/data/multibyte_file.txt
resources/app/node_modules/line-reader/test/data/normal_file.txt
resources/app/node_modules/line-reader/test/data/one_line_file.txt
resources/app/node_modules/line-reader/test/data/one_line_file_no_endline.txt
resources/app/node_modules/line-reader/test/data/separator_file.txt
resources/app/node_modules/line-reader/test/data/three_line_file.txt
resources/app/node_modules/line-reader/test/data/unix_file.txt
resources/app/node_modules/line-reader/test/data/windows_buffer_overlap_file.txt
resources/app/node_modules/line-reader/test/data/windows_file.txt
resources/app/node_modules/line-reader/test/line_reader.js
.js
resources/app/node_modules/packet-reader/.travis.yml
resources/app/node_modules/packet-reader/README.md
.js
resources/app/node_modules/packet-reader/index.js
.js
resources/app/node_modules/packet-reader/package.json
resources/app/node_modules/packet-reader/test/index.js
.js
resources/app/node_modules/pg-connection-string/LICENSE
resources/app/node_modules/pg-connection-string/README.md
.js
resources/app/node_modules/pg-connection-string/index.d.ts
resources/app/node_modules/pg-connection-string/index.js
.js
resources/app/node_modules/pg-connection-string/package.json
resources/app/node_modules/pg-int8/LICENSE
resources/app/node_modules/pg-int8/README.md
resources/app/node_modules/pg-int8/index.js
.js
resources/app/node_modules/pg-int8/package.json
resources/app/node_modules/pg-pool/LICENSE
resources/app/node_modules/pg-pool/README.md
.js
resources/app/node_modules/pg-pool/index.js
.js
resources/app/node_modules/pg-pool/package.json
resources/app/node_modules/pg-pool/test/bring-your-own-promise.js
.js
resources/app/node_modules/pg-pool/test/connection-strings.js
.js
resources/app/node_modules/pg-pool/test/connection-timeout.js
.js
resources/app/node_modules/pg-pool/test/ending.js
resources/app/node_modules/pg-pool/test/error-handling.js
.js
resources/app/node_modules/pg-pool/test/events.js
.js
resources/app/node_modules/pg-pool/test/idle-timeout.js
.js
resources/app/node_modules/pg-pool/test/index.js
.js
resources/app/node_modules/pg-pool/test/logging.js
.js
resources/app/node_modules/pg-pool/test/max-uses.js
.js
resources/app/node_modules/pg-pool/test/releasing-clients.js
resources/app/node_modules/pg-pool/test/setup.js
resources/app/node_modules/pg-pool/test/sizing.js
resources/app/node_modules/pg-pool/test/submittable.js
resources/app/node_modules/pg-pool/test/verify.js
resources/app/node_modules/pg-protocol/LICENSE
resources/app/node_modules/pg-protocol/README.md
resources/app/node_modules/pg-protocol/dist/b.d.ts
resources/app/node_modules/pg-protocol/dist/b.js
.js
resources/app/node_modules/pg-protocol/dist/b.js.map
resources/app/node_modules/pg-protocol/dist/buffer-reader.d.ts
resources/app/node_modules/pg-protocol/dist/buffer-reader.js
.js
resources/app/node_modules/pg-protocol/dist/buffer-reader.js.map
resources/app/node_modules/pg-protocol/dist/buffer-writer.d.ts
resources/app/node_modules/pg-protocol/dist/buffer-writer.js
.js
resources/app/node_modules/pg-protocol/dist/buffer-writer.js.map
resources/app/node_modules/pg-protocol/dist/inbound-parser.test.d.ts
resources/app/node_modules/pg-protocol/dist/inbound-parser.test.js
.js
resources/app/node_modules/pg-protocol/dist/inbound-parser.test.js.map
resources/app/node_modules/pg-protocol/dist/index.d.ts
resources/app/node_modules/pg-protocol/dist/index.js
.js
resources/app/node_modules/pg-protocol/dist/index.js.map
resources/app/node_modules/pg-protocol/dist/messages.d.ts
resources/app/node_modules/pg-protocol/dist/messages.js
resources/app/node_modules/pg-protocol/dist/messages.js.map
resources/app/node_modules/pg-protocol/dist/outbound-serializer.test.d.ts
resources/app/node_modules/pg-protocol/dist/outbound-serializer.test.js
.js
resources/app/node_modules/pg-protocol/dist/outbound-serializer.test.js.map
resources/app/node_modules/pg-protocol/dist/parser.d.ts
resources/app/node_modules/pg-protocol/dist/parser.js
.js
resources/app/node_modules/pg-protocol/dist/parser.js.map
resources/app/node_modules/pg-protocol/dist/serializer.d.ts
resources/app/node_modules/pg-protocol/dist/serializer.js
.js
resources/app/node_modules/pg-protocol/dist/serializer.js.map
resources/app/node_modules/pg-protocol/package.json
resources/app/node_modules/pg-protocol/src/b.ts
.js
resources/app/node_modules/pg-protocol/src/buffer-reader.ts
.js
resources/app/node_modules/pg-protocol/src/buffer-writer.ts
.js
resources/app/node_modules/pg-protocol/src/inbound-parser.test.ts
.js
resources/app/node_modules/pg-protocol/src/index.ts
resources/app/node_modules/pg-protocol/src/messages.ts
resources/app/node_modules/pg-protocol/src/outbound-serializer.test.ts
.js
resources/app/node_modules/pg-protocol/src/parser.ts
.js
resources/app/node_modules/pg-protocol/src/serializer.ts
.js
resources/app/node_modules/pg-protocol/src/testing/buffer-list.ts
.js
resources/app/node_modules/pg-protocol/src/testing/test-buffers.ts
.js
resources/app/node_modules/pg-protocol/src/types/chunky.d.ts
resources/app/node_modules/pg-types/.travis.yml
resources/app/node_modules/pg-types/Makefile
resources/app/node_modules/pg-types/README.md
.js
resources/app/node_modules/pg-types/index.d.ts
resources/app/node_modules/pg-types/index.js
.js
resources/app/node_modules/pg-types/index.test-d.ts
resources/app/node_modules/pg-types/lib/arrayParser.js
.js
resources/app/node_modules/pg-types/lib/binaryParsers.js
.js
resources/app/node_modules/pg-types/lib/builtins.js
resources/app/node_modules/pg-types/lib/textParsers.js
.js
resources/app/node_modules/pg-types/package.json
resources/app/node_modules/pg-types/test/index.js
.js
resources/app/node_modules/pg-types/test/types.js
.js
resources/app/node_modules/pg/LICENSE
resources/app/node_modules/pg/README.md
resources/app/node_modules/pg/lib/client.js
.js
resources/app/node_modules/pg/lib/connection-parameters.js
.js
resources/app/node_modules/pg/lib/connection.js
.js
resources/app/node_modules/pg/lib/defaults.js
.js
resources/app/node_modules/pg/lib/index.js
.js
resources/app/node_modules/pg/lib/native/client.js
.js
resources/app/node_modules/pg/lib/native/index.js
resources/app/node_modules/pg/lib/native/query.js
.js
resources/app/node_modules/pg/lib/query.js
.js
resources/app/node_modules/pg/lib/result.js
.js
resources/app/node_modules/pg/lib/sasl.js
.js
resources/app/node_modules/pg/lib/type-overrides.js
.js
resources/app/node_modules/pg/lib/utils.js
.js
resources/app/node_modules/pg/package.json
resources/app/node_modules/pgpass/README.md
.js
resources/app/node_modules/pgpass/lib/helper.js
.js
resources/app/node_modules/pgpass/lib/index.js
.js
resources/app/node_modules/pgpass/package.json
resources/app/node_modules/postgres-array/index.d.ts
resources/app/node_modules/postgres-array/index.js
.js
resources/app/node_modules/postgres-array/license
resources/app/node_modules/postgres-array/package.json
resources/app/node_modules/postgres-array/readme.md
.js
resources/app/node_modules/postgres-bytea/index.js
.js
resources/app/node_modules/postgres-bytea/license
resources/app/node_modules/postgres-bytea/package.json
resources/app/node_modules/postgres-bytea/readme.md
.js
resources/app/node_modules/postgres-date/index.js
.js
resources/app/node_modules/postgres-date/license
resources/app/node_modules/postgres-date/package.json
resources/app/node_modules/postgres-date/readme.md
.js
resources/app/node_modules/postgres-interval/index.d.ts
resources/app/node_modules/postgres-interval/index.js
.js
resources/app/node_modules/postgres-interval/license
resources/app/node_modules/postgres-interval/package.json
resources/app/node_modules/postgres-interval/readme.md
.js
resources/app/node_modules/safe-buffer/LICENSE
resources/app/node_modules/safe-buffer/README.md
.js
resources/app/node_modules/safe-buffer/index.d.ts
resources/app/node_modules/safe-buffer/index.js
.js
resources/app/node_modules/safe-buffer/package.json
resources/app/node_modules/split2/LICENSE
resources/app/node_modules/split2/README.md
.js
resources/app/node_modules/split2/bench.js
.js
resources/app/node_modules/split2/index.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/CONTRIBUTING.md
resources/app/node_modules/split2/node_modules/readable-stream/GOVERNANCE.md
resources/app/node_modules/split2/node_modules/readable-stream/LICENSE
resources/app/node_modules/split2/node_modules/readable-stream/README.md
resources/app/node_modules/split2/node_modules/readable-stream/errors-browser.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/errors.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/experimentalWarning.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/_stream_duplex.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/_stream_passthrough.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/_stream_readable.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/_stream_transform.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/_stream_writable.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/async_iterator.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/buffer_list.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/destroy.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/end-of-stream.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/from-browser.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/from.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/pipeline.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/state.js
.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/stream-browser.js
resources/app/node_modules/split2/node_modules/readable-stream/lib/internal/streams/stream.js
resources/app/node_modules/split2/node_modules/readable-stream/package.json
resources/app/node_modules/split2/node_modules/readable-stream/readable-browser.js
resources/app/node_modules/split2/node_modules/readable-stream/readable.js
.js
resources/app/node_modules/split2/package.json
resources/app/node_modules/split2/test.js
.js
resources/app/node_modules/string_decoder/.travis.yml
resources/app/node_modules/string_decoder/LICENSE
resources/app/node_modules/string_decoder/README.md
resources/app/node_modules/string_decoder/lib/string_decoder.js
.js
resources/app/node_modules/string_decoder/package.json
resources/app/node_modules/util-deprecate/History.md
resources/app/node_modules/util-deprecate/LICENSE
resources/app/node_modules/util-deprecate/README.md
resources/app/node_modules/util-deprecate/browser.js
.js
resources/app/node_modules/util-deprecate/node.js
resources/app/node_modules/util-deprecate/package.json
resources/app/node_modules/xtend/.jshintrc
resources/app/node_modules/xtend/LICENSE
resources/app/node_modules/xtend/README.md
.js
resources/app/node_modules/xtend/immutable.js
.js
resources/app/node_modules/xtend/mutable.js
.js
resources/app/node_modules/xtend/package.json
resources/app/node_modules/xtend/test.js
.js
resources/app/package.json
resources/app/res/anim/listening.gif
.gif
resources/app/res/anim/splash.gif
.gif
resources/app/res/docs/Zer0Day2_Docs.pdf
.pdf
resources/app/res/icons/QF.ico
resources/app/res/icons/Zday.ico
resources/app/res/icons/Zday2.ico
resources/app/scripts/consolidateRenderer.js
.js
resources/app/scripts/createRenderer.js
.js
resources/app/scripts/indexRenderer.js
.js
resources/app/scripts/splashRenderer.js
.js
resources/app/scripts/terminalRenderer.js
.js
swiftshader/libEGL.dll
.dll windows x64

67db432914b7baa0738050364c019173

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

user32

GetClientRect
GetDC
IsWindow
ReleaseDC

gdi32

GetDeviceCaps

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSyncKHR
eglCopyBuffers
eglCreateContext
eglCreateImageKHR
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurfaceEXT
eglCreatePlatformWindowSurfaceEXT
eglCreateSyncKHR
eglCreateWindowSurface
eglDestroyContext
eglDestroyImageKHR
eglDestroySurface
eglDestroySyncKHR
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttribKHR
eglInitialize
eglMakeCurrent
eglQueryAPI
eglQueryContext
eglQueryString
eglQuerySurface
eglReleaseTexImage
eglReleaseThread
eglSurfaceAttrib
eglSwapBuffers
eglSwapInterval
eglTerminate
eglWaitClient
eglWaitGL
eglWaitNative
libEGL_swiftshader

Sections

.text
Size: 327KB - Virtual size: 326KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
swiftshader/libGLESv2.dll
.dll windows x64

8b4ec8564c21d6087c06b61d3d5ffbbd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventA
CreateEventW
CreateFileW
CreateThread
DeleteCriticalSection
DeleteFileW
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FileTimeToSystemTime
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FlushInstructionCache
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetDriveTypeW
GetEnvironmentStringsW
GetFileAttributesW
GetFileInformationByHandle
GetFileSizeEx
GetFileType
GetFullPathNameW
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessAffinityMask
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
MultiByteToWideChar
OutputDebugStringA
PeekNamedPipe
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
RemoveDirectoryW
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetConsoleTextAttribute
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualProtect
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

user32

ChangeDisplaySettingsA
ClientToScreen
GetClientRect
GetDC
GetSystemMetrics
GetWindowLongA
GetWindowRect
ReleaseDC
SetRect
SetWindowLongA
SetWindowPos

gdi32

CreateCompatibleDC
CreateDIBSection
DeleteDC
DeleteObject
GetDeviceGammaRamp
SelectObject
SetDeviceGammaRamp
StretchBlt

ws2_32

WSACleanup
WSAStartup
accept
bind
closesocket
getaddrinfo
listen
recv
select
send
socket

Exports

Exports

glActiveTexture
glAttachShader
glBeginQuery
glBeginQueryEXT
glBeginTransformFeedback
glBindAttribLocation
glBindBuffer
glBindBufferBase
glBindBufferRange
glBindFramebuffer
glBindFramebufferOES
glBindRenderbuffer
glBindRenderbufferOES
glBindSampler
glBindTexture
glBindTransformFeedback
glBindVertexArray
glBindVertexArrayOES
glBlendColor
glBlendEquation
glBlendEquationSeparate
glBlendFunc
glBlendFuncSeparate
glBlitFramebuffer
glBlitFramebufferANGLE
glBufferData
glBufferSubData
glCheckFramebufferStatus
glCheckFramebufferStatusOES
glClear
glClearBufferfi
glClearBufferfv
glClearBufferiv
glClearBufferuiv
glClearColor
glClearDepthf
glClearStencil
glClientWaitSync
glColorMask
glCompileShader
glCompressedTexImage2D
glCompressedTexImage3D
glCompressedTexSubImage2D
glCompressedTexSubImage3D
glCopyBufferSubData
glCopyTexImage2D
glCopyTexSubImage2D
glCopyTexSubImage3D
glCreateProgram
glCreateShader
glCullFace
glDeleteBuffers
glDeleteFencesNV
glDeleteFramebuffers
glDeleteFramebuffersOES
glDeleteProgram
glDeleteQueries
glDeleteQueriesEXT
glDeleteRenderbuffers
glDeleteRenderbuffersOES
glDeleteSamplers
glDeleteShader
glDeleteSync
glDeleteTextures
glDeleteTransformFeedbacks
glDeleteVertexArrays
glDeleteVertexArraysOES
glDepthFunc
glDepthMask
glDepthRangef
glDetachShader
glDisable
glDisableVertexAttribArray
glDrawArrays
glDrawArraysInstanced
glDrawBuffers
glDrawBuffersEXT
glDrawElements
glDrawElementsInstanced
glDrawRangeElements
glEGLImageTargetRenderbufferStorageOES
glEGLImageTargetTexture2DOES
glEnable
glEnableVertexAttribArray
glEndQuery
glEndQueryEXT
glEndTransformFeedback
glFenceSync
glFinish
glFinishFenceNV
glFlush
glFlushMappedBufferRange
glFramebufferRenderbuffer
glFramebufferRenderbufferOES
glFramebufferTexture2D
glFramebufferTexture2DOES
glFramebufferTextureLayer
glFrontFace
glGenBuffers
glGenFencesNV
glGenFramebuffers
glGenFramebuffersOES
glGenQueries
glGenQueriesEXT
glGenRenderbuffers
glGenRenderbuffersOES
glGenSamplers
glGenTextures
glGenTransformFeedbacks
glGenVertexArrays
glGenVertexArraysOES
glGenerateMipmap
glGenerateMipmapOES
glGetActiveAttrib
glGetActiveUniform
glGetActiveUniformBlockName
glGetActiveUniformBlockiv
glGetActiveUniformsiv
glGetAttachedShaders
glGetAttribLocation
glGetBooleanv
glGetBufferParameteri64v
glGetBufferParameteriv
glGetBufferPointerv
glGetError
glGetFenceivNV
glGetFloatv
glGetFragDataLocation
glGetFramebufferAttachmentParameteriv
glGetFramebufferAttachmentParameterivOES
glGetGraphicsResetStatusEXT
glGetInteger64i_v
glGetInteger64v
glGetIntegeri_v
glGetIntegerv
glGetInternalformativ
glGetProgramBinary
glGetProgramInfoLog
glGetProgramiv
glGetQueryObjectuiv
glGetQueryObjectuivEXT
glGetQueryiv
glGetQueryivEXT
glGetRenderbufferParameteriv
glGetRenderbufferParameterivOES
glGetSamplerParameterfv
glGetSamplerParameteriv
glGetShaderInfoLog
glGetShaderPrecisionFormat
glGetShaderSource
glGetShaderiv
glGetString
glGetStringi
glGetSynciv
glGetTexParameterfv
glGetTexParameteriv
glGetTransformFeedbackVarying
glGetUniformBlockIndex
glGetUniformIndices
glGetUniformLocation
glGetUniformfv
glGetUniformiv
glGetUniformuiv
glGetVertexAttribIiv
glGetVertexAttribIuiv
glGetVertexAttribPointerv
glGetVertexAttribfv
glGetVertexAttribiv
glGetnUniformfvEXT
glGetnUniformivEXT
glHint
glInvalidateFramebuffer
glInvalidateSubFramebuffer
glIsBuffer
glIsEnabled
glIsFenceNV
glIsFramebuffer
glIsFramebufferOES
glIsProgram
glIsQuery
glIsQueryEXT
glIsRenderbuffer
glIsRenderbufferOES
glIsSampler
glIsShader
glIsSync
glIsTexture
glIsTransformFeedback
glIsVertexArray
glIsVertexArrayOES
glLineWidth
glLinkProgram
glMapBufferRange
glPauseTransformFeedback
glPixelStorei
glPolygonOffset
glProgramBinary
glProgramParameteri
glReadBuffer
glReadPixels
glReadnPixelsEXT
glReleaseShaderCompiler
glRenderbufferStorage
glRenderbufferStorageMultisample
glRenderbufferStorageMultisampleANGLE
glRenderbufferStorageOES
glResumeTransformFeedback
glSampleCoverage
glSamplerParameterf
glSamplerParameterfv
glSamplerParameteri
glSamplerParameteriv
glScissor
glSetFenceNV
glShaderBinary
glShaderSource
glStencilFunc
glStencilFuncSeparate
glStencilMask
glStencilMaskSeparate
glStencilOp
glStencilOpSeparate
glTestFenceNV
glTexImage2D
glTexImage3D
glTexImage3DOES
glTexParameterf
glTexParameterfv
glTexParameteri
glTexParameteriv
glTexStorage2D
glTexStorage3D
glTexSubImage2D
glTexSubImage3D
glTransformFeedbackVaryings
glUniform1f
glUniform1fv
glUniform1i
glUniform1iv
glUniform1ui
glUniform1uiv
glUniform2f
glUniform2fv
glUniform2i
glUniform2iv
glUniform2ui
glUniform2uiv
glUniform3f
glUniform3fv
glUniform3i
glUniform3iv
glUniform3ui
glUniform3uiv
glUniform4f
glUniform4fv
glUniform4i
glUniform4iv
glUniform4ui
glUniform4uiv
glUniformBlockBinding
glUniformMatrix2fv
glUniformMatrix2x3fv
glUniformMatrix2x4fv
glUniformMatrix3fv
glUniformMatrix3x2fv
glUniformMatrix3x4fv
glUniformMatrix4fv
glUniformMatrix4x2fv
glUniformMatrix4x3fv
glUnmapBuffer
glUseProgram
glValidateProgram
glVertexAttrib1f
glVertexAttrib1fv
glVertexAttrib2f
glVertexAttrib2fv
glVertexAttrib3f
glVertexAttrib3fv
glVertexAttrib4f
glVertexAttrib4fv
glVertexAttribDivisor
glVertexAttribI4i
glVertexAttribI4iv
glVertexAttribI4ui
glVertexAttribI4uiv
glVertexAttribIPointer
glVertexAttribPointer
glViewport
glWaitSync
libGLESv2_swiftshader

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 327KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 45B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6cec5b1a631d592d80900ab7e1de8df

Headers

DLL Characteristics

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

gdi32

Sections

.text Size: 162KB - Virtual size: 161KB

.rdata Size: 75KB - Virtual size: 74KB

.data Size: 3KB - Virtual size: 64KB

.pdata Size: 8KB - Virtual size: 8KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 139KB - Virtual size: 138KB

.reloc Size: 2KB - Virtual size: 1KB

7320b3cae0f7c7e579e85728a091f04b

Headers

DLL Characteristics

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

gdi32

Sections

.text Size: 141KB - Virtual size: 141KB

.rdata Size: 70KB - Virtual size: 70KB

.data Size: 3KB - Virtual size: 64KB

.pdata Size: 7KB - Virtual size: 7KB

_RDATA Size: 512B - Virtual size: 244B

.rsrc Size: 18KB - Virtual size: 18KB

.reloc Size: 2KB - Virtual size: 1KB

a6cec5b1a631d592d80900ab7e1de8df

Headers

DLL Characteristics

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

gdi32

Sections

.text Size: 162KB - Virtual size: 161KB

.rdata Size: 75KB - Virtual size: 74KB

.data Size: 3KB - Virtual size: 64KB

.pdata Size: 8KB - Virtual size: 8KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 139KB - Virtual size: 138KB

.reloc Size: 2KB - Virtual size: 1KB

67db432914b7baa0738050364c019173

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 327KB - Virtual size: 326KB

.rdata Size: 99KB - Virtual size: 98KB

.data Size: 8KB - Virtual size: 19KB

.pdata Size: 16KB - Virtual size: 15KB

.00cfg Size: 512B - Virtual size: 40B

.tls Size: 512B - Virtual size: 9B

_RDATA Size: 512B - Virtual size: 148B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

8b4ec8564c21d6087c06b61d3d5ffbbd

.text
Size: 162KB - Virtual size: 161KB

.rdata
Size: 75KB - Virtual size: 74KB

.data
Size: 3KB - Virtual size: 64KB

.pdata
Size: 8KB - Virtual size: 8KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 139KB - Virtual size: 138KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 141KB - Virtual size: 141KB

.rdata
Size: 70KB - Virtual size: 70KB

.data
Size: 3KB - Virtual size: 64KB

.pdata
Size: 7KB - Virtual size: 7KB

_RDATA
Size: 512B - Virtual size: 244B

.rsrc
Size: 18KB - Virtual size: 18KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 162KB - Virtual size: 161KB

.rdata
Size: 75KB - Virtual size: 74KB

.data
Size: 3KB - Virtual size: 64KB

.pdata
Size: 8KB - Virtual size: 8KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 139KB - Virtual size: 138KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 327KB - Virtual size: 326KB

.rdata
Size: 99KB - Virtual size: 98KB

.data
Size: 8KB - Virtual size: 19KB

.pdata
Size: 16KB - Virtual size: 15KB

.00cfg
Size: 512B - Virtual size: 40B

.tls
Size: 512B - Virtual size: 9B

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 2.8MB - Virtual size: 2.8MB

.rdata
Size: 273KB - Virtual size: 273KB

.data
Size: 8KB - Virtual size: 327KB

.pdata
Size: 56KB - Virtual size: 56KB

.00cfg
Size: 512B - Virtual size: 40B

.tls
Size: 512B - Virtual size: 45B

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 1024B - Virtual size: 944B

.reloc
Size: 13KB - Virtual size: 12KB