META 1935 0[.]02[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

META 1935 0.02.zip
Size

46.5MB
MD5

4bae7fd86f2cec0cf42777c41dc55256
SHA1

6c19390ec24c440489420340e9ea6b93ddd4eeb1
SHA256

4f7822571c91a69616180780b40d1eef8b2edd9f577cf35b22f8f9987fe22783
SHA512

a0b6f6720745671f1c426b1d4f970de9b615c398f016245e9c032b8f3a50b74515fb6953d129a6f697ba0132f830f7f62d9b6624386e22a32729fcef6157a0b4
SSDEEP

786432:mQoTYvgzxYeG2FbpBYWMdYEVVKdScyvcuKq0ZH1hOjeYn/3jErgwEf7GdKRE+IPu:wcvandrYWMLVVKcbbuOyYn/3Q8bRRE/u

Score

4^/10

pdf link

Malware Config

Signatures

HTTP links in PDF interactive object 1 IoCs

Detects HTTP links in interactive objects within PDF files.

pdf link

resource	yara_rule
static1/unpack001/META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/Vuplex WebView.vuplex	pdf_with_link_action

Unsigned PE 14 IoCs

Checks for missing Authenticode signature.

resource
unpack001/META 1935 0.02/DATA/Plugins/x86_64/FirebaseCppAuth.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/FirebaseCppDatabase.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/VivoxNative.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/Vuplex WebView.vuplex
unpack001/META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/chrome_elf.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/d3dcompiler_47.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/libEGL.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/libGLESv2.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/swiftshader/libEGL.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/swiftshader/libGLESv2.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewWindows.dll
unpack001/META 1935 0.02/DATA/Plugins/x86_64/lib_burst_generated.dll
unpack001/META 1935 0.02/META WORLD Launcher.exe
unpack001/META 1935 0.02/Update.dll

Files

META 1935 0.02.zip
.zip

Password: META1935BETA
META 1935 0.02/DATA/Plugins/x86_64/FirebaseCppAuth.dll
.dll windows x64

Password: META1935BETA

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 755KB - Virtual size: 754KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/FirebaseCppDatabase.dll
.dll windows x64

Password: META1935BETA

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 742KB - Virtual size: 742KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/VivoxNative.dll
.dll windows x64

Password: META1935BETA

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Exports

Exports

CSharp_APP_UNIQUE_3_LETTERS_USER_AGENT_ID_STRING_get
CSharp_GetDefaultConfig
CSharp_Initialize
CSharp_IsAudioEchoCancellationEnabled
CSharp_IssueRequest
CSharp_MAX_CHANNEL_URI_LENGTH_get
CSharp_MAX_VXA_DEVICE_COUNT_get
CSharp_SWIG_get
CSharp_Uninitialize
CSharp_VIVOX_SDK_EVT_SESSION_PARTICIPANT_LIST_OBSOLETE_get
CSharp_VIVOX_SDK_HAS_ACCOUNT_SEND_MSG_get
CSharp_VIVOX_SDK_HAS_ADVANCED_AUDIO_LEVELS_get
CSharp_VIVOX_SDK_HAS_AUDIO_UNIT_CALLBACKS_get
CSharp_VIVOX_SDK_HAS_AUX_DIAGNOSTIC_STATE_get
CSharp_VIVOX_SDK_HAS_CRASH_REPORTING_get
CSharp_VIVOX_SDK_HAS_DEVICE_ADDED_REMOVED_get
CSharp_VIVOX_SDK_HAS_FRAME_TOTALS_get
CSharp_VIVOX_SDK_HAS_GENERIC_APP_NOTIFICATIONS_ONLY_get
CSharp_VIVOX_SDK_HAS_GROUP_IM_get
CSharp_VIVOX_SDK_HAS_INTEGRATED_PROXY_get
CSharp_VIVOX_SDK_HAS_MUTE_SCOPE_get
CSharp_VIVOX_SDK_HAS_NETWORK_MESSAGE_get
CSharp_VIVOX_SDK_HAS_NO_CHANNEL_FOLDERS_get
CSharp_VIVOX_SDK_HAS_NO_SCORE_get
CSharp_VIVOX_SDK_HAS_PARTICIPANT_TYPE_get
CSharp_VIVOX_SDK_HAS_PLC_STATS_get
CSharp_VIVOX_SDK_HAS_VOICE_FONTS_get
CSharp_VIVOX_SDK_NO_IS_AD_PLAYING_get
CSharp_VIVOX_SDK_NO_LEGACY_RECORDING_get
CSharp_VIVOX_SDK_SESSION_CONNECT_OBSOLETE_get
CSharp_VIVOX_SDK_SESSION_GET_LOCAL_AUDIO_INFO_OBSOLETE_get
CSharp_VIVOX_SDK_SESSION_MEDIA_RINGBACK_OBSOLETE_get
CSharp_VIVOX_SDK_SESSION_RENDER_AUDIO_OBSOLETE_get
CSharp_VIVOX_VANI_LEGACY_MASK_get
CSharp_VIVOX_VANI_OPUS40_get
CSharp_VIVOX_VANI_OPUS57_get
CSharp_VIVOX_VANI_OPUS72_get
CSharp_VIVOX_VANI_OPUS8_get
CSharp_VIVOX_VANI_OPUS_MASK_get
CSharp_VIVOX_VANI_OPUS_get
CSharp_VIVOX_VANI_PCMU_get
CSharp_VIVOX_VANI_SIREN14_get
CSharp_VIVOX_VANI_SIREN7_get
CSharp_VIVOX_V_V2_AUDIO_DATA_MONO_OPUS_48000_EXPANDED_get
CSharp_VIVOX_V_V2_AUDIO_DATA_MONO_PCMU_8000_COLLAPSED_get
CSharp_VIVOX_V_V2_AUDIO_DATA_MONO_PCMU_8000_EXPANDED_get
CSharp_VIVOX_V_V2_AUDIO_DATA_MONO_PCMU_get
CSharp_VIVOX_V_V2_AUDIO_DATA_MONO_SIREN14_32000_EXPANDED_get
CSharp_VIVOX_V_V2_AUDIO_DATA_MONO_SIREN14_32000_get
CSharp_VIVOX_V_V2_AUDIO_DATA_MONO_SIREN7_16000_EXPANDED_get
CSharp_VX_E_ACCESSTOKEN_ALREADY_USED_get
CSharp_VX_E_ACCESSTOKEN_CLAIMS_MISMATCH_get
CSharp_VX_E_ACCESSTOKEN_EXPIRED_get
CSharp_VX_E_ACCESSTOKEN_INTERNAL_ERROR_get
CSharp_VX_E_ACCESSTOKEN_INVALID_SIGNATURE_get
CSharp_VX_E_ACCESSTOKEN_ISSUER_MISMATCH_get
CSharp_VX_E_ACCESSTOKEN_MALFORMED_get
CSharp_VX_E_ACCESSTOKEN_SERVICE_UNAVAILABLE_get
CSharp_VX_E_ACCOUNT_MISCONFIGURED_get
CSharp_VX_E_ALREADY_EXIST_get
CSharp_VX_E_ALREADY_INITIALIZED_get
CSharp_VX_E_ALREADY_LOGGED_IN_get
CSharp_VX_E_ALREADY_LOGGED_OUT_get
CSharp_VX_E_BUFSIZE_get
CSharp_VX_E_CALL_CREATION_FAILED_get
CSharp_VX_E_CALL_TERMINATED_BAN_get
CSharp_VX_E_CALL_TERMINATED_BY_SERVER_get
CSharp_VX_E_CALL_TERMINATED_KICK_get
CSharp_VX_E_CALL_TERMINATED_NO_ANSWER_LOCAL_get
CSharp_VX_E_CALL_TERMINATED_NO_RTP_RXED_get
CSharp_VX_E_CAPACITY_EXCEEDED_get
CSharp_VX_E_CAPTURE_DEVICE_IN_USE_get
CSharp_VX_E_CHANNEL_URI_REQUIRED_get
CSharp_VX_E_CHANNEL_URI_TOO_LONG_get
CSharp_VX_E_CROSS_DOMAIN_LOGINS_DISABLED_get
CSharp_VX_E_DEPRECATED_get
CSharp_VX_E_FAILED_TO_CONNECT_TO_SERVER_get
CSharp_VX_E_FAILED_TO_CONNECT_TO_VOICE_SERVICE_get
CSharp_VX_E_FAILED_TO_SEND_REQUEST_TO_VOICE_SERVICE_get
CSharp_VX_E_FAILED_get
CSharp_VX_E_FEATURE_DISABLED_get
CSharp_VX_E_FILE_CORRUPT_get
CSharp_VX_E_FILE_OPEN_FAILED_get
CSharp_VX_E_FILE_WRITE_FAILED_REACHED_MAX_FILESIZE_get
CSharp_VX_E_FILE_WRITE_FAILED_get
CSharp_VX_E_HANDLE_ALREADY_TAKEN_get
CSharp_VX_E_HANDLE_IS_RESERVED_get
CSharp_VX_E_INSUFFICIENT_PRIVILEGE_get
CSharp_VX_E_INVALID_APP_TOKEN_get
CSharp_VX_E_INVALID_ARGUMENT_get
CSharp_VX_E_INVALID_AUTH_TOKEN_get
CSharp_VX_E_INVALID_CAPTURE_DEVICE_FOR_REQUESTED_OPERATION_get
CSharp_VX_E_INVALID_CAPTURE_DEVICE_SPECIFIER_get
CSharp_VX_E_INVALID_CODEC_TYPE_get
CSharp_VX_E_INVALID_CONNECTOR_STATE_get
CSharp_VX_E_INVALID_FILE_OPERATION_get
CSharp_VX_E_INVALID_MASK_get
CSharp_VX_E_INVALID_MEDIA_FORMAT_get
CSharp_VX_E_INVALID_RENDER_DEVICE_SPECIFIER_get
CSharp_VX_E_INVALID_SDK_HANDLE_get
CSharp_VX_E_INVALID_SESSION_STATE_get
CSharp_VX_E_INVALID_SUBSCRIPTION_RULE_TYPE_get
CSharp_VX_E_INVALID_USERNAME_OR_PASSWORD_get
CSharp_VX_E_INVALID_XML_get
CSharp_VX_E_LOGIN_FAILED_get
CSharp_VX_E_LOOP_MODE_RECORDING_NOT_ENABLED_get
CSharp_VX_E_MAXIMUM_NUMBER_OF_CALLS_EXCEEEDED_get
CSharp_VX_E_MAX_CONNECTOR_LIMIT_EXCEEDED_get
CSharp_VX_E_MAX_HTTP_DATA_RESPONSE_SIZE_EXCEEDED_get
CSharp_VX_E_MAX_LOGINS_PER_USER_EXCEEDED_get
CSharp_VX_E_MAX_PLAYBACK_SESSIONGROUPS_EXCEEDED_get
CSharp_VX_E_MAX_SESSION_LIMIT_EXCEEDED_get
CSharp_VX_E_MEDIA_DISCONNECT_NOT_ALLOWED_get
CSharp_VX_E_MULTI_CHANNEL_DENIED_get
CSharp_VX_E_NETWORK_ADDRESS_CHANGE_get
CSharp_VX_E_NETWORK_DOWN_get
CSharp_VX_E_NOT_IMPL_get
CSharp_VX_E_NOT_INITIALIZED_get
CSharp_VX_E_NOT_LOGGED_IN_get
CSharp_VX_E_NOT_UNINITIALIZED_YET_get
CSharp_VX_E_NO_CAPTURE_DEVICES_FOUND_get
CSharp_VX_E_NO_EXIST_get
CSharp_VX_E_NO_MESSAGE_AVAILABLE_get
CSharp_VX_E_NO_MORE_FRAMES_get
CSharp_VX_E_NO_RENDER_DEVICES_FOUND_get
CSharp_VX_E_NO_SESSION_PORTS_AVAILABLE_get
CSharp_VX_E_NO_SUCH_SESSION_get
CSharp_VX_E_POWER_STATE_CHANGE_get
CSharp_VX_E_PRELOGIN_INFO_NOT_RETURNED_get
CSharp_VX_E_RECORDING_ALREADY_ACTIVE_get
CSharp_VX_E_RECORDING_LOOP_BUFFER_EMPTY_get
CSharp_VX_E_RENDER_CONTEXT_DOES_NOT_EXIST_get
CSharp_VX_E_RENDER_DEVICE_DOES_NOT_EXIST_get
CSharp_VX_E_RENDER_DEVICE_IN_USE_get
CSharp_VX_E_RENDER_SOURCE_DOES_NOT_EXIST_get
CSharp_VX_E_REQUESTCONTEXT_NOT_FOUND_get
CSharp_VX_E_REQUEST_CANCELED_get
CSharp_VX_E_REQUEST_CANCELLED_get
CSharp_VX_E_REQUEST_NOT_SUPPORTED_get
CSharp_VX_E_REQUEST_TYPE_NOT_SUPPORTED_get
CSharp_VX_E_RTP_SESSION_SOCKET_ERROR_get
CSharp_VX_E_RTP_TIMEOUT_get
CSharp_VX_E_SESSIONGROUP_NOT_FOUND_get
CSharp_VX_E_SESSIONGROUP_TRANSMIT_NOT_ALLOWED_get
CSharp_VX_E_SESSION_CHANNEL_TEXT_DENIED_get
CSharp_VX_E_SESSION_CREATE_PENDING_get
CSharp_VX_E_SESSION_DOES_NOT_HAVE_AUDIO_get
CSharp_VX_E_SESSION_DOES_NOT_HAVE_TEXT_get
CSharp_VX_E_SESSION_IS_NOT_3D_get
CSharp_VX_E_SESSION_MAX_get
CSharp_VX_E_SESSION_MEDIA_CONNECT_FAILED_get
CSharp_VX_E_SESSION_MEDIA_DISCONNECT_FAILED_get
CSharp_VX_E_SESSION_MESSAGE_BUILD_FAILED_get
CSharp_VX_E_SESSION_MSG_CONTENT_TYPE_FAILED_get
CSharp_VX_E_SESSION_MUST_HAVE_MEDIA_get
CSharp_VX_E_SESSION_TERMINATE_PENDING_get
CSharp_VX_E_SESSION_TEXT_DENIED_get
CSharp_VX_E_SESSION_TEXT_DISABLED_get
CSharp_VX_E_SIP_BACKEND_REQUIRED_get
CSharp_VX_E_SIZE_LIMIT_EXCEEDED_get
CSharp_VX_E_STREAM_READ_FAILED_get
CSharp_VX_E_SUBSCRIPTION_NOT_FOUND_get
CSharp_VX_E_SUCCESS_get
CSharp_VX_E_TERMINATESESSION_NOT_VALID_get
CSharp_VX_E_TEXT_CONNECT_NOT_ALLOWED_get
CSharp_VX_E_TEXT_DISABLED_get
CSharp_VX_E_TEXT_DISCONNECT_NOT_ALLOWED_get
CSharp_VX_E_UNABLE_TO_OPEN_CAPTURE_DEVICE_get
CSharp_VX_E_UNEXPECTED_END_OF_FILE_get
CSharp_VX_E_VOICE_FONT_NOT_FOUND_get
CSharp_VX_E_WRONG_CONNECTOR_get
CSharp_VX_E_XMPP_BACKEND_REQUIRED_get
CSharp_VX_E_XNETCONNECT_FAILED_get
CSharp_VX_GET_MESSAGE_AVAILABLE_get
CSharp_VX_GET_MESSAGE_FAILURE_get
CSharp_VX_GET_MESSAGE_NO_MESSAGE_get
CSharp_VX_MEDIA_FLAGS_AUDIO_get
CSharp_VX_MEDIA_FLAGS_TEXT_get
CSharp_VX_TTS_CHARACTER_COUNT_LIMIT_get
CSharp_VX_TTS_MAX_DESTINATION_QUEUE_SIZE_get
CSharp_VX_VAR_DECODER_COUNT_LIMIT_get
CSharp_VX_VAR_DECODER_HANGOVER_LIMIT_get
CSharp_VX_VAR_RTP_ENCRYPTION_get
CSharp_VxAccessTokenAlreadyUsed_get
CSharp_VxAccessTokenClaimsMismatch_get
CSharp_VxAccessTokenExpired_get
CSharp_VxAccessTokenInternalError_get
CSharp_VxAccessTokenInvalidSignature_get
CSharp_VxAccessTokenIssuerMismatch_get
CSharp_VxAccessTokenMalformed_get
CSharp_VxAccessTokenServiceUnavailable_get
CSharp_VxErrorAlreadyInitialized_get
CSharp_VxErrorAsyncOperationCanceled_get
CSharp_VxErrorBuddyDoesNotExist_get
CSharp_VxErrorBuddyGroupDoesNotExist_get
CSharp_VxErrorCallTerminatedBanned_get
CSharp_VxErrorCallTerminatedByServer_get
CSharp_VxErrorCallTerminatedKick_get
CSharp_VxErrorCaptureDeviceInUse_get
CSharp_VxErrorCaptureDeviceInvalidated_get
CSharp_VxErrorChannelUriRequired_get
CSharp_VxErrorChannelUriTooLong_get
CSharp_VxErrorConnectionTerminated_get
CSharp_VxErrorConnectorLimitExceeded_get
CSharp_VxErrorCrossDomainLoginDisabled_get
CSharp_VxErrorDeprecated_get
CSharp_VxErrorDeviceLimitReached_get
CSharp_VxErrorFileOpenFailed_get
CSharp_VxErrorHandleReserved_get
CSharp_VxErrorHandleTaken_get
CSharp_VxErrorHostUnknown_get
CSharp_VxErrorInternalError_get
CSharp_VxErrorInvalidArgument_get
CSharp_VxErrorInvalidCaptureDeviceForRequestedOperation_get
CSharp_VxErrorInvalidCaptureDeviceSpecifier_get
CSharp_VxErrorInvalidChannelUri_get
CSharp_VxErrorInvalidEventType_get
CSharp_VxErrorInvalidFormat_get
CSharp_VxErrorInvalidOperation_get
CSharp_VxErrorInvalidRenderDeviceSpecifier_get
CSharp_VxErrorInvalidState_get
CSharp_VxErrorInvalidValueTypeXmlQuery_get
CSharp_VxErrorMaxEtherChannelLimitReached_get
CSharp_VxErrorMaxLoginsPerUserExceeded_get
CSharp_VxErrorMessageTextTooLong_get
CSharp_VxErrorNetworkAddressChanged_get
CSharp_VxErrorNetworkDown_get
CSharp_VxErrorNoMatchingXmlAttributeFound_get
CSharp_VxErrorNoMatchingXmlNodeFound_get
CSharp_VxErrorNoMemory_get
CSharp_VxErrorNoMessageAvailable_get
CSharp_VxErrorNoMicrophonePermission_get
CSharp_VxErrorNoMoreData_get
CSharp_VxErrorNotImplemented_get
CSharp_VxErrorNotInitialized_get
CSharp_VxErrorNotLoggedIn_get
CSharp_VxErrorNotSupported_get
CSharp_VxErrorNotUninitializedYet_get
CSharp_VxErrorPortNotAvailable_get
CSharp_VxErrorPowerEvent_get
CSharp_VxErrorPreloginDownloadFailed_get
CSharp_VxErrorPresenceMustBeEnabled_get
CSharp_VxErrorRequestCanceled_get
CSharp_VxErrorRtpTimeout_get
CSharp_VxErrorServerRtpTimeout_get
CSharp_VxErrorSipBackEndRequired_get
CSharp_VxErrorSipRegistrationAuthorizationFailure_get
CSharp_VxErrorSuccess_get
CSharp_VxErrorTargetObjectAlreadyExists_get
CSharp_VxErrorTargetObjectDoesNotExist_get
CSharp_VxErrorTargetObjectNotRelated_get
CSharp_VxErrorTimeout_get
CSharp_VxErrorUnableToOpenCaptureDevice_get
CSharp_VxErrorUserAlreadyLoggingOut_get
CSharp_VxErrorUserBlocked_get
CSharp_VxErrorUserOffLineOrDoesNotExist_get
CSharp_VxErrorUserUriTooLong_get
CSharp_VxErrorXmppBackEndRequired_get
CSharp_VxErrorXmppServerResponseBadSdp_get
CSharp_VxErrorXmppServerResponseChanAddMissing_get
CSharp_VxErrorXmppServerResponseInviteMissing_get
CSharp_VxErrorXmppServerResponseMalformed_get
CSharp_VxFailedToConnectToXmppServer_get
CSharp_VxNetworkHttpConnectionReset_get
CSharp_VxNetworkHttpGeneralConnectionFailure_get
CSharp_VxNetworkHttpInvalidCertificate_get
CSharp_VxNetworkHttpInvalidServerResponse_get
CSharp_VxNetworkHttpInvalidUrl_get
CSharp_VxNetworkHttpTimeout_get
CSharp_VxNetworkNameResolutionFailed_get
CSharp_VxNetworkReconnectFailure_get
CSharp_VxNetworkUnableToConnectToServer_get
CSharp_VxNoAuthenticationStanzaReceived_get
CSharp_VxSSLNegotiationToXmppServerFailed_get
CSharp_VxUnknownXmppError_get
CSharp_VxXmppErrorBadRequest_get
CSharp_VxXmppErrorCodesRangeEnd_get
CSharp_VxXmppErrorCodesRangeStart_get
CSharp_VxXmppErrorServiceUnavailable_get
CSharp_VxXmppInternalServerError_get
CSharp_VxXmppServerErrorServiceUnavailable_get
CSharp_delete_vx_account_t
CSharp_delete_vx_auto_accept_rule_t
CSharp_delete_vx_before_recv_audio_mixed_participant_data_t
CSharp_delete_vx_block_rule_t
CSharp_delete_vx_buddy_t
CSharp_delete_vx_call_stats_t
CSharp_delete_vx_channel_t
CSharp_delete_vx_connectivity_test_result_t
CSharp_delete_vx_device_t
CSharp_delete_vx_evt_account_archive_message_t
CSharp_delete_vx_evt_account_archive_query_end_t
CSharp_delete_vx_evt_account_login_state_change_t
CSharp_delete_vx_evt_account_send_message_failed_t
CSharp_delete_vx_evt_audio_device_hot_swap_t
CSharp_delete_vx_evt_aux_audio_properties_t
CSharp_delete_vx_evt_base_t
CSharp_delete_vx_evt_buddy_and_group_list_changed_t
CSharp_delete_vx_evt_buddy_changed_t
CSharp_delete_vx_evt_buddy_group_changed_t
CSharp_delete_vx_evt_buddy_presence_t
CSharp_delete_vx_evt_idle_state_changed_t
CSharp_delete_vx_evt_keyboard_mouse_t
CSharp_delete_vx_evt_media_completion_t
CSharp_delete_vx_evt_media_stream_updated_t
CSharp_delete_vx_evt_message_t
CSharp_delete_vx_evt_network_message_t
CSharp_delete_vx_evt_participant_added_t
CSharp_delete_vx_evt_participant_removed_t
CSharp_delete_vx_evt_participant_updated_t
CSharp_delete_vx_evt_publication_state_changed_t
CSharp_delete_vx_evt_server_app_data_t
CSharp_delete_vx_evt_session_added_t
CSharp_delete_vx_evt_session_archive_message_t
CSharp_delete_vx_evt_session_archive_query_end_t
CSharp_delete_vx_evt_session_notification_t
CSharp_delete_vx_evt_session_removed_t
CSharp_delete_vx_evt_session_updated_t
CSharp_delete_vx_evt_sessiongroup_added_t
CSharp_delete_vx_evt_sessiongroup_playback_frame_played_t
CSharp_delete_vx_evt_sessiongroup_removed_t
CSharp_delete_vx_evt_sessiongroup_updated_t
CSharp_delete_vx_evt_subscription_t
CSharp_delete_vx_evt_text_stream_updated_t
CSharp_delete_vx_evt_transcribed_message_t
CSharp_delete_vx_evt_tts_injection_ended_t
CSharp_delete_vx_evt_tts_injection_failed_t
CSharp_delete_vx_evt_tts_injection_started_t
CSharp_delete_vx_evt_user_app_data_t
CSharp_delete_vx_evt_user_to_user_message_t
CSharp_delete_vx_evt_voice_service_connection_state_changed_t
CSharp_delete_vx_generic_credentials
CSharp_delete_vx_group_t
CSharp_delete_vx_message_base_t
CSharp_delete_vx_name_value_pair_t
CSharp_delete_vx_participant_t
CSharp_delete_vx_req_account_anonymous_login_t
CSharp_delete_vx_req_account_archive_query_t
CSharp_delete_vx_req_account_authtoken_login_t
CSharp_delete_vx_req_account_buddy_delete_t
CSharp_delete_vx_req_account_buddy_set_t
CSharp_delete_vx_req_account_channel_add_acl_t
CSharp_delete_vx_req_account_channel_change_owner_t
CSharp_delete_vx_req_account_channel_get_acl_t
CSharp_delete_vx_req_account_channel_remove_acl_t
CSharp_delete_vx_req_account_control_communications_t
CSharp_delete_vx_req_account_create_auto_accept_rule_t
CSharp_delete_vx_req_account_create_block_rule_t
CSharp_delete_vx_req_account_delete_auto_accept_rule_t
CSharp_delete_vx_req_account_delete_block_rule_t
CSharp_delete_vx_req_account_get_account_t
CSharp_delete_vx_req_account_get_session_fonts_t
CSharp_delete_vx_req_account_get_template_fonts_t
CSharp_delete_vx_req_account_list_auto_accept_rules_t
CSharp_delete_vx_req_account_list_block_rules_t
CSharp_delete_vx_req_account_list_buddies_and_groups_t
CSharp_delete_vx_req_account_login_t
CSharp_delete_vx_req_account_logout_t
CSharp_delete_vx_req_account_post_crash_dump_t
CSharp_delete_vx_req_account_send_message_t
CSharp_delete_vx_req_account_send_sms_t
CSharp_delete_vx_req_account_send_subscription_reply_t
CSharp_delete_vx_req_account_send_user_app_data_t
CSharp_delete_vx_req_account_set_login_properties_t
CSharp_delete_vx_req_account_set_presence_t
CSharp_delete_vx_req_account_update_account_t
CSharp_delete_vx_req_account_web_call_t
CSharp_delete_vx_req_aux_capture_audio_start_t
CSharp_delete_vx_req_aux_capture_audio_stop_t
CSharp_delete_vx_req_aux_connectivity_info_t
CSharp_delete_vx_req_aux_create_account_t
CSharp_delete_vx_req_aux_deactivate_account_t
CSharp_delete_vx_req_aux_diagnostic_state_dump_t
CSharp_delete_vx_req_aux_get_capture_devices_t
CSharp_delete_vx_req_aux_get_derumbler_properties_t
CSharp_delete_vx_req_aux_get_mic_level_t
CSharp_delete_vx_req_aux_get_render_devices_t
CSharp_delete_vx_req_aux_get_speaker_level_t
CSharp_delete_vx_req_aux_get_vad_properties_t
CSharp_delete_vx_req_aux_global_monitor_keyboard_mouse_t
CSharp_delete_vx_req_aux_notify_application_state_change_t
CSharp_delete_vx_req_aux_play_audio_buffer_t
CSharp_delete_vx_req_aux_reactivate_account_t
CSharp_delete_vx_req_aux_render_audio_modify_t
CSharp_delete_vx_req_aux_render_audio_start_t
CSharp_delete_vx_req_aux_render_audio_stop_t
CSharp_delete_vx_req_aux_reset_password_t
CSharp_delete_vx_req_aux_set_capture_device_t
CSharp_delete_vx_req_aux_set_derumbler_properties_t
CSharp_delete_vx_req_aux_set_idle_timeout_t
CSharp_delete_vx_req_aux_set_mic_level_t
CSharp_delete_vx_req_aux_set_render_device_t
CSharp_delete_vx_req_aux_set_speaker_level_t
CSharp_delete_vx_req_aux_set_vad_properties_t
CSharp_delete_vx_req_aux_start_buffer_capture_t
CSharp_delete_vx_req_base_t
CSharp_delete_vx_req_channel_ban_user_t
CSharp_delete_vx_req_channel_get_banned_users_t
CSharp_delete_vx_req_channel_kick_user_t
CSharp_delete_vx_req_channel_mute_all_users_t
CSharp_delete_vx_req_channel_mute_user_t
CSharp_delete_vx_req_channel_set_lock_mode_t
CSharp_delete_vx_req_connector_create_t
CSharp_delete_vx_req_connector_get_local_audio_info_t
CSharp_delete_vx_req_connector_initiate_shutdown_t
CSharp_delete_vx_req_connector_mute_local_mic_t
CSharp_delete_vx_req_connector_mute_local_speaker_t
CSharp_delete_vx_req_connector_set_local_mic_volume_t
CSharp_delete_vx_req_connector_set_local_speaker_volume_t
CSharp_delete_vx_req_session_archive_query_t
CSharp_delete_vx_req_session_channel_invite_user_t
CSharp_delete_vx_req_session_create_t
CSharp_delete_vx_req_session_media_connect_t
CSharp_delete_vx_req_session_media_disconnect_t
CSharp_delete_vx_req_session_mute_local_speaker_t
CSharp_delete_vx_req_session_send_dtmf_t
CSharp_delete_vx_req_session_send_message_t
CSharp_delete_vx_req_session_send_notification_t
CSharp_delete_vx_req_session_set_3d_position_t
CSharp_delete_vx_req_session_set_local_render_volume_t
CSharp_delete_vx_req_session_set_local_speaker_volume_t
CSharp_delete_vx_req_session_set_participant_mute_for_me_t
CSharp_delete_vx_req_session_set_participant_volume_for_me_t
CSharp_delete_vx_req_session_set_voice_font_t
CSharp_delete_vx_req_session_terminate_t
CSharp_delete_vx_req_session_text_connect_t
CSharp_delete_vx_req_session_text_disconnect_t
CSharp_delete_vx_req_session_transcription_control_t
CSharp_delete_vx_req_sessiongroup_add_session_t
CSharp_delete_vx_req_sessiongroup_control_audio_injection_t
CSharp_delete_vx_req_sessiongroup_create_t
CSharp_delete_vx_req_sessiongroup_get_stats_t
CSharp_delete_vx_req_sessiongroup_remove_session_t
CSharp_delete_vx_req_sessiongroup_reset_focus_t
CSharp_delete_vx_req_sessiongroup_set_focus_t
CSharp_delete_vx_req_sessiongroup_set_session_3d_position_t
CSharp_delete_vx_req_sessiongroup_set_tx_all_sessions_t
CSharp_delete_vx_req_sessiongroup_set_tx_no_session_t
CSharp_delete_vx_req_sessiongroup_set_tx_session_t
CSharp_delete_vx_req_sessiongroup_terminate_t
CSharp_delete_vx_req_sessiongroup_unset_focus_t
CSharp_delete_vx_resp_account_anonymous_login_t
CSharp_delete_vx_resp_account_archive_query_t
CSharp_delete_vx_resp_account_authtoken_login_t
CSharp_delete_vx_resp_account_buddy_delete_t
CSharp_delete_vx_resp_account_buddy_set_t
CSharp_delete_vx_resp_account_channel_add_acl_t
CSharp_delete_vx_resp_account_channel_change_owner_t
CSharp_delete_vx_resp_account_channel_get_acl_t
CSharp_delete_vx_resp_account_channel_remove_acl_t
CSharp_delete_vx_resp_account_control_communications_t
CSharp_delete_vx_resp_account_create_auto_accept_rule_t
CSharp_delete_vx_resp_account_create_block_rule_t
CSharp_delete_vx_resp_account_delete_auto_accept_rule_t
CSharp_delete_vx_resp_account_delete_block_rule_t
CSharp_delete_vx_resp_account_get_account_t
CSharp_delete_vx_resp_account_get_session_fonts_t
CSharp_delete_vx_resp_account_get_template_fonts_t
CSharp_delete_vx_resp_account_list_auto_accept_rules_t
CSharp_delete_vx_resp_account_list_block_rules_t
CSharp_delete_vx_resp_account_list_buddies_and_groups_t
CSharp_delete_vx_resp_account_login_t
CSharp_delete_vx_resp_account_logout_t
CSharp_delete_vx_resp_account_post_crash_dump_t
CSharp_delete_vx_resp_account_send_message_t
CSharp_delete_vx_resp_account_send_sms_t
CSharp_delete_vx_resp_account_send_subscription_reply_t
CSharp_delete_vx_resp_account_send_user_app_data_t
CSharp_delete_vx_resp_account_set_login_properties_t
CSharp_delete_vx_resp_account_set_presence_t
CSharp_delete_vx_resp_account_update_account_t
CSharp_delete_vx_resp_account_web_call_t
CSharp_delete_vx_resp_aux_capture_audio_start_t
CSharp_delete_vx_resp_aux_capture_audio_stop_t
CSharp_delete_vx_resp_aux_connectivity_info_t
CSharp_delete_vx_resp_aux_create_account_t
CSharp_delete_vx_resp_aux_deactivate_account_t
CSharp_delete_vx_resp_aux_diagnostic_state_dump_t
CSharp_delete_vx_resp_aux_get_capture_devices_t
CSharp_delete_vx_resp_aux_get_derumbler_properties_t
CSharp_delete_vx_resp_aux_get_mic_level_t
CSharp_delete_vx_resp_aux_get_render_devices_t
CSharp_delete_vx_resp_aux_get_speaker_level_t
CSharp_delete_vx_resp_aux_get_vad_properties_t
CSharp_delete_vx_resp_aux_global_monitor_keyboard_mouse_t
CSharp_delete_vx_resp_aux_notify_application_state_change_t
CSharp_delete_vx_resp_aux_play_audio_buffer_t
CSharp_delete_vx_resp_aux_reactivate_account_t
CSharp_delete_vx_resp_aux_render_audio_modify_t
CSharp_delete_vx_resp_aux_render_audio_start_t
CSharp_delete_vx_resp_aux_render_audio_stop_t
CSharp_delete_vx_resp_aux_reset_password_t
CSharp_delete_vx_resp_aux_set_capture_device_t
CSharp_delete_vx_resp_aux_set_derumbler_properties_t
CSharp_delete_vx_resp_aux_set_idle_timeout_t
CSharp_delete_vx_resp_aux_set_mic_level_t
CSharp_delete_vx_resp_aux_set_render_device_t
CSharp_delete_vx_resp_aux_set_speaker_level_t
CSharp_delete_vx_resp_aux_set_vad_properties_t
CSharp_delete_vx_resp_aux_start_buffer_capture_t

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 290KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/Vuplex WebView.vuplex
.exe windows x64

Password: META1935BETA

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 300KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 262KB - Virtual size: 262KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/chrome_100_percent.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/chrome_200_percent.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/chrome_elf.dll
.dll windows x64

Password: META1935BETA

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 787KB - Virtual size: 787KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crthunk
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oldntma
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CPADinfo
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/d3dcompiler_47.dll
.dll windows x64

Password: META1935BETA

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 868KB - Virtual size: 867KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/libEGL.dll
.dll windows x64

Password: META1935BETA

6933133f3127603ab31ee03e51870f4f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

#writefile

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwinMETAP2E
E
W
ilter
leSRW
cess
lloc
sFree
Value
Value
onFilter
eObjectEx
Variable
MultiByte
eConsoleW

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSync
eglClientWaitSyncKHR
eglCopyBuffers
eglCreateContext
eglCreateDeviceANGLE
eglCreateImage
eglCreateImageKHR
eglCreateNativeClientBufferANDROID
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurface
eglCreatePlatformPixmapSurfaceEXT
eglCreatePlatformWindowSurface
eglCreatePlatformWindowSurfaceEXT
eglCreateStreamKHR
eglCreateStreamProducerD3DTextureANGLE
eglCreateSync
eglCreateSyncKHR
eglCreateWindowSurface
eglDebugMessageControlKHR
eglDestroyContext
eglDestroyImage
eglDestroyImageKHR
eglDestroyStreamKHR
eglDestroySurface
eglDestroySync
eglDestroySyncKHR
eglDupNativeFenceFDANDROID
eglGetCompositorTimingANDROID
eglGetCompositorTimingSupportedANDROID
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetFrameTimestampSupportedANDROID
eglGetFrameTimestampsANDROID
eglGetMscRateANGLE
eglGetNativeClientBufferANDROID
eglGetNextFrameIdANDROID
eglGetPlatformDisplay
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttrib
eglGetSyncAttribKHR
eglGetSyncValuesCHROMIUM
eglHandleGPUSwitchANGLE
eglInitialize
eglLabelObjectKHR
eglMakeCurrent
eglPostSubBufferNV
eglPresentationTimeANDROID
eglProgramCacheGetAttribANGLE
eglProgramCachePopulateANGLE
eglProgramCacheQueryANGLE
eglProgramCacheResizeANGLE
eglQueryAPI
eglQueryContext
eglQueryDebugKHR
eglQueryDeviceAttribEXT
eglQueryDeviceStringEXT
eglQueryDisplayAttribANGLE
eglQueryDisplayAttribEXT
eglQueryStreamKHR
eglQueryStreamu64KHR
eglQueryString
eglQueryStringiANGLE
eglQuerySurface
eglQuerySurfacePointerANGLE
eglReacquireHighPowerGPUANGLE
eglReleaseDeviceANGLE
eglReleaseHighPowerGPUANGLE
eglReleaseTexImage
eglReleaseThread
eglSetBlobCacheFuncsANDROID
eglSignalSyncKHR
eglStreamAttribKHR
eglStreamConsumerAcquireKHR
eglStreamConsumerGLTextureExternalAttribsNV
eglStreamConsumerGLTextureExternalKHR
eglStreamConsumerReleaseKHR
eglStreamPostD3DTextureANGLE
eglSurfaceAttrib
eglSwapBuffers
eglSwapBuffersWithDamageKHR
eglSwapBuffersWithFrameTokenANGLE
eglSwapInterval
eglTerminate
eglWaitClient
eglWaitGL
eglWaitNative
eglWaitSync
eglWaitSyncKHR

Sections

.text
Size: 272KB - Virtual size: 271KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/libGLESv2.dll
.dll windows x64

Password: META1935BETA

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 253KB - Virtual size: 6.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 305B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/am.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/ar.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/bg.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/bn.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/ca.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/cs.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/da.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/de.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/el.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/en-GB.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/en-US.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/es-419.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/es.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/et.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/fa.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/fi.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/fil.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/fr.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/gu.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/he.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/hi.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/hr.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/hu.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/id.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/it.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/ja.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/kn.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/ko.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/lt.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/lv.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/ml.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/mr.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/ms.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/nb.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/nl.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/pl.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/pt-BR.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/pt-PT.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/ro.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/ru.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/sk.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/sl.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/sr.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/sv.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/sw.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/ta.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/te.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/th.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/tr.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/uk.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/vi.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/zh-CN.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/locales/zh-TW.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/log-chromium.txt
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/log-chromium.txt~
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/resources.pak
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/snapshot_blob.bin
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/swiftshader/libEGL.dll
.dll windows x64

6274ac817bd9d71692805189d292e077

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

tdevicecaps

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwinMETAP2E
E
W
ilter
leSRW
cess
lloc
sFree
Value
Value
onFilter
eObjectEx
Variable
MultiByte
eConsoleW

ernel32

WriteFile
lientRect
t
IsWindow

ReleaseDC

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSyncKHR
eglCopyBuffers
eglCreateContext
eglCreateImageKHR
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurfaceEXT
eglCreatePlatformWindowSurfaceEXT
eglCreateSyncKHR
eglCreateWindowSurface
eglDestroyContext
eglDestroyImageKHR
eglDestroySurface
eglDestroySyncKHR
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttribKHR
eglInitialize
eglMakeCurrent
eglQueryAPI
eglQueryContext
eglQueryString
eglQuerySurface
eglReleaseTexImage
eglReleaseThread
eglSurfaceAttrib
eglSwapBuffers
eglSwapInterval
eglTerminate
eglWaitClient
eglWaitGL
eglWaitNative
libEGL_swiftshader

Sections

.text
Size: 288KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/swiftshader/libGLESv2.dll
.dll windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 267KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 45B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewChromium/v8_context_snapshot.bin
META 1935 0.02/DATA/Plugins/x86_64/VuplexWebViewWindows.dll
.dll windows x64

40cc7ad0978e06acda76fdc8589549ec

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

WideCharToMultiByte
MultiByteToWideChar
GetLastError
CreateThread
ExitProcess
CreateNamedPipeA
ConnectNamedPipe
SetEvent
WaitForSingleObject
ReadFile
CreatePipe
SetHandleInformation
CreateProcessW
GetStdHandle
CloseHandle
GetCurrentThreadId
WriteFile
CreateEventW
CancelIoEx
DisconnectNamedPipe
CancelSynchronousIo
TerminateProcess
GetModuleFileNameW
SetStdHandle
tProcessHeap
nmentStringsW
QueryPerformanceCounter
QueryPerformanceFrequency
WaitForSingleObjectEx
Sleep
CreateFileW
FindClose
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
SetFilePointerEx
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
TryEnterCriticalSection
DeleteCriticalSection
GetLocaleInfoEx
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
GetCPInfo
InitializeCriticalSectionAndSpinCount
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandleMETAP2EceptionFilter
ilter
ocess
esent
esent
InfoW
essId
tHead
inMETAP2E
ileHeader
xception
lushSList
astError
TlsAlloc
sGetValue
sSetValue
�TlsFree
eeLibrary
braryExW
itThread
AP2EitThread
uleHandleExW
mentVariableW
W
UHeapReAlloc
mpareStringW
LCMapStringW
tLocaleInfoW
IsValidLocale
rDefaultLCID
stemLocalesW
eInformation
UGetFileType
hFileBuffers
GetConsoleCP
tConsoleMode
GetFileSizeEx
ReadConsoleW
ValidCodePage
age
tCommandLineA
tCommandLineW
mentStringsW
WriteConsoleW

rpcrt4

UuidCreate
UuidToStringA
RpcStringFreeA

Exports

Exports

UnityPluginLoad
UnityPluginUnload
WebView_browserProcessIsRunning
WebView_canGoBack
WebView_canGoForward
WebView_cancelAuth
WebView_cancelFileSelection
WebView_click
WebView_continueAuth
WebView_continueFileSelection
WebView_copy
WebView_cut
WebView_deleteCookies
WebView_depositPointer
WebView_destroy
WebView_destroyTexture
WebView_dispatchTouchEvent
WebView_enableRemoteDebugging
WebView_executeJavaScript
WebView_getCookies
WebView_getRenderFunction
WebView_globallySetUserAgent
WebView_globallySetUserAgentToMobile
WebView_goBack
WebView_goForward
WebView_initializePlugin
WebView_keyDown
WebView_keyUp
WebView_loadHtml
WebView_loadUrl
WebView_loadUrlWithHeaders
WebView_logVersionInfo
WebView_movePointer
WebView_new
WebView_paste
WebView_pointerDown
WebView_pointerUp
WebView_reload
WebView_removePointer
WebView_resize
WebView_scroll
WebView_scrollAtPoint
WebView_selectAll
WebView_sendKey
WebView_setAudioMuted
WebView_setAuthEnabled
WebView_setAutoplayEnabled
WebView_setCachePath
WebView_setCameraAndMicrophoneEnabled
WebView_setCommandLineArguments
WebView_setConsoleMessageEventsEnabled
WebView_setCookie
WebView_setDownloadsEnabled
WebView_setFileSelectionEnabled
WebView_setFocused
WebView_setFocusedInputFieldEventsEnabled
WebView_setIgnoreCertificateErrors
WebView_setLogFunctions
WebView_setNativeFileDialogEnabled
WebView_setPopupMode
WebView_setRenderingEnabled
WebView_setScreenSharingEnabled
WebView_setTargetFrameRate
WebView_setZoomLevel
WebView_stopLoad
WebView_terminatePlugin
WebView_zoomIn
WebView_zoomOut

Sections

.text
Size: 269KB - Virtual size: 269KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/Plugins/x86_64/lib_burst_generated.dll
.dll windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Exports

Exports

1998da082e6413092f0e7bcd5a0e9331
26c6d10914da2fc98755b3533c59141e
34e8fec66b799db60cf2f2f751c3bdd9
670478f3fb3f285eeace534fbe61a03e
77fc393cb521ac129b1392d4eb94d29a
89425a97f3f500fa810ad03f0c382542
8c2be93e18276203cbd918daa2748a10
aa309157da5950aa53ed6075709e6e40
b04c75a68edf1d166f6547f2ea0e8928
burst.initialize
d23a07cb3c3f217121d5bf94e76674f0
da352d92cabf024fc9986011d52a4537
e046a1595d0148509657ed4dbcb52a86
e943843acfb78f5f2f3716a6553740d9

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
META 1935 0.02/DATA/RuntimeInitializeOnLoads.json
META 1935 0.02/DATA/ScriptingAssemblies.json
META 1935 0.02/DATA/StreamingAssets/google-services-desktop.json
META 1935 0.02/DATA/app.info
META 1935 0.02/DATA/boot.config
META 1935 0.02/DATA/globalgamemanagers
META 1935 0.02/DATA/globalgamemanagers.assets
META 1935 0.02/DATA/globalgamemanagers.assets.resS
META 1935 0.02/DATA/il2cpp_data/Metadata/global-metadata.dat
META 1935 0.02/DATA/il2cpp_data/Resources/mscorlib.dll-resources.dat
META 1935 0.02/DATA/level0
META 1935 0.02/DATA/level0.resS
META 1935 0.02/DATA/level1
META 1935 0.02/DATA/level1.resS
META 1935 0.02/DATA/level2
META 1935 0.02/DATA/level2.resS
META 1935 0.02/DATA/level3.resS
META 1935 0.02/DATA/resources.assets
META 1935 0.02/DATA/resources.resource
META 1935 0.02/DATA/sharedassets0.assets
META 1935 0.02/DATA/sharedassets0.assets.resS
META 1935 0.02/META WORLD Launcher.exe
.exe windows x86

245662a6e5a425a1168d9f9efa96f9aa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
QueryProcessCycleTime
FreeConsole
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
EncodePointer
DecodePointer
LCMapStringEx
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
CreateFileW
RaiseException
RtlUnwind
GetLastError
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
GetStdHandle
WriteFile
GetModuleFileNameW
ExitProcess
GetModuleHandleExW
GetCommandLineA
GetCommandLineW
HeapAlloc
HeapFree
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetFileType
CloseHandle
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
ReadFile
GetFileSizeEx
SetFilePointerEx
ReadConsoleW
HeapReAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
GetProcessHeap
HeapSize
WriteConsoleW

Sections

.text
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.zdata
Size: 305KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 305KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 305KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 227KB - Virtual size: 227KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
META 1935 0.02/META1935BETA - password.txt
META 1935 0.02/NET Framework 4.5.exe
.exe windows x86

5e3ce2eed99c49477aed11aea6091114

Code Sign

33:00:00:00:88:59:0e:3c:51:1f:e2:6a:67:00:01:00:00:00:88
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

26/07/2012, 20:50

Not After

26/10/2013, 20:50

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:02:92:4a:00:00:00:00:00:20
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

09/01/2012, 22:25

Not After

09/04/2013, 22:25

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:B8EC-30A4-7144,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:08:e2:79:fa:0d:25:58:45:ea:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07/07/2012, 00:14

Not After

07/10/2013, 00:14

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e4:c0:b8:7b:95:13:be:32:3b:55:79:55:ba:d6:5a:13:04:c4:6c:1e:11:4a:8a:14:16:f6:3c:d3:b0:3c:7f:a1
Signer

Actual PE Digest

e4:c0:b8:7b:95:13:be:32:3b:55:79:55:ba:d6:5a:13:04:c4:6c:1e:11:4a:8a:14:16:f6:3c:d3:b0:3c:7f:a1

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

03/05/2023, 12:04
Valid: false

44:3a:91:f3:fa:40:7b:1d:25:8a:80:73:bf:2d:cc:f9:69:6d:35:f4
Signer

Actual PE Digest

44:3a:91:f3:fa:40:7b:1d:25:8a:80:73:bf:2d:cc:f9:69:6d:35:f4

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

20/09/2012, 01:16
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CreateWellKnownSid
InitializeSecurityDescriptor
SetEntriesInAclW
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner
CryptAcquireContextW
CryptGenRandom
CryptReleaseContext
DecryptFileW

kernel32

CreateProcessW
Sleep
WaitForSingleObject
GetExitCodeProcess
CloseHandle
SetFileAttributesW
InitializeCriticalSection
CreateEventW
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExpandEnvironmentStringsW
SetEvent
GetCommandLineW
lstrlenW
CompareStringW
LocalFree
CreateDirectoryW
QueryDosDeviceW
GetLogicalDriveStringsW
GetDiskFreeSpaceExW
GetDriveTypeW
CreateFileW
DeviceIoControl
SetErrorMode
RemoveDirectoryW
MoveFileExW
LoadLibraryW
GetProcAddress
GetSystemDirectoryW
GetVersion
GetLastError
SetEnvironmentVariableW
ExitThread
GetTickCount
GetEnvironmentVariableW
GetModuleHandleW
LeaveCriticalSection
WaitForMultipleObjects
ResetEvent
CreateEventA
GetSystemInfo
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetEndOfFile
DuplicateHandle
ReadFile
GetCommandLineA
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
LCMapStringW
RtlUnwind
SetFilePointer
GetConsoleCP
GetConsoleMode
MultiByteToWideChar
GetStringTypeW
HeapSize
HeapReAlloc
IsProcessorFeaturePresent
SetStdHandle
WriteConsoleW
FlushFileBuffers
CreateFileA
GetLocalTime
GetComputerNameW
lstrlenA
FormatMessageW
GetSystemTime
GetTimeZoneInformation
SystemTimeToTzSpecificLocalTime
DeleteFileW
GetFileAttributesW
FindFirstFileW
FindNextFileW
FindClose
GetCurrentDirectoryW
SetCurrentDirectoryW
GetProcessHeap
GlobalAlloc
GlobalFree
SetFilePointerEx
RaiseException

comctl32

ord17

rpcrt4

UuidCreate
UuidToStringW
RpcStringFreeW

shell32

SHBrowseForFolderW
SHGetPathFromIDListW
CommandLineToArgvW

shlwapi

PathRemoveExtensionW

user32

GetTopWindow
GetWindowThreadProcessId
GetWindow
SendMessageW
MessageBoxW
PostMessageW
DialogBoxParamW
GetDlgItem
SetWindowTextW
EndDialog
PostQuitMessage
SetWindowLongW
GetWindowLongW
LoadStringW
CharUpperW

cabinet

ord22
ord23
ord20

oleaut32

VariantClear
SysAllocString

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

Exports

Exports

?dwPlaceholder@@3PAEA
_DecodePointerInternal@4
_EncodePointerInternal@4

Sections

.text
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boxld01
Size: 512B - Virtual size: 182B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
META 1935 0.02/Update.dll
.dll windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

il2cpp
Size: 22.1MB - Virtual size: 22.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6.0MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.8MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 537KB - Virtual size: 537KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: META1935BETA

Password: META1935BETA

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 755KB - Virtual size: 754KB

.rdata Size: 169KB - Virtual size: 168KB

.data Size: 11KB - Virtual size: 14KB

.pdata Size: 30KB - Virtual size: 29KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 3KB - Virtual size: 3KB

Password: META1935BETA

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

.rdata Size: 742KB - Virtual size: 742KB

.data Size: 42KB - Virtual size: 2.6MB

.pdata Size: 107KB - Virtual size: 106KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 27KB - Virtual size: 26KB

Password: META1935BETA

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

.text Size: 63KB - Virtual size: 63KB

.rdata Size: 290KB - Virtual size: 290KB

.data Size: 3KB - Virtual size: 7KB

.pdata Size: 5KB - Virtual size: 5KB

.gfids Size: 512B - Virtual size: 180B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 2KB - Virtual size: 1KB

Password: META1935BETA

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 300KB - Virtual size: 300KB

.data Size: 8KB - Virtual size: 23KB

.pdata Size: 64KB - Virtual size: 64KB

_RDATA Size: 512B - Virtual size: 244B

.rsrc Size: 262KB - Virtual size: 262KB

.reloc Size: 12KB - Virtual size: 11KB

Password: META1935BETA

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 787KB - Virtual size: 787KB

.rdata Size: 162KB - Virtual size: 161KB

.data Size: 111KB - Virtual size: 147KB

.pdata Size: 30KB - Virtual size: 30KB

.00cfg Size: 512B - Virtual size: 40B

.crthunk Size: 512B - Virtual size: 64B

.oldntma Size: 512B - Virtual size: 8B

.tls Size: 512B - Virtual size: 289B

CPADinfo Size: 512B - Virtual size: 56B

_RDATA Size: 512B - Virtual size: 148B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 6KB - Virtual size: 6KB

Password: META1935BETA

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 3.1MB - Virtual size: 3.1MB

.rdata Size: 868KB - Virtual size: 867KB

.data Size: 38KB - Virtual size: 72KB

.pdata Size: 125KB - Virtual size: 124KB

.text
Size: 755KB - Virtual size: 754KB

.rdata
Size: 169KB - Virtual size: 168KB

.data
Size: 11KB - Virtual size: 14KB

.pdata
Size: 30KB - Virtual size: 29KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 3KB - Virtual size: 3KB

.text
Size: 2.5MB - Virtual size: 2.5MB

.rdata
Size: 742KB - Virtual size: 742KB

.data
Size: 42KB - Virtual size: 2.6MB

.pdata
Size: 107KB - Virtual size: 106KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 27KB - Virtual size: 26KB

.text
Size: 63KB - Virtual size: 63KB

.rdata
Size: 290KB - Virtual size: 290KB

.data
Size: 3KB - Virtual size: 7KB

.pdata
Size: 5KB - Virtual size: 5KB

.gfids
Size: 512B - Virtual size: 180B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 300KB - Virtual size: 300KB

.data
Size: 8KB - Virtual size: 23KB

.pdata
Size: 64KB - Virtual size: 64KB

_RDATA
Size: 512B - Virtual size: 244B

.rsrc
Size: 262KB - Virtual size: 262KB

.reloc
Size: 12KB - Virtual size: 11KB

.text
Size: 787KB - Virtual size: 787KB

.rdata
Size: 162KB - Virtual size: 161KB

.data
Size: 111KB - Virtual size: 147KB

.pdata
Size: 30KB - Virtual size: 30KB

.00cfg
Size: 512B - Virtual size: 40B

.crthunk
Size: 512B - Virtual size: 64B

.oldntma
Size: 512B - Virtual size: 8B

.tls
Size: 512B - Virtual size: 289B

CPADinfo
Size: 512B - Virtual size: 56B

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 6KB - Virtual size: 6KB

.text
Size: 3.1MB - Virtual size: 3.1MB

.rdata
Size: 868KB - Virtual size: 867KB

.data
Size: 38KB - Virtual size: 72KB

.pdata
Size: 125KB - Virtual size: 124KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 32KB - Virtual size: 32KB

#writefile

.text
Size: 272KB - Virtual size: 271KB

.rdata
Size: 94KB - Virtual size: 94KB

.data
Size: 8KB - Virtual size: 19KB

.pdata
Size: 15KB - Virtual size: 15KB

.00cfg
Size: 512B - Virtual size: 40B

.tls
Size: 512B - Virtual size: 289B

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 3KB

.text
Size: 4.6MB - Virtual size: 4.6MB

.rdata
Size: 1.4MB - Virtual size: 1.4MB

.data
Size: 253KB - Virtual size: 6.3MB

.pdata
Size: 157KB - Virtual size: 156KB

.00cfg
Size: 512B - Virtual size: 40B

.tls
Size: 512B - Virtual size: 305B

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 68KB - Virtual size: 68KB

.text
Size: 288KB - Virtual size: 288KB

.rdata
Size: 95KB - Virtual size: 94KB

.data
Size: 8KB - Virtual size: 19KB

.pdata
Size: 15KB - Virtual size: 15KB

.00cfg
Size: 512B - Virtual size: 40B

.tls
Size: 512B - Virtual size: 9B

_RDATA
Size: 512B - Virtual size: 148B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 267KB - Virtual size: 266KB

.data
Size: 9KB - Virtual size: 326KB