plantas vs zombis por xxxjuliganxxx[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

plantas vs zombis por xxxjuliganxxx.rar
Size

46.3MB
MD5

db6033e539eecbd58c60f40a8d11551f
SHA1

953b9e27c724f627b3b724ac6180193a885574c2
SHA256

e4791b3c4a34510755952299799bdca4313bf96158735e86dceb2cd5d706e7a1
SHA512

b423ca51455b55d131c45aa9225d73f4c05d74d0265f3e26818b5e055bf3e15a616b0b2b81084c60891e530879932419ba65b08a5575649ab85964b492916304
SSDEEP

786432:wWJLVW5xHgc4n+/yE6sVR89u2oMnbjZiD6g8K1SHOEIq/i5p3/xAORvP3zxCcvNV:JJJWvHw+/6sVi9NAL8dIei5lJADAYcKQ

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
static1/unpack001/Crack.exe	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Crack.exe
unpack001/bass.dll

Files

plantas vs zombis por xxxjuliganxxx.rar
.rar
Crack.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

UPX0
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

UPX3
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Install.log
Install_props.xml
PlantsVsZombies.dat
PlantsVsZombies.exe
.exe windows x86

1830114513f6f597435f788e3b228d52

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:61:df:38:d5:bb:38:36:a8:b4:4b:98:5c:50:44:79
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

01/09/2006, 00:00

Not After

21/09/2009, 23:59

Subject

CN=PopCap Games,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=PopCap Games,L=Seattle,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

WSAStartup
WSACleanup

kernel32

CreateFileA
TerminateProcess
MoveFileExA
GetCurrentThread
MapViewOfFile
CreateEventA
UnmapViewOfFile
LeaveCriticalSection
CreateFileMappingA
CreateThread
InitializeCriticalSection
WaitForSingleObject
DeleteCriticalSection
EnterCriticalSection
SetEvent
GetModuleHandleA
QueryPerformanceCounter
QueryPerformanceFrequency
GetCurrentProcessId
VirtualFree
VirtualAlloc
MoveFileExW
CompareStringA
InterlockedExchange
SetLastError
GetVolumeInformationA
CreateProcessA
SetEnvironmentVariableA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
CreatePipe
GetFileAttributesA
GetConsoleOutputCP
WriteConsoleA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapCreate
HeapDestroy
FlushFileBuffers
GetTickCount
SetHandleCount
SetFilePointer
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetOEMCP
GetACP
GetConsoleMode
GetConsoleCP
WriteFile
ReadFile
GetStringTypeA
LCMapStringA
MoveFileA
DuplicateHandle
GetFileType
SetStdHandle
ExitThread
GetFullPathNameA
GetDriveTypeA
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
GetSystemTimeAsFileTime
GetProcessHeap
HeapAlloc
HeapFree
SetEndOfFile
SetFileAttributesA
GlobalLock
EnumResourceNamesA
OutputDebugStringA
Process32First
CreateMutexA
OpenProcess
Sleep
GetWindowsDirectoryA
FreeLibrary
DeleteFileA
GlobalUnlock
Process32Next
GetExitCodeProcess
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
ResumeThread
CloseHandle
LoadLibraryA
GetLastError
SetThreadPriority
CreateDirectoryA
GetThreadPriority
VirtualQuery
VirtualProtect
GlobalAlloc
CopyFileA
OpenMutexA
OpenFileMappingA
WaitForMultipleObjects
ReleaseMutex
OpenEventA
CreateToolhelp32Snapshot
GetModuleFileNameA
GetCommandLineW
HeapSize
GetVersionExA
FindClose
FindFirstFileA
SetFileTime
FindNextFileA
GetTimeZoneInformation
ReadConsoleInputA
GetConsoleCursorInfo
FreeConsole
SetConsoleTextAttribute
PeekConsoleInputA
GetCurrentThreadId
SetConsoleTitleA
SetConsoleCursorInfo
GetConsoleScreenBufferInfo
SetConsoleCursorPosition
AllocConsole
MulDiv
GetStdHandle
SetConsoleCtrlHandler
GetFileTime

user32

WindowFromPoint
CreateCursor
FillRect
DestroyWindow
CreateWindowExA
GetQueueStatus
DestroyCursor
SetFocus
PostThreadMessageA
AdjustWindowRect
GetWindowTextA
GetSystemMetrics
PeekMessageA
IsWindowVisible
ReleaseDC
ShowWindow
SetCaretPos
CreatePopupMenu
LoadCursorA
SetTimer
DestroyCaret
HideCaret
GetClientRect
GetMessageA
GetDesktopWindow
GetForegroundWindow
PostQuitMessage
EnumDisplayMonitors
DispatchMessageA
GetWindowTextLengthA
TrackPopupMenu
SendMessageA
IntersectRect
GetCursor
SetWindowTextA
GetWindowRect
IsIconic
OpenIcon
LoadImageA
ShowCaret
GetWindowThreadProcessId
MessageBoxA
GetCursorPos
RegisterClassA
AppendMenuA
ClientToScreen
RegisterWindowMessageA
CreateCaret
CloseClipboard
GetDC
OpenClipboard
IsWindow
GetWindowPlacement
PostMessageA
MoveWindow
SetForegroundWindow
TranslateMessage
GetClassNameA
DefWindowProcA
EnumWindows
BringWindowToTop
UnregisterClassA
GetSystemMenu
FlashWindowEx
GetParent
GetFocus
DeleteMenu
DrawMenuBar
SetCursor
ReleaseCapture
SetCapture
EndPaint
BeginPaint
SetClipboardData
ScreenToClient

gdi32

SetTextColor
SelectClipRgn
SetBkMode
StretchBlt
GdiFlush
GetStockObject
GetDeviceCaps
SetDIBitsToDevice
GetTextMetricsA
IntersectClipRect
GetObjectA
DeleteDC
DeleteObject
CreateDIBSection
SelectObject
CreateCompatibleDC
BitBlt
GetCharABCWidthsA
CreateFontA
CreateFontIndirectA

advapi32

RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegEnumValueA
RegCreateKeyExA

shell32

ShellExecuteA

ole32

CoInitializeSecurity
CoUninitialize
CoCreateInstance
CoInitialize

oleaut32

SysFreeString
SysAllocStringByteLen

wininet

InternetReadFile
InternetConnectA
HttpSendRequestA
InternetCloseHandle
InternetOpenA
HttpOpenRequestA
HttpQueryInfoA

winmm

timeBeginPeriod
PlaySoundA
timeEndPeriod
timeGetTime

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 292KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 425KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 220KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PlantsVsZombies.exe.bak
.exe windows x86

1830114513f6f597435f788e3b228d52

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:61:df:38:d5:bb:38:36:a8:b4:4b:98:5c:50:44:79
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

01/09/2006, 00:00

Not After

21/09/2009, 23:59

Subject

CN=PopCap Games,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=PopCap Games,L=Seattle,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

WSAStartup
WSACleanup

kernel32

CreateFileA
TerminateProcess
MoveFileExA
GetCurrentThread
MapViewOfFile
CreateEventA
UnmapViewOfFile
LeaveCriticalSection
CreateFileMappingA
CreateThread
InitializeCriticalSection
WaitForSingleObject
DeleteCriticalSection
EnterCriticalSection
SetEvent
GetModuleHandleA
QueryPerformanceCounter
QueryPerformanceFrequency
GetCurrentProcessId
VirtualFree
VirtualAlloc
MoveFileExW
CompareStringA
InterlockedExchange
SetLastError
GetVolumeInformationA
CreateProcessA
SetEnvironmentVariableA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
CreatePipe
GetFileAttributesA
GetConsoleOutputCP
WriteConsoleA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapCreate
HeapDestroy
FlushFileBuffers
GetTickCount
SetHandleCount
SetFilePointer
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetOEMCP
GetACP
GetConsoleMode
GetConsoleCP
WriteFile
ReadFile
GetStringTypeA
LCMapStringA
MoveFileA
DuplicateHandle
GetFileType
SetStdHandle
ExitThread
GetFullPathNameA
GetDriveTypeA
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
GetSystemTimeAsFileTime
GetProcessHeap
HeapAlloc
HeapFree
SetEndOfFile
SetFileAttributesA
GlobalLock
EnumResourceNamesA
OutputDebugStringA
Process32First
CreateMutexA
OpenProcess
Sleep
GetWindowsDirectoryA
FreeLibrary
DeleteFileA
GlobalUnlock
Process32Next
GetExitCodeProcess
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
ResumeThread
CloseHandle
LoadLibraryA
GetLastError
SetThreadPriority
CreateDirectoryA
GetThreadPriority
VirtualQuery
VirtualProtect
GlobalAlloc
CopyFileA
OpenMutexA
OpenFileMappingA
WaitForMultipleObjects
ReleaseMutex
OpenEventA
CreateToolhelp32Snapshot
GetModuleFileNameA
GetCommandLineW
HeapSize
GetVersionExA
FindClose
FindFirstFileA
SetFileTime
FindNextFileA
GetTimeZoneInformation
ReadConsoleInputA
GetConsoleCursorInfo
FreeConsole
SetConsoleTextAttribute
PeekConsoleInputA
GetCurrentThreadId
SetConsoleTitleA
SetConsoleCursorInfo
GetConsoleScreenBufferInfo
SetConsoleCursorPosition
AllocConsole
MulDiv
GetStdHandle
SetConsoleCtrlHandler
GetFileTime

user32

WindowFromPoint
CreateCursor
FillRect
DestroyWindow
CreateWindowExA
GetQueueStatus
DestroyCursor
SetFocus
PostThreadMessageA
AdjustWindowRect
GetWindowTextA
GetSystemMetrics
PeekMessageA
IsWindowVisible
ReleaseDC
ShowWindow
SetCaretPos
CreatePopupMenu
LoadCursorA
SetTimer
DestroyCaret
HideCaret
GetClientRect
GetMessageA
GetDesktopWindow
GetForegroundWindow
PostQuitMessage
EnumDisplayMonitors
DispatchMessageA
GetWindowTextLengthA
TrackPopupMenu
SendMessageA
IntersectRect
GetCursor
SetWindowTextA
GetWindowRect
IsIconic
OpenIcon
LoadImageA
ShowCaret
GetWindowThreadProcessId
MessageBoxA
GetCursorPos
RegisterClassA
AppendMenuA
ClientToScreen
RegisterWindowMessageA
CreateCaret
CloseClipboard
GetDC
OpenClipboard
IsWindow
GetWindowPlacement
PostMessageA
MoveWindow
SetForegroundWindow
TranslateMessage
GetClassNameA
DefWindowProcA
EnumWindows
BringWindowToTop
UnregisterClassA
GetSystemMenu
FlashWindowEx
GetParent
GetFocus
DeleteMenu
DrawMenuBar
SetCursor
ReleaseCapture
SetCapture
EndPaint
BeginPaint
SetClipboardData
ScreenToClient

gdi32

SetTextColor
SelectClipRgn
SetBkMode
StretchBlt
GdiFlush
GetStockObject
GetDeviceCaps
SetDIBitsToDevice
GetTextMetricsA
IntersectClipRect
GetObjectA
DeleteDC
DeleteObject
CreateDIBSection
SelectObject
CreateCompatibleDC
BitBlt
GetCharABCWidthsA
CreateFontA
CreateFontIndirectA

advapi32

RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegEnumValueA
RegCreateKeyExA

shell32

ShellExecuteA

ole32

CoInitializeSecurity
CoUninitialize
CoCreateInstance
CoInitialize

oleaut32

SysFreeString
SysAllocStringByteLen

wininet

InternetReadFile
InternetConnectA
HttpSendRequestA
InternetCloseHandle
InternetOpenA
HttpOpenRequestA
HttpQueryInfoA

winmm

timeBeginPeriod
PlaySoundA
timeEndPeriod
timeGetTime

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 292KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 425KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 220KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PopUninstall.exe
.exe windows x86

2e67d248a052dd075ffe9c0334770519

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:61:df:38:d5:bb:38:36:a8:b4:4b:98:5c:50:44:79
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

01/09/2006, 00:00

Not After

21/09/2009, 23:59

Subject

CN=PopCap Games,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=PopCap Games,L=Seattle,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

kernel32

CreateFileA
GetExitCodeProcess
Sleep
DeleteFileA
SetFileAttributesA
MulDiv
RemoveDirectoryA
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetModuleFileNameA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
SetFilePointer
FlushFileBuffers
ReadFile
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetOEMCP
GetACP
GetSystemTimeAsFileTime
GetCurrentProcessId
WideCharToMultiByte
WriteFile
CreateProcessA
SetThreadPriority
GetCurrentThread
SetPriorityClass
ResumeThread
GetSystemDirectoryA
GetWindowsDirectoryA
FindFirstFileA
FindNextFileA
FindClose
GetLastError
GetCurrentProcess
CloseHandle
GetVersionExA
LoadLibraryA
GetProcAddress
FreeLibrary
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleHandleA
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
HeapFree
ExitThread
CreateThread
GetCommandLineA
HeapAlloc
GetProcessHeap
GetStartupInfoA
HeapReAlloc
LCMapStringA
LCMapStringW
GetCPInfo
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetFileAttributesA
HeapSize
GetStdHandle

user32

GetWindowTextA
MessageBoxW
DialogBoxParamA
DialogBoxParamW
LoadImageA
ShowWindow
GetWindowRect
MapWindowPoints
BeginPaint
LoadIconA
DrawIcon
EndPaint
GetDlgItem
EndDialog
SetTimer
GetClientRect
AdjustWindowRect
MoveWindow
SendMessageW
EnumChildWindows
SetWindowTextW
SetWindowTextA
GetWindowLongA
GetDC
SystemParametersInfoA
ReleaseDC
GetSystemMetrics
SendMessageA
IsWindowUnicode
GetWindowTextW

gdi32

CreateFontA
CreateFontW
CreateFontIndirectA
GetStockObject
SelectObject
GetTextExtentPoint32W
DeleteObject
GetDeviceCaps

advapi32

RegOpenKeyExA
RegQueryInfoKeyA
RegOpenKeyA
RegEnumValueA
RegDeleteValueA
RegEnumKeyExA
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA
RegCloseKey

shell32

ShellExecuteExA
SHChangeNotify

ole32

CoUninitialize
CoCreateInstance
CoInitialize
StringFromGUID2

Sections

.text
Size: 180KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
bass.dll
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

BASS_Apply3D
BASS_ChannelBytes2Seconds
BASS_ChannelGet3DAttributes
BASS_ChannelGet3DPosition
BASS_ChannelGetAttributes
BASS_ChannelGetData
BASS_ChannelGetDevice
BASS_ChannelGetEAXMix
BASS_ChannelGetInfo
BASS_ChannelGetLength
BASS_ChannelGetLevel
BASS_ChannelGetPosition
BASS_ChannelIsActive
BASS_ChannelIsSliding
BASS_ChannelPause
BASS_ChannelPlay
BASS_ChannelPreBuf
BASS_ChannelRemoveDSP
BASS_ChannelRemoveFX
BASS_ChannelRemoveLink
BASS_ChannelRemoveSync
BASS_ChannelSeconds2Bytes
BASS_ChannelSet3DAttributes
BASS_ChannelSet3DPosition
BASS_ChannelSetAttributes
BASS_ChannelSetDSP
BASS_ChannelSetEAXMix
BASS_ChannelSetFX
BASS_ChannelSetFlags
BASS_ChannelSetLink
BASS_ChannelSetPosition
BASS_ChannelSetSync
BASS_ChannelSlideAttributes
BASS_ChannelStop
BASS_ErrorGetCode
BASS_FXGetParameters
BASS_FXSetParameters
BASS_Free
BASS_Get3DFactors
BASS_Get3DPosition
BASS_GetCPU
BASS_GetConfig
BASS_GetDSoundObject
BASS_GetDevice
BASS_GetDeviceDescription
BASS_GetEAXParameters
BASS_GetInfo
BASS_GetVersion
BASS_GetVolume
BASS_Init
BASS_MusicFree
BASS_MusicGetAttribute
BASS_MusicGetName
BASS_MusicGetOrderPosition
BASS_MusicGetOrders
BASS_MusicLoad
BASS_MusicSetAttribute
BASS_Pause
BASS_PluginFree
BASS_PluginLoad
BASS_RecordFree
BASS_RecordGetDevice
BASS_RecordGetDeviceDescription
BASS_RecordGetInfo
BASS_RecordGetInput
BASS_RecordGetInputName
BASS_RecordInit
BASS_RecordSetDevice
BASS_RecordSetInput
BASS_RecordStart
BASS_SampleCreate
BASS_SampleCreateDone
BASS_SampleFree
BASS_SampleGetChannel
BASS_SampleGetInfo
BASS_SampleLoad
BASS_SampleSetInfo
BASS_SampleStop
BASS_Set3DFactors
BASS_Set3DPosition
BASS_SetConfig
BASS_SetDevice
BASS_SetEAXParameters
BASS_SetVolume
BASS_Start
BASS_Stop
BASS_StreamCreate
BASS_StreamCreateFile
BASS_StreamCreateFileUser
BASS_StreamCreateURL
BASS_StreamFree
BASS_StreamGetFilePosition
BASS_StreamGetTags
BASS_Update
_

Sections

Size: 85KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 568B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
cached/sounds/RVthrow.wav
cached/sounds/awooga.wav
cached/sounds/balloon_pop.wav
cached/sounds/ballooninflate.wav
cached/sounds/basketball.wav
cached/sounds/bigchomp.wav
cached/sounds/bleep.wav
cached/sounds/blover.wav
cached/sounds/boing.wav
cached/sounds/bonk.wav
cached/sounds/bossboulderattack.wav
cached/sounds/bossexplosion.wav
cached/sounds/bowling.wav
cached/sounds/bowlingimpact.wav
cached/sounds/bowlingimpact2.wav
cached/sounds/bugspray.wav
cached/sounds/bungee_scream.wav
cached/sounds/bungee_scream2.wav
cached/sounds/bungee_scream3.wav
cached/sounds/butter.wav
cached/sounds/buttonclick.wav
cached/sounds/buzzer.wav
cached/sounds/ceramic.wav
cached/sounds/cherrybomb.wav
cached/sounds/chime.wav
cached/sounds/chomp.wav
cached/sounds/chomp2.wav
cached/sounds/chompsoft.wav
cached/sounds/coblaunch.wav
cached/sounds/coffee.wav
cached/sounds/coin.wav
cached/sounds/crazydavecrazy.wav
cached/sounds/crazydaveextralong1.wav
cached/sounds/crazydaveextralong2.wav
cached/sounds/crazydaveextralong3.wav
cached/sounds/crazydavelong1.wav
cached/sounds/crazydavelong2.wav
cached/sounds/crazydavelong3.wav
cached/sounds/crazydavescream.wav
cached/sounds/crazydavescream2.wav
cached/sounds/crazydaveshort1.wav
cached/sounds/crazydaveshort2.wav
cached/sounds/crazydaveshort3.wav
cached/sounds/dancer.wav
cached/sounds/diamond.wav
cached/sounds/digger_zombie.wav
cached/sounds/dirt_rise.wav
cached/sounds/dolphin_appears.wav
cached/sounds/dolphin_before_jumping.wav
cached/sounds/doomshroom.wav
cached/sounds/evillaugh.wav
cached/sounds/explosion.wav
cached/sounds/fertilizer.wav
cached/sounds/finalfanfare.wav
cached/sounds/finalwave.wav
cached/sounds/firepea.wav
cached/sounds/floop.wav
cached/sounds/frozen.wav
cached/sounds/fume.wav
cached/sounds/gargantuar_thump.wav
cached/sounds/gargantudeath.wav
cached/sounds/grassstep.wav
cached/sounds/gravebusterchomp.wav
cached/sounds/gravebutton.wav
cached/sounds/gravestone_rumble.wav
cached/sounds/groan.wav
cached/sounds/groan2.wav
cached/sounds/groan3.wav
cached/sounds/groan4.wav
cached/sounds/groan5.wav
cached/sounds/groan6.wav
cached/sounds/gulp.wav
cached/sounds/hatchback_close.wav
cached/sounds/hatchback_open.wav
cached/sounds/hugewave.wav
cached/sounds/hydraulic.wav
cached/sounds/hydraulic_short.wav
cached/sounds/ignite.wav
cached/sounds/ignite2.wav
cached/sounds/imp.wav
cached/sounds/imp2.wav
cached/sounds/jack_surprise.wav
cached/sounds/jack_surprise2.wav
cached/sounds/jackinthebox.wav
cached/sounds/jalapeno.wav
.ps1
cached/sounds/juicy.wav
cached/sounds/kernelpult.wav
cached/sounds/kernelpult2.wav
cached/sounds/ladder_zombie.wav
cached/sounds/lawnmower.wav
cached/sounds/lightfill.wav
cached/sounds/limbs_pop.wav
cached/sounds/loadingbar_flower.wav
cached/sounds/loadingbar_zombie.wav
cached/sounds/losemusic.wav
cached/sounds/lowgroan.wav
cached/sounds/lowgroan2.wav
cached/sounds/magnetshroom.wav
cached/sounds/melonimpact.wav
cached/sounds/melonimpact2.wav
cached/sounds/mindcontrolled.wav
cached/sounds/moneyfalls.wav
cached/sounds/newspaper_rarrgh.wav
cached/sounds/newspaper_rarrgh2.wav
cached/sounds/newspaper_rip.wav
cached/sounds/paper.wav
cached/sounds/pause.wav
cached/sounds/phonograph.wav
cached/sounds/plant.wav
cached/sounds/plant2.wav
cached/sounds/plant_water.wav
cached/sounds/plantern.wav
cached/sounds/plantgrow.wav
cached/sounds/plastichit.wav
cached/sounds/plastichit2.wav
cached/sounds/pogo_zombie.wav
cached/sounds/points.wav
cached/sounds/polevault.wav
cached/sounds/pool_cleaner.wav
cached/sounds/portal.wav
cached/sounds/potato_mine.wav
cached/sounds/prize.wav
cached/sounds/puff.wav
cached/sounds/rain.wav
cached/sounds/readysetplant.wav
cached/sounds/reverse_explosion.wav
cached/sounds/roll_in.wav
cached/sounds/scream.wav
cached/sounds/seedlift.wav
cached/sounds/shieldhit.wav
cached/sounds/shieldhit2.wav
cached/sounds/shoop.wav
cached/sounds/shovel.wav
cached/sounds/siren.wav
cached/sounds/slotmachine.wav
cached/sounds/slurp.wav
cached/sounds/snow_pea_sparkles.wav
cached/sounds/splat.wav
cached/sounds/splat2.wav
cached/sounds/splat3.wav
cached/sounds/squash_hmm.wav
cached/sounds/squash_hmm2.wav
cached/sounds/sukhbir.wav
cached/sounds/sukhbir2.wav
cached/sounds/sukhbir3.wav
cached/sounds/sukhbir4.wav
cached/sounds/sukhbir5.wav
cached/sounds/sukhbir6.wav
cached/sounds/swing.wav
cached/sounds/tap.wav
cached/sounds/tap2.wav
cached/sounds/tapglass.wav
cached/sounds/throw.wav
cached/sounds/throw2.wav
cached/sounds/thunder.wav
cached/sounds/vase_breaking.wav
cached/sounds/wakeup.wav
cached/sounds/watering.wav
cached/sounds/winmusic.wav
cached/sounds/yuck.wav
cached/sounds/yuck2.wav
cached/sounds/zamboni.wav
cached/sounds/zombaquarium_die.wav
cached/sounds/zombie_entering_water.wav
cached/sounds/zombie_falling_1.wav
cached/sounds/zombie_falling_2.wav
cached/sounds/zombiesplash.wav
drm.xml
drm.xml.sig
drm/box_art.jpg
.jpg
drm/box_art_.gif
drm/common/drm.xml
drm/common/drm.xml.sig
drm/common/fonts/Arial10.txt
drm/common/fonts/Arial10Bold.txt
drm/common/fonts/Arial12Bold.txt
drm/common/fonts/Arial9.txt
drm/common/fonts/Arial9Bold.txt
drm/common/fonts/Calibri11.txt
drm/common/fonts/Calibri11_layer0_.gif
drm/common/fonts/Calibri12.txt
drm/common/fonts/Calibri12_layer0_.gif
drm/common/fonts/OmnesMedium14.txt
drm/common/fonts/OmnesMedium14_layer0_.gif
drm/common/fonts/OmnesMedium18.txt
drm/common/fonts/OmnesMedium18_layer0_.gif
drm/common/fonts/OmnesMedium20.txt
drm/common/fonts/OmnesMedium20_layer0_.gif
drm/common/fonts/OmnesMedium24.txt
drm/common/fonts/OmnesMedium24_layer0_.gif
drm/common/fonts/OmnesRegular14.txt
drm/common/fonts/OmnesRegular14_layer0_.gif
drm/common/fonts/_Arial10.png
.png
drm/common/fonts/_Arial10Bold.png
.png
drm/common/fonts/_Arial12Bold.png
.png
drm/common/fonts/_Arial9.png
.png
drm/common/fonts/_Arial9Bold.png
.png
drm/common/help.txt
drm/common/images/common/already_purchased.jpg
.jpg
drm/common/images/common/already_purchased_.gif
drm/common/images/common/already_purchased_down.jpg
.jpg
drm/common/images/common/already_purchased_down_.gif
drm/common/images/common/already_purchased_label.png
.png
drm/common/images/common/already_purchased_over.jpg
.jpg
drm/common/images/common/already_purchased_over_.gif
drm/common/images/common/bbb.jpg
.jpg
drm/common/images/common/btn_help.png
.png
drm/common/images/common/btn_help_down.png
.png
drm/common/images/common/btn_help_over.png
.png
drm/common/images/common/btn_security.png
.png
drm/common/images/common/btn_security_down.jpg
.jpg
drm/common/images/common/btn_security_down_.gif
drm/common/images/common/btn_security_over.png
.png
drm/common/images/common/bullet_short.png
.png
drm/common/images/common/bullet_tall.png
.png
drm/common/images/common/popcap_logo.jpg
.jpg
drm/common/images/common/popcap_logo_.gif
drm/common/images/intro/btn_buy_now.jpg
.jpg
drm/common/images/intro/btn_buy_now_.gif
drm/common/images/intro/btn_buy_now_down.jpg
.jpg
drm/common/images/intro/btn_buy_now_down_.gif
drm/common/images/intro/btn_buy_now_over.jpg
.jpg
drm/common/images/intro/btn_buy_now_over_.gif
drm/common/images/intro/btn_play_trial.jpg
.jpg
drm/common/images/intro/btn_play_trial_.gif
drm/common/images/intro/btn_play_trial_down.jpg
.jpg
drm/common/images/intro/btn_play_trial_down_.gif
drm/common/images/intro/btn_play_trial_over.jpg
.jpg
drm/common/images/intro/btn_play_trial_over_.gif
drm/common/images/intro/btn_screenshot_next.png
.png
drm/common/images/intro/btn_screenshot_next_down.png
.png
drm/common/images/intro/btn_screenshot_next_over.png
.png
drm/common/images/intro/btn_screenshot_pause.jpg
.jpg
drm/common/images/intro/btn_screenshot_pause_.gif
drm/common/images/intro/btn_screenshot_pause_down.jpg
.jpg
drm/common/images/intro/btn_screenshot_pause_down_.gif
drm/common/images/intro/btn_screenshot_pause_over.jpg
.jpg
drm/common/images/intro/btn_screenshot_pause_over_.gif
drm/common/images/intro/btn_screenshot_play.jpg
.jpg
drm/common/images/intro/btn_screenshot_play_.gif
drm/common/images/intro/btn_screenshot_play_down.jpg
.jpg
drm/common/images/intro/btn_screenshot_play_down_.gif
drm/common/images/intro/btn_screenshot_play_over.jpg
.jpg
drm/common/images/intro/btn_screenshot_play_over_.gif
drm/common/images/intro/btn_screenshot_prev.png
.png
drm/common/images/intro/btn_screenshot_prev_down.png
.png
drm/common/images/intro/btn_screenshot_prev_over.png
.png
drm/common/images/intro/intro_bg.png
.png
drm/common/images/intro/play_reflection.png
.png
drm/common/images/intro/screenshot_bg.jpg
.jpg
drm/common/images/intro/screenshot_bg_.gif
drm/common/images/modal/btn_close.png
.png
drm/common/images/modal/btn_close_down.jpg
.jpg
drm/common/images/modal/btn_close_down_.gif
drm/common/images/modal/btn_close_over.png
.png
drm/common/images/modal/modal_bg.png
.png
drm/common/images/modal/modal_overlay.jpg
.jpg
drm/common/images/modal/modal_overlay_.gif
drm/common/images/outro/btn_buy_now.jpg
.jpg
drm/common/images/outro/btn_buy_now_.gif
drm/common/images/outro/btn_buy_now_down.jpg
.jpg
drm/common/images/outro/btn_buy_now_down_.gif
drm/common/images/outro/btn_buy_now_over.jpg
.jpg
drm/common/images/outro/btn_buy_now_over_.gif
drm/common/images/outro/btn_get_more.jpg
.jpg
drm/common/images/outro/btn_get_more_.gif
drm/common/images/outro/btn_get_more_down.jpg
.jpg
drm/common/images/outro/btn_get_more_down_.gif
drm/common/images/outro/btn_get_more_over.jpg
.jpg
drm/common/images/outro/btn_get_more_over_.gif
drm/common/images/outro/outro_bg.png
.png
drm/common/images/outro/try_more_boxes.jpg
.jpg
drm/common/images/outro/try_more_boxes_.gif
drm/common/images/registration/btn_already_purchased.jpg
.jpg
drm/common/images/registration/btn_already_purchased_.gif
.gif
drm/common/images/registration/btn_already_purchased_over.jpg
.jpg
drm/common/images/registration/btn_already_purchased_over_.gif
.gif
drm/common/images/registration/btn_cancel.jpg
.jpg
drm/common/images/registration/btn_cancel_.gif
drm/common/images/registration/btn_cancel_down.jpg
.jpg
drm/common/images/registration/btn_cancel_down_.gif
drm/common/images/registration/btn_cancel_over.jpg
.jpg
drm/common/images/registration/btn_cancel_over_.gif
drm/common/images/registration/btn_continue.jpg
.jpg
drm/common/images/registration/btn_continue_.gif
drm/common/images/registration/btn_continue_down.jpg
.jpg
drm/common/images/registration/btn_continue_down_.gif
drm/common/images/registration/btn_continue_over.jpg
.jpg
drm/common/images/registration/btn_continue_over_.gif
drm/common/images/registration/btn_enter_key_manual.jpg
.jpg
drm/common/images/registration/btn_enter_key_manual_.gif
drm/common/images/registration/btn_enter_key_manual_down.jpg
.jpg
drm/common/images/registration/btn_enter_key_manual_down_.gif
drm/common/images/registration/btn_enter_key_manual_over.jpg
.jpg
drm/common/images/registration/btn_enter_key_manual_over_.gif
drm/common/images/registration/btn_lost_email_rec.jpg
.jpg
drm/common/images/registration/btn_lost_email_rec_.gif
drm/common/images/registration/btn_lost_email_rec_down.jpg
.jpg
drm/common/images/registration/btn_lost_email_rec_down_.gif
drm/common/images/registration/btn_lost_email_rec_over.jpg
.jpg
drm/common/images/registration/btn_lost_email_rec_over_.gif
drm/common/images/registration/btn_receipt.jpg
.jpg
drm/common/images/registration/btn_receipt_.gif
drm/common/images/registration/btn_receipt_down.jpg
.jpg
drm/common/images/registration/btn_receipt_down_.gif
drm/common/images/registration/btn_receipt_over.jpg
.jpg
drm/common/images/registration/btn_receipt_over_.gif
drm/common/images/registration/btn_register.jpg
.jpg
drm/common/images/registration/btn_register_.gif
drm/common/images/registration/btn_register_down.jpg
.jpg
drm/common/images/registration/btn_register_down_.gif
drm/common/images/registration/btn_register_over.jpg
.jpg
drm/common/images/registration/btn_register_over_.gif
drm/common/images/registration/btn_retry.jpg
.jpg
drm/common/images/registration/btn_retry_.gif
drm/common/images/registration/btn_retry_down.jpg
.jpg
drm/common/images/registration/btn_retry_down_.gif
drm/common/images/registration/btn_retry_over.jpg
.jpg
drm/common/images/registration/btn_retry_over_.gif
drm/common/images/registration/connecting.jpg
.jpg
drm/common/images/registration/connecting_.gif
drm/common/images/registration/editbox_bg.jpg
.jpg
drm/common/images/registration/editbox_bg_.gif
drm/common/images/registration/error_bg.jpg
.jpg
drm/common/images/registration/error_bg_.gif
drm/common/images/registration/green_check.jpg
.jpg
drm/common/images/registration/green_check_.gif
drm/common/images/registration/have_reg_key.png
.png
drm/common/images/registration/internet.jpg
.jpg
drm/common/images/registration/internet_.gif
drm/common/images/registration/lost_your_email.png
.png
drm/common/images/registration/monitor.jpg
.jpg
drm/common/images/registration/monitor_.gif
drm/common/images/registration/reg_bg.png
.png
drm/common/images/registration/success.jpg
.jpg
drm/common/images/registration/success_.gif
drm/common/images/update/update_dialog.png
.png
drm/common/images/update/update_dlinprogress.jpg
.jpg
drm/common/images/update/update_dlinprogress_.gif
drm/common/images/update/update_installerror.jpg
.jpg
drm/common/images/update/update_installerror_.gif
drm/common/images/update/update_installsuccess.jpg
.jpg
drm/common/images/update/update_installsuccess_.gif
drm/common/images/update/update_text.jpg
.jpg
drm/common/images/update/updatebtn_continue.jpg
.jpg
drm/common/images/update/updatebtn_continue2.jpg
.jpg
drm/common/images/update/updatebtn_continue2_.gif
drm/common/images/update/updatebtn_continue3.jpg
.jpg
drm/common/images/update/updatebtn_continue3_.gif
drm/common/images/update/updatebtn_continue_.gif
drm/common/images/update/updatebtn_done.jpg
.jpg
drm/common/images/update/updatebtn_done2.jpg
.jpg
drm/common/images/update/updatebtn_done2_.gif
drm/common/images/update/updatebtn_done3.jpg
.jpg
drm/common/images/update/updatebtn_done3_.gif
drm/common/images/update/updatebtn_done_.gif
drm/common/images/update/updatebtn_downloadnow.jpg
.jpg
drm/common/images/update/updatebtn_downloadnow2.jpg
.jpg
drm/common/images/update/updatebtn_downloadnow2_.gif
drm/common/images/update/updatebtn_downloadnow3.jpg
.jpg
drm/common/images/update/updatebtn_downloadnow3_.gif
drm/common/images/update/updatebtn_downloadnow_.gif
drm/common/images/update/updatebtn_install.jpg
.jpg
drm/common/images/update/updatebtn_install2.jpg
.jpg
drm/common/images/update/updatebtn_install2_.gif
drm/common/images/update/updatebtn_install3.jpg
.jpg
drm/common/images/update/updatebtn_install3_.gif
drm/common/images/update/updatebtn_install_.gif
drm/common/images/update/updatebtn_nothanks.jpg
.jpg
drm/common/images/update/updatebtn_nothanks2.jpg
.jpg
drm/common/images/update/updatebtn_nothanks2_.gif
drm/common/images/update/updatebtn_nothanks3.jpg
.jpg
drm/common/images/update/updatebtn_nothanks3_.gif
drm/common/images/update/updatebtn_nothanks_.gif
drm/common/scripts/Bullets.luc
drm/common/scripts/ClassLink.luc
drm/common/scripts/Common.luc
drm/common/scripts/Consts.luc
drm/common/scripts/DProps.luc
drm/common/scripts/DRMApp.luc
drm/common/scripts/DRMButtonWidget.luc
drm/common/scripts/Default.luc
drm/common/scripts/Layout.luc
drm/common/scripts/LuaApp.luc
drm/common/scripts/LuaCommonWidgets.luc
drm/common/scripts/LuaWidget.luc
drm/common/scripts/Screen.luc
drm/common/scripts/TextletWidget.luc
drm/common/scripts/UpdateAvailableDialog.luc
drm/common/scripts/UpdateBackdrop.luc
drm/common/scripts/UpdateDetails.luc
drm/common/scripts/UpdateDownloadedDialog.luc
drm/common/scripts/main.luc
drm/common/security.txt
drm/custom/drm.xml
drm/custom/drm.xml.sig
drm/custom/images/game_screens/screenshot1.jpg
.jpg
drm/custom/images/game_screens/screenshot1_.gif
drm/custom/images/game_screens/screenshot2.jpg
.jpg
drm/custom/images/game_screens/screenshot2_.gif
drm/custom/images/game_screens/screenshot3.jpg
.jpg
drm/custom/images/game_screens/screenshot3_.gif
drm/custom/images/game_screens/screenshot4.jpg
.jpg
drm/custom/images/game_screens/screenshot4_.gif
drm/logo.jpg
.jpg
drm/logo_.gif
eula.txt
leeme.html
.html
main.pak
properties/default.xml
properties/partner.xml
properties/partner.xml.sig
properties/partner_logo.jpg
.jpg
updates.xml