AmdPowerXpressRequestHighPerformance
NvOptimusEnablement
Overview
overview
3Static
static
3ExtremeInv...are.7z
windows10-2004-x64
3ExtremeInv...rs.exe
windows10-2004-x64
1ExtremeInv...ss.dll
windows10-2004-x64
3ExtremeInv...ed.dll
windows10-2004-x64
1ExtremeInv...ources
windows10-2004-x64
1ExtremeInv..._extra
windows10-2004-x64
1ExtremeInv...s.json
windows10-2004-x64
3ExtremeInv...s.json
windows10-2004-x64
3ExtremeInv...p.info
windows10-2004-x64
3ExtremeInv...config
windows10-2004-x64
3ExtremeInv...nagers
windows10-2004-x64
1ExtremeInv...assets
windows10-2004-x64
3ExtremeInv...s.ress
windows10-2004-x64
3ExtremeInv...ta.dat
windows10-2004-x64
3ExtremeInv...es.dat
windows10-2004-x64
3ExtremeInv...level0
windows10-2004-x64
1ExtremeInv...assets
windows10-2004-x64
3ExtremeInv...s.ress
windows10-2004-x64
3ExtremeInv...ly.dll
windows10-2004-x64
3ExtremeInv...64.exe
windows10-2004-x64
1ExtremeInv...er.dll
windows10-2004-x64
1ExtremeInv...ib.dll
windows10-2004-x64
3ExtremeInv...de.txt
windows10-2004-x64
1Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
ExtremeInvadersMalware.7z
Resource
win10v2004-20230703-en
windows10-2004-x64
4 signatures
300 seconds
Behavioral task
behavioral2
Sample
ExtremeInvaders/ExtremeInvaders.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral3
Sample
ExtremeInvaders/ExtremeInvaders_Data/Plugins/x86_64/KS_Diagnostics_Process.dll
Resource
win10v2004-20230703-en
windows10-2004-x64
1 signatures
300 seconds
Behavioral task
behavioral4
Sample
ExtremeInvaders/ExtremeInvaders_Data/Plugins/x86_64/lib_burst_generated.dll
Resource
win10v2004-20230703-en
windows10-2004-x64
0 signatures
300 seconds
Behavioral task
behavioral5
Sample
ExtremeInvaders/ExtremeInvaders_Data/Resources/unity default resources
Resource
win10v2004-20230703-en
windows10-2004-x64
0 signatures
300 seconds
Behavioral task
behavioral6
Sample
ExtremeInvaders/ExtremeInvaders_Data/Resources/unity_builtin_extra
Resource
win10v2004-20230703-en
windows10-2004-x64
0 signatures
300 seconds
Behavioral task
behavioral7
Sample
ExtremeInvaders/ExtremeInvaders_Data/RuntimeInitializeOnLoads.json
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral8
Sample
ExtremeInvaders/ExtremeInvaders_Data/ScriptingAssemblies.json
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral9
Sample
ExtremeInvaders/ExtremeInvaders_Data/app.info
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral10
Sample
ExtremeInvaders/ExtremeInvaders_Data/boot.config
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral11
Sample
ExtremeInvaders/ExtremeInvaders_Data/globalgamemanagers
Resource
win10v2004-20230703-en
windows10-2004-x64
0 signatures
300 seconds
Behavioral task
behavioral12
Sample
ExtremeInvaders/ExtremeInvaders_Data/globalgamemanagers.assets
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral13
Sample
ExtremeInvaders/ExtremeInvaders_Data/globalgamemanagers.assets.ress
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral14
Sample
ExtremeInvaders/ExtremeInvaders_Data/il2cpp_data/Metadata/global-metadata.dat
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral15
Sample
ExtremeInvaders/ExtremeInvaders_Data/il2cpp_data/Resources/mscorlib.dll-resources.dat
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral16
Sample
ExtremeInvaders/ExtremeInvaders_Data/level0
Resource
win10v2004-20230703-en
windows10-2004-x64
0 signatures
300 seconds
Behavioral task
behavioral17
Sample
ExtremeInvaders/ExtremeInvaders_Data/sharedassets0.assets
Resource
win10v2004-20230703-en
windows10-2004-x64
4 signatures
300 seconds
Behavioral task
behavioral18
Sample
ExtremeInvaders/ExtremeInvaders_Data/sharedassets0.assets.ress
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
300 seconds
Behavioral task
behavioral19
Sample
ExtremeInvaders/GameAssembly.dll
Resource
win10v2004-20230703-en
windows10-2004-x64
1 signatures
300 seconds
Behavioral task
behavioral20
Sample
ExtremeInvaders/UnityCrashHandler64.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
0 signatures
300 seconds
Behavioral task
behavioral21
Sample
ExtremeInvaders/UnityPlayer.dll
Resource
win10v2004-20230703-en
windows10-2004-x64
0 signatures
300 seconds
Behavioral task
behavioral22
Sample
ExtremeInvaders/baselib.dll
Resource
win10v2004-20230703-en
windows10-2004-x64
1 signatures
300 seconds
Behavioral task
behavioral23
Sample
ExtremeInvaders/code.txt
Resource
win10v2004-20230703-en
windows10-2004-x64
1 signatures
300 seconds
General
-
Target
ExtremeInvadersMalware.7z
-
Size
18.8MB
-
MD5
5d917e209392b90a6fdd4d720fc7d148
-
SHA1
32245d57e5afb5d5b39278a8aa5e1a4276a2643e
-
SHA256
b3eb633065497213e745b9ace8a6d2f57642d99a7b05f294e5d5e66478d74caf
-
SHA512
c9a2b50e1ac87034f7a9db94c3852a947667d3e0fc1ed5b0d9cf63a17359d2ccfd8a6e799c18aa72c652efca4c5fbc9029ac67bec037fcc292263f20877945ac
-
SSDEEP
393216:pli27ao5qTAw+cs+nk9l9nm8tqKEsjW3i9crcV3cjZPOjeRF+gS5yO:/TeowTYIk9l9ttbKSB3e6eRA5d
Score
3/10
Malware Config
Signatures
-
Unsigned PE 4 IoCs
Checks for missing Authenticode signature.
resource unpack001/ExtremeInvaders/ExtremeInvaders.exe unpack001/ExtremeInvaders/ExtremeInvaders_Data/Plugins/x86_64/KS_Diagnostics_Process.dll unpack001/ExtremeInvaders/ExtremeInvaders_Data/Plugins/x86_64/lib_burst_generated.dll unpack001/ExtremeInvaders/GameAssembly.dll
Files
-
ExtremeInvadersMalware.7z.7z
Password: infected
-
ExtremeInvaders/ExtremeInvaders.exe.exe windows x64
Password: infected
ce1183cc150987a99aef5749f22af81e
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
unityplayer
UnityMain
kernel32
HeapAlloc
WriteConsoleW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetModuleHandleW
CloseHandle
RtlUnwindEx
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
EncodePointer
RaiseException
RtlPcToFileHeader
GetStdHandle
WriteFile
GetModuleFileNameW
GetCurrentProcess
ExitProcess
TerminateProcess
GetModuleHandleExW
HeapFree
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
GetFileType
GetStringTypeW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
LCMapStringW
GetProcessHeap
HeapSize
HeapReAlloc
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
CreateFileW
Exports
Exports
Sections
.text Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 37KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 148B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 552KB - Virtual size: 552KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
ExtremeInvaders/ExtremeInvaders_Data/Plugins/x86_64/KS_Diagnostics_Process.dll.dll windows x64
Password: infected
8ac95d4ef8d56e2b91d1ccfdedb9407e
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
advapi32
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
EventSetInformation
EventUnregister
RegCloseKey
EventActivityIdControl
EventRegister
EnumerateTraceGuidsEx
EventWriteTransfer
RegEnumKeyExW
RegEnumValueW
RegOpenKeyExW
RegQueryValueExW
EventWrite
EventEnabled
bcrypt
BCryptGenRandom
kernel32
CreateFileW
SetLastError
FormatMessageW
GetLastError
CloseHandle
GetExitCodeProcess
GetProcessTimes
GetStdHandle
CreateProcessW
TerminateProcess
GetCurrentProcess
OpenProcess
K32EnumProcesses
DuplicateHandle
GetConsoleCP
GetConsoleOutputCP
CreatePipe
MultiByteToWideChar
WideCharToMultiByte
GetCPInfoExW
LocalFree
GetConsoleMode
GetFileType
ReadFile
ReadConsoleW
WriteFile
WriteConsoleW
CloseThreadpoolIo
GetTickCount64
GetCurrentProcessId
TzSpecificLocalTimeToSystemTime
SystemTimeToFileTime
FileTimeToSystemTime
GetSystemTime
CompareStringEx
FindNLSStringEx
GetUserPreferredUILanguages
FindStringOrdinal
GetCurrentProcessorNumber
GetCurrentThread
WaitForSingleObject
Sleep
CreateThreadpoolWork
CloseThreadpoolWork
SubmitThreadpoolWork
CreateThreadpoolTimer
SetThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
InitializeCriticalSection
InitializeConditionVariable
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
WakeConditionVariable
WaitForMultipleObjectsEx
GetProcAddress
GetCPInfo
LocalAlloc
RaiseFailFastException
WaitForThreadpoolWaitCallbacks
CreateThreadpoolIo
StartThreadpoolIo
CancelThreadpoolIo
LocaleNameToLCID
LCMapStringEx
CompareStringOrdinal
GetLocaleInfoEx
EnumTimeFormatsEx
GetCalendarInfoEx
EnumCalendarInfoExEx
ResolveLocaleName
CancelIoEx
SleepConditionVariableCS
ExpandEnvironmentStringsW
FindClose
FindFirstFileExW
FlushFileBuffers
FreeLibrary
GetCurrentDirectoryW
GetFileAttributesExW
GetFileInformationByHandleEx
GetFullPathNameW
GetLongPathNameW
GetOverlappedResult
GetSystemDirectoryW
LoadLibraryExW
QueryUnbiasedInterruptTime
SetFileInformationByHandle
SetFilePointerEx
SetThreadErrorMode
GetDynamicTimeZoneInformation
GetTimeZoneInformation
SetEvent
ResetEvent
CreateEventExW
GetEnvironmentVariableW
CreateThread
ResumeThread
GetThreadPriority
SetThreadPriority
VerSetConditionMask
FlushProcessWriteBuffers
GetCurrentThreadId
WaitForSingleObjectEx
VirtualQuery
RtlVirtualUnwind
AddVectoredExceptionHandler
FlsAlloc
FlsGetValue
FlsSetValue
CreateEventW
SwitchToThread
SuspendThread
GetThreadContext
GetSystemInfo
VirtualAlloc
VirtualProtect
VirtualFree
QueryInformationJobObject
GetModuleHandleExW
GetProcessAffinityMask
InitializeCriticalSectionEx
QueryPerformanceCounter
QueryPerformanceFrequency
GetSystemTimeAsFileTime
DebugBreak
SleepEx
GlobalMemoryStatusEx
GetTickCount
GetLogicalProcessorInformation
GetLogicalProcessorInformationEx
GetLargePageMinimum
VirtualUnlock
GetWriteWatch
ResetWriteWatch
VirtualAllocExNuma
IsProcessInJob
GetNumaHighestNodeNumber
K32GetProcessMemoryInfo
SetStdHandle
HeapReAlloc
HeapSize
GetStringTypeW
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetModuleHandleW
InitializeSListHead
RtlCaptureContext
RtlLookupFunctionEntry
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
RtlUnwindEx
InterlockedFlushSList
RtlPcToFileHeader
RaiseException
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
ExitProcess
GetModuleFileNameW
HeapAlloc
HeapFree
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
LCMapStringW
ole32
CoWaitForMultipleHandles
CoUninitialize
CoInitializeEx
CoTaskMemFree
CoGetApartmentType
CoCreateGuid
CoTaskMemAlloc
user32
LoadStringW
Exports
Exports
AddExited
AddOutputDataReceived
BeginOutputReadLine
CancelOutputRead
CreateProcess
CreateProcessStartInfo
DisposeProcess
DisposeProcessStartInfo
Free
FreeGCHandle
GetArguments
GetCreateNoWindow
GetEnableRaisingEvents
GetFileName
GetProcessId
GetProcessName
GetProcesses
GetProcessesByName
GetProcessesByNameString
GetProcessesString
GetRedirectStandardOutput
GetUseShellExecute
GetWorkingDirectory
Kill
KillBool
RemoveExited
RemoveOutputDataReceived
SetArguments
SetCreateNoWindow
SetEnableRaisingEvents
SetFileName
SetRedirectStandardOutput
SetStartInfo
SetUseShellExecute
SetWorkingDirectory
Start
WaitForExit
WaitForExitMilliseconds
Sections
.text Size: 480KB - Virtual size: 479KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.managed Size: 1.9MB - Virtual size: 1.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2.1MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 161KB - Virtual size: 231KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 190KB - Virtual size: 190KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 244B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 944B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 89KB - Virtual size: 88KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
ExtremeInvaders/ExtremeInvaders_Data/Plugins/x86_64/lib_burst_generated.dll.dll windows x64
Password: infected
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Exports
Exports
burst.initialize
Sections
.text Size: 512B - Virtual size: 1B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 108B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
ExtremeInvaders/ExtremeInvaders_Data/Resources/unity default resources
-
ExtremeInvaders/ExtremeInvaders_Data/Resources/unity_builtin_extra
-
ExtremeInvaders/ExtremeInvaders_Data/RuntimeInitializeOnLoads.json
-
ExtremeInvaders/ExtremeInvaders_Data/ScriptingAssemblies.json
-
ExtremeInvaders/ExtremeInvaders_Data/app.info
-
ExtremeInvaders/ExtremeInvaders_Data/boot.config
-
ExtremeInvaders/ExtremeInvaders_Data/globalgamemanagers
-
ExtremeInvaders/ExtremeInvaders_Data/globalgamemanagers.assets
-
ExtremeInvaders/ExtremeInvaders_Data/globalgamemanagers.assets.resS
-
ExtremeInvaders/ExtremeInvaders_Data/il2cpp_data/Metadata/global-metadata.dat
-
ExtremeInvaders/ExtremeInvaders_Data/il2cpp_data/Resources/mscorlib.dll-resources.dat
-
ExtremeInvaders/ExtremeInvaders_Data/level0
-
ExtremeInvaders/ExtremeInvaders_Data/sharedassets0.assets
-
ExtremeInvaders/ExtremeInvaders_Data/sharedassets0.assets.resS
-
ExtremeInvaders/GameAssembly.dll.dll windows x64
Password: infected
ac721ce057b779989e0f0e8b6c353c06
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
kernel32
RtlCaptureStackBackTrace
CreateFileW
CloseHandle
DuplicateHandle
RaiseException
SetLastError
GetCurrentProcess
SwitchToThread
CreateThread
GetCurrentThread
GetCurrentThreadId
SetThreadPriority
FreeLibrary
GetModuleHandleW
GetProcAddress
LoadLibraryW
GlobalAlloc
GlobalFree
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentVariableW
SetEnvironmentVariableW
QueryPerformanceCounter
QueryPerformanceFrequency
InitializeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
GetSystemTimes
GetSystemInfo
GetSystemTimeAsFileTime
GetVersionExW
GetComputerNameW
GetStdHandle
CreateDirectoryW
DeleteFileW
DeleteVolumeMountPointW
FindFirstFileExW
FindNextFileW
FlushFileBuffers
GetFileAttributesExW
GetFileSizeEx
GetFileType
GetFullPathNameW
GetLogicalDrives
ReadFile
RemoveDirectoryW
SetEndOfFile
SetFileAttributesW
SetFileInformationByHandle
SetFilePointerEx
WriteFile
SetThreadErrorMode
GetOverlappedResult
GetCurrentProcessId
GetNativeSystemInfo
FormatMessageW
CopyFileExW
MoveFileExW
ReplaceFileW
GetTimeZoneInformation
GetDynamicTimeZoneInformation
GetFileInformationByHandleEx
GetConsoleMode
GetLongPathNameW
GetTempPathW
GetModuleFileNameA
GetModuleFileNameW
WideCharToMultiByte
GetACP
GetLocaleInfoW
LeaveCriticalSection
GetCurrentDirectoryW
FindClose
IsDebuggerPresent
WaitForSingleObjectEx
Sleep
VirtualAlloc
VirtualQuery
CreateFileMappingW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
SetFilePointer
SuspendThread
ResumeThread
GetThreadContext
VirtualFree
WriteConsoleW
GetProcessHeap
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
EnterCriticalSection
InitializeCriticalSection
AcquireSRWLockShared
AcquireSRWLockExclusive
ReleaseSRWLockShared
HeapQueryInformation
HeapSize
HeapReAlloc
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
LCMapStringW
RtlUnwind
CompareStringW
SetStdHandle
HeapAlloc
HeapFree
GetModuleHandleExW
ExitProcess
GetConsoleOutputCP
ReadConsoleW
LoadLibraryExW
InterlockedFlushSList
RtlUnwindEx
TerminateProcess
InitializeSListHead
IsProcessorFeaturePresent
ReleaseSRWLockExclusive
InitializeSRWLock
GetLastError
TlsFree
TlsSetValue
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetStringTypeW
LCMapStringEx
MultiByteToWideChar
DecodePointer
EncodePointer
InitializeCriticalSectionEx
RtlPcToFileHeader
DeleteCriticalSection
TlsGetValue
GetThreadLocale
TlsAlloc
user32
MessageBoxA
advapi32
GetUserNameW
CryptAcquireContextW
CryptReleaseContext
CryptGenRandom
ole32
CoGetContextToken
CoTaskMemAlloc
CoUninitialize
CoTaskMemFree
CoCreateFreeThreadedMarshaler
CoInitializeEx
oleaut32
SafeArrayGetVartype
SafeArrayUnaccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetDim
SafeArrayDestroy
SafeArrayCreate
SysStringLen
SafeArrayAccessData
SysFreeString
shell32
SHGetKnownFolderPath
SHGetFolderPathW
ws2_32
inet_ntop
inet_pton
getnameinfo
freeaddrinfo
getaddrinfo
WSAStartup
WSASend
WSARecv
WSAIoctl
shutdown
setsockopt
WSAPoll
select
recvfrom
ntohs
ntohl
listen
inet_ntoa
inet_addr
htons
htonl
getsockopt
getsockname
getpeername
ioctlsocket
connect
closesocket
bind
accept
__WSAFDIsSet
gethostname
socket
send
gethostbyaddr
WSAGetLastError
WSACleanup
iphlpapi
GetIfEntry
GetAdaptersAddresses
GetNetworkParams
dbghelp
SymInitialize
SymFromAddr
baselib
?Baselib_DynamicLibrary_FromNativeHandle@il2cpp_baselib@@YA?AUBaselib_DynamicLibrary_Handle@1@_KIPEAUBaselib_ErrorState@1@@Z
?Baselib_Thread_YieldExecution@il2cpp_baselib@@YAXXZ
?Baselib_SystemSemaphore_TryTimedAcquire@il2cpp_baselib@@YA_NUBaselib_SystemSemaphore_Handle@1@I@Z
?Baselib_SystemSemaphore_TryAcquire@il2cpp_baselib@@YA_NUBaselib_SystemSemaphore_Handle@1@@Z
?Baselib_ErrorState_Explain@il2cpp_baselib@@YAIPEBUBaselib_ErrorState@1@QEADIW4Baselib_ErrorState_ExplainVerbosity@1@@Z
?Baselib_DynamicLibrary_Close@il2cpp_baselib@@YAXUBaselib_DynamicLibrary_Handle@1@@Z
?Baselib_DynamicLibrary_GetFunction@il2cpp_baselib@@YAPEAXUBaselib_DynamicLibrary_Handle@1@PEBDPEAUBaselib_ErrorState@1@@Z
?Baselib_SystemSemaphore_Release@il2cpp_baselib@@YAXUBaselib_SystemSemaphore_Handle@1@I@Z
?Baselib_Thread_GetCurrentThreadId@il2cpp_baselib@@YA_JXZ
?Baselib_SystemSemaphore_FreeInplace@il2cpp_baselib@@YAXUBaselib_SystemSemaphore_Handle@1@@Z
?Baselib_DynamicLibrary_OpenUtf16@il2cpp_baselib@@YA?AUBaselib_DynamicLibrary_Handle@1@PEBGPEAUBaselib_ErrorState@1@@Z
?Baselib_SystemSemaphore_Acquire@il2cpp_baselib@@YAXUBaselib_SystemSemaphore_Handle@1@@Z
?Baselib_SystemSemaphore_CreateInplace@il2cpp_baselib@@YA?AUBaselib_SystemSemaphore_Handle@1@PEAX@Z
Exports
Exports
BrotliDecoderCreateInstance
BrotliDecoderDecompress
BrotliDecoderDecompressStream
BrotliDecoderDestroyInstance
BrotliDecoderIsFinished
BrotliEncoderCompress
BrotliEncoderCompressStream
BrotliEncoderCreateInstance
BrotliEncoderDestroyInstance
BrotliEncoderHasMoreOutput
BrotliEncoderSetParameter
CloseNLSocket
CloseZStream
CreateNLSocket
CreateZStream
DllCanUnloadNow
DllGetActivationFactory
Flush
GlobalizationNative_GetTimeZoneDisplayName
ReadEvents
ReadZStream
SystemNative_FStat2
SystemNative_UTime
WriteZStream
il2cpp_add_internal_call
il2cpp_alloc
il2cpp_allocation_granularity
il2cpp_array_class_get
il2cpp_array_element_size
il2cpp_array_get_byte_length
il2cpp_array_length
il2cpp_array_new
il2cpp_array_new_full
il2cpp_array_new_specific
il2cpp_array_object_header_size
il2cpp_assembly_get_image
il2cpp_bounded_array_class_get
il2cpp_capture_memory_snapshot
il2cpp_class_array_element_size
il2cpp_class_enum_basetype
il2cpp_class_for_each
il2cpp_class_from_il2cpp_type
il2cpp_class_from_name
il2cpp_class_from_system_type
il2cpp_class_from_type
il2cpp_class_get_assemblyname
il2cpp_class_get_bitmap
il2cpp_class_get_bitmap_size
il2cpp_class_get_data_size
il2cpp_class_get_declaring_type
il2cpp_class_get_element_class
il2cpp_class_get_events
il2cpp_class_get_field_from_name
il2cpp_class_get_fields
il2cpp_class_get_flags
il2cpp_class_get_image
il2cpp_class_get_interfaces
il2cpp_class_get_method_from_name
il2cpp_class_get_methods
il2cpp_class_get_name
il2cpp_class_get_namespace
il2cpp_class_get_nested_types
il2cpp_class_get_parent
il2cpp_class_get_properties
il2cpp_class_get_property_from_name
il2cpp_class_get_rank
il2cpp_class_get_static_field_data
il2cpp_class_get_type
il2cpp_class_get_type_token
il2cpp_class_get_userdata_offset
il2cpp_class_has_attribute
il2cpp_class_has_parent
il2cpp_class_has_references
il2cpp_class_instance_size
il2cpp_class_is_abstract
il2cpp_class_is_assignable_from
il2cpp_class_is_blittable
il2cpp_class_is_enum
il2cpp_class_is_generic
il2cpp_class_is_inflated
il2cpp_class_is_interface
il2cpp_class_is_subclass_of
il2cpp_class_is_valuetype
il2cpp_class_num_fields
il2cpp_class_set_userdata
il2cpp_class_value_size
il2cpp_current_thread_get_frame_at
il2cpp_current_thread_get_stack_depth
il2cpp_current_thread_get_top_frame
il2cpp_current_thread_walk_frame_stack
il2cpp_custom_attrs_construct
il2cpp_custom_attrs_free
il2cpp_custom_attrs_from_class
il2cpp_custom_attrs_from_field
il2cpp_custom_attrs_from_method
il2cpp_custom_attrs_get_attr
il2cpp_custom_attrs_has_attr
il2cpp_debug_get_method_info
il2cpp_debugger_set_agent_options
il2cpp_domain_assembly_open
il2cpp_domain_get
il2cpp_domain_get_assemblies
il2cpp_exception_from_name_msg
il2cpp_field_get_flags
il2cpp_field_get_name
il2cpp_field_get_offset
il2cpp_field_get_parent
il2cpp_field_get_type
il2cpp_field_get_value
il2cpp_field_get_value_object
il2cpp_field_has_attribute
il2cpp_field_is_literal
il2cpp_field_set_value
il2cpp_field_set_value_object
il2cpp_field_static_get_value
il2cpp_field_static_set_value
il2cpp_format_exception
il2cpp_format_stack_trace
il2cpp_free
il2cpp_free_captured_memory_snapshot
il2cpp_gc_alloc_fixed
il2cpp_gc_collect
il2cpp_gc_collect_a_little
il2cpp_gc_disable
il2cpp_gc_enable
il2cpp_gc_foreach_heap
il2cpp_gc_free_fixed
il2cpp_gc_get_heap_size
il2cpp_gc_get_max_time_slice_ns
il2cpp_gc_get_used_size
il2cpp_gc_has_strict_wbarriers
il2cpp_gc_is_disabled
il2cpp_gc_is_incremental
il2cpp_gc_set_external_allocation_tracker
il2cpp_gc_set_external_wbarrier_tracker
il2cpp_gc_set_max_time_slice_ns
il2cpp_gc_set_mode
il2cpp_gc_start_incremental_collection
il2cpp_gc_wbarrier_set_field
il2cpp_gchandle_foreach_get_target
il2cpp_gchandle_free
il2cpp_gchandle_get_target
il2cpp_gchandle_new
il2cpp_gchandle_new_weakref
il2cpp_get_corlib
il2cpp_get_exception_argument_null
il2cpp_image_get_assembly
il2cpp_image_get_class
il2cpp_image_get_class_count
il2cpp_image_get_entry_point
il2cpp_image_get_filename
il2cpp_image_get_name
il2cpp_init
il2cpp_init_utf16
il2cpp_is_debugger_attached
il2cpp_is_vm_thread
il2cpp_method_get_class
il2cpp_method_get_declaring_type
il2cpp_method_get_flags
il2cpp_method_get_from_reflection
il2cpp_method_get_name
il2cpp_method_get_object
il2cpp_method_get_param
il2cpp_method_get_param_count
il2cpp_method_get_param_name
il2cpp_method_get_return_type
il2cpp_method_get_token
il2cpp_method_has_attribute
il2cpp_method_is_generic
il2cpp_method_is_inflated
il2cpp_method_is_instance
il2cpp_monitor_enter
il2cpp_monitor_exit
il2cpp_monitor_pulse
il2cpp_monitor_pulse_all
il2cpp_monitor_try_enter
il2cpp_monitor_try_wait
il2cpp_monitor_wait
il2cpp_native_stack_trace
il2cpp_object_get_class
il2cpp_object_get_size
il2cpp_object_get_virtual_method
il2cpp_object_header_size
il2cpp_object_new
il2cpp_object_unbox
il2cpp_offset_of_array_bounds_in_array_object_header
il2cpp_offset_of_array_length_in_array_object_header
il2cpp_override_stack_backtrace
il2cpp_profiler_install
il2cpp_profiler_install_allocation
il2cpp_profiler_install_enter_leave
il2cpp_profiler_install_fileio
il2cpp_profiler_install_gc
il2cpp_profiler_install_thread
il2cpp_profiler_set_events
il2cpp_property_get_flags
il2cpp_property_get_get_method
il2cpp_property_get_name
il2cpp_property_get_parent
il2cpp_property_get_set_method
il2cpp_raise_exception
il2cpp_register_debugger_agent_transport
il2cpp_register_log_callback
il2cpp_resolve_icall
il2cpp_runtime_class_init
il2cpp_runtime_invoke
il2cpp_runtime_invoke_convert_args
il2cpp_runtime_object_init
il2cpp_runtime_object_init_exception
il2cpp_runtime_unhandled_exception_policy_set
il2cpp_set_commandline_arguments
il2cpp_set_commandline_arguments_utf16
il2cpp_set_config
il2cpp_set_config_dir
il2cpp_set_config_utf16
il2cpp_set_data_dir
il2cpp_set_default_thread_affinity
il2cpp_set_find_plugin_callback
il2cpp_set_memory_callbacks
il2cpp_set_temp_dir
il2cpp_shutdown
il2cpp_start_gc_world
il2cpp_stats_dump_to_file
il2cpp_stats_get_value
il2cpp_stop_gc_world
il2cpp_string_chars
il2cpp_string_intern
il2cpp_string_is_interned
il2cpp_string_length
il2cpp_string_new
il2cpp_string_new_len
il2cpp_string_new_utf16
il2cpp_string_new_wrapper
il2cpp_thread_attach
il2cpp_thread_current
il2cpp_thread_detach
il2cpp_thread_get_all_attached_threads
il2cpp_thread_get_frame_at
il2cpp_thread_get_stack_depth
il2cpp_thread_get_top_frame
il2cpp_thread_walk_frame_stack
il2cpp_type_equals
il2cpp_type_get_assembly_qualified_name
il2cpp_type_get_attrs
il2cpp_type_get_class_or_element_class
il2cpp_type_get_name
il2cpp_type_get_name_chunked
il2cpp_type_get_object
il2cpp_type_get_reflection_name
il2cpp_type_get_type
il2cpp_type_is_byref
il2cpp_type_is_pointer_type
il2cpp_type_is_static
il2cpp_unhandled_exception
il2cpp_unity_install_unitytls_interface
il2cpp_unity_liveness_allocate_struct
il2cpp_unity_liveness_calculation_from_root
il2cpp_unity_liveness_calculation_from_statics
il2cpp_unity_liveness_finalize
il2cpp_unity_liveness_free_struct
il2cpp_unity_set_android_network_up_state_func
il2cpp_value_box
jinfo_get_method
mini_get_interp_callbacks
mini_jit_info_table_find
mono_arch_clear_breakpoint
mono_arch_context_get_int_reg
mono_arch_context_set_int_reg
mono_arch_set_breakpoint
mono_arch_setup_resume_sighandler_ctx
mono_arch_skip_breakpoint
mono_arch_skip_single_step
mono_arch_start_single_stepping
mono_arch_stop_single_stepping
mono_array_element_size
mono_array_length
mono_class_get_byref_type
mono_class_get_checked
mono_class_get_context
mono_class_get_element_class
mono_class_get_flags
mono_class_get_image
mono_class_get_interfaces
mono_class_get_methods
mono_class_get_name
mono_class_get_namespace
mono_class_get_nested_types
mono_class_get_parent
mono_class_get_properties
mono_class_get_rank
mono_class_get_type
mono_class_get_type_token
mono_class_has_parent
mono_class_instance_size
mono_class_is_enum
mono_class_is_valuetype
mono_class_num_fields
mono_class_num_methods
mono_class_num_properties
mono_class_value_size
mono_debug_find_method
mono_debug_free_locals
mono_debug_il_offset_from_address
mono_debug_lookup_locals
mono_domain_foreach
mono_domain_get
mono_domain_get_assemblies_iter
mono_domain_get_corlib
mono_domain_is_unloading
mono_environment_exitcode_get
mono_environment_exitcode_set
mono_field_get_name
mono_field_get_offset
mono_field_get_parent
mono_field_get_type
mono_field_set_value
mono_find_prev_seq_point_for_native_offset
mono_free_method_signatures
mono_gc_register_root
mono_get_byte_class
mono_get_lmf_addr
mono_get_root_domain
mono_get_runtime_build_info
mono_get_string_class
mono_image_get_assembly
mono_image_get_entry_point
mono_image_get_filename
mono_image_get_guid
mono_image_get_name
mono_image_is_dynamic
mono_jit_find_compiled_method_with_jit_info
mono_jit_info_get_method
mono_jit_info_table_find
mono_marshal_method_from_wrapper
mono_metadata_free_mh
mono_metadata_generic_class_is_valuetype
mono_method_full_name
mono_method_get_class
mono_method_get_context
mono_method_get_declaring_generic_method
mono_method_get_flags
mono_method_get_generic_container
mono_method_get_header_checked
mono_method_get_name
mono_method_get_param_names
mono_method_get_token
mono_method_is_generic
mono_method_is_inflated
mono_object_get_type
mono_object_unbox_internal
mono_pal_init
mono_property_get_get_method
mono_property_get_name
mono_property_get_parent
mono_property_get_set_method
mono_restore_context
mono_runtime_is_shutting_down
mono_runtime_quit
mono_set_is_debugger_attached
mono_set_lmf
mono_string_chars
mono_string_free
mono_string_length
mono_string_new
mono_thread_attach
mono_thread_current
mono_thread_detach
mono_thread_get_main
mono_thread_set_name
mono_thread_state_init_from_current
mono_thread_state_init_from_monoctx
mono_thread_suspend_all_other_threads
mono_type_full_name
mono_type_generic_inst_is_valuetype
mono_type_get_attrs
mono_type_get_class
mono_type_get_name_full
mono_type_get_type
mono_type_is_byref
mono_type_is_generic_parameter
mono_type_is_reference
mono_type_is_struct
mono_type_size
Sections
.text Size: 1.8MB - Virtual size: 1.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
il2cpp Size: 10.1MB - Virtual size: 10.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3.4MB - Virtual size: 3.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 803KB - Virtual size: 3.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 635KB - Virtual size: 634KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 252B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 257KB - Virtual size: 256KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
ExtremeInvaders/UnityCrashHandler64.exe.exe windows x64
Password: infected
3fa82adb7dd39e1a80e00cca7c15e6d3
Code Sign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before29/04/2021, 00:00Not After28/04/2036, 23:59SubjectCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0f:7c:5a:5e:06:2a:bd:ba:fc:be:1e:c6:3d:4c:30:52Certificate
IssuerCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USNot Before14/07/2021, 00:00Not After18/07/2024, 23:59SubjectCN=Unity Technologies ApS,OU=Developer Services,O=Unity Technologies ApS,L=København,C=DKExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
fd:95:b0:22:d5:d6:4c:8c:4b:2b:df:05:b4:2e:c6:45:02:91:93:a5Signer
Actual PE Digestfd:95:b0:22:d5:d6:4c:8c:4b:2b:df:05:b4:2e:c6:45:02:91:93:a5Digest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
user32
GetWindowLongA
DialogBoxParamA
EndDialog
SendMessageW
SendDlgItemMessageA
GetIconInfo
SetForegroundWindow
AdjustWindowRect
UnionRect
SetWindowTextW
GetDlgItem
LookupIconIdFromDirectoryEx
InflateRect
OffsetRect
CreateIconFromResourceEx
LoadImageA
SetWindowPos
kernel32
InterlockedPopEntrySList
DuplicateHandle
VirtualProtect
GetVersionExW
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
SignalObjectAndWait
CreateTimerQueue
WriteConsoleW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
HeapQueryInformation
HeapSize
HeapReAlloc
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
FreeLibraryAndExitThread
GetConsoleOutputCP
GetConsoleMode
SetConsoleCtrlHandler
GetFileType
SetStdHandle
GetModuleHandleExW
ExitProcess
TlsSetValue
GetLastError
TlsGetValue
GetModuleHandleA
GetCurrentThread
WaitForSingleObjectEx
CloseHandle
RaiseException
GetProcAddress
GetThreadTimes
OpenThread
TryEnterCriticalSection
EnterCriticalSection
SetThreadPriority
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
GetCurrentThreadId
ResumeThread
GetThreadPriority
CreateThread
SwitchToThread
DeleteCriticalSection
ReadFile
GetModuleFileNameA
FindFirstFileW
FindFirstFileExW
SetLastError
RtlCaptureContext
FindNextFileW
GetCurrentProcess
WriteFile
OutputDebugStringA
RtlVirtualUnwind
GetModuleFileNameW
RtlLookupFunctionEntry
GetEnvironmentVariableA
FindClose
CreateFileW
GetFileAttributesW
QueryDepthSList
GetCurrentDirectoryA
CreateEventW
MultiByteToWideChar
GetFileAttributesA
LoadLibraryA
DeleteFileW
LoadLibraryW
GetThreadContext
SetFilePointerEx
ReadProcessMemory
FreeLibrary
WideCharToMultiByte
GetSystemTime
FlushFileBuffers
HeapFree
Thread32Next
Thread32First
WaitForSingleObject
CreateToolhelp32Snapshot
FormatMessageW
HeapAlloc
LocalFree
VerSetConditionMask
GetCurrentProcessId
GetProcessHeap
GetModuleHandleW
VerifyVersionInfoW
GetSystemTimeAsFileTime
GetStdHandle
TerminateProcess
GetProcessId
WaitForMultipleObjectsEx
OpenProcess
Sleep
SetEvent
GetThreadId
GetFileSize
CreateProcessW
CopyFileExW
AllocConsole
GetExitCodeProcess
SizeofResource
GetCommandLineW
EnumResourceNamesA
InitializeCriticalSection
SetErrorMode
FindResourceA
GetExitCodeThread
TerminateThread
LockResource
LoadResource
CreateEventA
LoadLibraryExW
GetFileSizeEx
VirtualFree
ReleaseSemaphore
VirtualAlloc
TlsAlloc
QueryPerformanceFrequency
TlsFree
QueryPerformanceCounter
IsDebuggerPresent
RtlPcToFileHeader
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwindEx
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTickCount
GetCPInfo
DecodePointer
EncodePointer
GetStringTypeW
InitializeSListHead
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnregisterWaitEx
UnhandledExceptionFilter
ResetEvent
SuspendThread
GetTempPathW
dbghelp
SymRegisterFunctionEntryCallback64
SymLoadModuleEx
shell32
CommandLineToArgvW
SHCreateDirectoryExW
ole32
CoCreateGuid
CoTaskMemFree
CoInitializeEx
psapi
GetModuleFileNameExW
advapi32
GetUserNameA
wininet
InternetCloseHandle
InternetCrackUrlA
InternetOpenA
InternetConnectA
HttpSendRequestA
HttpOpenRequestA
HttpQueryInfoA
gdi32
GetObjectA
version
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
Sections
.text Size: 525KB - Virtual size: 524KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 156KB - Virtual size: 156KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 12KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 29KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 148B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 349KB - Virtual size: 349KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
ExtremeInvaders/UnityPlayer.dll.dll windows x64
Password: infected
02089aaa9cff743f7db46b55b32e546b
Code Sign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before29/04/2021, 00:00Not After28/04/2036, 23:59SubjectCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0f:7c:5a:5e:06:2a:bd:ba:fc:be:1e:c6:3d:4c:30:52Certificate
IssuerCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USNot Before14/07/2021, 00:00Not After18/07/2024, 23:59SubjectCN=Unity Technologies ApS,OU=Developer Services,O=Unity Technologies ApS,L=København,C=DKExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
ef:bf:25:57:3b:7e:1e:64:b0:42:47:2a:0e:06:1b:60:65:52:ad:8eSigner
Actual PE Digestef:bf:25:57:3b:7e:1e:64:b0:42:47:2a:0e:06:1b:60:65:52:ad:8eDigest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
kernel32
GetProcessId
OutputDebugStringA
WaitForMultipleObjects
GetExitCodeProcess
SetErrorMode
WriteFile
CreateEventW
GetSystemPowerStatus
GlobalMemoryStatusEx
CreateToolhelp32Snapshot
GetTempPathW
GetUserDefaultLocaleName
GetSystemDirectoryA
CreateFileA
GetComputerNameW
GlobalLock
GlobalUnlock
GlobalAlloc
GetTempFileNameW
DeleteFileW
K32GetProcessMemoryInfo
GetNativeSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
LocalFree
GetFileAttributesExW
CreateFileW
CreateDirectoryW
RemoveDirectoryW
SetFileAttributesW
CopyFileW
MoveFileExW
FindFirstFileExW
FindFirstFileW
FindNextFileW
FindClose
SetFilePointer
SetFilePointerEx
ReadFile
SetEndOfFile
ReplaceFileW
GetFullPathNameW
GetSystemTime
SystemTimeToFileTime
SetFileTime
GetDiskFreeSpaceExW
Thread32First
Thread32Next
SuspendThread
ExpandEnvironmentStringsW
CreateMutexA
RtlCaptureContext
SetUnhandledExceptionFilter
GetErrorMode
GetModuleFileNameA
GetFileAttributesA
GetEnvironmentVariableA
GetCurrentDirectoryA
GetThreadContext
RtlLookupFunctionEntry
RtlVirtualUnwind
ReadProcessMemory
LocalAlloc
GetCurrentDirectoryW
DebugBreak
GetTickCount
GetOverlappedResult
ResetEvent
CancelIo
FormatMessageA
GetWindowsDirectoryW
GetModuleHandleW
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteProcThreadAttributeList
InitializeCriticalSectionAndSpinCount
TryEnterCriticalSection
GetLocalTime
GetTimeZoneInformation
CreatePipe
GetFileSizeEx
CreateSemaphoreExW
TlsAlloc
TlsFree
IsDebuggerPresent
GetStdHandle
SetThreadAffinityMask
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
GetFileSize
OpenEventA
CreateWaitableTimerA
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
GetSystemDirectoryW
EncodePointer
DecodePointer
GetCPInfo
CompareStringW
LCMapStringW
GetStringTypeW
UnhandledExceptionFilter
IsProcessorFeaturePresent
GetStartupInfoW
CreateTimerQueue
SignalObjectAndWait
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
RegisterWaitForSingleObject
UnregisterWait
FreeLibraryAndExitThread
GetVersionExW
DuplicateHandle
QueryDepthSList
UnregisterWaitEx
RtlUnwindEx
RtlPcToFileHeader
RtlUnwind
HeapSize
HeapReAlloc
SwitchToThread
GetCurrentThreadId
GetThreadPriority
SetThreadPriority
ResumeThread
CreateThread
GetThreadTimes
OpenThread
UpdateProcThreadAttribute
GetProcessHeap
HeapAlloc
InitializeProcThreadAttributeList
GetCommandLineW
OutputDebugStringW
GetLogicalProcessorInformationEx
LoadLibraryExW
WaitForMultipleObjectsEx
CreateEventExW
ExitThread
QueryPerformanceFrequency
QueryPerformanceCounter
VerifyVersionInfoW
VerSetConditionMask
HeapQueryInformation
ExitProcess
GetModuleHandleExW
GetConsoleOutputCP
GetConsoleMode
GetFileType
ReadConsoleW
FlushFileBuffers
CreateProcessW
ReleaseSemaphore
GetModuleHandleA
GetCurrentThread
RaiseException
HeapFree
GetCurrentProcess
TerminateProcess
SetConsoleCtrlHandler
WaitForSingleObject
GetStartupInfoA
SetLastError
GetFileAttributesW
AttachConsole
GetDriveTypeW
GetFileInformationByHandle
PeekNamedPipe
GetModuleFileNameW
SleepEx
SetWaitableTimer
CreateWaitableTimerExW
Sleep
SetEvent
WaitForSingleObjectEx
CloseHandle
CreateEventA
SetHandleInformation
FormatMessageW
LoadLibraryW
SetDllDirectoryW
FreeLibrary
GetProcAddress
LoadLibraryA
WideCharToMultiByte
GetCurrentProcessId
MultiByteToWideChar
VirtualProtect
VirtualFree
VirtualAlloc
GetSystemInfo
GetLastError
TlsGetValue
InitializeCriticalSection
TlsSetValue
WriteConsoleW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
SetStdHandle
GetTimeFormatW
GetDateFormatW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
user32
ScreenToClient
MapVirtualKeyExA
GetKeyboardLayout
GetRawInputDeviceInfoW
GetMessageExtraInfo
GetKeyState
MapVirtualKeyA
GetKeyboardLayoutNameW
ToUnicode
MapVirtualKeyW
GetKeyNameTextW
RegisterRawInputDevices
GetRawInputDeviceList
GetRawInputData
GetRawInputBuffer
GetCursorPos
PtInRect
EnumDisplaySettingsA
GetDC
SetWindowLongA
LoadIconW
GetWindowPlacement
AdjustWindowRectEx
GetForegroundWindow
EnumDisplaySettingsW
GetWindowLongA
DispatchMessageA
TranslateMessage
SystemParametersInfoW
UnregisterDeviceNotification
RegisterDeviceNotificationW
SetCapture
ReleaseCapture
GetSystemMetrics
RegisterClassExW
GetAsyncKeyState
EndDialog
SetDlgItemTextW
SetDlgItemTextA
LoadIconA
SendDlgItemMessageW
OffsetRect
CopyRect
SendMessageTimeoutA
SetForegroundWindow
EnumWindows
GetUserObjectInformationA
GetThreadDesktop
DestroyIcon
DestroyCursor
TrackMouseEvent
SetCursor
LoadCursorA
LoadImageW
SetClipboardData
EmptyClipboard
CloseClipboard
GetClipboardData
IsClipboardFormatAvailable
OpenClipboard
AllowSetForegroundWindow
ReleaseDC
GetDesktopWindow
DisplayConfigGetDeviceInfo
QueryDisplayConfig
GetDisplayConfigBufferSizes
UpdateWindow
SendMessageW
GetMessageA
SetWindowTextW
DragDetect
ShowWindow
GetActiveWindow
GetParent
ValidateRect
IsIconic
MonitorFromRect
SetWindowLongPtrA
IsWindowVisible
SetCursorPos
ClientToScreen
ClipCursor
MonitorFromWindow
ShowCursor
GetClientRect
MoveWindow
GetWindowRect
GetMonitorInfoW
SetFocus
GetFocus
SetWindowPos
EnumDisplayMonitors
EnumDisplayDevicesA
GetMonitorInfoA
PostQuitMessage
DefWindowProcW
SetWindowLongPtrW
GetWindowLongPtrW
DestroyWindow
UnregisterClassW
RegisterClassW
CreateWindowExW
KillTimer
MessageBoxA
SetTimer
PeekMessageA
MsgWaitForMultipleObjects
GetCaretBlinkTime
GetDoubleClickTime
DialogBoxParamW
RegisterWindowMessageA
version
GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA
ole32
CoUninitialize
StringFromGUID2
CoCreateFreeThreadedMarshaler
CoInitialize
PropVariantCopy
CoCreateInstance
CoCreateGuid
CoSetProxyBlanket
CoTaskMemAlloc
PropVariantClear
CoTaskMemFree
shlwapi
SHDeleteKeyW
PathCanonicalizeW
setupapi
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
advapi32
RegCreateKeyW
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegDeleteValueA
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
GetUserNameA
OpenProcessToken
GetTokenInformation
GetSidSubAuthority
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
CryptAcquireContextW
CryptGetHashParam
CryptCreateHash
CryptHashData
CryptDestroyHash
RegOpenKeyExW
gdi32
ChoosePixelFormat
SetPixelFormat
GetDeviceCaps
SwapBuffers
shell32
ShellExecuteW
SHGetFolderPathW
SHFileOperationW
CommandLineToArgvW
opengl32
wglGetCurrentContext
wglGetProcAddress
wglDeleteContext
wglMakeCurrent
wglGetCurrentDC
wglCreateContext
winmm
waveOutGetNumDevs
waveOutGetDevCapsA
waveOutGetDevCapsW
waveInPrepareHeader
waveOutClose
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite
waveOutReset
waveOutGetPosition
waveInGetNumDevs
waveInGetDevCapsA
waveInGetDevCapsW
waveInOpen
timeBeginPeriod
timeEndPeriod
waveInUnprepareHeader
waveInAddBuffer
waveInStart
waveOutOpen
waveInReset
waveInClose
timeGetTime
oleaut32
SysAllocString
VariantClear
SysFreeString
VariantInit
VariantChangeType
imm32
ImmSetCompositionStringW
ImmNotifyIME
ImmGetCompositionStringW
ImmAssociateContextEx
ImmAssociateContext
ImmGetConversionStatus
ImmReleaseContext
ImmGetContext
winhttp
WinHttpGetProxyForUrl
WinHttpOpen
WinHttpGetIEProxyConfigForCurrentUser
WinHttpCloseHandle
bcrypt
BCryptGenRandom
hid
HidP_GetData
HidP_MaxDataListLength
HidD_GetSerialNumberString
HidD_GetManufacturerString
HidD_GetProductString
HidD_FreePreparsedData
HidD_GetPreparsedData
HidD_GetHidGuid
HidP_SetUsages
HidP_SetUsageValue
HidP_GetButtonCaps
HidP_GetValueCaps
HidD_GetAttributes
HidP_GetCaps
crypt32
CertFreeCertificateContext
CertFreeCertificateChain
CertVerifyCertificateChainPolicy
CertGetCertificateChain
CertAddEncodedCertificateToStore
CertOpenStore
CertCloseStore
ws2_32
gethostname
getsockname
connect
WSAGetLastError
ntohs
closesocket
WSACleanup
WSAStartup
bind
htonl
inet_addr
htons
WSAIoctl
WSASetLastError
WSAEnumNetworkEvents
accept
shutdown
select
__WSAFDIsSet
ioctlsocket
setsockopt
listen
sendto
send
recvfrom
recv
WSASocketA
getaddrinfo
freeaddrinfo
ntohl
gethostbyname
getprotobyname
getpeername
getsockopt
WSAWaitForMultipleEvents
WSASocketW
WSACreateEvent
WSACloseEvent
gethostbyaddr
WSASendDisconnect
WSAAsyncGetHostByName
WSACancelAsyncRequest
WSAResetEvent
WSAEventSelect
socket
dwmapi
DwmSetWindowAttribute
DwmGetWindowAttribute
Exports
Exports
UnityMain
Sections
.text Size: 23.9MB - Virtual size: 23.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3.5MB - Virtual size: 3.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 295KB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 1.0MB - Virtual size: 1.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rodata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 116KB - Virtual size: 115KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
ExtremeInvaders/baselib.dll.dll windows x64
Password: infected
db9c6dbbb87b8c007ce6d9eae665e766
Code Sign
0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/08/2022, 00:00Not After09/11/2031, 23:59SubjectCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before23/03/2022, 00:00Not After22/03/2037, 23:59SubjectCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate
IssuerCN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before29/04/2021, 00:00Not After28/04/2036, 23:59SubjectCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate
IssuerCN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=USNot Before21/09/2022, 00:00Not After21/11/2033, 23:59SubjectCN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0f:7c:5a:5e:06:2a:bd:ba:fc:be:1e:c6:3d:4c:30:52Certificate
IssuerCN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=USNot Before14/07/2021, 00:00Not After18/07/2024, 23:59SubjectCN=Unity Technologies ApS,OU=Developer Services,O=Unity Technologies ApS,L=København,C=DKExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
6d:47:29:e0:1c:04:b0:5c:95:73:10:d9:27:53:b8:4c:a6:75:0e:04Signer
Actual PE Digest6d:47:29:e0:1c:04:b0:5c:95:73:10:d9:27:53:b8:4c:a6:75:0e:04Digest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
ws2_32
setsockopt
__WSAFDIsSet
accept
bind
WSAIoctl
closesocket
select
shutdown
listen
WSACloseEvent
WSACreateEvent
WSASocketW
getsockname
send
connect
WSAWaitForMultipleEvents
recvfrom
recv
getsockopt
sendto
ioctlsocket
WSAGetLastError
kernel32
InitializeSListHead
WriteConsoleW
GetStringTypeW
SetStdHandle
GetProcessHeap
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
HeapQueryInformation
ReadFile
GetFileSizeEx
CreateSemaphoreExW
VirtualFree
ReleaseSemaphore
WriteFile
VirtualAlloc
SetEndOfFile
WaitForSingleObject
CreateFileW
GetFileAttributesW
GetCurrentThreadId
ResumeThread
FormatMessageW
GetLastError
WaitForSingleObjectEx
TlsAlloc
QueryPerformanceFrequency
CloseHandle
GetNativeSystemInfo
RaiseException
LoadLibraryW
CreateThread
SwitchToThread
GetProcAddress
SetFilePointerEx
GetThreadId
GetModuleHandleW
FreeLibrary
TlsFree
QueryPerformanceCounter
VirtualQuery
IsDebuggerPresent
FlushFileBuffers
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
Sleep
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
TlsGetValue
TlsSetValue
GetSystemTimeAsFileTime
GetTickCount
SetEvent
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetCurrentProcessId
GetCurrentProcess
TerminateProcess
CreateTimerQueue
SignalObjectAndWait
SetThreadPriority
GetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
EncodePointer
GetCurrentThread
GetThreadTimes
FreeLibraryAndExitThread
GetModuleFileNameW
GetModuleHandleA
LoadLibraryExW
GetVersionExW
VirtualProtect
DuplicateHandle
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
HeapSize
RtlUnwindEx
RtlPcToFileHeader
GetModuleHandleExW
ExitProcess
HeapAlloc
HeapFree
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
LCMapStringW
GetStdHandle
GetFileType
GetConsoleOutputCP
GetConsoleMode
HeapReAlloc
Exports
Exports
??0AbortShim@il2cpp_baselib@@QEAA@P6A_NW4Baselib_ErrorCode@1@PEAX@Z1@Z
??0Thread@il2cpp_baselib@baselib@@QEAA@$$QEAV012@@Z
??0Thread@il2cpp_baselib@baselib@@QEAA@XZ
??1Thread@il2cpp_baselib@baselib@@QEAA@XZ
??4AbortShim@il2cpp_baselib@@QEAAAEAV01@$$QEAV01@@Z
??4AbortShim@il2cpp_baselib@@QEAAAEAV01@AEBV01@@Z
??4Thread@il2cpp_baselib@baselib@@QEAAAEAV012@$$QEAV012@@Z
??6il2cpp_baselib@@YAAEAVomemstream@0@AEAV10@AEBW4Baselib_ErrorCode@0@@Z
?Baselib_Debug_IsDebuggerAttached@il2cpp_baselib@@YA_NXZ
?Baselib_DynamicLibrary_Close@il2cpp_baselib@@YAXUBaselib_DynamicLibrary_Handle@1@@Z
?Baselib_DynamicLibrary_FromNativeHandle@il2cpp_baselib@@YA?AUBaselib_DynamicLibrary_Handle@1@_KIPEAUBaselib_ErrorState@1@@Z
?Baselib_DynamicLibrary_GetFunction@il2cpp_baselib@@YAPEAXUBaselib_DynamicLibrary_Handle@1@PEBDPEAUBaselib_ErrorState@1@@Z
?Baselib_DynamicLibrary_OpenProgramHandle@il2cpp_baselib@@YA?AUBaselib_DynamicLibrary_Handle@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_DynamicLibrary_OpenUtf16@il2cpp_baselib@@YA?AUBaselib_DynamicLibrary_Handle@1@PEBGPEAUBaselib_ErrorState@1@@Z
?Baselib_DynamicLibrary_OpenUtf8@il2cpp_baselib@@YA?AUBaselib_DynamicLibrary_Handle@1@PEBDPEAUBaselib_ErrorState@1@@Z
?Baselib_ErrorState_Explain@il2cpp_baselib@@YAIPEBUBaselib_ErrorState@1@QEADIW4Baselib_ErrorState_ExplainVerbosity@1@@Z
?Baselib_ErrorState_FormatAndStoreExtraInformation@il2cpp_baselib@@YA_KPEBDPEAD@Z
?Baselib_FileIO_AsyncClose@il2cpp_baselib@@YAXUBaselib_FileIO_AsyncFile@1@@Z
?Baselib_FileIO_AsyncOpen@il2cpp_baselib@@YA?AUBaselib_FileIO_AsyncFile@1@UBaselib_FileIO_EventQueue@1@PEBD_KW4Baselib_FileIO_Priority@1@@Z
?Baselib_FileIO_AsyncRead@il2cpp_baselib@@YAXUBaselib_FileIO_AsyncFile@1@QEAUBaselib_FileIO_ReadRequest@1@_K2W4Baselib_FileIO_Priority@1@@Z
?Baselib_FileIO_EventQueue_Create@il2cpp_baselib@@YA?AUBaselib_FileIO_EventQueue@1@XZ
?Baselib_FileIO_EventQueue_Dequeue@il2cpp_baselib@@YA_KUBaselib_FileIO_EventQueue@1@QEAUBaselib_FileIO_EventQueue_Result@1@_KI@Z
?Baselib_FileIO_EventQueue_Free@il2cpp_baselib@@YAXUBaselib_FileIO_EventQueue@1@@Z
?Baselib_FileIO_EventQueue_Shutdown@il2cpp_baselib@@YAXUBaselib_FileIO_EventQueue@1@I@Z
?Baselib_FileIO_SyncClose@il2cpp_baselib@@YAXUBaselib_FileIO_SyncFile@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_FileIO_SyncFileFromNativeHandle@il2cpp_baselib@@YA?AUBaselib_FileIO_SyncFile@1@_KI@Z
?Baselib_FileIO_SyncFlush@il2cpp_baselib@@YAXUBaselib_FileIO_SyncFile@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_FileIO_SyncGetFileSize@il2cpp_baselib@@YA_KUBaselib_FileIO_SyncFile@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_FileIO_SyncOpen@il2cpp_baselib@@YA?AUBaselib_FileIO_SyncFile@1@PEBDIPEAUBaselib_ErrorState@1@@Z
?Baselib_FileIO_SyncRead@il2cpp_baselib@@YA_KUBaselib_FileIO_SyncFile@1@_KPEAX1PEAUBaselib_ErrorState@1@@Z
?Baselib_FileIO_SyncSetFileSize@il2cpp_baselib@@YAXUBaselib_FileIO_SyncFile@1@_KPEAUBaselib_ErrorState@1@@Z
?Baselib_FileIO_SyncWrite@il2cpp_baselib@@YA_KUBaselib_FileIO_SyncFile@1@_KPEBX1PEAUBaselib_ErrorState@1@@Z
?Baselib_Memory_AlignedAllocate@il2cpp_baselib@@YAPEAX_K0@Z
?Baselib_Memory_AlignedFree@il2cpp_baselib@@YAXPEAX@Z
?Baselib_Memory_AlignedReallocate@il2cpp_baselib@@YAPEAXPEAX_K1@Z
?Baselib_Memory_Allocate@il2cpp_baselib@@YAPEAX_K@Z
?Baselib_Memory_AllocatePages@il2cpp_baselib@@YA?AUBaselib_Memory_PageAllocation@1@_K00W4Baselib_Memory_PageState@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_Memory_Free@il2cpp_baselib@@YAXPEAX@Z
?Baselib_Memory_GetPageSizeInfo@il2cpp_baselib@@YAXPEAUBaselib_Memory_PageSizeInfo@1@@Z
?Baselib_Memory_Reallocate@il2cpp_baselib@@YAPEAXPEAX_K@Z
?Baselib_Memory_ReleasePages@il2cpp_baselib@@YAXUBaselib_Memory_PageAllocation@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_Memory_SetPageState@il2cpp_baselib@@YAXPEAX_K1W4Baselib_Memory_PageState@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_NetworkAddress_Decode@il2cpp_baselib@@YAXPEBUBaselib_NetworkAddress@1@PEAW4Baselib_NetworkAddress_Family@1@QEADIPEAGPEAUBaselib_ErrorState@1@@Z
?Baselib_NetworkAddress_Encode@il2cpp_baselib@@YAXPEAUBaselib_NetworkAddress@1@W4Baselib_NetworkAddress_Family@1@QEBDGPEAUBaselib_ErrorState@1@@Z
?Baselib_Process_Abort@il2cpp_baselib@@YAXW4Baselib_ErrorCode@1@@Z
?Baselib_RegisteredNetwork_BufferSlice_Create@il2cpp_baselib@@YA?AUBaselib_RegisteredNetwork_BufferSlice@1@UBaselib_RegisteredNetwork_Buffer@1@II@Z
?Baselib_RegisteredNetwork_BufferSlice_Empty@il2cpp_baselib@@YA?AUBaselib_RegisteredNetwork_BufferSlice@1@XZ
?Baselib_RegisteredNetwork_Buffer_Deregister@il2cpp_baselib@@YAXUBaselib_RegisteredNetwork_Buffer@1@@Z
?Baselib_RegisteredNetwork_Buffer_Register@il2cpp_baselib@@YA?AUBaselib_RegisteredNetwork_Buffer@1@UBaselib_Memory_PageAllocation@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Endpoint_Create@il2cpp_baselib@@YA?AUBaselib_RegisteredNetwork_Endpoint@1@PEBUBaselib_NetworkAddress@1@UBaselib_RegisteredNetwork_BufferSlice@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Endpoint_Empty@il2cpp_baselib@@YA?AUBaselib_RegisteredNetwork_Endpoint@1@XZ
?Baselib_RegisteredNetwork_Endpoint_GetNetworkAddress@il2cpp_baselib@@YAXUBaselib_RegisteredNetwork_Endpoint@1@PEAUBaselib_NetworkAddress@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_Close@il2cpp_baselib@@YAXUBaselib_RegisteredNetwork_Socket_UDP@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_Create@il2cpp_baselib@@YA?AUBaselib_RegisteredNetwork_Socket_UDP@1@PEBUBaselib_NetworkAddress@1@W4Baselib_NetworkAddress_AddressReuse@1@IIPEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_DequeueRecv@il2cpp_baselib@@YAIUBaselib_RegisteredNetwork_Socket_UDP@1@QEAUBaselib_RegisteredNetwork_CompletionResult@1@IPEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_DequeueSend@il2cpp_baselib@@YAIUBaselib_RegisteredNetwork_Socket_UDP@1@QEAUBaselib_RegisteredNetwork_CompletionResult@1@IPEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_GetNetworkAddress@il2cpp_baselib@@YAXUBaselib_RegisteredNetwork_Socket_UDP@1@PEAUBaselib_NetworkAddress@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_ProcessRecv@il2cpp_baselib@@YA?AW4Baselib_RegisteredNetwork_ProcessStatus@1@UBaselib_RegisteredNetwork_Socket_UDP@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_ProcessSend@il2cpp_baselib@@YA?AW4Baselib_RegisteredNetwork_ProcessStatus@1@UBaselib_RegisteredNetwork_Socket_UDP@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_ScheduleRecv@il2cpp_baselib@@YAIUBaselib_RegisteredNetwork_Socket_UDP@1@PEBUBaselib_RegisteredNetwork_Request@1@IPEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_ScheduleSend@il2cpp_baselib@@YAIUBaselib_RegisteredNetwork_Socket_UDP@1@PEBUBaselib_RegisteredNetwork_Request@1@IPEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_WaitForCompletedRecv@il2cpp_baselib@@YA?AW4Baselib_RegisteredNetwork_CompletionQueueStatus@1@UBaselib_RegisteredNetwork_Socket_UDP@1@IPEAUBaselib_ErrorState@1@@Z
?Baselib_RegisteredNetwork_Socket_UDP_WaitForCompletedSend@il2cpp_baselib@@YA?AW4Baselib_RegisteredNetwork_CompletionQueueStatus@1@UBaselib_RegisteredNetwork_Socket_UDP@1@IPEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_Bind@il2cpp_baselib@@YAXUBaselib_Socket_Handle@1@PEBUBaselib_NetworkAddress@1@W4Baselib_NetworkAddress_AddressReuse@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_Close@il2cpp_baselib@@YAXUBaselib_Socket_Handle@1@@Z
?Baselib_Socket_Create@il2cpp_baselib@@YA?AUBaselib_Socket_Handle@1@W4Baselib_NetworkAddress_Family@1@W4Baselib_Socket_Protocol@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_GetAddress@il2cpp_baselib@@YAXUBaselib_Socket_Handle@1@PEAUBaselib_NetworkAddress@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_Poll@il2cpp_baselib@@YAXPEAUBaselib_Socket_PollFd@1@IIPEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_TCP_Accept@il2cpp_baselib@@YA?AUBaselib_Socket_Handle@1@U21@PEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_TCP_Connect@il2cpp_baselib@@YAXUBaselib_Socket_Handle@1@PEBUBaselib_NetworkAddress@1@W4Baselib_NetworkAddress_AddressReuse@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_TCP_Listen@il2cpp_baselib@@YAXUBaselib_Socket_Handle@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_TCP_Recv@il2cpp_baselib@@YAIUBaselib_Socket_Handle@1@PEAXIPEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_TCP_Send@il2cpp_baselib@@YAIUBaselib_Socket_Handle@1@PEAXIPEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_UDP_Recv@il2cpp_baselib@@YAIUBaselib_Socket_Handle@1@QEAUBaselib_Socket_Message@1@IPEAUBaselib_ErrorState@1@@Z
?Baselib_Socket_UDP_Send@il2cpp_baselib@@YAIUBaselib_Socket_Handle@1@QEAUBaselib_Socket_Message@1@IPEAUBaselib_ErrorState@1@@Z
?Baselib_SystemFutex_Notify@il2cpp_baselib@@YAXPEAHIW4Baselib_WakeupFallbackStrategy@1@@Z
?Baselib_SystemFutex_Wait@il2cpp_baselib@@YAXPEAHHI@Z
?Baselib_SystemSemaphore_Acquire@il2cpp_baselib@@YAXUBaselib_SystemSemaphore_Handle@1@@Z
?Baselib_SystemSemaphore_Create@il2cpp_baselib@@YA?AUBaselib_SystemSemaphore_Handle@1@XZ
?Baselib_SystemSemaphore_CreateInplace@il2cpp_baselib@@YA?AUBaselib_SystemSemaphore_Handle@1@PEAX@Z
?Baselib_SystemSemaphore_Free@il2cpp_baselib@@YAXUBaselib_SystemSemaphore_Handle@1@@Z
?Baselib_SystemSemaphore_FreeInplace@il2cpp_baselib@@YAXUBaselib_SystemSemaphore_Handle@1@@Z
?Baselib_SystemSemaphore_Release@il2cpp_baselib@@YAXUBaselib_SystemSemaphore_Handle@1@I@Z
?Baselib_SystemSemaphore_TryAcquire@il2cpp_baselib@@YA_NUBaselib_SystemSemaphore_Handle@1@@Z
?Baselib_SystemSemaphore_TryTimedAcquire@il2cpp_baselib@@YA_NUBaselib_SystemSemaphore_Handle@1@I@Z
?Baselib_TLS_Alloc@il2cpp_baselib@@YA_KXZ
?Baselib_TLS_Free@il2cpp_baselib@@YAX_K@Z
?Baselib_Thread_Create@il2cpp_baselib@@YAPEAUBaselib_Thread@1@UBaselib_Thread_Config@1@PEAUBaselib_ErrorState@1@@Z
?Baselib_Thread_GetCurrentThreadId@il2cpp_baselib@@YA_JXZ
?Baselib_Thread_GetId@il2cpp_baselib@@YA_JPEAUBaselib_Thread@1@@Z
?Baselib_Thread_Join@il2cpp_baselib@@YAXPEAUBaselib_Thread@1@IPEAUBaselib_ErrorState@1@@Z
?Baselib_Thread_SupportsThreads@il2cpp_baselib@@YA_NXZ
?Baselib_Thread_YieldExecution@il2cpp_baselib@@YAXXZ
?Baselib_Timer_GetHighPrecisionTimerTicks@il2cpp_baselib@@YA_KXZ
?Baselib_Timer_GetTicksToNanosecondsConversionRatio@il2cpp_baselib@@YA?AUBaselib_Timer_TickToNanosecondConversionRatio@1@XZ
?Baselib_Timer_GetTimeSinceStartupInSeconds@il2cpp_baselib@@YANXZ
?Baselib_Timer_TickToNanosecondsConversionFactor@il2cpp_baselib@@3NB
?Baselib_Timer_WaitForAtLeast@il2cpp_baselib@@YAXI@Z
?Call@AbortShim@il2cpp_baselib@@QEAA_NW4Baselib_ErrorCode@2@@Z
?CreateThread@Thread@il2cpp_baselib@baselib@@CAPEAUBaselib_Thread@2@P6AXPEAX@Z0@Z
?Detail_Baselib_EventSemaphore_SemaphoreBased_AcquireNonSet@il2cpp_baselib@@YAXHPEAUBaselib_EventSemaphore@@@Z
?Detail_Baselib_EventSemaphore_SemaphoreBased_TryTimedAcquireNonSet@il2cpp_baselib@@YA_NHPEAUBaselib_EventSemaphore@@I@Z
?Empty@AbortShim@il2cpp_baselib@@SA?AV12@XZ
?GetCurrentId@Thread@il2cpp_baselib@baselib@@SA_JXZ
?GetId@Thread@il2cpp_baselib@baselib@@QEAA_JXZ
?SetAbortShim@il2cpp_baselib@@YA?AVAbortShim@1@V21@@Z
?ShimmableAbort@il2cpp_baselib@@YAXW4Baselib_ErrorCode@1@@Z
?SupportsThreads@Thread@il2cpp_baselib@baselib@@SA_NXZ
?TryJoin@Thread@il2cpp_baselib@baselib@@QEAA_NV?$duration@IU?$ratio@$00$0DOI@@std@@@chrono@std@@@Z
?YieldExecution@Thread@il2cpp_baselib@baselib@@SAXXZ
?detail_AssertLog@il2cpp_baselib@@YAXPEBDZZ
?detail_AssertLogMute@il2cpp_baselib@@YAX_N@Z
Sections
.text Size: 271KB - Virtual size: 271KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 96KB - Virtual size: 95KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 9KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 17KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 148B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
ExtremeInvaders/code.txt