cc206b90351e8417a7377fcf1997e8fb7bf24fa05401a5a0d75826ca36e34697[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

cc206b90351e8417a7377fcf1997e8fb7bf24fa05401a5a0d75826ca36e34697.zip
Size

14.4MB
MD5

afee1424ab9d6732cadf20c9eb0d3271
SHA1

f096aeb1ead5fbe474eda9e5991d25904aca91cf
SHA256

cc206b90351e8417a7377fcf1997e8fb7bf24fa05401a5a0d75826ca36e34697
SHA512

36afdc399c31f5bd5364fb9e1e15e31fad7bfe6f8bee4f0f181b99a21da8b8715159799b7e0c3f24a1909b72246e7fa7048dbc3218979e4e7a97da51061c94ca
SSDEEP

393216:Ja2yH+vAVEbLnhaIo37vk5d/pHsrU3O9VjRxkkxC1kfbEER:fRvAC3hG37v+6U+jjnksC1QbdR

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Sypanse X/remove_auth.dll
unpack001/Sypanse X/remove_checksub.dll

Files

cc206b90351e8417a7377fcf1997e8fb7bf24fa05401a5a0d75826ca36e34697.zip
.zip
Sypanse X/Synapse.jar
.jar
Sypanse X/remove_auth.dll
.dll windows:6 windows x64

75a329ecf76c2cbf868ea095d67fe626

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

LeaveCriticalSection
InitializeCriticalSectionEx
HeapSize
GetLastError
HeapReAlloc
RaiseException
EnterCriticalSection
DecodePointer
HeapDestroy
DeleteCriticalSection
GetProcessHeap
OutputDebugStringW
CloseHandle
InitializeCriticalSectionAndSpinCount
HeapAlloc
HeapFree
SetEvent
ResetEvent
WaitForSingleObjectEx
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetProcAddress
GetModuleHandleW
CreateEventW
IsDebuggerPresent

user32

UnregisterClassA

gdi32

DeleteDC

xrcore

?r_fvector3@?$IReaderBase@VIReader@@@@QEAAXAEAU?$_vector3@M@@@Z
?r_float@?$IReaderBase@VIReader@@@@QEAAMXZ
?r_s32@?$IReaderBase@VIReader@@@@QEAAHXZ
?r_u32@?$IReaderBase@VIReader@@@@QEAAIXZ
?w_s32@IWriter@@QEAAXH@Z
?w_fvector3@IWriter@@QEAAXAEBU?$_vector3@M@@@Z
?w_float@IWriter@@QEAAXM@Z
?r@IReader@@QEAAXPEAXH@Z
?w_u32@IWriter@@QEAAXI@Z
?Debug@@3VxrDebug@@A
?ID@CPU@@3U_processor_info@@A
?Random@@3VCRandom@@A
?length@IReader@@QEBAHXZ
?mem_alloc@xrMemory@@QEAAPEAX_K@Z
?Memory@@3VxrMemory@@A
?mem_free@xrMemory@@QEAAXPEAX@Z
?fail@xrDebug@@QEAAXPEBD0H0AEA_N@Z

gdiplus

GdiplusShutdown

msvcp140

?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPEBD@Z

tbb

?cancel_group_execution@task_group_context@tbb@@QEAA_NXZ
?init@task_group_context@tbb@@IEAAXXZ
?throw_exception_v4@internal@tbb@@YAXW4exception_id@12@@Z
?is_group_execution_cancelled@task_group_context@tbb@@QEBA_NXZ
?allocate@allocate_root_with_context_proxy@internal@tbb@@QEBAAEAVtask@3@_K@Z
??1task_group_context@tbb@@QEAA@XZ
?destroy@task_base@internal@interface5@tbb@@SAXAEAVtask@4@@Z
?reset@task_group_context@tbb@@QEAAXXZ
?note_affinity@task@tbb@@UEAAXG@Z
?allocate@allocate_additional_child_of_proxy@internal@tbb@@QEBAAEAVtask@3@_K@Z

vcruntime140

__RTCastToVoid
memcpy
_CxxThrowException
__std_type_info_destroy_list
__current_exception_context
__current_exception
__C_specific_handler
memset
_purecall
memmove

api-ms-win-crt-utility-l1-1-0

srand
rand

api-ms-win-crt-heap-l1-1-0

free
_recalloc

api-ms-win-crt-runtime-l1-1-0

_errno
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_invalid_parameter_noinfo
_initterm
_initterm_e
terminate
_cexit

vcruntime140_1

__CxxFrameHandler4

api-ms-win-crt-math-l1-1-0

sinf
logf
expf
cosf

Exports

Exports

??0PAAvoid@PAPI@@QEAA@$$QEAU01@@Z
??0PAAvoid@PAPI@@QEAA@AEBU01@@Z
??0PAAvoid@PAPI@@QEAA@XZ
??0PABounce@PAPI@@QEAA@$$QEAU01@@Z
??0PABounce@PAPI@@QEAA@AEBU01@@Z
??0PABounce@PAPI@@QEAA@XZ
??0PACopyVertexB@PAPI@@QEAA@$$QEAU01@@Z
??0PACopyVertexB@PAPI@@QEAA@AEBU01@@Z
??0PACopyVertexB@PAPI@@QEAA@XZ
??0PADamping@PAPI@@QEAA@$$QEAU01@@Z
??0PADamping@PAPI@@QEAA@AEBU01@@Z
??0PADamping@PAPI@@QEAA@XZ
??0PAExplosion@PAPI@@QEAA@$$QEAU01@@Z
??0PAExplosion@PAPI@@QEAA@AEBU01@@Z
??0PAExplosion@PAPI@@QEAA@XZ
??0PAFollow@PAPI@@QEAA@$$QEAU01@@Z
??0PAFollow@PAPI@@QEAA@AEBU01@@Z
??0PAFollow@PAPI@@QEAA@XZ
??0PAGravitate@PAPI@@QEAA@$$QEAU01@@Z
??0PAGravitate@PAPI@@QEAA@AEBU01@@Z
??0PAGravitate@PAPI@@QEAA@XZ
??0PAGravity@PAPI@@QEAA@$$QEAU01@@Z
??0PAGravity@PAPI@@QEAA@AEBU01@@Z
??0PAGravity@PAPI@@QEAA@XZ
??0PAJet@PAPI@@QEAA@$$QEAU01@@Z
??0PAJet@PAPI@@QEAA@AEBU01@@Z
??0PAJet@PAPI@@QEAA@XZ
??0PAKillOld@PAPI@@QEAA@$$QEAU01@@Z
??0PAKillOld@PAPI@@QEAA@AEBU01@@Z
??0PAKillOld@PAPI@@QEAA@XZ
??0PAMatchVelocity@PAPI@@QEAA@$$QEAU01@@Z
??0PAMatchVelocity@PAPI@@QEAA@AEBU01@@Z
??0PAMatchVelocity@PAPI@@QEAA@XZ
??0PAMove@PAPI@@QEAA@$$QEAU01@@Z
??0PAMove@PAPI@@QEAA@AEBU01@@Z
??0PAMove@PAPI@@QEAA@XZ
??0PAOrbitLine@PAPI@@QEAA@$$QEAU01@@Z
??0PAOrbitLine@PAPI@@QEAA@AEBU01@@Z
??0PAOrbitLine@PAPI@@QEAA@XZ
??0PAOrbitPoint@PAPI@@QEAA@$$QEAU01@@Z
??0PAOrbitPoint@PAPI@@QEAA@AEBU01@@Z
??0PAOrbitPoint@PAPI@@QEAA@XZ
??0PARandomAccel@PAPI@@QEAA@$$QEAU01@@Z
??0PARandomAccel@PAPI@@QEAA@AEBU01@@Z
??0PARandomAccel@PAPI@@QEAA@XZ
??0PARandomDisplace@PAPI@@QEAA@$$QEAU01@@Z
??0PARandomDisplace@PAPI@@QEAA@AEBU01@@Z
??0PARandomDisplace@PAPI@@QEAA@XZ
??0PARandomVelocity@PAPI@@QEAA@$$QEAU01@@Z
??0PARandomVelocity@PAPI@@QEAA@AEBU01@@Z
??0PARandomVelocity@PAPI@@QEAA@XZ
??0PARestore@PAPI@@QEAA@$$QEAU01@@Z
??0PARestore@PAPI@@QEAA@AEBU01@@Z
??0PARestore@PAPI@@QEAA@XZ
??0PAScatter@PAPI@@QEAA@$$QEAU01@@Z
??0PAScatter@PAPI@@QEAA@AEBU01@@Z
??0PAScatter@PAPI@@QEAA@XZ
??0PASink@PAPI@@QEAA@$$QEAU01@@Z
??0PASink@PAPI@@QEAA@AEBU01@@Z
??0PASink@PAPI@@QEAA@XZ
??0PASinkVelocity@PAPI@@QEAA@$$QEAU01@@Z
??0PASinkVelocity@PAPI@@QEAA@AEBU01@@Z
??0PASinkVelocity@PAPI@@QEAA@XZ
??0PASource@PAPI@@QEAA@$$QEAU01@@Z
??0PASource@PAPI@@QEAA@AEBU01@@Z
??0PASource@PAPI@@QEAA@XZ
??0PASpeedLimit@PAPI@@QEAA@$$QEAU01@@Z
??0PASpeedLimit@PAPI@@QEAA@AEBU01@@Z
??0PASpeedLimit@PAPI@@QEAA@XZ
??0PATargetColor@PAPI@@QEAA@$$QEAU01@@Z
??0PATargetColor@PAPI@@QEAA@AEBU01@@Z
??0PATargetColor@PAPI@@QEAA@XZ
??0PATargetRotate@PAPI@@QEAA@$$QEAU01@@Z
??0PATargetRotate@PAPI@@QEAA@AEBU01@@Z
??0PATargetRotate@PAPI@@QEAA@XZ
??0PATargetSize@PAPI@@QEAA@$$QEAU01@@Z
??0PATargetSize@PAPI@@QEAA@AEBU01@@Z
??0PATargetSize@PAPI@@QEAA@XZ
??0PATargetVelocity@PAPI@@QEAA@$$QEAU01@@Z
??0PATargetVelocity@PAPI@@QEAA@AEBU01@@Z
??0PATargetVelocity@PAPI@@QEAA@XZ
??0PATurbulence@PAPI@@QEAA@$$QEAU01@@Z
??0PATurbulence@PAPI@@QEAA@AEBU01@@Z
??0PATurbulence@PAPI@@QEAA@XZ
??0PAVortex@PAPI@@QEAA@$$QEAU01@@Z
??0PAVortex@PAPI@@QEAA@AEBU01@@Z
??0PAVortex@PAPI@@QEAA@XZ
??0ParticleAction@PAPI@@QEAA@$$QEAU01@@Z
??0ParticleAction@PAPI@@QEAA@AEBU01@@Z
??0ParticleAction@PAPI@@QEAA@XZ
??0pDomain@PAPI@@QEAA@W4PDomainEnum@1@MMMMMMMMM@Z
??0pDomain@PAPI@@QEAA@XZ
??4PAAvoid@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAAvoid@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PABounce@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PABounce@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PACopyVertexB@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PACopyVertexB@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PADamping@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PADamping@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAExplosion@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAExplosion@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAFollow@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAFollow@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAGravitate@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAGravitate@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAGravity@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAGravity@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAJet@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAJet@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAKillOld@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAKillOld@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAMatchVelocity@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAMatchVelocity@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAMove@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAMove@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAOrbitLine@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAOrbitLine@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAOrbitPoint@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAOrbitPoint@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PARandomAccel@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PARandomAccel@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PARandomDisplace@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PARandomDisplace@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PARandomVelocity@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PARandomVelocity@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PARestore@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PARestore@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAScatter@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAScatter@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PASink@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PASink@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PASinkVelocity@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PASinkVelocity@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PASource@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PASource@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PASpeedLimit@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PASpeedLimit@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PATargetColor@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PATargetColor@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PATargetRotate@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PATargetRotate@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PATargetSize@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PATargetSize@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PATargetVelocity@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PATargetVelocity@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PATurbulence@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PATurbulence@PAPI@@QEAAAEAU01@AEBU01@@Z
??4PAVortex@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4PAVortex@PAPI@@QEAAAEAU01@AEBU01@@Z
??4ParticleAction@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4ParticleAction@PAPI@@QEAAAEAU01@AEBU01@@Z
??4pDomain@PAPI@@QEAAAEAU01@$$QEAU01@@Z
??4pDomain@PAPI@@QEAAAEAU01@AEBU01@@Z
??_7PAAvoid@PAPI@@6B@
??_7PABounce@PAPI@@6B@
??_7PACopyVertexB@PAPI@@6B@
??_7PADamping@PAPI@@6B@
??_7PAExplosion@PAPI@@6B@
??_7PAFollow@PAPI@@6B@
??_7PAGravitate@PAPI@@6B@
??_7PAGravity@PAPI@@6B@
??_7PAJet@PAPI@@6B@
??_7PAKillOld@PAPI@@6B@
??_7PAMatchVelocity@PAPI@@6B@
??_7PAMove@PAPI@@6B@
??_7PAOrbitLine@PAPI@@6B@
??_7PAOrbitPoint@PAPI@@6B@
??_7PARandomAccel@PAPI@@6B@
??_7PARandomDisplace@PAPI@@6B@
??_7PARandomVelocity@PAPI@@6B@
??_7PARestore@PAPI@@6B@
??_7PAScatter@PAPI@@6B@
??_7PASink@PAPI@@6B@
??_7PASinkVelocity@PAPI@@6B@
??_7PASource@PAPI@@6B@
??_7PASpeedLimit@PAPI@@6B@
??_7PATargetColor@PAPI@@6B@
??_7PATargetRotate@PAPI@@6B@
??_7PATargetSize@PAPI@@6B@
??_7PATargetVelocity@PAPI@@6B@
??_7PATurbulence@PAPI@@6B@
??_7PAVortex@PAPI@@6B@
??_7ParticleAction@PAPI@@6B@
?Execute@PAAvoid@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PABounce@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PACopyVertexB@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PADamping@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAExplosion@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAFollow@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAGravitate@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAGravity@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAJet@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAKillOld@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAMatchVelocity@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAMove@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAOrbitLine@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAOrbitPoint@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PARandomAccel@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PARandomDisplace@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PARandomVelocity@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PARestore@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAScatter@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PASink@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PASinkVelocity@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PASource@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PASpeedLimit@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PATargetColor@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PATargetRotate@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PATargetSize@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PATargetVelocity@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PATurbulence@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Execute@PAVortex@PAPI@@UEAAXPEAUParticleEffect@2@MAEAM@Z
?Generate@pDomain@PAPI@@QEBAXAEAVpVector@2@@Z
?Load@PAAvoid@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PABounce@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PACopyVertexB@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PADamping@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAExplosion@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAFollow@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAGravitate@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAGravity@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAJet@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAKillOld@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAMatchVelocity@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAMove@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAOrbitLine@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAOrbitPoint@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PARandomAccel@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PARandomDisplace@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PARandomVelocity@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PARestore@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAScatter@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PASink@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PASinkVelocity@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PASource@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PASpeedLimit@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PATargetColor@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PATargetRotate@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PATargetSize@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PATargetVelocity@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PATurbulence@PAPI@@UEAAXAEAVIReader@@@Z
?Load@PAVortex@PAPI@@UEAAXAEAVIReader@@@Z
?Load@ParticleAction@PAPI@@UEAAXAEAVIReader@@@Z
?ParticleManager@PAPI@@YAPEAVIParticleManager@1@XZ
?Save@PAAvoid@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PABounce@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PACopyVertexB@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PADamping@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAExplosion@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAFollow@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAGravitate@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAGravity@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAJet@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAKillOld@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAMatchVelocity@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAMove@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAOrbitLine@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAOrbitPoint@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PARandomAccel@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PARandomDisplace@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PARandomVelocity@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PARestore@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAScatter@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PASink@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PASinkVelocity@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PASource@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PASpeedLimit@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PATargetColor@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PATargetRotate@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PATargetSize@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PATargetVelocity@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PATurbulence@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@PAVortex@PAPI@@UEAAXAEAVIWriter@@@Z
?Save@ParticleAction@PAPI@@UEAAXAEAVIWriter@@@Z
?Transform@PAAvoid@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PABounce@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PACopyVertexB@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PADamping@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAExplosion@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAFollow@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAGravitate@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAGravity@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAJet@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAKillOld@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAMatchVelocity@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAMove@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAOrbitLine@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAOrbitPoint@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PARandomAccel@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PARandomDisplace@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PARandomVelocity@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PARestore@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAScatter@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PASink@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PASinkVelocity@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PASource@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PASpeedLimit@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PATargetColor@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PATargetRotate@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PATargetSize@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PATargetVelocity@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PATurbulence@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Transform@PAVortex@PAPI@@UEAAXAEBU?$_matrix@M@@@Z
?Within@pDomain@PAPI@@QEBAHAEBVpVector@2@@Z
?transform@pDomain@PAPI@@QEAAXAEBU12@AEBU?$_matrix@M@@@Z
?transform_dir@pDomain@PAPI@@QEAAXAEBU12@AEBU?$_matrix@M@@@Z

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Sypanse X/remove_checksub.dll
.dll windows:6 windows x64

47fe46b90a98f5e1b119236889a1f7fa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

ode

dGeomTransformSetGeom
dGeomTransformSetInfo
dCreateBox
dGeomBoxSetLengths
dCreateSphere
dMassSetCylinder
dGeomSetCategoryBits
dGeomSetCollideBits
dGeomGetCollideBits
dBodyGetPosition
dBodyGetLinearVel
dBodySetLinearVel
dBodySetPosition
dBodySetForce
dBodyAddForce
dBodyGetRotation
dBodyGetAngularVel
dBodyGetTorque
dBodyGetForce
dRSetIdentity
dBodySetRotation
dBodySetAngularVel
dWorldAddBody
dJointCreateContact
dBodyCreate
dBodySetMass
dBodyEnable
dBodyDestroy
dxStepBody
dBodyIsEnabled
dBodyGetGravityMode
dBodyDisable
dJointCreateBall
dJointCreateAMotor
dJointSetAMotorMode
dJointSetAMotorNumAxes
dJointSetFeedback
dJointSetBallAnchor
dJointSetAMotorAxis
dJointSetAMotorParam
dWorldRemoveBody
dWorldRemoveJoint
dJointDestroy
dBodyGetMass
dBodySetData
dBodyGetQuaternion
dBodySetQuaternion
dBodyGetData
dBodyAddTorque
dBodyAddForceAtRelPos
dBodyAddForceAtPos
dBodySetTorque
dBodyGetPointVel
dBodyGetNumJoints
dBodyGetJoint
dJointGetType
dCreateGeomTransform
dJointGetFeedback
dSpaceGetNumGeoms
dSimpleSpaceCreate
dSpaceSetCleanup
dWorldStep
dWorldQuickStep
dJointCreateHinge
dJointSetHingeAnchor
dJointSetHingeAxis
dJointSetHingeParam
dJointCreateHinge2
dJointSetHinge2Anchor
dJointSetHinge2Axis1
dJointSetHinge2Param
dJointSetHinge2Axis2
dJointCreateSlider
dJointSetSliderAxis
dJointSetSliderParam
dJointSetData
dJointGetHinge2Angle1Rate
dJointGetHinge2Angle2Rate
dJointGetHingeAngleRate
dJointGetAMotorAngleRate
dJointGetSliderPositionRate
dJointGetHinge2Angle1
dJointGetHingeAngle
dJointGetAMotorAngle
dJointGetSliderPosition
dJointGetHingeAxis
dJointGetHinge2Axis2
dJointGetHinge2Axis1
dJointGetAMotorAxis
dJointGetSliderAxis
dJointGetHingeAnchor
dJointGetBallAnchor
dJointGroupEmpty
dSpaceDestroy
dGeomSphereSetRadius
dWorldSetAutoEnableDepthSF1
dJointGroupCreate
dWorldSetGravity
dWorldSetERP
dWorldSetCFM
dJointGroupDestroy
dCloseODE
dWorldSetQuickStepNumIterations
dCollide
dInvertPDMatrix
dJointCreateFixed
dJointSetFixed
dQfromR
dJointSetFixedQuaternionPos
dInfiniteAABB
dSetAllocHandler
dSetReallocHandler
dSetFreeHandler
dSpaceRemove
dGeomSetBody
dGeomSetRotation
dGeomSetPosition
dGeomSetData
dMassAdd
dMassRotate
dMassTranslate
dMassSetBox
dBodySetGravityMode
dGeomMoved
dGeomRaySet
dMassSetZero
dGeomRaySetLength
dCreateRay
dGeomDestroy
dGeomGetAABB
dCollideRaySphere
dCollideRayBox
dGeomGetClassData
dCreateGeom
dCreateGeomClass
dGeomRayGet
dGeomRayGetLength
dGeomPlaneGetParams
dGeomBoxGetLengths
dGeomSphereGetRadius
dSpaceAdd
dGeomGetRotation
dNormalize3_slow
dGeomGetPosition
dGeomGetBody
dJointAttach
dJointCreateContactSpecial
dGeomTransformGetGeom
dGeomGetClass
dGeomGetData
dWorldAddJoint
dGeomTransformSetCleanup
dMassAdjust
dMassSetSphere
dJointGetData

kernel32

EnterCriticalSection
IsDebuggerPresent
OutputDebugStringW
CloseHandle
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
HeapFree
GetProcAddress
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetModuleHandleW
DeleteCriticalSection
GetCurrentThreadId
GetSystemTimeAsFileTime
LeaveCriticalSection
GetProcessHeap
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionEx
InitializeSListHead

user32

UnregisterClassA

gdi32

DeleteDC

xrapi

?PGMLib@@3PEAVCGameMtlLibrary@@EA

xrcdb

?q_box@ISpatial_DB@@QEAAXAEAV?$vector@PEAVISpatial@@V?$xalloc@PEAVISpatial@@@@@std@@IIAEBU?$_vector3@M@@1@Z
?spatial_register@ISpatial@@UEAAXXZ
?box_options@COLLIDER@CDB@@QEAAXI@Z
?q_ray@ISpatial_DB@@QEAAXAEAV?$vector@PEAVISpatial@@V?$xalloc@PEAVISpatial@@@@@std@@IIAEBU?$_vector3@M@@1M@Z
?spatial_move@ISpatial@@UEAAXXZ
?g_SpatialSpacePhysic@@3PEAVISpatial_DB@@EA
??0ISpatial@@QEAA@PEAVISpatial_DB@@@Z
?dcast_FeelSound@ISpatial@@UEAAPEAVSound@Feel@@XZ
?RayQuery@CObjectSpace@@QEAAHAEAVrq_results@collide@@PEAVICollisionForm@@AEBUray_defs@3@@Z
?XRC@@3VxrXRC@@A
?get_verts@MODEL@CDB@@QEAAPEAU?$_vector3@M@@XZ
?r_end@COLLIDER@CDB@@QEAAPEAURESULT@2@XZ
?get_tris@MODEL@CDB@@QEAAPEAVTRI@2@XZ
?spatial_sector_point@ISpatial@@UEAA?AU?$_vector3@M@@XZ
?dcast_Renderable@ISpatial@@UEAAPEAVIRenderable@@XZ
?dcast_Light@ISpatial@@UEAAPEAVIRender_Light@@XZ
?dcast_CObject@ISpatial@@UEAAPEAVCObject@@XZ
?spatial_unregister@ISpatial@@UEAAXXZ
?GetBoundingVolume@CObjectSpace@@QEAAAEBV?$_box3@M@@XZ
??1CObjectSpace@@QEAA@XZ
??0ISpatial_DB@@QEAA@XZ
??0CObjectSpace@@QEAA@XZ
?Create@CObjectSpace@@QEAAXPEAU?$_vector3@M@@PEAVTRI@CDB@@AEBUhdrCFORM@@P6AX0H1HPEAX@Z@Z
?Load@CObjectSpace@@QEAAXPEAVIReader@@P6AXPEAU?$_vector3@M@@HPEAVTRI@CDB@@HPEAX@Z@Z
?RayPick@CObjectSpace@@QEAAHAEBU?$_vector3@M@@0MW4rq_target@collide@@AEAUrq_result@4@PEAVCObject@@@Z
??1ISpatial@@UEAA@XZ
?g_SpatialSpace@@3PEAVISpatial_DB@@EA
?box_options@xrXRC@@QEAAXI@Z
?GetStaticModel@CObjectSpace@@QEAAPEAVMODEL@CDB@@XZ
?box_query@xrXRC@@QEAAXPEBVMODEL@CDB@@AEBU?$_vector3@M@@1@Z
?r_begin@xrXRC@@QEAAPEAURESULT@CDB@@XZ
?r_end@xrXRC@@QEAAPEAURESULT@CDB@@XZ
?GetStaticTris@CObjectSpace@@QEAAPEAVTRI@CDB@@XZ
?GetStaticVerts@CObjectSpace@@QEAAPEAU?$_vector3@M@@XZ
?r_begin@COLLIDER@CDB@@QEAAPEAURESULT@2@XZ

xrcore

?w_vec3@NET_Packet@@QEAAXAEBU?$_vector3@M@@@Z
?w_vec4@NET_Packet@@QEAAXAEBU?$_vector4@M@@@Z
?w_u64@NET_Packet@@QEAAX_K@Z
?w_u16@NET_Packet@@QEAAXG@Z
?r_u64@NET_Packet@@QEAA_KXZ
?r_u16@NET_Packet@@QEAAGXZ
?r_vec3@NET_Packet@@QEAAXAEAU?$_vector3@M@@@Z
?r_vec3@NET_Packet@@QEAA?AU?$_vector3@M@@XZ
?r_vec4@NET_Packet@@QEAA?AU?$_vector4@M@@XZ
?r_u8@NET_Packet@@QEAAEXZ
?mem_free@xrMemory@@QEAAXPEAX@Z
?w_float_q8@NET_Packet@@QEAAXMMM@Z
?Memory@@3VxrMemory@@A
?r_float_q8@NET_Packet@@QEAAMMM@Z
?r_float_q8@?$IReaderBase@VIReader@@@@QEAAMMM@Z
?mem_realloc@xrMemory@@QEAAPEAXPEAX_K@Z
?_GetItem@@YAPEADPEBDHPEADID0_N@Z
?_GetItemCount@@YAHPEBDD@Z
??1CFileReader@@UEAA@XZ
??0CFileReader@@QEAA@PEBD@Z
?End@CStatTimer@@QEAAXXZ
?Begin@CStatTimer@@QEAAXXZ
?dock@str_container@@QEAAPEAUstr_value@@PEBD@Z
?g_pStringContainer@@3PEAVstr_container@@EA
?r_u32@CInifile@@QEBAIPEBD0@Z
?r_string@CInifile@@QEBAPEBDPEBD0@Z
?pSettings@@3PEBVCInifile@@EB
?fail@xrDebug@@QEAAXPEBD0H0AEA_N@Z
?GetElapsed_sec@CTimer@@UEBAMXZ
?Msg@@YAXPEBDZZ
?Random@@3VCRandom@@A
?w_u8@NET_Packet@@QEAAXE@Z
?Start@CTimer@@UEAAXXZ
??0CTimer@@QEAA@XZ
?fail@xrDebug@@QEAAXPEBD00H0AEA_N@Z
?Debug@@3VxrDebug@@A
?r_s8@CInifile@@QEBACPEBD0@Z
?r_float@CInifile@@QEBAMPEBD0@Z
?line_exist@CInifile@@QEBAHPEBD0@Z
?section_exist@CInifile@@QEBAHPEBD@Z
?Fidentity@@3U?$_matrix@M@@A
?r_u8@?$IReaderBase@VIReader@@@@QEAAEXZ
?r_vec4@?$IReaderBase@VIReader@@@@QEAA?AU?$_vector4@M@@XZ
?r_vec3@?$IReaderBase@VIReader@@@@QEAA?AU?$_vector3@M@@XZ
?mem_alloc@xrMemory@@QEAAPEAX_K@Z

gdiplus

GdiplusShutdown

msvcp140

_Query_perf_counter
_Query_perf_frequency
?_Xlength_error@std@@YAXPEBD@Z

vcruntime140

memset
__C_specific_handler
__current_exception
__current_exception_context
memmove
__RTDynamicCast
__RTCastToVoid
__std_type_info_destroy_list
_CxxThrowException
__std_exception_copy
memcpy
__std_exception_destroy
_purecall

api-ms-win-crt-math-l1-1-0

_copysign
acosf
atan2f
cosf
tanf
sinf
_fdclass
_fpclass

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_execute_onexit_table
_invalid_parameter_noinfo
_crt_atexit
_invalid_parameter_noinfo_noreturn
_crt_at_quick_exit
_cexit
_initterm
_initterm_e
terminate
_errno
_register_onexit_function

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf

api-ms-win-crt-string-l1-1-0

_stricmp
strncpy_s

api-ms-win-crt-heap-l1-1-0

free
_recalloc

vcruntime140_1

__CxxFrameHandler4

Exports

Exports

??0CODEGeom@@QEAA@AEBV0@@Z
??0CODEGeom@@QEAA@XZ
??0CPHUpdateObject@@QEAA@AEBV0@@Z
??0CPHUpdateObject@@QEAA@XZ
??0CPhysicsBase@@QEAA@AEBV0@@Z
??0CPhysicsBase@@QEAA@XZ
??0CPhysicsElement@@QEAA@AEBV0@@Z
??0CPhysicsElement@@QEAA@XZ
??0CPhysicsJoint@@QEAA@AEBV0@@Z
??0CPhysicsJoint@@QEAA@XZ
??0CPhysicsShell@@QEAA@AEBV0@@Z
??0CPhysicsShell@@QEAA@XZ
??1CODEGeom@@UEAA@XZ
??1CPHUpdateObject@@UEAA@XZ
??1CPhysicsBase@@UEAA@XZ
??1CPhysicsElement@@UEAA@XZ
??1CPhysicsJoint@@UEAA@XZ
??1CPhysicsShell@@UEAA@XZ
??4CODEGeom@@QEAAAEAV0@AEBV0@@Z
??4CPHUpdateObject@@QEAAAEAV0@AEBV0@@Z
??4CPhysicsBase@@QEAAAEAV0@AEBV0@@Z
??4CPhysicsElement@@QEAAAEAV0@AEBV0@@Z
??4CPhysicsJoint@@QEAAAEAV0@AEBV0@@Z
??4CPhysicsShell@@QEAAAEAV0@AEBV0@@Z
??4SAllDDOParams@@QEAAAEAU0@$$QEAU0@@Z
??4SAllDDOParams@@QEAAAEAU0@AEBU0@@Z
??4ph_console@@QEAAAEAU0@$$QEAU0@@Z
??4ph_console@@QEAAAEAU0@AEBU0@@Z
??_7CODEGeom@@6B@
??_7CPHUpdateObject@@6B@
??_7CPhysicsBase@@6B@
??_7CPhysicsElement@@6BCPhysicsBase@@@
??_7CPhysicsElement@@6BIPhysicsElement@@@
??_7CPhysicsJoint@@6B@
??_7CPhysicsShell@@6BCPhysicsBase@@@
??_7CPhysicsShell@@6BIPhysicsShell@@@
?Activate@CPHUpdateObject@@QEAAXXZ
?ActivateBoxDynamic@@YA_NPEAVIPHMovementControl@@_NKHHM@Z
?ActivateShapeCharacterPhysicsSupport@@YA_NAEAU?$_vector3@M@@AEBU1@1AEBU?$_matrix@M@@_N3PEAVIPhysicsShellHolder@@@Z
?ActivateShapeExplosive@@YAXPEAVIPhysicsShellHolder@@AEBU?$_vector3@M@@AEAU2@2@Z
?ActivateShapePhysShellHolder@@YAXPEAVIPhysicsShellHolder@@AEBU?$_matrix@M@@AEBU?$_vector3@M@@AEAU3@3@Z
?ApplySpawnIniToPhysicShell@@YAXPEBVCInifile@@PEAVCPhysicsShell@@_N@Z
?BreakableObjectCollisionCallback@@YAXAEA_N_NAEAUdContact@@PEAUSGameMtl@@3@Z
?ContactShotMarkGetEffectPars@@YA_NPEAUdContactGeom@@AEAPEAUdxGeomUserData@@AEAMAEA_N@Z
?DamageReceiverCollisionCallback@@YAXAEA_N_NAEAUdContact@@PEAUSGameMtl@@3@Z
?Deactivate@CPHUpdateObject@@QEAAXXZ
?DestroyStaticGeomShell@@YAXAEAPEAVIPHStaticGeomShell@@@Z
?Element@CPhysicsShell@@UEBAAEBVIPhysicsElement@@G@Z
?IsActive@CPHUpdateObject@@QEAA_NXZ
?Load@SAllDDOParams@@QEAAXPEAVCInifile@@@Z
?NetRelcase@CPHUpdateObject@@UEAAXPEAVCPhysicsShell@@@Z
?NonElasticCollisionEnergy@@YAMPEAVCPhysicsElement@@0AEBU?$_vector3@M@@@Z
?PHRetrieveGeomUserData@@YAPEAUdxGeomUserData@@PEAUdxGeom@@@Z
?PKinematics@CPhysicsShell@@QEAAPEAVIKinematics@@XZ
?P_BuildLeaderGeomShell@@YAPEAVIPHStaticGeomShell@@PEAVIClimableObject@@P6AXAEA_N_NAEAUdContact@@PEAUSGameMtl@@4@ZAEBU?$_obb@M@@@Z
?P_BuildStaticGeomShell@@YAPEAVIPHStaticGeomShell@@PEAVIPhysicsShellHolder@@P6AXAEA_N_NAEAUdContact@@PEAUSGameMtl@@4@Z@Z
?P_build_Shell@@YAPEAVCPhysicsShell@@PEAVIPhysicsShellHolder@@_NAEAV?$vector@GV?$xalloc@G@@@std@@@Z
?P_build_Shell@@YAPEAVCPhysicsShell@@PEAVIPhysicsShellHolder@@_NPEAV?$map@GUphysicsBone@@U?$less@G@std@@V?$xalloc@U?$pair@$$CBGUphysicsBone@@@std@@@@@std@@PEBD@Z
?P_build_Shell@@YAPEAVCPhysicsShell@@PEAVIPhysicsShellHolder@@_NPEBD@Z
?P_build_SimpleShell@@YAPEAVCPhysicsShell@@PEAVIPhysicsShellHolder@@M_N@Z
?P_create_Element@@YAPEAVCPhysicsElement@@XZ
?P_create_Joint@@YAPEAVCPhysicsJoint@@W4enumType@1@PEAVCPhysicsElement@@1@Z
?P_create_Shell@@YAPEAVCPhysicsShell@@XZ
?P_create_splited_Shell@@YAPEAVCPhysicsShell@@XZ
?RegisterGroup@@YAIXZ
?Reset@SAllDDOParams@@QEAAXXZ
?SetMaxAABBRadius@CPhysicsShell@@UEAAXM@Z
?StaticEnvironmentCB@@YAXAEA_N_NAEAUdContact@@PEAUSGameMtl@@3@Z
?XFORM@CPhysicsBase@@UEBAAEBU?$_matrix@M@@XZ
?XFORM@CPhysicsElement@@UEBAAEBU?$_matrix@M@@XZ
?XFORM@CPhysicsShell@@UEBAAEBU?$_matrix@M@@XZ
?actor_camera_shell@@3PEAVCPhysicsShell@@EA
?add_obj_contact_cb@CODEGeom@@QEAAXP6AXAEA_N_NAEAUdContact@@PEAUSGameMtl@@3@Z@Z
?add_self_mass@CODEGeom@@QEAAXAEAUdMass@@AEBU?$_vector3@M@@@Z
?add_self_mass@CODEGeom@@QEAAXAEAUdMass@@AEBU?$_vector3@M@@M@Z
?add_to_space@CODEGeom@@QEAAXPEAUdxSpace@@@Z
?bone_id@CODEGeom@@QEAAGXZ
?build@CODEGeom@@QEAAXAEBU?$_vector3@M@@@Z
?clear_cashed_tries@CODEGeom@@QEAAXXZ
?clear_motion_history@CODEGeom@@QEAAX_N@Z
?collide_camera@@YAXAEAVCCameraBase@@MPEAVIPhysicsShellHolder@@@Z
?collide_fluids@CODEGeom@@UEBA_NXZ
?create_actor_character@@YAPEAVCPHCharacter@@_N@Z
?create_ai_character@@YAPEAVCPHCharacter@@XZ
?default_k_l@@3MB
?default_k_w@@3MB
?default_l_limit@@3MB
?default_w_limit@@3MB
?default_world_gravity@@3MB
?destroy@CODEGeom@@QEAAXXZ
?element_position@CODEGeom@@QEAAAEAGXZ
?fixed_step@@3MA
?g_bDebugDumpPhysicsStep@ph_console@@2HA
?geom@CODEGeom@@QEAAPEAUdxGeom@@XZ
?geom@CODEGeom@@QEBAQEAUdxGeom@@XZ
?geometry@CODEGeom@@QEAAPEAUdxGeom@@XZ
?geometry@CODEGeom@@QEBAQEAUdxGeom@@XZ
?geometry_bt@CODEGeom@@QEAAPEAUdxGeom@@XZ
?geometry_bt@CODEGeom@@QEBAQEAUdxGeom@@XZ
?geometry_transform@CODEGeom@@QEAAPEAUdxGeom@@XZ
?geometry_transform@CODEGeom@@QEBAQEAUdxGeom@@XZ
?get_Box@CODEGeom@@UEBAXAEAU?$_matrix@M@@AEAU?$_vector3@M@@@Z
?get_Box@CPhysicsBase@@UEBAXAEAU?$_vector3@M@@0@Z
?get_Box@CPhysicsElement@@UEBAXAEAU?$_vector3@M@@0@Z
?get_box@@YAXPEBVCPhysicsBase@@AEBU?$_matrix@M@@AEAU?$_vector3@M@@2@Z
?get_callback_data@CODEGeom@@QEAAPEAXXZ
?get_final_tx@CODEGeom@@SAXPEAUdxGeom@@AEAPEBM1PEAM2@Z
?get_final_tx_bt@CODEGeom@@IEBAXAEAPEBM0PEAM1@Z
?get_global_center_bt@CODEGeom@@QEAAXAEAU?$_vector3@M@@@Z
?get_local_center_bt@CODEGeom@@QEAAXAEAU?$_vector3@M@@@Z
?get_local_form_bt@CODEGeom@@QEAAXAEAU?$_matrix@M@@@Z
?get_mass@CODEGeom@@QEAAXAEAUdMass@@AEBU?$_vector3@M@@@Z
?get_mass@CODEGeom@@QEAAXAEAUdMass@@AEBU?$_vector3@M@@M@Z
?get_user_data@@YAXAEAPEAUdxGeomUserData@@0_NAEBUdContactGeom@@@Z
?get_xform@CODEGeom@@UEBAXAEAU?$_matrix@M@@@Z
?get_xform@CPhysicsBase@@UEBAXAEAU?$_matrix@M@@@Z
?init@CODEGeom@@IEAAXXZ
?is_transform@CODEGeom@@SA_NPEAUdxGeom@@@Z
?is_transformed_bt@CODEGeom@@QEBA_NXZ
?move_local_basis@CODEGeom@@QEAAXAEBU?$_matrix@M@@@Z
?phBreakCommonFactor@ph_console@@2MA
?phInfinity@@3MB
?phIterations@@3HA
?phRigidBreakWeaponFactor@ph_console@@2MA
?phTimefactor@@3MA
?ph_boundaries@@YAAEBV?$_box3@M@@XZ
?ph_step_time@ph_console@@2MA
?ph_tri_clear_disable_count@ph_console@@2HA
?ph_tri_query_ex_aabb_rate@ph_console@@2MA
?phcapture_create@@YAPEAVIPHCapture@@PEAVCPHCharacter@@PEAVIPhysicsShellHolder@@G@Z
?phcapture_create@@YAPEAVIPHCapture@@PEAVCPHCharacter@@PEAVIPhysicsShellHolder@@PEAUNearestToPointCallback@@@Z
?phcapture_destroy@@YAXAEAPEAVIPHCapture@@@Z
?phys_shell_verify_object_model@@YAXAEAVIPhysicsShellHolder@@@Z
?remove_from_space@CODEGeom@@QEAAXPEAUdxSpace@@@Z
?remove_obj_contact_cb@CODEGeom@@QEAAXP6AXAEA_N_NAEAUdContact@@PEAUSGameMtl@@3@Z@Z
?set_Kinematics@CPhysicsShell@@QEAAXPEAVIKinematics@@@Z
?set_body@CODEGeom@@QEAAXPEAUdxBody@@@Z
?set_bone_id@CODEGeom@@QEAAXG@Z
?set_build_position@CODEGeom@@UEAAXAEBU?$_vector3@M@@@Z
?set_callback_data@CODEGeom@@QEAAXPEAX@Z
?set_contact_cb@CODEGeom@@QEAAXP6AXPEAVTRI@CDB@@PEAUdContactGeom@@@Z@Z
?set_local_form_bt@CODEGeom@@QEAAXAEBU?$_matrix@M@@@Z
?set_material@CODEGeom@@QEAAXG@Z
?set_obj_contact_cb@CODEGeom@@QEAAXP6AXAEA_N_NAEAUdContact@@PEAUSGameMtl@@3@Z@Z
?set_ph_object@CODEGeom@@QEAAXPEAVCPHObject@@@Z
?set_ref_object@CODEGeom@@QEAAXPEAVIPhysicsShellHolder@@@Z
?set_shape_flags@CODEGeom@@QEAAXAEBU?$_flags@G@@@Z
?set_static_ref_form@CODEGeom@@QEAAXAEBU?$_matrix@M@@@Z
?test_camera_box@@YA_NAEBU?$_vector3@M@@AEBU?$_matrix@M@@PEAVIPhysicsShellHolder@@@Z
?valid_pos@@YA_NAEBU?$_vector3@M@@@Z
?virtual_move_collide_callback@@YAXAEA_N_NAEAUdContact@@PEAUSGameMtl@@3@Z
P_build_Shell
can_create_phys_shell
create_object_space
create_physics_world
destroy_object_space
destroy_physics_shell
destroy_physics_world
mesh_create_object_space
physics_world
set_mtl_lib

Sections

.text
Size: 461KB - Virtual size: 461KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75a329ecf76c2cbf868ea095d67fe626

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

xrcore

gdiplus

msvcp140

tbb

vcruntime140

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

vcruntime140_1

api-ms-win-crt-math-l1-1-0

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 2KB - Virtual size: 10KB

.pdata Size: 5KB - Virtual size: 4KB

_RDATA Size: 9KB - Virtual size: 8KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 1024B - Virtual size: 616B

47fe46b90a98f5e1b119236889a1f7fa

Headers

DLL Characteristics

File Characteristics

Imports

ode

kernel32

user32

gdi32

xrapi

xrcdb

xrcore

gdiplus

msvcp140

vcruntime140

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-heap-l1-1-0

vcruntime140_1

Exports

Exports

Sections

.text Size: 461KB - Virtual size: 461KB

.rdata Size: 96KB - Virtual size: 95KB

.data Size: 3KB - Virtual size: 92KB

.pdata Size: 24KB - Virtual size: 24KB

_RDATA Size: 9KB - Virtual size: 8KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 2KB - Virtual size: 10KB

.pdata
Size: 5KB - Virtual size: 4KB

_RDATA
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 1024B - Virtual size: 616B

.text
Size: 461KB - Virtual size: 461KB

.rdata
Size: 96KB - Virtual size: 95KB

.data
Size: 3KB - Virtual size: 92KB

.pdata
Size: 24KB - Virtual size: 24KB

_RDATA
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 4KB - Virtual size: 4KB