General

Malware Config

Signatures

Files

• New Compressed (zipped) Folder.zip

  .zip
• 640ef9afce45a61a02970462b829bf37a845948c17d72577dc70c1c21aa55b23.url
• 6c2fd9890091213f759f6cfe01fb00531a5efc4bdbad60542cabd86c1aabd9f2.dll

  .dll windows:6 windows x86 arch:x86

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DLL

  Sections

  .text

  Size: 138KB - Virtual size: 138KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 512B - Virtual size: 87B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 1024B - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .reloc

  Size: 1024B - Virtual size: 620B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• 7f16cb7b70229203d4a5c342f622ba961d97d7b2c55ed9ce6cb9ba977971e5c5.exe

  .exe windows:6 windows x86 arch:x86

  608505ff1e7e27ff4a42ea9c4e9f4192

  
  

  Code Sign

  48:fc:93:b4:60:55:94:8d:36:a7:c9:8a:89:d6:94:16

  Certificate

  Issuer

  CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB

  Not Before

  25-05-2021 00:00

  Not After

  31-12-2028 23:59

  Subject

  CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  33:d7:08:a8:91:40:53:19:e2:a5:bb:d3:39:b9:ad:6e

  Certificate

  Issuer

  CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB

  Not Before

  22-03-2021 00:00

  Not After

  21-03-2036 23:59

  Subject

  CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  e9:e5:9f:14:18:04:0e:5a:1e:8a:e9:2f:0a:ec:83:d8

  Certificate

  Issuer

  CN=Sectigo Public Code Signing CA EV R36,O=Sectigo Limited,C=GB

  Not Before

  03-03-2022 00:00

  Not After

  02-03-2025 23:59

  Subject

  SERIALNUMBER=044384,CN=Siam Computer (MD Kamrul Hassan),O=Siam Computer (MD Kamrul Hassan),ST=Dhaka,C=BD,2.5.4.15=#130f427573696e65737320456e74697479,1.3.6.1.4.1.311.60.2.1.3=#13024244

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4

  Certificate

  Issuer

  CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

  Not Before

  03-05-2023 00:00

  Not After

  02-08-2034 23:59

  Subject

  CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageContentCommitment

  30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9

  Certificate

  Issuer

  CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

  Not Before

  02-05-2019 00:00

  Not After

  18-01-2038 23:59

  Subject

  CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  7a:aa:29:12:5b:77:c3:d7:35:bb:1a:c7:6d:80:5a:41:77:31:60:e1:cc:9f:47:a8:be:cc:24:9d:e9:1c:ec:c2

  Signer

  Actual PE Digest

  7a:aa:29:12:5b:77:c3:d7:35:bb:1a:c7:6d:80:5a:41:77:31:60:e1:cc:9f:47:a8:be:cc:24:9d:e9:1c:ec:c2

  Digest Algorithm

  sha256

  PE Digest Matches

  true

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  CreateFileW

  CloseHandle

  WriteFile

  DeleteFileW

  HeapDestroy

  HeapSize

  HeapReAlloc

  HeapFree

  HeapAlloc

  GetProcessHeap

  SizeofResource

  LockResource

  LoadResource

  FindResourceW

  FindResourceExW

  CreateEventExW

  WaitForSingleObject

  CreateProcessW

  GetLastError

  GetExitCodeProcess

  SetEvent

  RemoveDirectoryW

  GetProcAddress

  GetModuleHandleW

  GetWindowsDirectoryW

  CreateDirectoryW

  GetTempPathW

  GetTempFileNameW

  MoveFileW

  EnterCriticalSection

  LeaveCriticalSection

  GetModuleFileNameW

  DeleteCriticalSection

  InitializeCriticalSectionAndSpinCount

  GetCurrentThreadId

  RaiseException

  SetLastError

  GlobalUnlock

  GlobalLock

  GlobalAlloc

  MulDiv

  lstrcmpW

  CreateEventW

  FindClose

  FindFirstFileW

  GetFullPathNameW

  InitializeCriticalSection

  lstrcpynW

  CreateThread

  LoadLibraryExW

  GetCurrentProcess

  Sleep

  WideCharToMultiByte

  GetDiskFreeSpaceExW

  DecodePointer

  GetExitCodeThread

  GetCurrentProcessId

  FreeLibrary

  GetSystemDirectoryW

  lstrlenW

  VerifyVersionInfoW

  VerSetConditionMask

  lstrcmpiW

  LoadLibraryW

  GetDriveTypeW

  CompareStringW

  FindNextFileW

  GetLogicalDriveStringsW

  GetFileSize

  GetFileAttributesW

  GetShortPathNameW

  GetFinalPathNameByHandleW

  SetFileAttributesW

  GetFileTime

  CopyFileW

  ReadFile

  SetFilePointer

  SetFileTime

  SystemTimeToFileTime

  MultiByteToWideChar

  GetSystemInfo

  WaitForMultipleObjects

  GetVersionExW

  VirtualProtect

  VirtualQuery

  LoadLibraryExA

  GetStringTypeW

  LocalFree

  LocalAlloc

  SetUnhandledExceptionFilter

  FileTimeToSystemTime

  GetEnvironmentVariableW

  GetSystemTime

  GetDateFormatW

  GetTimeFormatW

  GetLocaleInfoW

  CreateToolhelp32Snapshot

  Process32FirstW

  Process32NextW

  FormatMessageW

  GetEnvironmentStringsW

  InitializeCriticalSectionEx

  LoadLibraryA

  GetModuleFileNameA

  GetCurrentThread

  GetConsoleOutputCP

  FlushFileBuffers

  Wow64DisableWow64FsRedirection

  Wow64RevertWow64FsRedirection

  IsWow64Process

  SetConsoleTextAttribute

  GetStdHandle

  GetConsoleScreenBufferInfo

  OutputDebugStringW

  GetTickCount

  GetCommandLineW

  SetCurrentDirectoryW

  SetEndOfFile

  EnumResourceLanguagesW

  GetSystemDefaultLangID

  GetUserDefaultLangID

  GetLocalTime

  ResetEvent

  GlobalFree

  GetPrivateProfileStringW

  GetPrivateProfileSectionNamesW

  WritePrivateProfileStringW

  CreateNamedPipeW

  ConnectNamedPipe

  TerminateThread

  CompareFileTime

  CopyFileExW

  OpenEventW

  PeekNamedPipe

  WaitForSingleObjectEx

  QueryPerformanceCounter

  QueryPerformanceFrequency

  ReleaseSRWLockExclusive

  AcquireSRWLockExclusive

  WakeAllConditionVariable

  SleepConditionVariableSRW

  EncodePointer

  LCMapStringEx

  CompareStringEx

  GetCPInfo

  GetSystemTimeAsFileTime

  IsDebuggerPresent

  InitializeSListHead

  InterlockedPopEntrySList

  InterlockedPushEntrySList

  FlushInstructionCache

  IsProcessorFeaturePresent

  VirtualAlloc

  VirtualFree

  UnhandledExceptionFilter

  TerminateProcess

  GetStartupInfoW

  RtlUnwind

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  ExitThread

  FreeLibraryAndExitThread

  GetModuleHandleExW

  ExitProcess

  GetFileType

  LCMapStringW

  IsValidLocale

  GetUserDefaultLCID

  EnumSystemLocalesW

  GetTimeZoneInformation

  GetConsoleMode

  GetFileSizeEx

  SetFilePointerEx

  FindFirstFileExW

  IsValidCodePage

  GetACP

  GetOEMCP

  GetCommandLineA

  FreeEnvironmentStringsW

  SetEnvironmentVariableW

  SetStdHandle

  ReadConsoleW

  WriteConsoleW

  GetProcessAffinityMask

  GetModuleHandleA

  GlobalMemoryStatus

  ReleaseSemaphore

  CreateSemaphoreW

  Sections

  .text

  Size: 2.5MB - Virtual size: 2.5MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 688KB - Virtual size: 688KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 15KB - Virtual size: 52KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 190KB - Virtual size: 190KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 165KB - Virtual size: 164KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• 86bb5e18da0ed3a8793cc3b38b57aa972a5d9ed0f07182712165f9703d81f27c.html

  .html
• a740116acee69998af19e00b2866d6d479ab97620358b92b05d3449e05764e72.exe

  .exe windows:6 windows x64 arch:x64

  355515da5297885464d9d5aa23c0a856

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  d3d11

  D3D11CreateDeviceAndSwapChain

  ws2_32

  WSAGetLastError

  closesocket

  WSAWaitForMultipleEvents

  htonl

  listen

  freeaddrinfo

  recvfrom

  WSAResetEvent

  sendto

  ioctlsocket

  gethostname

  recv

  getaddrinfo

  bind

  connect

  getpeername

  send

  WSACloseEvent

  getsockname

  WSACreateEvent

  WSAEnumNetworkEvents

  getsockopt

  accept

  select

  __WSAFDIsSet

  WSACleanup

  htons

  WSAStartup

  ntohs

  WSAIoctl

  WSASetLastError

  socket

  setsockopt

  WSAEventSelect

  crypt32

  CryptQueryObject

  CertCloseStore

  CertFreeCertificateChain

  CertGetCertificateChain

  CertFreeCertificateChainEngine

  CertCreateCertificateChainEngine

  CertEnumCertificatesInStore

  CertGetNameStringA

  CertFindExtension

  CertAddCertificateContextToStore

  CryptDecodeObjectEx

  PFXImportCertStore

  CryptStringToBinaryA

  CertFreeCertificateContext

  CertFindCertificateInStore

  CertOpenStore

  wldap32

  ord143

  ord301

  ord200

  ord30

  ord79

  ord35

  ord46

  ord33

  ord32

  ord27

  ord26

  ord22

  ord41

  ord217

  ord211

  ord60

  ord45

  ord50

  normaliz

  IdnToAscii

  kernel32

  GetSystemTimeAsFileTime

  GetCurrentThreadId

  GetStartupInfoW

  IsProcessorFeaturePresent

  TerminateProcess

  GetCurrentProcess

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  RtlVirtualUnwind

  RtlLookupFunctionEntry

  RtlCaptureContext

  GetModuleHandleW

  CreateEventW

  ResetEvent

  SetEvent

  InitializeCriticalSectionAndSpinCount

  InitializeSListHead

  GetFileSizeEx

  CreateFileA

  VerifyVersionInfoW

  WaitForMultipleObjects

  PeekNamedPipe

  GetFileType

  GetEnvironmentVariableA

  WaitForSingleObjectEx

  MoveFileExA

  FormatMessageW

  SetLastError

  Sleep

  GetTickCount

  GetSystemDirectoryA

  SleepEx

  DeleteCriticalSection

  InitializeCriticalSectionEx

  LeaveCriticalSection

  EnterCriticalSection

  QueryPerformanceCounter

  FreeLibrary

  ReadFile

  GetModuleFileNameA

  SetConsoleCtrlHandler

  Process32First

  WriteProcessMemory

  SetHandleInformation

  SetConsoleTitleA

  GetStdHandle

  SetConsoleMode

  SetCurrentConsoleFontEx

  Module32Next

  CreatePipe

  CreateMutexA

  GetVolumeInformationA

  WaitForSingleObject

  Module32First

  GetModuleHandleA

  OpenProcess

  CreateToolhelp32Snapshot

  GetConsoleMode

  GetLastError

  AttachConsole

  Process32Next

  CloseHandle

  FreeConsole

  CreateThread

  Beep

  VirtualAllocEx

  ExitProcess

  ReadProcessMemory

  GetCurrentProcessId

  GetConsoleWindow

  CreateProcessA

  VirtualFreeEx

  AllocConsole

  IsDebuggerPresent

  VirtualQueryEx

  MultiByteToWideChar

  GlobalAlloc

  GlobalFree

  GlobalLock

  WideCharToMultiByte

  GlobalUnlock

  LoadLibraryA

  QueryPerformanceFrequency

  GetProcAddress

  VerSetConditionMask

  user32

  GetDC

  MonitorFromWindow

  EnumDisplayMonitors

  ScreenToClient

  SetWindowTextW

  WindowFromPoint

  GetCapture

  ClientToScreen

  IsChild

  TrackMouseEvent

  GetMonitorInfoA

  SetLayeredWindowAttributes

  SetFocus

  BringWindowToTop

  SetCapture

  SetCursor

  SetWindowLongW

  GetClientRect

  SetProcessDPIAware

  IsWindowUnicode

  ReleaseCapture

  SetForegroundWindow

  IsIconic

  SetCursorPos

  ReleaseDC

  GetCursorPos

  OpenClipboard

  CloseClipboard

  GetKeyState

  GetClipboardData

  SetClipboardData

  GetMessageA

  DispatchMessageA

  GetWindowRect

  DestroyWindow

  IsWindowVisible

  SetWindowPos

  CallNextHookEx

  ShowWindow

  GetAsyncKeyState

  GetCursorInfo

  SetWindowLongA

  SetWindowsHookExA

  GetWindowTextA

  GetWindowLongA

  GetForegroundWindow

  EnumWindows

  DefWindowProcA

  CreateWindowExA

  TranslateMessage

  PeekMessageA

  UnregisterClassA

  PostQuitMessage

  GetDesktopWindow

  GetWindowTextLengthA

  FindWindowA

  RegisterClassExA

  UpdateWindow

  LoadCursorA

  AdjustWindowRectEx

  EmptyClipboard

  GetWindowLongW

  SendInput

  gdi32

  GetDeviceCaps

  msvcp140

  ?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

  ?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@G@Z

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z

  ??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ

  ??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

  ?good@ios_base@std@@QEBA_NXZ

  ??Bios_base@std@@QEBA_NXZ

  ?always_noconv@codecvt_base@std@@QEBA_NXZ

  ??Bid@locale@std@@QEAA_KXZ

  ?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z

  ?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z

  ?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z

  ?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

  ?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ

  ?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

  ?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

  ?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ

  ??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ

  ??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

  ??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

  ??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

  ??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ

  ?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z

  ?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z

  ?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z

  ?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ

  ?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ

  ?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAPEAD0PEAH001@Z

  ?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ

  ??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

  ?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z

  ?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z

  ?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z

  ?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ

  ?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ

  ?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z

  ?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z

  ?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

  ?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ

  ?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z

  _Xtime_get_ticks

  _Thrd_detach

  _Query_perf_counter

  _Thrd_sleep

  _Cnd_do_broadcast_at_thread_exit

  ?_Xlength_error@std@@YAXPEBD@Z

  ?_Random_device@std@@YAIXZ

  ?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

  ?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z

  ?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A

  ?_Throw_C_error@std@@YAXH@Z

  ?_Xbad_function_call@std@@YAXXZ

  ?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z

  ??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ

  ??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ

  _Query_perf_frequency

  ??1_Lockit@std@@QEAA@XZ

  ??0_Lockit@std@@QEAA@H@Z

  ?_Throw_Cpp_error@std@@YAXH@Z

  ?uncaught_exceptions@std@@YAHXZ

  ?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

  ?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ

  ?_Xbad_alloc@std@@YAXXZ

  ?_Xinvalid_argument@std@@YAXPEBD@Z

  ?_Xout_of_range@std@@YAXPEBD@Z

  imm32

  ImmSetCandidateWindow

  ImmReleaseContext

  ImmGetContext

  ImmSetCompositionWindow

  d3dcompiler_47

  D3DCompile

  vcruntime140_1

  __CxxFrameHandler4

  vcruntime140

  __current_exception

  _CxxThrowException

  __C_specific_handler

  __current_exception_context

  memchr

  memcmp

  memmove

  strrchr

  strchr

  memset

  memcpy

  strstr

  __std_terminate

  __std_exception_copy

  __std_exception_destroy

  api-ms-win-crt-stdio-l1-1-0

  fopen

  fclose

  __p__commode

  fgetc

  fflush

  _read

  _write

  _close

  __acrt_iob_func

  feof

  _open

  fwrite

  _lseeki64

  fputc

  __stdio_common_vsprintf

  fgets

  fgetpos

  fputs

  __stdio_common_vsscanf

  _wfopen

  setvbuf

  ungetc

  fsetpos

  __stdio_common_vfprintf

  fseek

  ftell

  _get_stream_buffer_pointers

  freopen_s

  _set_fmode

  _fseeki64

  fread

  api-ms-win-crt-heap-l1-1-0

  _callnewh

  _set_new_mode

  free

  realloc

  calloc

  malloc

  api-ms-win-crt-multibyte-l1-1-0

  _mbscmp

  api-ms-win-crt-utility-l1-1-0

  srand

  rand

  qsort

  api-ms-win-crt-string-l1-1-0

  isspace

  strncpy

  strncmp

  toupper

  strspn

  isupper

  strcmp

  isalnum

  _strdup

  strpbrk

  strcspn

  tolower

  api-ms-win-crt-math-l1-1-0

  atan2f

  _dsign

  fmodf

  sinf

  log

  logf

  _dclass

  ceilf

  __setusermatherr

  pow

  cosf

  powf

  acosf

  sqrtf

  api-ms-win-crt-convert-l1-1-0

  atof

  strtoll

  strtoul

  strtod

  strtoull

  strtol

  wcstombs

  atoi

  api-ms-win-crt-runtime-l1-1-0

  _getpid

  _errno

  _register_thread_local_exe_atexit_callback

  terminate

  system

  _beginthreadex

  __sys_errlist

  _configure_narrow_argv

  _initialize_narrow_environment

  _initialize_onexit_table

  _register_onexit_function

  _crt_atexit

  _cexit

  _seh_filter_exe

  _set_app_type

  __sys_nerr

  _get_narrow_winmain_command_line

  _initterm

  _initterm_e

  exit

  _exit

  _invalid_parameter_noinfo_noreturn

  _c_exit

  api-ms-win-crt-time-l1-1-0

  _gmtime64

  _time64

  strftime

  _mktime64

  api-ms-win-crt-filesystem-l1-1-0

  _fstat64

  _access

  _unlock_file

  _lock_file

  _unlink

  _stat64

  api-ms-win-crt-locale-l1-1-0

  _configthreadlocale

  localeconv

  api-ms-win-crt-environment-l1-1-0

  getenv

  _dupenv_s

  advapi32

  CryptHashData

  CryptAcquireContextA

  CryptReleaseContext

  CryptGetHashParam

  CryptGenRandom

  CryptCreateHash

  CryptImportKey

  CryptDestroyHash

  CryptDestroyKey

  CryptEncrypt

  Sections

  .text

  Size: 971KB - Virtual size: 971KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 418KB - Virtual size: 417KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 6KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 37KB - Virtual size: 36KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 512B - Virtual size: 480B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• a8eabecac5183dd92d96c18f8b08b41e60c301261e378238f88f260ec5943264.exe

  .exe windows:6 windows x64 arch:x64

  c8f621da1e95f4b181a292c370aaba77

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  crypt32

  CertDuplicateCertificateContext

  CertFindCertificateInStore

  CertEnumCertificatesInStore

  CertCloseStore

  CertOpenStore

  CertFreeCertificateContext

  CertGetCertificateContextProperty

  CryptUnprotectData

  ws2_32

  ioctlsocket

  shutdown

  socket

  setsockopt

  connect

  closesocket

  send

  recv

  WSASetLastError

  getservbyname

  getservbyport

  gethostbyaddr

  inet_ntoa

  inet_addr

  htons

  htonl

  WSAGetLastError

  WSACleanup

  WSAStartup

  gethostbyname

  select

  ntohs

  getsockopt

  kernel32

  GetCommandLineW

  GetCommandLineA

  GetModuleFileNameW

  FileTimeToSystemTime

  SystemTimeToTzSpecificLocalTime

  PeekNamedPipe

  GetDriveTypeW

  SetConsoleCtrlHandler

  FreeLibraryAndExitThread

  FlushFileBuffers

  GetTickCount

  QueryPerformanceCounter

  MapViewOfFile

  CreateFileMappingW

  FormatMessageA

  GetSystemTime

  GetSystemTimeAsFileTime

  WideCharToMultiByte

  FreeLibrary

  SystemTimeToFileTime

  GetProcessHeap

  GetCurrentProcessId

  GetFileSize

  LockFileEx

  LocalFree

  GetProcAddress

  UnlockFile

  HeapDestroy

  HeapCompact

  HeapAlloc

  LoadLibraryW

  GetSystemInfo

  CloseHandle

  HeapReAlloc

  DeleteFileW

  DeleteFileA

  WaitForSingleObjectEx

  LoadLibraryA

  CreateFileA

  FlushViewOfFile

  OutputDebugStringW

  GetFileAttributesExW

  GetFileAttributesA

  GetLastError

  GetDiskFreeSpaceA

  FormatMessageW

  GetTempPathA

  Sleep

  MultiByteToWideChar

  HeapSize

  HeapValidate

  CompareStringW

  GetFileAttributesW

  CreateFileW

  WaitForSingleObject

  CreateMutexW

  GetTempPathW

  UnlockFileEx

  SetEndOfFile

  GetFullPathNameA

  SetFilePointer

  LockFile

  OutputDebugStringA

  GetDiskFreeSpaceW

  WriteFile

  GetFullPathNameW

  HeapFree

  HeapCreate

  ReadFile

  AreFileApisANSI

  InitializeCriticalSection

  EnterCriticalSection

  LeaveCriticalSection

  TryEnterCriticalSection

  DeleteCriticalSection

  GetCurrentThreadId

  SetLastError

  InitializeSRWLock

  ReleaseSRWLockExclusive

  ReleaseSRWLockShared

  AcquireSRWLockExclusive

  AcquireSRWLockShared

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  GetStdHandle

  GetFileType

  GetModuleHandleW

  RtlVirtualUnwind

  GetEnvironmentVariableW

  VirtualFree

  GetACP

  GetSystemDirectoryA

  FindClose

  FindFirstFileW

  FindNextFileW

  GetConsoleMode

  SetConsoleMode

  ReadConsoleA

  ReadConsoleW

  ExitThread

  CreateThread

  GetModuleHandleExW

  ExitProcess

  LCMapStringW

  GetLocaleInfoW

  IsValidLocale

  GetUserDefaultLCID

  EnumSystemLocalesW

  GetConsoleCP

  GetFileSizeEx

  IsValidCodePage

  GetOEMCP

  GetTimeZoneInformation

  SetStdHandle

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  SetEnvironmentVariableW

  WriteConsoleW

  UnmapViewOfFile

  LoadLibraryExW

  RtlUnwindEx

  GetCurrentDirectoryW

  CreateDirectoryW

  FindFirstFileExW

  GetFileInformationByHandle

  SetFilePointerEx

  DeviceIoControl

  CopyFileW

  CreateHardLinkW

  GetFileInformationByHandleEx

  CreateSymbolicLinkW

  InitializeCriticalSectionEx

  EncodePointer

  DecodePointer

  LCMapStringEx

  GetStringTypeW

  GetCPInfo

  RtlCaptureContext

  RtlLookupFunctionEntry

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  GetCurrentProcess

  TerminateProcess

  IsProcessorFeaturePresent

  InitializeCriticalSectionAndSpinCount

  SetEvent

  ResetEvent

  CreateEventW

  IsDebuggerPresent

  GetStartupInfoW

  InitializeSListHead

  RtlPcToFileHeader

  RaiseException

  RtlUnwind

  user32

  MessageBoxW

  GetUserObjectInformationW

  GetProcessWindowStation

  advapi32

  CryptDecrypt

  DeregisterEventSource

  RegisterEventSourceW

  ReportEventW

  CryptAcquireContextW

  CryptReleaseContext

  CryptDestroyKey

  CryptSetHashParam

  CryptEnumProvidersW

  CryptSignHashW

  CryptDestroyHash

  CryptCreateHash

  GetUserNameA

  CryptExportKey

  CryptGetUserKey

  CryptGetProvParam

  bcrypt

  BCryptGenRandom

  Sections

  .text

  Size: 3.1MB - Virtual size: 3.1MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 923KB - Virtual size: 923KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 31KB - Virtual size: 47KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 144KB - Virtual size: 144KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  _RDATA

  Size: 512B - Virtual size: 244B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 512B - Virtual size: 480B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 41KB - Virtual size: 40KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• acc7e32e8f61afed7b9ce6feeec1cd281f280a2feeae33f08ba97ce3596078f1.apk

  .apk android

  com.klad.hhh

  com.klad.hhh.SplashActivity

  
  

  Activities

  com.klad.hhh.SplashActivity

  android.intent.action.MAIN

  
  

  Permissions

  android.permission.INTERNET

  android.permission.WRITE_EXTERNAL_STORAGE

  android.permission.READ_EXTERNAL_STORAGE

  android.permission.READ_INTERNAL_STORAGE

  android.permission.WRITE_INTERNAL_STORAGE

  android.permission.ACCESS_NETWORK_STATE

  android.permission.WAKE_LOCK

  com.google.android.c2dm.permission.RECEIVE

  com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

  Receivers

  com.google.firebase.iid.FirebaseInstanceIdReceiver

  com.google.android.c2dm.intent.RECEIVE

  
  

  com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

  com.android.vending.INSTALL_REFERRER

  
  

  Services

  com.klad.hhh.FireBaseMService

  com.google.firebase.MESSAGING_EVENT

  
  

  com.google.firebase.messaging.FirebaseMessagingService

  com.google.firebase.MESSAGING_EVENT

  
  
• ad9c8996d6ef2ea7ebc6a2ac280fd534f54e0f637b56fe91298dd91b498181a9.exe

  .exe windows:6 windows x64 arch:x64

  faedbb015de3a31cdc62e0394e98eb33

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  ntdll

  RtlUnwindEx

  RtlPcToFileHeader

  NtReadFile

  RtlLookupFunctionEntry

  RtlVirtualUnwind

  RtlCaptureContext

  RtlNtStatusToDosError

  NtWriteFile

  RtlGetVersion

  bcrypt

  BCryptGenRandom

  advapi32

  SystemFunction036

  kernel32

  HeapSize

  GetStringTypeW

  SetStdHandle

  SetEnvironmentVariableW

  FreeEnvironmentStringsW

  QueryPerformanceCounter

  GetEnvironmentStringsW

  GetCPInfo

  GetOEMCP

  GetACP

  IsValidCodePage

  FindNextFileW

  FindFirstFileExW

  GetLastError

  GetFileSizeEx

  GetCurrentThreadId

  ReadConsoleW

  GetConsoleOutputCP

  FlushFileBuffers

  HeapReAlloc

  LCMapStringW

  CloseHandle

  GetConsoleProcessList

  CompareStringW

  GetCommandLineW

  GetStdHandle

  AcquireSRWLockExclusive

  ReleaseSRWLockExclusive

  FlsFree

  FlsSetValue

  FlsGetValue

  DeviceIoControl

  AddVectoredExceptionHandler

  SetThreadStackGuarantee

  HeapAlloc

  CreateFileA

  SwitchToThread

  GetConsoleMode

  GetFileType

  GetFileInformationByHandleEx

  OutputDebugStringW

  GetCommandLineA

  GetProcessHeap

  WriteFile

  ReadFile

  GetModuleHandleExW

  TlsFree

  TlsSetValue

  SetEndOfFile

  TlsGetValue

  TlsAlloc

  InitializeCriticalSectionAndSpinCount

  DeleteCriticalSection

  GlobalLock

  GlobalSize

  WideCharToMultiByte

  GlobalUnlock

  LeaveCriticalSection

  MultiByteToWideChar

  GlobalAlloc

  EnterCriticalSection

  RaiseException

  GlobalFree

  FreeLibrary

  EncodePointer

  TerminateProcess

  IsProcessorFeaturePresent

  GetStartupInfoW

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  IsDebuggerPresent

  GetCurrentProcessId

  CreateMutexA

  GetEnvironmentVariableW

  InitializeSListHead

  GetModuleFileNameW

  ReleaseMutex

  GetCurrentProcess

  CreateFileW

  GetFileInformationByHandle

  HeapFree

  LoadLibraryA

  FlsAlloc

  GetModuleHandleA

  SetConsoleTextAttribute

  GetConsoleScreenBufferInfo

  SetConsoleMode

  ReleaseSRWLockShared

  AcquireSRWLockShared

  GetSystemTimeAsFileTime

  ExitProcess

  FindClose

  CreateThread

  FindFirstFileW

  SetFilePointerEx

  SetThreadErrorMode

  LoadLibraryExW

  GetProcAddress

  Sleep

  WaitForSingleObjectEx

  GetCurrentThread

  TryAcquireSRWLockExclusive

  WaitForSingleObject

  WriteConsoleW

  SetLastError

  QueryPerformanceFrequency

  GetModuleHandleW

  FormatMessageW

  GetCurrentDirectoryW

  GetFullPathNameW

  user32

  GetKeyState

  ToUnicodeEx

  RegisterWindowMessageA

  GetKeyboardLayout

  GetWindowPlacement

  SetWindowPlacement

  DestroyIcon

  SendMessageW

  SetWindowLongW

  GetWindowLongW

  GetMenu

  AdjustWindowRectEx

  GetActiveWindow

  GetClipCursor

  ClipCursor

  ShowCursor

  SystemParametersInfoA

  PostMessageW

  FindWindowExA

  IsProcessDPIAware

  GetClientRect

  ChangeDisplaySettingsExW

  GetWindowThreadProcessId

  SetForegroundWindow

  GetWindowRect

  SendInput

  MapVirtualKeyW

  FindWindowW

  ScreenToClient

  RegisterClassExW

  CreateWindowExW

  GetDC

  RegisterTouchWindow

  GetSystemMetrics

  GetUpdateRect

  ValidateRect

  GetRawInputData

  GetKeyboardState

  GetAsyncKeyState

  MsgWaitForMultipleObjectsEx

  GetWindowLongPtrA

  PeekMessageW

  PostThreadMessageW

  SetClipboardData

  EmptyClipboard

  CloseClipboard

  GetClipboardData

  GetMonitorInfoW

  MonitorFromWindow

  MonitorFromRect

  CloseTouchInputHandle

  GetTouchInputInfo

  DefWindowProcW

  MapVirtualKeyA

  ReleaseCapture

  SetCapture

  TrackMouseEvent

  SetWindowLongPtrW

  RegisterRawInputDevices

  OpenClipboard

  DispatchMessageW

  TranslateMessage

  GetMessageW

  DestroyWindow

  GetCursorPos

  MessageBoxA

  SetWindowDisplayAffinity

  RedrawWindow

  GetWindowLongPtrW

  InvalidateRgn

  SetWindowPos

  ShowWindow

  SetCursor

  LoadCursorW

  SetCursorPos

  SendMessageA

  MoveWindow

  GetFocus

  ClientToScreen

  SetActiveWindow

  SetWindowLongPtrA

  SetWindowLongA

  shell32

  IsUserAnAdmin

  DragFinish

  DragQueryFileW

  ole32

  OleInitialize

  RegisterDragDrop

  CoInitializeEx

  CoUninitialize

  RevokeDragDrop

  CoCreateInstance

  imm32

  ImmAssociateContextEx

  ImmReleaseContext

  ImmGetContext

  ImmGetCompositionStringW

  winmm

  timeEndPeriod

  timeGetDevCaps

  timeBeginPeriod

  gdi32

  CreateRectRgn

  DeleteObject

  GetDeviceCaps

  dwmapi

  DwmEnableBlurBehindWindow

  oleaut32

  GetErrorInfo

  SysStringLen

  SysFreeString

  uxtheme

  SetWindowTheme

  Sections

  .text

  Size: 2.5MB - Virtual size: 2.5MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 658KB - Virtual size: 657KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 4KB - Virtual size: 52KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 56KB - Virtual size: 56KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  _RDATA

  Size: 512B - Virtual size: 348B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 9KB - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 15KB - Virtual size: 14KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• c788100411c38388afc3438dccc05297ac7a77083f579e4a7e8d6e1479214fde.unknown

  .js
• dc5a8c20ddad9edf5bad9885ccc751301b09ff0477a50fc90f1ce0a9f8283635.jar

  .zip
• Ayakashi/methods/a.class
• Ayakashi/methods/b.class
• Ayakashi/methods/impl/a.class
• Ayakashi/methods/impl/b.class
• Ayakashi/methods/impl/c.class
• Ayakashi/methods/impl/d.class
• Ayakashi/methods/impl/e.class
• Ayakashi/methods/impl/f.class
• Ayakashi/methods/impl/g.class
• Ayakashi/methods/impl/h.class
• Ayakashi/methods/impl/i.class
• Ayakashi/methods/impl/j.class
• Ayakashi/methods/impl/k.class
• Ayakashi/methods/impl/l.class
• Ayakashi/methods/impl/m.class
• Ayakashi/methods/impl/n.class
• Ayakashi/methods/impl/o.class
• Ayakashi/methods/impl/p.class
• Ayakashi/methods/impl/q.class
• Ayakashi/methods/impl/r.class
• e12d6a7452dd56cfb058ac5a364f0d008870b900b0da53b12c0c58f782488924.exe

  .exe windows:6 windows x64 arch:x64

  5f74a5c747508e2822fdb9b687deaf42

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  unityplayer

  UnityMain

  kernel32

  WriteConsoleW

  QueryPerformanceCounter

  GetCurrentProcessId

  GetCurrentThreadId

  GetSystemTimeAsFileTime

  InitializeSListHead

  RtlCaptureContext

  RtlLookupFunctionEntry

  RtlVirtualUnwind

  IsDebuggerPresent

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  GetStartupInfoW

  IsProcessorFeaturePresent

  GetModuleHandleW

  CloseHandle

  RtlUnwindEx

  GetLastError

  SetLastError

  EnterCriticalSection

  LeaveCriticalSection

  DeleteCriticalSection

  InitializeCriticalSectionAndSpinCount

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  FreeLibrary

  GetProcAddress

  LoadLibraryExW

  RaiseException

  GetStdHandle

  WriteFile

  GetModuleFileNameW

  GetCurrentProcess

  ExitProcess

  TerminateProcess

  GetModuleHandleExW

  HeapAlloc

  HeapFree

  FindClose

  FindFirstFileExW

  FindNextFileW

  IsValidCodePage

  GetACP

  GetOEMCP

  GetCPInfo

  GetCommandLineA

  GetCommandLineW

  MultiByteToWideChar

  WideCharToMultiByte

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  SetStdHandle

  GetFileType

  GetStringTypeW

  LCMapStringW

  GetProcessHeap

  HeapSize

  HeapReAlloc

  FlushFileBuffers

  GetConsoleCP

  GetConsoleMode

  SetFilePointerEx

  CreateFileW

  Exports

  Exports

  AmdPowerXpressRequestHighPerformance

  NvOptimusEnablement

  Sections

  .text

  Size: 40KB - Virtual size: 40KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 35KB - Virtual size: 35KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 7KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 3KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  _RDATA

  Size: 512B - Virtual size: 148B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 552KB - Virtual size: 552KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• e388ae91a8cdc3ae144f1b861aa4dd3168a4a091e74871874221fa69424f10e9.url
• fb8fc294dfeda915ae10f066eb3b85abdf47ca7f91cd94c60429b43177887cbd.url
• ff7953362998267e8554ee7880b215d42d460f12ff1cab773c9feb5c6225148b.html

  .html