Evon Executor[.]zip

resource
unpack001/Evon/Evon.dll
unpack001/Evon/Evon.exe
unpack001/Evon/FluxAPI.dll
unpack001/Evon/KrnlAPI.dll
unpack001/Evon/Oxygen API.dll

Evon Executor.zip

.zip

Evon/Evon.dll

.dll windows:6 windows x86 arch:x86

753c76543bdeec9de611821e3bd35f73

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

AcquireSRWLockExclusive

AllocConsole

AreFileApisANSI

CloseHandle

ConnectNamedPipe

CopyFileA

CreateDirectoryW

CreateEventA

CreateEventW

CreateFileA

CreateFileW

CreateNamedPipeA

CreateRemoteThread

CreateToolhelp32Snapshot

DeleteCriticalSection

DisableThreadLibraryCalls

DisconnectNamedPipe

EnterCriticalSection

FindClose

FindFirstFileExW

FindFirstFileW

FindNextFileW

FormatMessageA

FormatMessageW

FreeConsole

FreeLibrary

GetConsoleMode

GetConsoleWindow

GetCurrentConsoleFontEx

GetCurrentProcess

GetCurrentProcessId

GetCurrentThread

GetCurrentThreadId

GetEnvironmentVariableA

GetFileAttributesExW

GetFileInformationByHandleEx

GetFileSizeEx

GetFileType

GetLastError

GetLocaleInfoEx

GetModuleFileNameA

GetModuleHandleA

GetModuleHandleW

GetProcAddress

GetStdHandle

GetSystemDirectoryA

GetSystemTimeAsFileTime

GetTickCount64

GetTickCount

GlobalAlloc

GlobalFree

GlobalLock

GlobalUnlock

InitOnceBeginInitialize

InitOnceComplete

InitializeCriticalSectionAndSpinCount

InitializeCriticalSectionEx

InitializeSListHead

IsDebuggerPresent

IsProcessorFeaturePresent

K32EnumProcessModules

K32GetModuleFileNameExA

K32GetModuleInformation

LeaveCriticalSection

LoadLibraryA

LocalFree

Module32FirstW

Module32NextW

MoveFileExA

MultiByteToWideChar

OpenProcess

PeekNamedPipe

Process32First

Process32Next

QueryPerformanceCounter

QueryPerformanceFrequency

RaiseException

ReadFile

ReadProcessMemory

ReleaseSRWLockExclusive

ResetEvent

SetConsoleMode

SetConsoleTextAttribute

SetConsoleTitleA

SetCurrentConsoleFontEx

SetEvent

SetFileInformationByHandle

SetLastError

SetUnhandledExceptionFilter

Sleep

SleepEx

TerminateProcess

UnhandledExceptionFilter

VerSetConditionMask

VerifyVersionInfoW

VirtualAllocEx

WaitForMultipleObjects

WaitForSingleObject

WaitForSingleObjectEx

WakeAllConditionVariable

WideCharToMultiByte

WriteProcessMemory

LocalAlloc

LocalFree

GetModuleFileNameW

ExitProcess

LoadLibraryA

GetModuleHandleA

GetProcAddress

advapi32

CryptAcquireContextA

CryptCreateHash

CryptDestroyHash

CryptDestroyKey

CryptEncrypt

CryptGenRandom

CryptGetHashParam

CryptHashData

CryptImportKey

CryptReleaseContext

GetCurrentHwProfileA

shell32

ShellExecuteA

user32

CallWindowProcA

ClientToScreen

CloseClipboard

CreateWindowExA

DefWindowProcA

DeleteMenu

DestroyWindow

EmptyClipboard

GetCapture

GetClientRect

GetClipboardData

GetCursorPos

GetDC

GetForegroundWindow

GetSystemMenu

GetSystemMetrics

GetWindowLongA

GetWindowRect

IsChild

LoadCursorA

MapVirtualKeyA

MessageBoxA

MonitorFromPoint

MonitorFromWindow

OpenClipboard

RegisterClassExA

RegisterClipboardFormatA

ReleaseCapture

ReleaseDC

ScreenToClient

SendInput

SetCapture

SetClipboardData

SetCursor

SetCursorPos

SetProcessDPIAware

SetWindowLongA

ShowWindow

TrackMouseEvent

UnregisterClassA

keybd_event

mouse_event

dbghelp

StackWalk

SymCleanup

SymFunctionTableAccess

SymGetLineFromAddr

SymGetModuleBase

SymGetSymFromAddr

SymInitialize

UnDecorateSymbolName

gdi32

CreateRectRgn

DeleteObject

GetDeviceCaps

ws2_32

WSACleanup

WSACloseEvent

WSACreateEvent

WSAEnumNetworkEvents

WSAEventSelect

WSAGetLastError

WSAIoctl

WSAResetEvent

WSASetLastError

WSAStartup

WSAWaitForMultipleEvents

__WSAFDIsSet

accept

bind

closesocket

connect

freeaddrinfo

getaddrinfo

gethostname

getpeername

getsockname

getsockopt

htonl

htons

inet_addr

inet_ntop

inet_pton

ioctlsocket

listen

ntohs

recv

recvfrom

select

send

sendto

setsockopt

socket

msvcp140

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??0_Locinfo@std@@QAE@PBD@Z

??0_Lockit@std@@QAE@H@Z

??0facet@locale@std@@IAE@I@Z

??0ios_base@std@@IAE@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??1_Locinfo@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

??1facet@locale@std@@MAE@XZ

??1ios_base@std@@UAE@XZ

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z

?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ

?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getctype@_Locinfo@std@@QBE?AU_Ctypevec@@XZ

?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_Id_cnt@id@locale@std@@0HA

?_Incref@facet@locale@std@@UAEXXZ

?_Init@locale@std@@CAPAV_Locimp@12@_N@Z

?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

?_Random_device@std@@YAIXZ

?_Syserror_map@std@@YAPBDH@Z

?_Throw_C_error@std@@YAXH@Z

?_Throw_Cpp_error@std@@YAXH@Z

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Winerror_map@std@@YAHH@Z

?_Xbad_alloc@std@@YAXXZ

?_Xbad_function_call@std@@YAXXZ

?_Xinvalid_argument@std@@YAXPBD@Z

?_Xlength_error@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A

?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

?fail@ios_base@std@@QBE_NXZ

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ

?good@ios_base@std@@QBE_NXZ

?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

?init@?$basic_ios@DU?$char_traits@D@std@@@std@@IAEXPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@_N@Z

?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z

?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z

?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@U_Mbstatet@@@2@XZ

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?uncaught_exception@std@@YA_NXZ

?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z

?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

_Cnd_destroy_in_situ

_Cnd_do_broadcast_at_thread_exit

_Cnd_init_in_situ

_Cnd_signal

_Cnd_timedwait

_Cnd_wait

_Mtx_current_owns

_Mtx_destroy_in_situ

_Mtx_init_in_situ

_Mtx_lock

_Mtx_unlock

_Query_perf_counter

_Query_perf_frequency

_Thrd_detach

_Thrd_id

_Thrd_join

_Thrd_sleep

_Tolower

_Toupper

_Xtime_get_ticks

imm32

ImmGetContext

ImmReleaseContext

ImmSetCompositionWindow

d3dcompiler_47

D3DCompile

dwmapi

DwmEnableBlurBehindWindow

DwmGetColorizationColor

DwmIsCompositionEnabled

crypt32

CertAddCertificateContextToStore

CertCloseStore

CertCreateCertificateChainEngine

CertEnumCertificatesInStore

CertFindCertificateInStore

CertFindExtension

CertFreeCertificateChain

CertFreeCertificateChainEngine

CertFreeCertificateContext

CertGetCertificateChain

CertGetNameStringA

CertOpenStore

CryptDecodeObjectEx

CryptQueryObject

CryptStringToBinaryA

PFXImportCertStore

wldap32

ord301

ord45

ord22

ord32

ord26

ord30

ord35

ord143

ord200

ord41

ord33

ord27

ord50

ord211

ord60

ord217

ord46

ord79

normaliz

IdnToAscii

vcruntime140

_CxxThrowException

__CxxFrameHandler3

__RTDynamicCast

__std_exception_copy

__std_exception_destroy

__std_terminate

__std_type_info_destroy_list

_except_handler3

_except_handler4_common

_purecall

memchr

memcmp

memcpy

memmove

memset

strchr

strrchr

strstr

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func

__stdio_common_vfprintf

__stdio_common_vsprintf

__stdio_common_vsprintf_s

__stdio_common_vsscanf

_close

_fseeki64

_get_stream_buffer_pointers

_lseeki64

_open

_read

_wfopen

_write

fclose

feof

fflush

fgetc

fgetpos

fgets

fopen

fopen_s

fputc

fread

freopen_s

fseek

fsetpos

ftell

fwrite

puts

setvbuf

ungetc

api-ms-win-crt-runtime-l1-1-0

__sys_errlist

__sys_nerr

_beginthreadex

_cexit

_configure_narrow_argv

_crt_atexit

_errno

_execute_onexit_table

_getpid

_initialize_narrow_environment

_initialize_onexit_table

_initterm

_initterm_e

_invalid_parameter_noinfo_noreturn

_register_onexit_function

_seh_filter_dll

abort

exit

strerror

system

terminate

api-ms-win-crt-filesystem-l1-1-0

_access

_fstat64

_lock_file

_stat64

_unlink

_unlock_file

api-ms-win-crt-heap-l1-1-0

_callnewh

calloc

free

malloc

realloc

api-ms-win-crt-math-l1-1-0

_dsign

_dtest

_fdopen

acos

asin

atan

atan2

ceil

cos

cosh

exp

exp2

floor

fmod

frexp

ldexp

log

log10

log2

modf

pow

round

sin

sinh

sqrt

tan

tanh

api-ms-win-crt-time-l1-1-0

_gmtime64

_localtime64

_time64

strftime

api-ms-win-crt-locale-l1-1-0

___lc_codepage_func

localeconv

api-ms-win-crt-convert-l1-1-0

atof

atoi

strtod

strtol

strtoll

strtoul

strtoull

wcstombs

api-ms-win-crt-string-l1-1-0

_strdup

isalnum

isalpha

isspace

isupper

strcat

strcmp

strcspn

strlen

strncat

strncmp

strncpy

strnlen

strpbrk

strspn

tolower

toupper

wcslen

api-ms-win-crt-utility-l1-1-0

qsort

rand

Exports

ensure_injector

injector_call

Sections

.text
Size: - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 833KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.00cfg
Size: - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.voltbl
Size: - Virtual size: 12B

Africa0
Size: - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

Africa1
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

Africa2
Size: 5.6MB - Virtual size: 5.6MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 223B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

Evon/Evon.exe

.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\user\Desktop\Coding\projects\Evon\Evon\obj\Debug\Evon.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6.9MB - Virtual size: 6.9MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Evon/Evon.exe.WebView2/EBWebView/AutoLaunchProtocolsComponent/1.0.0.8/manifest.fingerprint

Evon/Evon.exe.WebView2/EBWebView/AutoLaunchProtocolsComponent/1.0.0.8/manifest.json

Evon/Evon.exe.WebView2/EBWebView/AutoLaunchProtocolsComponent/1.0.0.8/protocols.json

Evon/Evon.exe.WebView2/EBWebView/BrowserMetrics/BrowserMetrics-63782111-6FBC.pma

Evon/Evon.exe.WebView2/EBWebView/BrowserMetrics/BrowserMetrics-63927418-158.pma

Evon/Evon.exe.WebView2/EBWebView/CertificateRevocation/6498.2022.8.1/crl-set

Evon/Evon.exe.WebView2/EBWebView/CertificateRevocation/6498.2022.8.1/manifest.fingerprint

Evon/Evon.exe.WebView2/EBWebView/CertificateRevocation/6498.2022.8.1/manifest.json

Evon/Evon.exe.WebView2/EBWebView/Crashpad/settings.dat

Evon/Evon.exe.WebView2/EBWebView/Crashpad/throttle_store.dat

Evon/Evon.exe.WebView2/EBWebView/Default/Cache/Cache_Data/data_0

Evon/Evon.exe.WebView2/EBWebView/Default/Cache/Cache_Data/data_1

Evon/Evon.exe.WebView2/EBWebView/Default/Cache/Cache_Data/data_2

Evon/Evon.exe.WebView2/EBWebView/Default/Cache/Cache_Data/data_3

Evon/Evon.exe.WebView2/EBWebView/Default/Cache/Cache_Data/index

Evon/Evon.exe.WebView2/EBWebView/Default/Code Cache/js/index

Evon/Evon.exe.WebView2/EBWebView/Default/Code Cache/js/index-dir/the-real-index

Evon/Evon.exe.WebView2/EBWebView/Default/Code Cache/wasm/index

Evon/Evon.exe.WebView2/EBWebView/Default/Code Cache/wasm/index-dir/the-real-index

Evon/Evon.exe.WebView2/EBWebView/Default/DawnCache/data_0

Evon/Evon.exe.WebView2/EBWebView/Default/DawnCache/data_1

Evon/Evon.exe.WebView2/EBWebView/Default/DawnCache/data_2

Evon/Evon.exe.WebView2/EBWebView/Default/DawnCache/data_3

Evon/Evon.exe.WebView2/EBWebView/Default/DawnCache/index

Evon/Evon.exe.WebView2/EBWebView/Default/EdgeCoupons/coupons_data.db/000003.log

Evon/Evon.exe.WebView2/EBWebView/Default/EdgeCoupons/coupons_data.db/CURRENT

Evon/Evon.exe.WebView2/EBWebView/Default/EdgeCoupons/coupons_data.db/LOG

Evon/Evon.exe.WebView2/EBWebView/Default/EdgeCoupons/coupons_data.db/MANIFEST-000001

Evon/Evon.exe.WebView2/EBWebView/Default/Extension Scripts/000003.log

Evon/Evon.exe.WebView2/EBWebView/Default/Extension Scripts/CURRENT

Evon/Evon.exe.WebView2/EBWebView/Default/Extension Scripts/LOG

Evon/Evon.exe.WebView2/EBWebView/Default/Extension Scripts/MANIFEST-000001

Evon/Evon.exe.WebView2/EBWebView/Default/Extension State/000003.log

Evon/Evon.exe.WebView2/EBWebView/Default/Extension State/CURRENT

Evon/Evon.exe.WebView2/EBWebView/Default/Extension State/LOG

Evon/Evon.exe.WebView2/EBWebView/Default/Extension State/LOG.old

Evon/Evon.exe.WebView2/EBWebView/Default/Extension State/MANIFEST-000001

Evon/Evon.exe.WebView2/EBWebView/Default/ExtensionActivityComp

Evon/Evon.exe.WebView2/EBWebView/Default/ExtensionActivityEdge

Evon/Evon.exe.WebView2/EBWebView/Default/Favicons

Evon/Evon.exe.WebView2/EBWebView/Default/GPUCache/data_0

Evon/Evon.exe.WebView2/EBWebView/Default/GPUCache/data_1

Evon/Evon.exe.WebView2/EBWebView/Default/GPUCache/data_2

Evon/Evon.exe.WebView2/EBWebView/Default/GPUCache/data_3

Evon/Evon.exe.WebView2/EBWebView/Default/GPUCache/index

Evon/Evon.exe.WebView2/EBWebView/Default/History

Evon/Evon.exe.WebView2/EBWebView/Default/Local Storage/leveldb/CURRENT

Evon/Evon.exe.WebView2/EBWebView/Default/Local Storage/leveldb/LOG

Evon/Evon.exe.WebView2/EBWebView/Default/Local Storage/leveldb/LOG.old

Evon/Evon.exe.WebView2/EBWebView/Default/Local Storage/leveldb/MANIFEST-000001

Evon/Evon.exe.WebView2/EBWebView/Default/Login Data

Evon/Evon.exe.WebView2/EBWebView/Default/Network Action Predictor

Evon/Evon.exe.WebView2/EBWebView/Default/Network/Cookies

Evon/Evon.exe.WebView2/EBWebView/Default/Network/Network Persistent State

Evon/Evon.exe.WebView2/EBWebView/Default/Network/Reporting and NEL

Evon/Evon.exe.WebView2/EBWebView/Default/Network/TransportSecurity

Evon/Evon.exe.WebView2/EBWebView/Default/Preferences

Evon/Evon.exe.WebView2/EBWebView/Default/PreferredApps

Evon/Evon.exe.WebView2/EBWebView/Default/README

Evon/Evon.exe.WebView2/EBWebView/Default/Safe Browsing Network/Safe Browsing Cookies

Evon/Evon.exe.WebView2/EBWebView/Default/Secure Preferences

Evon/Evon.exe.WebView2/EBWebView/Default/Session Storage/000003.log

Evon/Evon.exe.WebView2/EBWebView/Default/Session Storage/CURRENT

Evon/Evon.exe.WebView2/EBWebView/Default/Session Storage/LOG

Evon/Evon.exe.WebView2/EBWebView/Default/Session Storage/LOG.old

Evon/Evon.exe.WebView2/EBWebView/Default/Session Storage/MANIFEST-000001

Evon/Evon.exe.WebView2/EBWebView/Default/Site Characteristics Database/000003.log

Evon/Evon.exe.WebView2/EBWebView/Default/Site Characteristics Database/CURRENT

Evon/Evon.exe.WebView2/EBWebView/Default/Site Characteristics Database/LOG

Evon/Evon.exe.WebView2/EBWebView/Default/Site Characteristics Database/LOG.old

Evon/Evon.exe.WebView2/EBWebView/Default/Site Characteristics Database/MANIFEST-000001

Evon/Evon.exe.WebView2/EBWebView/Default/Sync Data/LevelDB/000003.log

Evon/Evon.exe.WebView2/EBWebView/Default/Sync Data/LevelDB/CURRENT

Evon/Evon.exe.WebView2/EBWebView/Default/Sync Data/LevelDB/LOG

Evon/Evon.exe.WebView2/EBWebView/Default/Sync Data/LevelDB/LOG.old

Evon/Evon.exe.WebView2/EBWebView/Default/Sync Data/LevelDB/MANIFEST-000001

Evon/Evon.exe.WebView2/EBWebView/Default/Top Sites

Evon/Evon.exe.WebView2/EBWebView/Default/Visited Links

Evon/Evon.exe.WebView2/EBWebView/Default/Web Data

Evon/Evon.exe.WebView2/EBWebView/Default/heavy_ad_intervention_opt_out.db

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/000003.log

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/CURRENT

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/LOG

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/LOG.old

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/MANIFEST-000001

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/metadata/000003.log

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/metadata/CURRENT

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/metadata/LOG

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/metadata/LOG.old

Evon/Evon.exe.WebView2/EBWebView/Default/shared_proto_db/metadata/MANIFEST-000001

Evon/Evon.exe.WebView2/EBWebView/GrShaderCache/data_0

Evon/Evon.exe.WebView2/EBWebView/GrShaderCache/data_1

Evon/Evon.exe.WebView2/EBWebView/GrShaderCache/data_2

Evon/Evon.exe.WebView2/EBWebView/GrShaderCache/data_3

Evon/Evon.exe.WebView2/EBWebView/GrShaderCache/index

Evon/Evon.exe.WebView2/EBWebView/Last Version

Evon/Evon.exe.WebView2/EBWebView/Local State

Evon/Evon.exe.WebView2/EBWebView/OriginTrials/0.0.1.4/manifest.fingerprint

Evon/Evon.exe.WebView2/EBWebView/OriginTrials/0.0.1.4/manifest.json

Evon/Evon.exe.WebView2/EBWebView/ShaderCache/data_0

Evon/Evon.exe.WebView2/EBWebView/ShaderCache/data_1

Evon/Evon.exe.WebView2/EBWebView/ShaderCache/data_2

Evon/Evon.exe.WebView2/EBWebView/ShaderCache/data_3

Evon/Evon.exe.WebView2/EBWebView/ShaderCache/index

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/customSettings

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/customSettings_F95BA787499AB4FA9EFFF472CE383A14

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/customSynchronousLookupUris

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/customSynchronousLookupUris_0

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/edgeSettings

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/edgeSettings_2.0-58b01f6ff6de90741656860514678121ca132db3b73265cc71112056741dc049

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/synchronousLookupUris

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/synchronousLookupUris_638061375935212091

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/topTraffic

Evon/Evon.exe.WebView2/EBWebView/SmartScreen/RemoteData/topTraffic_638004170464094982

Evon/Evon.exe.WebView2/EBWebView/Speech Recognition/1.15.0.1/Microsoft.CognitiveServices.Speech.core.dll

.dll windows:6 windows x64 arch:x64

f51f0d794c7fcc93503306a9cd9ba55d

Code Sign

33:00:00:01:88:af:52:d6:b9:92:6d:e8:f9:00:00:00:00:01:88
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/03/2020, 18:39

Not After

03/03/2021, 18:39

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:02:55:18:1d:a4:2e:e0:86:fc:15:00:00:00:00:02:55
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/09/2021, 18:33

Not After

01/09/2022, 18:33

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

e0:a4:96:c5:ae:6e:90:5e:aa:f2:84:f3:f4:61:20:56:3c:57:4d:40:37:a2:5c:f3:95:41:db:f3:30:c5:61:6d
Signer

Actual PE Digest

e0:a4:96:c5:ae:6e:90:5e:aa:f2:84:f3:f4:61:20:56:3c:57:4d:40:37:a2:5c:f3:95:41:db:f3:30:c5:61:6d

Digest Algorithm

sha256

PE Digest Matches

true

e0:a4:96:c5:ae:6e:90:5e:aa:f2:84:f3:f4:61:20:56:3c:57:4d:40:37:a2:5c:f3:95:41:db:f3:30:c5:61:6d
Signer

Actual PE Digest

e0:a4:96:c5:ae:6e:90:5e:aa:f2:84:f3:f4:61:20:56:3c:57:4d:40:37:a2:5c:f3:95:41:db:f3:30:c5:61:6d

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

D:\a\1\s\build\bin\Release\Microsoft.CognitiveServices.Speech.core.pdb

Imports

crypt32

CertFreeCertificateContext

CryptDecodeObjectEx

CryptStringToBinaryA

CertSetCertificateContextProperty

CertCreateCertificateContext

ws2_32

WSAStartup

WSAIoctl

recv

WSAGetLastError

freeaddrinfo

ioctlsocket

connect

closesocket

socket

getaddrinfo

send

secur32

EncryptMessage

AcquireCredentialsHandleA

DeleteSecurityContext

InitializeSecurityContextA

FreeCredentialsHandle

DecryptMessage

QueryContextAttributesA

advapi32

CryptAcquireContextA

EventRegister

EventSetInformation

EventWriteTransfer

CryptReleaseContext

CryptDestroyKey

EventUnregister

CryptImportKey

ncrypt

NCryptOpenStorageProvider

NCryptFreeObject

NCryptImportKey

dbghelp

SymFromAddr

SymInitialize

SymCleanup

kernel32

LeaveCriticalSection

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

InitializeSListHead

CreateEventW

GetModuleHandleW

RtlCaptureContext

GetSystemTime

GetModuleFileNameA

GetSystemTimeAsFileTime

GetCurrentThreadId

GetCurrentProcessId

InitOnceBeginInitialize

InitOnceComplete

AcquireSRWLockShared

AcquireSRWLockExclusive

ReleaseSRWLockShared

EnterCriticalSection

WaitForSingleObjectEx

QueryPerformanceCounter

IsDebuggerPresent

IsProcessorFeaturePresent

TerminateProcess

SetUnhandledExceptionFilter

UnhandledExceptionFilter

RtlVirtualUnwind

VerSetConditionMask

VerifyVersionInfoW

GetCurrentProcess

FormatMessageW

GetLastError

LoadLibraryA

GetProcAddress

WaitForMultipleObjects

WaitForSingleObject

Sleep

SetEvent

CloseHandle

CreateThread

ResetEvent

CreateEventExA

CreateEventA

LocalFree

FormatMessageA

GetModuleHandleA

RtlLookupFunctionEntry

ReleaseSRWLockExclusive

msvcp140

_Mtx_unlock

?_Xbad_alloc@std@@YAXXZ

?_Xbad_function_call@std@@YAXXZ

?_Xlength_error@std@@YAXPEBD@Z

?_Syserror_map@std@@YAPEBDH@Z

_Mtx_destroy_in_situ

_Mtx_init_in_situ

_Mtx_current_owns

_Query_perf_frequency

?_Throw_future_error@std@@YAXAEBVerror_code@1@@Z

?_Throw_Cpp_error@std@@YAXH@Z

_Cnd_timedwait

_Query_perf_counter

_Xtime_get_ticks

?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z

?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z

?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A

??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z

??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ

??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z

?out@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z

?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z

?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ

?_Incref@facet@locale@std@@UEAAXXZ

??Bid@locale@std@@QEAA_KXZ

?_Xout_of_range@std@@YAXPEBD@Z

??1_Lockit@std@@QEAA@XZ

??0_Lockit@std@@QEAA@H@Z

?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ

?classic@locale@std@@SAAEBV12@XZ

?id@?$ctype@D@std@@2V0locale@2@A

?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z

?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

?toupper@?$ctype@D@std@@QEBADD@Z

?tolower@?$ctype@D@std@@QEBADD@Z

?in@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z

?uncaught_exception@std@@YA_NXZ

?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ

?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z

?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ

?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

?_Throw_C_error@std@@YAXH@Z

?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z

?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z

?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z

?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ

?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z

??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

?width@ios_base@std@@QEAA_J_J@Z

?width@ios_base@std@@QEBA_JXZ

?setf@ios_base@std@@QEAAHHH@Z

?flags@ios_base@std@@QEBAHXZ

?good@ios_base@std@@QEBA_NXZ

?_Xinvalid_argument@std@@YAXPEBD@Z

?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z

?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z

_Thrd_id

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z

_Thrd_yield

?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z

_Thrd_join

?__ExceptionPtrDestroy@@YAXPEAX@Z

?__ExceptionPtrCopy@@YAXPEAXPEBX@Z

_Cnd_unregister_at_thread_exit

_Cnd_destroy_in_situ

_Cnd_broadcast

_Cnd_register_at_thread_exit

?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z

?__ExceptionPtrToBool@@YA_NPEBX@Z

_Cnd_wait

?__ExceptionPtrCopyException@@YAXPEAXPEBX1@Z

?__ExceptionPtrCreate@@YAXPEAX@Z

_Cnd_init_in_situ

?__ExceptionPtrAssign@@YAXPEAXPEBX@Z

_Cnd_do_broadcast_at_thread_exit

_Thrd_sleep

?__ExceptionPtrRethrow@@YAXPEBX@Z

?__ExceptionPtrCurrentException@@YAXPEAX@Z

?_ReportUnobservedException@details@Concurrency@@YAXXZ

?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ

?_Reset@_ContextCallback@details@Concurrency@@AEAAXXZ

??0task_continuation_context@Concurrency@@AEAA@XZ

?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ

?_Release_chore@details@Concurrency@@YAXPEAU_Threadpool_chore@12@@Z

?_Schedule_chore@details@Concurrency@@YAHPEAU_Threadpool_chore@12@@Z

?_CallInContext@_ContextCallback@details@Concurrency@@QEBAXV?$function@$$A6AXXZ@std@@_N@Z

?_Capture@_ContextCallback@details@Concurrency@@AEAAXXZ

?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QEAAX_N@Z

?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QEAAXXZ

?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ

?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ

?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QEAAXXZ

?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ

_Thrd_detach

?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A

?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z

?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ

?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAPEAD0PEAH001@Z

?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z

?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z

?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ

?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ

?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ

?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z

?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ

?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z

?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z

?gcount@?$basic_istream@DU?$char_traits@D@std@@@std@@QEBA_JXZ

?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z

?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ

?eof@ios_base@std@@QEBA_NXZ

??7ios_base@std@@QEBA_NXZ

??Bios_base@std@@QEBA_NXZ

?always_noconv@codecvt_base@std@@QEBA_NXZ

_Cnd_signal

??1_Locinfo@std@@QEAA@XZ

?c_str@?$_Yarn@D@std@@QEBAPEBDXZ

??0_Locinfo@std@@QEAA@PEBD@Z

??1facet@locale@std@@MEAA@XZ

??0facet@locale@std@@IEAA@_K@Z

?id@?$collate@D@std@@2V0locale@2@A

_Strxfrm

_Strcoll

?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ

?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z

?is@?$ctype@D@std@@QEBA_NFD@Z

?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z

_Mtx_lock

?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z

?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ

?_Xruntime_error@std@@YAXPEBD@Z

?_Makeloc@_Locimp@locale@std@@CAPEAV123@AEBV_Locinfo@3@HPEAV123@PEBV23@@Z

?_New_Locimp@_Locimp@locale@std@@CAPEAV123@_N@Z

?id@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A

?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z

?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z

?get@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEBA?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AEAVios_base@2@AEAHPEAUtm@@PEBD4@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ

?getloc@ios_base@std@@QEBA?AVlocale@2@XZ

?fail@ios_base@std@@QEBA_NXZ

?_Getname@_Locinfo@std@@QEBAPEBDXZ

??0_Locinfo@std@@QEAA@HPEBD@Z

?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__std_exception_destroy

__std_exception_copy

_CxxThrowException

strrchr

memmove

__std_type_info_compare

memset

_purecall

memcmp

memchr

strstr

strchr

__std_type_info_destroy_list

__C_specific_handler

__std_type_info_name

__current_exception_context

memcpy

__current_exception

__RTDynamicCast

api-ms-win-crt-string-l1-1-0

toupper

strncpy_s

isupper

tolower

_strnicmp

_stricmp

isspace

strnlen

strcmp

strncpy

strtok

strncmp

strcpy_s

strcpy

strtok_s

wcslen

strlen

api-ms-win-crt-runtime-l1-1-0

_execute_onexit_table

_crt_atexit

_initialize_onexit_table

_initterm

_initterm_e

_initialize_narrow_environment

_configure_narrow_argv

_register_onexit_function

_seh_filter_dll

_beginthreadex

_errno

terminate

abort

_cexit

_invalid_parameter_noinfo

_invalid_parameter_noinfo_noreturn

api-ms-win-crt-heap-l1-1-0

malloc

calloc

_callnewh

free

realloc

api-ms-win-crt-math-l1-1-0

pow

_dtest

sqrt

ceilf

_dsign

ceil

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func

__stdio_common_vfprintf

__stdio_common_vsprintf

__stdio_common_vsprintf_s

_get_stream_buffer_pointers

_fseeki64

fread

fflush

fclose

fopen_s

_fsopen

fputc

fgetc

fwrite

fgetpos

setvbuf

ungetc

fsetpos

api-ms-win-crt-convert-l1-1-0

strtoul

strtoll

strtoull

strtol

strtod

atoi

api-ms-win-crt-locale-l1-1-0

localeconv

api-ms-win-crt-utility-l1-1-0

rand

llabs

api-ms-win-crt-time-l1-1-0

_ctime64

_time64

_mkgmtime64

_gmtime64_s

strftime

api-ms-win-crt-filesystem-l1-1-0

_lock_file

_unlock_file

ole32

CoCreateInstance

CoInitializeEx

CoUninitialize

PropVariantClear

rpcrt4

UuidToStringA

UuidCreate

RpcStringFreeA

Exports

CreateModuleObject

GetModuleObject

add_source_lang_config_to_auto_detect_source_lang_config

audio_config_create_audio_input_from_a_microphone

audio_config_create_audio_input_from_default_microphone

audio_config_create_audio_input_from_stream

audio_config_create_audio_input_from_wav_file_name

audio_config_create_audio_output_from_a_speaker

audio_config_create_audio_output_from_default_speaker

audio_config_create_audio_output_from_stream

audio_config_create_audio_output_from_wav_file_name

audio_config_create_pull_audio_input_stream

audio_config_create_push_audio_input_stream

audio_config_get_property_bag

audio_config_is_handle_valid

audio_config_release

audio_data_stream_can_read_data

audio_data_stream_can_read_data_from_position

audio_data_stream_create_from_file

audio_data_stream_create_from_keyword_result

audio_data_stream_create_from_result

audio_data_stream_detach_input

audio_data_stream_get_canceled_error_code

audio_data_stream_get_position

audio_data_stream_get_property_bag

audio_data_stream_get_reason_canceled

audio_data_stream_get_status

audio_data_stream_is_handle_valid

audio_data_stream_read

audio_data_stream_read_from_position

audio_data_stream_release

audio_data_stream_save_to_wave_file

audio_data_stream_set_position

audio_stream_create_pull_audio_input_stream

audio_stream_create_pull_audio_output_stream

audio_stream_create_push_audio_input_stream

audio_stream_create_push_audio_output_stream

audio_stream_format_create_from_compressed_format

audio_stream_format_create_from_default_input

audio_stream_format_create_from_default_output

audio_stream_format_create_from_waveformat_pcm

audio_stream_format_is_handle_valid

audio_stream_format_release

audio_stream_is_handle_valid

audio_stream_release

auto_detect_source_lang_config_get_property_bag

auto_detect_source_lang_config_is_handle_valid

auto_detect_source_lang_config_release

bot_framework_config_from_authorization_token

bot_framework_config_from_subscription

class_language_model_assign_class

class_language_model_from_storage_id

connection_async_handle_release

connection_close

connection_connected_set_callback

connection_disconnected_set_callback

connection_from_conversation_translator

connection_from_dialog_service_connector

connection_from_recognizer

connection_get_property_bag

connection_handle_is_valid

connection_handle_release

connection_message_get_data

connection_message_get_data_size

connection_message_get_property_bag

connection_message_handle_is_valid

connection_message_handle_release

connection_message_received_event_get_message

connection_message_received_event_handle_is_valid

connection_message_received_event_handle_release

connection_message_received_set_callback

connection_open

connection_send_message

connection_send_message_async

connection_send_message_data

connection_send_message_data_async

connection_send_message_wait_for

connection_set_message_property

conversation_create_from_config

conversation_delete_conversation

conversation_end_conversation

conversation_get_conversation_id

conversation_get_property_bag

conversation_lock_conversation

conversation_mute_all_participants

conversation_mute_participant

conversation_release_handle

conversation_start_conversation

conversation_transcription_result_get_user_id

conversation_transcription_result_get_utterance_id

conversation_translator_canceled_set_callback

conversation_translator_connection_connected_set_callback

conversation_translator_connection_disconnected_set_callback

conversation_translator_conversation_expiration_set_callback

conversation_translator_create_from_config

conversation_translator_event_get_expiration_time

conversation_translator_event_get_participant_changed_at_index

conversation_translator_event_get_participant_changed_reason

conversation_translator_event_handle_is_valid

conversation_translator_event_handle_release

conversation_translator_get_property_bag

conversation_translator_handle_is_valid

conversation_translator_handle_release

conversation_translator_join

conversation_translator_join_with_id

conversation_translator_leave

conversation_translator_participant_get_avatar

conversation_translator_participant_get_displayname

conversation_translator_participant_get_id

conversation_translator_participant_get_is_host

conversation_translator_participant_get_is_muted

conversation_translator_participant_get_is_using_tts

conversation_translator_participants_changed_set_callback

conversation_translator_result_get_original_lang

conversation_translator_send_text_message

conversation_translator_session_started_set_callback

conversation_translator_session_stopped_set_callback

conversation_translator_set_authorization_token

conversation_translator_start_transcribing

conversation_translator_stop_transcribing

conversation_translator_text_message_recevied_set_callback

conversation_translator_transcribed_set_callback

conversation_translator_transcribing_set_callback

conversation_unlock_conversation

conversation_unmute_all_participants

conversation_unmute_participant

conversation_update_participant

conversation_update_participant_by_user

conversation_update_participant_by_user_id

create_auto_detect_source_lang_config_from_languages

create_auto_detect_source_lang_config_from_open_range

create_auto_detect_source_lang_config_from_source_lang_config

create_pronunciation_assessment_config

create_pronunciation_assessment_config_from_json

create_voice_profile

create_voice_profile_client_from_config

create_voice_profile_from_id_and_type

custom_commands_config_from_authorization_token

custom_commands_config_from_subscription

delete_voice_profile

diagnostics_log_apply_properties

diagnostics_log_format_message

diagnostics_log_memory_dump

diagnostics_log_memory_dump_to_stderr

diagnostics_log_memory_get_line

diagnostics_log_memory_get_line_num_newest

diagnostics_log_memory_get_line_num_oldest

diagnostics_log_memory_start_logging

diagnostics_log_memory_stop_logging

diagnostics_log_start_logging

diagnostics_log_stop_logging

diagnostics_log_trace_message

diagnostics_log_trace_message2

diagnostics_log_trace_string

diagnostics_logmessage_set_callback

diagnostics_logmessage_set_filters

dialog_service_connector_activity_received_event_get_activity

dialog_service_connector_activity_received_event_get_activity_size

dialog_service_connector_activity_received_event_get_audio

dialog_service_connector_activity_received_event_handle_is_valid

dialog_service_connector_activity_received_event_has_audio

dialog_service_connector_activity_received_event_release

dialog_service_connector_activity_received_set_callback

dialog_service_connector_async_handle_is_valid

dialog_service_connector_async_handle_release

dialog_service_connector_async_reco_result_handle_is_valid

dialog_service_connector_async_reco_result_handle_release

dialog_service_connector_async_string_handle_is_valid

dialog_service_connector_async_string_handle_release

dialog_service_connector_async_void_handle_is_valid

dialog_service_connector_async_void_handle_release

dialog_service_connector_canceled_set_callback

dialog_service_connector_connect

dialog_service_connector_connect_async

dialog_service_connector_connect_async_wait_for

dialog_service_connector_create_dialog_service_connector_from_config

dialog_service_connector_disconnect

dialog_service_connector_disconnect_async

dialog_service_connector_disconnect_async_wait_for

dialog_service_connector_get_property_bag

dialog_service_connector_handle_is_valid

dialog_service_connector_handle_release

dialog_service_connector_listen_once

dialog_service_connector_listen_once_async

dialog_service_connector_listen_once_async_wait_for

dialog_service_connector_recognized_set_callback

dialog_service_connector_recognizing_set_callback

dialog_service_connector_send_activity

dialog_service_connector_send_activity_async

dialog_service_connector_send_activity_async_wait_for

dialog_service_connector_session_started_set_callback

dialog_service_connector_session_stopped_set_callback

dialog_service_connector_start_keyword_recognition

dialog_service_connector_start_keyword_recognition_async

dialog_service_connector_start_keyword_recognition_async_wait_for

dialog_service_connector_stop_keyword_recognition

dialog_service_connector_stop_keyword_recognition_async

dialog_service_connector_stop_keyword_recognition_async_wait_for

dialog_service_connector_stop_listening

dialog_service_connector_stop_listening_async

dialog_service_connector_synthesizing_audio_set_callback

dialog_service_connector_turn_status_received_get_conversation_id

dialog_service_connector_turn_status_received_get_conversation_id_size

dialog_service_connector_turn_status_received_get_interaction_id

dialog_service_connector_turn_status_received_get_interaction_id_size

dialog_service_connector_turn_status_received_get_status

dialog_service_connector_turn_status_received_handle_is_valid

dialog_service_connector_turn_status_received_release

dialog_service_connector_turn_status_received_set_callback

enroll_voice_profile

error_get_call_stack

error_get_error_code

error_get_message

error_release

get_voice_profiles

grammar_create_from_storage_id

grammar_handle_is_valid

grammar_handle_release

grammar_list_add_grammar

grammar_list_from_recognizer

grammar_list_set_recognition_factor

grammar_phrase_create_from_text

grammar_phrase_handle_is_valid

grammar_phrase_handle_release

intent_recognizer_add_intent

intent_result_get_intent_id

intent_trigger_create_from_language_understanding_model

intent_trigger_create_from_phrase

intent_trigger_handle_is_valid

intent_trigger_handle_release

keyword_recognition_model_create_from_file

keyword_recognition_model_handle_is_valid

keyword_recognition_model_handle_release

language_understanding_model__handle_release

language_understanding_model_create_from_app_id

language_understanding_model_create_from_subscription

language_understanding_model_create_from_uri

language_understanding_model_handle_is_valid

participant_create_handle

participant_get_property_bag

participant_release_handle

participant_set_preferred_langugage

participant_set_voice_signature

phrase_list_grammar_add_phrase

phrase_list_grammar_clear

phrase_list_grammar_from_recognizer_by_name

pronunciation_assessment_config_apply_to_recognizer

pronunciation_assessment_config_get_property_bag

pronunciation_assessment_config_is_handle_valid

pronunciation_assessment_config_release

pronunciation_assessment_config_to_json

property_bag_copy

property_bag_free_string

property_bag_get_string

property_bag_is_valid

property_bag_release

property_bag_set_string

pull_audio_input_stream_set_callbacks

pull_audio_input_stream_set_getproperty_callback

pull_audio_output_stream_read

push_audio_input_stream_close

push_audio_input_stream_set_property_by_id

push_audio_input_stream_set_property_by_name

push_audio_input_stream_write

push_audio_output_stream_set_callbacks

recognizer_async_handle_is_valid

recognizer_async_handle_release

recognizer_canceled_set_callback

recognizer_create_conversation_transcriber_from_config

recognizer_create_intent_recognizer_from_config

recognizer_create_keyword_recognizer_from_audio_config

recognizer_create_speaker_recognizer_from_config

recognizer_create_speech_recognizer_from_auto_detect_source_lang_config

recognizer_create_speech_recognizer_from_config

recognizer_create_speech_recognizer_from_source_lang_config

recognizer_create_translation_recognizer_from_config

recognizer_disable

recognizer_enable

recognizer_event_handle_is_valid

recognizer_event_handle_release

recognizer_get_property_bag

recognizer_handle_is_valid

recognizer_handle_release

recognizer_is_enabled

recognizer_join_conversation

recognizer_leave_conversation

recognizer_recognition_event_get_offset

recognizer_recognition_event_get_result

recognizer_recognize_keyword_once

recognizer_recognize_keyword_once_async

recognizer_recognize_keyword_once_async_wait_for

recognizer_recognize_once

recognizer_recognize_once_async

recognizer_recognize_once_async_wait_for

recognizer_recognized_set_callback

recognizer_recognizing_set_callback

recognizer_result_handle_is_valid

recognizer_result_handle_release

recognizer_session_event_get_session_id

recognizer_session_started_set_callback

recognizer_session_stopped_set_callback

recognizer_speech_end_detected_set_callback

recognizer_speech_start_detected_set_callback

recognizer_start_continuous_recognition

recognizer_start_continuous_recognition_async

recognizer_start_continuous_recognition_async_wait_for

recognizer_start_keyword_recognition

recognizer_start_keyword_recognition_async

recognizer_start_keyword_recognition_async_wait_for

recognizer_stop_continuous_recognition

recognizer_stop_continuous_recognition_async

recognizer_stop_continuous_recognition_async_wait_for

recognizer_stop_keyword_recognition

recognizer_stop_keyword_recognition_async

recognizer_stop_keyword_recognition_async_wait_for

reset_voice_profile

result_get_canceled_error_code

result_get_duration

result_get_no_match_reason

result_get_offset

result_get_property_bag

result_get_reason

result_get_reason_canceled

result_get_result_id

result_get_text

session_from_recognizer

session_get_property_bag

session_handle_is_valid

session_handle_release

source_lang_config_from_language

source_lang_config_from_language_and_endpointId

source_lang_config_get_property_bag

source_lang_config_is_handle_valid

source_lang_config_release

speaker_identification_model_add_profile

speaker_identification_model_create

speaker_identification_model_release_handle

speaker_recognizer_get_property_bag

speaker_recognizer_identify

speaker_recognizer_release_handle

speaker_recognizer_verify

speaker_verification_model_create

speaker_verification_model_release_handle

speech_config_from_authorization_token

speech_config_from_authorization_token_internal

speech_config_from_endpoint

speech_config_from_endpoint_internal

speech_config_from_host

speech_config_from_host_internal

speech_config_from_subscription

speech_config_from_subscription_internal

speech_config_get_property_bag

speech_config_is_handle_valid

speech_config_release

speech_config_set_audio_output_format

speech_config_set_profanity

speech_config_set_service_property

speech_translation_config_add_target_language

speech_translation_config_from_authorization_token

speech_translation_config_from_endpoint

speech_translation_config_from_host

speech_translation_config_from_subscription

speech_translation_config_remove_target_language

speechapi_async_handle_release

speechapi_async_wait_for

synth_result_get_audio_data

synth_result_get_audio_format

synth_result_get_audio_length

synth_result_get_canceled_error_code

synth_result_get_property_bag

synth_result_get_reason

synth_result_get_reason_canceled

synth_result_get_result_id

synthesizer_async_handle_is_valid

synthesizer_async_handle_release

synthesizer_canceled_set_callback

synthesizer_completed_set_callback

synthesizer_create_speech_synthesizer_from_auto_detect_source_lang_config

synthesizer_create_speech_synthesizer_from_config

synthesizer_disable

synthesizer_enable

synthesizer_event_handle_is_valid

synthesizer_event_handle_release

synthesizer_get_property_bag

synthesizer_handle_is_valid

synthesizer_handle_release

synthesizer_is_enabled

synthesizer_result_handle_is_valid

synthesizer_result_handle_release

synthesizer_speak_async_wait_for

synthesizer_speak_ssml

synthesizer_speak_ssml_async

synthesizer_speak_text

synthesizer_speak_text_async

synthesizer_start_speaking_ssml

synthesizer_start_speaking_ssml_async

synthesizer_start_speaking_text

synthesizer_start_speaking_text_async

synthesizer_started_set_callback

synthesizer_stop_speaking

synthesizer_stop_speaking_async

synthesizer_stop_speaking_async_wait_for

synthesizer_synthesis_event_get_result

synthesizer_synthesizing_set_callback

synthesizer_word_boundary_event_get_values

synthesizer_word_boundary_set_callback

translation_synthesis_result_get_audio_data

translation_text_result_get_translation_text_buffer_header

translator_add_target_language

translator_remove_target_language

translator_synthesizing_audio_set_callback

user_create_from_id

user_get_id

user_release_handle

voice_profile_client_get_property_bag

voice_profile_client_release_handle

voice_profile_get_id

voice_profile_release_handle

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 673KB - Virtual size: 673KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 171KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Evon/Evon.exe.WebView2/EBWebView/Speech Recognition/1.15.0.1/manifest.fingerprint

Evon/Evon.exe.WebView2/EBWebView/Speech Recognition/1.15.0.1/manifest.json

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Indexed Rules/35/10.34.0.30/LICENSE

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Indexed Rules/35/10.34.0.30/Ruleset Data

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/Filtering Rules

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/Filtering Rules-AA

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/LICENSE

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/Part-DE

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/Part-ES

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/Part-FR

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/Part-IT

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/Part-NL

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/Part-RU

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/Part-ZH

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/adblock_snippet.js

.js

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/manifest.fingerprint

Evon/Evon.exe.WebView2/EBWebView/Subresource Filter/Unindexed Rules/10.34.0.30/manifest.json

Evon/Evon.exe.WebView2/EBWebView/Variations

Evon/Evon.exe.WebView2/EBWebView/ZxcvbnData/3.0.0.0/english_wikipedia.txt

.vbs

Evon/Evon.exe.WebView2/EBWebView/ZxcvbnData/3.0.0.0/female_names.txt

Evon/Evon.exe.WebView2/EBWebView/ZxcvbnData/3.0.0.0/male_names.txt

Evon/Evon.exe.WebView2/EBWebView/ZxcvbnData/3.0.0.0/manifest.fingerprint

Evon/Evon.exe.WebView2/EBWebView/ZxcvbnData/3.0.0.0/manifest.json

Evon/Evon.exe.WebView2/EBWebView/ZxcvbnData/3.0.0.0/passwords.txt

Evon/Evon.exe.WebView2/EBWebView/ZxcvbnData/3.0.0.0/surnames.txt

Evon/Evon.exe.WebView2/EBWebView/ZxcvbnData/3.0.0.0/us_tv_and_film.txt

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/_metadata/verified_contents.json

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-as.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-be.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-bg.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-bn.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-cu.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-cy.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-da.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-de-1901.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-de-1996.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-de-ch-1901.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-en-gb.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-en-us.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-es.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-et.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-eu.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-fr.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-ga.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-gu.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-hi.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-hr.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-hu.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-hy.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-kn.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-la.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-ml.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-mn-cyrl.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-mr.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-nb.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-nn.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-or.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-pa.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-pt.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-sl.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-ta.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-te.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-tk.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/hyph-und-ethi.hyb

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/manifest.fingerprint

Evon/Evon.exe.WebView2/EBWebView/hyphen-data/101.0.4906.0/manifest.json

Evon/FluxAPI.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

C:\Users\ShowerHead\source\repos\FluxAPI\FluxAPI\obj\Release\FluxAPI.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Evon/I NEED HELP WITH EVON.txt

Evon/KrnlAPI.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

C:\Users\_King_\source\repos\KrnlAPI\KrnlAPI\obj\Release\KrnlAPI.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Evon/Oxygen API.dll

.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

C:\Users\Jack\source\repos\Oxygen API\Oxygen\obj\Release\Oxygen API.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 289KB - Virtual size: 289KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Evon/runtimes/win-arm64/native/WebView2Loader.dll

Evon/runtimes/win-x64/native/WebView2Loader.dll

.dll windows:5 windows x64 arch:x64

3fd78a8f50b85b627af2d0fc485b5e97

Code Sign

33:00:00:01:e2:f1:7d:92:02:0e:49:f8:7f:00:00:00:00:01:e2
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

60:24:32:f3:3a:70:18:d4:8c:50:91:69:43:29:23:5a:67:c9:a5:27:b2:38:7b:98:bd:22:d3:1d:2e:74:b3:f4
Signer

Actual PE Digest

60:24:32:f3:3a:70:18:d4:8c:50:91:69:43:29:23:5a:67:c9:a5:27:b2:38:7b:98:bd:22:d3:1d:2e:74:b3:f4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_DLL

PDB Paths

WebView2Loader.dll.pdb

Imports

kernel32

CloseHandle

CreateEventW

CreateFileW

DeleteCriticalSection

EncodePointer

EnterCriticalSection

ExitProcess

FindClose

FindFirstFileExW

FindNextFileW

FlushFileBuffers

FreeEnvironmentStringsW

FreeLibrary

GetACP

GetCPInfo

GetCommandLineA

GetCommandLineW

GetConsoleMode

GetConsoleOutputCP

GetCurrentProcess

GetCurrentProcessId

GetCurrentThreadId

GetEnvironmentStringsW

GetEnvironmentVariableW

GetFileAttributesW

GetFileType

GetLastError

GetModuleFileNameW

GetModuleHandleExW

GetModuleHandleW

GetOEMCP

GetProcAddress

GetProcessHeap

GetStartupInfoW

GetStdHandle

GetStringTypeW

GetSystemInfo

GetSystemTimeAsFileTime

HeapAlloc

HeapFree

HeapReAlloc

HeapSize

InitializeCriticalSectionAndSpinCount

InitializeSListHead

InterlockedFlushSList

IsDebuggerPresent

IsProcessorFeaturePresent

IsValidCodePage

LCMapStringW

LeaveCriticalSection

LoadLibraryExA

LoadLibraryExW

LoadLibraryW

MultiByteToWideChar

OutputDebugStringW

QueryPerformanceCounter

RaiseException

ResetEvent

RtlCaptureContext

RtlLookupFunctionEntry

RtlPcToFileHeader

RtlUnwindEx

RtlVirtualUnwind

SetEvent

SetFilePointerEx

SetLastError

SetStdHandle

SetUnhandledExceptionFilter

TerminateProcess

TlsAlloc

TlsFree

TlsGetValue

TlsSetValue

UnhandledExceptionFilter

VirtualProtect

VirtualQuery

WaitForSingleObjectEx

WideCharToMultiByte

WriteConsoleW

WriteFile

Exports

CompareBrowserVersions

CreateCoreWebView2Environment

CreateCoreWebView2EnvironmentWithOptions

GetAvailableCoreWebView2BrowserVersionString

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 62B

_RDATA
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Evon/runtimes/win-x86/native/WebView2Loader.dll

.dll windows:5 windows x86 arch:x86

a64b009ff2c9503726050a45e231f4c9

Code Sign

33:00:00:01:e2:f1:7d:92:02:0e:49:f8:7f:00:00:00:00:01:e2
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

ef:48:48:0d:6c:07:82:58:c1:fc:21:13:53:29:95:ef:4d:db:1d:23:5c:fd:bb:71:c3:61:e3:00:15:44:2e:2e
Signer

Actual PE Digest

ef:48:48:0d:6c:07:82:58:c1:fc:21:13:53:29:95:ef:4d:db:1d:23:5c:fd:bb:71:c3:61:e3:00:15:44:2e:2e

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

WebView2Loader.dll.pdb

Imports

kernel32

CloseHandle

CreateEventW

CreateFileW

DecodePointer

DeleteCriticalSection

EncodePointer

EnterCriticalSection

ExitProcess

FindClose

FindFirstFileExW

FindNextFileW

FlushFileBuffers

FreeEnvironmentStringsW

FreeLibrary

GetACP

GetCPInfo

GetCommandLineA

GetCommandLineW

GetConsoleMode

GetConsoleOutputCP

GetCurrentProcess

GetCurrentProcessId

GetCurrentThreadId

GetEnvironmentStringsW

GetEnvironmentVariableW

GetFileAttributesW

GetFileType

GetLastError

GetModuleFileNameW

GetModuleHandleExW

GetModuleHandleW

GetOEMCP

GetProcAddress

GetProcessHeap

GetStartupInfoW

GetStdHandle

GetStringTypeW

GetSystemInfo

GetSystemTimeAsFileTime

HeapAlloc

HeapFree

HeapReAlloc

HeapSize

InitializeCriticalSectionAndSpinCount

InitializeSListHead

InterlockedFlushSList

IsDebuggerPresent

IsProcessorFeaturePresent

IsValidCodePage

LCMapStringW

LeaveCriticalSection

LoadLibraryExA

LoadLibraryExW

LoadLibraryW

MultiByteToWideChar

OutputDebugStringW

QueryPerformanceCounter

RaiseException

ResetEvent

RtlUnwind

SetEvent

SetFilePointerEx

SetLastError

SetStdHandle

SetUnhandledExceptionFilter

TerminateProcess

TlsAlloc

TlsFree

TlsGetValue

TlsSetValue

UnhandledExceptionFilter

VirtualProtect

VirtualQuery

WaitForSingleObjectEx

WideCharToMultiByte

WriteConsoleW

WriteFile

Exports

CompareBrowserVersions

CreateCoreWebView2Environment

CreateCoreWebView2EnvironmentWithOptions

GetAvailableCoreWebView2BrowserVersionString

Sections

.text
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 72B

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Evon/version.data

Evon/workspace/MercurySettings.json

Sharing

General

Malware Config

Signatures

Files

753c76543bdeec9de611821e3bd35f73

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

shell32

user32

dbghelp

gdi32

ws2_32

msvcp140

imm32

d3dcompiler_47

dwmapi

crypt32

wldap32

normaliz

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-utility-l1-1-0

Exports

Exports

Sections

.text Size: - Virtual size: 2.9MB

.rdata Size: - Virtual size: 833KB

.data Size: - Virtual size: 1.0MB

.00cfg Size: - Virtual size: 8B

.tls Size: - Virtual size: 9KB

.voltbl Size: - Virtual size: 12B

Africa0 Size: - Virtual size: 2.0MB

Africa1 Size: 12KB - Virtual size: 12KB

Africa2 Size: 5.6MB - Virtual size: 5.6MB

.reloc Size: 1KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 223B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 6.9MB - Virtual size: 6.9MB

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 512B - Virtual size: 12B

f51f0d794c7fcc93503306a9cd9ba55d

Code Sign

33:00:00:01:88:af:52:d6:b9:92:6d:e8:f9:00:00:00:00:01:88Certificate

Extended Key Usages

61:0e:90:d2:00:00:00:00:00:03Certificate

Key Usages

33:00:00:02:55:18:1d:a4:2e:e0:86:fc:15:00:00:00:00:02:55Certificate

Extended Key Usages

61:0e:90:d2:00:00:00:00:00:03Certificate

Key Usages

e0:a4:96:c5:ae:6e:90:5e:aa:f2:84:f3:f4:61:20:56:3c:57:4d:40:37:a2:5c:f3:95:41:db:f3:30:c5:61:6dSigner

e0:a4:96:c5:ae:6e:90:5e:aa:f2:84:f3:f4:61:20:56:3c:57:4d:40:37:a2:5c:f3:95:41:db:f3:30:c5:61:6dSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

crypt32

ws2_32

secur32

.text
Size: - Virtual size: 2.9MB

.rdata
Size: - Virtual size: 833KB

.data
Size: - Virtual size: 1.0MB

.00cfg
Size: - Virtual size: 8B

.tls
Size: - Virtual size: 9KB

.voltbl
Size: - Virtual size: 12B

Africa0
Size: - Virtual size: 2.0MB

Africa1
Size: 12KB - Virtual size: 12KB

Africa2
Size: 5.6MB - Virtual size: 5.6MB

.reloc
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 223B

.text
Size: 6.9MB - Virtual size: 6.9MB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 512B - Virtual size: 12B

33:00:00:01:88:af:52:d6:b9:92:6d:e8:f9:00:00:00:00:01:88
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

33:00:00:02:55:18:1d:a4:2e:e0:86:fc:15:00:00:00:00:02:55
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

e0:a4:96:c5:ae:6e:90:5e:aa:f2:84:f3:f4:61:20:56:3c:57:4d:40:37:a2:5c:f3:95:41:db:f3:30:c5:61:6d
Signer

e0:a4:96:c5:ae:6e:90:5e:aa:f2:84:f3:f4:61:20:56:3c:57:4d:40:37:a2:5c:f3:95:41:db:f3:30:c5:61:6d
Signer

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 673KB - Virtual size: 673KB

.data
Size: 171KB - Virtual size: 2.2MB

.pdata
Size: 149KB - Virtual size: 148KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 21KB - Virtual size: 20KB

.text
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 1024B - Virtual size: 872B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 1.2MB - Virtual size: 1.2MB

.rsrc
Size: 1024B - Virtual size: 872B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 289KB - Virtual size: 289KB

.rsrc
Size: 1024B - Virtual size: 888B

.reloc
Size: 512B - Virtual size: 12B

33:00:00:01:e2:f1:7d:92:02:0e:49:f8:7f:00:00:00:00:01:e2
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

60:24:32:f3:3a:70:18:d4:8c:50:91:69:43:29:23:5a:67:c9:a5:27:b2:38:7b:98:bd:22:d3:1d:2e:74:b3:f4
Signer