unverum_ec58a[.]7z

Sharing

Copy URL Twitter E-mail

General

Target

unverum_ec58a.7z
Size

40.5MB
MD5

3dd4629a901ac43085b74f5ba9c9c11a
SHA1

36897c8e0714408683c1bd4737048ed3e1707b85
SHA256

02063c70d4ea746213062b724aec5b99e66fc30a8eb1eca213bc3bc3a9975eb5
SHA512

26d5102dfc7a873a2f09b747fadb3e2c5ed39034590f598e5b9acad6ad251494e9e23ef1309853fac1451c111fd9f502eecc2a2e61ec8a48bb7432c5bdc68cba
SSDEEP

786432:+Fl3yK+Q9o7J0U/C04qZgPPCODln+urgZ9EEDq+r9cMF7nrg18ta2XSGOLafLMr:+FliKVdU60HgB6PEEDqSr9EGZz8

Score

3^/10

pyinstaller

Malware Config

Signatures

Detects Pyinstaller 2 IoCs

pyinstaller

resource	yara_rule
static1/unpack001/Unverum/Dependencies/jfaddslots/JFAddSlots.exe	pyinstaller
static1/unpack001/Unverum/Dependencies/u4pak/u4pak.exe	pyinstaller

Unsigned PE 15 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Unverum/Dependencies/jfaddslots/JFAddSlots.exe
unpack001/Unverum/Dependencies/quickbms/quickbms_4gb_files.exe
unpack001/Unverum/Dependencies/u4pak/u4pak.exe
unpack001/Unverum/Dependencies/ue4ss/dwmapi.dll
unpack001/Unverum/Dependencies/ue4ss/ue4ss.dll
unpack001/Unverum/Dependencies/umodel/SDL2_64.dll
unpack001/Unverum/Dependencies/umodel/umodel_64.exe
unpack001/Unverum/FontAwesome5.Net.dll
unpack001/Unverum/FontAwesome5.dll
unpack001/Unverum/Microsoft.WindowsAPICodePack.Shell.dll
unpack001/Unverum/Microsoft.WindowsAPICodePack.dll
unpack001/Unverum/Onova.dll
unpack001/Unverum/SharpCompress.dll
unpack001/Unverum/Unverum.dll
unpack001/Unverum/Unverum.exe

Files

unverum_ec58a.7z
.7z

Password: infected
Unverum/Dependencies/jfaddslots/JFAddSlots.exe
.exe windows:5 windows x64 arch:x64

Password: infected

0bbecc8e9f9f17b0ea9cc3899b15e5cf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetCommandLineW
GetEnvironmentVariableW
SetEnvironmentVariableW
ExpandEnvironmentStringsW
CreateDirectoryW
GetTempPathW
WaitForSingleObject
Sleep
GetExitCodeProcess
CreateProcessW
FreeLibrary
LoadLibraryExW
FindClose
FindFirstFileExW
CloseHandle
GetCurrentProcess
LocalFree
FormatMessageW
MultiByteToWideChar
WideCharToMultiByte
SetEndOfFile
GetProcAddress
GetModuleFileNameW
SetDllDirectoryW
GetStartupInfoW
GetLastError
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetModuleHandleW
RtlUnwindEx
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
EncodePointer
RaiseException
RtlPcToFileHeader
GetCommandLineA
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFullPathNameW
RemoveDirectoryW
FindNextFileW
SetStdHandle
SetConsoleCtrlHandler
DeleteFileW
ReadFile
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
HeapFree
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetFileSizeEx
HeapAlloc
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringW
LCMapStringW
GetCurrentDirectoryW
FlushFileBuffers
HeapReAlloc
GetFileAttributesExW
GetStringTypeW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetTimeZoneInformation
HeapSize
WriteConsoleW

advapi32

ConvertSidToStringSidW
GetTokenInformation
OpenProcessToken
ConvertStringSecurityDescriptorToSecurityDescriptorW

Sections

.text
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Main_Add_Slots.pyc
Unverum/Dependencies/jfaddslots/common_battle.uasset
Unverum/Dependencies/jfaddslots/common_battle.uexp
Unverum/Dependencies/jfaddslots/resident_param.uasset
Unverum/Dependencies/jfaddslots/resident_param.uexp
Unverum/Dependencies/jfaddslots/systemtext_EN.uasset
Unverum/Dependencies/jfaddslots/systemtext_EN.uexp
Unverum/Dependencies/jfaddslots/ui_characterselect.uasset
Unverum/Dependencies/jfaddslots/ui_characterselect.uexp
Unverum/Dependencies/quickbms/quickbms_4gb_files.exe
.exe windows:4 windows x86 arch:x86

Password: infected

fe0f55c29d3443caff22810a4d4af2b3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

AdjustTokenPrivileges
CryptAcquireContextA
CryptCreateHash
CryptDecrypt
CryptDeriveKey
CryptDestroyHash
CryptEncrypt
CryptGenRandom
CryptGetHashParam
CryptHashData
CryptReleaseContext
DeregisterEventSource
LookupPrivilegeValueA
OpenProcessToken
RegisterEventSourceA
ReportEventA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA
GetSaveFileNameW

crypt32

CryptProtectData
CryptUnprotectData

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
DeleteObject
GetBitmapBits
GetDIBits
GetDeviceCaps
GetObjectA
GetStockObject
SelectObject
SetBitmapBits

kernel32

CloseHandle
ConnectNamedPipe
ContinueDebugEvent
CreateEventA
CreateFileA
CreateMailslotA
CreateNamedPipeA
CreatePipe
CreateProcessA
CreateSemaphoreA
CreateSemaphoreW
CreateThread
CreateToolhelp32Snapshot
DebugActiveProcess
DeleteCriticalSection
DisconnectNamedPipe
EnterCriticalSection
ExitProcess
FindClose
FindFirstFileA
FindFirstFileExA
FindNextFileA
FindResourceA
FlushFileBuffers
FlushInstructionCache
FormatMessageA
FreeLibrary
GetCommandLineA
GetConsoleScreenBufferInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetExitCodeThread
GetFileType
GetLastError
GetMailslotInfo
GetModuleFileNameA
GetModuleHandleA
GetNamedPipeHandleStateA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetSystemDirectoryA
GetSystemInfo
GetSystemTime
GetTempPathA
GetThreadContext
GetThreadLocale
GetTickCount
GetVersion
GetVersionExA
GlobalLock
GlobalMemoryStatus
GlobalSize
GlobalUnlock
Heap32First
Heap32ListFirst
Heap32ListNext
Heap32Next
HeapAlloc
HeapFree
HeapValidate
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadReadPtr
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LocalFree
Module32First
Module32Next
MultiByteToWideChar
OpenProcess
OutputDebugStringA
Process32First
Process32Next
QueryPerformanceCounter
QueryPerformanceFrequency
ReadConsoleInputA
ReadFile
ReadProcessMemory
ReleaseSemaphore
ResetEvent
SetConsoleCP
SetConsoleOutputCP
SetConsoleTextAttribute
SetConsoleTitleA
SetEndOfFile
SetEvent
SetFilePointer
SetLastError
SetThreadContext
SetUnhandledExceptionFilter
Sleep
SystemTimeToFileTime
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualProtect
VirtualProtectEx
VirtualQuery
VirtualQueryEx
WaitForDebugEvent
WaitForSingleObject
WideCharToMultiByte
WriteFile
WriteProcessMemory
lstrlenA

msvcrt

_chdir
_chmod
_chsize
_close
_fdopen
_getcwd
_hypot
_lseek
_memccpy
_mkdir
_nextafter
_open
_read
_setmode
_spawnl
_spawnv
_stat
_strdup
_stricmp
_stricoll
_strnicmp
_unlink
_utime
_write
__getmainargs
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
__wgetmainargs
_assert
_beginthreadex
_cexit
_errno
_exit
_expand
_filbuf
_filelengthi64
_flsbuf
_fstati64
_fullpath
_get_osfhandle
_getch
_iob
_isctype
_msize
_onexit
_pclose
_pctype
_popen
_setjmp
_setmode
_stat
_stati64
_stricmp
_strnicmp
_vsnprintf
_wchdir
_wchmod
_wcsnicmp
_wfopen
_wgetcwd
_wmkdir
_wopen
_wstati64
abort
abs
acos
asctime
asin
atan
atan2
atexit
atof
atoi
bsearch
calloc
ceil
clearerr
clock
cos
cosh
ctime
difftime
div
exit
exp
fclose
feof
ferror
fflush
fgetc
fgetpos
fgets
floor
fmod
fopen
fprintf
fputc
fputs
fread
free
freopen
frexp
fscanf
fseek
fsetpos
ftell
fwrite
getc
getchar
getenv
gmtime
isalnum
isalpha
iscntrl
isdigit
isgraph
islower
isprint
ispunct
isspace
isupper
iswctype
isxdigit
ldexp
localeconv
localtime
log
log10
longjmp
malloc
mbstowcs
mbtowc
memchr
memcmp
memcpy
memmove
memset
mktime
modf
perror
pow
printf
putc
putchar
puts
qsort
raise
rand
realloc
remove
rename
rewind
scanf
setbuf
setlocale
setvbuf
signal
sin
sinh
sprintf
sqrt
srand
sscanf
strcat
strchr
strcmp
strcoll
strcpy
strcspn
strerror
strftime
strlen
strncat
strncmp
strncpy
strpbrk
strrchr
strspn
strstr
strtod
strtok
strtol
strtoul
strxfrm
system
tan
tanh
time
tmpfile
tmpnam
tolower
toupper
towlower
towupper
ungetc
vfprintf
vprintf
vsprintf
wcscoll
wcsftime
wcslen
wcsstr
wcstombs
wcsxfrm
wctomb

user32

BeginPaint
CloseClipboard
CreateWindowExA
DefWindowProcA
DestroyWindow
DispatchMessageA
EndPaint
EnumClipboardFormats
EnumWindows
FindWindowA
GetClassNameA
GetClientRect
GetClipboardData
GetDC
GetDesktopWindow
GetForegroundWindow
GetMessageA
GetProcessWindowStation
GetUserObjectInformationW
GetWindowLongA
GetWindowThreadProcessId
InvalidateRect
LoadCursorA
LoadIconA
MessageBoxA
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
RegisterClassA
ReleaseDC
ShowWindow
TranslateMessage
UpdateWindow

winmm

waveInAddBuffer
waveInClose
waveInGetNumDevs
waveInGetPosition
waveInOpen
waveInPrepareHeader
waveInReset
waveInStart
waveInUnprepareHeader
waveOutClose
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

ws2_32

WSAGetLastError
WSASetLastError
WSAStartup
accept
bind
closesocket
connect
gethostbyaddr
gethostbyname
getservbyname
getservbyport
htonl
htons
inet_addr
inet_ntoa
listen
ntohl
ntohs
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

Exports

Exports

@bit_read@4
@bit_write@8
@huff_read@8
A0_mask
A10_mask
A11_mask
A12_mask
A1_mask
A2_mask
A3_mask
A4_mask
A5_mask
A64AT_ATMapper
A64DB_DBarrierMapper
A64DC_DCMapper
A64IC_ICMapper
A64ISB_ISBMapper
A64NamedImmMapper_fromString
A64NamedImmMapper_toString
A64NamedImmMapper_validImm
A64PRFM_PRFMMapper
A64PState_PStateMapper
A64SysRegMapper_toString
A64TLBI_TLBIMapper
A6_mask
A7_mask
A8_mask
A9_mask
AArch64_MRSMapper
AArch64_MSRMapper
AArch64_getInstruction
AArch64_get_insn_id
AArch64_get_op_access
AArch64_global_init
AArch64_group_name
AArch64_init
AArch64_insn_name
AArch64_map_insn
AArch64_map_vregister
AArch64_option
AArch64_post_printer
AArch64_printInst
AArch64_reg_access
AArch64_reg_name
ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
AES_bi_ige_encrypt
AES_cbc_encrypt
AES_ctr128_encrypt
AES_decrypt
AES_encrypt
AES_ige_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
AES_unwrap_key
AES_version
AES_wrap_key
ALLZ_AnalyzeBlock
ALLZ_Decode
ALLZ_Setup_EncFlags
ANUBISdecrypt
ANUBISencrypt
ANUBISkeysetup
ARIA_Crypt
ARIA_DecKeySetup
ARIA_EncKeySetup
ARM_addReg
ARM_addSysReg
ARM_addUserMode
ARM_addVectorDataSize
ARM_addVectorDataType
ARM_blx_to_arm_mode
ARM_getFeatureBits
ARM_getInstruction
ARM_getRegName
ARM_get_insn_id
ARM_get_op_access
ARM_global_init
ARM_group_name
ARM_init
ARM_insn_name
ARM_option
ARM_post_printer
ARM_printInst
ARM_reg_access
ARM_reg_name
ARM_reg_name2
ARM_rel_branch
ARexp
ARlog
ASN1_ANY_it
ASN1_BIT_STRING_check
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_new
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_adj
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PCTX_free
ASN1_PCTX_get_cert_flags
ASN1_PCTX_get_flags
ASN1_PCTX_get_nm_flags
ASN1_PCTX_get_oid_flags
ASN1_PCTX_get_str_flags
ASN1_PCTX_new
ASN1_PCTX_set_cert_flags
ASN1_PCTX_set_flags
ASN1_PCTX_set_nm_flags
ASN1_PCTX_set_oid_flags
ASN1_PCTX_set_str_flags
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SEQUENCE_ANY_it
ASN1_SEQUENCE_it
ASN1_SET_ANY_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_cmp
ASN1_STRING_copy
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_free
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set0
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_adj
ASN1_TIME_check
ASN1_TIME_diff
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TIME_set_string
ASN1_TIME_to_generalizedtime
ASN1_TYPE_cmp
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_set
ASN1_TYPE_set1
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_adj
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_bn_print
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_fp
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_pack
ASN1_item_print
ASN1_item_sign
ASN1_item_sign_ctx
ASN1_item_unpack
ASN1_item_verify
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_pack_string
ASN1_parse
ASN1_parse_dump
ASN1_primitive_free
ASN1_primitive_new
ASN1_put_eoc
ASN1_put_object
ASN1_seq_pack
ASN1_seq_unpack
ASN1_sign
ASN1_tag2bit
ASN1_tag2str
ASN1_template_d2i
ASN1_template_free
ASN1_template_i2d
ASN1_template_new
ASN1_unpack_string
ASN1_verify
ASN1_version
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
AddFile
AllocHuffmanNode
AllocTopDown
Analysis
AnimFrame__decomp34
AnimFrame__decomp5
AnimFrame__decomp7
AnimFrame__decompFF
AnimationDecoder__decode_data
AnimationPlayer__rleDecode
ArDecodeFile
ArEncodeFile
ArcStruct
Assemble
AutoResetEvent_Create
AutoResetEvent_CreateNotSignaled
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BCryptAddContextFunction
BCryptAddContextFunctionProvider
BCryptCloseAlgorithmProvider
BCryptConfigureContext
BCryptConfigureContextFunction
BCryptCreateContext
BCryptCreateHash
BCryptDecrypt
BCryptDeleteContext
BCryptDeriveKey
BCryptDeriveKeyCapi
BCryptDeriveKeyPBKDF2
BCryptDestroyHash
BCryptDestroyKey
BCryptDestroySecret
BCryptDuplicateHash
BCryptDuplicateKey
BCryptEncrypt
BCryptEnumAlgorithms
BCryptEnumContextFunctionProviders
BCryptEnumContextFunctions
BCryptEnumContexts
BCryptEnumProviders
BCryptEnumRegisteredProviders
BCryptExportKey
BCryptFinalizeKeyPair
BCryptFinishHash
BCryptFreeBuffer
BCryptGenRandom
BCryptGenerateKeyPair
BCryptGenerateSymmetricKey
BCryptGetFipsAlgorithmMode
BCryptGetProperty
BCryptHashData
BCryptImportKey
BCryptImportKeyPair
BCryptKeyDerivation
BCryptOpenAlgorithmProvider
BCryptQueryContextConfiguration
BCryptQueryContextFunctionConfiguration
BCryptQueryContextFunctionProperty
BCryptQueryProviderRegistration
BCryptRegisterConfigChangeNotify
BCryptRegisterProvider
BCryptRemoveContextFunction
BCryptRemoveContextFunctionProvider
BCryptResolveProviders
BCryptSecretAgreement
BCryptSetAuditingInterface
BCryptSetContextFunctionProperty
BCryptSetProperty
BCryptSignHash
BCryptUnregisterConfigChangeNotify
BCryptUnregisterProvider
BCryptVerifySignature
BCrypt_init
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BF_version
BIGNUM_it
BIO_asn1_get_prefix
BIO_asn1_get_suffix
BIO_asn1_set_prefix
BIO_asn1_set_suffix
BIO_callback_ctrl
BIO_clear_flags
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_pending
BIO_ctrl_wpending
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_asn1
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_md
BIO_find_type
BIO_free
BIO_free_all
BIO_get_callback
BIO_get_callback_arg
BIO_get_ex_data
BIO_get_ex_new_index
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_gets
BIO_hex_string
BIO_indent
BIO_int_ctrl
BIO_method_name
BIO_method_type
BIO_new
BIO_new_CMS
BIO_new_NDEF
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_number_read
BIO_number_written
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_socket
BIO_set
BIO_set_callback
BIO_set_callback_arg
BIO_set_cipher
BIO_set_ex_data
BIO_set_flags
BIO_snprintf
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_test_flags
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BLOCKREAD
BLOCKWRITE
BLZ_CRC16
BLZ_Code
BLZ_Decode
BLZ_Encode
BLZ_Invert
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_get_thread_id
BN_BLINDING_invert
BN_BLINDING_invert_ex
BN_BLINDING_new
BN_BLINDING_set_flags
BN_BLINDING_set_thread_id
BN_BLINDING_thread_id
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_init
BN_CTX_new
BN_CTX_start
BN_GENCB_call
BN_GF2m_add
BN_GF2m_arr2poly
BN_GF2m_mod
BN_GF2m_mod_arr
BN_GF2m_mod_div
BN_GF2m_mod_div_arr
BN_GF2m_mod_exp
BN_GF2m_mod_exp_arr
BN_GF2m_mod_inv
BN_GF2m_mod_inv_arr
BN_GF2m_mod_mul
BN_GF2m_mod_mul_arr
BN_GF2m_mod_solve_quad
BN_GF2m_mod_solve_quad_arr
BN_GF2m_mod_sqr
BN_GF2m_mod_sqr_arr
BN_GF2m_mod_sqrt
BN_GF2m_mod_sqrt_arr
BN_GF2m_poly2arr
BN_MONT_CTX_copy
BN_MONT_CTX_free

Sections

.text
Size: 8.2MB - Virtual size: 8.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6.5MB - Virtual size: 6.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 772KB - Virtual size: 772KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 128.3MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 383KB - Virtual size: 383KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 330KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/Dependencies/quickbms/unreal_tournament_4.bms
Unverum/Dependencies/u4pak/u4pak.exe
.exe windows:5 windows x64 arch:x64

Password: infected

ba5546933531fafa869b1f86a4e2a959

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetCommandLineW
GetEnvironmentVariableW
SetEnvironmentVariableW
ExpandEnvironmentStringsW
CreateDirectoryW
GetTempPathW
WaitForSingleObject
Sleep
GetExitCodeProcess
CreateProcessW
GetStartupInfoW
LoadLibraryExW
SetConsoleCtrlHandler
FindClose
FindFirstFileExW
CloseHandle
GetCurrentProcess
LocalFree
FormatMessageW
MultiByteToWideChar
WideCharToMultiByte
WriteConsoleW
GetProcAddress
GetModuleFileNameW
SetDllDirectoryW
FreeLibrary
GetLastError
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetModuleHandleW
RtlUnwindEx
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
EncodePointer
RaiseException
RtlPcToFileHeader
GetCommandLineA
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFullPathNameW
RemoveDirectoryW
FindNextFileW
SetStdHandle
DeleteFileW
ReadFile
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
HeapFree
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetFileSizeEx
HeapAlloc
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringW
LCMapStringW
GetCurrentDirectoryW
FlushFileBuffers
HeapReAlloc
GetFileAttributesExW
GetStringTypeW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetTimeZoneInformation
HeapSize
SetEndOfFile

advapi32

ConvertSidToStringSidW
GetTokenInformation
OpenProcessToken
ConvertStringSecurityDescriptorToSecurityDescriptorW

Sections

.text
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
u4pak.pyc
Unverum/Dependencies/ue4ss/Mods/ActorDumperMod/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/BPML_GenericFunctions/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/BPModLoaderMod/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/BPModLoaderMod/load_order.txt
Unverum/Dependencies/ue4ss/Mods/CheatManagerEnablerMod/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/ConsoleCommandsMod/Scripts/dump_object.lua
.js
Unverum/Dependencies/ue4ss/Mods/ConsoleCommandsMod/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/ConsoleCommandsMod/Scripts/set.lua
Unverum/Dependencies/ue4ss/Mods/ConsoleCommandsMod/Scripts/summon_unloaded_assets.lua
Unverum/Dependencies/ue4ss/Mods/ConsoleEnablerMod/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/Keybinds/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/LineTraceMod/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/SplitScreenMod/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/jsbLuaProfilerMod/Scripts/main.lua
Unverum/Dependencies/ue4ss/Mods/mods.txt
Unverum/Dependencies/ue4ss/Mods/shared/Types.lua
Unverum/Dependencies/ue4ss/Mods/shared/UEHelpers/UEHelpers.lua
.js
Unverum/Dependencies/ue4ss/UE4SS-settings.ini
Unverum/Dependencies/ue4ss/dwmapi.dll
.dll windows:6 windows x64 arch:x64

Password: infected

586f342381ba796670ebb3747f9ae450

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\RE-UE4SS\RE-UE4SS\build\Output\Game__Shipping__Win64\proxy\bin\dwmapi.pdb

Imports

kernel32

ExitProcess
GetSystemDirectoryW
FreeLibrary
GetProcAddress
LoadLibraryW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

msvcp140

?_Xlength_error@std@@YAXPEBD@Z

vcruntime140

memset
__std_exception_copy
__std_type_info_destroy_list
__current_exception_context
__std_exception_destroy
_CxxThrowException
memcpy
memmove
__C_specific_handler
__current_exception

vcruntime140_1

__CxxFrameHandler4

api-ms-win-crt-runtime-l1-1-0

terminate
_cexit
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_initterm_e
_initterm
_invalid_parameter_noinfo_noreturn
_seh_filter_dll

api-ms-win-crt-heap-l1-1-0

malloc
free
_callnewh

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DwmAttachMilContent
DwmDefWindowProc
DwmDetachMilContent
DwmEnableBlurBehindWindow
DwmEnableComposition
DwmEnableMMCSS
DwmExtendFrameIntoClientArea
DwmFlush
DwmGetColorizationColor
DwmGetCompositionTimingInfo
DwmGetGraphicsStreamClient
DwmGetGraphicsStreamTransformHint
DwmGetTransportAttributes
DwmGetUnmetTabRequirements
DwmGetWindowAttribute
DwmInvalidateIconicBitmaps
DwmIsCompositionEnabled
DwmModifyPreviousDxFrameDuration
DwmQueryThumbnailSourceSize
DwmRegisterThumbnail
DwmRenderGesture
DwmSetDxFrameDuration
DwmSetIconicLivePreviewBitmap
DwmSetIconicThumbnail
DwmSetPresentParameters
DwmSetWindowAttribute
DwmShowContact
DwmTetherContact
DwmTetherTextContact
DwmTransitionOwnedWindow
DwmUnregisterThumbnail
DwmUpdateThumbnailProperties
DwmpAllocateSecurityDescriptor
DwmpDxGetWindowSharedSurface
DwmpDxUpdateWindowSharedSurface
DwmpDxgiIsThreadDesktopComposited
DwmpEnableDDASupport
DwmpFreeSecurityDescriptor
DwmpGetColorizationParameters
DwmpRenderFlick
DwmpSetColorizationParameters
DwmpUpdateProxyWindowForCapture
ordinal102
ordinal103
ordinal104
ordinal105
ordinal106
ordinal107
ordinal108
ordinal109
ordinal110
ordinal111
ordinal112
ordinal113
ordinal114
ordinal115
ordinal116
ordinal117
ordinal118
ordinal119
ordinal120
ordinal121
ordinal122
ordinal123
ordinal124
ordinal125
ordinal126
ordinal127
ordinal128
ordinal129
ordinal130
ordinal131
ordinal132
ordinal133
ordinal134
ordinal135
ordinal136
ordinal137
ordinal138
ordinal139
ordinal140
ordinal141
ordinal142
ordinal143
ordinal144
ordinal145
ordinal146
ordinal147
ordinal148
ordinal149
ordinal150
ordinal151
ordinal152
ordinal153
ordinal154
ordinal155
ordinal156
ordinal157
ordinal158
ordinal159
ordinal160
ordinal161
ordinal162
ordinal163
ordinal164
ordinal165
ordinal166
ordinal167
ordinal168
ordinal169
ordinal170
ordinal171
ordinal172
ordinal173
ordinal174
ordinal175
ordinal176
ordinal177
ordinal178
ordinal179
ordinal180
ordinal181
ordinal182
ordinal183
ordinal184
ordinal185
ordinal186
ordinal187
ordinal188
ordinal189
ordinal190
ordinal191
ordinal192
ordinal193
ordinal194
ordinal195
ordinal196
ordinal197
ordinal198
ordinal199
ordinal200

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 418B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/Dependencies/ue4ss/ue4ss.dll
.dll windows:6 windows x64 arch:x64

Password: infected

6daa41f6130f1097388d7130bce198e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\RE-UE4SS\RE-UE4SS\build\Output\Game__Shipping__Win64\UE4SS\bin\UE4SS.pdb

Imports

d3d11

D3D11CreateDeviceAndSwapChain

opengl32

glClear
glViewport
glClearColor

dbghelp

MiniDumpWriteDump

kernel32

GetModuleHandleW
AllocConsole
LoadLibraryExW
GetCurrentProcess
SetErrorMode
CreateFileW
GetLastError
SetUnhandledExceptionFilter
RemoveDllDirectory
GetProcAddress
FreeLibrary
ReadProcessMemory
DeleteFileW
GetFileInformationByHandle
ReadFile
WriteFile
VirtualQuery
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
WideCharToMultiByte
GetStdHandle
GetConsoleMode
SetConsoleMode
GlobalMemoryStatusEx
K32GetProcessMemoryInfo
EnterCriticalSection
LeaveCriticalSection
K32EnumProcessModules
K32GetModuleBaseNameA
K32GetModuleInformation
GetSystemInfo
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
VerSetConditionMask
QueryPerformanceCounter
QueryPerformanceFrequency
GetModuleHandleA
VirtualProtect
WriteProcessMemory
VirtualAlloc
VirtualFree
SetThreadExecutionState
InitializeCriticalSection
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
FormatMessageW
OutputDebugStringA
GetModuleFileNameA
FormatMessageA
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
FreeEnvironmentStringsW
DeleteProcThreadAttributeList
CompareStringOrdinal
AddVectoredExceptionHandler
SetThreadStackGuarantee
SwitchToThread
CreateWaitableTimerExW
SetWaitableTimer
WaitForSingleObject
Sleep
RtlCaptureContext
RtlVirtualUnwind
RtlLookupFunctionEntry
SetLastError
GetCurrentDirectoryW
GetEnvironmentStringsW
GetEnvironmentVariableW
LoadLibraryA
GetCommandLineW
FlushFileBuffers
SetFileInformationByHandle
DuplicateHandle
SetFileTime
SetFilePointerEx
SetHandleInformation
WriteFileEx
SleepEx
GetExitCodeProcess
TerminateProcess
GetProcessId
WakeAllConditionVariable
SleepConditionVariableSRW
WakeConditionVariable
TryAcquireSRWLockExclusive
HeapAlloc
GetProcessHeap
HeapFree
HeapReAlloc
AcquireSRWLockShared
ReleaseSRWLockShared
ReleaseMutex
FindNextFileW
FindClose
GetFileInformationByHandleEx
CreateDirectoryW
FindFirstFileW
MoveFileExW
RemoveDirectoryW
DeviceIoControl
CreateSymbolicLinkW
CreateHardLinkW
SetFileAttributesW
GetFinalPathNameByHandleW
CopyFileExW
CreateEventW
GetOverlappedResult
CancelIo
GetFileType
SetCurrentDirectoryW
ExitProcess
GetFullPathNameW
CreateNamedPipeW
ReadFileEx
WaitForMultipleObjects
GetSystemDirectoryW
GetWindowsDirectoryW
CreateProcessW
GetFileAttributesW
OpenThread
UpdateProcThreadAttribute
WriteConsoleW
ReadConsoleW
GetSystemTimeAsFileTime
GetTempPathW
WaitForSingleObjectEx
CreateMutexA
SetEvent
GetStartupInfoW
GetThreadTimes
GetCurrentProcessId
QueueUserAPC
UnhandledExceptionFilter
InitializeSListHead
InitOnceComplete
InitOnceBeginInitialize
TryAcquireSRWLockShared
CopyFileW
CreateDirectoryExW
LoadLibraryExA
AddDllDirectory
AreFileApisANSI
GetFileAttributesExW
GetDiskFreeSpaceExW
FindFirstFileExW
GetLocaleInfoEx
LocalFree
LoadLibraryW
SetEnvironmentVariableW
SetDefaultDllDirectories
IsDebuggerPresent
IsProcessorFeaturePresent
GetModuleFileNameW
Thread32Next
Thread32First
GetCurrentThreadId
CreateToolhelp32Snapshot
GetCurrentThread
CloseHandle
CreateThread
InitializeProcThreadAttributeList

advapi32

SystemFunction036
OpenProcessToken

bcrypt

BCryptGenRandom

ntdll

NtWriteFile
NtCreateFile
NtReadFile
RtlNtStatusToDosError

userenv

GetUserProfileDirectoryW

ws2_32

WSAStartup
WSAGetLastError
WSACleanup
freeaddrinfo
setsockopt
sendto
getsockname
listen
bind
recvfrom
shutdown
connect
getaddrinfo
WSASocketW
WSADuplicateSocketW
getpeername
ioctlsocket
accept
send
WSASend
WSARecv
recv
select
closesocket
getsockopt

user32

EnumDisplaySettingsExW
EnumDisplaySettingsW
ChangeDisplaySettingsExW
ToUnicode
UnregisterDeviceNotification
RegisterDeviceNotificationW
RegisterRawInputDevices
GetRawInputData
GetMonitorInfoW
SystemParametersInfoW
CreateIconIndirect
LoadImageW
DestroyIcon
SetWindowLongW
GetWindowLongW
PtInRect
OffsetRect
SetRect
ClipCursor
WindowFromPoint
AdjustWindowRectEx
SetWindowTextW
RemovePropW
GetPropW
SetPropW
SetForegroundWindow
GetSystemMetrics
MsgWaitForMultipleObjects
MapVirtualKeyW
GetActiveWindow
SetFocus
IsZoomed
BringWindowToTop
EnumDisplayDevicesW
IsWindowVisible
SetWindowPlacement
GetWindowPlacement
SetWindowPos
MoveWindow
FlashWindow
SetLayeredWindowAttributes
EnumDisplayMonitors
WaitMessage
PostMessageW
SendMessageW
GetMessageTime
GetClassLongPtrW
MonitorFromWindow
LoadCursorW
ScreenToClient
ClientToScreen
GetCursorPos
SetCursor
SetCursorPos
GetClientRect
ReleaseDC
GetDC
IsWindowUnicode
ReleaseCapture
SetCapture
GetCapture
GetKeyState
TrackMouseEvent
EmptyClipboard
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
GetClassNameW
GetForegroundWindow
GetAsyncKeyState
DefWindowProcW
GetWindowRect
DestroyWindow
CreateWindowExW
UnregisterClassW
RegisterClassExW
ShowWindow
DispatchMessageW
PeekMessageW
TranslateMessage
PostQuitMessage
UpdateWindow
MessageBoxW
GetRawInputDeviceInfoA
GetRawInputDeviceList
GetLayeredWindowAttributes
IsIconic
SetProcessDPIAware

gdi32

ChoosePixelFormat
SetDeviceGammaRamp
GetDeviceGammaRamp
DeleteDC
DescribePixelFormat
CreateDIBSection
CreateBitmap
GetDeviceCaps
DeleteObject
CreateRectRgn
CreateSolidBrush
SetPixelFormat
SwapBuffers
CreateDCW

shell32

DragAcceptFiles
DragFinish
DragQueryPoint
DragQueryFileW

ole32

CoCreateGuid

oleaut32

SysAllocStringLen
SetErrorInfo
SysStringLen
SysFreeString
GetErrorInfo

msvcp140

?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QEAAX_N@Z
??0task_continuation_context@Concurrency@@AEAA@XZ
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ
?_Capture@_ContextCallback@details@Concurrency@@AEAAXXZ
?_Reset@_ContextCallback@details@Concurrency@@AEAAXXZ
?_CallInContext@_ContextCallback@details@Concurrency@@QEBAXV?$function@$$A6AXXZ@std@@_N@Z
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?_ReportUnobservedException@details@Concurrency@@YAXXZ
?_Release_chore@details@Concurrency@@YAXPEAU_Threadpool_chore@12@@Z
?_Schedule_chore@details@Concurrency@@YAHPEAU_Threadpool_chore@12@@Z
_Cnd_unregister_at_thread_exit
_Cnd_register_at_thread_exit
_Cnd_broadcast
_Cnd_wait
_Cnd_destroy_in_situ
_Cnd_init_in_situ
?__ExceptionPtrRethrow@@YAXPEBX@Z
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrToBool@@YA_NPEBX@Z
?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
?_Locimp_Addfac@_Locimp@locale@std@@CAXPEAV123@PEAVfacet@23@_K@Z
?tellg@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?seekg@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@_JH@Z
?read@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@PEA_W_J@Z
??7ios_base@std@@QEBA_NXZ
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
?is@?$ctype@D@std@@QEBA_NFD@Z
?tolower@?$ctype@D@std@@QEBADD@Z
?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
_Strcoll
?id@?$collate@D@std@@2V0locale@2@A
?id@?$ctype@D@std@@2V0locale@2@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
_Strxfrm
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@V?$fpos@U_Mbstatet@@@2@@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?clear@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?getloc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEBA?AVlocale@2@XZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
?put@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEBA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AEAVios_base@2@DPEBUtm@@PEBD3@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?id@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
?always_noconv@codecvt_base@std@@QEBA_NXZ
?out@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z
?unshift@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??Bios_base@std@@QEBA_NXZ
?good@ios_base@std@@QEBA_NXZ
?flags@ios_base@std@@QEBAHXZ
?width@ios_base@std@@QEBA_JXZ
?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_Xinvalid_argument@std@@YAXPEBD@Z
?uncaught_exception@std@@YA_NXZ
?setf@ios_base@std@@QEAAHHH@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAADD@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?width@ios_base@std@@QEAA_J_J@Z
?getloc@ios_base@std@@QEBA?AVlocale@2@XZ
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?imbue@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAXAEBVlocale@2@@Z
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAPEAV12@PEA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEB_W_J@Z
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEA_W_J@Z
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAGXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JXZ
_Mbrtowc
??1_Lockit@std@@QEAA@XZ
??0_Lockit@std@@QEAA@H@Z
?_Throw_Cpp_error@std@@YAXH@Z
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPEBD@Z
?_Xlength_error@std@@YAXPEBD@Z
?id@?$numpunct@_W@std@@2V0locale@2@A
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
_Mtx_destroy_in_situ
_Mtx_lock
_Mtx_init_in_situ
_Mtx_unlock
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
?c_str@?$_Yarn@D@std@@QEBAPEBDXZ
??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ
??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z
?in@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
??1facet@locale@std@@MEAA@XZ
??0facet@locale@std@@IEAA@_K@Z
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UEAAXXZ
??Bid@locale@std@@QEAA_KXZ
?_W_Getmonths@_Locinfo@std@@QEBAPEBGXZ
?_W_Getdays@_Locinfo@std@@QEBAPEBGXZ
?_Gettrue@_Locinfo@std@@QEBAPEBDXZ
?_Getfalse@_Locinfo@std@@QEBAPEBDXZ
?_Getmonths@_Locinfo@std@@QEBAPEBDXZ
?_Getdays@_Locinfo@std@@QEBAPEBDXZ
?_Getlconv@_Locinfo@std@@QEBAPEBUlconv@@XZ
?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ
??1_Locinfo@std@@QEAA@XZ
??0_Locinfo@std@@QEAA@PEBD@Z
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
_Query_perf_frequency
?uncaught_exceptions@std@@YAHXZ
?classic@locale@std@@SAAEBV12@XZ
?_Winerror_map@std@@YAHH@Z
?_Xbad_function_call@std@@YAXXZ
?id@?$numpunct@D@std@@2V0locale@2@A
?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z
?id@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@2V0locale@2@A
?_Syserror_map@std@@YAPEBDH@Z
_Cnd_do_broadcast_at_thread_exit
_Thrd_sleep
_Thrd_id
_Query_perf_counter
_Xtime_get_ticks
_Thrd_join
?_Ipfx@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA_N_N@Z
?snextc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAGXZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z
?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBAPEAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ
?put@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEBA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AEAVios_base@2@_WPEBUtm@@PEB_W4@Z
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@H@Z
?sbumpc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAGXZ
?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAGXZ
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z
?pbase@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WD@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXPEA_W0@Z
?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXXZ
?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXPEAPEA_W0PEAH001@Z
?eback@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?egptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXH@Z
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXPEA_W00@Z
?epptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXPEA_W00@Z
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBAPEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

msvcp140_atomic_wait

__std_atomic_notify_all_direct
__std_atomic_wait_direct

imm32

ImmSetCompositionWindow
ImmGetContext
ImmReleaseContext
ImmSetCandidateWindow

d3dcompiler_47

D3DCompile

dwmapi

DwmGetColorizationColor
DwmIsCompositionEnabled
DwmEnableBlurBehindWindow

vcruntime140_1

__CxxFrameHandler4

vcruntime140

memcmp
memchr
__std_type_info_compare
strstr
strrchr
__CxxFrameHandler3
memmove
__current_exception_context
__C_specific_handler
__std_type_info_destroy_list
_CxxThrowException
strchr
__std_type_info_name
__std_terminate
memset
__current_exception
_purecall
memcpy
__std_exception_copy
__std_exception_destroy
__RTDynamicCast

api-ms-win-crt-heap-l1-1-0

malloc
realloc
_callnewh
calloc
free

api-ms-win-crt-string-l1-1-0

islower
ispunct
isgraph
iscntrl
isupper
isalpha
towlower
strncpy
isxdigit
tolower
strcoll
strpbrk
iswdigit
strncpy_s
strcpy
towupper
wcslen
isalnum
strtok
isdigit
isblank
strcmp
_wcsicmp
isspace
toupper
strlen
iswxdigit
strspn
strcspn
strncmp

api-ms-win-crt-stdio-l1-1-0

_wfopen
fread
__stdio_common_vsprintf
__stdio_common_vsscanf
__stdio_common_vswprintf_s
__stdio_common_vswprintf
fclose
fseek
feof
ferror
fopen
freopen
getc
__stdio_common_vfprintf
fputwc
fflush
_get_stream_buffer_pointers
fgets
ungetwc
freopen_s
__stdio_common_vsprintf_s
fopen_s
clearerr
__stdio_common_vfprintf_s
_pclose
_popen
tmpfile
_fseeki64
fgetc
fsetpos
__acrt_iob_func
fgetwc
fwrite
ftell
_ftelli64
fgetpos
ungetc
setvbuf
tmpnam

api-ms-win-crt-math-l1-1-0

frexp
acos
ldexp
floor
asin
atan2
exp
fabs
_ldsign
powf
pow
logf
log10
atan2f
_fdsign
sinf
tan
_dclass
_fdclass
_ldclass
cos
fmod
sin
ceilf
cosf
_dsign
ceil
acosf
floorf
sqrtf
sqrt
fmodf
log

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initterm
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_beginthreadex
terminate
_errno
_initialize_onexit_table
system
exit
_initterm_e
abort
strerror
_wassert
_invalid_parameter_noinfo_noreturn

api-ms-win-crt-filesystem-l1-1-0

rename
_unlock_file
_lock_file
remove

api-ms-win-crt-time-l1-1-0

_difftime64
strftime
_mktime64
_localtime64
_gmtime64
clock
_time64

api-ms-win-crt-locale-l1-1-0

___lc_codepage_func
_free_locale
localeconv
_create_locale
setlocale

api-ms-win-crt-convert-l1-1-0

wcstof
wcstol
atof
strtol
strtoul
strtod
wcstoll

api-ms-win-crt-utility-l1-1-0

qsort
_byteswap_uint64
abs

api-ms-win-crt-environment-l1-1-0

getenv

psapi

GetModuleInformation

Exports

Exports

??0?$FileInterface@VWinFile@File@RC@@@File@RC@@QEAA@AEBV012@@Z
??0?$FileInterface@VWinFile@File@RC@@@File@RC@@QEAA@XZ
??0?$Function@$$A6A?AUFName@Unreal@RC@@PEB_WW4EFindName@23@@Z@RC@@QEAA@XZ
??0?$Function@$$A6A?AVFText@Unreal@RC@@$$QEBVFString@23@@Z@RC@@QEAA@XZ
??0?$Function@$$A6APEAVUObject@Unreal@RC@@AEBUFStaticConstructObjectParameters@23@@Z@RC@@QEAA@XZ
??0?$Function@$$A6APEAVUObject@Unreal@RC@@PEBVUClass@23@PEAV123@UFName@23@W4EObjectFlags@23@W4EInternalObjectFlags@23@1_NPEAUFObjectInstancingGraph@23@5PEAX@Z@RC@@QEAA@XZ
??0?$Function@$$A6AXPEAVAActor@Unreal@RC@@@Z@RC@@QEAA@XZ
??0?$Function@$$A6AXPEAVAActor@Unreal@RC@@M@Z@RC@@QEAA@XZ
??0?$Function@$$A6AXPEAVAGameModeBase@Unreal@RC@@@Z@RC@@QEAA@XZ
??0?$Function@$$A6AXPEAVUObject@Unreal@RC@@AEAUFFrame@23@PEAX@Z@RC@@QEAA@XZ
??0?$Function@$$A6AXPEAVUObject@Unreal@RC@@PEAVUFunction@23@PEAX@Z@RC@@QEAA@XZ
??0?$Function@$$A6AXPEAVUStruct@Unreal@RC@@AEAUFArchive@23@_N@Z@RC@@QEAA@XZ
??0?$Function@$$A6AXPEBUFName@Unreal@RC@@AEAVFStringOut@23@@Z@RC@@QEAA@XZ
??0?$Function@$$A6A_NPEAVUEngine@Unreal@RC@@AEAUFWorldContext@23@UFURL@23@PEAVUPendingNetGame@23@AEAVFString@23@@Z@RC@@QEAA@XZ
??0?$Function@$$A6A_NPEAVULocalPlayer@Unreal@RC@@PEAVUWorld@23@PEB_WAEAVFOutputDevice@23@@Z@RC@@QEAA@XZ
??0?$Function@$$A6A_NPEAVUObject@Unreal@RC@@PEB_WAEAVFOutputDevice@23@0@Z@RC@@QEAA@XZ
??0?$Function@$$A6A_NPEAVUObject@Unreal@RC@@PEB_WAEAVFOutputDevice@23@0_N@Z@RC@@QEAA@XZ
??0?$LuaTableData@$0?0@LuaMadeSimple@RC@@QEAA@XZ
??0?$LuaTableData@$0?1@LuaMadeSimple@RC@@QEAA@XZ
??0Array@JSON@RC@@QEAA@XZ
??0BaseObject@Type@LuaMadeSimple@RC@@IEAA@PEBD@Z
??0Bool@JSON@RC@@QEAA@AEBV012@@Z
??0Bool@JSON@RC@@QEAA@_N@Z
??0CppUserModBase@RC@@QEAA@XZ
??0DebugConsoleDevice@Output@RC@@QEAA@AEBV012@@Z
??0DebugConsoleDevice@Output@RC@@QEAA@XZ
??0FAssetData427Plus@Unreal@RC@@QEAA@$$QEAU012@@Z
??0FAssetData427Plus@Unreal@RC@@QEAA@AEBU012@@Z
??0FAssetData427Plus@Unreal@RC@@QEAA@XZ
??0FAssetData51Plus@Unreal@RC@@QEAA@$$QEAU012@@Z
??0FAssetData51Plus@Unreal@RC@@QEAA@AEBU012@@Z
??0FAssetData51Plus@Unreal@RC@@QEAA@XZ
??0FAssetData@Unreal@RC@@QEAA@AEBU012@@Z
??0FAssetData@Unreal@RC@@QEAA@XZ
??0FAssetDataPre427@Unreal@RC@@QEAA@$$QEAU012@@Z
??0FAssetDataPre427@Unreal@RC@@QEAA@AEBU012@@Z
??0FAssetDataPre427@Unreal@RC@@QEAA@XZ
??0FClassCreateListener@Unreal@RC@@QEAA@$$QEAU012@@Z
??0FClassCreateListener@Unreal@RC@@QEAA@AEBU012@@Z
??0FClassCreateListener@Unreal@RC@@QEAA@XZ
??0FClassDeleteListener@Unreal@RC@@QEAA@$$QEAU012@@Z
??0FClassDeleteListener@Unreal@RC@@QEAA@AEBU012@@Z
??0FClassDeleteListener@Unreal@RC@@QEAA@XZ
??0FFieldClass@Unreal@RC@@QEAA@XZ
??0FFieldClassRegistrar@Internal@Unreal@RC@@IEAA@PEAVFFieldClassVariant@23@PEB_W@Z
??0FFieldClassVariant@Unreal@RC@@QEAA@PEAVFFieldClass@12@@Z
??0FFieldClassVariant@Unreal@RC@@QEAA@PEAVUClass@12@@Z
??0FFieldClassVariant@Unreal@RC@@QEAA@PEBVUClass@12@@Z
??0FFieldClassVariant@Unreal@RC@@QEAA@XZ
??0FFieldPath@Unreal@RC@@QEAA@$$QEAU012@@Z
??0FFieldPath@Unreal@RC@@QEAA@AEBU012@@Z
??0FFieldPath@Unreal@RC@@QEAA@XZ
??0FFieldVariant@Unreal@RC@@QEAA@PEAVFField@12@@Z
??0FFieldVariant@Unreal@RC@@QEAA@PEAVUObject@12@@Z
??0FFrame_50_AndBelow@Unreal@RC@@QEAA@$$QEAU012@@Z
??0FFrame_50_AndBelow@Unreal@RC@@QEAA@AEBU012@@Z
??0FFrame_50_AndBelow@Unreal@RC@@QEAA@XZ
??0FFrame_51_AndAbove@Unreal@RC@@QEAA@$$QEAU012@@Z
??0FFrame_51_AndAbove@Unreal@RC@@QEAA@AEBU012@@Z
??0FFrame_51_AndAbove@Unreal@RC@@QEAA@XZ
??0FGuid@Unreal@RC@@QEAA@IIII@Z
??0FGuid@Unreal@RC@@QEAA@XZ
??0FName@Unreal@RC@@QEAA@II@Z
??0FName@Unreal@RC@@QEAA@PEB_WW4EFindName@12@PEAX@Z
??0FName@Unreal@RC@@QEAA@V?$basic_string_view@_WU?$char_traits@_W@std@@@std@@IW4EFindName@12@PEAX@Z
??0FName@Unreal@RC@@QEAA@V?$basic_string_view@_WU?$char_traits@_W@std@@@std@@W4EFindName@12@PEAX@Z
??0FName@Unreal@RC@@QEAA@XZ
??0FName@Unreal@RC@@QEAA@_J@Z
??0FOutParmRec@Unreal@RC@@QEAA@XZ
??0FOutputDevice@Unreal@RC@@QEAA@AEBV012@@Z
??0FOutputDevice@Unreal@RC@@QEAA@XZ
??0FQuat@Unreal@RC@@QEAA@AEBUFRotator@12@@Z
??0FQuat@Unreal@RC@@QEAA@NNNN@Z
??0FQuat@Unreal@RC@@QEAA@XZ
??0FRotator@Unreal@RC@@QEAA@NNN@Z
??0FRotator@Unreal@RC@@QEAA@XZ
??0FStaticConstructObjectParameters@Unreal@RC@@QEAA@PEBVUClass@12@PEAVUObject@12@@Z
??0FString@Unreal@RC@@QEAA@AEBV012@@Z
??0FString@Unreal@RC@@QEAA@PEA_W@Z
??0FString@Unreal@RC@@QEAA@PEB_W@Z
??0FString@Unreal@RC@@QEAA@XZ
??0FText@Unreal@RC@@QEAA@$$QEBVFString@12@PEAX@Z
??0FText@Unreal@RC@@QEAA@PEB_WPEAX@Z
??0FText@Unreal@RC@@QEAA@V?$basic_string_view@_WU?$char_traits@_W@std@@@std@@PEAX@Z
??0FText@Unreal@RC@@QEAA@XZ
??0FTransform@Unreal@RC@@QEAA@UFQuat@12@UFVector@12@1@Z
??0FUObjectCreateListener@Unreal@RC@@QEAA@AEBV012@@Z
??0FUObjectCreateListener@Unreal@RC@@QEAA@XZ
??0FUObjectDeleteListener@Unreal@RC@@QEAA@AEBV012@@Z
??0FUObjectDeleteListener@Unreal@RC@@QEAA@XZ
??0FURL@Unreal@RC@@QEAA@$$QEAU012@@Z
??0FURL@Unreal@RC@@QEAA@AEBU012@@Z
??0FURL@Unreal@RC@@QEAA@XZ
??0FWeakObjectPtr@Unreal@RC@@QEAA@XZ
??0Handler@Input@RC@@QEAA@$$QEAV012@@Z
??0Handler@Input@RC@@QEAA@AEBV012@@Z
??0Lua@LuaMadeSimple@RC@@QEAA@PEAUlua_State@@@Z
??0LuaTableReference@LuaMadeSimple@RC@@QEAA@XZ
??0MetaMethodContainer@Type@LuaMadeSimple@RC@@QEAA@XZ
??0Mod@RC@@QEAA@AEAVUE4SSProgram@1@$$QEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@1@Z
??0Mod@RC@@QEAA@AEBV01@@Z
??0Null@JSON@RC@@QEAA@AEBV012@@Z
??0Null@JSON@RC@@QEAA@XZ
??0Number@JSON@RC@@QEAA@AEBV012@@Z
??0Number@JSON@RC@@QEAA@H@Z
??0Number@JSON@RC@@QEAA@I@Z
??0Number@JSON@RC@@QEAA@M@Z
??0Number@JSON@RC@@QEAA@N@Z
??0Number@JSON@RC@@QEAA@_J@Z
??0Number@JSON@RC@@QEAA@_K@Z
??0Object@JSON@RC@@QEAA@W4IsGlobalObject@012@@Z
??0Object@JSON@RC@@QEAA@XZ
??0OutputDevice@Output@RC@@QEAA@AEBV012@@Z
??0OutputDevice@Output@RC@@QEAA@XZ
??0ReflectedFunctionBase@Unreal@RC@@QEAA@PEB_W@Z
??0Registry@Lua@LuaMadeSimple@RC@@QEAA@AEBV123@@Z
??0ScanError@Signatures@Unreal@RC@@QEAA@$$QEAU0123@@Z
??0ScanError@Signatures@Unreal@RC@@QEAA@AEBU0123@@Z
??0ScanError@Signatures@Unreal@RC@@QEAA@V?$basic_string_view@DU?$char_traits@D@std@@@std@@_N@Z
??0ScanResult@Signatures@Unreal@RC@@QEAA@$$QEAU0123@@Z
??0ScanResult@Signatures@Unreal@RC@@QEAA@AEBU0123@@Z
??0ScanResult@Signatures@Unreal@RC@@QEAA@XZ
??0ScanTargetArray@RC@@QEAA@XZ
??0SettingsManager@RC@@QEAA@$$QEAV01@@Z
??0SettingsManager@RC@@QEAA@AEBV01@@Z
??0SettingsManager@RC@@QEAA@XZ
??0SignatureContainerLight@RC@@QEAA@XZ
??0SignatureData@RC@@QEAA@$$QEAU01@@Z
??0SignatureData@RC@@QEAA@AEBU01@@Z
??0SignatureData@RC@@QEAA@XZ
??0String@JSON@RC@@QEAA@V?$basic_string_view@_WU?$char_traits@_W@std@@@std@@@Z
??0String@JSON@RC@@QEAA@XZ
??0Table@Lua@LuaMadeSimple@RC@@QEAA@AEBV123@@Z
??0Token@ParserBase@RC@@QEAA@HV?$basic_string_view@_WU?$char_traits@_W@std@@@std@@0W4HasData@012@@Z
??0TokenParser@ParserBase@RC@@QEAA@AEBVTokenizer@12@AEAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
??0UClassRegistrar@Internal@Unreal@RC@@IEAA@PEAPEAVUClass@23@PEB_W1@Z
??0UnrealScriptFunctionCallableContext@Unreal@RC@@QEAA@PEAVUObject@12@AEAUFFrame@12@PEAX@Z
??0UnrealScriptFunctionData@Unreal@RC@@QEAA@P6AXPEAVUObject@12@AEAUFFrame@12@PEAX@Z@Z
??0Value@JSON@RC@@QEAA@AEBV012@@Z
??0Value@JSON@RC@@QEAA@XZ
??0VersionStatus@Unreal@RC@@QEAA@$$QEAU012@@Z
??0VersionStatus@Unreal@RC@@QEAA@AEBU012@@Z
??0VersionStatus@Unreal@RC@@QEAA@W4StatusCode@012@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
??0VersionStatus@Unreal@RC@@QEAA@XZ
??1?$FileInterface@VWinFile@File@RC@@@File@RC@@UEAA@XZ
??1Array@JSON@RC@@UEAA@XZ
??1Bool@JSON@RC@@UEAA@XZ
??1CppUserModBase@RC@@UEAA@XZ
??1DebugConsoleDevice@Output@RC@@UEAA@XZ
??1FAssetData427Plus@Unreal@RC@@QEAA@XZ
??1FAssetData51Plus@Unreal@RC@@QEAA@XZ
??1FAssetDataPre427@Unreal@RC@@QEAA@XZ
??1FClassCreateListener@Unreal@RC@@UEAA@XZ
??1FClassDeleteListener@Unreal@RC@@UEAA@XZ
??1FFieldPath@Unreal@RC@@QEAA@XZ
??1FFrame_50_AndBelow@Unreal@RC@@UEAA@XZ
??1FFrame_51_AndAbove@Unreal@RC@@UEAA@XZ
??1FOutputDevice@Unreal@RC@@UEAA@XZ
??1FString@Unreal@RC@@QEAA@XZ
??1FUObjectCreateListener@Unreal@RC@@UEAA@XZ
??1FUObjectDeleteListener@Unreal@RC@@UEAA@XZ
??1FURL@Unreal@RC@@QEAA@XZ
??1Handler@Input@RC@@QEAA@XZ
??1Lua@LuaMadeSimple@RC@@QEAA@XZ
??1Mod@RC@@UEAA@XZ
??1Null@JSON@RC@@UEAA@XZ
??1Number@JSON@RC@@UEAA@XZ
??1Object@JSON@RC@@UEAA@XZ
??1OutputDevice@Output@RC@@UEAA@XZ
??1ScanError@Signatures@Unreal@RC@@QEAA@XZ
??1ScanResult@Signatures@Unreal@RC@@QEAA@XZ
??1SettingsManager@RC@@QEAA@XZ
??1SignatureData@RC@@QEAA@XZ
??1String@JSON@RC@@UEAA@XZ
??1TokenParser@ParserBase@RC@@UEAA@XZ
??1UnrealScriptFunctionData@Unreal@RC@@QEAA@XZ
??1Value@JSON@RC@@UEAA@XZ
??1VersionStatus@Unreal@RC@@QEAA@XZ
??4?$FileInterface@VWinFile@File@RC@@@File@RC@@QEAAAEAV012@AEBV012@@Z
??4?$IsTInlineAllocatorHelper@V?$TSizedDefaultAllocator@$0CA@@Unreal@RC@@@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4?$IsTInlineAllocatorHelper@V?$TSizedDefaultAllocator@$0CA@@Unreal@RC@@@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4?$LuaTableData@$0?0@LuaMadeSimple@RC@@QEAAAEAU012@$$QEAU012@@Z
??4?$LuaTableData@$0?0@LuaMadeSimple@RC@@QEAAAEAU012@AEBU012@@Z
??4?$LuaTableData@$0?1@LuaMadeSimple@RC@@QEAAAEAU012@$$QEAU012@@Z
??4?$LuaTableData@$0?1@LuaMadeSimple@RC@@QEAAAEAU012@AEBU012@@Z
??4?$StaticReflectedFunctionBase@VUAssetRegistryHelpers@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$StaticReflectedFunctionBase@VUAssetRegistryHelpers@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$StaticReflectedFunctionBase@VUGameplayStatics@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$StaticReflectedFunctionBase@VUGameplayStatics@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TFObjectPropertyBase@PEAVUObject@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TFObjectPropertyBase@PEAVUObject@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TFObjectPropertyBase@UFLazyObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TFObjectPropertyBase@UFLazyObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TFObjectPropertyBase@UFSoftObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TFObjectPropertyBase@UFSoftObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TFObjectPropertyBase@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TFObjectPropertyBase@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@CVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@CVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@EVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@EVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@FVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@FVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@GVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@GVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@HVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@HVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@IVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@IVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@MVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@MVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@NVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@NVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@PEAVUObject@Unreal@RC@@VFObjectPropertyBase@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@PEAVUObject@Unreal@RC@@VFObjectPropertyBase@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@UFFieldPath@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@UFFieldPath@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@UFLazyObjectPtr@Unreal@RC@@VFObjectPropertyBase@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@UFLazyObjectPtr@Unreal@RC@@VFObjectPropertyBase@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@UFName@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@UFName@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@UFSoftObjectPtr@Unreal@RC@@VFObjectPropertyBase@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@UFSoftObjectPtr@Unreal@RC@@VFObjectPropertyBase@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@UFSparseDelegate@Unreal@RC@@VFMulticastDelegateProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@UFSparseDelegate@Unreal@RC@@VFMulticastDelegateProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@UFWeakObjectPtr@Unreal@RC@@VFObjectPropertyBase@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@UFWeakObjectPtr@Unreal@RC@@VFObjectPropertyBase@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@V?$TMulticastScriptDelegate@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@VFMulticastDelegateProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@V?$TMulticastScriptDelegate@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@VFMulticastDelegateProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@V?$TScriptDelegate@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@V?$TScriptDelegate@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@VFScriptInterface@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@VFScriptInterface@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@VFString@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@VFString@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@VFText@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@VFText@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@_JVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@_JVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty@_KVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty@_KVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@C@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@C@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@E@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@E@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@F@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@F@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@G@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@G@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@H@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@H@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@I@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@I@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@M@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@M@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@N@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@N@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@PEAVUObject@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@PEAVUObject@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@UFFieldPath@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@UFFieldPath@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@UFLazyObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@UFLazyObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@UFName@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@UFName@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@UFSoftObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@UFSoftObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@UFSparseDelegate@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@UFSparseDelegate@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@V?$TMulticastScriptDelegate@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@V?$TMulticastScriptDelegate@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@V?$TScriptDelegate@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@V?$TScriptDelegate@UFWeakObjectPtr@Unreal@RC@@@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@VFScriptInterface@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@VFScriptInterface@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@VFString@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@VFString@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@VFText@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@VFText@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@_J@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@_J@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TPropertyTypeFundamentals@_K@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TPropertyTypeFundamentals@_K@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@C@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@C@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@E@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@E@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@F@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@F@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@G@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@G@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@H@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@H@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@I@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@I@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@M@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@M@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@N@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@N@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@_J@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@_J@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_Numeric@_K@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_Numeric@_K@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@CVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@CVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@EVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@EVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@FVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@FVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@GVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@GVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@HVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@HVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@IVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@IVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@MVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@MVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@NVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@NVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@UFName@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@UFName@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@VFString@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@VFString@Unreal@RC@@VFProperty@23@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@_JVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@_JVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4?$TProperty_WithEqualityAndSerializer@_KVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4?$TProperty_WithEqualityAndSerializer@_KVFNumericProperty@Unreal@RC@@@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4AActor@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4AActor@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4AGameMode@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4AGameMode@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4AGameModeBase@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4AGameModeBase@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4BaseObject@Type@LuaMadeSimple@RC@@QEAAAEAV0123@$$QEAV0123@@Z
??4BaseObject@Type@LuaMadeSimple@RC@@QEAAAEAV0123@AEBV0123@@Z
??4Bool@JSON@RC@@QEAAAEAV012@AEBV012@@Z
??4DebugConsoleDevice@Output@RC@@QEAAAEAV012@AEBV012@@Z
??4FArrayProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FArrayProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FAssetClassProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FAssetClassProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FAssetData427Plus@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FAssetData427Plus@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FAssetData51Plus@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FAssetData51Plus@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FAssetData@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FAssetDataPre427@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FAssetDataPre427@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FAssetObjectProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FAssetObjectProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FBoolProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FBoolProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FByteProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FByteProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FClassCreateListener@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FClassCreateListener@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FClassDeleteListener@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FClassDeleteListener@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FClassProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FClassProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FClassPtrProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FClassPtrProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FDelegateProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FDelegateProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FDoubleProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FDoubleProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FEnumProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FEnumProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FField@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FField@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FFieldClass@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FFieldClass@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FFieldClassRegistrar@Internal@Unreal@RC@@QEAAAEAV0123@$$QEAV0123@@Z
??4FFieldClassRegistrar@Internal@Unreal@RC@@QEAAAEAV0123@AEBV0123@@Z
??4FFieldClassVariant@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FFieldClassVariant@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FFieldPath@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FFieldPath@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FFieldPathProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FFieldPathProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FFieldVariant@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FFieldVariant@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FFloatProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FFloatProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FFrame@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FFrame@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FFrame_50_AndBelow@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FFrame_50_AndBelow@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FFrame_51_AndAbove@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FFrame_51_AndAbove@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FGuid@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FGuid@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FImplementedInterface@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FImplementedInterface@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FInt16Property@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FInt16Property@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FInt64Property@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FInt64Property@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FInt8Property@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FInt8Property@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FIntProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FIntProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FInterfaceProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FInterfaceProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FLazyObjectProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FLazyObjectProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FMalloc@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FMalloc@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FMapProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FMapProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FMemory@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FMemory@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FMulticastDelegateProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FMulticastDelegateProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FMulticastInlineDelegateProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FMulticastInlineDelegateProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FMulticastSparseDelegateProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FMulticastSparseDelegateProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FName@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FName@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FNameProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FNameProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FNumericProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FNumericProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FObjectProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FObjectProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FObjectPropertyBase@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FObjectPropertyBase@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FObjectPtrProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FObjectPtrProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FOutParmRec@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FOutParmRec@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FOutputDevice@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FQuat@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FQuat@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FRotator@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FRotator@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FSetProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FSetProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FSoftClassProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FSoftClassProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FSoftObjectProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FSoftObjectProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FSparseDelegate@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FSparseDelegate@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FStaticConstructObjectParameters@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FStaticConstructObjectParameters@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FStrProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FStrProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FString@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FStructProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FStructProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FText@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FText@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FTextProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FTextProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FTransform@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FTransform@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FUInt16Property@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FUInt16Property@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FUInt32Property@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FUInt32Property@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FUInt64Property@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FUInt64Property@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FUObjectCreateListener@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FUObjectDeleteListener@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FUObjectItem@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FUObjectItem@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FURL@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FURL@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FWeakObjectProperty@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4FWeakObjectProperty@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4FWeakObjectPtr@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FWeakObjectPtr@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4FWeakObjectPtr@Unreal@RC@@QEAAXPEAVUObject@12@@Z
??4FWorldContext@Unreal@RC@@QEAAAEAU012@$$QEAU012@@Z
??4FWorldContext@Unreal@RC@@QEAAAEAU012@AEBU012@@Z
??4GenericItemData@File@RC@@QEAAAEAU012@$$QEAU012@@Z
??4GenericItemData@File@RC@@QEAAAEAU012@AEBU012@@Z
??4Handler@Input@RC@@QEAAAEAV012@$$QEAV012@@Z
??4Handler@Input@RC@@QEAAAEAV012@AEBV012@@Z
??4ICppStructOps@UScriptStruct@Unreal@RC@@QEAAAEAU0123@$$QEAU0123@@Z
??4ICppStructOps@UScriptStruct@Unreal@RC@@QEAAAEAU0123@AEBU0123@@Z
??4ITextData@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4ITextData@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4InstancedReflectedFunction@Unreal@RC@@QEAAAEAV012@$$QEAV012@@Z
??4InstancedReflectedFunction@Unreal@RC@@QEAAAEAV012@AEBV012@@Z
??4LuaTableReference@LuaMadeSimple@RC@@QEAAAEAU012@$$QEAU012@@Z
??4LuaTableReference@LuaMadeSimple@RC@@QEAAAEAU012@AEBU012@@Z
??4MetaMethodContainer@Type@LuaMadeSimple@RC@@QEAAAEAU0123@$$QEAU0123@@Z
??4MetaMethodContainer@Type@LuaMadeSimple@RC@@QEAAAEAU0123@AEBU0123@@Z
??4Null@JSON@RC@@QEAAAEAV012@AEBV012@@Z
??4Number@JSON@RC@@QEAAAEAV012@AEBV012@@Z
??4OpenProperties@File@RC@@QEAAAEAU012@$$QEAU012@@Z
??4OpenProperties@File@RC@@QEAAAEAU012@AEBU012@@Z
??4OutputDevice@Output@RC@@QEAAAEAV012@AEBV012@@Z

Sections

.text
Size: 10.8MB - Virtual size: 10.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 561KB - Virtual size: 634KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 592KB - Virtual size: 591KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/Dependencies/umodel/LICENSE.txt
Unverum/Dependencies/umodel/SDL2_64.dll
.dll windows:4 windows x64 arch:x64

Password: infected

a7a03d173769b6d1869a942c482e72d8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

gdi32

BitBlt
ChoosePixelFormat
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCW
CreateDIBSection
CreateFontIndirectW
CreateFontW
CreatePen
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
DescribePixelFormat
ExtTextOutW
GetDIBits
GetDeviceCaps
GetDeviceGammaRamp
GetPixelFormat
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextMetricsW
Rectangle
SelectObject
SetBkMode
SetDeviceGammaRamp
SetPixelFormat
SetTextColor
SwapBuffers

imm32

ImmAssociateContext
ImmGetCandidateListW
ImmGetCompositionStringW
ImmGetContext
ImmGetIMEFileNameA
ImmNotifyIME
ImmReleaseContext
ImmSetCompositionStringW
ImmSetCompositionWindow

kernel32

AttachConsole
CancelIo
CloseHandle
CompareStringA
CreateDirectoryW
CreateEventA
CreateEventW
CreateFileA
CreateFileW
CreateSemaphoreW
CreateThread
CreateToolhelp32Snapshot
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
ExitProcess
FormatMessageW
FreeLibrary
GetConsoleMode
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetEnvironmentVariableA
GetFileSizeEx
GetLastError
GetModuleFileNameW
GetModuleHandleW
GetOverlappedResult
GetProcAddress
GetStdHandle
GetSystemInfo
GetSystemPowerStatus
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GlobalAlloc
GlobalLock
GlobalMemoryStatusEx
GlobalUnlock
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
LocalFree
MulDiv
OutputDebugStringW
Process32First
Process32Next
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadFile
ReleaseSemaphore
ResetEvent
RtlAddFunctionTable
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetEnvironmentVariableA
SetErrorMode
SetFilePointer
SetFilePointerEx
SetThreadExecutionState
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrcatW
lstrlenA
lstrlenW

msvcrt

__dllonexit
__iob_func
_amsg_exit
_initterm
_lock
_onexit
_unlock
abort
calloc
fputs
free
malloc
memcpy
memmove
memset
signal
strncmp
vfprintf

ole32

CoCreateInstance
CoInitializeEx
CoTaskMemFree
CoUninitialize
PropVariantClear

oleaut32

SysFreeString

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiGetDeviceRegistryPropertyA

shell32

DragAcceptFiles
DragFinish
DragQueryFileW
ExtractIconExW
SHGetFolderPathW

user32

AdjustWindowRectEx
CallWindowProcW
ChangeDisplaySettingsExW
ClientToScreen
ClipCursor
CloseClipboard
CreateIconFromResource
CreateIconIndirect
CreateWindowExA
CreateWindowExW
DefWindowProcW
DestroyIcon
DestroyWindow
DialogBoxIndirectParamW
DispatchMessageW
DrawTextW
EmptyClipboard
EndDialog
EnumDisplayDevicesW
EnumDisplayMonitors
EnumDisplaySettingsW
GetAsyncKeyState
GetClassInfoExW
GetClientRect
GetClipCursor
GetClipboardData
GetClipboardSequenceNumber
GetCursorPos
GetDC
GetDesktopWindow
GetDlgItem
GetDoubleClickTime
GetFocus
GetKeyState
GetKeyboardLayout
GetKeyboardState
GetMenu
GetMessageExtraInfo
GetMessageW
GetMonitorInfoW
GetParent
GetPropW
GetRawInputData
GetRawInputDeviceInfoA
GetRawInputDeviceList
GetSystemMetrics
GetUpdateRect
GetWindowLongPtrW
GetWindowLongW
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
InvalidateRect
IsClipboardFormatAvailable
IsIconic
IsRectEmpty
IsWindowVisible
KillTimer
LoadCursorW
LoadIconW
MapVirtualKeyW
OpenClipboard
PeekMessageW
PostMessageW
PostThreadMessageW
RegisterClassExA
RegisterClassExW
RegisterClassW
RegisterDeviceNotificationW
RegisterRawInputDevices
ReleaseDC
RemovePropW
ScreenToClient
SendMessageW
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetLayeredWindowAttributes
SetPropW
SetTimer
SetWindowLongPtrW
SetWindowLongW
SetWindowPos
SetWindowRgn
SetWindowTextW
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
ToUnicode
TrackMouseEvent
TranslateMessage
UnregisterClassA
UnregisterClassW
UnregisterDeviceNotification
ValidateRect
WindowFromPoint

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime
waveInAddBuffer
waveInClose
waveInGetDevCapsW
waveInGetNumDevs
waveInOpen
waveInPrepareHeader
waveInReset
waveInStart
waveInUnprepareHeader
waveOutClose
waveOutGetDevCapsW
waveOutGetErrorTextW
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

Exports

Exports

SDL_AddEventWatch
SDL_AddHintCallback
SDL_AddTimer
SDL_AllocFormat
SDL_AllocPalette
SDL_AllocRW
SDL_AtomicAdd
SDL_AtomicCAS
SDL_AtomicCASPtr
SDL_AtomicGet
SDL_AtomicGetPtr
SDL_AtomicLock
SDL_AtomicSet
SDL_AtomicSetPtr
SDL_AtomicTryLock
SDL_AtomicUnlock
SDL_AudioInit
SDL_AudioQuit
SDL_AudioStreamAvailable
SDL_AudioStreamClear
SDL_AudioStreamFlush
SDL_AudioStreamGet
SDL_AudioStreamPut
SDL_BuildAudioCVT
SDL_CalculateGammaRamp
SDL_CaptureMouse
SDL_ClearError
SDL_ClearHints
SDL_ClearQueuedAudio
SDL_CloseAudio
SDL_CloseAudioDevice
SDL_ComposeCustomBlendMode
SDL_CondBroadcast
SDL_CondSignal
SDL_CondWait
SDL_CondWaitTimeout
SDL_ConvertAudio
SDL_ConvertPixels
SDL_ConvertSurface
SDL_ConvertSurfaceFormat
SDL_CreateColorCursor
SDL_CreateCond
SDL_CreateCursor
SDL_CreateMutex
SDL_CreateRGBSurface
SDL_CreateRGBSurfaceFrom
SDL_CreateRGBSurfaceWithFormat
SDL_CreateRGBSurfaceWithFormatFrom
SDL_CreateRenderer
SDL_CreateSemaphore
SDL_CreateShapedWindow
SDL_CreateSoftwareRenderer
SDL_CreateSystemCursor
SDL_CreateTexture
SDL_CreateTextureFromSurface
SDL_CreateThread
SDL_CreateThreadWithStackSize
SDL_CreateWindow
SDL_CreateWindowAndRenderer
SDL_CreateWindowFrom
SDL_DXGIGetOutputInfo
SDL_DYNAPI_entry
SDL_DelEventWatch
SDL_DelHintCallback
SDL_Delay
SDL_DequeueAudio
SDL_DestroyCond
SDL_DestroyMutex
SDL_DestroyRenderer
SDL_DestroySemaphore
SDL_DestroyTexture
SDL_DestroyWindow
SDL_DetachThread
SDL_Direct3D9GetAdapterIndex
SDL_DisableScreenSaver
SDL_DuplicateSurface
SDL_EnableScreenSaver
SDL_EnclosePoints
SDL_Error
SDL_EventState
SDL_FillRect
SDL_FillRects
SDL_FilterEvents
SDL_FlushEvent
SDL_FlushEvents
SDL_FreeAudioStream
SDL_FreeCursor
SDL_FreeFormat
SDL_FreePalette
SDL_FreeRW
SDL_FreeSurface
SDL_FreeWAV
SDL_GL_BindTexture
SDL_GL_CreateContext
SDL_GL_DeleteContext
SDL_GL_ExtensionSupported
SDL_GL_GetAttribute
SDL_GL_GetCurrentContext
SDL_GL_GetCurrentWindow
SDL_GL_GetDrawableSize
SDL_GL_GetProcAddress
SDL_GL_GetSwapInterval
SDL_GL_LoadLibrary
SDL_GL_MakeCurrent
SDL_GL_ResetAttributes
SDL_GL_SetAttribute
SDL_GL_SetSwapInterval
SDL_GL_SwapWindow
SDL_GL_UnbindTexture
SDL_GL_UnloadLibrary
SDL_GameControllerAddMapping
SDL_GameControllerAddMappingsFromRW
SDL_GameControllerClose
SDL_GameControllerEventState
SDL_GameControllerFromInstanceID
SDL_GameControllerGetAttached
SDL_GameControllerGetAxis
SDL_GameControllerGetAxisFromString
SDL_GameControllerGetBindForAxis
SDL_GameControllerGetBindForButton
SDL_GameControllerGetButton
SDL_GameControllerGetButtonFromString
SDL_GameControllerGetJoystick
SDL_GameControllerGetPlayerIndex
SDL_GameControllerGetProduct
SDL_GameControllerGetProductVersion
SDL_GameControllerGetStringForAxis
SDL_GameControllerGetStringForButton
SDL_GameControllerGetVendor
SDL_GameControllerMapping
SDL_GameControllerMappingForDeviceIndex
SDL_GameControllerMappingForGUID
SDL_GameControllerMappingForIndex
SDL_GameControllerName
SDL_GameControllerNameForIndex
SDL_GameControllerNumMappings
SDL_GameControllerOpen
SDL_GameControllerRumble
SDL_GameControllerUpdate
SDL_GetAssertionHandler
SDL_GetAssertionReport
SDL_GetAudioDeviceName
SDL_GetAudioDeviceStatus
SDL_GetAudioDriver
SDL_GetAudioStatus
SDL_GetBasePath
SDL_GetCPUCacheLineSize
SDL_GetCPUCount
SDL_GetClipRect
SDL_GetClipboardText
SDL_GetClosestDisplayMode
SDL_GetColorKey
SDL_GetCurrentAudioDriver
SDL_GetCurrentDisplayMode
SDL_GetCurrentVideoDriver
SDL_GetCursor
SDL_GetDefaultAssertionHandler
SDL_GetDefaultCursor
SDL_GetDesktopDisplayMode
SDL_GetDisplayBounds
SDL_GetDisplayDPI
SDL_GetDisplayMode
SDL_GetDisplayName
SDL_GetDisplayOrientation
SDL_GetDisplayUsableBounds
SDL_GetError
SDL_GetEventFilter
SDL_GetGlobalMouseState
SDL_GetGrabbedWindow
SDL_GetHint
SDL_GetHintBoolean
SDL_GetKeyFromName
SDL_GetKeyFromScancode
SDL_GetKeyName
SDL_GetKeyboardFocus
SDL_GetKeyboardState
SDL_GetMemoryFunctions
SDL_GetModState
SDL_GetMouseFocus
SDL_GetMouseState
SDL_GetNumAllocations
SDL_GetNumAudioDevices
SDL_GetNumAudioDrivers
SDL_GetNumDisplayModes
SDL_GetNumRenderDrivers
SDL_GetNumTouchDevices
SDL_GetNumTouchFingers
SDL_GetNumVideoDisplays
SDL_GetNumVideoDrivers
SDL_GetPerformanceCounter
SDL_GetPerformanceFrequency
SDL_GetPixelFormatName
SDL_GetPlatform
SDL_GetPowerInfo
SDL_GetPrefPath
SDL_GetQueuedAudioSize
SDL_GetRGB
SDL_GetRGBA
SDL_GetRelativeMouseMode
SDL_GetRelativeMouseState
SDL_GetRenderDrawBlendMode
SDL_GetRenderDrawColor
SDL_GetRenderDriverInfo
SDL_GetRenderTarget
SDL_GetRenderer
SDL_GetRendererInfo
SDL_GetRendererOutputSize
SDL_GetRevision
SDL_GetRevisionNumber
SDL_GetScancodeFromKey
SDL_GetScancodeFromName
SDL_GetScancodeName
SDL_GetShapedWindowMode
SDL_GetSurfaceAlphaMod
SDL_GetSurfaceBlendMode
SDL_GetSurfaceColorMod
SDL_GetSystemRAM
SDL_GetTextureAlphaMod
SDL_GetTextureBlendMode
SDL_GetTextureColorMod
SDL_GetThreadID
SDL_GetThreadName
SDL_GetTicks
SDL_GetTouchDevice
SDL_GetTouchDeviceType
SDL_GetTouchFinger
SDL_GetVersion
SDL_GetVideoDriver
SDL_GetWindowBordersSize
SDL_GetWindowBrightness
SDL_GetWindowData
SDL_GetWindowDisplayIndex
SDL_GetWindowDisplayMode
SDL_GetWindowFlags
SDL_GetWindowFromID
SDL_GetWindowGammaRamp
SDL_GetWindowGrab
SDL_GetWindowID
SDL_GetWindowMaximumSize
SDL_GetWindowMinimumSize
SDL_GetWindowOpacity
SDL_GetWindowPixelFormat
SDL_GetWindowPosition
SDL_GetWindowSize
SDL_GetWindowSurface
SDL_GetWindowTitle
SDL_GetWindowWMInfo
SDL_GetYUVConversionMode
SDL_GetYUVConversionModeForResolution
SDL_HapticClose
SDL_HapticDestroyEffect
SDL_HapticEffectSupported
SDL_HapticGetEffectStatus
SDL_HapticIndex
SDL_HapticName
SDL_HapticNewEffect
SDL_HapticNumAxes
SDL_HapticNumEffects
SDL_HapticNumEffectsPlaying
SDL_HapticOpen
SDL_HapticOpenFromJoystick
SDL_HapticOpenFromMouse
SDL_HapticOpened
SDL_HapticPause
SDL_HapticQuery
SDL_HapticRumbleInit
SDL_HapticRumblePlay
SDL_HapticRumbleStop
SDL_HapticRumbleSupported
SDL_HapticRunEffect
SDL_HapticSetAutocenter
SDL_HapticSetGain
SDL_HapticStopAll
SDL_HapticStopEffect
SDL_HapticUnpause
SDL_HapticUpdateEffect
SDL_Has3DNow
SDL_HasAVX
SDL_HasAVX2
SDL_HasAVX512F
SDL_HasAltiVec
SDL_HasClipboardText
SDL_HasColorKey
SDL_HasEvent
SDL_HasEvents
SDL_HasIntersection
SDL_HasMMX
SDL_HasNEON
SDL_HasRDTSC
SDL_HasSSE
SDL_HasSSE2
SDL_HasSSE3
SDL_HasSSE41
SDL_HasSSE42
SDL_HasScreenKeyboardSupport
SDL_HideWindow
SDL_Init
SDL_InitSubSystem
SDL_IntersectRect
SDL_IntersectRectAndLine
SDL_IsGameController
SDL_IsScreenKeyboardShown
SDL_IsScreenSaverEnabled
SDL_IsShapedWindow
SDL_IsTablet
SDL_IsTextInputActive
SDL_JoystickClose
SDL_JoystickCurrentPowerLevel
SDL_JoystickEventState
SDL_JoystickFromInstanceID
SDL_JoystickGetAttached
SDL_JoystickGetAxis
SDL_JoystickGetAxisInitialState
SDL_JoystickGetBall
SDL_JoystickGetButton
SDL_JoystickGetDeviceGUID
SDL_JoystickGetDeviceInstanceID
SDL_JoystickGetDevicePlayerIndex
SDL_JoystickGetDeviceProduct
SDL_JoystickGetDeviceProductVersion
SDL_JoystickGetDeviceType
SDL_JoystickGetDeviceVendor
SDL_JoystickGetGUID
SDL_JoystickGetGUIDFromString
SDL_JoystickGetGUIDString
SDL_JoystickGetHat
SDL_JoystickGetPlayerIndex
SDL_JoystickGetProduct
SDL_JoystickGetProductVersion
SDL_JoystickGetType
SDL_JoystickGetVendor
SDL_JoystickInstanceID
SDL_JoystickIsHaptic
SDL_JoystickName
SDL_JoystickNameForIndex
SDL_JoystickNumAxes
SDL_JoystickNumBalls
SDL_JoystickNumButtons
SDL_JoystickNumHats
SDL_JoystickOpen
SDL_JoystickRumble
SDL_JoystickUpdate
SDL_LoadBMP_RW
SDL_LoadDollarTemplates
SDL_LoadFile
SDL_LoadFile_RW
SDL_LoadFunction
SDL_LoadObject
SDL_LoadWAV_RW
SDL_LockAudio
SDL_LockAudioDevice
SDL_LockJoysticks
SDL_LockMutex
SDL_LockSurface
SDL_LockTexture
SDL_Log
SDL_LogCritical
SDL_LogDebug
SDL_LogError
SDL_LogGetOutputFunction
SDL_LogGetPriority
SDL_LogInfo
SDL_LogMessage
SDL_LogMessageV
SDL_LogResetPriorities
SDL_LogSetAllPriority
SDL_LogSetOutputFunction
SDL_LogSetPriority
SDL_LogVerbose
SDL_LogWarn
SDL_LowerBlit
SDL_LowerBlitScaled
SDL_MapRGB
SDL_MapRGBA
SDL_MasksToPixelFormatEnum
SDL_MaximizeWindow
SDL_MemoryBarrierAcquireFunction
SDL_MemoryBarrierReleaseFunction
SDL_MinimizeWindow
SDL_MixAudio
SDL_MixAudioFormat
SDL_MouseIsHaptic
SDL_NewAudioStream
SDL_NumHaptics
SDL_NumJoysticks
SDL_NumSensors
SDL_OpenAudio
SDL_OpenAudioDevice
SDL_PauseAudio
SDL_PauseAudioDevice
SDL_PeepEvents
SDL_PixelFormatEnumToMasks
SDL_PollEvent
SDL_PumpEvents
SDL_PushEvent
SDL_QueryTexture
SDL_QueueAudio
SDL_Quit
SDL_QuitSubSystem
SDL_RWFromConstMem
SDL_RWFromFP
SDL_RWFromFile
SDL_RWFromMem
SDL_RWclose
SDL_RWread
SDL_RWseek
SDL_RWsize
SDL_RWtell
SDL_RWwrite
SDL_RaiseWindow
SDL_ReadBE16
SDL_ReadBE32
SDL_ReadBE64
SDL_ReadLE16
SDL_ReadLE32
SDL_ReadLE64
SDL_ReadU8
SDL_RecordGesture
SDL_RegisterApp
SDL_RegisterEvents
SDL_RemoveTimer
SDL_RenderClear
SDL_RenderCopy
SDL_RenderCopyEx
SDL_RenderCopyExF
SDL_RenderCopyF
SDL_RenderDrawLine
SDL_RenderDrawLineF
SDL_RenderDrawLines
SDL_RenderDrawLinesF
SDL_RenderDrawPoint
SDL_RenderDrawPointF
SDL_RenderDrawPoints
SDL_RenderDrawPointsF
SDL_RenderDrawRect
SDL_RenderDrawRectF
SDL_RenderDrawRects
SDL_RenderDrawRectsF
SDL_RenderFillRect
SDL_RenderFillRectF
SDL_RenderFillRects
SDL_RenderFillRectsF
SDL_RenderFlush
SDL_RenderGetClipRect
SDL_RenderGetD3D9Device
SDL_RenderGetIntegerScale
SDL_RenderGetLogicalSize
SDL_RenderGetMetalCommandEncoder
SDL_RenderGetMetalLayer
SDL_RenderGetScale
SDL_RenderGetViewport
SDL_RenderIsClipEnabled
SDL_RenderPresent
SDL_RenderReadPixels
SDL_RenderSetClipRect
SDL_RenderSetIntegerScale
SDL_RenderSetLogicalSize
SDL_RenderSetScale
SDL_RenderSetViewport
SDL_RenderTargetSupported
SDL_ReportAssertion
SDL_ResetAssertionReport
SDL_RestoreWindow
SDL_SIMDAlloc
SDL_SIMDFree
SDL_SIMDGetAlignment
SDL_SaveAllDollarTemplates
SDL_SaveBMP_RW
SDL_SaveDollarTemplate
SDL_SemPost
SDL_SemTryWait
SDL_SemValue
SDL_SemWait
SDL_SemWaitTimeout
SDL_SensorClose
SDL_SensorFromInstanceID
SDL_SensorGetData
SDL_SensorGetDeviceInstanceID
SDL_SensorGetDeviceName
SDL_SensorGetDeviceNonPortableType
SDL_SensorGetDeviceType
SDL_SensorGetInstanceID
SDL_SensorGetName
SDL_SensorGetNonPortableType
SDL_SensorGetType
SDL_SensorOpen
SDL_SensorUpdate
SDL_SetAssertionHandler
SDL_SetClipRect
SDL_SetClipboardText
SDL_SetColorKey
SDL_SetCursor
SDL_SetError
SDL_SetEventFilter
SDL_SetHint
SDL_SetHintWithPriority
SDL_SetMainReady
SDL_SetMemoryFunctions
SDL_SetModState
SDL_SetPaletteColors

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 14KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/Dependencies/umodel/umodel_64.exe
.exe windows:5 windows x64 arch:x64

Password: infected

b2669f9ddef2bdd4b8470de8cc288887

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Projects\UModel\umodel_64.pdb

Imports

user32

SendMessageA
CloseClipboard
EmptyClipboard
SetClipboardData
LoadIconA
SetMenuItemInfoA
InsertMenuItemA
TrackPopupMenuEx
DeleteMenu
AppendMenuA
GetMenuItemCount
EnableMenuItem
CheckMenuItem
DestroyMenu
CreatePopupMenu
CreateMenu
DrawMenuBar
SetMenu
LoadImageA
GetParent
SetWindowLongPtrA
GetWindowLongPtrA
SetWindowLongA
GetWindowLongA
GetSysColor
ScreenToClient
GetCursorPos
AdjustWindowRect
GetWindowRect
GetClientRect
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
LockWindowUpdate
InvalidateRect
ReleaseDC
GetDC
SetForegroundWindow
GetSystemMetrics
IsWindowEnabled
EnableWindow
GetKeyState
IsDlgButtonChecked
CheckDlgButton
EndDialog
DialogBoxIndirectParamA
CreateDialogIndirectParamA
SetWindowPos
MoveWindow
ShowWindow
CreateWindowExA
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
OpenClipboard

gdi32

SetTextColor
SelectObject
GetTextExtentPoint32A
CreateSolidBrush

comctl32

ord410
InitCommonControlsEx
ImageList_Create
ord413
ord17
ImageList_ReplaceIcon

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA

ole32

CoInitialize
CoTaskMemFree
CoCreateInstance

shlwapi

SHAutoComplete

kernel32

CreateDirectoryW
FlushFileBuffers
WideCharToMultiByte
SetStdHandle
GetFileSizeEx
GetConsoleCP
SetFilePointerEx
ReadConsoleW
GetConsoleMode
DeleteFileW
LCMapStringW
CompareStringW
MultiByteToWideChar
GetFullPathNameW
GetCommandLineA
WriteFile
GetStdHandle
GetModuleFileNameW
GetCPInfo
FreeLibraryAndExitThread
ExitThread
CreateThread
PeekNamedPipe
GetFileType
GetFileInformationByHandle
GetDriveTypeW
CreateFileW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileW
FindFirstFileExW
FindClose
ReadFile
GetModuleHandleExW
LoadLibraryExW
GetCurrentDirectoryW
HeapReAlloc
IsValidCodePage
GetACP
GetCommandLineW
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
GetTimeZoneInformation
HeapSize
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
SetLastError
RtlUnwind
RtlPcToFileHeader
SetEndOfFile
SetConsoleCtrlHandler
GetModuleHandleA
LoadLibraryA
GetTickCount
VirtualQuery
GetModuleFileNameA
GlobalAlloc
GlobalUnlock
GlobalLock
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseSemaphore
WaitForSingleObject
Sleep
GetCurrentThreadId
ResumeThread
GetNativeSystemInfo
CreateSemaphoreA
WriteConsoleW
FreeLibrary
GetProcAddress
VerSetConditionMask
VerifyVersionInfoW
ExitProcess
RaiseException
GetLastError
GetSystemInfo
VirtualProtect
GetModuleHandleW
LoadLibraryExA
OutputDebugStringA
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeSListHead
GetCurrentProcess
TerminateProcess
RtlUnwindEx

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/FontAwesome5.Net.dll
.dll windows:4 windows x86 arch:x86

Password: infected

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\s\src\FontAwesome5.Net\obj\Release\net5.0-windows\FontAwesome5.Net.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/FontAwesome5.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\s\src\FontAwesome5\obj\Release\netstandard1.4\FontAwesome5.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/GongSolutions.WPF.DragDrop.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Code Sign

0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00

Not After

10/11/2031, 00:00

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:da:f6:5b:c1:f7:8e:bf:fe:27:3b:ec:2e:2e:39:7f
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

08/10/2019, 00:00

Not After

10/02/2021, 12:00

Subject

CN=Jan Karger,O=Jan Karger,L=Alsdorf,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c0:d1:ff:0c:7e:f5:e2:09:3b:bd:5d:e8:13:45:1d:57:2d:55:c3:dd:2b:30:32:ed:b6:ef:bb:7e:63:d3:8d:60
Signer

Actual PE Digest

c0:d1:ff:0c:7e:f5:e2:09:3b:bd:5d:e8:13:45:1d:57:2d:55:c3:dd:2b:30:32:ed:b6:ef:bb:7e:63:d3:8d:60

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

/_/src/GongSolutions.WPF.DragDrop/obj/Release/netcoreapp3.1/GongSolutions.WPF.DragDrop.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/Microsoft.WindowsAPICodePack.Shell.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\Aybe\Documents\GitHub\Windows API Code Pack 1.1\source\WindowsAPICodePack\Shell\obj\Release\Microsoft.WindowsAPICodePack.Shell.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 527KB - Virtual size: 526KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/Microsoft.WindowsAPICodePack.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Aybe\Documents\GitHub\Windows-API-Code-Pack-1.1\source\WindowsAPICodePack\Core\obj\Release\Microsoft.WindowsAPICodePack.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/Onova.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\a\Onova\Onova\Onova\obj\Release\netcoreapp3.0\Onova.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/SharpCompress.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

/home/runner/work/sharpcompress/sharpcompress/src/SharpCompress/obj/Release/net5.0/SharpCompress.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 530KB - Virtual size: 530KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/Unverum.deps.json
Unverum/Unverum.dll
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Modding\Unreal\Unverum\Unverum\obj\Release\net6.0-windows\Unverum.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 71.3MB - Virtual size: 71.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Unverum/Unverum.exe
.exe windows:6 windows x64 arch:x64

6dbf27f4c70fe2c8ed3e0122ba75d641

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\a\_work\1\s\artifacts\obj\win-x64.Release\corehost\apphost\standalone\apphost.pdb

Imports

kernel32

FindNextFileW
GetCurrentProcess
GetModuleHandleExW
GetModuleFileNameW
LeaveCriticalSection
InitializeCriticalSection
GetEnvironmentVariableW
FindClose
MultiByteToWideChar
GetLastError
GetFileAttributesExW
GetFullPathNameW
GetProcAddress
DeleteCriticalSection
WideCharToMultiByte
IsWow64Process
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EnterCriticalSection
FindFirstFileExW
OutputDebugStringW
LoadLibraryA
GetModuleHandleW
InitializeCriticalSectionAndSpinCount
SetLastError
RaiseException
RtlPcToFileHeader
RtlUnwindEx
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
LCMapStringEx
DecodePointer
EncodePointer
InitializeCriticalSectionEx
GetStringTypeW

user32

MessageBoxW

shell32

ShellExecuteW

advapi32

RegOpenKeyExW
RegGetValueW
DeregisterEventSource
RegisterEventSourceW
ReportEventW
RegCloseKey

api-ms-win-crt-runtime-l1-1-0

_exit
__p___argc
_initterm_e
_initterm
_get_initial_wide_environment
_invalid_parameter_noinfo_noreturn
_initialize_wide_environment
_configure_wide_argv
_initialize_onexit_table
_set_app_type
__p___wargv
_seh_filter_exe
_register_onexit_function
_cexit
terminate
_errno
exit
abort
_crt_atexit
_c_exit
_register_thread_local_exe_atexit_callback

api-ms-win-crt-stdio-l1-1-0

setvbuf
fflush
_wfopen
__stdio_common_vswprintf
__stdio_common_vfwprintf
_set_fmode
__stdio_common_vsprintf_s
__acrt_iob_func
fputwc
fputws
__p__commode

api-ms-win-crt-heap-l1-1-0

_set_new_mode
_callnewh
free
malloc
calloc

api-ms-win-crt-string-l1-1-0

wcsnlen
strcpy_s
_wcsdup
strcspn
wcsncmp
toupper

api-ms-win-crt-convert-l1-1-0

_wtoi
wcstoul

api-ms-win-crt-locale-l1-1-0

setlocale
___lc_locale_name_func
localeconv
_unlock_locales
_lock_locales
___mb_cur_max_func
_configthreadlocale
__pctype_func
___lc_codepage_func

api-ms-win-crt-math-l1-1-0

frexp
__setusermatherr

api-ms-win-crt-time-l1-1-0

_gmtime64_s
_time64
wcsftime

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Unverum/Unverum.runtimeconfig.json

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

0bbecc8e9f9f17b0ea9cc3899b15e5cf

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 161KB - Virtual size: 160KB

.rdata Size: 71KB - Virtual size: 70KB

.data Size: 3KB - Virtual size: 64KB

.pdata Size: 8KB - Virtual size: 8KB

_RDATA Size: 512B - Virtual size: 244B

.rsrc Size: 60KB - Virtual size: 60KB

.reloc Size: 2KB - Virtual size: 1KB

Password: infected

fe0f55c29d3443caff22810a4d4af2b3

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

comdlg32

crypt32

gdi32

kernel32

msvcrt

user32

winmm

ws2_32

Exports

Exports

Sections

.text Size: 8.2MB - Virtual size: 8.2MB

.data Size: 3.2MB - Virtual size: 3.2MB

.rdata Size: 6.5MB - Virtual size: 6.5MB

.eh_fram Size: 772KB - Virtual size: 772KB

.bss Size: - Virtual size: 128.3MB

.edata Size: 383KB - Virtual size: 383KB

.idata Size: 11KB - Virtual size: 11KB

.CRT Size: 512B - Virtual size: 24B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 330KB - Virtual size: 329KB

Password: infected

ba5546933531fafa869b1f86a4e2a959

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 162KB - Virtual size: 162KB

.rdata Size: 74KB - Virtual size: 73KB

.data Size: 3KB - Virtual size: 64KB

.pdata Size: 8KB - Virtual size: 8KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 60KB - Virtual size: 60KB

.reloc Size: 2KB - Virtual size: 1KB

Password: infected

586f342381ba796670ebb3747f9ae450

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

msvcp140

vcruntime140

vcruntime140_1

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

.text
Size: 161KB - Virtual size: 160KB

.rdata
Size: 71KB - Virtual size: 70KB

.data
Size: 3KB - Virtual size: 64KB

.pdata
Size: 8KB - Virtual size: 8KB

_RDATA
Size: 512B - Virtual size: 244B

.rsrc
Size: 60KB - Virtual size: 60KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 8.2MB - Virtual size: 8.2MB

.data
Size: 3.2MB - Virtual size: 3.2MB

.rdata
Size: 6.5MB - Virtual size: 6.5MB

.eh_fram
Size: 772KB - Virtual size: 772KB

.bss
Size: - Virtual size: 128.3MB

.edata
Size: 383KB - Virtual size: 383KB

.idata
Size: 11KB - Virtual size: 11KB

.CRT
Size: 512B - Virtual size: 24B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 330KB - Virtual size: 329KB

.text
Size: 162KB - Virtual size: 162KB

.rdata
Size: 74KB - Virtual size: 73KB

.data
Size: 3KB - Virtual size: 64KB

.pdata
Size: 8KB - Virtual size: 8KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 60KB - Virtual size: 60KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 1KB - Virtual size: 4KB

.pdata
Size: 1KB - Virtual size: 1KB

.idata
Size: 4KB - Virtual size: 3KB

.00cfg
Size: 512B - Virtual size: 373B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 418B

.text
Size: 10.8MB - Virtual size: 10.8MB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: 561KB - Virtual size: 634KB

.pdata
Size: 592KB - Virtual size: 591KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 65KB - Virtual size: 65KB