half-life_day_one[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

half-life_day_one.rar
Size

73.3MB
MD5

df340ec09ebd03857d01ed08355c26e0
SHA1

5ba8229962806388b7d7e8896cf0504ad8dc637b
SHA256

cef45189a512ad85837047c14102bc5e1d821a165f5180eb076aacfc073de4d9
SHA512

9ac9048a0d2272ae0651ba6080af424d1e0810997dd41e58e1f1ef8dfa363086680361cc1582c1de7dedaf396f09246eb3bb3adca71df04bdf9dfd0be9125553
SSDEEP

1572864:o/M7wewkG0EtzfChTo0IgZ735FSzquG54PNQJrnLG8XyrM:H7weo0Et+JoVgZLSzqu5uDLG8d

Score

3^/10

Malware Config

Signatures

Unsigned PE 7 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Half-Life Day One/gldrv/3dfxgl.dll
unpack001/Half-Life Day One/hl.exe
unpack001/Half-Life Day One/hl_res.dll
unpack001/Half-Life Day One/hw.dll
unpack001/Half-Life Day One/sw.dll
unpack001/Half-Life Day One/valve/cl_dlls/client.dll
unpack001/Half-Life Day One/valve/dlls/hl.dll

Files

half-life_day_one.rar
.rar

Password: infected
Half-Life Day One/DriversPage.html
.html
Half-Life Day One/gldrv/3dfxgl.dll
.dll windows:4 windows x86 arch:x86

Password: infected

5a0cfa0bc3a7063e8aabab813766ad91

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

glide2x

_grTexClampMode@12
_grLfbLock@24
_grLfbUnlock@8
_grGlideShutdown@0
_grTexDownloadTable@12
_grSstResetPerfStats@0
_grTexMipMapMode@12
_grRenderBuffer@4
_grDepthBiasLevel@4
_grFogColorValue@4
_guFogGenerateExp@8
_guFogGenerateExp2@8
_guFogGenerateLinear@12
_grFogTable@4
_grSstIdle@0
_grSstPerfStats@4
_grCullMode@4
_grDepthMask@4
_grDepthBufferFunction@4
_grDrawLine@8
_grDrawPoint@4
_grColorMask@8
_grConstantColorValue@4
_grDrawTriangle@12
_grGlideSetState@4
_grGlideGetState@4
_grColorCombine@20
_grAlphaCombine@20
_grTexCombine@28
_grAlphaBlendFunction@16
_grAlphaTestFunction@4
_grTexFilterMode@12
_grDepthBufferMode@4
_grAlphaTestReferenceValue@4
_grSstOrigin@4
_grFogMode@4
_grTexCalcMemRequired@16
_grTexDownloadMipMapLevelPartial@40
_grTexSource@16
_grTexMinAddress@4
_grTexTextureMemRequired@8
_grTexDownloadMipMap@16
_grClipWindow@16
_grHints@8
_grBufferNumPending@0
_grSstWinClose@0
_grSstControl@4
_grGlideInit@0
_grSstSelect@4
_grSstQueryHardware@4
_grSstWinOpen@28
_grBufferSwap@4
_grBufferClear@12

kernel32

FreeEnvironmentStringsA
GetLocaleInfoW
GetLocaleInfoA
SetEnvironmentVariableW
HeapReAlloc
SetStdHandle
CloseHandle
LCMapStringW
LCMapStringA
RaiseException
LoadLibraryA
SetFilePointer
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
FlushFileBuffers
GetLastError
WriteFile
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
MultiByteToWideChar
QueryPerformanceCounter
GetOEMCP
GetACP
GetCPInfo
GetModuleFileNameA
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
WideCharToMultiByte
GetStartupInfoA
GetStdHandle
GetFileType
SetHandleCount
GetVersion
GetModuleHandleA
GetProcAddress
GetCommandLineA
GetCurrentProcess
TerminateProcess
ExitProcess
HeapFree
HeapAlloc
DisableThreadLibraryCalls
QueryPerformanceFrequency

user32

SendDlgItemMessageA
EndDialog
SetWindowLongA
GetActiveWindow
WindowFromDC
GetClientRect
MessageBoxA
GetWindowLongA
CallWindowProcA

Exports

Exports

DllInitialize
GlmfBeginGlsBlock
GlmfCloseMetaFile
GlmfEndGlsBlock
GlmfEndPlayback
GlmfInitPlayback
GlmfPlayGlsRecord
glAccum
glAlphaFunc
glAreTexturesResident
glArrayElement
glBegin
glBindTexture
glBitmap
glBlendFunc
glCallList
glCallLists
glClear
glClearAccum
glClearColor
glClearDepth
glClearIndex
glClearStencil
glClipPlane
glColor3b
glColor3bv
glColor3d
glColor3dv
glColor3f
glColor3fv
glColor3i
glColor3iv
glColor3s
glColor3sv
glColor3ub
glColor3ubv
glColor3ui
glColor3uiv
glColor3us
glColor3usv
glColor4b
glColor4bv
glColor4d
glColor4dv
glColor4f
glColor4fv
glColor4i
glColor4iv
glColor4s
glColor4sv
glColor4ub
glColor4ubv
glColor4ui
glColor4uiv
glColor4us
glColor4usv
glColorMask
glColorMaterial
glColorPointer
glCopyPixels
glCopyTexImage1D
glCopyTexImage2D
glCopyTexSubImage1D
glCopyTexSubImage2D
glCullFace
glDebugEntry
glDeleteLists
glDeleteTextures
glDepthFunc
glDepthMask
glDepthRange
glDisable
glDisableClientState
glDrawArrays
glDrawBuffer
glDrawElements
glDrawPixels
glEdgeFlag
glEdgeFlagPointer
glEdgeFlagv
glEnable
glEnableClientState
glEnd
glEndList
glEvalCoord1d
glEvalCoord1dv
glEvalCoord1f
glEvalCoord1fv
glEvalCoord2d
glEvalCoord2dv
glEvalCoord2f
glEvalCoord2fv
glEvalMesh1
glEvalMesh2
glEvalPoint1
glEvalPoint2
glFeedbackBuffer
glFinish
glFlush
glFogf
glFogfv
glFogi
glFogiv
glFrontFace
glFrustum
glGenLists
glGenTextures
glGetBooleanv
glGetClipPlane
glGetDoublev
glGetError
glGetFloatv
glGetIntegerv
glGetLightfv
glGetLightiv
glGetMapdv
glGetMapfv
glGetMapiv
glGetMaterialfv
glGetMaterialiv
glGetPixelMapfv
glGetPixelMapuiv
glGetPixelMapusv
glGetPointerv
glGetPolygonStipple
glGetString
glGetTexEnvfv
glGetTexEnviv
glGetTexGendv
glGetTexGenfv
glGetTexGeniv
glGetTexImage
glGetTexLevelParameterfv
glGetTexLevelParameteriv
glGetTexParameterfv
glGetTexParameteriv
glHint
glIndexMask
glIndexPointer
glIndexd
glIndexdv
glIndexf
glIndexfv
glIndexi
glIndexiv
glIndexs
glIndexsv
glIndexub
glIndexubv
glInitNames
glInterleavedArrays
glIsEnabled
glIsList
glIsTexture
glLightModelf
glLightModelfv
glLightModeli
glLightModeliv
glLightf
glLightfv
glLighti
glLightiv
glLineStipple
glLineWidth
glListBase
glLoadIdentity
glLoadMatrixd
glLoadMatrixf
glLoadName
glLogicOp
glMap1d
glMap1f
glMap2d
glMap2f
glMapGrid1d
glMapGrid1f
glMapGrid2d
glMapGrid2f
glMaterialf
glMaterialfv
glMateriali
glMaterialiv
glMatrixMode
glMultMatrixd
glMultMatrixf
glNewList
glNormal3b
glNormal3bv
glNormal3d
glNormal3dv
glNormal3f
glNormal3fv
glNormal3i
glNormal3iv
glNormal3s
glNormal3sv
glNormalPointer
glOrtho
glPassThrough
glPixelMapfv
glPixelMapuiv
glPixelMapusv
glPixelStoref
glPixelStorei
glPixelTransferf
glPixelTransferi
glPixelZoom
glPointSize
glPolygonMode
glPolygonOffset
glPolygonStipple
glPopAttrib
glPopClientAttrib
glPopMatrix
glPopName
glPrioritizeTextures
glPushAttrib
glPushClientAttrib
glPushMatrix
glPushName
glRasterPos2d
glRasterPos2dv
glRasterPos2f
glRasterPos2fv
glRasterPos2i
glRasterPos2iv
glRasterPos2s
glRasterPos2sv
glRasterPos3d
glRasterPos3dv
glRasterPos3f
glRasterPos3fv
glRasterPos3i
glRasterPos3iv
glRasterPos3s
glRasterPos3sv
glRasterPos4d
glRasterPos4dv
glRasterPos4f
glRasterPos4fv
glRasterPos4i
glRasterPos4iv
glRasterPos4s
glRasterPos4sv
glReadBuffer
glReadPixels
glRectd
glRectdv
glRectf
glRectfv
glRecti
glRectiv
glRects
glRectsv
glRenderMode
glRotated
glRotatef
glScaled
glScalef
glScissor
glSelectBuffer
glShadeModel
glStencilFunc
glStencilMask
glStencilOp
glTexCoord1d
glTexCoord1dv
glTexCoord1f
glTexCoord1fv
glTexCoord1i
glTexCoord1iv
glTexCoord1s
glTexCoord1sv
glTexCoord2d
glTexCoord2dv
glTexCoord2f
glTexCoord2fv
glTexCoord2i
glTexCoord2iv
glTexCoord2s
glTexCoord2sv
glTexCoord3d
glTexCoord3dv
glTexCoord3f
glTexCoord3fv
glTexCoord3i
glTexCoord3iv
glTexCoord3s
glTexCoord3sv
glTexCoord4d
glTexCoord4dv
glTexCoord4f
glTexCoord4fv
glTexCoord4i
glTexCoord4iv
glTexCoord4s
glTexCoord4sv
glTexCoordPointer
glTexEnvf
glTexEnvfv
glTexEnvi
glTexEnviv
glTexGend
glTexGendv
glTexGenf
glTexGenfv
glTexGeni
glTexGeniv
glTexImage1D
glTexImage2D
glTexParameterf
glTexParameterfv
glTexParameteri
glTexParameteriv
glTexSubImage1D
glTexSubImage2D
glTranslated
glTranslatef
glVertex2d
glVertex2dv
glVertex2f
glVertex2fv
glVertex2i
glVertex2iv
glVertex2s
glVertex2sv
glVertex3d
glVertex3dv
glVertex3f
glVertex3fv
glVertex3i
glVertex3iv
glVertex3s
glVertex3sv
glVertex4d
glVertex4dv
glVertex4f
glVertex4fv
glVertex4i
glVertex4iv
glVertex4s
glVertex4sv
glVertexPointer
glViewport
wglChoosePixelFormat
wglCopyContext
wglCreateContext
wglCreateLayerContext
wglDeleteContext
wglDescribeLayerPlane
wglDescribePixelFormat
wglGetCurrentContext
wglGetCurrentDC
wglGetDefaultProcAddress
wglGetLayerPaletteEntries
wglGetPixelFormat
wglGetProcAddress
wglMakeCurrent
wglRealizeLayerPalette
wglSetLayerPaletteEntries
wglSetPixelFormat
wglShareLists
wglSwapBuffers
wglSwapLayerBuffers
wglUseFontBitmapsA
wglUseFontBitmapsW
wglUseFontOutlinesA
wglUseFontOutlinesW

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 7.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Half-Life Day One/gldrv/drvmap.txt
Half-Life Day One/hl.exe
.exe windows:4 windows x86 arch:x86

Password: infected

a273af749c57a578947d7f1fba1e59f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mciGetErrorStringA
mmioGetInfo
mciSendStringA
mmioAdvance
mmioSetInfo
joyGetDevCapsA
joyGetPosEx
timeGetTime
mciSendCommandA
mciGetDeviceIDA
waveOutWrite
mmioDescend
waveOutPrepareHeader
mmioSeek
mmioOpenA
mmioRead
mmioAscend
mmioClose
joyGetNumDevs

ddraw

DirectDrawCreate

kernel32

GetOEMCP
LocalUnlock
LocalLock
SetErrorMode
GlobalAddAtomA
GlobalGetAtomNameA
GetCPInfo
HeapAlloc
ExitProcess
TerminateProcess
GetTimeZoneInformation
GetLocalTime
CreateDirectoryA
GetModuleHandleA
GetStartupInfoA
RaiseException
GetACP
HeapReAlloc
RtlUnwind
HeapFree
GetModuleFileNameA
GetThreadLocale
HeapCreate
VirtualFree
VirtualAlloc
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetCurrentDirectoryA
GetVolumeInformationA
GetStringTypeExA
GetFullPathNameA
SetEndOfFile
DeleteFileA
FlushFileBuffers
ReadFile
SetFilePointer
WriteFile
GetVersion
GetCurrentProcess
LocalReAlloc
GetProcessVersion
TlsGetValue
TlsSetValue
GlobalReAlloc
LocalAlloc
TlsAlloc
LocalFree
GlobalFlags
SizeofResource
SetLastError
lstrcmpiA
lstrcpynA
ReleaseMutex
CreateMutexA
lstrcmpA
GlobalDeleteAtom
GetPrivateProfileStringA
GetCurrentThread
WritePrivateProfileStringA
FileTimeToSystemTime
GetPrivateProfileIntA
FileTimeToLocalFileTime
HeapSize
lstrlenA
GetProfileStringA
InterlockedDecrement
MultiByteToWideChar
WideCharToMultiByte
GetCurrentThreadId
InterlockedIncrement
MulDiv
SetHandleCount
GlobalHandle
GlobalFree
FindResourceA
LoadResource
LockResource
lstrcpyA
lstrcatA
GetLastError
GlobalLock
GlobalUnlock
GlobalMemoryStatus
GlobalAlloc
GetVersionExA
SetEvent
InitializeCriticalSection
CreateEventA
CreateThread
TerminateThread
DeleteCriticalSection
ResetEvent
WaitForSingleObject
EnterCriticalSection
LeaveCriticalSection
FindFirstFileA
FindNextFileA
FindClose
CompareFileTime
CreateFileA
GetFileTime
CloseHandle
Sleep
LoadLibraryA
GetProcAddress
GetCommandLineA
FreeLibrary
GetStdHandle
GetFileType
HeapDestroy

user32

GetMenu
GetSubMenu
GetMenuItemCount
GetClassInfoA
wsprintfA
WinHelpA
IsChild
GetTopWindow
SetScrollPos
EndDeferWindowPos
BeginDeferWindowPos
DeferWindowPos
EqualRect
MapWindowPoints
SystemParametersInfoA
SendDlgItemMessageA
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuCheckMarkDimensions
GetWindowDC
TabbedTextOutA
GrayStringA
CharUpperA
DestroyMenu
ShowOwnedPopups
SetCursor
GetDesktopWindow
GetSysColorBrush
IntersectRect
InsertMenuA
DeleteMenu
GetMenuStringA
SetRect
GetTabbedTextExtentA
IsClipboardFormatAvailable
MessageBeep
IsIconic
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
SetPropA
GetLastActivePopup
GetForegroundWindow
GetPropA
RemovePropA
GetMessageTime
GetMenuItemID
EndDialog
CreateDialogIndirectParamA
GetWindowLongA
GetDlgItem
ShowCaret
HideCaret
GetWindow
DestroyCaret
TranslateMessage
DispatchMessageA
SetWindowPos
LockWindowUpdate
CallWindowProcA
DestroyWindow
UnregisterClassA
RegisterClassA
AdjustWindowRectEx
CreateWindowExA
IsWindowEnabled
GetActiveWindow
SetForegroundWindow
SetFocus
ClipCursor
SetActiveWindow
ShowCursor
DrawFocusRect
LoadStringA
LoadIconA
DefDlgProcA
GetSysColor
LoadCursorA
SetWindowLongA
DrawTextExA
MoveWindow
UnionRect
OffsetRect
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
ShowWindow
MsgWaitForMultipleObjects
RegisterWindowMessageA
BeginPaint
EndPaint
MessageBoxA
DefWindowProcA
DrawTextA
PeekMessageA
GetMessageA
PostMessageA
GetCapture
KillTimer
SetTimer
GetCursorPos
GetAsyncKeyState
PtInRect
ReleaseCapture
SetCapture
RedrawWindow
LoadBitmapA
PostQuitMessage
UpdateWindow
GetParent
ValidateRect
ScreenToClient
InflateRect
ClientToScreen
InvalidateRect
FrameRect
GetDC
ReleaseDC
CopyRect
GetMenuState
EnableWindow
GetFocus
SendMessageA
GetClientRect
FillRect
GetWindowRect
BringWindowToTop
GetSystemMetrics
GetMessagePos
GetNextDlgTabItem
IsWindow
IsWindowVisible
ChangeDisplaySettingsA
GetClassNameA
WindowFromPoint
ExcludeUpdateRgn
CharNextA
IsWindowUnicode

gdi32

CreateDIBitmap
CreateCompatibleDC
GetTextMetricsA
CreateSolidBrush
GetStockObject
GetObjectA
CreatePen
SelectPalette
StretchDIBits
SetDIBitsToDevice
SetStretchBltMode
TextOutA
GetDeviceCaps
GetDIBits
StretchBlt
GetTextExtentPointA
CreateCompatibleBitmap
DeleteObject
DeleteDC
SelectObject
CreateDIBSection
SetBkMode
SetTextColor
PatBlt
CreateICA
GetCurrentObject
SetBkColor
CreateBitmap
StartDocA
SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
BitBlt
SetViewportExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetClipBox
SetWindowExtEx
MoveToEx
IntersectClipRect
LineTo
PtVisible
ExtTextOutA
Escape
RectVisible
CreateFontIndirectA
DPtoLP
AbortDoc
EndDoc
GetCharWidthA
StartPage
SetAbortProc
EndPage
CreateFontA
CreateDCA

comdlg32

GetFileTitleA
GetOpenFileNameA
ReplaceTextA
FindTextA
PrintDlgA
CommDlgExtendedError
GetSaveFileNameA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCloseKey
RegEnumKeyExA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyExA

shell32

DragQueryFileA
ShellExecuteA
DragFinish

comctl32

ImageList_Destroy
ord17

wsock32

WSAStartup
WSACleanup
inet_ntoa

Sections

.text
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Half-Life Day One/hl_res.dll
.dll windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Half-Life Day One/hw.dll
.dll windows:4 windows x86 arch:x86

Password: infected

0d86de6be00605a8c838799690425bc5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

waveOutReset
waveOutClose
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutOpen
waveOutWrite
joyGetDevCapsA
joyGetPosEx
joyGetNumDevs
timeGetTime

wsock32

htons
bind
ntohs
closesocket
WSAGetLastError
setsockopt
inet_ntoa
socket
getsockname
WSAStartup
WSACleanup
gethostbyname
ioctlsocket

kernel32

FreeEnvironmentStringsW
GetUserDefaultLCID
IsValidCodePage
IsValidLocale
SetStdHandle
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlushFileBuffers
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GlobalFree
GlobalUnlock
GetProcAddress
GetEnvironmentStringsW
LoadLibraryA
GlobalAlloc
lstrcpyA
lstrcmpA
lstrcatA
GetModuleHandleA
HeapAlloc
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
OpenFile
OutputDebugStringA
GlobalSize
lstrlenA
GetStdHandle
GlobalLock
IsBadCodePtr
SetEvent
WaitForMultipleObjects
IsBadWritePtr
IsBadReadPtr
WriteConsoleInputA
SetConsoleWindowInfo
SetConsoleScreenBufferSize
GetLargestConsoleWindowSize
FreeLibrary
FormatMessageA
GetLastError
LocalFree
WriteFile
CreateFileA
SetFilePointer
VirtualProtect
QueryPerformanceFrequency
FreeConsole
QueryPerformanceCounter
GetNumberOfConsoleInputEvents
ReadConsoleInputA
Sleep
AllocConsole
GetCurrentDirectoryA
GetVersionExA
FindClose
FindNextFileA
CompareFileTime
FindFirstFileA
GetFileTime
SetEndOfFile
SetConsoleCtrlHandler
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
GetCPInfo
SetEnvironmentVariableA
WriteConsoleA
SetEnvironmentVariableW
GetConsoleScreenBufferInfo
ReadConsoleOutputCharacterA
CreateThread
CreateEventA
GetACP
CreateDirectoryA
FileTimeToSystemTime
GetStringTypeA
GetCurrentProcessId
GetOEMCP
GetStringTypeW
FileTimeToLocalFileTime
HeapSize
GetCurrentProcess
GetFileAttributesA
GetStartupInfoA
GetFileType
TerminateProcess
VirtualAlloc
VirtualFree
SetHandleCount
HeapDestroy
LCMapStringW
HeapCreate
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
FatalAppExitA
ExitProcess
ReadFile
EnterCriticalSection
DeleteCriticalSection
LeaveCriticalSection
RaiseException
HeapFree
HeapReAlloc
RtlUnwind
MoveFileA
DeleteFileA
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCurrentThreadId
GetCurrentThread
InitializeCriticalSection
GetCommandLineA
GetVersion
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue

user32

SendMessageA
SetWindowPos
MessageBoxA
PostQuitMessage
SetCursorPos
wvsprintfA
SystemParametersInfoA
SetRect
GetClientRect
WindowFromDC
OpenClipboard
CloseClipboard
GetClipboardData
GetKeyState
RedrawWindow
TranslateMessage
PeekMessageA
GetMessageA
GetDC
DispatchMessageA
DefWindowProcA
GetMenu
ReleaseDC
GetWindowLongA
DrawMenuBar
GetWindowRect
ClientToScreen
GetCursorPos
AdjustWindowRectEx

gdi32

DescribePixelFormat
ChoosePixelFormat
GetSystemPaletteEntries
SetPixelFormat

advapi32

RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegOpenKeyA

ddraw

DirectDrawCreate
DirectDrawEnumerateA

Exports

Exports

COM_CheckParmEx
Cbuf_AddText
Cbuf_InsertText
ClientDLL_HudVidInit
Cmd_AddCommand
Cmd_Argc
Cmd_Args
Cmd_Argv
Con_DPrintf
Con_Printf
Con_SafePrintf
Cvar_CompleteVariable
Cvar_Set
Cvar_SetValue
Cvar_VariableInt
Cvar_VariableString
Cvar_VariableValue
DeinitConProc
ForceReloadProfile
GL_Init
GL_SetMode
GL_Shutdown
GameInit
GameSetState
GameSetSubState
GetEngineState
GetGameInfo
Host_Frame
Host_Shutdown
IN_ActivateMouse
IN_ClearStates
IN_DeactivateMouse
IN_HideMouse
IN_MouseEvent
IN_ShowMouse
IN_UpdateClipCursor
Key_ClearStates
Key_Event
LoadGame
QGL_Init
SNDDMA_Shutdown
S_BlockSound
S_ClearBuffer
S_GetDSPointer
S_GetWAVPointer
S_UnblockSound
SaveGame
SetStartupMode
Snd_AcquireBuffer
Snd_ReleaseBuffer
Sys_FloatTime
VID_AllocBuffers
VID_UpdateVID
VID_UpdateWindowVars
_glAccum@8
_glAlphaFunc@8
_glAreTexturesResident@12
_glArrayElement@4
_glBegin@4
_glBindTexture@8
_glBitmap@28
_glBlendFunc@8
_glCallList@4
_glCallLists@12
_glClear@4
_glClearAccum@16
_glClearColor@16
_glClearDepth@8
_glClearIndex@4
_glClearStencil@4
_glClipPlane@8
_glColor3b@12
_glColor3bv@4
_glColor3d@24
_glColor3dv@4
_glColor3f@12
_glColor3fv@4
_glColor3i@12
_glColor3iv@4
_glColor3s@12
_glColor3sv@4
_glColor3ub@12
_glColor3ubv@4
_glColor3ui@12
_glColor3uiv@4
_glColor3us@12
_glColor3usv@4
_glColor4b@16
_glColor4bv@4
_glColor4d@32
_glColor4dv@4
_glColor4f@16
_glColor4fv@4
_glColor4i@16
_glColor4iv@4
_glColor4s@16
_glColor4sv@4
_glColor4ub@16
_glColor4ubv@4
_glColor4ui@16
_glColor4uiv@4
_glColor4us@16
_glColor4usv@4
_glColorMask@16
_glColorMaterial@8
_glColorPointer@16
_glCopyPixels@20
_glCopyTexImage1D@28
_glCopyTexImage2D@32
_glCopyTexSubImage1D@24
_glCopyTexSubImage2D@32
_glCullFace@4
_glDeleteLists@8
_glDeleteTextures@8
_glDepthFunc@4
_glDepthMask@4
_glDepthRange@16
_glDisable@4
_glDisableClientState@4
_glDrawArrays@12
_glDrawBuffer@4
_glDrawElements@16
_glDrawPixels@20
_glEdgeFlag@4
_glEdgeFlagPointer@8
_glEdgeFlagv@4
_glEnable@4
_glEnableClientState@4
_glEnd@0
_glEndList@0
_glEvalCoord1d@8
_glEvalCoord1dv@4
_glEvalCoord1f@4
_glEvalCoord1fv@4
_glEvalCoord2d@16
_glEvalCoord2dv@4
_glEvalCoord2f@8
_glEvalCoord2fv@4
_glEvalMesh1@12
_glEvalMesh2@20
_glEvalPoint1@4
_glEvalPoint2@8
_glFeedbackBuffer@12
_glFinish@0
_glFlush@0
_glFogf@8
_glFogfv@8
_glFogi@8
_glFogiv@8
_glFrontFace@4
_glFrustum@48
_glGenLists@4
_glGenTextures@8
_glGetBooleanv@8
_glGetClipPlane@8
_glGetDoublev@8
_glGetError@0
_glGetFloatv@8
_glGetIntegerv@8
_glGetLightfv@12
_glGetLightiv@12
_glGetMapdv@12
_glGetMapfv@12
_glGetMapiv@12
_glGetMaterialfv@12
_glGetMaterialiv@12
_glGetPixelMapfv@8
_glGetPixelMapuiv@8
_glGetPixelMapusv@8
_glGetPointerv@8
_glGetPolygonStipple@4
_glGetString@4
_glGetTexEnvfv@12
_glGetTexEnviv@12
_glGetTexGendv@12
_glGetTexGenfv@12
_glGetTexGeniv@12
_glGetTexImage@20
_glGetTexLevelParameterfv@16
_glGetTexLevelParameteriv@16
_glGetTexParameterfv@12
_glGetTexParameteriv@12
_glHint@8
_glIndexMask@4
_glIndexPointer@12
_glIndexd@8
_glIndexdv@4
_glIndexf@4
_glIndexfv@4
_glIndexi@4
_glIndexiv@4
_glIndexs@4
_glIndexsv@4
_glIndexub@4
_glIndexubv@4
_glInitNames@0
_glInterleavedArrays@12
_glIsEnabled@4
_glIsList@4
_glIsTexture@4
_glLightModelf@8
_glLightModelfv@8
_glLightModeli@8
_glLightModeliv@8
_glLightf@12
_glLightfv@12
_glLighti@12
_glLightiv@12
_glLineStipple@8
_glLineWidth@4
_glListBase@4
_glLoadIdentity@0
_glLoadMatrixd@4
_glLoadMatrixf@4
_glLoadName@4
_glLogicOp@4
_glMap1d@32
_glMap1f@24
_glMap2d@56
_glMap2f@40
_glMapGrid1d@20
_glMapGrid1f@12
_glMapGrid2d@40
_glMapGrid2f@24
_glMaterialf@12
_glMaterialfv@12
_glMateriali@12
_glMaterialiv@12
_glMatrixMode@4
_glMultMatrixd@4
_glMultMatrixf@4
_glNewList@8
_glNormal3b@12
_glNormal3bv@4
_glNormal3d@24
_glNormal3dv@4
_glNormal3f@12
_glNormal3fv@4
_glNormal3i@12
_glNormal3iv@4
_glNormal3s@12
_glNormal3sv@4
_glNormalPointer@12
_glOrtho@48
_glPassThrough@4
_glPixelMapfv@12
_glPixelMapuiv@12
_glPixelMapusv@12
_glPixelStoref@8
_glPixelStorei@8
_glPixelTransferf@8
_glPixelTransferi@8
_glPixelZoom@8
_glPointSize@4
_glPolygonMode@8
_glPolygonOffset@8
_glPolygonStipple@4
_glPopAttrib@0
_glPopClientAttrib@0
_glPopMatrix@0
_glPopName@0
_glPrioritizeTextures@12
_glPushAttrib@4
_glPushClientAttrib@4
_glPushMatrix@0
_glPushName@4
_glRasterPos2d@16
_glRasterPos2dv@4
_glRasterPos2f@8
_glRasterPos2fv@4
_glRasterPos2i@8
_glRasterPos2iv@4
_glRasterPos2s@8
_glRasterPos2sv@4
_glRasterPos3d@24
_glRasterPos3dv@4
_glRasterPos3f@12
_glRasterPos3fv@4
_glRasterPos3i@12
_glRasterPos3iv@4
_glRasterPos3s@12
_glRasterPos3sv@4
_glRasterPos4d@32
_glRasterPos4dv@4
_glRasterPos4f@16
_glRasterPos4fv@4
_glRasterPos4i@16
_glRasterPos4iv@4
_glRasterPos4s@16
_glRasterPos4sv@4
_glReadBuffer@4
_glReadPixels@28
_glRectd@32
_glRectdv@8
_glRectf@16
_glRectfv@8
_glRecti@16
_glRectiv@8
_glRects@16
_glRectsv@8
_glRenderMode@4
_glRotated@32
_glRotatef@16
_glScaled@24
_glScalef@12
_glScissor@16
_glSelectBuffer@8
_glShadeModel@4
_glStencilFunc@12
_glStencilMask@4
_glStencilOp@12
_glTexCoord1d@8
_glTexCoord1dv@4
_glTexCoord1f@4
_glTexCoord1fv@4
_glTexCoord1i@4
_glTexCoord1iv@4
_glTexCoord1s@4
_glTexCoord1sv@4
_glTexCoord2d@16
_glTexCoord2dv@4
_glTexCoord2f@8
_glTexCoord2fv@4
_glTexCoord2i@8
_glTexCoord2iv@4
_glTexCoord2s@8
_glTexCoord2sv@4
_glTexCoord3d@24
_glTexCoord3dv@4
_glTexCoord3f@12
_glTexCoord3fv@4
_glTexCoord3i@12
_glTexCoord3iv@4
_glTexCoord3s@12
_glTexCoord3sv@4
_glTexCoord4d@32
_glTexCoord4dv@4
_glTexCoord4f@16
_glTexCoord4fv@4
_glTexCoord4i@16
_glTexCoord4iv@4
_glTexCoord4s@16
_glTexCoord4sv@4
_glTexCoordPointer@16
_glTexEnvf@12
_glTexEnvfv@12
_glTexEnvi@12
_glTexEnviv@12
_glTexGend@16
_glTexGendv@12
_glTexGenf@12
_glTexGenfv@12
_glTexGeni@12
_glTexGeniv@12
_glTexImage1D@32
_glTexImage2D@36
_glTexParameterf@12
_glTexParameterfv@12
_glTexParameteri@12
_glTexParameteriv@12
_glTexSubImage1D@28
_glTexSubImage2D@36
_glTranslated@24
_glTranslatef@12
_glVertex2d@16
_glVertex2dv@4
_glVertex2f@8
_glVertex2fv@4
_glVertex2i@8
_glVertex2iv@4
_glVertex2s@8
_glVertex2sv@4
_glVertex3d@24
_glVertex3dv@4
_glVertex3f@12
_glVertex3fv@4
_glVertex3i@12
_glVertex3iv@4
_glVertex3s@12
_glVertex3sv@4
_glVertex4d@32
_glVertex4dv@4
_glVertex4f@16
_glVertex4fv@4
_glVertex4i@16
_glVertex4iv@4
_glVertex4s@16
_glVertex4sv@4
_glVertexPointer@16
_glViewport@16
_wglCopyContext@12
_wglCreateContext@4
_wglCreateLayerContext@8
_wglDeleteContext@4
_wglDescribeLayerPlane@20
_wglGetCurrentContext@0
_wglGetCurrentDC@0
_wglGetLayerPaletteEntries@20
_wglGetProcAddress@4
_wglMakeCurrent@8
_wglRealizeLayerPalette@12
_wglSetLayerPaletteEntries@20
_wglShareLists@8
_wglSwapLayerBuffers@8
_wglUseFontBitmapsA@16
_wglUseFontBitmapsW@16
_wglUseFontOutlinesA@32
qwglChoosePixelFormat
qwglCreateContext
qwglDeleteContext
qwglGetCurrentContext
qwglGetCurrentDC
qwglMakeCurrent
qwglSetPixelFormat
qwglSwapBuffers

Sections

.text
Size: 612KB - Virtual size: 611KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 139KB - Virtual size: 11.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Half-Life Day One/language.inf
Half-Life Day One/logo.bmp
Half-Life Day One/media/gina.avi
Half-Life Day One/media/gordon.avi
Half-Life Day One/media/logo.AVI
Half-Life Day One/media/order/default.html
.html
Half-Life Day One/media/order/images/EXPERIENCE.GIF
.gif
Half-Life Day One/media/order/images/box.gif
.gif
Half-Life Day One/media/order/images/box_small.gif
.gif
Half-Life Day One/media/order/images/creature.jpg
.jpg

Password: infected
Half-Life Day One/media/order/images/e3award.jpg
.jpg

Password: infected
Half-Life Day One/media/order/images/gordon.GIF
.gif
Half-Life Day One/media/order/images/gordon_tall.gif
.gif
Half-Life Day One/media/order/images/gordonclose.GIF
.gif
Half-Life Day One/media/order/images/grayblur.jpg
.jpg

Password: infected
Half-Life Day One/media/order/images/grayblur2.jpg
.jpg

Password: infected
Half-Life Day One/media/order/images/halflife.gif
.gif
Half-Life Day One/media/order/images/hgrunts.jpg
.jpg
Half-Life Day One/media/order/images/multiplayer.jpg
.jpg
Half-Life Day One/media/order/images/orangeblur.jpg
.jpg
Half-Life Day One/media/order/images/orangeblur2.jpg
.jpg
Half-Life Day One/media/order/images/orangeblurdark.jpg
.jpg
Half-Life Day One/media/order/images/redblur.jpg
.jpg
Half-Life Day One/media/order/images/screen1.jpg
.jpg
Half-Life Day One/media/order/images/screenstrip.jpg
.jpg
Half-Life Day One/media/order/images/surface.jpg
.jpg
Half-Life Day One/media/order/images/weapon.jpg
.jpg
Half-Life Day One/media/order/images/worldcraft.jpg
.jpg
Half-Life Day One/media/order/images/xen.jpg
.jpg
Half-Life Day One/media/sierra.avi
Half-Life Day One/media/valve.avi
Half-Life Day One/readme.txt
Half-Life Day One/sw.dll
.dll windows:4 windows x86 arch:x86

26e3f6dc874fbcc5c731472c665677ba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

waveOutReset
waveOutClose
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutOpen
waveOutWrite
timeGetTime
joyGetDevCapsA
joyGetPosEx
joyGetNumDevs

wsock32

htons
bind
ntohs
closesocket
WSAGetLastError
setsockopt
inet_ntoa
socket
getsockname
WSAStartup
WSACleanup
gethostbyname
ioctlsocket

kernel32

UnhandledExceptionFilter
GetLocaleInfoA
SetConsoleCtrlHandler
GetUserDefaultLCID
IsValidCodePage
IsValidLocale
CompareStringA
GetLocaleInfoW
FlushFileBuffers
SetStdHandle
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
SetEndOfFile
GetModuleFileNameA
GetCurrentProcess
TerminateProcess
GetStringTypeW
GetStringTypeA
CloseHandle
WriteFile
CreateFileA
SetFilePointer
GlobalUnlock
GlobalSize
GlobalLock
GlobalFree
GetProcAddress
LoadLibraryA
GlobalAlloc
RaiseException
WriteConsoleA
MapViewOfFile
CreateFileMappingA
OpenFile
GetFileTime
FindClose
FindNextFileA
FindFirstFileA
CompareFileTime
GetStdHandle
CreateThread
CreateEventA
SetEvent
WaitForMultipleObjects
GetConsoleScreenBufferInfo
ReadConsoleOutputCharacterA
WriteConsoleInputA
SetConsoleWindowInfo
SetConsoleScreenBufferSize
GetLargestConsoleWindowSize
VirtualProtect
QueryPerformanceFrequency
FreeConsole
QueryPerformanceCounter
ReadConsoleInputA
GetNumberOfConsoleInputEvents
Sleep
AllocConsole
GetACP
GetVersionExA
FreeLibrary
GetLastError
CompareStringW
SetEnvironmentVariableA
HeapAlloc
UnmapViewOfFile
GetCurrentDirectoryA
DeleteCriticalSection
InitializeCriticalSection
GetCPInfo
GetOEMCP
EnterCriticalSection
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
GetFileAttributesA
ReadFile
GetCurrentProcessId
GetFileType
SetHandleCount
GetStartupInfoA
HeapFree
MoveFileA
DeleteFileA
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapReAlloc
CreateDirectoryA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCommandLineA
GetModuleHandleA
GetVersion
LCMapStringW
VirtualAlloc
GetCurrentThreadId
LeaveCriticalSection
ExitProcess
FatalAppExitA
HeapDestroy
HeapCreate
VirtualFree
TlsFree
TlsSetValue
TlsAlloc
GetCurrentThread
SetLastError
TlsGetValue
RtlUnwind

user32

GetClipboardData
CloseClipboard
MessageBoxA
OpenClipboard
GetKeyState
PeekMessageA
GetActiveWindow
GetCursorPos
GetMessageA
TranslateMessage
SetCursorPos
SystemParametersInfoA
DispatchMessageA

advapi32

RegSetValueExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA

Exports

Exports

COM_CheckParmEx
Cbuf_AddText
Cbuf_InsertText
ClientDLL_HudVidInit
Cmd_AddCommand
Cmd_Argc
Cmd_Args
Cmd_Argv
Con_DPrintf
Con_Printf
Con_SafePrintf
Cvar_CompleteVariable
Cvar_Set
Cvar_SetValue
Cvar_VariableInt
Cvar_VariableString
Cvar_VariableValue
D_InitCaches
DeinitConProc
ForceReloadProfile
GameInit
GameSetState
GameSetSubState
GetEngineState
GetGameInfo
Host_Frame
Host_Shutdown
IN_ActivateMouse
IN_ClearStates
IN_DeactivateMouse
IN_HideMouse
IN_MouseEvent
IN_ShowMouse
IN_UpdateClipCursor
Key_ClearStates
Key_Event
LoadGame
SNDDMA_Shutdown
S_BlockSound
S_ClearBuffer
S_GetDSPointer
S_GetWAVPointer
S_UnblockSound
SaveGame
SetStartupMode
Snd_AcquireBuffer
Snd_ReleaseBuffer
Sys_FloatTime
VID_AllocBuffers
VID_UpdateVID
VID_UpdateWindowVars

Sections

.text
Size: 549KB - Virtual size: 549KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Half-Life Day One/valve.ico
Half-Life Day One/valve/LIBLIST.GAM
Half-Life Day One/valve/PROFILE.LST
Half-Life Day One/valve/cl_dlls/client.dll
.dll windows:4 windows x86 arch:x86

add5afbf7cb9f2ac83120e7e51783cc0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
HeapFree
VirtualAlloc
TerminateProcess
GetCurrentProcess
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
SetFilePointer
GetStringTypeA
GetStringTypeW
LoadLibraryA
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapReAlloc

Exports

Exports

HUD_Init
HUD_Redraw
HUD_Reset
HUD_UpdateClientData
HUD_VidInit
Initialize

Sections

.text
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Half-Life Day One/valve/credits.txt
Half-Life Day One/valve/dlls/hl.dll
.dll windows:4 windows x86 arch:x86

d5ec8d051219cd0d1b9e2de1b9f88bd9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileType
HeapFree
HeapAlloc
RtlUnwind
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
FatalAppExitA
VirtualAlloc
GetLastError
CloseHandle
WriteFile
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
Sleep
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
TerminateProcess
GetCurrentProcess
SetHandleCount
CreateDirectoryA
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CreateFileA
SetFilePointer
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
UnhandledExceptionFilter
IsValidLocale
IsValidCodePage
GetUserDefaultLCID
LoadLibraryA
SetConsoleCtrlHandler
SetEndOfFile
ReadFile
RaiseException
GetLocaleInfoA
GetLocaleInfoW
HeapReAlloc
HeapSize
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

?ActiveThink@CBaseTurret@@QAEXXZ
?AngularMoveDone@CBaseToggle@@QAEXXZ
?Animate@CSquidSpit@@QAEXXZ
?AnimateThink@CSprite@@QAEXXZ
?AnimateUntilDead@CSprite@@QAEXXZ
?AutoSearchThink@CBaseTurret@@QAEXXZ
?BarnacleThink@CBarnacle@@QAEXXZ
?BeamBreakThink@CTripmineGrenade@@AAEXXZ
?BloodGush@CCineBlood@@QAEXXZ
?BloodStart@CCineBlood@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?BounceGibTouch@CGib@@QAEXPAVCBaseEntity@@@Z
?BounceTouch@CGrenade@@QAEXPAVCBaseEntity@@@Z
?BreakTouch@CBreakable@@QAEXPAVCBaseEntity@@@Z
?ButtonBackHome@CBaseButton@@QAEXXZ
?ButtonReturn@CBaseButton@@QAEXXZ
?ButtonSpark@CBaseButton@@QAEXXZ
?ButtonTouch@CBaseButton@@QAEXPAVCBaseEntity@@@Z
?ButtonUse@CBaseButton@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?CallBuildNodeGraph@CTestHull@@QAEXXZ
?CallGoDown@CFuncPlat@@QAEXXZ
?CallHitBottom@CFuncPlat@@QAEXXZ
?CallHitTop@CFuncPlat@@QAEXXZ
?CallMonsterThink@CBaseMonster@@QAEXXZ
?CanThink@CItemSoda@@QAEXXZ
?CanTouch@CItemSoda@@QAEXPAVCBaseEntity@@@Z
?ChangeFriction@CFrictionModifier@@QAEXPAVCBaseEntity@@@Z
?CineThink@CCineMonster@@QAEXXZ
?CineThink@CLegacyCineMonster@@QAEXXZ
?CorpseFallThink@CBaseMonster@@QAEXXZ
?CounterUse@CBaseTrigger@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?CrashTouch@COsprey@@QAEXPAVCBaseEntity@@@Z
?DamageThink@CLightning@@QAEXXZ
?DangerSoundThink@CGrenade@@QAEXXZ
?DeadEnd@CFuncTrackTrain@@QAEXXZ
?DeadThink@CLeech@@QAEXXZ
?DefaultTouch@CBasePlayerAmmo@@QAEXPAVCBaseEntity@@@Z
?DefaultTouch@CBasePlayerItem@@QAEXPAVCBaseEntity@@@Z
?DelayDeathThink@CTripmineGrenade@@AAEXXZ
?DelayThink@CBaseDelay@@QAEXXZ
?DelayThink@CScriptedSentence@@QAEXXZ
?Deploy@CBaseTurret@@QAEXXZ
?DeployThink@COsprey@@QAEXXZ
?Detonate@CGrenade@@QAEXXZ
?DetonateUse@CGrenade@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?Die@CBreakable@@QAEXXZ
?DoorGoDown@CBaseDoor@@QAEXXZ
?DoorGoUp@CBaseDoor@@QAEXXZ
?DoorHitBottom@CBaseDoor@@QAEXXZ
?DoorHitTop@CBaseDoor@@QAEXXZ
?DoorTouch@CBaseDoor@@QAEXPAVCBaseEntity@@@Z
?DrawThink@CNodeViewer@@QAEXXZ
?DropDelay@CTestHull@@QAEXXZ
?DyingThink@COsprey@@QAEXXZ
?EndSectionTouch@CTriggerEndSection@@QAEXPAVCBaseEntity@@@Z
?EndSectionUse@CTriggerEndSection@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?ExecuteChangeLevel@CChangeLevel@@QAEXXZ
?ExpandThink@CSprite@@QAEXXZ
?ExplodeTouch@CGrenade@@QAEXPAVCBaseEntity@@@Z
?FallHack@CFlockingFlyer@@QAEXXZ
?FallThink@CBasePlayerItem@@QAEXXZ
?FieldUse@CFuncMortarField@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?Find@CFuncTrackChange@@QAEXXZ
?Find@CFuncTrackTrain@@QAEXXZ
?Find@CFuncTrainControls@@QAEXXZ
?FindAllThink@COsprey@@QAEXXZ
?FindThink@CScriptedSentence@@QAEXXZ
?FizzThink@CBubbling@@QAEXXZ
?FlockFollowerThink@CFlockingFlyer@@QAEXXZ
?FlockLeaderThink@CFlockingFlyer@@QAEXXZ
?FlyThink@COsprey@@QAEXXZ
?FollowTarget@CTriggerCamera@@QAEXXZ
?FollowerUse@CTalkMonster@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?FormFlock@CFlockingFlyer@@QAEXXZ
?GoDown@CFuncTrackChange@@UAEXXZ
?GoUp@CFuncTrackChange@@UAEXXZ
?GravityTouch@CTriggerGravity@@QAEXPAVCBaseEntity@@@Z
?HitTouch@COsprey@@QAEXPAVCBaseEntity@@@Z
?HornetTouch@CHornet@@QAEXPAVCBaseEntity@@@Z
?HoverThink@COsprey@@QAEXXZ
?HurtTouch@CBaseTrigger@@QAEXPAVCBaseEntity@@@Z
?HurtTouch@CFuncRotating@@QAEXPAVCBaseEntity@@@Z
?IdleThink@CFlockingFlyer@@QAEXXZ
?IgniteThink@CHornet@@QAEXXZ
?Initialize@CBaseTurret@@QAEXXZ
?ItemTouch@CItem@@QAEXPAVCBaseEntity@@@Z
?LeapTouch@CHeadCrab@@QAEXPAVCBaseEntity@@@Z
?LinearMoveDone@CBaseToggle@@QAEXXZ
?MakerThink@CMonsterMaker@@QAEXXZ
?ManagerReport@CMultiManager@@QAEXXZ
?ManagerThink@CMultiManager@@QAEXXZ
?ManagerUse@CMultiManager@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?MonsterInitThink@CBaseMonster@@QAEXXZ
?MonsterThink@CRoach@@UAEXXZ
?MonsterUse@CBaseMonster@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?MortarExplode@CMortar@@QAEXXZ
?MultiTouch@CBaseTrigger@@QAEXPAVCBaseEntity@@@Z
?MultiWaitOver@CBaseTrigger@@QAEXXZ
?NearestPath@CFuncTrackTrain@@QAEXXZ
?Next@CFuncTrackTrain@@QAEXXZ
?Next@CFuncTrain@@QAEXXZ
?Next@CGunTarget@@QAEXXZ
?Off@CMomentaryRotButton@@QAEXXZ
?Off@CRecharge@@QAEXXZ
?Off@CWallHealth@@QAEXXZ
?PathFind@CTestHull@@QAEXXZ
?PendulumUse@CPendulum@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?PlatUse@CFuncPlat@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?PlayerDeathThink@CBasePlayer@@QAEXXZ
?PowerupThink@CTripmineGrenade@@AAEXXZ
?PreDetonate@CGrenade@@QAEXXZ
?RadiationThink@CTriggerHurt@@QAEXXZ
?RampThink@CAmbientGeneric@@QAEXXZ
?Recharge@CRecharge@@QAEXXZ
?Recharge@CWallHealth@@QAEXXZ
?Register@CMultiSource@@QAEXXZ
?RepelUse@CHGruntRepel@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?Retire@CBaseTurret@@QAEXXZ
?Return@CMomentaryRotButton@@QAEXXZ
?RopeTouch@CPendulum@@QAEXPAVCBaseEntity@@@Z
?Rotate@CFuncRotating@@QAEXXZ
?RotatingUse@CFuncRotating@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?SUB_CallUseToggle@CBaseEntity@@QAEXXZ
?SUB_DoNothing@CBaseEntity@@QAEXXZ
?SUB_FadeOut@CBaseEntity@@QAEXXZ
?SUB_Remove@CBaseEntity@@QAEXXZ
?SUB_StartFadeOut@CBaseEntity@@QAEXXZ
?SaveTouch@CTriggerSave@@QAEXPAVCBaseEntity@@@Z
?SearchThink@CBaseTurret@@QAEXXZ
?SentryDeath@CSentry@@QAEXXZ
?SentryTouch@CSentry@@QAEXPAVCBaseEntity@@@Z
?ShootThink@CGibShooter@@QAEXXZ
?ShowBadNode@CTestHull@@QAEXXZ
?SittingThink@CSittingScientist@@QAEXXZ
?SlideTouch@CGrenade@@QAEXPAVCBaseEntity@@@Z
?Smack@CCrowbar@@QAEXXZ
?Smoke@CEnvExplosion@@QAEXXZ
?Smoke@CGrenade@@QAEXXZ
?SparkStart@CEnvSpark@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?SparkStop@CEnvSpark@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?SparkThink@CEnvSpark@@QAEXXZ
?SpeakerThink@CSpeaker@@QAEXXZ
?SpinDown@CFuncRotating@@QAEXXZ
?SpinDownCall@CBaseTurret@@UAEXXZ
?SpinUp@CFuncRotating@@QAEXXZ
?SpinUpCall@CBaseTurret@@UAEXXZ
?SprayDecal@CDecal@@QAEXXZ
?Start@CFlockingFlyer@@QAEXXZ
?Start@CGunTarget@@QAEXXZ
?StickyGibTouch@CGib@@QAEXPAVCBaseEntity@@@Z
?Stop@CPendulum@@QAEXXZ
?StrikeThink@CLaser@@QAEXXZ
?StrikeThink@CLightning@@QAEXXZ
?StrikeUse@CLightning@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?SwimThink@CLeech@@QAEXXZ
?Swing@CPendulum@@QAEXXZ
?SwingAgain@CCrowbar@@QAEXXZ
?TankThink@CAirtank@@AAEXXZ
?TankTouch@CAirtank@@AAEXPAVCBaseEntity@@@Z
?TeleportTouch@CBaseTrigger@@QAEXPAVCBaseEntity@@@Z
?TestThink@CTestEffect@@QAEXXZ
?ToggleUse@CAmbientGeneric@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?ToggleUse@CBaseTrigger@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?ToggleUse@CLightning@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?ToggleUse@CMonsterMaker@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?ToggleUse@CSpeaker@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?Touch@CRoach@@UAEXPAVCBaseEntity@@@Z
?Touch@CSquidSpit@@UAEXPAVCBaseEntity@@@Z
?TouchChangeLevel@CChangeLevel@@QAEXPAVCBaseEntity@@@Z
?TrackTarget@CHornet@@QAEXXZ
?TriggerAndWait@CBaseButton@@QAEXXZ
?TriggerDecal@CDecal@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?TurretDeath@CBaseTurret@@QAEXXZ
?TurretUse@CBaseTurret@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?UseChangeLevel@CChangeLevel@@QAEXPAVCBaseEntity@@0W4USE_TYPE@@M@Z
?Wait@CFuncTrain@@QAEXXZ
?Wait@CGunTarget@@QAEXXZ
?WaitTillDead@CBarnacle@@QAEXXZ
?WaitTillLand@CGib@@QAEXXZ
?WarningThink@CTripmineGrenade@@AAEXXZ
DelayedUse
GetEntityAPI
GiveFnptrsToDll
aiscripted_sequence
ambient_generic
ammo_9mmAR
ammo_9mmbox
ammo_9mmclip
ammo_ARgrenades
ammo_buckshot
ammo_glockclip
ammo_mp5clip
ammo_mp5grenades
beam
bodyque
button_target
cine_blood
cycler
cycler_prdroid
cycler_sprite
cycler_weapon
cycler_wreckage
env_beam
env_beverage
env_bubbles
env_debris
env_explosion
env_fade
env_funnel
env_global
env_glow
env_laser
env_lightning
env_message
env_render
env_shake
env_shooter
env_sound
env_spark
env_sprite
explode
fireanddie
func_breakable
func_button
func_conveyor
func_door
func_door_rotating
func_friction
func_guntarget
func_healthcharger
func_illusionary
func_ladder
func_monsterclip
func_mortar_field
func_pendulum
func_plat
func_platrot
func_pushable
func_recharge
func_rot_button
func_rotating
func_trackautochange
func_trackchange
func_tracktrain
func_train
func_traincontrols
func_wall
func_wall_toggle
func_water
gibshooter
grenade
hornet
info_landmark
info_node
info_null
info_player_deathmatch
info_player_start
info_target
info_teleport_destination
infodecal
item_airtank
item_antidote
item_battery
item_healthkit
item_longjump
item_security
item_sodacan
item_suit
light
light_environment
light_spot
momentary_door
momentary_rot_button
monster_alien_controller
monster_alien_grunt
monster_alien_slave
monster_barnacle
monster_barney
monster_barney_dead
monster_bloater
monster_bullchicken
monster_cine2_hvyweapons
monster_cine2_scientist
monster_cine2_slave
monster_cine3_barney
monster_cine3_scientist
monster_cine_barney
monster_cine_panther
monster_cine_scientist
monster_cockroach
monster_flyer
monster_flyer_flock
monster_furniture
monster_generic
monster_gman
monster_grunt_repel
monster_headcrab
monster_houndeye
monster_human_grunt
monster_leech
monster_miniturret
monster_mortar
monster_osprey
monster_rat
monster_scientist
monster_scientist_dead
monster_sentry
monster_sitting_scientist
monster_tripmine
monster_turret
monster_vortigaunt
monster_zombie
monstermaker
multi_manager
multisource
node_viewer
path_corner
path_track
player
scripted_sentence
scripted_sequence
soundent
spark_shower
speaker
squidspit
test_effect
testhull
trigger
trigger_auto
trigger_autosave
trigger_camera
trigger_cdaudio
trigger_changelevel
trigger_changetarget
trigger_counter
trigger_endsection
trigger_gravity
trigger_hurt
trigger_monsterjump
trigger_multiple
trigger_once
trigger_push
trigger_relay
trigger_teleport
trigger_transition
weapon_9mmAR
weapon_9mmhandgun
weapon_crowbar
weapon_glock
weapon_handgrenade
weapon_mp5
weapon_shotgun
weapon_tripmine
world_items
worldspawn

Sections

.text
Size: 477KB - Virtual size: 477KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Half-Life Day One/valve/pak0.pak
Half-Life Day One/version.txt

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

5a0cfa0bc3a7063e8aabab813766ad91

Headers

File Characteristics

Imports

glide2x

kernel32

user32

Exports

Exports

Sections

.text Size: 93KB - Virtual size: 92KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 16KB - Virtual size: 7.5MB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 25KB - Virtual size: 25KB

Password: infected

a273af749c57a578947d7f1fba1e59f6

Headers

File Characteristics

Imports

winmm

ddraw

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wsock32

Sections

.text Size: 363KB - Virtual size: 363KB

.rdata Size: 59KB - Virtual size: 59KB

.data Size: 32KB - Virtual size: 80KB

.idata Size: 10KB - Virtual size: 9KB

.rsrc Size: 143KB - Virtual size: 142KB

.reloc Size: 46KB - Virtual size: 45KB

Password: infected

Headers

File Characteristics

Sections

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 512B - Virtual size: 12B

Password: infected

0d86de6be00605a8c838799690425bc5

Headers

File Characteristics

Imports

winmm

wsock32

kernel32

user32

gdi32

advapi32

ddraw

Exports

Exports

Sections

.text Size: 612KB - Virtual size: 611KB

.rdata Size: 22KB - Virtual size: 22KB

.data Size: 139KB - Virtual size: 11.0MB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 317KB - Virtual size: 316KB

.reloc Size: 87KB - Virtual size: 86KB

Password: infected

Password: infected

Password: infected

Password: infected

26e3f6dc874fbcc5c731472c665677ba

Headers

File Characteristics

.text
Size: 93KB - Virtual size: 92KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 16KB - Virtual size: 7.5MB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 25KB - Virtual size: 25KB

.text
Size: 363KB - Virtual size: 363KB

.rdata
Size: 59KB - Virtual size: 59KB

.data
Size: 32KB - Virtual size: 80KB

.idata
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 143KB - Virtual size: 142KB

.reloc
Size: 46KB - Virtual size: 45KB

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 612KB - Virtual size: 611KB

.rdata
Size: 22KB - Virtual size: 22KB

.data
Size: 139KB - Virtual size: 11.0MB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 317KB - Virtual size: 316KB

.reloc
Size: 87KB - Virtual size: 86KB

.text
Size: 549KB - Virtual size: 549KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 109KB - Virtual size: 3.7MB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 317KB - Virtual size: 316KB

.reloc
Size: 57KB - Virtual size: 57KB

.text
Size: 54KB - Virtual size: 53KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 10KB - Virtual size: 68KB

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 5KB - Virtual size: 4KB

.text
Size: 477KB - Virtual size: 477KB

.rdata
Size: 68KB - Virtual size: 68KB

.data
Size: 68KB - Virtual size: 127KB

.idata
Size: 2KB - Virtual size: 1KB

.reloc
Size: 51KB - Virtual size: 51KB