5afe4a6b31a7f6712e5338f8f11b50c874387c2defc12862568fa8624b4e3891

Sharing

Copy URL Twitter E-mail

General

Target

5afe4a6b31a7f6712e5338f8f11b50c874387c2defc12862568fa8624b4e3891
Size

14.0MB
MD5

cb1eb6e0b0202cda8a2b6055fe2e4df1
SHA1

df755d02914e9019faa5f4dda4b9a142316281c7
SHA256

5afe4a6b31a7f6712e5338f8f11b50c874387c2defc12862568fa8624b4e3891
SHA512

dde67b2b02b2a339cfd7aedf879a1f97704ea15052920b2d65b9755e25093de1d6b6d2c03298b74dba07be417dac8eca9ca4b5cd59ccc0354d7e89b99f5a615c
SSDEEP

393216:dPCCYESLr2NSDoGDFgurPZnwVlpxq6wQfO:dP30Lqo9xDwVJE6O

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/_windows/Darkest.exe
unpack001/_windowsnosteam/Darkest.exe

Files

5afe4a6b31a7f6712e5338f8f11b50c874387c2defc12862568fa8624b4e3891
.zip
Readme（使用说明）.txt
_windows/Darkest.exe
.exe windows:5 windows x86 arch:x86

6b5e8f7a41aa617ea3ddb00fd11c3492

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\DarkestDungeon\__build\Win32_Final\Darkest.pdb

Imports

glew32

__glewUniform1f
__glewBlendFuncSeparate
__glewBindFramebuffer
__glewBindBuffer
__glewDeleteVertexArrays
__glewUnmapBuffer
__glewBufferSubData
__glewVertexAttribPointer
__glewGenVertexArrays
__glewMapBuffer
__glewBufferData
__glewBindVertexArray
__glewDeleteBuffers
__glewMapBufferRange
__glewGenBuffers
__glewFlushMappedBufferRange
__glewEnableVertexAttribArray
__glewActiveTexture
__glewFramebufferTexture2D
__glewBindRenderbuffer
__glewFramebufferRenderbuffer
__glewDeleteFramebuffers
__glewDeleteRenderbuffers
__glewGenRenderbuffers
__glewGenFramebuffers
__glewRenderbufferStorage
__glewBlendEquation
_glewInit@0
__glewCompressedTexImage2D
__glewGenerateMipmap
__glewTexImage3D
__glewGetUniformLocation
__glewAttachShader
__glewUniform1i
__glewCreateProgram
__glewGetShaderiv
__glewUniformMatrix2fv
__glewDeleteProgram
__glewGetProgramiv
__glewUniformMatrix2x3fv
__glewBlendEquationSeparate
__glewUniformMatrix4fv
__glewUniform2f
__glewBindAttribLocation
__glewUniform4fv
__glewShaderSource
__glewUseProgram
__glewGetActiveUniform
__glewUniform3f
__glewCompileShader
__glewLinkProgram
__glewGetShaderInfoLog
__glewCreateShader
__glewDeleteShader
__glewGetStringi
__glewCheckFramebufferStatus

sdl2

SDL_Init
SDL_GetPerformanceCounter
SDL_DestroyWindow
SDL_GL_SetSwapInterval
SDL_ShowWindow
SDL_GL_DeleteContext
SDL_GL_SwapWindow
SDL_GetDisplayBounds
SDL_CreateWindow
SDL_PollEvent
SDL_SetHint
SDL_GetWindowWMInfo
SDL_snprintf
SDL_sscanf
SDL_GL_CreateContext
SDL_ShowSimpleMessageBox
SDL_vsnprintf
SDL_GetNumVideoDisplays
SDL_GL_GetDrawableSize
SDL_EventState
SDL_GL_SetAttribute
SDL_GetWindowSize
SDL_Quit
SDL_QuitSubSystem
SDL_LockAudio
SDL_UnlockAudio
SDL_PauseAudio
SDL_CloseAudio
SDL_OpenAudio
SDL_Delay
SDL_GetTicks
SDL_free
SDL_GetClipboardText
SDL_SetClipboardText
SDL_GetPerformanceFrequency
SDL_HapticOpenFromJoystick
SDL_GameControllerGetAxis
SDL_GameControllerClose
SDL_GetError
SDL_GameControllerUpdate
SDL_StartTextInput
SDL_GameControllerOpen
SDL_IsGameController
SDL_GameControllerGetAttached
SDL_GameControllerEventState
SDL_NumHaptics
SDL_NumJoysticks
SDL_GameControllerGetJoystick
SDL_InitSubSystem
SDL_GameControllerGetButton
SDL_JoystickIsHaptic
SDL_HapticClose
SDL_HasScreenKeyboardSupport
SDL_SetTextInputRect
SDL_StopTextInput
SDL_FreeSurface
SDL_CreateRGBSurfaceFrom
SDL_CreateColorCursor
SDL_FreeCursor
SDL_SetCursor
SDL_ShowCursor
SDL_SetWindowPosition

opengl32

glFrontFace
glTexSubImage2D
glPixelStorei
glTexParameteriv
glTexParameterf
glCullFace
glGetString
glScissor
glGenTextures
glBlendFunc
glReadBuffer
glReadPixels
glTexParameteri
glTexImage2D
glBindTexture
glDepthFunc
glGetIntegerv
glDeleteTextures
glDrawArrays
glDrawElements
glEnable
glViewport
glDisable
glClearColor
glClear

dbghelp

SymSetOptions
SymGetLineFromAddr
SymFunctionTableAccess
SymGetModuleBase
StackWalk
SymInitialize
MiniDumpWriteDump

fmod

?setMute@ChannelControl@FMOD@@QAG?AW4FMOD_RESULT@@_N@Z
?setVolume@ChannelControl@FMOD@@QAG?AW4FMOD_RESULT@@M@Z
?getMasterChannelGroup@System@FMOD@@QAG?AW4FMOD_RESULT@@PAPAVChannelGroup@2@@Z

fmodstudio

?getLoadingState@Bank@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAW4FMOD_STUDIO_LOADING_STATE@@@Z
?getSampleLoadingState@Bank@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAW4FMOD_STUDIO_LOADING_STATE@@@Z
?getDescription@EventInstance@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAPAVEventDescription@23@@Z
?start@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?stop@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@W4FMOD_STUDIO_STOP_MODE@@@Z
?unloadSampleData@Bank@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?release@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?setParameterValue@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@PBDM@Z
?setCallback@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@P6G?AW44@IPAUFMOD_STUDIO_EVENTINSTANCE@@PAX@ZI@Z
?getUserData@EventInstance@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAPAX@Z
?setUserData@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@PAX@Z
?setVolume@VCA@Studio@FMOD@@QAG?AW4FMOD_RESULT@@M@Z
?getLowLevelSystem@System@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAPAV13@@Z
?getVCA@System@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PBDPAPAVVCA@23@@Z
?getEventByID@System@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PBUFMOD_GUID@@PAPAVEventDescription@23@@Z
?lookupID@System@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PBDPAUFMOD_GUID@@@Z
?loadBankFile@System@Studio@FMOD@@QAG?AW4FMOD_RESULT@@PBDIPAPAVBank@23@@Z
?getPlaybackState@EventInstance@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAW4FMOD_STUDIO_PLAYBACK_STATE@@@Z
?unload@Bank@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?release@System@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
FMOD_Studio_ParseID
?getID@EventDescription@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAUFMOD_GUID@@@Z
?createInstance@EventDescription@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAPAVEventInstance@23@@Z
?getSampleLoadingState@EventDescription@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAW4FMOD_STUDIO_LOADING_STATE@@@Z
?create@System@Studio@FMOD@@SG?AW4FMOD_RESULT@@PAPAV123@I@Z
?initialize@System@Studio@FMOD@@QAG?AW4FMOD_RESULT@@HIIPAX@Z
?update@System@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?loadSampleData@Bank@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ

steam_api

SteamAPI_Init
SteamAPI_WriteMiniDump
SteamAPI_UnregisterCallback
SteamAPI_RunCallbacks
SteamAPI_GetHSteamUser
SteamAPI_RegisterCallback
SteamInternal_CreateInterface
SteamAPI_GetHSteamPipe
SteamAPI_UnregisterCallResult
SteamInternal_ContextInit
SteamAPI_RegisterCallResult

libcurl

curl_multi_strerror
curl_multi_remove_handle
curl_easy_init
curl_slist_free_all
curl_global_cleanup
curl_multi_perform
curl_multi_add_handle
curl_easy_getinfo
curl_multi_init
curl_global_init
curl_easy_cleanup
curl_easy_strerror
curl_multi_cleanup
curl_slist_append
curl_easy_setopt

ws2_32

ntohs
closesocket
ntohl
htons
bind
__WSAFDIsSet
WSARecvFrom
WSASendTo
WSAGetLastError
WSACleanup
ioctlsocket
WSAStartup
gethostbyname
socket
setsockopt
select
inet_ntoa
getsockname
htonl

winmm

timeGetTime
timeEndPeriod
timeBeginPeriod

winhttp

WinHttpQueryHeaders
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpAddRequestHeaders
WinHttpOpenRequest
WinHttpOpen
WinHttpQueryDataAvailable
WinHttpReadData
WinHttpConnect
WinHttpCloseHandle
WinHttpCrackUrl

kernel32

CloseHandle
GetCurrentProcessId
SleepEx
GetFileAttributesA
FindFirstFileW
CreateDirectoryW
FormatMessageW
FindClose
FindNextFileW
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetCurrentThreadId
IsDebuggerPresent
DecodePointer
EncodePointer
DeleteFileW
CreateMutexW
WaitForSingleObject
Sleep
ReleaseMutex
CreateThread
GetModuleHandleA
WideCharToMultiByte
CreateFileW
OutputDebugStringA
MultiByteToWideChar
CreateMutexA
GetLastError
IsProcessorFeaturePresent
GetCurrentProcess

user32

SetWindowPlacement
GetSystemMenu
wsprintfW
InsertMenuItemW
GetWindowPlacement
MessageBoxA
FindWindowA
ShowWindow
SetFocus
SetForegroundWindow
SetMenuItemInfoW
SetWindowPos

advapi32

RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
GetUserNameW
RegCloseKey

shell32

ord47
SHPathPrepareForWriteW
SHGetFolderPathW

msvcp120

?_Orphan_all@_Container_base0@std@@QAEXXZ
_FInf
?_Xlength_error@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?_Xbad_function_call@std@@YAXXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?_Orphan_all@_Container_base12@std@@QAEXXZ
??1_Container_base12@std@@QAE@XZ
??0_Container_base12@std@@QAE@XZ
?_BADOFF@std@@3_JB
?uncaught_exception@std@@YA_NXZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?id@?$collate@D@std@@2V0locale@2@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?id@?$ctype@D@std@@2V0locale@2@A
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
_Strcoll
??_7facet@locale@std@@6B@
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Xout_of_range@std@@YAXPBD@Z
_Strxfrm
??_7_Facet_base@std@@6B@
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@D@std@@QBEPBDPADPBD@Z
?tolower@?$ctype@D@std@@QBEDD@Z
??1facet@locale@std@@MAE@XZ
??0facet@locale@std@@IAE@I@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
??Bid@locale@std@@QAEIXZ
??1_Facet_base@std@@UAE@XZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@PBD@Z
_Nan
_Inf
_FNan
?_Swap_all@_Container_base12@std@@QAEXAAU12@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
_Cnd_init
_Thrd_equal
?_Throw_Cpp_error@std@@YAXH@Z
?_Throw_C_error@std@@YAXH@Z
?_Release@_Pad@std@@QAEXXZ
?_Launch@_Pad@std@@QAEXPAU_Thrd_imp_t@@@Z
??1_Pad@std@@QAE@XZ
??0_Pad@std@@QAE@XZ
_Cnd_signal
_Thrd_lt
_Xtime_get_ticks
_Cnd_destroy
_Thrd_detach
_Mtx_destroy
_Thrd_join
_Thrd_current
_Thrd_sleep
_Xtime_diff_to_millis2
_Mtx_trylock
_Mtx_unlock
xtime_get
_Cnd_wait
_Mtx_lock
_Thrd_yield
_Mtx_init
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Future_error_map@std@@YAPBDH@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?swap@?$basic_ostream@DU?$char_traits@D@std@@@std@@IAEXAAV12@@Z
?swap@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXAAV12@@Z
?get@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD4@Z
?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?is@?$ctype@_W@std@@QBE_NF_W@Z
?tolower@?$ctype@_W@std@@QBE_W_W@Z
?tolower@?$ctype@_W@std@@QBEPB_WPA_WPB_W@Z
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
_Wcsxfrm
_Wcscoll
?id@?$collate@_W@std@@2V0locale@2@A
?id@?$ctype@_W@std@@2V0locale@2@A
?always_noconv@codecvt_base@std@@QBE_NXZ
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

msvcr120

free
malloc
printf
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
_vsnprintf_s
sprintf_s
strrchr
strstr
_getpid
memchr
??_V@YAXPAX@Z
exit
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABV01@@Z
strchr
realloc
strncpy_s
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
isspace
atoi
isdigit
strcpy_s
longjmp
sscanf_s
roundf
memcpy_s
cbrtf
log2
isalnum
isxdigit
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
tolower
?terminate@@YAXXZ
strtoull
strtod
strncmp
strncat_s
strtok_s
strtol
strnlen
atoll
strtof
strtoul
atof
?wait@Concurrency@@YAXI@Z
?_Yield@_Context@details@Concurrency@@SAXXZ
?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ
fputc
_unlock_file
ungetc
fgetpos
_fseeki64
fflush
fgetc
fsetpos
setvbuf
_lock_file
fwrite
fclose
_time64
_wcsnicoll
_localtime64_s
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
_chdir
rand_s
wcscat_s
_getcwd
_ftime64_s
wcsnlen
wcscpy_s
_wfopen_s
wcsrchr
wcsstr
fread
wcstombs_s
ftell
fseek
fopen_s
ferror
__iob_func
fprintf
_gmtime64_s
_mkgmtime64
strftime
_difftime64
strcat_s
??8type_info@@QBE_NABV0@@Z
__RTtypeid
rand
atol
lroundf
_mkdir
calloc
ldexp
qsort
strncat
_stricmp
sscanf
sprintf
memcpy
memset
abort
_snprintf
localeconv
modf
_isnan
_finite
_CxxThrowException
__CxxFrameHandler3
__RTDynamicCast
_XcptFilter
__crtGetShowWindowMode
_amsg_exit
__wgetmainargs
__set_app_type
_exit
_except1
_cexit
_configthreadlocale
__setusermatherr
_initterm_e
_initterm
_wcmdln
_fmode
_commode
__lconv_init
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__crtSetUnhandledExceptionFilter
_invoke_watson
_controlfp_s
_except_handler4_common
_CIatan2
_CIcosh
_CIfmod
_CIsinh
_CItanh
_libm_sse2_acos_precise
_libm_sse2_asin_precise
_libm_sse2_atan_precise
_libm_sse2_cos_precise
_libm_sse2_exp_precise
_libm_sse2_log10_precise
_libm_sse2_log_precise
_libm_sse2_pow_precise
_libm_sse2_sin_precise
_libm_sse2_sqrt_precise
_libm_sse2_tan_precise
_setjmp3
ceil
floor
memmove

Sections

.text
Size: 24.2MB - Virtual size: 24.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 828KB - Virtual size: 26.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.bind
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zaas
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_windowsnosteam/Darkest.exe
.exe windows:5 windows x86 arch:x86

8fc23297286f9c908bf79418372aa976

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\DarkestDungeon\__build\Win32_Final_NoSteam\Darkest.pdb

Imports

glew32

__glewShaderSource
__glewBlendFuncSeparate
__glewBindFramebuffer
__glewBindBuffer
__glewDeleteVertexArrays
__glewUnmapBuffer
__glewBufferSubData
__glewVertexAttribPointer
__glewGenVertexArrays
__glewMapBuffer
__glewBufferData
__glewBindVertexArray
__glewDeleteBuffers
__glewMapBufferRange
__glewGenBuffers
__glewFlushMappedBufferRange
_glewInit@0
__glewCompressedTexImage2D
__glewGenerateMipmap
__glewTexImage3D
__glewGetUniformLocation
__glewAttachShader
__glewUniform1i
__glewCreateProgram
__glewGetShaderiv
__glewUniformMatrix2fv
__glewDeleteProgram
__glewGetProgramiv
__glewUniformMatrix2x3fv
__glewUniform1f
__glewUniformMatrix4fv
__glewUniform2f
__glewBindAttribLocation
__glewUniform4fv
__glewBlendEquationSeparate
__glewUseProgram
__glewGetActiveUniform
__glewUniform3f
__glewCompileShader
__glewLinkProgram
__glewGetShaderInfoLog
__glewCreateShader
__glewDeleteShader
__glewGetStringi
__glewCheckFramebufferStatus
__glewBlendEquation
__glewRenderbufferStorage
__glewGenFramebuffers
__glewGenRenderbuffers
__glewDeleteRenderbuffers
__glewDeleteFramebuffers
__glewFramebufferRenderbuffer
__glewBindRenderbuffer
__glewFramebufferTexture2D
__glewActiveTexture
__glewEnableVertexAttribArray

sdl2

SDL_Init
SDL_GetPerformanceCounter
SDL_DestroyWindow
SDL_GL_SetSwapInterval
SDL_ShowWindow
SDL_GL_DeleteContext
SDL_GL_SwapWindow
SDL_GetDisplayBounds
SDL_CreateWindow
SDL_PollEvent
SDL_SetHint
SDL_GetWindowWMInfo
SDL_snprintf
SDL_sscanf
SDL_GL_CreateContext
SDL_ShowSimpleMessageBox
SDL_vsnprintf
SDL_GetNumVideoDisplays
SDL_GL_GetDrawableSize
SDL_EventState
SDL_GL_SetAttribute
SDL_GetWindowSize
SDL_Quit
SDL_QuitSubSystem
SDL_LockAudio
SDL_UnlockAudio
SDL_PauseAudio
SDL_CloseAudio
SDL_OpenAudio
SDL_Delay
SDL_GetTicks
SDL_free
SDL_GetClipboardText
SDL_SetClipboardText
SDL_GetPerformanceFrequency
SDL_HapticOpenFromJoystick
SDL_GameControllerGetAxis
SDL_GameControllerClose
SDL_GetError
SDL_GameControllerUpdate
SDL_StartTextInput
SDL_GameControllerOpen
SDL_IsGameController
SDL_GameControllerGetAttached
SDL_GameControllerEventState
SDL_NumHaptics
SDL_NumJoysticks
SDL_GameControllerGetJoystick
SDL_InitSubSystem
SDL_GameControllerGetButton
SDL_JoystickIsHaptic
SDL_CreateColorCursor
SDL_HapticClose
SDL_HasScreenKeyboardSupport
SDL_SetTextInputRect
SDL_StopTextInput
SDL_FreeSurface
SDL_CreateRGBSurfaceFrom
SDL_FreeCursor
SDL_SetCursor
SDL_ShowCursor
SDL_SetWindowPosition

opengl32

glBlendFunc
glTexSubImage2D
glPixelStorei
glTexParameteriv
glTexParameterf
glFrontFace
glCullFace
glGetString
glScissor
glGenTextures
glReadBuffer
glReadPixels
glTexParameteri
glTexImage2D
glBindTexture
glDepthFunc
glGetIntegerv
glDeleteTextures
glDrawArrays
glDrawElements
glEnable
glViewport
glDisable
glClearColor
glClear

dbghelp

SymInitialize
SymGetModuleBase
SymFunctionTableAccess
SymGetLineFromAddr
SymSetOptions
StackWalk
MiniDumpWriteDump

fmod

?getMasterChannelGroup@System@FMOD@@QAG?AW4FMOD_RESULT@@PAPAVChannelGroup@2@@Z
?setVolume@ChannelControl@FMOD@@QAG?AW4FMOD_RESULT@@M@Z
?setMute@ChannelControl@FMOD@@QAG?AW4FMOD_RESULT@@_N@Z

fmodstudio

FMOD_Studio_ParseID
?getID@EventDescription@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAUFMOD_GUID@@@Z
?createInstance@EventDescription@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAPAVEventInstance@23@@Z
?getSampleLoadingState@EventDescription@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAW4FMOD_STUDIO_LOADING_STATE@@@Z
?initialize@System@Studio@FMOD@@QAG?AW4FMOD_RESULT@@HIIPAX@Z
?release@System@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?update@System@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?getLowLevelSystem@System@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAPAV13@@Z
?getVCA@System@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PBDPAPAVVCA@23@@Z
?getEventByID@System@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PBUFMOD_GUID@@PAPAVEventDescription@23@@Z
?lookupID@System@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PBDPAUFMOD_GUID@@@Z
?loadBankFile@System@Studio@FMOD@@QAG?AW4FMOD_RESULT@@PBDIPAPAVBank@23@@Z
?unload@Bank@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?loadSampleData@Bank@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?unloadSampleData@Bank@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?getLoadingState@Bank@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAW4FMOD_STUDIO_LOADING_STATE@@@Z
?getSampleLoadingState@Bank@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAW4FMOD_STUDIO_LOADING_STATE@@@Z
?getDescription@EventInstance@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAPAVEventDescription@23@@Z
?setVolume@VCA@Studio@FMOD@@QAG?AW4FMOD_RESULT@@M@Z
?setUserData@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@PAX@Z
?getUserData@EventInstance@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAPAX@Z
?setCallback@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@P6G?AW44@IPAUFMOD_STUDIO_EVENTINSTANCE@@PAX@ZI@Z
?getPlaybackState@EventInstance@Studio@FMOD@@QBG?AW4FMOD_RESULT@@PAW4FMOD_STUDIO_PLAYBACK_STATE@@@Z
?release@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?create@System@Studio@FMOD@@SG?AW4FMOD_RESULT@@PAPAV123@I@Z
?stop@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@W4FMOD_STUDIO_STOP_MODE@@@Z
?start@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?setParameterValue@EventInstance@Studio@FMOD@@QAG?AW4FMOD_RESULT@@PBDM@Z

libcurl

curl_slist_append
curl_multi_strerror
curl_easy_setopt
curl_multi_cleanup
curl_easy_strerror
curl_easy_cleanup
curl_global_init
curl_multi_init
curl_easy_getinfo
curl_multi_add_handle
curl_multi_perform
curl_global_cleanup
curl_slist_free_all
curl_easy_init
curl_multi_remove_handle

ws2_32

WSASendTo
WSARecvFrom
WSAGetLastError
WSACleanup
WSAStartup
gethostbyname
socket
setsockopt
select
inet_ntoa
getsockname
ioctlsocket
closesocket
bind
__WSAFDIsSet
ntohs
ntohl
htons
htonl

winmm

timeEndPeriod
timeBeginPeriod
timeGetTime

winhttp

WinHttpCrackUrl
WinHttpQueryHeaders
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpAddRequestHeaders
WinHttpOpenRequest
WinHttpQueryDataAvailable
WinHttpReadData
WinHttpConnect
WinHttpCloseHandle
WinHttpOpen

kernel32

GetCurrentProcessId
SleepEx
GetFileAttributesA
FindFirstFileW
CreateDirectoryW
FormatMessageW
FindClose
FindNextFileW
DeleteFileW
GetSystemTimeAsFileTime
CloseHandle
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer
CreateMutexW
WaitForSingleObject
Sleep
ReleaseMutex
CreateThread
GetCurrentThreadId
CreateFileW
GetModuleHandleA
WideCharToMultiByte
OutputDebugStringA
MultiByteToWideChar
CreateMutexA
QueryPerformanceCounter
GetCurrentProcess
GetLastError

user32

ShowWindow
FindWindowA
SetForegroundWindow
SetMenuItemInfoW
SetWindowPos
MessageBoxA
GetWindowPlacement
InsertMenuItemW
wsprintfW
GetSystemMenu
SetWindowPlacement
SetFocus

advapi32

RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
GetUserNameW
RegCloseKey

shell32

ord47
SHPathPrepareForWriteW
SHGetFolderPathW

msvcp120

?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?uncaught_exception@std@@YA_NXZ
?_BADOFF@std@@3_JB
??1_Container_base12@std@@QAE@XZ
?_Orphan_all@_Container_base12@std@@QAEXXZ
?_Orphan_all@_Container_base0@std@@QAEXXZ
_FInf
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Xbad_function_call@std@@YAXXZ
?id@?$collate@D@std@@2V0locale@2@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?id@?$ctype@D@std@@2V0locale@2@A
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
_Strcoll
??_7facet@locale@std@@6B@
_Strxfrm
??_7_Facet_base@std@@6B@
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@D@std@@QBEPBDPADPBD@Z
?tolower@?$ctype@D@std@@QBEDD@Z
??1facet@locale@std@@MAE@XZ
??0facet@locale@std@@IAE@I@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
??Bid@locale@std@@QAEIXZ
??1_Facet_base@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Winerror_map@std@@YAPBDH@Z
??0_Container_base12@std@@QAE@XZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@PBD@Z
_Nan
_Inf
_FNan
?_Swap_all@_Container_base12@std@@QAEXAAU12@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
_Cnd_init
_Thrd_equal
?_Throw_Cpp_error@std@@YAXH@Z
?_Throw_C_error@std@@YAXH@Z
?_Release@_Pad@std@@QAEXXZ
?_Launch@_Pad@std@@QAEXPAU_Thrd_imp_t@@@Z
??1_Pad@std@@QAE@XZ
??0_Pad@std@@QAE@XZ
_Cnd_signal
_Thrd_lt
_Xtime_get_ticks
_Cnd_destroy
_Thrd_detach
_Mtx_destroy
_Thrd_join
_Thrd_current
_Thrd_sleep
_Xtime_diff_to_millis2
_Mtx_trylock
_Mtx_unlock
xtime_get
_Cnd_wait
_Mtx_lock
_Thrd_yield
_Mtx_init
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Future_error_map@std@@YAPBDH@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?swap@?$basic_ostream@DU?$char_traits@D@std@@@std@@IAEXAAV12@@Z
?swap@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXAAV12@@Z
?get@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD4@Z
?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?is@?$ctype@_W@std@@QBE_NF_W@Z
?tolower@?$ctype@_W@std@@QBE_W_W@Z
?tolower@?$ctype@_W@std@@QBEPB_WPA_WPB_W@Z
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
_Wcsxfrm
_Wcscoll
?id@?$collate@_W@std@@2V0locale@2@A
?id@?$ctype@_W@std@@2V0locale@2@A
?always_noconv@codecvt_base@std@@QBE_NXZ
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z

msvcr120

free
malloc
printf
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
_vsnprintf_s
sprintf_s
strrchr
strstr
_getpid
memchr
??_V@YAXPAX@Z
exit
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABV01@@Z
strchr
realloc
strncpy_s
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
isspace
atoi
isdigit
strcpy_s
longjmp
sscanf_s
roundf
memcpy_s
cbrtf
log2
isalnum
isxdigit
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
tolower
?terminate@@YAXXZ
strtod
strncmp
strncat_s
strtok_s
strtol
strnlen
atoll
strtof
strtoul
atof
?wait@Concurrency@@YAXI@Z
?_Yield@_Context@details@Concurrency@@SAXXZ
?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ
fputc
_unlock_file
ungetc
fgetpos
_fseeki64
fflush
fgetc
fsetpos
setvbuf
_lock_file
fwrite
fclose
_time64
_wcsnicoll
_localtime64_s
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
_chdir
rand_s
wcscat_s
_getcwd
_ftime64_s
wcsnlen
wcscpy_s
_wfopen_s
wcsrchr
wcsstr
fread
wcstombs_s
ftell
fseek
fopen_s
ferror
__iob_func
fprintf
_gmtime64_s
_mkgmtime64
strftime
_difftime64
strtoull
strcat_s
??8type_info@@QBE_NABV0@@Z
__RTtypeid
rand
atol
lroundf
_mkdir
calloc
ldexp
qsort
strncat
_stricmp
sscanf
sprintf
memcpy
memset
abort
_snprintf
localeconv
modf
_isnan
_finite
_CxxThrowException
__CxxFrameHandler3
__RTDynamicCast
_except1
_XcptFilter
__crtGetShowWindowMode
_amsg_exit
__wgetmainargs
__set_app_type
_exit
_cexit
_configthreadlocale
__setusermatherr
_initterm_e
_initterm
_wcmdln
_fmode
_commode
__lconv_init
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__crtSetUnhandledExceptionFilter
_invoke_watson
_controlfp_s
_except_handler4_common
_CIatan2
_CIcosh
_CIfmod
_CIsinh
_CItanh
_libm_sse2_acos_precise
_libm_sse2_asin_precise
_libm_sse2_atan_precise
_libm_sse2_cos_precise
_libm_sse2_exp_precise
_libm_sse2_log10_precise
_libm_sse2_log_precise
_libm_sse2_pow_precise
_libm_sse2_sin_precise
_libm_sse2_sqrt_precise
_libm_sse2_tan_precise
_setjmp3
ceil
floor
memmove

Sections

.text
Size: 24.1MB - Virtual size: 24.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 820KB - Virtual size: 26.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b5e8f7a41aa617ea3ddb00fd11c3492

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

glew32

sdl2

opengl32

dbghelp

fmod

fmodstudio

steam_api

libcurl

ws2_32

winmm

winhttp

kernel32

user32

advapi32

shell32

msvcp120

msvcr120

Sections

.text Size: 24.2MB - Virtual size: 24.2MB

.rdata Size: 3.3MB - Virtual size: 3.3MB

.data Size: 828KB - Virtual size: 26.5MB

_RDATA Size: 1KB - Virtual size: 1KB

.rsrc Size: 148KB - Virtual size: 147KB

.reloc Size: 2.9MB - Virtual size: 2.9MB

.bind Size: 191KB - Virtual size: 191KB

.zaas Size: 4KB - Virtual size: 4KB

8fc23297286f9c908bf79418372aa976

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

glew32

sdl2

opengl32

dbghelp

fmod

fmodstudio

libcurl

ws2_32

winmm

winhttp

kernel32

user32

advapi32

shell32

msvcp120

msvcr120

Sections

.text Size: 24.1MB - Virtual size: 24.1MB

.rdata Size: 3.2MB - Virtual size: 3.2MB

.data Size: 820KB - Virtual size: 26.5MB

_RDATA Size: 1KB - Virtual size: 1KB

.rsrc Size: 147KB - Virtual size: 147KB

.reloc Size: 2.8MB - Virtual size: 2.8MB

.text
Size: 24.2MB - Virtual size: 24.2MB

.rdata
Size: 3.3MB - Virtual size: 3.3MB

.data
Size: 828KB - Virtual size: 26.5MB

_RDATA
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 148KB - Virtual size: 147KB

.reloc
Size: 2.9MB - Virtual size: 2.9MB

.bind
Size: 191KB - Virtual size: 191KB

.zaas
Size: 4KB - Virtual size: 4KB

.text
Size: 24.1MB - Virtual size: 24.1MB

.rdata
Size: 3.2MB - Virtual size: 3.2MB

.data
Size: 820KB - Virtual size: 26.5MB

_RDATA
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 147KB - Virtual size: 147KB

.reloc
Size: 2.8MB - Virtual size: 2.8MB