Static task
static1
Behavioral task
behavioral1
Sample
xerogame.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
xerogame.exe
Resource
win10v2004-20240419-en
windows10-2004-x64
General
-
Target
xerogame.exe
-
Size
28.1MB
-
MD5
9741dacb9c615bfade6a6d655d9be437
-
SHA1
3efa50bce74a2203b24a795fc1f5f40a065713de
-
SHA256
6bea9d8cc2503a1e660c1d8a9dfd1241f394207c4f1cb84a9d4a1fea3d3c8017
-
SHA512
41d109b4248a74065d65ed5e9742ba5cc48668f0577850f670b6da04fb592b52fb2d1cd1e2d048d2e0fb33fa3ae0cf0eb9f8870323ed15998bbe4d4c45824568
-
SSDEEP
393216:NCjxVGxhotXLC+qBz45G9lV77JGn27f5hb7hKpZwb5zas0JEDuIUt:comUjhKpWbR90Yk
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource xerogame.exe
Files
-
xerogame.exe.exe windows:5 windows x86 arch:x86
fb9a2b39d6ae82bf949de747580b73db
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
CryptReleaseContext
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyW
RegSetValueExA
RegQueryValueExA
CryptGenRandom
GetUserNameA
CryptAcquireContextW
ddraw
DirectDrawCreateEx
dinput8
DirectInput8Create
dsound
DirectSoundCreate8
gdi32
CreateCompatibleBitmap
CreateSolidBrush
GetObjectA
GetDeviceCaps
TextOutA
GetTextMetricsA
SetTextAlign
SetTextColor
SetMapMode
SetBkMode
SetBkColor
GetTextExtentExPointW
GetTextExtentExPointA
GetTextExtentPoint32W
CreateFontA
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC
BitBlt
SetDeviceGammaRamp
GetDeviceGammaRamp
GetStockObject
GetTextExtentPoint32A
imm32
ImmGetCompositionStringA
ImmGetContext
ImmReleaseContext
ImmGetCompositionStringW
ImmNotifyIME
ImmGetConversionStatus
ImmSetConversionStatus
ImmSetCandidateWindow
kernel32
VirtualFree
VirtualAlloc
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
lstrcmp
FlushInstructionCache
GlobalUnlock
GlobalLock
GlobalAlloc
MulDiv
GetStdHandle
SystemTimeToFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetPriorityClass
SetPriorityClass
GetThreadPriority
CreateFileMappingA
UnmapViewOfFile
MapViewOfFile
lstrlenA
InterlockedCompareExchange
InterlockedExchange
SetCurrentDirectoryA
SetThreadLocale
GetSystemTimeAsFileTime
EncodePointer
IsProcessorFeaturePresent
IsDebuggerPresent
WaitForMultipleObjects
CreateEventW
TlsSetValue
TlsGetValue
TlsAlloc
SetThreadPriority
QueryPerformanceFrequency
QueryPerformanceCounter
GetSystemTime
GetDiskFreeSpaceW
ResetEvent
CreateThread
SetErrorMode
HeapValidate
HeapCreate
GetLocaleInfoA
GetSystemInfo
OutputDebugStringW
CreateFileW
TerminateProcess
InitializeCriticalSection
FindResourceExW
FindResourceW
LockResource
OpenEventA
SetEvent
WriteConsoleA
SetConsoleTitleA
GetConsoleTitleA
FreeConsole
AllocConsole
SetConsoleTextAttribute
SetConsoleCursorPosition
SetConsoleMode
GetConsoleScreenBufferInfo
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
IsDBCSLeadByteEx
GetModuleHandleW
GetModuleFileNameW
LoadLibraryW
lstrlenW
SetFilePointer
ReadFile
WriteFile
GetFileSize
GlobalMemoryStatus
GetComputerNameA
IsBadStringPtrA
CreateFileA
CreateProcessA
FormatMessageA
GetTickCount
GetCurrentThreadId
SetUnhandledExceptionFilter
GetCurrentProcessId
GetCurrentProcess
VirtualQuery
LocalFree
CreateEventA
WaitForSingleObject
WideCharToMultiByte
MultiByteToWideChar
IsDBCSLeadByte
FindResourceA
LoadLibraryExA
lstrcmpi
SizeofResource
LoadResource
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
FreeLibrary
GetProcAddress
GetCurrentThread
GetLastError
SetLastError
ReadProcessMemory
GetThreadContext
SuspendThread
ResumeThread
CloseHandle
LoadLibraryA
GetModuleFileNameA
GetEnvironmentVariableA
OutputDebugStringA
GetCurrentDirectoryA
GetFileAttributesA
GetVersionExA
GetVersion
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
ReleaseMutex
Sleep
FindClose
GetLocalTime
CreateMutexA
GetModuleHandleA
CreateDirectoryA
DeleteFileA
FindFirstFileA
FindNextFileA
DecodePointer
InterlockedIncrement
InterlockedDecrement
RaiseException
msvcp120
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z
?peek@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?id@?$codecvt@DDH@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??Bios_base@std@@QBE_NXZ
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@G@std@@QBEGG@Z
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Xoverflow_error@std@@YAXPBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?id@?$numpunct@D@std@@2V0locale@2@A
?_Incref@facet@locale@std@@UAEXXZ
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?classic@locale@std@@SAABV12@XZ
??1?$codecvt@DDH@std@@MAE@XZ
??0facet@locale@std@@IAE@I@Z
?_C_str@?$_Yarn@D@std@@QBEPBDXZ
?_Gettrue@_Locinfo@std@@QBEPBDXZ
?_Getfalse@_Locinfo@std@@QBEPBDXZ
?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@PBD@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
?_BADOFF@std@@3_JB
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
??7ios_base@std@@QBE_NXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?_Init@?$codecvt@DDH@std@@IAEXABV_Locinfo@2@@Z
?_Winerror_map@std@@YAPBDH@Z
??0_Timevec@std@@QAE@PAX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?id@?$ctype@D@std@@2V0locale@2@A
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?do_encoding@?$codecvt@GDH@std@@MBEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?_Init@?$codecvt@DDH@std@@IAEXABV_Locinfo@2@@Z
??1_Container_base12@std@@QAE@XZ
??1_Container_base12@std@@QAE@XZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QAE?AVlocale@2@ABV32@@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?precision@ios_base@std@@QAE_J_J@Z
?flags@ios_base@std@@QAEHH@Z
?do_date_order@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MBE?AW4dateorder@time_base@2@XZ
?exceptions@ios_base@std@@QAEXH@Z
?good@ios_base@std@@QBE_NXZ
?_Syserror_map@std@@YAPBDH@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?narrow@?$ctype@D@std@@QBEDDD@Z
?tolower@?$ctype@G@std@@QBEGG@Z
?is@?$ctype@D@std@@QBE_NFD@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
??Bid@locale@std@@QAEIXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?_Internal_throw_exception@_Concurrent_queue_base_v4@details@Concurrency@@IBEXXZ
??1_Container_base12@std@@QAE@XZ
??1_Container_base12@std@@QAE@XZ
??0_Container_base12@std@@QAE@XZ
??1_Container_base12@std@@QAE@XZ
?uncaught_exception@std@@YA_NXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?set_new_handler@std@@YAP6AXXZP6AXXZ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z
msvcr120
strtod
strtoul
_beginthreadex
_iob
_recalloc
wcslen
__argv
__argc
_CxxThrowException
?what@exception@std@@UBEPBDXZ
??1__non_rtti_object@std@@UAE@XZ
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
__libm_sse2_sinf
??9type_info@@QBE_NABV0@@Z
??8type_info@@QBE_NABV0@@Z
??1__non_rtti_object@std@@UAE@XZ
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@XZ
vsprintf_s
printf
??_V@YAXPAX@Z
??_U@YAPAXI@Z
_aligned_malloc
_aligned_free
rand
_itoa_s
_set_invalid_parameter_handler
memmove
memcpy_s
memcmp
strncat
_purecall
__CxxFrameHandler
_vsnprintf_s
malloc
free
_strdup
strlen
strcat_s
fgetc
_errno
strcspn
_setjmp3
longjmp
strcoll
_CIpow
strerror
strncpy
_strtime_s
_strdate_s
_atoi64
isalnum
isalpha
ftell
fseek
fread
fopen_s
ferror
_unlock_file
_lock_file
ungetc
setvbuf
fwrite
_fseeki64
fsetpos
fputc
fgetpos
fgetc
system
remove
rename
tmpnam
getenv
strftime
isxdigit
isupper
isdigit
iscntrl
islower
strpbrk
_CIsinh
_CIcosh
_CItanh
_CIasin
_CIacos
_stricmp
modf
frexp
ldexp
_HUGE
fgets
localeconv
_ui64toa_s
_strtoui64
strtok_s
_splitpath_s
_mkdir
_makepath_s
_mktime64
qsort
acos
cos
sin
tan
sqrt
freopen
?terminate@@YAXXZ
tolower
strstr
_resetstkoflw
sscanf
??0exception@std@@QAE@ABQBD@Z
asin
atan
strtok
ceil
strcat
floor
sscanf_s
mbstowcs
setlocale
_snprintf_s
_time64
_i64toa_s
_isnan
memmove_s
swprintf_s
wcstombs
fmod
_iswspace_l
strchr
_strlwr_s
_strupr_s
_wcsicmp
_wcslwr_s
vswprintf_s
wmemcpy_s
wcsftime
_localtime64_s
__RTDynamicCast
wcsnlen
strncmp
wcscpy_s
wcsncpy_s
_ultoa_s
_wtoi
clock
toupper
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
??1type_info@@UAE@XZ
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
_except_handler4_common
_except1
_XcptFilter
__crtGetShowWindowMode
_amsg_exit
__getmainargs
__set_app_type
_exit
_cexit
_ismbblead
_configthreadlocale
__setusermatherr
_initterm_e
_initterm
_acmdln
_fmode
_commode
__crtSetUnhandledExceptionFilter
_invoke_watson
memchr
_controlfp_s
_ftol
_localtime32
_gmtime32
_time32
_mktime32
_difftime32
wcsncpy
strncpy_s
atoi
towlower
strcpy_s
memset
memcpy
??2@YAPAXI@Z
??3@YAXPAX@Z
div
atof
ispunct
isspace
__iob_func
abs
wcsrchr
wcschr
calloc
realloc
strcmp
exit
sprintf
_snprintf
fputs
fprintf
fopen
fflush
fclose
_mbsrchr
_mbsnbcpy
pow
exp
_splitpath
_ui64toa
strcpy
isprint
srand
fabs
sprintf_s
atol
_mbsstr
strrchr
log10
_CIfmod
__libm_sse2_cosf
_mbsnbcpy_s
oleaut32
OleCreateFontIndirect
LoadRegTypeLib
SysAllocStringLen
SysFreeString
VariantInit
VariantClear
SysAllocString
SysStringByteLen
SysAllocStringByteLen
LoadTypeLib
VariantChangeType
VariantCopy
SysStringLen
VarUI4FromStr
rpcrt4
RpcMgmtStatsVectorFree
UuidToStringW
shell32
ShellExecuteA
user32
GetSysColor
FillRect
GetWindowLongA
GetDesktopWindow
GetParent
GetClassNameA
GetWindow
GetClassInfoExA
GetWindowTextA
GetPropA
ScreenToClient
GetSystemMetrics
CallWindowProcA
InvalidateRgn
EndPaint
BeginPaint
DestroyAcceleratorTable
CreateAcceleratorTableA
ReleaseCapture
SetCapture
GetWindowTextLengthA
RedrawWindow
SetPropA
SendMessageA
PostMessageA
DefWindowProcA
UnregisterClassA
RegisterClassExA
ShowWindow
RegisterClipboardFormatA
CreateWindowExA
IsDialogMessageA
PostQuitMessage
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
SetWindowTextA
DestroyWindow
UpdateWindow
SetFocus
EndDialog
GetDlgItem
IsChild
IsWindow
MessageBoxW
SetWindowLongA
AdjustWindowRect
InvalidateRect
ShowCursor
DeleteMenu
GetSystemMenu
DrawMenuBar
SetRect
ReleaseDC
EnumDisplayDevicesA
EnumDisplaySettingsA
ChangeDisplaySettingsA
GetDC
wsprintfA
FindWindowA
CharNextA
SetWindowPos
LoadIconA
LoadCursorA
ClientToScreen
ClipCursor
GetCursorPos
SetCursorPos
MessageBoxA
GetWindowRect
GetClientRect
SetActiveWindow
GetAsyncKeyState
GetFocus
GetActiveWindow
MoveWindow
SetDlgItemTextA
version
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA
wininet
InternetReadFile
InternetOpenUrlA
InternetCloseHandle
InternetSetFilePointer
InternetOpenA
winmm
timeSetEvent
timeEndPeriod
timeBeginPeriod
timeGetDevCaps
timeGetTime
timeKillEvent
ws2_32
WSAGetLastError
socket
setsockopt
select
getsockname
getpeername
ioctlsocket
WSAGetOverlappedResult
closesocket
__WSAFDIsSet
WSASetLastError
WSACleanup
WSAStartup
getsockopt
bind
gethostname
gethostbyname
htons
inet_addr
htons
WSARecv
WSARecvFrom
WSASend
WSASendTo
connect
WSASocketW
inet_ntoa
d3d9
Direct3DCreate9
d3dx9_29
D3DXPlaneFromPoints
D3DXQuaternionSlerp
D3DXQuaternionLn
D3DXQuaternionInverse
D3DXQuaternionNormalize
D3DXQuaternionMultiply
D3DXQuaternionRotationYawPitchRoll
D3DXCreateEffect
D3DXQuaternionRotationMatrix
D3DXQuaternionToAxisAngle
D3DXMatrixOrthoOffCenterLH
D3DXMatrixOrthoOffCenterRH
D3DXMatrixOrthoLH
D3DXMatrixOrthoRH
D3DXPlaneTransform
D3DXMatrixPerspectiveFovRH
D3DXMatrixTransformation
D3DXMatrixRotationQuaternion
D3DXMatrixRotationAxis
D3DXMatrixInverse
D3DXMatrixMultiply
D3DXMatrixTranspose
D3DXMatrixDecompose
D3DXMatrixDeterminant
D3DXVec4Transform
D3DXVec4Cross
D3DXVec3TransformCoord
D3DXVec2Normalize
D3DXCreateFontA
D3DXCreateSprite
D3DXMatrixPerspectiveFovLH
D3DXSaveSurfaceToFileA
D3DXGetImageInfoFromFileInMemory
D3DXCreateTexture
D3DXCreateTextureFromFileInMemoryEx
D3DXSaveTextureToFileA
D3DXCreateCubeTextureFromFileInMemoryEx
D3DXQuaternionRotationAxis
dbghelp
MiniDumpWriteDump
ole32
OleLockRunning
OleUninitialize
OleInitialize
CoInitialize
Sections
.text Size: 18.3MB - Virtual size: 19.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 514B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 5.6MB - Virtual size: 5.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 4.2MB - Virtual size: 4.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 498B - Virtual size: 6.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 78KB - Virtual size: 80KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 20KB - Virtual size: 24KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.xs Size: 4KB - Virtual size: 4KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ