11880711c83d2d5b184fd25f5289ba0c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

11880711c83d2d5b184fd25f5289ba0c_JaffaCakes118
Size

3.4MB
MD5

11880711c83d2d5b184fd25f5289ba0c
SHA1

272456b67e8c919a5ec7e76f37034ea04e06259d
SHA256

27bf8e239f59a87c27cc9d1c7e92adece25427d246cb5c04fa0237930181fea9
SHA512

e69afc36d385940e7db60b2a9b0cd40b541a046e340c7d2a8ac032c4af4d16df6843c51b4dbba7a9b45ebdd672fc600fb035a3095f4abc27c840906c3b33fb96
SSDEEP

49152:Pgla0nbzAW+THF2kA1+9WHyvJxnOy4hAT0sRkrwXykrY2R/UDaUbNc7Jl8ltyUk:PgZZ2FFA12OyvJjTbogyiY9LNc9WHBk

Score

3^/10

Malware Config

Signatures

Unsigned PE 20 IoCs

Checks for missing Authenticode signature.

resource
11880711c83d2d5b184fd25f5289ba0c_JaffaCakes118
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/nsDialogs.dll
unpack001/$PLUGINSDIR/nsisSlideshow.dll
unpack001/$R2/CrashRpt1403.dll
unpack001/$R2/CrashSender1403.exe
unpack001/$R2/GAME.EXE
unpack001/$R2/SDL2.dll
unpack001/$R2/SDL2_ttf.dll
unpack001/$R2/WOL/PATCHW32.DLL
unpack001/$R2/WOL/REGISTER.EXE
unpack001/$R2/WOL/WOLAPI.dll
unpack001/$R2/WOL/WOLBrowser.dll
unpack001/$R2/WOL/unins000.exe
unpack001/$R2/ddraw.dll
unpack001/$R2/libfreetype-6.dll
unpack001/$R2/zlib1.dll
unpack001/UnSolution.exe
unpack002/$PLUGINSDIR/System.dll
unpack002/$PLUGINSDIR/nsDialogs.dll

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/UnSolution.exe	nsis_installer_1
static1/unpack001/UnSolution.exe	nsis_installer_2

Files

11880711c83d2d5b184fd25f5289ba0c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e160ef8e55bb9d162da4e266afd9eef3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
SearchPathA
GetShortPathNameA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetEnvironmentVariableA
GetWindowsDirectoryA
GetTempPathA
Sleep
CloseHandle
LoadLibraryA
lstrlenA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
ReadFile
lstrcpyA
lstrcatA
GetSystemDirectoryA
GetVersion
GetProcAddress
GlobalAlloc
CompareFileTime
SetFileTime
ExpandEnvironmentStringsA
lstrcmpiA
lstrcmpA
WaitForSingleObject
GlobalFree
GetExitCodeProcess
GetModuleHandleA
SetErrorMode
GetCommandLineA
LoadLibraryExA
FindFirstFileA
FindNextFileA
DeleteFileA
SetFilePointer
WriteFile
FindClose
WritePrivateProfileStringA
MultiByteToWideChar
MulDiv
GetPrivateProfileStringA
FreeLibrary

user32

CreateWindowExA
EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
GetDC
SystemParametersInfoA
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
ReleaseDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
DestroyWindow
CreateDialogParamA
SetTimer
GetDlgItem
wsprintfA
SetForegroundWindow
ShowWindow
IsWindow
LoadImageA
SetWindowLongA
SetClipboardData
EmptyClipboard
OpenClipboard
EndPaint
PostQuitMessage
FindWindowExA
SendMessageTimeoutA
SetWindowTextA

gdi32

SelectObject
SetBkMode
CreateFontIndirectA
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA

advapi32

RegCloseKey
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumValueA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegEnumKeyA

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_Destroy
ord17

ole32

CoCreateInstance
CoTaskMemFree
OleInitialize
OleUninitialize

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 112KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/DunMirMemorial2.bmp
$PLUGINSDIR/GEARICO.ico
$PLUGINSDIR/GEARICO2.ico
$PLUGINSDIR/Slidex/Slide 00.jpg
.jpg
$PLUGINSDIR/Slidex/Slidex.jpg
.jpg
$PLUGINSDIR/SolutionWizard.bmp
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

8c8a576201f68de1a3f26fc723b9f30f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MultiByteToWideChar
GlobalFree
GlobalSize
lstrcpynA
lstrcpyA
GetProcAddress
VirtualFree
FreeLibrary
lstrlenA
LoadLibraryA
GetModuleHandleA
GlobalAlloc
WideCharToMultiByte
VirtualAlloc
VirtualProtect
GetLastError

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 851B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 610B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/VICTORY.bmp
$PLUGINSDIR/g1.ico
$PLUGINSDIR/g10.ico
$PLUGINSDIR/g11.ico
$PLUGINSDIR/g12.ico
$PLUGINSDIR/g2.ico
$PLUGINSDIR/g3.ico
$PLUGINSDIR/g4.ico
$PLUGINSDIR/g5.ico
$PLUGINSDIR/g6.ico
$PLUGINSDIR/g7.ico
$PLUGINSDIR/g8.ico
$PLUGINSDIR/g9.ico
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsDialogs.dll
.dll windows:4 windows x86 arch:x86

ddbd50fe6279559edf7d1f1d89b42c2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileAttributesA
lstrcpyA
MulDiv
lstrlenA
HeapFree
GetCurrentDirectoryA
lstrcmpiA
GetProcessHeap
HeapReAlloc
GlobalFree
lstrcpynA
GlobalAlloc
SetCurrentDirectoryA
HeapAlloc

user32

DestroyWindow
CallWindowProcA
SetCursor
LoadCursorA
GetPropA
CharPrevA
DrawFocusRect
GetWindowLongA
DrawTextA
GetClientRect
GetDlgItem
GetSysColor
SetWindowLongA
SetWindowPos
CreateDialogParamA
MapDialogRect
GetWindowRect
SetPropA
CreateWindowExA
IsWindow
SetTimer
KillTimer
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
ShowWindow
wsprintfA
CharNextA
SendMessageA
MapWindowPoints
RemovePropA
GetWindowTextA

gdi32

SetTextColor

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

Create
CreateControl
CreateItem
CreateTimer
GetUserData
KillTimer
OnBack
OnChange
OnClick
OnNotify
SelectFileDialog
SelectFolderDialog
SetRTL
SetUserData
Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/nsisSlideshow.dll
.dll windows:4 windows x86 arch:x86

d48e421612bf2363143ccfd4ec11fae7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalReAlloc
lstrcmpiA
lstrcpyA
GlobalAlloc
GetPrivateProfileSectionA
GlobalFree
lstrcpynA
MultiByteToWideChar
Sleep
lstrlenA

user32

CallWindowProcA
BeginPaint
FindWindowExA
SetWindowLongA
GetWindowLongA
IsWindowVisible
GetDlgItem
GetWindowRect
ScreenToClient
GetClientRect
GetDC
ReleaseDC
SendMessageA
InvalidateRect
SetTimer
KillTimer
IsWindow
EndPaint

shlwapi

PathCombineA
StrChrA
StrToIntExA
PathRemoveFileSpecA
StrToIntA

ole32

CoCreateInstance

gdi32

DeleteDC
TextOutA
SetTextAlign
SetBkMode
SetTextColor
CreateFontIndirectA
GetObjectA
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
DeleteObject

msimg32

AlphaBlend

Exports

Exports

show
stop

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 570B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/potshelves.bmp
$R2/CrashRpt1403.dll
.dll windows:6 windows x86 arch:x86

556853e56dbc2c2006f98dffb0f8e6f7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\awesie\Downloads\CrashRpt_v.1.4.3_r1645\bin\CrashRpt1403.pdb

Imports

rpcrt4

UuidToStringA
RpcStringFreeA

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

shell32

SHFileOperationW
SHGetSpecialFolderPathW

gdi32

SetLayout

kernel32

GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
SetFilePointerEx
WriteConsoleW
CreateFileW
GetFileAttributesW
DebugBreak
OutputDebugStringW
CloseHandle
SetUnhandledExceptionFilter
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetEvent
WaitForSingleObject
CreateEventW
GetCurrentProcess
GetCurrentProcessId
TerminateProcess
GetExitCodeProcess
CreateThread
GetCurrentThreadId
CreateProcessW
FreeLibrary
GetProcAddress
lstrlenA
lstrlenW
LoadLibraryW
MultiByteToWideChar
WideCharToMultiByte
RaiseException
InitializeCriticalSectionAndSpinCount
GetSystemInfo
CreateFileMappingW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
DecodePointer
CreateDirectoryW
GetFileAttributesExW
GetTempFileNameW
GetTempPathW
GetModuleFileNameW
GetModuleHandleW
GlobalAlloc
GlobalFree
FormatMessageW
GetPrivateProfileStringW
WritePrivateProfileStringW
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
WriteFile
FlushFileBuffers
SetStdHandle
GetCommandLineW
GetCommandLineA
GetProcessHeap
SetEnvironmentVariableW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
GetLastError
HeapReAlloc
HeapSize
LCMapStringW
CompareStringW
IsDebuggerPresent
UnhandledExceptionFilter
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
RtlUnwind
InterlockedFlushSList
SetLastError
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
SetConsoleCtrlHandler
ExitProcess
GetModuleHandleExW
HeapFree
HeapAlloc
GetStringTypeW
GetACP
GetStdHandle
GetFileType
GetDateFormatW
GetTimeFormatW

user32

GetWindow
SetWindowLongW
GetWindowLongW
GetWindowRect
GetClientRect
MoveWindow
MapWindowPoints
GetActiveWindow
CharNextW
LoadStringW
GetDC
MessageBoxW

advapi32

SystemFunction036
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

ole32

CoCreateGuid

Exports

Exports

crAddFile2A
crAddFile2W
crAddPropertyA
crAddPropertyW
crAddRegKeyA
crAddRegKeyW
crAddScreenshot
crAddScreenshot2
crAddVideo
crEmulateCrash
crExceptionFilter
crGenerateErrorReport
crGetLastErrorMsgA
crGetLastErrorMsgW
crInstallA
crInstallToCurrentThread2
crInstallW
crSetCrashCallbackA
crSetCrashCallbackW
crUninstall
crUninstallFromCurrentThread

Sections

.text
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$R2/CrashSender1403.exe
.exe windows:6 windows x86 arch:x86

80068d2841b66d420658b2ce726366ad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\awesie\Downloads\CrashRpt_v.1.4.3_r1645\bin\CrashSender.pdb

Imports

ws2_32

ntohs
inet_ntoa
inet_addr
htons
htonl
closesocket
connect
recv
WSAGetLastError
WSASetLastError
WSACleanup
WSAStartup
getservbyname
getservbyport
gethostbyname
gethostbyaddr
socket
send

dnsapi

DnsQuery_W
DnsFree

wininet

InternetWriteFile
HttpOpenRequestW
HttpSendRequestExW
InternetReadFile
InternetCloseHandle
InternetSetOptionW
InternetQueryOptionW
InternetConnectW
HttpQueryInfoW
HttpEndRequestW
InternetOpenW

rpcrt4

UuidToStringA
RpcStringFreeA

psapi

GetProcessMemoryInfo

gdi32

SetTextColor
GetDIBits
CreateDCW
SetViewportOrgEx
TextOutW
CreateHalftonePalette
GetDIBColorTable
CreateDIBSection
SetStretchBltMode
StretchBlt
SetDIBits
SelectPalette
SetLayout
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontIndirectW
CreatePen
DeleteDC
DeleteObject
GetStockObject
SelectObject
SetBkMode
GetObjectW
Polygon
CreateSolidBrush
SetBkColor
BitBlt
CreateFontW
CreatePalette
CreateRectRgn
RealizePalette
SelectClipRgn

shell32

SHFileOperationW
ExtractIconW
SHGetFileInfoW
ShellExecuteW
CommandLineToArgvW
Shell_NotifyIconW
SHGetSpecialFolderPathW

comdlg32

GetSaveFileNameW
GetOpenFileNameW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedFlushSList
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapSize
HeapReAlloc
SetCurrentDirectoryW
RtlUnwind
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
WaitForSingleObjectEx
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LoadLibraryExA
GetCurrentDirectoryW
GetFullPathNameA
SetStdHandle
LCMapStringW
GetTimeFormatW
GetDateFormatW
GetStringTypeW
CloseHandle
GetSystemInfo
CreateFileMappingW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
lstrlenW
CreateDirectoryW
GetFileAttributesW
GetFileAttributesExW
GetTempFileNameW
GetTempPathW
DebugBreak
OutputDebugStringW
GetLastError
GetConsoleMode
ReadConsoleW
GetModuleFileNameW
GetModuleHandleW
IsValidCodePage
GlobalAlloc
GlobalFree
FormatMessageW
lstrlenA
LoadLibraryW
GetPrivateProfileStringW
WritePrivateProfileStringW
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObject
CreateEventW
WideCharToMultiByte
CreateFileW
FindClose
FindFirstFileW
FindNextFileW
GetFileSizeEx
GetFullPathNameW
SetLastError
GetProcessTimes
OpenProcess
GetSystemTime
ReadProcessMemory
CopyFileW
FileTimeToSystemTime
GetCommandLineW
DecodePointer
RaiseException
GetCurrentThreadId
LoadLibraryExW
LoadResource
SizeofResource
MulDiv
lstrcmpW
lstrcmpiW
FindResourceW
CompareStringW
GetVersionExW
GetFileInformationByHandle
ReadFile
WriteFile
CreateMutexW
GetCurrentProcessId
TerminateProcess
GetExitCodeProcess
CreateThread
CreateProcessW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
InitializeCriticalSection
Sleep
GlobalLock
GlobalUnlock
GetSystemDirectoryA
LoadLibraryA
GetTimeZoneInformation
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
GetProcessHeap
HeapFree
HeapAlloc
EncodePointer
IsDebuggerPresent
FreeLibrary
GetConsoleCP
SetFilePointerEx
FlushFileBuffers
GetCurrentProcess
SetConsoleCtrlHandler
GetFileType
PeekNamedPipe
ExitProcess
GetModuleHandleExW
GetStdHandle
GetModuleFileNameA
GetACP
GetCurrentThread
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetCommandLineA
OutputDebugStringA
FindFirstFileExA
FindFirstFileExW
FindNextFileA
WriteConsoleW
SetEndOfFile
GetProcAddress
GetDriveTypeW

user32

GetActiveWindow
LoadMenuW
DestroyMenu
EnableMenuItem
GetSubMenu
DeleteMenu
TrackPopupMenu
SetMenuItemInfoW
SetWindowTextW
CheckMenuRadioItem
MonitorFromPoint
MonitorFromWindow
GetMonitorInfoW
PostQuitMessage
FlashWindow
DialogBoxParamW
EnableWindow
GetMenu
DrawIcon
DrawTextExW
AdjustWindowRectEx
MessageBoxW
CopyRect
LoadIconW
GetIconInfo
IsDialogMessageW
PostMessageW
SetProcessDefaultLayout
CharUpperW
SetTimer
KillTimer
DrawTextExA
SetScrollInfo
GetScrollInfo
AnimateWindow
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
GetSystemMetrics
IntersectRect
EnumWindows
PtInRect
EnumDisplayMonitors
GetCursorInfo
EndDialog
BeginPaint
ReleaseDC
UpdateWindow
DrawTextW
IsWindowEnabled
ReleaseCapture
SetCapture
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
CreateDialogParamW
IsWindowVisible
SetWindowPos
ShowWindow
DestroyWindow
IsWindow
CreateWindowExW
UnregisterClassW
OffsetRect
SetRectEmpty
FillRect
DrawFocusRect
GetSysColorBrush
GetSysColor
ScreenToClient
GetCursorPos
CallWindowProcW
DefWindowProcW
SendMessageW
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
GetGuiResources
GetWindow
SetWindowLongW
GetWindowLongW
MapWindowPoints
GetWindowRect
GetClientRect
GetDC
CharNextW
MoveWindow
LoadStringW
SystemParametersInfoW
LoadImageW
DestroyIcon
LoadCursorW
GetClassNameW
GetParent
EndPaint
GetDesktopWindow
SetCursor
GetWindowTextLengthW
GetWindowTextW
RedrawWindow
GetWindowThreadProcessId
InvalidateRect

advapi32

SystemFunction036
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueW
RegEnumValueW
RegCloseKey

ole32

CoUninitialize
CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoInitialize
CoCreateGuid

oleaut32

VarR8FromStr
VarDateFromStr
VarUI4FromStr
VarDecFromStr
SysFreeString
VarDecCmp
VarI4FromStr

comctl32

InitCommonControlsEx
ImageList_Create
ImageList_ReplaceIcon
ImageList_Remove
_TrackMouseEvent

Sections

.text
Size: 1007KB - Virtual size: 1006KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 218KB - Virtual size: 217KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$R2/GAME.EXE
.exe windows:4 windows x86 arch:x86

4b7600207e8f1df082b1effb87254d9d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
HeapCreate
WriteFile
HeapDestroy
GetFileType
HeapFree
InterlockedIncrement
SetFilePointer
GetStdHandle
HeapReAlloc
IsBadWritePtr
InterlockedDecrement
GetStringTypeW
GetCPInfo
SetHandleCount
GetOEMCP
GetProcAddress
LoadLibraryA
GetEnvironmentStringsW
GetEnvironmentStrings
VirtualAlloc
MultiByteToWideChar
GetStringTypeA
GetVersionExA
CloseHandle
GetACP
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetStdHandle
TlsSetValue
GetCurrentThreadId
HeapAlloc
ExitProcess
GetVersion
GetCommandLineA
Sleep
WideCharToMultiByte
LCMapStringA
LCMapStringW
LeaveCriticalSection
EnterCriticalSection
FlushFileBuffers
GetTimeZoneInformation
TerminateProcess
GetLocalTime
ReadFile
CreateFileA
OpenMutexA
CreateMutexA
QueryPerformanceFrequency
QueryPerformanceCounter
CreateDirectoryA
SetVolumeLabelA
GetLogicalDriveStringsA
GetVolumeInformationA
GetDiskFreeSpaceA
FindClose
FindNextFileA
FreeEnvironmentStringsW
GetTickCount
CompareFileTime
SystemTimeToFileTime
GetTimeFormatA
GetDateFormatA
SetCurrentDirectoryA
WaitForSingleObject
MulDiv
MoveFileA
RemoveDirectoryA
CopyFileA
ReleaseMutex
SetEvent
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemTime
GetFileAttributesA
SetFileAttributesA
GetSystemTimeAsFileTime
ResumeThread
CreateThread
ExitThread
HeapSize
RaiseException
SetEndOfFile
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TlsAlloc
DeleteFileA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
GetDriveTypeA
GetFullPathNameA
GetCurrentDirectoryA
DeleteCriticalSection
GlobalMemoryStatus
InitializeCriticalSection
GetLastError
TlsGetValue
SetLastError
FindFirstFileA
IsDBCSLeadByte
InterlockedExchange

user32

GetAsyncKeyState
CopyRect
ShowCursor
GetWindowDC
GetSystemMetrics
AdjustWindowRect
SetWindowPos
GetMenu
IsRectEmpty
MessageBoxA
PeekMessageA
DispatchMessageA
GetMessageA
TranslateMessage
IsWindow
SetCursor
PostQuitMessage
GetWindowLongA
ClientToScreen
SetWindowLongA
OffsetRect
SetRect
GetDC
ReleaseDC
IsIconic
wsprintfA
PostMessageA
GetClientRect
DefWindowProcA
SetWindowTextA
FindWindowA
SetForegroundWindow
ShowWindow
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
DestroyWindow
UnregisterClassA
ClipCursor
GetKeyState
GetKeyboardLayout
GetKeyboardLayoutList

gdi32

RealizePalette
SelectPalette
CreatePalette
DeleteObject
DeleteDC
GetSystemPaletteEntries
CreateICA
TextOutA
GetStockObject
GetDeviceCaps

advapi32

RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA

shell32

ShellExecuteA

ole32

CoInitialize
CoUninitialize
CoCreateInstance

winmm

timeKillEvent
timeEndPeriod
timeBeginPeriod
timeSetEvent
joyGetNumDevs
joyGetPosEx
joyGetDevCapsA
timeGetTime
mciSendCommandA

ddraw

DirectDrawCreate
DirectDrawEnumerateA

dsound

ord1

dinput

DirectInputCreateA

wsock32

socket
WSACleanup
setsockopt
ntohl
bind
WSAGetLastError
gethostname
gethostbyname
inet_ntoa
recvfrom
sendto
ioctlsocket
inet_addr
WSAStartup
closesocket
listen
shutdown
send
accept
recv
htonl
ntohs
htons

mss32

_AIL_waveOutClose@4
_AIL_digital_configuration@16
_AIL_set_timer_frequency@8
_AIL_set_sample_user_data@12
_AIL_allocate_sample_handle@4
_AIL_last_error@0
_AIL_sample_user_data@8
_AIL_register_EOS_callback@8
_AIL_register_EOB_callback@8
_AIL_set_sample_adpcm_block_size@8
_AIL_set_sample_type@12
_AIL_get_preference@4
_AIL_set_preference@8
_AIL_load_sample_buffer@16
_AIL_sample_buffer_ready@4
_AIL_end_sample@4
_AIL_release_timer_handle@4
_AIL_stop_timer@4
_AIL_set_sample_playback_rate@8
_AIL_set_sample_pan@8
_AIL_set_sample_volume@8
_AIL_serve@0
_AIL_unlock@0
_AIL_lock@0
_AIL_init_sample@4
_AIL_shutdown@0
_AIL_start_timer@4
_AIL_digital_handle_reacquire@4
_AIL_digital_handle_release@4
_AIL_stream_position@4
_AIL_open_stream@12
_AIL_set_stream_position@8
_AIL_start_stream@4
_AIL_pause_stream@8
_AIL_close_stream@4
_AIL_stream_status@4
_AIL_startup@0
_AIL_register_timer@4
_AIL_stop_sample@4
_AIL_resume_sample@4
_AIL_set_stream_volume@8
_AIL_waveOutOpen@16
_AIL_release_sample_handle@4

imm32

ImmGetOpenStatus
ImmNotifyIME
ImmReleaseContext
ImmGetContext
ImmCreateContext
ImmGetProperty
ImmDestroyContext
ImmGetCandidateListA
ImmSetCompositionWindow
ImmSetOpenStatus
ImmGetCompositionStringA
ImmGetDescriptionA
ImmSetCompositionStringA

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 312KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$R2/README.txt
$R2/README.txt.gif
.gif
$R2/SDL2.dll
.dll windows:4 windows x86 arch:x86

c0e0de0c321864bcb6f039dbcaa2c33e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

gdi32

BitBlt
ChoosePixelFormat
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCW
CreateDIBSection
CreateFontIndirectW
CreateFontW
CreatePen
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
DescribePixelFormat
ExtTextOutW
GetDIBits
GetDeviceCaps
GetDeviceGammaRamp
GetPixelFormat
GetTextExtentPoint32W
GetTextMetricsW
Rectangle
SelectObject
SetBkMode
SetDeviceGammaRamp
SetPixelFormat
SetTextColor
SwapBuffers

imm32

ImmAssociateContext
ImmGetCandidateListW
ImmGetCompositionStringW
ImmGetContext
ImmGetIMEFileNameA
ImmNotifyIME
ImmReleaseContext
ImmSetCompositionStringW

kernel32

AttachConsole
CloseHandle
CompareStringA
CreateDirectoryW
CreateFileW
CreateSemaphoreW
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FormatMessageW
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetEnvironmentVariableA
GetFileSizeEx
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStdHandle
GetSystemInfo
GetSystemPowerStatus
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
GlobalAlloc
GlobalLock
GlobalMemoryStatusEx
GlobalUnlock
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
MulDiv
MultiByteToWideChar
OutputDebugStringW
QueryPerformanceCounter
QueryPerformanceFrequency
ReadFile
ReleaseSemaphore
SetEnvironmentVariableA
SetErrorMode
SetFilePointer
SetFilePointerEx
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrcatW
lstrlenW

msvcrt

__dllonexit
__mb_cur_max
_amsg_exit
_errno
_initterm
_iob
_lock
_onexit
_unlock
abort
atoi
calloc
fputc
free
getenv
localeconv
malloc
memcpy
memmove
setlocale
strchr
strerror
strlen
strncmp
wcslen

ole32

CoCreateInstance
CoInitializeEx
CoUninitialize

oleaut32

SysFreeString

shell32

DragAcceptFiles
DragFinish
DragQueryFileW
SHGetFolderPathW

user32

AdjustWindowRectEx
CallWindowProcW
ChangeDisplaySettingsExW
ClientToScreen
ClipCursor
CloseClipboard
CreateIconFromResource
CreateIconIndirect
CreateWindowExW
DefWindowProcW
DestroyIcon
DestroyWindow
DialogBoxIndirectParamW
DispatchMessageW
DrawTextW
EmptyClipboard
EndDialog
EnumDisplayDevicesW
EnumDisplaySettingsW
GetAsyncKeyState
GetClassInfoW
GetClientRect
GetClipboardData
GetClipboardSequenceNumber
GetCursorPos
GetDC
GetDesktopWindow
GetDoubleClickTime
GetFocus
GetKeyState
GetKeyboardLayout
GetKeyboardState
GetMenu
GetMessageW
GetPropW
GetRawInputData
GetRawInputDeviceInfoA
GetRawInputDeviceList
GetUpdateRect
GetWindowLongW
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
IsClipboardFormatAvailable
IsIconic
IsRectEmpty
LoadCursorW
LoadImageW
MapVirtualKeyW
OpenClipboard
PeekMessageW
RegisterClassExW
RegisterClassW
RegisterDeviceNotificationW
RegisterRawInputDevices
ReleaseDC
ScreenToClient
SendMessageW
SetClipboardData
SetCursor
SetCursorPos
SetPropW
SetWindowLongW
SetWindowPos
SetWindowRgn
SetWindowTextW
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
ToUnicode
TrackMouseEvent
TranslateMessage
UnregisterClassW
UnregisterDeviceNotification
ValidateRect

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime
waveInClose
waveInGetDevCapsW
waveInGetNumDevs
waveInOpen
waveOutClose
waveOutGetDevCapsW
waveOutGetErrorTextW
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite

Exports

Exports

SDL_AddEventWatch
SDL_AddHintCallback
SDL_AddTimer
SDL_AllocFormat
SDL_AllocPalette
SDL_AllocRW
SDL_AtomicAdd
SDL_AtomicCAS
SDL_AtomicCASPtr
SDL_AtomicGet
SDL_AtomicGetPtr
SDL_AtomicLock
SDL_AtomicSet
SDL_AtomicSetPtr
SDL_AtomicTryLock
SDL_AtomicUnlock
SDL_AudioInit
SDL_AudioQuit
SDL_BuildAudioCVT
SDL_CalculateGammaRamp
SDL_ClearError
SDL_ClearHints
SDL_CloseAudio
SDL_CloseAudioDevice
SDL_CondBroadcast
SDL_CondSignal
SDL_CondWait
SDL_CondWaitTimeout
SDL_ConvertAudio
SDL_ConvertPixels
SDL_ConvertSurface
SDL_ConvertSurfaceFormat
SDL_CreateColorCursor
SDL_CreateCond
SDL_CreateCursor
SDL_CreateMutex
SDL_CreateRGBSurface
SDL_CreateRGBSurfaceFrom
SDL_CreateRenderer
SDL_CreateSemaphore
SDL_CreateShapedWindow
SDL_CreateSoftwareRenderer
SDL_CreateSystemCursor
SDL_CreateTexture
SDL_CreateTextureFromSurface
SDL_CreateThread
SDL_CreateWindow
SDL_CreateWindowAndRenderer
SDL_CreateWindowFrom
SDL_DXGIGetOutputInfo
SDL_DYNAPI_entry
SDL_DelEventWatch
SDL_DelHintCallback
SDL_Delay
SDL_DestroyCond
SDL_DestroyMutex
SDL_DestroyRenderer
SDL_DestroySemaphore
SDL_DestroyTexture
SDL_DestroyWindow
SDL_DetachThread
SDL_Direct3D9GetAdapterIndex
SDL_DisableScreenSaver
SDL_EnableScreenSaver
SDL_EnclosePoints
SDL_Error
SDL_EventState
SDL_FillRect
SDL_FillRects
SDL_FilterEvents
SDL_FlushEvent
SDL_FlushEvents
SDL_FreeCursor
SDL_FreeFormat
SDL_FreePalette
SDL_FreeRW
SDL_FreeSurface
SDL_FreeWAV
SDL_GL_BindTexture
SDL_GL_CreateContext
SDL_GL_DeleteContext
SDL_GL_ExtensionSupported
SDL_GL_GetAttribute
SDL_GL_GetCurrentContext
SDL_GL_GetCurrentWindow
SDL_GL_GetDrawableSize
SDL_GL_GetProcAddress
SDL_GL_GetSwapInterval
SDL_GL_LoadLibrary
SDL_GL_MakeCurrent
SDL_GL_ResetAttributes
SDL_GL_SetAttribute
SDL_GL_SetSwapInterval
SDL_GL_SwapWindow
SDL_GL_UnbindTexture
SDL_GL_UnloadLibrary
SDL_GameControllerAddMapping
SDL_GameControllerAddMappingsFromRW
SDL_GameControllerClose
SDL_GameControllerEventState
SDL_GameControllerGetAttached
SDL_GameControllerGetAxis
SDL_GameControllerGetAxisFromString
SDL_GameControllerGetBindForAxis
SDL_GameControllerGetBindForButton
SDL_GameControllerGetButton
SDL_GameControllerGetButtonFromString
SDL_GameControllerGetJoystick
SDL_GameControllerGetStringForAxis
SDL_GameControllerGetStringForButton
SDL_GameControllerMapping
SDL_GameControllerMappingForGUID
SDL_GameControllerName
SDL_GameControllerNameForIndex
SDL_GameControllerOpen
SDL_GameControllerUpdate
SDL_GetAssertionHandler
SDL_GetAssertionReport
SDL_GetAudioDeviceName
SDL_GetAudioDeviceStatus
SDL_GetAudioDriver
SDL_GetAudioStatus
SDL_GetBasePath
SDL_GetCPUCacheLineSize
SDL_GetCPUCount
SDL_GetClipRect
SDL_GetClipboardText
SDL_GetClosestDisplayMode
SDL_GetColorKey
SDL_GetCurrentAudioDriver
SDL_GetCurrentDisplayMode
SDL_GetCurrentVideoDriver
SDL_GetCursor
SDL_GetDefaultAssertionHandler
SDL_GetDefaultCursor
SDL_GetDesktopDisplayMode
SDL_GetDisplayBounds
SDL_GetDisplayMode
SDL_GetDisplayName
SDL_GetError
SDL_GetEventFilter
SDL_GetHint
SDL_GetKeyFromName
SDL_GetKeyFromScancode
SDL_GetKeyName
SDL_GetKeyboardFocus
SDL_GetKeyboardState
SDL_GetModState
SDL_GetMouseFocus
SDL_GetMouseState
SDL_GetNumAudioDevices
SDL_GetNumAudioDrivers
SDL_GetNumDisplayModes
SDL_GetNumRenderDrivers
SDL_GetNumTouchDevices
SDL_GetNumTouchFingers
SDL_GetNumVideoDisplays
SDL_GetNumVideoDrivers
SDL_GetPerformanceCounter
SDL_GetPerformanceFrequency
SDL_GetPixelFormatName
SDL_GetPlatform
SDL_GetPowerInfo
SDL_GetPrefPath
SDL_GetRGB
SDL_GetRGBA
SDL_GetRelativeMouseMode
SDL_GetRelativeMouseState
SDL_GetRenderDrawBlendMode
SDL_GetRenderDrawColor
SDL_GetRenderDriverInfo
SDL_GetRenderTarget
SDL_GetRenderer
SDL_GetRendererInfo
SDL_GetRendererOutputSize
SDL_GetRevision
SDL_GetRevisionNumber
SDL_GetScancodeFromKey
SDL_GetScancodeFromName
SDL_GetScancodeName
SDL_GetShapedWindowMode
SDL_GetSurfaceAlphaMod
SDL_GetSurfaceBlendMode
SDL_GetSurfaceColorMod
SDL_GetSystemRAM
SDL_GetTextureAlphaMod
SDL_GetTextureBlendMode
SDL_GetTextureColorMod
SDL_GetThreadID
SDL_GetThreadName
SDL_GetTicks
SDL_GetTouchDevice
SDL_GetTouchFinger
SDL_GetVersion
SDL_GetVideoDriver
SDL_GetWindowBrightness
SDL_GetWindowData
SDL_GetWindowDisplayIndex
SDL_GetWindowDisplayMode
SDL_GetWindowFlags
SDL_GetWindowFromID
SDL_GetWindowGammaRamp
SDL_GetWindowGrab
SDL_GetWindowID
SDL_GetWindowMaximumSize
SDL_GetWindowMinimumSize
SDL_GetWindowPixelFormat
SDL_GetWindowPosition
SDL_GetWindowSize
SDL_GetWindowSurface
SDL_GetWindowTitle
SDL_GetWindowWMInfo
SDL_HapticClose
SDL_HapticDestroyEffect
SDL_HapticEffectSupported
SDL_HapticGetEffectStatus
SDL_HapticIndex
SDL_HapticName
SDL_HapticNewEffect
SDL_HapticNumAxes
SDL_HapticNumEffects
SDL_HapticNumEffectsPlaying
SDL_HapticOpen
SDL_HapticOpenFromJoystick
SDL_HapticOpenFromMouse
SDL_HapticOpened
SDL_HapticPause
SDL_HapticQuery
SDL_HapticRumbleInit
SDL_HapticRumblePlay
SDL_HapticRumbleStop
SDL_HapticRumbleSupported
SDL_HapticRunEffect
SDL_HapticSetAutocenter
SDL_HapticSetGain
SDL_HapticStopAll
SDL_HapticStopEffect
SDL_HapticUnpause
SDL_HapticUpdateEffect
SDL_Has3DNow
SDL_HasAVX
SDL_HasAltiVec
SDL_HasClipboardText
SDL_HasEvent
SDL_HasEvents
SDL_HasIntersection
SDL_HasMMX
SDL_HasRDTSC
SDL_HasSSE
SDL_HasSSE2
SDL_HasSSE3
SDL_HasSSE41
SDL_HasSSE42
SDL_HasScreenKeyboardSupport
SDL_HideWindow
SDL_Init
SDL_InitSubSystem
SDL_IntersectRect
SDL_IntersectRectAndLine
SDL_IsGameController
SDL_IsScreenKeyboardShown
SDL_IsScreenSaverEnabled
SDL_IsShapedWindow
SDL_IsTextInputActive
SDL_JoystickClose
SDL_JoystickEventState
SDL_JoystickGetAttached
SDL_JoystickGetAxis
SDL_JoystickGetBall
SDL_JoystickGetButton
SDL_JoystickGetDeviceGUID
SDL_JoystickGetGUID
SDL_JoystickGetGUIDFromString
SDL_JoystickGetGUIDString
SDL_JoystickGetHat
SDL_JoystickInstanceID
SDL_JoystickIsHaptic
SDL_JoystickName
SDL_JoystickNameForIndex
SDL_JoystickNumAxes
SDL_JoystickNumBalls
SDL_JoystickNumButtons
SDL_JoystickNumHats
SDL_JoystickOpen
SDL_JoystickUpdate
SDL_LoadBMP_RW
SDL_LoadDollarTemplates
SDL_LoadFunction
SDL_LoadObject
SDL_LoadWAV_RW
SDL_LockAudio
SDL_LockAudioDevice
SDL_LockMutex
SDL_LockSurface
SDL_LockTexture
SDL_Log
SDL_LogCritical
SDL_LogDebug
SDL_LogError
SDL_LogGetOutputFunction
SDL_LogGetPriority
SDL_LogInfo
SDL_LogMessage
SDL_LogMessageV
SDL_LogResetPriorities
SDL_LogSetAllPriority
SDL_LogSetOutputFunction
SDL_LogSetPriority
SDL_LogVerbose
SDL_LogWarn
SDL_LowerBlit
SDL_LowerBlitScaled
SDL_MapRGB
SDL_MapRGBA
SDL_MasksToPixelFormatEnum
SDL_MaximizeWindow
SDL_MinimizeWindow
SDL_MixAudio
SDL_MixAudioFormat
SDL_MouseIsHaptic
SDL_NumHaptics
SDL_NumJoysticks
SDL_OpenAudio
SDL_OpenAudioDevice
SDL_PauseAudio
SDL_PauseAudioDevice
SDL_PeepEvents
SDL_PixelFormatEnumToMasks
SDL_PollEvent
SDL_PumpEvents
SDL_PushEvent
SDL_QueryTexture
SDL_Quit
SDL_QuitSubSystem
SDL_RWFromConstMem
SDL_RWFromFP
SDL_RWFromFile
SDL_RWFromMem
SDL_RaiseWindow
SDL_ReadBE16
SDL_ReadBE32
SDL_ReadBE64
SDL_ReadLE16
SDL_ReadLE32
SDL_ReadLE64
SDL_ReadU8
SDL_RecordGesture
SDL_RegisterApp
SDL_RegisterEvents
SDL_RemoveTimer
SDL_RenderClear
SDL_RenderCopy
SDL_RenderCopyEx
SDL_RenderDrawLine
SDL_RenderDrawLines
SDL_RenderDrawPoint
SDL_RenderDrawPoints
SDL_RenderDrawRect
SDL_RenderDrawRects
SDL_RenderFillRect
SDL_RenderFillRects
SDL_RenderGetClipRect
SDL_RenderGetD3D9Device
SDL_RenderGetLogicalSize
SDL_RenderGetScale
SDL_RenderGetViewport
SDL_RenderPresent
SDL_RenderReadPixels
SDL_RenderSetClipRect
SDL_RenderSetLogicalSize
SDL_RenderSetScale
SDL_RenderSetViewport
SDL_RenderTargetSupported
SDL_ReportAssertion
SDL_ResetAssertionReport
SDL_RestoreWindow
SDL_SaveAllDollarTemplates
SDL_SaveBMP_RW
SDL_SaveDollarTemplate
SDL_SemPost
SDL_SemTryWait
SDL_SemValue
SDL_SemWait
SDL_SemWaitTimeout
SDL_SetAssertionHandler
SDL_SetClipRect
SDL_SetClipboardText
SDL_SetColorKey
SDL_SetCursor
SDL_SetError
SDL_SetEventFilter
SDL_SetHint
SDL_SetHintWithPriority
SDL_SetMainReady
SDL_SetModState
SDL_SetPaletteColors
SDL_SetPixelFormatPalette
SDL_SetRelativeMouseMode
SDL_SetRenderDrawBlendMode
SDL_SetRenderDrawColor
SDL_SetRenderTarget
SDL_SetSurfaceAlphaMod
SDL_SetSurfaceBlendMode
SDL_SetSurfaceColorMod
SDL_SetSurfacePalette
SDL_SetSurfaceRLE
SDL_SetTextInputRect
SDL_SetTextureAlphaMod
SDL_SetTextureBlendMode
SDL_SetTextureColorMod
SDL_SetThreadPriority
SDL_SetWindowBordered
SDL_SetWindowBrightness
SDL_SetWindowData
SDL_SetWindowDisplayMode
SDL_SetWindowFullscreen
SDL_SetWindowGammaRamp
SDL_SetWindowGrab
SDL_SetWindowIcon
SDL_SetWindowMaximumSize
SDL_SetWindowMinimumSize
SDL_SetWindowPosition
SDL_SetWindowShape
SDL_SetWindowSize
SDL_SetWindowTitle
SDL_ShowCursor
SDL_ShowMessageBox
SDL_ShowSimpleMessageBox
SDL_ShowWindow
SDL_SoftStretch
SDL_StartTextInput
SDL_StopTextInput
SDL_TLSCreate
SDL_TLSGet
SDL_TLSSet
SDL_ThreadID
SDL_TryLockMutex
SDL_UnionRect
SDL_UnloadObject
SDL_UnlockAudio
SDL_UnlockAudioDevice
SDL_UnlockMutex
SDL_UnlockSurface
SDL_UnlockTexture
SDL_UnregisterApp
SDL_UpdateTexture
SDL_UpdateWindowSurface
SDL_UpdateWindowSurfaceRects
SDL_UpdateYUVTexture
SDL_UpperBlit
SDL_UpperBlitScaled
SDL_VideoInit
SDL_VideoQuit
SDL_WaitEvent
SDL_WaitEventTimeout
SDL_WaitThread
SDL_WarpMouseInWindow
SDL_WasInit
SDL_WriteBE16
SDL_WriteBE32
SDL_WriteBE64
SDL_WriteLE16
SDL_WriteLE32
SDL_WriteLE64
SDL_WriteU8
SDL_abs
SDL_acos
SDL_asin
SDL_atan
SDL_atan2
SDL_atof
SDL_atoi
SDL_calloc
SDL_ceil
SDL_copysign
SDL_cos
SDL_cosf
SDL_fabs
SDL_floor
SDL_free
SDL_getenv
SDL_iconv
SDL_iconv_close
SDL_iconv_open
SDL_iconv_string
SDL_isdigit
SDL_isspace
SDL_itoa
SDL_lltoa
SDL_log
SDL_ltoa
SDL_malloc
SDL_memcmp
SDL_memcpy
SDL_memmove
SDL_memset
SDL_pow
SDL_qsort
SDL_realloc
SDL_scalbn

Sections

.text
Size: 850KB - Virtual size: 850KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$R2/SDL2_ttf.dll
.dll windows:4 windows x86 arch:x86

9a4bea79afb1abfe97bef3a4291c6706

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

libfreetype-6

FT_Done_Face
FT_Done_FreeType
FT_Done_Glyph
FT_Get_Char_Index
FT_Get_Glyph
FT_Get_Kerning
FT_Glyph_Stroke
FT_Glyph_To_Bitmap
FT_Init_FreeType
FT_Load_Glyph
FT_Open_Face
FT_Outline_Transform
FT_Render_Glyph
FT_Set_Char_Size
FT_Set_Charmap
FT_Set_Pixel_Sizes
FT_Stroker_Done
FT_Stroker_New
FT_Stroker_Set
InterlockedCompareExchange@12

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__dllonexit
__mb_cur_max
_amsg_exit
_errno
_initterm
_iob
_lock
_onexit
_unlock
abort
atoi
calloc
fputc
free
getenv
localeconv
malloc
memcpy
memset
setlocale
strchr
strerror
strlen
strncmp
wcslen

sdl2

SDL_CreateRGBSurface
SDL_Error
SDL_FillRect
SDL_FreeSurface
SDL_GetError
SDL_RWFromFile
SDL_SetColorKey
SDL_SetError
SDL_free
SDL_malloc
SDL_realloc
SDL_strchr
SDL_strlcpy
SDL_strlen

Exports

Exports

TTF_ByteSwappedUNICODE
TTF_CloseFont
TTF_FontAscent
TTF_FontDescent
TTF_FontFaceFamilyName
TTF_FontFaceIsFixedWidth
TTF_FontFaceStyleName
TTF_FontFaces
TTF_FontHeight
TTF_FontLineSkip
TTF_GetFontHinting
TTF_GetFontKerning
TTF_GetFontKerningSize
TTF_GetFontOutline
TTF_GetFontStyle
TTF_GlyphIsProvided
TTF_GlyphMetrics
TTF_Init
TTF_Linked_Version
TTF_OpenFont
TTF_OpenFontIndex
TTF_OpenFontIndexRW
TTF_OpenFontRW
TTF_Quit
TTF_RenderGlyph_Blended
TTF_RenderGlyph_Shaded
TTF_RenderGlyph_Solid
TTF_RenderText_Blended
TTF_RenderText_Blended_Wrapped
TTF_RenderText_Shaded
TTF_RenderText_Solid
TTF_RenderUNICODE_Blended
TTF_RenderUNICODE_Blended_Wrapped
TTF_RenderUNICODE_Shaded
TTF_RenderUNICODE_Solid
TTF_RenderUTF8_Blended
TTF_RenderUTF8_Blended_Wrapped
TTF_RenderUTF8_Shaded
TTF_RenderUTF8_Solid
TTF_SetFontHinting
TTF_SetFontKerning
TTF_SetFontOutline
TTF_SetFontStyle
TTF_SizeText
TTF_SizeUNICODE
TTF_SizeUTF8
TTF_WasInit

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$R2/WOL/LAUNCHER.BMP
$R2/WOL/NL.CFG
$R2/WOL/PATCHW32.DLL
.dll windows:1 windows x86 arch:x86

b0eee4971ae9dab528fe0c716dd75447

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

wsprintfA
DdeInitializeA
DispatchMessageA
OemToCharA
PeekMessageA
DdeUninitialize
TranslateMessage
CharToOemA
DdeCreateDataHandle
DdeDisconnect
DdeClientTransaction
DdeCreateStringHandleA
DdeFreeStringHandle
DdeConnect
LoadStringA
wvsprintfA

advapi32

RegQueryValueExW
RegQueryInfoKeyA
RegEnumValueA
RegEnumKeyA
RegEnumValueW
RegSetValueExW
RegEnumKeyW
RegDeleteValueA
RegDeleteValueW
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegDeleteKeyA
RegDeleteKeyW
SetFileSecurityW
GetFileSecurityW
RegCloseKey
RegSetValueExA
RegCreateKeyExA

ole32

CoUninitialize
CoInitialize

version

GetFileVersionInfoSizeW
GetFileVersionInfoA
GetFileVersionInfoW
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

GetPrivateProfileSectionA
WritePrivateProfileStringW
CopyFileW
WriteProfileSectionA
WriteFile
WritePrivateProfileStringA
VirtualAlloc
VirtualFree
FlushFileBuffers
CreateDirectoryA
CreateDirectoryW
ReadFile
SetEnvironmentVariableW
GetLogicalDrives
SetCurrentDirectoryW
MoveFileW
GetCurrentProcessId
GetCPInfo
GetOEMCP
GetACP
GetTimeZoneInformation
GetStartupInfoA
GlobalFree
GlobalAlloc
GetVersion
GetDriveTypeA
SetEndOfFile
SetFilePointer
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetFileSize
CreateFileA
GetWindowsDirectoryA
GetShortPathNameA
GetFullPathNameA
MoveFileExW
MoveFileExA
CopyFileA
GetFileAttributesA
GetModuleFileNameA
MoveFileA
SetEnvironmentVariableA
GetTempPathA
SetErrorMode
CreateMutexA
SetFileApisToANSI
ReleaseMutex
AreFileApisANSI
WaitForSingleObject
GetDiskFreeSpaceA
GetSystemDirectoryA
WideCharToMultiByte
GetProfileSectionA
FindClose
GetProfileStringA
GetPrivateProfileStringA
GetSystemTime
DeleteFileA
SetFileAttributesA
WriteProfileStringA
DeleteFileW
GetCurrentDirectoryW
WritePrivateProfileSectionA
WriteProfileStringW
FileTimeToLocalFileTime
FileTimeToSystemTime
FreeLibrary
GetProcAddress
LoadLibraryA
GetExitCodeProcess
CreateProcessA
lstrcmpiA
GetLastError
CreateFileW
GetSystemInfo
LockResource
LoadResource
FindResourceA
SetFileApisToOEM
MultiByteToWideChar
GetVolumeInformationA
GetFullPathNameW
FindNextFileW
FindFirstFileW
FindFirstFileA
FindNextFileA
SetStdHandle
GetFileType
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileAttributesW
SetFileTime
GetFileAttributesW
GetShortPathNameW
GetCurrentDirectoryA
GetStdHandle
RaiseException
GetModuleHandleA
GetLocalTime
RemoveDirectoryW
RemoveDirectoryA
SetCurrentDirectoryA
RtlUnwind
ExitProcess
GetEnvironmentStrings
GetCommandLineA
GetDriveTypeW

Exports

Exports

RTPBatSvr
RTPRegSvr
RTPRenSvr
RTPatchApply32@12
RTPatchApply32NoCall
RTPatchSetAttribGet@8
RTPatchSetAttribSet@8
RTPatchSetCreate@8
RTPatchSetDelete@8
RTPatchSetDirWalk@8
RTPatchSetOpen@8
RTPatchSetRename@8

Sections

.text
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$R2/WOL/REGISTER.EXE
.exe windows:4 windows x86 arch:x86

f0e2fa9310815d33e18c63397b854ec7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
GetTempPathA
GetWindowsDirectoryA
FindClose
FindFirstFileA
CreateDirectoryA
GetModuleFileNameA
GetProcAddress
GetCPInfo
GetACP
LCMapStringW
LoadLibraryA
SetStdHandle
SetFilePointer
SetEndOfFile
GetStringTypeA
ReadFile
GetStringTypeW
IsBadCodePtr
SetEnvironmentVariableA
RtlUnwind
GetCurrentDirectoryA
GetLastError
SetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
DeleteFileA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
OutputDebugStringA
HeapFree
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
IsBadReadPtr
FreeEnvironmentStringsW
GetOEMCP
CloseHandle
GetFileAttributesA
GetFileType
CreateFileA
GetCurrentProcessId
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
HeapCreate
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapDestroy
VirtualFree
WriteFile
FlushFileBuffers
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter

user32

MessageBoxA
RegisterClassA
CreateWindowExA
GetSystemMetrics
DefWindowProcA

comdlg32

GetOpenFileNameA

advapi32

RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA

shell32

FindExecutableA

ole32

CoCreateGuid

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$R2/WOL/Thumbs.db
$R2/WOL/WOLAPI.INI
$R2/WOL/WOLAPI.WAR
$R2/WOL/WOLAPI.dll
.dll regsvr32 windows:4 windows x86 arch:x86

47045ae0d40802b2af7515a5ffba8b11

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InterlockedDecrement
FreeLibrary
GetTickCount
GetProcAddress
LoadLibraryA
SuspendThread
DuplicateHandle
GetCurrentThread
GetCurrentProcess
GetTempFileNameA
GetTempPathA
DeleteFileA
MoveFileA
lstrlenW
MultiByteToWideChar
GetACP
CreateThread
GetModuleFileNameA
WideCharToMultiByte
SizeofResource
LoadResource
FindResourceA
GetLastError
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
DisableThreadLibraryCalls
HeapDestroy
lstrcpyA
lstrcatA
InterlockedIncrement
WriteFile
CloseHandle
CreateFileA
Sleep
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetShortPathNameA
lstrlenA
TerminateProcess
VirtualAlloc
TlsGetValue
SetLastError
ExitProcess
TlsAlloc
GetVersion
TlsFree
HeapAlloc
HeapReAlloc
IsBadCodePtr
SetUnhandledExceptionFilter
SetEnvironmentVariableA
CompareStringW
CompareStringA
LCMapStringW
VirtualFree
HeapCreate
TlsSetValue
GetCurrentThreadId
GetLocalTime
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
InitializeCriticalSection
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetOEMCP
GetCPInfo
GetModuleHandleA
HeapFree
GetCommandLineA
GetTimeZoneInformation
GetSystemTime
SetFilePointer
LCMapStringA
HeapSize
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
RtlUnwind
ReadFile
GetSystemTimeAsFileTime
ExitThread
UnhandledExceptionFilter
SetEndOfFile

user32

CharNextA
UnregisterClassA
wsprintfA
PeekMessageA
DispatchMessageA
TranslateMessage
CreateWindowExA
DestroyWindow
SetWindowLongA
GetWindowLongA
RegisterClassA
DefWindowProcA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCreateKeyA
RegEnumKeyExA
RegDeleteKeyA
RegDeleteValueA
RegQueryInfoKeyA
RegEnumValueA

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateGuid

oleaut32

VarUI4FromStr
LoadTypeLi
SysAllocString
RegisterTypeLi
SysFreeString

wsock32

gethostname
accept
WSAGetLastError
WSASetLastError
getsockname
connect
socket
setsockopt
bind
listen
ioctlsocket
gethostbyname
select
closesocket
shutdown
__WSAFDIsSet
recv
getpeername
send
inet_ntoa
WSACleanup
ntohs
htons
WSAAsyncGetHostByName
htonl
ntohl
WSACancelAsyncRequest
inet_addr
WSAStartup

winmm

timeGetTime

snmpapi

SnmpUtilMemFree
SnmpUtilMemAlloc

Exports

Exports

?PatchCallBack@@YGPAXIPAX@Z
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$R2/WOL/WOLBrowser.dll
.dll regsvr32 windows:4 windows x86 arch:x86

526e187ab49c37186ad388c4a5f07f55

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DisableThreadLibraryCalls
GetModuleFileNameA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
GetProcAddress
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
GetCPInfo
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadCodePtr
HeapReAlloc
VirtualAlloc
IsBadWritePtr
VirtualFree
HeapCreate
RtlUnwind
GetLastError
WideCharToMultiByte
MultiByteToWideChar
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
GetCurrentThreadId
FreeLibrary
TlsAlloc
TlsFree
SetLastError
TlsGetValue
InitializeCriticalSection
GetFileType
WriteFile
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetEnvironmentStringsW
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy

user32

RegisterClassA
SetRect
LoadCursorA
LoadIconA
UnregisterClassA
DefWindowProcA
GetWindowLongA
GetClientRect
CopyRect
MoveWindow
ShowWindow
DestroyWindow
CreateWindowExA
SetWindowLongA
AdjustWindowRectEx
GetMenu

gdi32

GetStockObject

advapi32

RegDeleteKeyA
RegCloseKey
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA

ole32

CoCreateInstance
StringFromCLSID
CoTaskMemFree

oleaut32

SysAllocString
SysStringLen
SysAllocStringLen
LoadTypeLi
SetErrorInfo
VariantClear
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$R2/WOL/unins000.dat
$R2/WOL/unins000.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 676B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$R2/WOL/wolapi.wnd
$R2/crashrpt_lang.ini
$R2/ddraw.dll
.dll windows:6 windows x86 arch:x86

bd4add1fb1c13f7e29e71ca32e782801

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\awesie\Documents\GitHub\nox-sdl\Release\ddraw.pdb

Imports

crashrpt1403

ord9
ord8

sdl2

SDL_CreateRGBSurfaceFrom
SDL_LockTexture
SDL_Init
SDL_SetWindowFullscreen
SDL_CreateWindow
SDL_PollEvent
SDL_SetHint
SDL_CreateTexture
SDL_RenderCopy
SDL_SetWindowIcon
SDL_SetRelativeMouseMode
SDL_RenderSetViewport
SDL_SetWindowSize
SDL_RenderPresent
SDL_CalculateGammaRamp
SDL_RenderClear
SDL_GetWindowDisplayMode
SDL_GetRelativeMouseState
SDL_DestroyTexture
SDL_UnlockTexture
SDL_QueryTexture
SDL_CreateRenderer

shlwapi

PathAppendA
PathAddBackslashA
PathCombineW
PathRemoveFileSpecA

kernel32

SetEndOfFile
CreateFileW
OutputDebugStringW
WriteConsoleW
SetStdHandle
ReadConsoleW
HeapReAlloc
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
HeapSize
GetOEMCP
GetACP
IsValidCodePage
GetConsoleMode
GetConsoleCP
WriteFile
FlushFileBuffers
SetFilePointerEx
ReadFile
AreFileApisANSI
GetModuleHandleExW
GetProcessHeap
GetFileType
GetStdHandle
GetModuleFileNameA
GetSystemDirectoryW
LoadLibraryW
GetProcAddress
ExitProcess
GetCurrentThread
VirtualProtect
GetLastError
GetCurrentProcess
GetCurrentThreadId
SuspendThread
ResumeThread
GetThreadContext
SetThreadContext
FlushInstructionCache
VirtualAlloc
VirtualFree
VirtualQuery
SetLastError
GetModuleHandleW
LoadLibraryExW
CloseHandle
TerminateProcess
OpenProcess
VirtualAllocEx
VirtualProtectEx
VirtualQueryEx
ReadProcessMemory
WriteProcessMemory
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW
IsDebuggerPresent
IsProcessorFeaturePresent
HeapFree
GetCommandLineA
RaiseException
RtlUnwind
HeapAlloc
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
TlsAlloc

user32

SetDlgItemTextA
DialogBoxParamA
GetDlgItemTextA
IsDlgButtonChecked
CheckDlgButton
EndDialog
GetWindowLongA
SetWindowLongA
SetDlgItemInt
SendMessageA
GetDlgItemInt
FindWindowA
ShowWindow
GetDlgItem

Exports

Exports

DirectDrawCreate
DirectDrawEnumerateA

Sections

.text
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$R2/libfreetype-6.dll
.dll windows:4 windows x86 arch:x86

fc5e77cda086d1be7218cb4d5c4853fd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__dllonexit
__mb_cur_max
_amsg_exit
_errno
_initterm
_iob
_lock
_onexit
_setjmp3
_unlock
abort
atoi
atol
calloc
fclose
fopen
fputc
fread
free
fseek
ftell
getenv
localeconv
longjmp
malloc
memchr
memcmp
memcpy
memmove
memset
qsort
realloc
setlocale
sprintf
strcat
strchr
strcmp
strerror
strlen
strncmp
strncpy
strrchr
strstr
wcslen

zlib1

inflate
inflateEnd
inflateInit2_
inflateReset

Exports

Exports

FTC_CMapCache_Lookup
FTC_CMapCache_New
FTC_ImageCache_Lookup
FTC_ImageCache_LookupScaler
FTC_ImageCache_New
FTC_Manager_Done
FTC_Manager_LookupFace
FTC_Manager_LookupSize
FTC_Manager_New
FTC_Manager_RemoveFaceID
FTC_Manager_Reset
FTC_Node_Unref
FTC_SBitCache_Lookup
FTC_SBitCache_LookupScaler
FTC_SBitCache_New
FT_Activate_Size
FT_Add_Default_Modules
FT_Add_Module
FT_Angle_Diff
FT_Atan2
FT_Attach_File
FT_Attach_Stream
FT_Bitmap_Convert
FT_Bitmap_Copy
FT_Bitmap_Done
FT_Bitmap_Embolden
FT_Bitmap_New
FT_CMap_Done
FT_CMap_New
FT_CeilFix
FT_ClassicKern_Free
FT_ClassicKern_Validate
FT_Cos
FT_DivFix
FT_Done_Face
FT_Done_FreeType
FT_Done_Glyph
FT_Done_GlyphSlot
FT_Done_Library
FT_Done_Memory
FT_Done_Size
FT_Face_CheckTrueTypePatents
FT_Face_GetCharVariantIndex
FT_Face_GetCharVariantIsDefault
FT_Face_GetCharsOfVariant
FT_Face_GetVariantSelectors
FT_Face_GetVariantsOfChar
FT_Face_SetUnpatentedHinting
FT_FloorFix
FT_Get_Advance
FT_Get_Advances
FT_Get_BDF_Charset_ID
FT_Get_BDF_Property
FT_Get_CID_From_Glyph_Index
FT_Get_CID_Is_Internally_CID_Keyed
FT_Get_CID_Registry_Ordering_Supplement
FT_Get_CMap_Format
FT_Get_CMap_Language_ID
FT_Get_Char_Index
FT_Get_Charmap_Index
FT_Get_FSType_Flags
FT_Get_First_Char
FT_Get_Gasp
FT_Get_Glyph
FT_Get_Glyph_Name
FT_Get_Kerning
FT_Get_MM_Var
FT_Get_Module
FT_Get_Module_Interface
FT_Get_Multi_Master
FT_Get_Name_Index
FT_Get_Next_Char
FT_Get_PFR_Advance
FT_Get_PFR_Kerning
FT_Get_PFR_Metrics
FT_Get_PS_Font_Info
FT_Get_PS_Font_Private
FT_Get_PS_Font_Value
FT_Get_Postscript_Name
FT_Get_Renderer
FT_Get_Sfnt_Name
FT_Get_Sfnt_Name_Count
FT_Get_Sfnt_Table
FT_Get_SubGlyph_Info
FT_Get_Track_Kerning
FT_Get_TrueType_Engine_Type
FT_Get_WinFNT_Header
FT_Get_X11_Font_Format
FT_GlyphLoader_Add
FT_GlyphLoader_CheckPoints
FT_GlyphLoader_CheckSubGlyphs
FT_GlyphLoader_CopyPoints
FT_GlyphLoader_CreateExtra
FT_GlyphLoader_Done
FT_GlyphLoader_New
FT_GlyphLoader_Prepare
FT_GlyphLoader_Reset
FT_GlyphLoader_Rewind
FT_GlyphSlot_Embolden
FT_GlyphSlot_Oblique
FT_GlyphSlot_Own_Bitmap
FT_Glyph_Copy
FT_Glyph_Get_CBox
FT_Glyph_Stroke
FT_Glyph_StrokeBorder
FT_Glyph_To_Bitmap
FT_Glyph_Transform
FT_Has_PS_Glyph_Names
FT_Hypot
FT_Init_FreeType
FT_Library_SetLcdFilter
FT_Library_SetLcdFilterWeights
FT_Library_Version
FT_List_Add
FT_List_Finalize
FT_List_Find
FT_List_Insert
FT_List_Iterate
FT_List_Remove
FT_List_Up
FT_Load_Char
FT_Load_Glyph
FT_Load_Sfnt_Table
FT_Lookup_Renderer
FT_MSB
FT_Match_Size
FT_Matrix_Invert
FT_Matrix_Multiply
FT_Matrix_Multiply_Scaled
FT_MulDiv
FT_MulDiv_No_Round
FT_MulFix
FT_New_Face
FT_New_GlyphSlot
FT_New_Library
FT_New_Memory
FT_New_Memory_Face
FT_New_Size
FT_OpenType_Free
FT_OpenType_Validate
FT_Open_Face
FT_Outline_Check
FT_Outline_Copy
FT_Outline_Decompose
FT_Outline_Done
FT_Outline_Done_Internal
FT_Outline_Embolden
FT_Outline_EmboldenXY
FT_Outline_GetInsideBorder
FT_Outline_GetOutsideBorder
FT_Outline_Get_BBox
FT_Outline_Get_Bitmap
FT_Outline_Get_CBox
FT_Outline_Get_Orientation
FT_Outline_New
FT_Outline_New_Internal
FT_Outline_Render
FT_Outline_Reverse
FT_Outline_Transform
FT_Outline_Translate
FT_Property_Get
FT_Property_Set
FT_Raccess_Get_DataOffsets
FT_Raccess_Get_HeaderInfo
FT_Raccess_Guess
FT_Reference_Face
FT_Reference_Library
FT_Remove_Module
FT_Render_Glyph
FT_Render_Glyph_Internal
FT_Request_Metrics
FT_Request_Size
FT_RoundFix
FT_Select_Charmap
FT_Select_Metrics
FT_Select_Size
FT_Set_Char_Size
FT_Set_Charmap
FT_Set_Debug_Hook
FT_Set_MM_Blend_Coordinates
FT_Set_MM_Design_Coordinates
FT_Set_Pixel_Sizes
FT_Set_Renderer
FT_Set_Transform
FT_Set_Var_Blend_Coordinates
FT_Set_Var_Design_Coordinates
FT_Sfnt_Table_Info
FT_Sin
FT_SqrtFixed
FT_Stream_Close
FT_Stream_EnterFrame
FT_Stream_ExitFrame
FT_Stream_ExtractFrame
FT_Stream_Free
FT_Stream_GetChar
FT_Stream_GetULong
FT_Stream_GetULongLE
FT_Stream_GetUOffset
FT_Stream_GetUShort
FT_Stream_GetUShortLE
FT_Stream_New
FT_Stream_Open
FT_Stream_OpenBzip2
FT_Stream_OpenGzip
FT_Stream_OpenLZW
FT_Stream_OpenMemory
FT_Stream_Pos
FT_Stream_Read
FT_Stream_ReadAt
FT_Stream_ReadChar
FT_Stream_ReadFields
FT_Stream_ReadULong
FT_Stream_ReadULongLE
FT_Stream_ReadUOffset
FT_Stream_ReadUShort
FT_Stream_ReadUShortLE
FT_Stream_ReleaseFrame
FT_Stream_Seek
FT_Stream_Skip
FT_Stream_TryRead
FT_Stroker_BeginSubPath
FT_Stroker_ConicTo
FT_Stroker_CubicTo
FT_Stroker_Done
FT_Stroker_EndSubPath
FT_Stroker_Export
FT_Stroker_ExportBorder
FT_Stroker_GetBorderCounts
FT_Stroker_GetCounts
FT_Stroker_LineTo
FT_Stroker_New
FT_Stroker_ParseOutline
FT_Stroker_Rewind
FT_Stroker_Set
FT_Tan
FT_Trace_Get_Count
FT_Trace_Get_Name
FT_TrueTypeGX_Free
FT_TrueTypeGX_Validate
FT_Vector_From_Polar
FT_Vector_Length
FT_Vector_Polarize
FT_Vector_Rotate
FT_Vector_Transform
FT_Vector_Transform_Scaled
FT_Vector_Unit
InterlockedCompareExchange@12
TT_New_Context
TT_RunIns
_InterlockedCompareExchange
af_autofitter_interface
af_cjk_script_class
af_dummy_script_class
af_glyph_hints_dump_edges
af_glyph_hints_dump_points
af_glyph_hints_dump_segments
af_glyph_hints_get_num_segments
af_glyph_hints_get_segment_offset
af_indic_script_class
af_latin_script_class
af_property_get
af_property_get_face_globals
af_property_set
afm_parser_funcs
autofit_module_class
bdf_cmap_class
bdf_driver_class
cff_cmap_encoding_class_rec
cff_cmap_unicode_class_rec
cff_driver_class
ft_bitmap_glyph_class
ft_corner_is_flat
ft_corner_orientation
ft_debug_init
ft_glyphslot_alloc_bitmap
ft_glyphslot_free_bitmap
ft_glyphslot_set_bitmap
ft_grays_raster
ft_highpow2
ft_lzwstate_done
ft_lzwstate_init
ft_lzwstate_io
ft_lzwstate_reset
ft_mem_alloc
ft_mem_dup
ft_mem_free
ft_mem_qalloc
ft_mem_qrealloc
ft_mem_realloc
ft_mem_strcpyn
ft_mem_strdup
ft_module_get_service
ft_outline_glyph_class
ft_property_do
ft_raccess_guess_table
ft_raster1_renderer_class
ft_raster5_renderer_class
ft_service_list_lookup
ft_smooth_lcd_renderer_class
ft_smooth_lcdv_renderer_class
ft_smooth_renderer_class
ft_standard_raster
ft_synthesize_vertical_metrics
ft_validator_error
ft_validator_init
ft_validator_run
ftc_basic_image_cache_class
ftc_basic_image_family_class
ftc_basic_sbit_cache_class
ftc_basic_sbit_family_class
ftc_cmap_cache_class
ftc_face_list_class
ftc_size_list_class
pcf_cmap_class
pcf_driver_class
pfr_cmap_class_rec
pfr_driver_class
pfr_metrics_service_rec
ps_hints_apply
ps_parser_funcs
ps_table_funcs
psaux_module_class
pshinter_module_class
psnames_module_class
sfnt_module_class
t1_builder_funcs
t1_cmap_classes
t1_cmap_custom_class_rec
t1_cmap_expert_class_rec
t1_cmap_standard_class_rec
t1_cmap_unicode_class_rec
t1_decoder_funcs
t1_driver_class
t1cid_driver_class
t42_driver_class
tt_cmap0_class_rec
tt_cmap10_class_rec
tt_cmap12_class_rec
tt_cmap13_class_rec
tt_cmap14_class_rec
tt_cmap2_class_rec
tt_cmap4_class_rec
tt_cmap6_class_rec
tt_cmap8_class_rec
tt_default_graphics_state
tt_driver_class
winfnt_driver_class

Sections

.text
Size: 374KB - Virtual size: 374KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$R2/noxgui.cfg
$R2/serveronly.cfg
$R2/zlib1.dll
.dll windows:4 windows x86 arch:x86

29bca47fececd4640a10da9ab98cebea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__dllonexit
__mb_cur_max
_amsg_exit
_close
_errno
_initterm
_iob
_lock
_lseeki64
_onexit
_open
_read
_unlock
_vsnprintf
_wopen
_write
abort
atoi
calloc
fputc
free
getenv
localeconv
malloc
memchr
memcpy
memset
setlocale
strchr
strerror
strlen
strncmp
wcslen
wcstombs

Exports

Exports

adler32
adler32_combine
adler32_combine64
compress
compress2
compressBound
crc32
crc32_combine
crc32_combine64
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePending
deflatePrime
deflateReset
deflateResetKeep
deflateSetDictionary
deflateSetHeader
deflateTune
get_crc_table
gzbuffer
gzclearerr
gzclose
gzclose_r
gzclose_w
gzdirect
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgetc_
gzgets
gzoffset
gzoffset64
gzopen
gzopen64
gzopen_w
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzseek64
gzsetparams
gztell
gztell64
gzungetc
gzvprintf
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCopy
inflateEnd
inflateGetDictionary
inflateGetHeader
inflateInit2_
inflateInit_
inflateMark
inflatePrime
inflateReset
inflateReset2
inflateResetKeep
inflateSetDictionary
inflateSync
inflateSyncPoint
inflateUndermine
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Readme/SDLHelp.gif
.gif
Readme/readme.html
.html
Readme/readme1.jpg
.jpg
Readme/readme2.jpg
.jpg
Readme/readme3.jpg
.jpg
Readme/readme4.jpg
.jpg
Readme/readme5.jpg
.jpg
Readme/readme6.jpg
.jpg
Readme/readme7.jpg
.jpg
UnSolution.exe
.exe windows:4 windows x86 arch:x86

e160ef8e55bb9d162da4e266afd9eef3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
SearchPathA
GetShortPathNameA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetEnvironmentVariableA
GetWindowsDirectoryA
GetTempPathA
Sleep
CloseHandle
LoadLibraryA
lstrlenA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
ReadFile
lstrcpyA
lstrcatA
GetSystemDirectoryA
GetVersion
GetProcAddress
GlobalAlloc
CompareFileTime
SetFileTime
ExpandEnvironmentStringsA
lstrcmpiA
lstrcmpA
WaitForSingleObject
GlobalFree
GetExitCodeProcess
GetModuleHandleA
SetErrorMode
GetCommandLineA
LoadLibraryExA
FindFirstFileA
FindNextFileA
DeleteFileA
SetFilePointer
WriteFile
FindClose
WritePrivateProfileStringA
MultiByteToWideChar
MulDiv
GetPrivateProfileStringA
FreeLibrary

user32

CreateWindowExA
EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
GetDC
SystemParametersInfoA
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
ReleaseDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
DestroyWindow
CreateDialogParamA
SetTimer
GetDlgItem
wsprintfA
SetForegroundWindow
ShowWindow
IsWindow
LoadImageA
SetWindowLongA
SetClipboardData
EmptyClipboard
OpenClipboard
EndPaint
PostQuitMessage
FindWindowExA
SendMessageTimeoutA
SetWindowTextA

gdi32

SelectObject
SetBkMode
CreateFontIndirectA
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA

advapi32

RegCloseKey
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumValueA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegEnumKeyA

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_Destroy
ord17

ole32

CoCreateInstance
CoTaskMemFree
OleInitialize
OleUninitialize

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 112KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

8c8a576201f68de1a3f26fc723b9f30f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MultiByteToWideChar
GlobalFree
GlobalSize
lstrcpynA
lstrcpyA
GetProcAddress
VirtualFree
FreeLibrary
lstrlenA
LoadLibraryA
GetModuleHandleA
GlobalAlloc
WideCharToMultiByte
VirtualAlloc
VirtualProtect
GetLastError

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 851B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 610B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/crypt.bmp
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsDialogs.dll
.dll windows:4 windows x86 arch:x86

ddbd50fe6279559edf7d1f1d89b42c2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileAttributesA
lstrcpyA
MulDiv
lstrlenA
HeapFree
GetCurrentDirectoryA
lstrcmpiA
GetProcessHeap
HeapReAlloc
GlobalFree
lstrcpynA
GlobalAlloc
SetCurrentDirectoryA
HeapAlloc

user32

DestroyWindow
CallWindowProcA
SetCursor
LoadCursorA
GetPropA
CharPrevA
DrawFocusRect
GetWindowLongA
DrawTextA
GetClientRect
GetDlgItem
GetSysColor
SetWindowLongA
SetWindowPos
CreateDialogParamA
MapDialogRect
GetWindowRect
SetPropA
CreateWindowExA
IsWindow
SetTimer
KillTimer
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
ShowWindow
wsprintfA
CharNextA
SendMessageA
MapWindowPoints
RemovePropA
GetWindowTextA

gdi32

SetTextColor

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

Create
CreateControl
CreateItem
CreateTimer
GetUserData
KillTimer
OnBack
OnChange
OnClick
OnNotify
SelectFileDialog
SelectFolderDialog
SetRTL
SetUserData
Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e160ef8e55bb9d162da4e266afd9eef3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 149KB

.ndata Size: - Virtual size: 112KB

.rsrc Size: 20KB - Virtual size: 19KB

8c8a576201f68de1a3f26fc723b9f30f

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 1024B - Virtual size: 851B

.data Size: 512B - Virtual size: 104B

.reloc Size: 1024B - Virtual size: 610B

ddbd50fe6279559edf7d1f1d89b42c2c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 620B

d48e421612bf2363143ccfd4ec11fae7

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

ole32

gdi32

msimg32

Exports

Exports

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 492B

.reloc Size: 1024B - Virtual size: 570B

556853e56dbc2c2006f98dffb0f8e6f7

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

rpcrt4

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 149KB

.ndata
Size: - Virtual size: 112KB

.rsrc
Size: 20KB - Virtual size: 19KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 851B

.data
Size: 512B - Virtual size: 104B

.reloc
Size: 1024B - Virtual size: 610B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 620B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 492B

.reloc
Size: 1024B - Virtual size: 570B

.text
Size: 207KB - Virtual size: 206KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 4KB - Virtual size: 10KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 7KB - Virtual size: 7KB

.text
Size: 1007KB - Virtual size: 1006KB

.rdata
Size: 218KB - Virtual size: 217KB

.data
Size: 9KB - Virtual size: 20KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 99KB - Virtual size: 99KB

.reloc
Size: 30KB - Virtual size: 29KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 312KB - Virtual size: 4.0MB

.rsrc
Size: 4KB - Virtual size: 3KB