D:\a\_work\1\s\artifacts\obj\win-x64.Release\corehost\apphost\standalone\apphost.pdb
Static task
static1
1 signatures
General
-
Target
starter macs vault leaked by ni9neware.zip
-
Size
11.5MB
-
MD5
05a3f8ce9dec451b28409ec4691b6f0d
-
SHA1
e85492564b811cc9692d23e2dd02477f17d20c52
-
SHA256
642616d9b25d2f247a3c981385946438f224c684a23eef07baa0312d320764bf
-
SHA512
86fb2c787474aee1d0fc2400bf57ad0ac71564bbeeb7e06a028eeaa467b3f9ebd153aa8816b5e9410a1a0dafd4a0d60941cfe446247c9a829ecccf689c8b357b
-
SSDEEP
196608:QAFalpc16w4K4pH4oC+AMNdOmfLmpZqxmfmK5gQvlfkntq+ZghHKJvm0fsuRkUIV:QVc54zpHtzbdwemfjxfk5Za8kJ6U/
Score
3/10
Malware Config
Signatures
-
Unsigned PE 10 IoCs
Checks for missing Authenticode signature.
resource unpack002/SecHex-Spoofy V1.5.6/34.exe unpack002/SecHex-Spoofy V1.5.6/SecHex-GUI.dll unpack003/hateniggers!.exe unpack004/New_folder/New folder/@opiuml7 on tele.exe unpack004/New_folder/New folder/driver.sys unpack004/New_folder/New folder/kdmapper_Debug.exe unpack005/LunoCheat/Loader[14_00_07]/Loader.exe unpack005/LunoCheat/Loader[14_00_07]/libcurl.dll unpack008/Roblox FPS Pack/3- MSI Ulility V3/MSI_util_v3.exe unpack008/Roblox FPS Pack/rbxfpsunlocker.exe
Files
-
starter macs vault leaked by ni9neware.zip.zip
-
best configs/1blatant1.cfg
-
best configs/444blatant.cfg
-
best configs/AiBlatant1.cfg
-
best configs/BLATANT_HEADSHOT.cfg
-
best configs/Blatant_HoodCustom.cfg
-
best configs/HoodCustom_2tap.cfg
-
best configs/Macs60-80Blatant.cfg
-
best configs/Macs_Blatant.cfg
-
best configs/Macs_Legit.cfg
-
best configs/Paid_HoodCustoms.cfg
-
best configs/S_ixsblatant.cfg
-
best configs/W-Config.cfg
-
best configs/blatantdidi6 (1).cfg
-
best configs/x-HoodCustom50-70ping_1.cfg
-
best configs/x-blatantpaid_1.cfg
-
best configs/x-camlock-55-65_2.cfg
-
best configs/x-camlock-55-65_3.cfg
-
best configs/x-camlock-80-90_1.cfg
-
best configs/x-legitpaid_1.cfg
-
extra/Spoofer.rar.rar
-
SecHex-Spoofy V1.5.6/34.exe.exe windows:6 windows x64 arch:x64
6dbf27f4c70fe2c8ed3e0122ba75d641
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
kernel32
FindNextFileW
GetCurrentProcess
GetModuleHandleExW
GetModuleFileNameW
LeaveCriticalSection
InitializeCriticalSection
GetEnvironmentVariableW
FindClose
MultiByteToWideChar
GetLastError
GetFileAttributesExW
GetFullPathNameW
GetProcAddress
DeleteCriticalSection
WideCharToMultiByte
IsWow64Process
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EnterCriticalSection
FindFirstFileExW
OutputDebugStringW
LoadLibraryA
GetModuleHandleW
InitializeCriticalSectionAndSpinCount
SetLastError
RaiseException
RtlPcToFileHeader
RtlUnwindEx
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
LCMapStringEx
DecodePointer
EncodePointer
InitializeCriticalSectionEx
GetStringTypeW
user32
MessageBoxW
shell32
ShellExecuteW
advapi32
RegOpenKeyExW
RegGetValueW
DeregisterEventSource
RegisterEventSourceW
ReportEventW
RegCloseKey
api-ms-win-crt-runtime-l1-1-0
_exit
__p___argc
_initterm_e
_initterm
_get_initial_wide_environment
_invalid_parameter_noinfo_noreturn
_initialize_wide_environment
_configure_wide_argv
_initialize_onexit_table
_set_app_type
__p___wargv
_seh_filter_exe
_register_onexit_function
_cexit
terminate
_errno
exit
abort
_crt_atexit
_c_exit
_register_thread_local_exe_atexit_callback
api-ms-win-crt-stdio-l1-1-0
setvbuf
fflush
_wfopen
__stdio_common_vswprintf
__stdio_common_vfwprintf
_set_fmode
__stdio_common_vsprintf_s
__acrt_iob_func
fputwc
fputws
__p__commode
api-ms-win-crt-heap-l1-1-0
_set_new_mode
_callnewh
free
malloc
calloc
api-ms-win-crt-string-l1-1-0
wcsnlen
strcpy_s
_wcsdup
strcspn
wcsncmp
toupper
api-ms-win-crt-convert-l1-1-0
_wtoi
wcstoul
api-ms-win-crt-locale-l1-1-0
setlocale
___lc_locale_name_func
localeconv
_unlock_locales
_lock_locales
___mb_cur_max_func
_configthreadlocale
__pctype_func
___lc_codepage_func
api-ms-win-crt-math-l1-1-0
frexp
__setusermatherr
api-ms-win-crt-time-l1-1-0
_gmtime64_s
_time64
wcsftime
Sections
.text Size: 95KB - Virtual size: 95KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 37KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 244B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 792B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
SecHex-Spoofy V1.5.6/SecHex-GUI.deps.json
-
SecHex-Spoofy V1.5.6/SecHex-GUI.dll.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
C:\Users\tickr\Downloads\SecHex-Spoofy-main (4)\SecHex-Spoofy-main\SecHex-GUI\SecHex-GUI\obj\Debug\net6.0-windows\SecHex-GUI.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
SecHex-Spoofy V1.5.6/SecHex-GUI.pdb
-
SecHex-Spoofy V1.5.6/SecHex-GUI.runtimeconfig.json
-
extra/Spoofer2.rar.rar
-
Guna.UI2.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Code Sign
7a:98:1b:7d:3e:b4:86:bb:45:84:c4:3c:c9:a8:3f:dbCertificate
IssuerCN=Sobatdata Root CANot Before23/10/2019, 05:22Not After22/10/2025, 17:00SubjectCN=Sobatdata Software0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate
IssuerCN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before01/01/2021, 00:00Not After06/01/2031, 00:00SubjectCN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate
IssuerCN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before07/01/2016, 12:00Not After07/01/2031, 12:00SubjectCN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
8d:ae:28:3e:4f:d9:48:5e:14:cd:ec:ed:ab:f1:52:70:6e:07:9f:18Signer
Actual PE Digest8d:ae:28:3e:4f:d9:48:5e:14:cd:ec:ed:ab:f1:52:70:6e:07:9f:18Digest Algorithmsha1PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Guna.UI2.pdb
Imports
mscoree
_CorDllMain
Sections
.text Size: 3.7MB - Virtual size: 3.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
hateniggers!.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorExeMain
Sections
.text Size: 86KB - Virtual size: 86KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 868B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
extra/fncheats.zip.zip
-
New_folder/New folder/@opiuml7 on tele.exe.exe windows:6 windows x64 arch:x64
0bac4c419df60c107a5714595c5887fb
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\andreu\Desktop\123 (1)\build\@opiuml7 on tele.pdb
Imports
ntdll
RtlVirtualUnwind
RtlCaptureContext
RtlLookupFunctionEntry
kernel32
GetProcAddress
LoadLibraryA
CreateFileW
CloseHandle
DeviceIoControl
Sleep
ExitProcess
CreateThread
lstrcmpiA
SetConsoleTitleA
GlobalFree
CreateToolhelp32Snapshot
QueryPerformanceFrequency
Process32Next
GlobalLock
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
GetModuleHandleW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
GlobalUnlock
GlobalAlloc
FreeLibrary
QueryPerformanceCounter
WideCharToMultiByte
Process32First
MultiByteToWideChar
GetSystemTimeAsFileTime
GetConsoleWindow
InitializeSListHead
user32
GetWindowLongA
MessageBoxA
GetSystemMetrics
DestroyWindow
DispatchMessageA
TranslateMessage
LoadCursorA
ScreenToClient
ClientToScreen
GetCursorPos
OpenClipboard
CloseClipboard
SetClipboardData
GetClipboardData
GetKeyState
SetCursor
SetCursorPos
EmptyClipboard
GetClientRect
GetForegroundWindow
d3d11
D3D11CreateDeviceAndSwapChain
msvcp140
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Xlength_error@std@@YAXPEBD@Z
?uncaught_exceptions@std@@YAHXZ
_Query_perf_counter
_Query_perf_frequency
_Thrd_detach
_Cnd_do_broadcast_at_thread_exit
?_Throw_Cpp_error@std@@YAXH@Z
?good@ios_base@std@@QEBA_NXZ
?flags@ios_base@std@@QEBAHXZ
?width@ios_base@std@@QEBA_JXZ
?width@ios_base@std@@QEAA_J_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
imm32
ImmGetContext
ImmSetCompositionWindow
ImmSetCandidateWindow
ImmReleaseContext
d3dcompiler_43
D3DCompile
dwmapi
DwmExtendFrameIntoClientArea
vcruntime140
__C_specific_handler
__current_exception
__current_exception_context
memcmp
__std_exception_copy
memchr
strstr
__std_terminate
memset
memmove
memcpy
_CxxThrowException
__std_exception_destroy
vcruntime140_1
__CxxFrameHandler4
api-ms-win-crt-runtime-l1-1-0
system
__p___argc
terminate
_exit
_beginthreadex
_c_exit
exit
__p___argv
_invalid_parameter_noinfo_noreturn
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_cexit
_seh_filter_exe
_set_app_type
_register_thread_local_exe_atexit_callback
_get_initial_narrow_environment
_initterm
_initterm_e
api-ms-win-crt-heap-l1-1-0
malloc
_callnewh
free
_set_new_mode
api-ms-win-crt-string-l1-1-0
strcmp
api-ms-win-crt-stdio-l1-1-0
_set_fmode
__stdio_common_vsnprintf_s
__stdio_common_vfprintf
fseek
ftell
fwrite
__acrt_iob_func
__p__commode
__stdio_common_vsscanf
__stdio_common_vsprintf
_wfopen
fflush
fclose
fread
api-ms-win-crt-utility-l1-1-0
qsort
rand
api-ms-win-crt-math-l1-1-0
cosf
sqrtf
sinf
acosf
ceilf
tanf
fmodf
cos
log
logf
pow
sin
powf
fmod
atan2
__setusermatherr
asin
api-ms-win-crt-convert-l1-1-0
atof
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
Sections
.text Size: 294KB - Virtual size: 294KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 61KB - Virtual size: 61KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 464B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 488B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
New_folder/New folder/driver.sys.sys windows:10 windows x64 arch:x64
12c47c90a4b7fc6aa7033af75abbafb8
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\yuhgiuyg\Desktop\FNMAIN\build\hksdr2.pdb
Imports
ntoskrnl.exe
RtlInitUnicodeString
RtlGetVersion
IofCompleteRequest
IoCreateDevice
IoCreateSymbolicLink
IoDeleteDevice
IoDeleteSymbolicLink
ObfDereferenceObject
MmCopyMemory
KeStackAttachProcess
KeUnstackDetachProcess
PsLookupProcessByProcessId
IoCreateDriver
PsGetProcessSectionBaseAddress
Sections
.text Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 153B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 252B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
INIT Size: 512B - Virtual size: 492B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 36B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
New_folder/New folder/kdmapper_Debug.exe.exe windows:6 windows x64 arch:x64
23d72874da0841595662fc34fa277974
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
C:\Users\laure.witti\Downloads\Fortnite Cheat surcen\kdmapper-master\x64\Debug\kdmapper_Debug.pdb
Imports
kernel32
VirtualFree
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter
CreateToolhelp32Snapshot
VirtualAlloc
Process32NextW
GetTempPathW
VirtualQuery
GetProcessHeap
HeapFree
HeapAlloc
GetCurrentThreadId
GetCurrentProcessId
DeviceIoControl
CloseHandle
Process32FirstW
CreateFileW
GetStartupInfoW
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
RaiseException
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
WideCharToMultiByte
MultiByteToWideChar
CreateSymbolicLinkW
GetFileInformationByHandleEx
CreateHardLinkW
MoveFileExW
CopyFileW
CreateDirectoryExW
GetModuleHandleW
GetLastError
AreFileApisANSI
SetFileTime
SetFileInformationByHandle
SetFileAttributesW
GetFullPathNameW
GetFinalPathNameByHandleW
GetFileInformationByHandle
GetFileAttributesExW
GetFileAttributesW
GetDiskFreeSpaceExW
FindNextFileW
FindFirstFileExW
FindFirstFileW
FindClose
CreateDirectoryW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetLocaleInfoEx
FormatMessageA
LocalFree
FreeLibrary
user32
GetWindowThreadProcessId
GetShellWindow
advapi32
RegSetKeyValueW
RegOpenKeyW
RegCreateKeyW
RegCloseKey
RegDeleteTreeW
msvcp140d
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WXZ
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WD@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@PEBX@Z
?put@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@_W@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ
?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?id@?$ctype@_W@std@@2V0locale@2@A
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?wcout@std@@3V?$basic_ostream@_WU?$char_traits@_W@std@@@1@A
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPEBDH@Z
?_Winerror_map@std@@YAHH@Z
_Mbrtowc
?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ
?_Getdays@_Locinfo@std@@QEBAPEBDXZ
?_Getmonths@_Locinfo@std@@QEBAPEBDXZ
?_W_Getdays@_Locinfo@std@@QEBAPEBGXZ
?_W_Getmonths@_Locinfo@std@@QEBAPEBGXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@K@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAHXZ
?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@J@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBAPEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAPEAD0PEAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBAPEAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
??0_Lockit@std@@QEAA@H@Z
??1_Lockit@std@@QEAA@XZ
?_Xlength_error@std@@YAXPEBD@Z
?_Xout_of_range@std@@YAXPEBD@Z
?uncaught_exception@std@@YA_NXZ
??Bid@locale@std@@QEAA_KXZ
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?always_noconv@codecvt_base@std@@QEBA_NXZ
?widen@?$ctype@_W@std@@QEBA_WD@Z
?_Getcat@?$ctype@_W@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??7ios_base@std@@QEBA_NXZ
?good@ios_base@std@@QEBA_NXZ
?flags@ios_base@std@@QEBAHXZ
?setf@ios_base@std@@QEAAHHH@Z
?width@ios_base@std@@QEBA_JXZ
?width@ios_base@std@@QEAA_J_J@Z
?getloc@ios_base@std@@QEBA?AVlocale@2@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
ntdll
NtQuerySystemInformation
RtlInitUnicodeString
vcruntime140d
__current_exception_context
__current_exception
__std_type_info_destroy_list
__C_specific_handler_noexcept
__C_specific_handler
__vcrt_GetModuleFileNameW
__std_exception_destroy
__std_exception_copy
wcsstr
memset
memmove
memcpy
__vcrt_GetModuleHandleW
__vcrt_LoadLibraryExW
_CxxThrowException
memcmp
vcruntime140_1d
__CxxFrameHandler4
ucrtbased
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
strcpy_s
strcat_s
__stdio_common_vsprintf_s
terminate
_wmakepath_s
_wsplitpath_s
wcscpy_s
_seh_filter_dll
_cexit
__p___wargv
__p___argc
_set_fmode
_exit
exit
_initterm_e
_initterm
_get_initial_wide_environment
_initialize_wide_environment
_configure_wide_argv
__setusermatherr
_set_app_type
_seh_filter_exe
__p__commode
malloc
_callnewh
abort
___lc_codepage_func
_malloc_dbg
_calloc_dbg
_wcsicmp
_time64
_unlock_file
_lock_file
ungetc
setvbuf
fwrite
_fseeki64
fsetpos
fread
fputc
fgetpos
fgetc
fflush
fclose
_get_stream_buffer_pointers
_wremove
_CrtDbgReport
rand
srand
strlen
_stricmp
wcslen
_invalid_parameter
_set_new_mode
_configthreadlocale
_register_thread_local_exe_atexit_callback
_CrtDbgReportW
_c_exit
_free_dbg
Sections
.textbss Size: - Virtual size: 153KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 346KB - Virtual size: 346KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 135KB - Virtual size: 134KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 24KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.msvcjmc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 1024B - Virtual size: 777B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.00cfg Size: 512B - Virtual size: 373B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
extra/fncheats2.rar.rar
-
LunoCheat/Loader[14_00_07]/Loader.exe.exe windows:6 windows x64 arch:x64
75b42ab10709020171a421999d0b3da8
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
D:\Source\LunoLoader\x64\Release\Loader.pdb
Imports
libcurl
curl_easy_init
curl_easy_perform
curl_easy_cleanup
curl_easy_setopt
ole32
CoInitialize
CoCreateInstance
CoUninitialize
kernel32
GlobalAlloc
GlobalFree
GlobalLock
WideCharToMultiByte
GlobalUnlock
TerminateProcess
OpenProcess
CreateToolhelp32Snapshot
Process32NextW
Process32FirstW
CloseHandle
FreeConsole
SetFileAttributesA
GetModuleHandleW
Wow64DisableWow64FsRedirection
Wow64RevertWow64FsRedirection
GetSystemTimeAsFileTime
EnterCriticalSection
GetCurrentProcess
LeaveCriticalSection
InitializeCriticalSection
ResumeThread
GetSystemInfo
VirtualAllocEx
VirtualFreeEx
GetModuleFileNameW
GetFileAttributesW
LocalFree
CreateActCtxW
WriteFile
GetTempPathW
CreateFileW
UnmapViewOfFile
DeleteFileW
GetTempFileNameW
CreateFileMappingW
ReleaseActCtx
MapViewOfFile
ActivateActCtx
GetEnvironmentVariableW
GetSystemDirectoryW
DeactivateActCtx
GetSystemWow64DirectoryW
Module32FirstW
GetCurrentDirectoryW
GetWindowsDirectoryW
GetNativeSystemInfo
WaitForSingleObject
DuplicateHandle
GetCurrentThread
ResetEvent
GetTickCount
DeviceIoControl
Thread32Next
Thread32First
GetCurrentThreadId
GetCurrentProcessId
ReadFile
CreateNamedPipeW
TerminateThread
CreateThread
MultiByteToWideChar
GetExitCodeThread
Sleep
IsWow64Process
WriteProcessMemory
VirtualProtectEx
GetThreadContext
ReadProcessMemory
CreateRemoteThread
SetThreadContext
VirtualQueryEx
LoadLibraryW
SuspendThread
GetThreadTimes
OpenThread
GetACP
IsValidCodePage
HeapSize
HeapReAlloc
GetFileSizeEx
GetConsoleOutputCP
FlushFileBuffers
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
HeapAlloc
GetFileType
ReadConsoleW
GetConsoleMode
SetFilePointerEx
HeapFree
GetCommandLineW
GetCommandLineA
GetStdHandle
ExitProcess
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
QueryPerformanceCounter
FreeLibrary
GetProcAddress
QueryPerformanceFrequency
LoadLibraryA
DeleteCriticalSection
DecodePointer
GetLastError
InitializeCriticalSectionEx
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetProcessHeap
InitializeCriticalSectionAndSpinCount
SetLastError
RtlPcToFileHeader
RtlUnwindEx
InitializeSListHead
GetStartupInfoW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
SetStdHandle
WriteConsoleW
SetEndOfFile
UnhandledExceptionFilter
RtlVirtualUnwind
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
FormatMessageA
GetLocaleInfoEx
CreateDirectoryW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
AreFileApisANSI
GetFileInformationByHandleEx
GetStringTypeW
EncodePointer
LCMapStringEx
WakeAllConditionVariable
SleepConditionVariableSRW
GetCPInfo
IsDebuggerPresent
OutputDebugStringW
RaiseException
RtlCaptureContext
RtlLookupFunctionEntry
user32
ReleaseCapture
UnregisterClassW
SetCursorPos
GetCursorPos
wsprintfW
GetWindowLongW
DefWindowProcW
SetWindowPos
MessageBoxW
CreateWindowExW
RegisterClassExW
ShowWindow
DispatchMessageW
PeekMessageW
TranslateMessage
SetWindowLongW
PostQuitMessage
UpdateWindow
OpenClipboard
CloseClipboard
EmptyClipboard
GetClientRect
SetClipboardData
GetKeyState
ScreenToClient
GetCapture
ClientToScreen
IsChild
GetForegroundWindow
LoadCursorW
SetCapture
SetCursor
GetClipboardData
advapi32
RegQueryValueExW
RegCloseKey
RegOpenKeyW
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenProcessToken
RegOpenKeyExW
OpenThreadToken
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegSetValueExW
RegCreateKeyW
RegEnumValueW
shell32
ShellExecuteA
oleaut32
SysFreeString
d3d9
Direct3DCreate9
d3dx9_43
D3DXCreateTextureFromFileInMemoryEx
shlwapi
SHDeleteKeyW
imm32
ImmGetContext
ImmReleaseContext
ImmSetCompositionWindow
urlmon
URLDownloadToFileA
Exports
Exports
??0Assembler@asmjit@@QEAA@PEAURuntime@1@@Z
??0CodeGen@asmjit@@QEAA@PEAURuntime@1@@Z
??0HostRuntime@asmjit@@QEAA@XZ
??0JitRuntime@asmjit@@QEAA@XZ
??0Runtime@asmjit@@QEAA@XZ
??0StaticRuntime@asmjit@@QEAA@PEAX_K@Z
??0VMemMgr@asmjit@@QEAA@PEAX@Z
??0X86Assembler@asmjit@@QEAA@PEAURuntime@1@I@Z
??0Zone@asmjit@@QEAA@_K@Z
??1Assembler@asmjit@@UEAA@XZ
??1CodeGen@asmjit@@UEAA@XZ
??1HostRuntime@asmjit@@UEAA@XZ
??1JitRuntime@asmjit@@UEAA@XZ
??1Runtime@asmjit@@UEAA@XZ
??1StaticRuntime@asmjit@@UEAA@XZ
??1VMemMgr@asmjit@@QEAA@XZ
??1X86Assembler@asmjit@@UEAA@XZ
??1Zone@asmjit@@QEAA@XZ
??_FVMemMgr@asmjit@@QEAAXXZ
?_alloc@Zone@asmjit@@QEAAPEAX_K@Z
?_emit@X86Assembler@asmjit@@UEAAIIAEBUOperand@2@000@Z
?_grow@Assembler@asmjit@@QEAAI_K@Z
?_grow@PodVectorBase@asmjit@@IEAAI_K0@Z
?_newLabel@Assembler@asmjit@@QEAAIPEAULabel@2@@Z
?_newLabelLink@Assembler@asmjit@@QEAAPEAULabelLink@2@XZ
?_nullData@PodVectorBase@asmjit@@2UPodVectorData@2@B
?_registerIndexedLabels@Assembler@asmjit@@QEAAI_K@Z
?_relocCode@X86Assembler@asmjit@@UEBA_KPEAX_K@Z
?_reserve@Assembler@asmjit@@QEAAI_K@Z
?_reserve@PodVectorBase@asmjit@@IEAAI_K0@Z
?_x86CondToCmovcc@asmjit@@3QBIB
?_x86CondToJcc@asmjit@@3QBIB
?_x86CondToSetcc@asmjit@@3QBIB
?_x86InstExtendedInfo@asmjit@@3QBUX86InstExtendedInfo@1@B
?_x86InstInfo@asmjit@@3QBUX86InstInfo@1@B
?_x86ReverseCond@asmjit@@3QBIB
?add@JitRuntime@asmjit@@UEAAIPEAPEAXPEAUAssembler@2@@Z
?add@StaticRuntime@asmjit@@UEAAIPEAPEAXPEAUAssembler@2@@Z
?align@X86Assembler@asmjit@@UEAAIII@Z
?alloc@VMemMgr@asmjit@@QEAAPEAX_KI@Z
?alloc@VMemUtil@asmjit@@SAPEAX_KPEA_KI@Z
?allocProcessMemory@VMemUtil@asmjit@@SAPEAXPEAX_KPEA_KI@Z
?allocZeroed@Zone@asmjit@@QEAAPEAX_K@Z
?bind@Assembler@asmjit@@UEAAIAEBULabel@2@@Z
?callCpuId@X86CpuUtil@asmjit@@SAXIIPEATX86CpuId@2@@Z
?detect@X86CpuUtil@asmjit@@SAXPEAUX86CpuInfo@2@@Z
?detectHwThreadsCount@CpuInfo@asmjit@@SAIXZ
?dup@Zone@asmjit@@QEAAPEAXPEBX_K@Z
?embed@Assembler@asmjit@@UEAAIPEBXI@Z
?embedLabel@X86Assembler@asmjit@@QEAAIAEBULabel@2@@Z
?emit@Assembler@asmjit@@QEAAII@Z
?emit@Assembler@asmjit@@QEAAIIAEBUOperand@2@00@Z
?emit@Assembler@asmjit@@QEAAIIAEBUOperand@2@00H@Z
?emit@Assembler@asmjit@@QEAAIIAEBUOperand@2@00_K@Z
?emit@Assembler@asmjit@@QEAAIIAEBUOperand@2@0@Z
?emit@Assembler@asmjit@@QEAAIIAEBUOperand@2@0H@Z
?emit@Assembler@asmjit@@QEAAIIAEBUOperand@2@0_K@Z
?emit@Assembler@asmjit@@QEAAIIAEBUOperand@2@@Z
?emit@Assembler@asmjit@@QEAAIIAEBUOperand@2@H@Z
?emit@Assembler@asmjit@@QEAAIIAEBUOperand@2@_K@Z
?emit@Assembler@asmjit@@QEAAIIH@Z
?emit@Assembler@asmjit@@QEAAII_K@Z
?flush@HostRuntime@asmjit@@UEAAXPEAX_K@Z
?getCpuInfo@HostRuntime@asmjit@@UEAAPEBUCpuInfo@2@XZ
?getHost@CpuInfo@asmjit@@SAPEBU12@XZ
?getPageGranularity@VMemUtil@asmjit@@SA_KXZ
?getPageSize@VMemUtil@asmjit@@SA_KXZ
?getStackAlignment@HostRuntime@asmjit@@UEAAIXZ
?make@Assembler@asmjit@@UEAAPEAXXZ
?noOperand@asmjit@@3UOperand@1@B
?ptr_abs@x86@asmjit@@YA?AUX86Mem@2@_KAEBUX86Reg@2@IHI@Z
?ptr_abs@x86@asmjit@@YA?AUX86Mem@2@_KHI@Z
?release@JitRuntime@asmjit@@UEAAIPEAX@Z
?release@StaticRuntime@asmjit@@UEAAIPEAX@Z
?release@VMemMgr@asmjit@@QEAAIPEAX@Z
?release@VMemUtil@asmjit@@SAIPEAX_K@Z
?releaseProcessMemory@VMemUtil@asmjit@@SAIPEAX0_K@Z
?relocCode@Assembler@asmjit@@QEBA_KPEAX_K@Z
?reset@Assembler@asmjit@@QEAAX_N@Z
?reset@PodVectorBase@asmjit@@QEAAX_N@Z
?reset@VMemMgr@asmjit@@QEAAXXZ
?reset@Zone@asmjit@@QEAAX_N@Z
?sdup@Zone@asmjit@@QEAAPEADPEBD@Z
?setArch@X86Assembler@asmjit@@QEAAII@Z
?setError@CodeGen@asmjit@@QEAAIIPEBD@Z
?setErrorHandler@CodeGen@asmjit@@QEAAIPEAUErrorHandler@2@@Z
?sformat@Zone@asmjit@@QEAAPEADPEBDZZ
?shrink@VMemMgr@asmjit@@QEAAIPEAX_K@Z
?x86RegData@asmjit@@3UX86RegData@1@B
Sections
.text Size: 658KB - Virtual size: 658KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 218KB - Virtual size: 217KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 23KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 28KB - Virtual size: 27KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 500B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 67KB - Virtual size: 66KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
LunoCheat/Loader[14_00_07]/libcurl.dll.dll windows:6 windows x64 arch:x64
f3c24e32e27c5ad10b0808e86b422c7d
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Imports
ws2_32
WSAIoctl
__WSAFDIsSet
socket
setsockopt
getsockopt
getpeername
connect
recv
closesocket
WSACleanup
WSAStartup
ntohs
listen
htons
getsockname
bind
accept
WSAGetLastError
send
select
recvfrom
sendto
getaddrinfo
freeaddrinfo
ioctlsocket
gethostname
htonl
ntohl
WSASetLastError
wldap32
ord41
ord50
ord22
ord211
ord46
ord143
ord26
ord27
ord32
ord33
ord35
ord79
ord30
ord200
ord301
ord60
advapi32
CryptEncrypt
CryptImportKey
CryptDestroyKey
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextA
CryptGenRandom
normaliz
IdnToAscii
crypt32
CertFreeCertificateContext
kernel32
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
VerifyVersionInfoA
LoadLibraryA
GetModuleHandleA
GetSystemDirectoryA
VerSetConditionMask
WideCharToMultiByte
MultiByteToWideChar
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
GetCurrentProcess
WaitForSingleObjectEx
CloseHandle
Sleep
FormatMessageA
SetLastError
SleepEx
GetProcAddress
FreeLibrary
WaitForMultipleObjects
PeekNamedPipe
GetLastError
ReadFile
GetFileType
GetStdHandle
ExpandEnvironmentStringsA
GetTickCount64
QueryPerformanceCounter
IsProcessorFeaturePresent
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
EnterCriticalSection
TerminateProcess
vcruntime140
strrchr
memcpy
memmove
memchr
strstr
memset
memcmp
__C_specific_handler
__std_type_info_destroy_list
strchr
api-ms-win-crt-string-l1-1-0
isdigit
strncpy
isalpha
isxdigit
tolower
strpbrk
isgraph
isprint
_strdup
isalnum
islower
isupper
strncmp
isspace
api-ms-win-crt-convert-l1-1-0
strtoll
strtol
strtoul
atoi
api-ms-win-crt-stdio-l1-1-0
fseek
__stdio_common_vsprintf
fputc
_lseeki64
_write
_read
_open
_close
__stdio_common_vsscanf
fflush
__acrt_iob_func
fclose
fwrite
feof
ferror
fputs
fgets
fread
fopen
api-ms-win-crt-filesystem-l1-1-0
_fstat64
_stat64
api-ms-win-crt-time-l1-1-0
_time64
_gmtime64
api-ms-win-crt-utility-l1-1-0
qsort
api-ms-win-crt-environment-l1-1-0
getenv
api-ms-win-crt-heap-l1-1-0
calloc
free
realloc
malloc
api-ms-win-crt-runtime-l1-1-0
_seh_filter_dll
_configure_narrow_argv
_initterm
_initialize_narrow_environment
_getpid
_beginthreadex
_initialize_onexit_table
_execute_onexit_table
__sys_nerr
strerror
_errno
_cexit
_initterm_e
Exports
Exports
curl_easy_cleanup
curl_easy_duphandle
curl_easy_escape
curl_easy_getinfo
curl_easy_init
curl_easy_pause
curl_easy_perform
curl_easy_recv
curl_easy_reset
curl_easy_send
curl_easy_setopt
curl_easy_strerror
curl_easy_unescape
curl_escape
curl_formadd
curl_formfree
curl_formget
curl_free
curl_getdate
curl_getenv
curl_global_cleanup
curl_global_init
curl_global_init_mem
curl_maprintf
curl_mfprintf
curl_mprintf
curl_msnprintf
curl_msprintf
curl_multi_add_handle
curl_multi_assign
curl_multi_cleanup
curl_multi_fdset
curl_multi_info_read
curl_multi_init
curl_multi_perform
curl_multi_remove_handle
curl_multi_setopt
curl_multi_socket
curl_multi_socket_action
curl_multi_socket_all
curl_multi_strerror
curl_multi_timeout
curl_multi_wait
curl_mvaprintf
curl_mvfprintf
curl_mvprintf
curl_mvsnprintf
curl_mvsprintf
curl_pushheader_byname
curl_pushheader_bynum
curl_share_cleanup
curl_share_init
curl_share_setopt
curl_share_strerror
curl_slist_append
curl_slist_free_all
curl_strequal
curl_strnequal
curl_unescape
curl_version
curl_version_info
Sections
.text Size: 266KB - Virtual size: 266KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 72KB - Virtual size: 71KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 1020B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
extra/roprorex (3).rar.rar
-
roprorex/_locales/am/messages.json
-
roprorex/_locales/ar/messages.json
-
roprorex/_locales/ar_EG/messages.json
-
roprorex/_locales/be/messages.json
-
roprorex/_locales/bg/messages.json
-
roprorex/_locales/bn/messages.json
-
roprorex/_locales/ca/messages.json
-
roprorex/_locales/cs/messages.json
-
roprorex/_locales/da/messages.json
-
roprorex/_locales/de/messages.json
-
roprorex/_locales/de_CH/messages.json
-
roprorex/_locales/el/messages.json
-
roprorex/_locales/en/messages.json
-
roprorex/_locales/en_GB/messages.json
-
roprorex/_locales/en_PH/messages.json
-
roprorex/_locales/en_US/messages.json
-
roprorex/_locales/es/messages.json
-
roprorex/_locales/es_419/messages.json
-
roprorex/_locales/es_US/messages.json
-
roprorex/_locales/et/messages.json
-
roprorex/_locales/fa/messages.json
-
roprorex/_locales/fi/messages.json
-
roprorex/_locales/fil/messages.json
-
roprorex/_locales/fr/messages.json
-
roprorex/_locales/fr_CA/messages.json
-
roprorex/_locales/gu/messages.json
-
roprorex/_locales/he/messages.json
-
roprorex/_locales/hi/messages.json
-
roprorex/_locales/hr/messages.json
-
roprorex/_locales/hu/messages.json
-
roprorex/_locales/id/messages.json
-
roprorex/_locales/it/messages.json
-
roprorex/_locales/iw/messages.json
-
roprorex/_locales/ja/messages.json
-
roprorex/_locales/ka/messages.json
-
roprorex/_locales/kn/messages.json
-
roprorex/_locales/ko/messages.json
-
roprorex/_locales/lt/messages.json
-
roprorex/_locales/lv/messages.json
-
roprorex/_locales/ml/messages.json
-
roprorex/_locales/mr/messages.json
-
roprorex/_locales/ms/messages.json
-
roprorex/_locales/nb/messages.json
-
roprorex/_locales/nl/messages.json
-
roprorex/_locales/nn/messages.json
-
roprorex/_locales/no/messages.json
-
roprorex/_locales/pl/messages.json
-
roprorex/_locales/pt/messages.json
-
roprorex/_locales/pt_BR/messages.json
-
roprorex/_locales/pt_PT/messages.json
-
roprorex/_locales/ro/messages.json
-
roprorex/_locales/ru/messages.json
-
roprorex/_locales/sk/messages.json
-
roprorex/_locales/sl/messages.json
-
roprorex/_locales/sr/messages.json
-
roprorex/_locales/sr_Latn/messages.json
-
roprorex/_locales/sv/messages.json
-
roprorex/_locales/sw/messages.json
-
roprorex/_locales/ta/messages.json
-
roprorex/_locales/te/messages.json
-
roprorex/_locales/tg/messages.json
-
roprorex/_locales/th/messages.json
-
roprorex/_locales/tl/messages.json
-
roprorex/_locales/tr/messages.json
-
roprorex/_locales/uk/messages.json
-
roprorex/_locales/vi/messages.json
-
roprorex/_locales/zh/messages.json
-
roprorex/_locales/zh_CN/messages.json
-
roprorex/_locales/zh_Hans/messages.json
-
roprorex/_locales/zh_MY/messages.json
-
roprorex/_locales/zh_SG/messages.json
-
roprorex/_locales/zh_TW/messages.json
-
roprorex/background.js.js
-
roprorex/css/libraries/semantic.css
-
roprorex/css/page/additionalMenuItems.css
-
roprorex/css/page/avatar.css
-
roprorex/css/page/catalog.css
-
roprorex/css/page/friends.css
-
roprorex/css/page/gameFilter.css
-
roprorex/css/page/gamePage.css
-
roprorex/css/page/home.css
-
roprorex/css/page/item.css
-
roprorex/css/page/profile.css
-
roprorex/css/page/profileThemes.css
-
roprorex/css/page/quickPlay.css
-
roprorex/css/page/randomGame.css
-
roprorex/css/page/sandbox.css
-
roprorex/css/page/themes.css
-
roprorex/css/page/trade.css
-
roprorex/css/page/wishlist.css
-
roprorex/css/page/wishlistMain.css
-
roprorex/fonts/Lato-Bold.ttf
-
roprorex/fonts/Lato-Regular.ttf
-
roprorex/fonts/Raleway-Bold.ttf
-
roprorex/fonts/Raleway-Medium.ttf
-
roprorex/icon.png.png
-
roprorex/icon128.png.png
-
roprorex/icon16.png.png
-
roprorex/icon48.png.png
-
roprorex/images/Any_Dark.svg
-
roprorex/images/Best_Connection3.svg
-
roprorex/images/Demand_Dark.svg
-
roprorex/images/Downgrade_Dark.svg
-
roprorex/images/Newest_Server.svg
-
roprorex/images/Not_Full.svg
-
roprorex/images/Oldest_Server_2.svg
-
roprorex/images/Player_Count.svg
-
roprorex/images/RAP_Dark.svg
-
roprorex/images/Random_Shuffle.svg
-
roprorex/images/Rares_Dark.svg
-
roprorex/images/Robux_Dark.svg
-
roprorex/images/Server_Region2.svg
-
roprorex/images/Server_Version2.svg
-
roprorex/images/Signet.png.png
-
roprorex/images/Signet.svg
-
roprorex/images/Smallest_First.svg.xml
-
roprorex/images/Upgrade_Dark.svg
-
roprorex/images/account_switcher.svg
-
roprorex/images/add_button_small.png.png
-
roprorex/images/blank_icon_black.png.png
-
roprorex/images/body_selector.svg
-
roprorex/images/body_size.svg
-
roprorex/images/chart_icon.svg
-
roprorex/images/checkmark.png.png
-
roprorex/images/checkmark_done.gif.gif
-
roprorex/images/checkmark_end.png.png
-
roprorex/images/checkmark_start.png.png
-
roprorex/images/close_button.png.png
-
roprorex/images/close_button_small.png.png
-
roprorex/images/cloud.png.png
-
roprorex/images/cloud_play_active.svg
-
roprorex/images/cloud_play_inactive.svg
-
roprorex/images/cloud_play_inactive2.svg
-
roprorex/images/copy.png.png
-
roprorex/images/custom_icons_darkmode.svg.xml
-
roprorex/images/custom_icons_lightmode.svg.xml
-
roprorex/images/discord_bar.png.png
-
roprorex/images/discord_end.png.png
-
roprorex/images/discord_start.png.png
-
roprorex/images/discordicon.png.png
-
roprorex/images/dominusicon.png.png
-
roprorex/images/down_arrow.png.png
-
roprorex/images/earth_icon.png.png
-
roprorex/images/egg_icon.png.png
-
roprorex/images/eggs/BananaBombEgg.webp
-
roprorex/images/eggs/BeggsicEgg.webp
-
roprorex/images/eggs/BotanEggCal.webp
-
roprorex/images/eggs/BubbaEgg.webp
-
roprorex/images/eggs/BuilderEgg.webp
-
roprorex/images/eggs/CrystalEgg.webp
-
roprorex/images/eggs/DeveloperEgg.webp
-
roprorex/images/eggs/EggOfTheDeep.webp
-
roprorex/images/eggs/FallenStarEgg.webp
-
roprorex/images/eggs/FrogEgg.webp
-
roprorex/images/eggs/GladiatorEgg.webp
-
roprorex/images/eggs/InfluencerEgg.webp
-
roprorex/images/eggs/JungleFabergeEgg.webp
-
roprorex/images/eggs/MushroomEgg.webp
-
roprorex/images/eggs/PlayerEgg.webp
-
roprorex/images/eggs/Preggsent.webp
-
roprorex/images/eggs/PunkEgg.webp
-
roprorex/images/eggs/TropeggcalBird.webp
-
roprorex/images/eggs/WaffleEgg.webp
-
roprorex/images/eggs/WaspEgg.webp
-
roprorex/images/eggs/WereEgg.webp
-
roprorex/images/eggs/WhackAEgg.webp
-
roprorex/images/empty.png.png
-
roprorex/images/free_icon.png.png
-
roprorex/images/fullscreen_0.png.png
-
roprorex/images/fullscreen_1.png.png
-
roprorex/images/head_light.png.png
-
roprorex/images/icon_tiny.png.png
-
roprorex/images/inbound_icon.png.png
-
roprorex/images/info.png.png
-
roprorex/images/info_icon.png.png
-
roprorex/images/left_arrow.svg
-
roprorex/images/like1.png.png
-
roprorex/images/like2.png.png
-
roprorex/images/like_active.png.png
-
roprorex/images/like_inactive.png.png
-
roprorex/images/like_start.png.png
-
roprorex/images/listicon_darkmode_inactive.png.png
-
roprorex/images/lock.png.png
-
roprorex/images/offers_icon.svg
-
roprorex/images/paint_icon_dark.png.png
-
roprorex/images/paint_icon_light.png.png
-
roprorex/images/play.png.png
-
roprorex/images/play.svg
-
roprorex/images/plus_icon.png.png
-
roprorex/images/profile_icons/donor2.svg
-
roprorex/images/profile_icons/meow4.svg
-
roprorex/images/profile_icons/owner.svg
-
roprorex/images/projected_icon.png.png
-
roprorex/images/quick_add.png.png
-
roprorex/images/random_game.svg
-
roprorex/images/random_server.svg
-
roprorex/images/reload.png.png
-
roprorex/images/reorder_active.png.png
-
roprorex/images/reorder_inactive.png.png
-
roprorex/images/rex_icon.png.png
-
roprorex/images/right_arrow.svg
-
roprorex/images/robot.png.png
-
roprorex/images/robot_white2.png.png
-
roprorex/images/rolimons_end.png.png
-
roprorex/images/rolimons_icon_white.png.png
-
roprorex/images/rolimons_logo_icon_blue.png.png
-
roprorex/images/rolimons_start.png.png
-
roprorex/images/ropro_icon.png.png
-
roprorex/images/ropro_icon_animated.webp
-
roprorex/images/ropro_icon_small.png.png
-
roprorex/images/ropro_logo.png.png
-
roprorex/images/ropro_logo_small.png.png
-
roprorex/images/sandbox_icon.svg.xml
-
roprorex/images/sandbox_icon_dark.png.png
-
roprorex/images/sandbox_icon_darkmode_active.svg
-
roprorex/images/sandbox_icon_darkmode_inactive.svg
-
roprorex/images/sandbox_icon_light.png.png
-
roprorex/images/sandbox_icon_lightmode_active.svg
-
roprorex/images/sandbox_icon_lightmode_inactive.svg
-
roprorex/images/selector_icon.png.png
-
roprorex/images/serials_on.png.png
-
roprorex/images/serials_on_lightmode.png.png
-
roprorex/images/serverfilters.png.png
-
roprorex/images/speed_icon.svg.xml
-
roprorex/images/themes_icon_darkmode_active.svg
-
roprorex/images/themes_icon_darkmode_inactive.svg
-
roprorex/images/themes_icon_lightmode_active.svg
-
roprorex/images/themes_icon_lightmode_inactive.svg
-
roprorex/images/timer_dark.svg
-
roprorex/images/timer_light.svg
-
roprorex/images/trade_flag_active_darkmode3.png.png
-
roprorex/images/trade_flag_active_lightmode3.png.png
-
roprorex/images/trade_flag_inactive_darkmode3.png.png
-
roprorex/images/trade_flag_inactive_lightmode3.png.png
-
roprorex/images/trade_offers_icon_darkmode_active.svg
-
roprorex/images/trade_offers_icon_darkmode_inactive.svg
-
roprorex/images/trade_offers_icon_lightmode_active.svg
-
roprorex/images/trade_offers_icon_lightmode_inactive.svg
-
roprorex/images/ultra_icon.png.png
-
roprorex/images/up_arrow.png.png
-
roprorex/images/value_icon.png.png
-
roprorex/images/value_icon_medium.png.png
-
roprorex/images/value_icon_small.png.png
-
roprorex/images/warning_symbol.png.png
-
roprorex/images/white_lock.png.png
-
roprorex/images/white_lock_upright.png.png
-
roprorex/images/wishlist_active.png.png
-
roprorex/images/wishlist_inactive.png.png
-
roprorex/js/libraries/bgWork.js.js
-
roprorex/js/libraries/jquery-3.5.1.min.js.js
-
roprorex/js/libraries/semantic.js.js
-
roprorex/js/page/additionalMenuItems.js.js
-
roprorex/js/page/avatar.js.js
-
roprorex/js/page/catalog.js.js
-
roprorex/js/page/comments.js.js
-
roprorex/js/page/fetchAngular.js.js
-
roprorex/js/page/fetchAvatar.js.js
-
roprorex/js/page/fetchServers.js.js
-
roprorex/js/page/friends.js.js
-
roprorex/js/page/gameFilter.js.js
-
roprorex/js/page/gamePage.js.js
-
roprorex/js/page/games.js.js
-
roprorex/js/page/groupPage.js.js
-
roprorex/js/page/home.js.js
-
roprorex/js/page/invite.js.js
-
roprorex/js/page/item.js.js
-
roprorex/js/page/options.js.js
-
roprorex/js/page/particular.js.js
-
roprorex/js/page/profile.js.js
-
roprorex/js/page/profileThemes.js.js
-
roprorex/js/page/quickPlay.js.js
-
roprorex/js/page/randomGame.js.js
-
roprorex/js/page/resellers.js.js
-
roprorex/js/page/sandbox.js.js
-
roprorex/js/page/subscription.js.js
-
roprorex/js/page/themes.js.js
-
roprorex/js/page/trade.js.js
-
roprorex/js/page/tradePreview.js.js
-
roprorex/js/page/wishlist.js.js
-
roprorex/js/page/wishlistMain.js.js
-
roprorex/logo.png.png
-
roprorex/manifest.json
-
roprorex/options.html.html
-
methods/55x_IPVANISH_VPN_ACCOUNTS.txt
-
methods/others (1).txt
-
methods/others (2).txt
-
methods/others (3).txt
-
methods/others (4).txt
-
methods/others (5).txt
-
methods/others (6).txt
-
methods/others (7).txt
-
methods/others (8).txt
-
methods/others.txt
-
optis/Cleaners.rar.rar
-
1 Delete Temporary Files.cmd
-
2 Delete Log Files.cmd
-
2nd_Temp_Cleaner.cmd
-
3 Delete Windows Update Cache.cmd
-
4 Disk Clean-Up.lnk.lnk
-
Cache_Cleaner.bat.bat .vbs
-
Delete_Log_Files.cmd
-
Disk_Cleanup.bat
-
Full_Pc_Cleanup.bat
-
Temp_Cleaner.bat.bat .vbs
-
desktop.ini
-
dfrgui.lnk.lnk
-
dism_cleaner.bat
-
indepth_pc_cleaner.bat
-
optis/Fps_Pack_1.rar.rar
-
Roblox FPS Pack/1- CPU Optimization Registries/Boost System Responsiveness.reg
-
Roblox FPS Pack/1- CPU Optimization Registries/CPU Optimize.reg
-
Roblox FPS Pack/1- CPU Optimization Registries/Disable Power Throttling.reg
-
Roblox FPS Pack/1- CPU Optimization Registries/GPU Priority.reg
-
Roblox FPS Pack/1- CPU Optimization Registries/Game Optimizations.reg
-
Roblox FPS Pack/1- CPU Optimization Registries/Increase Power Efficiency.reg
-
Roblox FPS Pack/2- RAM Optimization/12GB Ram.reg
-
Roblox FPS Pack/2- RAM Optimization/16GB Ram.reg
-
Roblox FPS Pack/2- RAM Optimization/24GB Ram.reg
-
Roblox FPS Pack/2- RAM Optimization/2GB RAM.reg
-
Roblox FPS Pack/2- RAM Optimization/32GB Ram.reg
-
Roblox FPS Pack/2- RAM Optimization/4GB Ram.reg
-
Roblox FPS Pack/2- RAM Optimization/64GB Ram.reg
-
Roblox FPS Pack/2- RAM Optimization/6GB Ram.reg
-
Roblox FPS Pack/2- RAM Optimization/8GB Ram.reg
-
Roblox FPS Pack/2- RAM Optimization/Reset to Default.reg
-
Roblox FPS Pack/3- MSI Ulility V3/MSI_util_v3.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
D:\projects\MSI_util_v3_solution\MSI_util\MSI_util\obj\Release\MSI_util_v3.pdb
Imports
mscoree
_CorExeMain
Sections
.text Size: 34KB - Virtual size: 34KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Roblox FPS Pack/3- MSI Ulility V3/settings.PNG.png
-
Roblox FPS Pack/4 - Helpers/Clean Temporary Files.bat
-
Roblox FPS Pack/4 - Helpers/Unpark CPU.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Code Sign
61:20:4d:b4:00:00:00:00:00:27Certificate
IssuerCN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=USNot Before15/04/2011, 19:45Not After15/04/2021, 19:55SubjectCN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USKey Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
0b:71:0d:c4:23:c7:d0:00:e3:0b:ae:9f:11:ae:11:51Certificate
IssuerCN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=USNot Before15/10/2019, 00:00Not After04/01/2023, 12:00SubjectSERIALNUMBER=201927010957,CN=CoderBag\, LLC,O=CoderBag\, LLC,L=San Francisco,ST=California,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130a43616c69666f726e6961,1.3.6.1.4.1.311.60.2.1.3=#13025553Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5cCertificate
IssuerCN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=USNot Before18/04/2012, 12:00Not After18/04/2027, 12:00SubjectCN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=USExtended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate
IssuerCN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=USNot Before12/01/2016, 00:00Not After11/01/2031, 23:59SubjectCN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate
IssuerCN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=USNot Before23/12/2017, 00:00Not After22/03/2029, 23:59SubjectCN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
50:d5:a1:b8:89:e3:b6:6b:bb:6a:5f:03:a2:47:88:4d:55:dc:06:c7:8f:61:0a:3c:32:e4:c7:33:3a:09:7c:84Signer
Actual PE Digest50:d5:a1:b8:89:e3:b6:6b:bb:6a:5f:03:a2:47:88:4d:55:dc:06:c7:8f:61:0a:3c:32:e4:c7:33:3a:09:7c:84Digest Algorithmsha256PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
mscoree
_CorExeMain
Sections
.text Size: 627KB - Virtual size: 626KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 240KB - Virtual size: 239KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Roblox FPS Pack/4 - Helpers/sett.PNG.png
-
Roblox FPS Pack/5 - Roblox Priority/Roblox High Priority.reg
-
Roblox FPS Pack/rbxfpsunlocker.exe.exe windows:6 windows x64 arch:x64
425d7c5209bd024f60a34a012e0490a7
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
D:\a\rbxfpsunlocker\rbxfpsunlocker\x64\Release\rbxfpsunlocker.pdb
Imports
kernel32
SetConsoleTextAttribute
GetStdHandle
GetProcessId
CreateMutexA
Sleep
GetLastError
CloseHandle
ReadProcessMemory
CheckRemoteDebuggerPresent
GetExitCodeProcess
Process32First
K32EnumProcessModulesEx
OpenProcess
CreateToolhelp32Snapshot
K32GetModuleFileNameExA
QueryFullProcessImageNameA
Process32Next
K32GetModuleInformation
IsWow64Process
VirtualQueryEx
GetCurrentProcess
SetConsoleTitleA
TerminateThread
FreeConsole
CreateThread
GetConsoleScreenBufferInfo
AllocConsole
WriteConsoleW
HeapSize
SetStdHandle
GetProcessHeap
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
HeapReAlloc
ReadConsoleW
ReadFile
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
SetFilePointerEx
GetFileSizeEx
GetFileType
EnumSystemLocalesW
GetUserDefaultLCID
GetConsoleWindow
WriteProcessMemory
IsValidLocale
GetLocaleInfoW
LCMapStringW
HeapFree
LocalFree
FormatMessageA
GetLocaleInfoEx
CreateFileW
FindClose
FindFirstFileExW
FindNextFileW
GetFileInformationByHandle
AreFileApisANSI
GetModuleHandleW
GetProcAddress
GetFileInformationByHandleEx
MultiByteToWideChar
WideCharToMultiByte
QueryPerformanceCounter
QueryPerformanceFrequency
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
InitializeCriticalSectionEx
GetSystemTimeAsFileTime
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
LCMapStringEx
CompareStringEx
GetCPInfo
GetStringTypeW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
RtlUnwindEx
RtlPcToFileHeader
RaiseException
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
RtlUnwind
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
WriteFile
HeapAlloc
SetEndOfFile
user32
GetWindowTextA
MessageBoxA
EnumWindows
IsWindowVisible
GetSystemMenu
GetMessageA
CheckMenuRadioItem
DispatchMessageA
LoadCursorA
CreatePopupMenu
TrackPopupMenu
ShowWindow
DefWindowProcA
CreateWindowExA
TranslateMessage
LoadIconA
AppendMenuA
CheckMenuItem
PostQuitMessage
EnableMenuItem
RegisterClassExA
SetForegroundWindow
GetCursorPos
GetWindowThreadProcessId
gdi32
GetStockObject
shell32
ShellExecuteA
Shell_NotifyIconA
wininet
InternetOpenA
InternetCloseHandle
InternetReadFile
InternetOpenUrlA
Sections
.text Size: 276KB - Virtual size: 275KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 99KB - Virtual size: 98KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 6KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 101KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
optis/cmd-tweaks.rar.rar
-
4. CMD Tweaks/3. Remove Power Saving Features On USB Devices.bat
-
4. CMD Tweaks/4 Disable Memory Compression.cmd
-
4. CMD Tweaks/6 Turn Off Auto Windows Updates.cmd
-
4. CMD Tweaks/Disable HIPM _ DIPM, HDD Parking.bat
-
4. CMD Tweaks/Disable IoLatencyCap.bat
-
4. CMD Tweaks/Disable StorPort Idle.bat
-
4. CMD Tweaks/Disable USB Idle.bat
-
4. CMD Tweaks/FSE and Game Bar off.bat
-
4. CMD Tweaks/Latency Tweaks.cmd
-
optis/debloater-win10.zip.zip
-
optis/gpu-tweaks.zip.zip
-
optis/optimizer_goon.7z_1708286171.268.7z.7z
-
optis/reg-tweaks.rar.rar
-
optis/tweaked_ram.rar.rar
-
optis/vibranceGUI.7z_1708286171.268.7z.7z