2ce58c722f4f6fd3491acd84443976eb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ce58c722f4f6fd3491acd84443976eb_JaffaCakes118
Size

2.0MB
MD5

2ce58c722f4f6fd3491acd84443976eb
SHA1

1c06d58c4db714c696a95278941dccd61561ec9e
SHA256

3f1270ea5540560710995b940ab9216271667e01f33bf1cf9377e2a1239d1ca4
SHA512

9ef076b61d80e4a753c50b2bca4cbf2b2369db7a1d72a6f32cf2e8dab216bb7e399098a909dcc46dda39522c2055264db9d3fe4b2ec841b2cf0c2efc0f2b200c
SSDEEP

49152:oFnkMjWXVlnWUun+INEp8l7MCXIH5lVQrmy5bWU2IcASgaoJ9dOMXmP7D:GnkMyP3IHd1XIO8P8aopOtX

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/kailleraclient.dll	acprotect

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack003/AT32_MoonWalker.exe	upx
static1/unpack001/kailleraclient.dll	upx

Unsigned PE 18 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Gens32 Surreal.exe
unpack001/PowerUp.exe
unpack002/Patch.apf
unpack002//Patch File.exe
unpack003/AT32_MoonWalker.exe
unpack001/Tools/BrmTools/Brm Tools.exe
unpack001/Tools/Force Feedback Drivers/After Burner II/After Burner II (U) [!].ldu
unpack001/Tools/Force Feedback Drivers/MK3/MK3 Force Feedback driver.ldu
unpack001/Tools/Force Feedback Drivers/Virtua Fighter 2/Virtua Fighter 2 Force Feedback Driver.ldu
unpack001/Tools/GenSuite/GenSuite.exe
unpack001/Tools/MDD Editor/MDD Editor.exe
unpack001/Tools/Media Player/Kiyo/Kiyo.exe
unpack001/Tools/Mouse Drivers/General Chaos/Mouse DriverBuilder.exe
unpack001/Tools/Mouse Drivers/T2 the Arcade Game/Src/Mouse DriverBuilder.exe
unpack001/Tools/Mp3 Play List/Mp3 Play List.exe
unpack005/Motorcycle.vsc
unpack001/kailleraclient.dll
unpack006/out.upx

Files

2ce58c722f4f6fd3491acd84443976eb_JaffaCakes118
.zip
BIOS/How Config Default BIOS.txt
Controllers/Default.ctr
GENS.txt
Gens32 Surreal.exe
.exe windows:5 windows x86 arch:x86

e833fcd097b776ab4e1ab3ef8a3a0ae2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\Studio\Gens32\Gens32_Surreal_AudioServer\Release\gens.pdb

Imports

wsock32

closesocket
recv
send
inet_addr
WSAStartup
socket
gethostbyname
WSAGetLastError
htons
connect
getsockname

ddraw

DirectDrawCreateEx

dsound

ord1

dinput8

DirectInput8Create

winmm

mmioWrite
mmioAscend
mmioCreateChunk
mmioOpenA
mmioSetInfo
mmioSeek
mmioDescend
mmioClose
mmioAdvance
mmioGetInfo
sndPlaySoundA

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GetFileSize
CreateFileA
SetCurrentDirectoryA
GetTickCount
QueryPerformanceFrequency
QueryPerformanceCounter
WriteFile
ReadFile
GetPrivateProfileStringA
SetPriorityClass
GetCurrentProcess
FindFirstFileA
FindNextFileA
WritePrivateProfileStringA
LocalFree
LocalLock
LocalAlloc
WinExec
GetCurrentDirectoryA
GetVersion
MultiByteToWideChar
GetFileInformationByHandle
GetPrivateProfileIntA
GetFileAttributesA
VirtualAlloc
VirtualFree
HeapCreate
InitializeCriticalSectionAndSpinCount
GetModuleFileNameA
HeapSize
FreeLibrary
SetFilePointer
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
GetConsoleMode
GetConsoleCP
WideCharToMultiByte
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStartupInfoA
GetCommandLineA
GetSystemTimeAsFileTime
DeleteFileA
HeapAlloc
LCMapStringA
HeapReAlloc
HeapFree
GetLastError
LeaveCriticalSection
EnterCriticalSection
ExitProcess
GetModuleHandleW
RtlUnwind
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
WriteConsoleA
SetStdHandle
CreateThread
Sleep
ExitThread
GetEnvironmentStringsW
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
GetModuleHandleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoA
FlushFileBuffers
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
SetEndOfFile
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
GetProcessHeap
CompareStringA
CompareStringW
SetEnvironmentVariableA

user32

LoadIconA
LoadCursorA
RegisterClassA
GetSystemMetrics
CreateWindowExA
LoadAcceleratorsA
UnregisterClassA
PostMessageA
SetCursorPos
TrackPopupMenu
DefWindowProcA
DialogBoxParamA
GetDesktopWindow
ChangeDisplaySettingsA
ShowWindow
SetDlgItemInt
SetTimer
GetDlgItemInt
ShowCursor
GetDlgItemTextA
SendDlgItemMessageA
SetDlgItemTextA
EndDialog
DestroyMenu
CreatePopupMenu
CreateMenu
SetMenu
SystemParametersInfoA
GetWindowTextA
SetWindowTextA
SetFocus
PeekMessageA
GetMessageA
TranslateMessage
TranslateAcceleratorA
DispatchMessageA
LoadImageA
GetDC
ReleaseDC
GetWindowRect
SetWindowLongA
SetRect
GetWindowLongA
AdjustWindowRectEx
SetWindowPos
DestroyWindow
MessageBeep
GetClientRect
ClientToScreen
InsertMenuA
MessageBoxA
wsprintfA
GetDlgItem

gdi32

CreateSolidBrush
CreateDIBitmap
GetDeviceCaps
BitBlt
DeleteObject
CreateCompatibleDC
SelectObject
StretchBlt
DeleteDC

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

shell32

DragAcceptFiles
DragQueryFileA

ole32

CoInitialize
CoUninitialize
CoCreateInstance

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 183KB - Virtual size: 49.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Gens32.cfg
History.txt
How to use mouse.txt
.vbs
PowerUp.cfg
PowerUp.exe
.exe windows:4 windows x86 arch:x86

7d69ca66510cb0a342abfbb8db35e4fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Studios\Gens32\Auto Update\PowerUp\Release\PowerUp.pdb

Imports

kernel32

WinExec
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
SetEndOfFile
IsBadCodePtr
IsBadReadPtr
InterlockedExchange
LoadLibraryA
VirtualQuery
GetSystemInfo
VirtualProtect
WideCharToMultiByte
CreateFileA
SetFilePointer
FlushFileBuffers
SetStdHandle
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetLastError
MoveFileA
DeleteFileA
ExitProcess
RtlUnwind
GetModuleHandleA
GetStartupInfoW
GetVersionExA
HeapAlloc
RaiseException
HeapFree
CloseHandle
ReadFile
GetProcAddress
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
WriteFile
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetStdHandle
UnhandledExceptionFilter
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
LCMapStringW

user32

EndDialog
GetSystemMetrics
SetTimer
SendDlgItemMessageW
SetWindowPos
SetDlgItemTextW
GetWindowRect
GetMessageW
DispatchMessageW
TranslateMessage
RegisterClassExW
DefWindowProcW
BeginPaint
EndPaint
PostQuitMessage
CreateWindowExW
ShowWindow
UpdateWindow
DialogBoxParamW
MessageBoxW

shell32

ShellExecuteW

wininet

InternetCloseHandle
InternetOpenUrlW
InternetOpenW
InternetCheckConnectionW
InternetAttemptConnect
InternetCanonicalizeUrlW
InternetReadFile

Sections

.text
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 520KB - Virtual size: 517KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Shots/Thumbs.db
Tools/AT32 Hack/Langrisser II simplified Chinese/Langrisser II_AT32_v1_06.zip
.zip
Patch.apf
.dll windows:4 windows x86 arch:x86

7efb9a8be6d3f839b7cad9088ba5391c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MultiByteToWideChar
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcAddress
GetModuleHandleA
HeapFree
HeapAlloc
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
InterlockedExchange
VirtualQuery
LoadLibraryA
LCMapStringA
LCMapStringW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
HeapSize
VirtualProtect
GetSystemInfo

ole32

CoInitialize
CoCreateInstance
CoUninitialize

Exports

Exports

CLOSE
HACK_RAM

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ʹ˵.txt
/Patch File.exe
.exe windows:4 windows x86 arch:x86

69cfe80d16ffa594d9f10ef681a33e9c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Studios\Gens32\MDX_Hack\Patch File\Release\Patch File.pdb

Imports

kernel32

RtlUnwind
GetModuleHandleA
GetCommandLineA
GetVersionExA
RaiseException
HeapFree
ExitProcess
HeapAlloc
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
GetLastError
LCMapStringW
GetCPInfo
GetProcAddress
TerminateProcess
GetCurrentProcess
GetFileAttributesA
WriteFile
ReadFile
CloseHandle
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetFilePointer
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
VirtualAlloc
HeapReAlloc
FlushFileBuffers
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
GetStringTypeW
VirtualProtect
GetSystemInfo
VirtualQuery
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
SetStdHandle
CreateFileA
LoadLibraryA
GetACP
GetOEMCP
InterlockedExchange
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
/Read me.txt
/ʹ˵.txt
Tools/AT32 Hack/MoonWalker/AT32_MoonWalker.zip
.zip
AT32_MoonWalker.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Tools/AT32 Hack/MoonWalker/Readme.txt
Tools/BrmTools/Brm Tools.exe
.exe windows:4 windows x86 arch:x86

79d8de8dff7903eb36e2c16fbf07febe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetVersion
ExitProcess
RtlUnwind
GetLastError
CloseHandle
WriteFile
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
HeapReAlloc
HeapSize
FlushFileBuffers
SetStdHandle
VirtualAlloc
IsBadWritePtr
CreateFileA
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetEndOfFile
LCMapStringA
LCMapStringW

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Tools/BrmTools/Readme.txt
Tools/Force Feedback Drivers/After Burner II/After Burner II (U) [!].ldu
.dll windows:4 windows x86 arch:x86

b15f50e3f2711e0feb9b6d0b6f0258b5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
GetVersionExA
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
LeaveCriticalSection
EnterCriticalSection
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
RtlUnwind
InterlockedExchange
VirtualQuery
LoadLibraryA
HeapSize
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualProtect
GetSystemInfo

Exports

Exports

CLOSE
INIT
PORT_LDU

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Tools/Force Feedback Drivers/After Burner II/Readme.txt
Tools/Force Feedback Drivers/MK3/MK3 Force Feedback driver.ldu
.dll windows:4 windows x86 arch:x86

7b33197423f08d5868758b0f560fae0b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
WriteFile
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

Exports

Exports

CLOSE
INIT
PORT_LDU

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Tools/Force Feedback Drivers/MK3/Readme.txt
Tools/Force Feedback Drivers/Virtua Fighter 2/Readme.txt
Tools/Force Feedback Drivers/Virtua Fighter 2/Virtua Fighter 2 Force Feedback Driver.ldu
.dll windows:4 windows x86 arch:x86

7b33197423f08d5868758b0f560fae0b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
WriteFile
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

Exports

Exports

CLOSE
INIT
PORT_LDU

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Tools/GenSuite/Chinese.idi
Tools/GenSuite/GenSuite.exe
.exe windows:4 windows x86 arch:x86

e8ecd6cbf2bf140416258eaf8fd87e7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaVarTstGt
__vbaVarSub
__vbaStrI2
_CIcos
_adj_fptan
__vbaVarMove
__vbaStrI4
__vbaVarVargNofree
__vbaFreeVar
__vbaLenBstr
__vbaStrVarMove
ord589
__vbaEnd
__vbaFreeVarList
_adj_fdiv_m64
__vbaRaiseEvent
__vbaFreeObjList
ord516
__vbaStrErrVarCopy
ord517
_adj_fprem1
__vbaRecAnsiToUni
ord518
ord519
__vbaResume
__vbaCopyBytes
__vbaStrCat
__vbaLsetFixstr
__vbaRecDestruct
__vbaSetSystemError
__vbaHresultCheckObj
__vbaLenVar
_adj_fdiv_m32
ord666
__vbaAryDestruct
ord669
__vbaLateMemSt
ord591
__vbaBoolStr
__vbaExitProc
__vbaVarForInit
__vbaForEachCollObj
ord301
__vbaObjSet
__vbaOnError
ord595
_adj_fdiv_m16i
ord597
__vbaObjSetAddref
_adj_fdivr_m16i
__vbaVarIndexLoad
ord598
ord599
__vbaFpR4
ord520
__vbaBoolVar
ord307
__vbaFpR8
__vbaRefVarAry
_CIsin
ord631
ord525
__vbaLateMemStAd
__vbaNextEachCollObj
__vbaChkstk
ord526
__vbaFileClose
EVENT_SINK_AddRef
__vbaGenerateBoundsError
ord528
ord529
__vbaStrCmp
__vbaAryConstruct2
__vbaPutOwner3
__vbaVarTstEq
__vbaPrintObj
__vbaI2I4
DllFunctionCall
__vbaVarLateMemSt
__vbaFpUI1
__vbaCastObjVar
__vbaRedimPreserve
_adj_fpatan
__vbaR4Var
__vbaFixstrConstruct
__vbaLateIdCallLd
__vbaStrR8
__vbaRedim
__vbaRecUniToAnsi
EVENT_SINK_Release
__vbaNew
ord600
__vbaUI1I2
_CIsqrt
__vbaVarAnd
EVENT_SINK_QueryInterface
__vbaUI1I4
__vbaExceptHandler
__vbaPrintFile
__vbaStrToUnicode
ord712
ord606
_adj_fprem
_adj_fdivr_m64
__vbaI2Str
__vbaLateIdStAd
ord530
ord608
__vbaFPException
ord717
__vbaInStrVar
__vbaUbound
__vbaGetOwner3
__vbaStrVarVal
__vbaVarCat
__vbaI2Var
ord644
ord537
ord645
_CIlog
__vbaErrorOverflow
__vbaFileOpen
ord648
ord570
__vbaInStr
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
ord573
__vbaStrCopy
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord685
ord100
__vbaVarTstNe
__vbaI4Var
__vbaFpCy
__vbaAryLock
__vbaVarAdd
__vbaLateMemCall
__vbaStrToAnsi
__vbaVarDup
__vbaVerifyVarObj
__vbaFpI2
__vbaVarCopy
__vbaFpI4
ord616
ord617
__vbaRecDestructAnsi
__vbaLateMemCallLd
_CIatan
__vbaStrMove
ord618
__vbaCastObj
ord619
__vbaR8IntI4
ord650
_allmul
__vbaFpCSngR4
__vbaLateIdSt
_CItan
__vbaAryUnlock
__vbaFPInt
__vbaVarForNext
_CIexp
__vbaRecAssign
__vbaFreeStr
__vbaFreeObj
ord581

Sections

.text
Size: 632KB - Virtual size: 630KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Tools/GenSuite/GenSuite.exe.MANIFEST
.xml
Tools/GenSuite/Leeme.txt
Tools/GenSuite/Readme.txt
Tools/GenSuite/_English.idi
Tools/GenSuite/_Espaol.idi
Tools/GenSuite/deutsch.idi
Tools/GenSuite/historia.txt
Tools/GenSuite/history.txt
Tools/MDD Editor/MDD Editor.exe
.exe windows:4 windows x86 arch:x86

35408b22d991d838a8dea4aae14dde08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Studios\Gens32\Ldu\Ldu编缉器\01\Release\01.pdb

Imports

kernel32

CreateFileA
FlushFileBuffers
SetStdHandle
InterlockedExchange
RtlUnwind
HeapReAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetLocaleInfoA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
SetEndOfFile
HeapSize
GetStringTypeA
LoadLibraryA
GetProcAddress
GetCurrentDirectoryA
LocalAlloc
LocalLock
LocalFree
FreeLibrary
GetModuleHandleA
FreeEnvironmentStringsW
WriteFile
GetCurrentProcess
TerminateProcess
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapFree
HeapAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetLastError
CloseHandle
ReadFile
GetStringTypeW

user32

DefWindowProcA
PostQuitMessage
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
MessageBoxA
SetWindowTextA
DestroyMenu
CreateMenu
CreatePopupMenu
InsertMenuA
SetMenu
EndDialog
GetDC
GetClientRect
FillRect
ReleaseDC
DialogBoxParamA
RegisterClassExA
SetRect
GetWindowLongA
AdjustWindowRectEx
GetDesktopWindow
GetSystemMetrics
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
UnregisterClassA
ValidateRect

gdi32

CreatePen
MoveToEx
LineTo
CreateDIBitmap
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
CreateFontA
SetBkColor
SetTextColor
TextOutA
BitBlt
DeleteDC
DeleteObject
CreateSolidBrush

comdlg32

GetOpenFileNameA
GetSaveFileNameA

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 719KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Tools/MDD Editor/readme.txt
Tools/Media Player/Kiyo/Kiyo.exe
.exe windows:4 windows x86 arch:x86

d4e6e2aeb23a46a82185d395e3e872b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Studios\Kiyo\Release\Kiyo.pdb

Imports

kernel32

IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
RaiseException
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetModuleHandleA
GetTickCount
QueryPerformanceCounter
SetEndOfFile
VirtualQuery
InterlockedExchange
RtlUnwind
GetCPInfo
GetOEMCP
GetACP
LoadLibraryA
SetStdHandle
FlushFileBuffers
SetFilePointer
CreateFileA
Sleep
GetCurrentDirectoryA
FindNextFileA
GetPrivateProfileStringA
FindFirstFileA
SetCurrentDirectoryA
GetCurrentThreadId
MultiByteToWideChar
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapReAlloc
HeapAlloc
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
HeapSize
GetLastError
ReadFile
HeapFree
WriteFile
CloseHandle
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW

user32

UpdateWindow
DestroyMenu
DialogBoxParamA
SetWindowTextA
InsertMenuA
PostMessageA
RegisterClassExA
PostQuitMessage
TranslateMessage
UnregisterClassA
CreateWindowExA
PeekMessageA
DefWindowProcA
GetDesktopWindow
DispatchMessageA
ValidateRect
SetTimer
SendDlgItemMessageA
TrackPopupMenu
LoadIconA
CreateMenu
GetDC
ReleaseDC
EndDialog
ShowWindow
SetMenu
CreatePopupMenu

gdi32

SetTextColor
CreateFontA
SetBkMode
DeleteObject
SelectObject
TextOutA
CreateSolidBrush

comdlg32

GetOpenFileNameA
GetSaveFileNameA

shell32

Shell_NotifyIconA

ole32

CoUninitialize
CoInitialize
CoCreateInstance

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Tools/Media Player/Kiyo/Readme.txt
Tools/Mouse Drivers/Cannon Fodder/Cannon Fodder (E) [!].gmd
Tools/Mouse Drivers/Cannon Fodder/Readme.txt
Tools/Mouse Drivers/Dune - The Building of a Dynasty/Dune - The Building of a Dynasty (U) [!].gmd
Tools/Mouse Drivers/Dune - The Building of a Dynasty/Readme.txt
Tools/Mouse Drivers/General Chaos/01.c
Tools/Mouse Drivers/General Chaos/Done/General Chaos (UE) [!].gmd
Tools/Mouse Drivers/General Chaos/Mouse DriverBuilder.exe
.exe windows:4 windows x86 arch:x86

a10d24789e3f52697c4a84f4cfe69da2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Studios\Gens32\Mouse DriverBuilder\Release\Mouse DriverBuilder.pdb

Imports

kernel32

WideCharToMultiByte
HeapFree
RtlUnwind
RaiseException
ExitProcess
GetModuleHandleA
GetCommandLineA
GetVersionExA
LCMapStringA
MultiByteToWideChar
GetLastError
LCMapStringW
GetCPInfo
HeapAlloc
GetProcAddress
TerminateProcess
GetCurrentProcess
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetFileAttributesA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
WriteFile
CloseHandle
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
HeapSize
IsBadReadPtr
IsBadCodePtr
FlushFileBuffers
SetFilePointer
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
LoadLibraryA
InterlockedExchange
SetStdHandle
CreateFileA
GetACP
GetOEMCP
GetLocaleInfoW
ReadFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile

Sections

.text
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Tools/Mouse Drivers/General Chaos/doc.txt
Tools/Mouse Drivers/Lethal Enforcers II/Lethal Enforcers II - Gun Fighters (UJ) [!].gmd
Tools/Mouse Drivers/Lethal Enforcers II/Readme.txt
Tools/Mouse Drivers/Lethal Enforcers/LETHAL ENFORCERS.gmd
Tools/Mouse Drivers/Lethal Enforcers/Readme.txt
Tools/Mouse Drivers/T2 the Arcade Game/Driver/Readme.txt
Tools/Mouse Drivers/T2 the Arcade Game/Driver/T2 - The Arcade Game.gmd
Tools/Mouse Drivers/T2 the Arcade Game/Src/01.fbl
Tools/Mouse Drivers/T2 the Arcade Game/Src/Mouse DriverBuilder.exe
.exe windows:4 windows x86 arch:x86

a10d24789e3f52697c4a84f4cfe69da2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Studios\Gens32\Mouse DriverBuilder\Release\Mouse DriverBuilder.pdb

Imports

kernel32

WideCharToMultiByte
HeapFree
RtlUnwind
RaiseException
ExitProcess
GetModuleHandleA
GetCommandLineA
GetVersionExA
LCMapStringA
MultiByteToWideChar
GetLastError
LCMapStringW
GetCPInfo
HeapAlloc
GetProcAddress
TerminateProcess
GetCurrentProcess
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetFileAttributesA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
WriteFile
CloseHandle
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
HeapSize
IsBadReadPtr
IsBadCodePtr
FlushFileBuffers
SetFilePointer
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
LoadLibraryA
InterlockedExchange
SetStdHandle
CreateFileA
GetACP
GetOEMCP
GetLocaleInfoW
ReadFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile

Sections

.text
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Tools/Mp3 Play List/Mp3 Play List.exe
.exe windows:4 windows x86 arch:x86

b7de1f7725f556e9d371695d10cc615c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Studios\Gens32\Tools\Mp3 Rename\Release\Mp3 Rename.pdb

Imports

kernel32

FindNextFileA
FindFirstFileA
RtlUnwind
ExitProcess
GetModuleHandleA
GetCommandLineA
GetVersionExA
RaiseException
HeapFree
HeapAlloc
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
GetLastError
LCMapStringW
GetCPInfo
GetProcAddress
TerminateProcess
GetCurrentProcess
GetFileAttributesA
CloseHandle
WriteFile
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
VirtualAlloc
HeapReAlloc
FlushFileBuffers
SetFilePointer
HeapSize
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
GetStringTypeW
VirtualProtect
GetSystemInfo
VirtualQuery
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
SetStdHandle
CreateFileA
LoadLibraryA
InterlockedExchange
GetACP
GetOEMCP
ReadFile
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Tools/Mp3 Play List/Mp3.ISO
Tools/Mp3 Play List/Read Me.txt
Tools/VSC Controller/Motorcycle_Virtual_Sapce_Controller_v1_00.zip
.zip
Motorcycle.vsc
.dll windows:4 windows x86 arch:x86

6e1e0bdc3e65c7a576a46e7ed026e05d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Studios\Gens32\Vsc\Motorcycle\Release\VSC_Model.pdb

Imports

kernel32

RtlUnwind
ExitProcess
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapAlloc
HeapFree
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapReAlloc
TerminateProcess
GetCurrentProcess
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
InterlockedExchange
VirtualQuery
InitializeCriticalSection
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
VirtualProtect
GetSystemInfo

Exports

Exports

CLOSE
INIT
PORT_VSC

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Readme.txt
Tools/memroyMap.txt
kailleraclient.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_kailleraChatSend@4
_kailleraEndGame@0
_kailleraGetVersion@4
_kailleraInit@0
_kailleraModifyPlayValues@8
_kailleraSelectServerDialog@4
_kailleraSetInfos@4
_kailleraShutdown@0

Sections

UPX0
Size: - Virtual size: 56KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
language.dat
res/Cd_Nosie.wav
res/Logo.bmp
res/MENU_GENS32_LOGO.bmp
res/Painting.bmp
res/Thumbs.db

Sharing

General

Malware Config

Signatures

Files

e833fcd097b776ab4e1ab3ef8a3a0ae2

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

wsock32

ddraw

dsound

dinput8

winmm

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 58KB - Virtual size: 58KB

.data Size: 183KB - Virtual size: 49.8MB

.rsrc Size: 88KB - Virtual size: 88KB

7d69ca66510cb0a342abfbb8db35e4fe

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

shell32

wininet

Sections

.text Size: 40KB - Virtual size: 36KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 520KB - Virtual size: 517KB

7efb9a8be6d3f839b7cad9088ba5391c

Headers

File Characteristics

Imports

kernel32

ole32

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 32KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 952B

.reloc Size: 8KB - Virtual size: 4KB

69cfe80d16ffa594d9f10ef681a33e9c

Headers

File Characteristics

PDB Paths

Imports

kernel32

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 4KB - Virtual size: 744B

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 92KB

UPX1 Size: 2KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 4KB

79d8de8dff7903eb36e2c16fbf07febe

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 28KB - Virtual size: 26KB

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 58KB - Virtual size: 58KB

.data
Size: 183KB - Virtual size: 49.8MB

.rsrc
Size: 88KB - Virtual size: 88KB

.text
Size: 40KB - Virtual size: 36KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 520KB - Virtual size: 517KB

.text
Size: 36KB - Virtual size: 32KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 952B

.reloc
Size: 8KB - Virtual size: 4KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 4KB - Virtual size: 744B

UPX0
Size: - Virtual size: 92KB

UPX1
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 4KB

.text
Size: 28KB - Virtual size: 26KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 8KB - Virtual size: 4KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 6KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 6KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 632KB - Virtual size: 630KB

.data
Size: 4KB - Virtual size: 31KB

.rsrc
Size: 52KB - Virtual size: 49KB

.text
Size: 36KB - Virtual size: 33KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 160KB - Virtual size: 719KB

.rsrc
Size: 12KB - Virtual size: 9KB