43d38a6ec15208ac85f2fec749c95d2f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

43d38a6ec15208ac85f2fec749c95d2f_JaffaCakes118
Size

9.2MB
MD5

43d38a6ec15208ac85f2fec749c95d2f
SHA1

7f520ef84196020552e87c7d79d79ad58cb0bff4
SHA256

a7622a7afc4b62c0bd31fc01f6108bec457595f2efae56b164bfe32a18996838
SHA512

828cbc1c0344e0de1c53360cf0bfe735e4e6b8691c9165e619480abf64b007ac96ccc78505972fba7d517f4b9fceee192b9355e02b6ab2efb39ad5ebcbb5fc20
SSDEEP

196608:ySgiTxaA3cOtpn8/hZQiN/0HbyyEYtpkW2jRBFQn1pzKhtvhXd:GitaA3tpn8kiR67Ebf1QzzUDd

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/fmod.dll	acprotect

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/fmod.dll	upx

Unsigned PE 10 IoCs

Checks for missing Authenticode signature.

resource
43d38a6ec15208ac85f2fec749c95d2f_JaffaCakes118
unpack001/$PLUGINSDIR/BrandingURL.dll
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/SDL.dll
unpack001/SDL_image.dll
unpack001/fmod.dll
unpack001/jpeg.dll
unpack001/libpng13.dll
unpack001/uninst.exe
unpack001/zlib1.dll

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/uninst.exe	nsis_installer_1
static1/unpack001/uninst.exe	nsis_installer_2

Files

43d38a6ec15208ac85f2fec749c95d2f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c042238f43557c055fca8642de8a074

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
MulDiv
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetAsyncKeyState
IsDlgButtonChecked
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
RegisterClassA
OpenClipboard
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
wvsprintfA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
ShowWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
EmptyClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
SetForegroundWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/BrandingURL.dll
.dll windows:4 windows x86 arch:x86

135de77644e2add2fd9dd8176740e7e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyA
GlobalFree

user32

GetWindowRect
SetCapture
InvalidateRect
SendMessageA
GetCapture
ClientToScreen
EnableWindow
LoadImageA
SetPropA
SetWindowLongA
GetWindowLongA
GetDlgItem
PtInRect
ReleaseCapture
SetCursor
GetPropA
CallWindowProcA
RedrawWindow

gdi32

GetObjectA
SetTextColor
CreateFontIndirectA

shell32

ShellExecuteA

Exports

Exports

Set
Unload

Sections

.text
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 839B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
GetPrivateProfileIntA
GlobalLock
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalAlloc

user32

MapWindowPoints
GetDlgCtrlID
CloseClipboard
GetClipboardData
OpenClipboard
PtInRect
SetWindowRgn
LoadIconA
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
GetClientRect

gdi32

SetTextColor
CreateCompatibleDC
GetObjectA
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject

shell32

SHBrowseForFolderA
SHGetDesktopFolder
SHGetPathFromIDListA
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$SMPROGRAMS/ݵ/155ɫվ.lnk
.lnk
155ɫվ.lnk
.lnk
BonniesBookstore.exe
.exe windows:4 windows x86 arch:x86

f8c5b595548b7104775e97bca43caf5b

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

3c:61:df:38:d5:bb:38:36:a8:b4:4b:98:5c:50:44:79
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

01/09/2006, 00:00

Not After

21/09/2009, 23:59

Subject

CN=PopCap Games,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=PopCap Games,L=Seattle,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Games\Bonnie's Bookstore\VC_Proj\Release\App.pdb

Imports

fmod

_FSOUND_GetFrequency@4
_FSOUND_PlaySoundEx@16
_FSOUND_StopSound@4
_FMUSIC_SetMasterVolume@8
_FMUSIC_SetOrder@8
_FMUSIC_IsPlaying@4
_FSOUND_IsPlaying@4
_FMUSIC_FreeSong@4
_FMUSIC_StopSong@4
_FMUSIC_SetPaused@8
_FMUSIC_GetOrder@4
_FMUSIC_PlaySong@4
_FSOUND_Sample_Load@20
_FSOUND_SetFrequency@8
_FSOUND_SetVolume@8
_FSOUND_SetPaused@8
_FSOUND_Sample_Free@4
_FSOUND_Close@0
_FSOUND_SetOutput@4
_FSOUND_Init@12
_FMUSIC_LoadSong@4

sdl

SDL_ShowCursor
SDL_GetAppState
SDL_GetKeyState
SDL_GetMouseState
SDL_EventState
SDL_EnableUNICODE
SDL_EnableKeyRepeat
SDL_Init
SDL_GetError
SDL_SetVideoMode
SDL_LockSurface
SDL_UnlockSurface
SDL_UpdateRects
SDL_UpdateRect
SDL_CreateRGBSurface
SDL_GetWMInfo
SDL_WM_IconifyWindow
SDL_SetCursor
SDL_CreateCursor
SDL_FreeCursor
SDL_MapRGB
SDL_SetColorKey
SDL_WM_SetIcon
SDL_WM_SetCaption
SDL_Quit
SDL_FreeSurface
SDL_RWFromFile
SDL_RWFromMem
SDL_PumpEvents
SDL_PollEvent
SDL_GetTicks

sdl_image

IMG_LoadTyped_RW

kernel32

ReadFile
CreateFileA
SetEnvironmentVariableA
CompareStringW
CompareStringA
FlushFileBuffers
RaiseException
GetSystemInfo
VirtualProtect
SetStdHandle
LCMapStringW
LCMapStringA
GetLocaleInfoA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
SetFilePointer
InitializeCriticalSection
LoadLibraryA
VirtualQuery
InterlockedExchange
GetCPInfo
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetTimeZoneInformation
IsBadWritePtr
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FindClose
FindFirstFileA
GlobalUnlock
GlobalLock
GlobalAlloc
CreateMutexA
CloseHandle
OpenMutexA
GetVersion
Sleep
RtlUnwind
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
GetProcAddress
TerminateProcess
GetCurrentProcess
GetLastError
DeleteFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
FindNextFileA
TlsAlloc
SetLastError
GetCurrentThreadId
SetEndOfFile
TlsFree
TlsSetValue
TlsGetValue
HeapReAlloc
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetModuleFileNameA
WriteFile
GetStdHandle
UnhandledExceptionFilter

user32

GetDesktopWindow
AdjustWindowRect
GetDoubleClickTime
GetWindowPlacement
GetCursorPos
GetAsyncKeyState
GetClipboardData
IsClipboardFormatAvailable
OpenClipboard
SetClipboardData
MessageBoxA
SetWindowPos
SetMenu
CheckMenuItem
ReleaseDC
GetDC
GetWindowRect
CloseClipboard

gdi32

GetDeviceCaps

advapi32

GetUserNameA

shell32

ShellExecuteA

Sections

.text
Size: 344KB - Virtual size: 340KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Graphics/Arrows.png
.png
Graphics/Arrows_ims.txt
Graphics/BookComplete.jpg
.jpg
Graphics/BookComplete_Matte.png
.png
Graphics/Borders.png
.png
Graphics/Borders_ims.txt
Graphics/ChapterComplete.jpg
.jpg
Graphics/ChapterComplete_Matte.png
.png
Graphics/Credits.jpg
.jpg
Graphics/Help_1.jpg
.jpg
Graphics/Help_2.jpg
.jpg
Graphics/Help_3.jpg
.jpg
Graphics/Help_Arrow.png
.png
Graphics/Help_Arrow2.png
.png
Graphics/Help_Left_Button_Down.png
.png
Graphics/Help_Left_Button_Hover.png
.png
Graphics/Help_Left_Button_Normal.png
.png
Graphics/Help_Right_Button_Down.png
.png
Graphics/Help_Right_Button_Hover.png
.png
Graphics/Help_Right_Button_Normal.png
.png
Graphics/HighScore_Buttons.png
.png
Graphics/HighScore_Buttons_ims.txt
Graphics/HighScores.jpg
.jpg
Graphics/LetterInvalid.png
.png
Graphics/Level_Thumbs.jpg
.jpg
Graphics/Level_Thumbs_Frame.png
.png
Graphics/Level_Thumbs_ims.txt
Graphics/LogoPart_Crayon.jpg
.jpg
Graphics/LogoPart_Games.jpg
.jpg
Graphics/LogoPart_Letter_0.png
.png
Graphics/LogoPart_Letter_1.png
.png
Graphics/LogoPart_Letter_2.png
.png
Graphics/LogoPart_Letter_3.png
.png
Graphics/LogoPart_Letter_4.png
.png
Graphics/LogoPart_Letter_5.png
.png
Graphics/LogoPart_Letter_6.png
.png
Graphics/LogoPart_Letter_7.png
.png
Graphics/LogoPart_Letter_8.png
.png
Graphics/LogoPart_TM.jpg
.jpg
Graphics/Options.jpg
.jpg
Graphics/Options_Button_Up_Down.png
.png
Graphics/Options_Button_Up_Down_ims.txt
Graphics/Options_Buttons.jpg
.jpg
Graphics/Options_Buttons_Matte.png
.png
Graphics/Options_Buttons_ims.txt
Graphics/Options_Matte.png
.png
Graphics/Options_Slider.png
.png
Graphics/Particles.png
.png
Graphics/Particles_ims.txt
Graphics/PopCap.jpg
.jpg
Graphics/PreLevel.jpg
.jpg
Graphics/PreLevel_Arm_Turn_1.jpg
.jpg
Graphics/PreLevel_Arm_Turn_2.jpg
.jpg
Graphics/PreLevel_Blink_1.png
.png
Graphics/PreLevel_Blink_2.png
.png
Graphics/PreLevel_Carriage_1.png
.png
Graphics/PreLevel_Carriage_2.png
.png
Graphics/PreLevel_Head_Turn.jpg
.jpg
Graphics/PreLevel_Paper_1.png
.png
Graphics/PreLevel_Paper_2.png
.png
Graphics/PreLevel_Smile_1.png
.png
Graphics/PreLevel_Smile_2.png
.png
Graphics/PreLevel_TypewriterFront.png
.png
Graphics/PreLevel_TypewriterWheels_1.png
.png
Graphics/PreLevel_TypewriterWheels_2.png
.png
Graphics/Register.jpg
.jpg
Graphics/Register_Buttons.jpg
.jpg
Graphics/Register_Buttons_Matte.png
.png
Graphics/Register_Buttons_ims.txt
Graphics/SD_Bonnie.jpg
.jpg
Graphics/SD_Bonnie_Matte.png
.png
Graphics/SD_Buttons.jpg
.jpg
Graphics/SD_Buttons_Matte.png
.png
Graphics/SD_Buttons_ims.txt
Graphics/SD_Notepad.jpg
.jpg
Graphics/SD_Notepad_Matte.png
.png
Graphics/SL_Blocker.png
.png
Graphics/SL_Qu.png
.png
Graphics/SL_SuperWildCard.png
.png
Graphics/SL_SuperWildCard_Outline.png
.png
Graphics/SL_WildCard.png
.png
Graphics/Setup.jpg
.jpg
Graphics/Setup_Blink.jpg
.jpg
Graphics/Setup_Blink_ims.txt
Graphics/Setup_Books.jpg
.jpg
Graphics/Setup_Books_1_Matte.png
.png
Graphics/Setup_Books_2_Matte.png
.png
Graphics/Setup_Books_3_Matte.png
.png
Graphics/Setup_Books_4_Matte.png
.png
Graphics/Setup_Books_5_Matte.png
.png
Graphics/Setup_Leaf.png
.png
Graphics/Setup_Leaf_ims.txt
Graphics/Setup_Sign.jpg
.jpg
Graphics/Setup_Sign_Matte.png
.png
Graphics/Setup_Sign_ims.txt
Graphics/Setup_Wave.jpg
.jpg
Graphics/Setup_Wave_ims.txt
Graphics/Story_1A.jpg
.jpg
Graphics/Story_1B.jpg
.jpg
Graphics/Story_1C.jpg
.jpg
Graphics/Story_2A.jpg
.jpg
Graphics/Story_Button_Down.png
.png
Graphics/Story_Button_Hover.png
.png
Graphics/Story_Button_Normal.png
.png
Graphics/Summary_Background.jpg
.jpg
Graphics/Summary_Matte.png
.png
Graphics/Summary_aliceinwonderland.jpg
.jpg
Graphics/Summary_diddlediddle.jpg
.jpg
Graphics/Summary_frogprince.jpg
.jpg
Graphics/Summary_gullivers_travels.jpg
.jpg
Graphics/Summary_haretortoise.jpg
.jpg
Graphics/Summary_littlemissmuffet.jpg
.jpg
Graphics/Summary_musiciansofbremen.jpg
.jpg
Graphics/Summary_princepauper.jpg
.jpg
Graphics/Summary_stonesoup.jpg
.jpg
Graphics/Summary_thelionandthemouse.jpg
.jpg
Graphics/Summary_thumbelina.jpg
.jpg
Graphics/Summary_uglyduckling.jpg
.jpg
Graphics/WindowIcon.png
.png
Graphics/aliceinwonderland_01.jpg
.jpg
Graphics/aliceinwonderland_02.jpg
.jpg
Graphics/aliceinwonderland_03.jpg
.jpg
Graphics/aliceinwonderland_04.jpg
.jpg
Graphics/aliceinwonderland_05.jpg
.jpg
Graphics/diddlediddle_01.jpg
.jpg
Graphics/diddlediddle_02.jpg
.jpg
Graphics/diddlediddle_03.jpg
.jpg
Graphics/diddlediddle_04.jpg
.jpg
Graphics/frogprince_01.jpg
.jpg
Graphics/frogprince_02.jpg
.jpg
Graphics/frogprince_03.jpg
.jpg
Graphics/frogprince_04.jpg
.jpg
Graphics/game_UI_01.png
.png
Graphics/game_UI_02.png
.png
Graphics/game_UI_button_background.png
.png
Graphics/game_UI_button_background_2.png
.png
Graphics/game_button_down.png
.png
Graphics/game_button_hover.png
.png
Graphics/game_button_menu_down.png
.png
Graphics/game_button_menu_hover.png
.png
Graphics/game_button_menu_normal.png
.png
Graphics/game_button_normal.png
.png
Graphics/game_button_outline.png
.png
Graphics/game_lock.png
.png
Graphics/game_lock_ims.txt
Graphics/game_tiles.png
.png
Graphics/game_tiles_ims.txt
Graphics/gullivers_travels_01.jpg
.jpg
Graphics/gullivers_travels_02.jpg
.jpg
Graphics/gullivers_travels_03.jpg
.jpg
Graphics/gullivers_travels_04.jpg
.jpg
Graphics/haretortoise_01.jpg
.jpg
Graphics/haretortoise_02.jpg
.jpg
Graphics/haretortoise_03.jpg
.jpg
Graphics/haretortoise_04.jpg
.jpg
Graphics/littlemissmuffet_01.jpg
.jpg
Graphics/littlemissmuffet_02.jpg
.jpg
Graphics/littlemissmuffet_03.jpg
.jpg
Graphics/littlemissmuffet_04.jpg
.jpg
Graphics/musiciansofbremen_01.jpg
.jpg
Graphics/musiciansofbremen_02.jpg
.jpg
Graphics/musiciansofbremen_03.jpg
.jpg
Graphics/musiciansofbremen_04.jpg
.jpg
Graphics/princepauper_01.jpg
.jpg
Graphics/princepauper_02.jpg
.jpg
Graphics/princepauper_03.jpg
.jpg
Graphics/princepauper_04.jpg
.jpg
Graphics/stonesoup_01.jpg
.jpg
Graphics/stonesoup_02.jpg
.jpg
Graphics/stonesoup_03.jpg
.jpg
Graphics/stonesoup_04.jpg
.jpg
Graphics/thelionandthemouse_01.jpg
.jpg
Graphics/thelionandthemouse_02.jpg
.jpg
Graphics/thelionandthemouse_03.jpg
.jpg
Graphics/thelionandthemouse_04.jpg
.jpg
Graphics/thumbelina_01.jpg
.jpg
Graphics/thumbelina_02.jpg
.jpg
Graphics/thumbelina_03.jpg
.jpg
Graphics/thumbelina_04.jpg
.jpg
Graphics/thumbelina_05.jpg
.jpg
Graphics/timer.png
.png
Graphics/timer_ims.txt
Graphics/uglyduckling_01.jpg
.jpg
Graphics/uglyduckling_02.jpg
.jpg
Graphics/uglyduckling_03.jpg
.jpg
Graphics/uglyduckling_04.jpg
.jpg
SDL.dll
.dll windows:4 windows x86 arch:x86

73640ce0e4c080325c8e5c5e5311a16e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

timeKillEvent
timeEndPeriod
timeSetEvent
timeBeginPeriod
timeGetTime
mciSendCommandA
mciGetErrorStringA
joyGetNumDevs
joyGetPosEx
joyGetDevCapsA
waveOutOpen
waveOutPrepareHeader
waveOutClose
waveOutUnprepareHeader
waveOutWrite
waveOutGetErrorTextA

kernel32

LoadLibraryA
GetDriveTypeA
GetModuleHandleA
CreateMutexA
ReleaseMutex
CreateThread
GetCurrentThreadId
TerminateThread
QueryPerformanceCounter
Sleep
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
VirtualQuery
InterlockedExchange
InitializeCriticalSection
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringW
GetCPInfo
MultiByteToWideChar
CompareStringA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetVersionExA
ReadFile
SetFilePointer
RtlUnwind
UnhandledExceptionFilter
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
WideCharToMultiByte
GetCommandLineA
SetConsoleCtrlHandler
GetLastError
GetCurrentProcess
TerminateProcess
ExitProcess
LeaveCriticalSection
EnterCriticalSection
HeapReAlloc
HeapFree
HeapAlloc
GetProcAddress
FreeLibrary
CreateSemaphoreA
CloseHandle
WaitForSingleObject
GetCurrentThread
SetThreadPriority
ReleaseSemaphore
VirtualProtect
GetSystemInfo
FlushFileBuffers
HeapSize
SetStdHandle
CreateFileA
LCMapStringA
LCMapStringW
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
RaiseException
SetEndOfFile
WriteFile

user32

SetWindowTextA
CreateIconFromResourceEx
SetClassLongA
CreateCursor
GetCursor
DestroyCursor
LoadImageA
RegisterClassA
BeginPaint
EndPaint
PostQuitMessage
GetWindowRect
GetMenu
AdjustWindowRect
ClientToScreen
SetCursor
SetCursorPos
SetFocus
SetCapture
ReleaseCapture
SetTimer
GetClientRect
MapWindowPoints
GetCursorPos
PtInRect
WindowFromPoint
KillTimer
PostMessageA
GetForegroundWindow
GetDesktopWindow
IsZoomed
AdjustWindowRectEx
GetSystemMetrics
SetWindowPos
SetForegroundWindow
EnumDisplaySettingsA
InvalidateRect
ChangeDisplaySettingsA
DestroyIcon
TranslateMessage
GetDC
ReleaseDC
GetKeyState
DefWindowProcA
CallWindowProcA
DestroyWindow
GetWindowLongA
SetWindowLongA
CreateWindowExA
ShowWindow
GetKeyboardState
ToAscii
PeekMessageA
DispatchMessageA
GetMessageA

gdi32

DescribePixelFormat
SwapBuffers
ChoosePixelFormat
SetPixelFormat
GetDeviceCaps
CreateDIBSection
SetDeviceGammaRamp
GetDeviceGammaRamp
RealizePalette
SetDIBColorTable
SelectPalette
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
CreateCompatibleBitmap
GetDIBits
GetSystemPaletteEntries
CreatePalette
SetPaletteEntries
DeleteObject

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Exports

Exports

SDL_AddTimer
SDL_AllocRW
SDL_AudioDriverName
SDL_AudioInit
SDL_AudioQuit
SDL_BuildAudioCVT
SDL_CDClose
SDL_CDEject
SDL_CDName
SDL_CDNumDrives
SDL_CDOpen
SDL_CDPause
SDL_CDPlay
SDL_CDPlayTracks
SDL_CDResume
SDL_CDStatus
SDL_CDStop
SDL_ClearError
SDL_CloseAudio
SDL_CondBroadcast
SDL_CondSignal
SDL_CondWait
SDL_CondWaitTimeout
SDL_ConvertAudio
SDL_ConvertSurface
SDL_CreateCond
SDL_CreateCursor
SDL_CreateMutex
SDL_CreateRGBSurface
SDL_CreateRGBSurfaceFrom
SDL_CreateSemaphore
SDL_CreateThread
SDL_CreateYUVOverlay
SDL_Delay
SDL_DestroyCond
SDL_DestroyMutex
SDL_DestroySemaphore
SDL_DisplayFormat
SDL_DisplayFormatAlpha
SDL_DisplayYUVOverlay
SDL_EnableKeyRepeat
SDL_EnableUNICODE
SDL_Error
SDL_EventState
SDL_FillRect
SDL_Flip
SDL_FreeCursor
SDL_FreeRW
SDL_FreeSurface
SDL_FreeWAV
SDL_FreeYUVOverlay
SDL_GL_GetAttribute
SDL_GL_GetProcAddress
SDL_GL_LoadLibrary
SDL_GL_Lock
SDL_GL_SetAttribute
SDL_GL_SwapBuffers
SDL_GL_Unlock
SDL_GL_UpdateRects
SDL_GetAppState
SDL_GetAudioStatus
SDL_GetClipRect
SDL_GetCursor
SDL_GetError
SDL_GetEventFilter
SDL_GetGammaRamp
SDL_GetKeyName
SDL_GetKeyState
SDL_GetModState
SDL_GetMouseState
SDL_GetRGB
SDL_GetRGBA
SDL_GetRelativeMouseState
SDL_GetThreadID
SDL_GetTicks
SDL_GetVideoInfo
SDL_GetVideoSurface
SDL_GetWMInfo
SDL_Has3DNow
SDL_Has3DNowExt
SDL_HasAltiVec
SDL_HasMMX
SDL_HasMMXExt
SDL_HasRDTSC
SDL_HasSSE
SDL_HasSSE2
SDL_Init
SDL_InitSubSystem
SDL_JoystickClose
SDL_JoystickEventState
SDL_JoystickGetAxis
SDL_JoystickGetBall
SDL_JoystickGetButton
SDL_JoystickGetHat
SDL_JoystickIndex
SDL_JoystickName
SDL_JoystickNumAxes
SDL_JoystickNumBalls
SDL_JoystickNumButtons
SDL_JoystickNumHats
SDL_JoystickOpen
SDL_JoystickOpened
SDL_JoystickUpdate
SDL_KillThread
SDL_Linked_Version
SDL_ListModes
SDL_LoadBMP_RW
SDL_LoadWAV_RW
SDL_LockAudio
SDL_LockSurface
SDL_LockYUVOverlay
SDL_LowerBlit
SDL_MapRGB
SDL_MapRGBA
SDL_MixAudio
SDL_NumJoysticks
SDL_OpenAudio
SDL_PauseAudio
SDL_PeepEvents
SDL_PollEvent
SDL_PumpEvents
SDL_PushEvent
SDL_Quit
SDL_QuitSubSystem
SDL_RWFromConstMem
SDL_RWFromFP
SDL_RWFromFile
SDL_RWFromMem
SDL_ReadBE16
SDL_ReadBE32
SDL_ReadBE64
SDL_ReadLE16
SDL_ReadLE32
SDL_ReadLE64
SDL_RegisterApp
SDL_RemoveTimer
SDL_SaveBMP_RW
SDL_SemPost
SDL_SemTryWait
SDL_SemValue
SDL_SemWait
SDL_SemWaitTimeout
SDL_SetAlpha
SDL_SetClipRect
SDL_SetColorKey
SDL_SetColors
SDL_SetCursor
SDL_SetError
SDL_SetEventFilter
SDL_SetGamma
SDL_SetGammaRamp
SDL_SetModState
SDL_SetModuleHandle
SDL_SetPalette
SDL_SetTimer
SDL_SetVideoMode
SDL_ShowCursor
SDL_SoftStretch
SDL_ThreadID
SDL_UnlockAudio
SDL_UnlockSurface
SDL_UnlockYUVOverlay
SDL_UpdateRect
SDL_UpdateRects
SDL_UpperBlit
SDL_VideoDriverName
SDL_VideoInit
SDL_VideoModeOK
SDL_VideoQuit
SDL_WM_GetCaption
SDL_WM_GrabInput
SDL_WM_IconifyWindow
SDL_WM_SetCaption
SDL_WM_SetIcon
SDL_WM_ToggleFullScreen
SDL_WaitEvent
SDL_WaitThread
SDL_WarpMouse
SDL_WasInit
SDL_WriteBE16
SDL_WriteBE32
SDL_WriteBE64
SDL_WriteLE16
SDL_WriteLE32
SDL_WriteLE64
SDL_mutexP
SDL_mutexV

Sections

.text
Size: 224KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SDL_image.dll
.dll windows:4 windows x86 arch:x86

c2e5c078b6d2a33ea6abcb472bef351c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

sdl

SDL_MapRGB
SDL_SetColorKey
SDL_ClearError
SDL_Error
SDL_ReadLE32
SDL_ReadLE16
SDL_GetError
SDL_CreateRGBSurface
SDL_RWFromFile
SDL_FreeSurface
SDL_SetError

jpeg

ord50
ord87
ord38
ord75
ord31
ord44
ord89
ord78
ord77

libpng13

ord61
ord56
ord99
ord81
ord75
ord150
ord118
ord17
ord76
ord122
ord39
ord8
ord12
ord108
ord7
ord136

msvcrt

strncmp
strncpy
sprintf
_setjmp3
toupper
free
malloc
_pctype
__mb_cur_max
_isctype
longjmp
_adjust_fdiv
_initterm
realloc
strtol
sscanf
strrchr

kernel32

DisableThreadLibraryCalls

Exports

Exports

IMG_InvertAlpha
IMG_Linked_Version
IMG_Load
IMG_LoadBMP_RW
IMG_LoadGIF_RW
IMG_LoadJPG_RW
IMG_LoadLBM_RW
IMG_LoadPCX_RW
IMG_LoadPNG_RW
IMG_LoadPNM_RW
IMG_LoadTGA_RW
IMG_LoadTIF_RW
IMG_LoadTyped_RW
IMG_LoadXCF_RW
IMG_LoadXPM_RW
IMG_Load_RW
IMG_ReadXPMFromArray
IMG_isBMP
IMG_isGIF
IMG_isJPG
IMG_isLBM
IMG_isPCX
IMG_isPNG
IMG_isPNM
IMG_isTIF
IMG_isXCF
IMG_isXPM

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SavedGames/General_Preferences.cfg
SavedGames/XiaZaiBa.GAM
Sound/AddPoint.ogg
Sound/Bell.ogg
Sound/Blocker_Fallout.ogg
Sound/Button2_Press.ogg
Sound/Button2_Release.ogg
Sound/Button_Press.ogg
Sound/Button_Release.ogg
Sound/Cancel.ogg
Sound/CashRegister.ogg
Sound/Checkbox_Press.ogg
Sound/Error.ogg
Sound/GameOver.ogg
Sound/Level_Up.ogg
Sound/Level_Up_Quick.ogg
Sound/Logo.ogg
Sound/PaperButton_Press.ogg
Sound/PaperButton_Release.ogg
Sound/Place_01.ogg
Sound/Place_02.ogg
Sound/Place_03.ogg
Sound/Scramble.ogg
Sound/Screen_Transition_01.ogg
Sound/Screen_Transition_02.ogg
Sound/Screen_Transition_03.ogg
Sound/Screen_Transition_04.ogg
Sound/Word_03.ogg
Sound/Word_04.ogg
Sound/Word_05.ogg
Sound/Word_06.ogg
Sound/music.oxm
Sound/type_01.ogg
Sound/type_02.ogg
Sound/type_03.ogg
Sound/type_space_01.ogg
Sound/typewriter_carriagereturn_01.ogg
data/Bonnie.pak
data/Dictionary.txt
data/Language.txt
data/Portal.cfg
fmod.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_FMUSIC_FreeSong@4
_FMUSIC_GetBPM@4
_FMUSIC_GetGlobalVolume@4
_FMUSIC_GetMasterVolume@4
_FMUSIC_GetName@4
_FMUSIC_GetNumChannels@4
_FMUSIC_GetNumInstruments@4
_FMUSIC_GetNumOrders@4
_FMUSIC_GetNumPatterns@4
_FMUSIC_GetNumSamples@4
_FMUSIC_GetOpenState@4
_FMUSIC_GetOrder@4
_FMUSIC_GetPattern@4
_FMUSIC_GetPatternLength@8
_FMUSIC_GetPaused@4
_FMUSIC_GetRealChannel@8
_FMUSIC_GetRow@4
_FMUSIC_GetSample@8
_FMUSIC_GetSpeed@4
_FMUSIC_GetTime@4
_FMUSIC_GetType@4
_FMUSIC_GetUserData@4
_FMUSIC_IsFinished@4
_FMUSIC_IsPlaying@4
_FMUSIC_LoadSong@4
_FMUSIC_LoadSongEx@24
_FMUSIC_OptimizeChannels@12
_FMUSIC_PlaySong@4
_FMUSIC_SetInstCallback@12
_FMUSIC_SetLooping@8
_FMUSIC_SetMasterSpeed@8
_FMUSIC_SetMasterVolume@8
_FMUSIC_SetOrder@8
_FMUSIC_SetOrderCallback@12
_FMUSIC_SetPanSeperation@8
_FMUSIC_SetPaused@8
_FMUSIC_SetReverb@4
_FMUSIC_SetRowCallback@12
_FMUSIC_SetSample@12
_FMUSIC_SetUserData@8
_FMUSIC_SetZxxCallback@8
_FMUSIC_StopAllSongs@0
_FMUSIC_StopSong@4
_FSOUND_3D_GetAttributes@12
_FSOUND_3D_GetMinMaxDistance@12
_FSOUND_3D_Listener_GetAttributes@32
_FSOUND_3D_Listener_SetAttributes@32
_FSOUND_3D_Listener_SetCurrent@8
_FSOUND_3D_SetAttributes@12
_FSOUND_3D_SetDistanceFactor@4
_FSOUND_3D_SetDopplerFactor@4
_FSOUND_3D_SetMinMaxDistance@12
_FSOUND_3D_SetRolloffFactor@4
_FSOUND_CD_Eject@4
_FSOUND_CD_GetNumTracks@4
_FSOUND_CD_GetPaused@4
_FSOUND_CD_GetTrack@4
_FSOUND_CD_GetTrackLength@8
_FSOUND_CD_GetTrackTime@4
_FSOUND_CD_GetVolume@4
_FSOUND_CD_OpenTray@8
_FSOUND_CD_Play@8
_FSOUND_CD_SetPaused@8
_FSOUND_CD_SetPlayMode@8
_FSOUND_CD_SetTrackTime@8
_FSOUND_CD_SetVolume@8
_FSOUND_CD_Stop@4
_FSOUND_Close@0
_FSOUND_DSP_ClearMixBuffer@0
_FSOUND_DSP_Create@12
_FSOUND_DSP_Free@4
_FSOUND_DSP_GetActive@4
_FSOUND_DSP_GetBufferLength@0
_FSOUND_DSP_GetBufferLengthTotal@0
_FSOUND_DSP_GetClearUnit@0
_FSOUND_DSP_GetClipAndCopyUnit@0
_FSOUND_DSP_GetFFTUnit@0
_FSOUND_DSP_GetMusicUnit@0
_FSOUND_DSP_GetPriority@4
_FSOUND_DSP_GetSFXUnit@0
_FSOUND_DSP_GetSpectrum@0
_FSOUND_DSP_MixBuffers@28
_FSOUND_DSP_SetActive@8
_FSOUND_DSP_SetPriority@8
_FSOUND_FX_Disable@4
_FSOUND_FX_Enable@8
_FSOUND_FX_SetChorus@32
_FSOUND_FX_SetCompressor@28
_FSOUND_FX_SetDistortion@24
_FSOUND_FX_SetEcho@24
_FSOUND_FX_SetFlanger@32
_FSOUND_FX_SetGargle@12
_FSOUND_FX_SetI3DL2Reverb@52
_FSOUND_FX_SetParamEQ@16
_FSOUND_FX_SetWavesReverb@20
_FSOUND_File_SetCallbacks@20
_FSOUND_GetAmplitude@4
_FSOUND_GetCPUUsage@0
_FSOUND_GetChannelsPlaying@0
_FSOUND_GetCurrentLevels@12
_FSOUND_GetCurrentPosition@4
_FSOUND_GetCurrentSample@4
_FSOUND_GetDriver@0
_FSOUND_GetDriverCaps@8
_FSOUND_GetDriverName@4
_FSOUND_GetError@0
_FSOUND_GetFrequency@4
_FSOUND_GetLoopMode@4
_FSOUND_GetMaxChannels@0
_FSOUND_GetMaxSamples@0
_FSOUND_GetMemoryStats@8
_FSOUND_GetMixer@0
_FSOUND_GetMute@4
_FSOUND_GetNumDrivers@0
_FSOUND_GetNumHWChannels@12
_FSOUND_GetNumHardwareChannels@0
_FSOUND_GetNumSubChannels@4
_FSOUND_GetOutput@0
_FSOUND_GetOutputHandle@0
_FSOUND_GetOutputRate@0
_FSOUND_GetPan@4
_FSOUND_GetPaused@4
_FSOUND_GetPriority@4
_FSOUND_GetReserved@4
_FSOUND_GetSFXMasterVolume@0
_FSOUND_GetSubChannel@8
_FSOUND_GetSurround@4
_FSOUND_GetVersion@0
_FSOUND_GetVolume@4
_FSOUND_Init@12
_FSOUND_IsPlaying@4
_FSOUND_PlaySound@8
_FSOUND_PlaySoundEx@16
_FSOUND_Record_GetDriver@0
_FSOUND_Record_GetDriverName@4
_FSOUND_Record_GetNumDrivers@0
_FSOUND_Record_GetPosition@0
_FSOUND_Record_SetDriver@4
_FSOUND_Record_StartSample@8
_FSOUND_Record_Stop@0
_FSOUND_Reverb_GetChannelProperties@8
_FSOUND_Reverb_GetProperties@4
_FSOUND_Reverb_SetChannelProperties@8
_FSOUND_Reverb_SetProperties@4
_FSOUND_Sample_Alloc@28
_FSOUND_Sample_Free@4
_FSOUND_Sample_Get@4
_FSOUND_Sample_GetDefaults@20
_FSOUND_Sample_GetDefaultsEx@32
_FSOUND_Sample_GetLength@4
_FSOUND_Sample_GetLoopPoints@12
_FSOUND_Sample_GetMinMaxDistance@12
_FSOUND_Sample_GetMode@4
_FSOUND_Sample_GetName@4
_FSOUND_Sample_Load@20
_FSOUND_Sample_Lock@28
_FSOUND_Sample_SetDefaults@20
_FSOUND_Sample_SetDefaultsEx@32
_FSOUND_Sample_SetLoopPoints@12
_FSOUND_Sample_SetMaxPlaybacks@8
_FSOUND_Sample_SetMinMaxDistance@12
_FSOUND_Sample_SetMode@8
_FSOUND_Sample_Unlock@20
_FSOUND_Sample_Upload@12
_FSOUND_SetBufferSize@4
_FSOUND_SetCurrentPosition@8
_FSOUND_SetDriver@4
_FSOUND_SetFrequency@8
_FSOUND_SetFrequencyEx@8
_FSOUND_SetHWND@4
_FSOUND_SetLoopMode@8
_FSOUND_SetMaxHardwareChannels@4
_FSOUND_SetMemorySystem@20
_FSOUND_SetMinHardwareChannels@4
_FSOUND_SetMixer@4
_FSOUND_SetMute@8
_FSOUND_SetOutput@4
_FSOUND_SetPan@8
_FSOUND_SetPanSeperation@4
_FSOUND_SetPaused@8
_FSOUND_SetPriority@8
_FSOUND_SetReserved@8
_FSOUND_SetSFXMasterVolume@4
_FSOUND_SetSpeakerMode@4
_FSOUND_SetSurround@8
_FSOUND_SetVolume@8
_FSOUND_SetVolumeAbsolute@8
_FSOUND_StopSound@4
_FSOUND_Stream_AddSyncPoint@12
_FSOUND_Stream_Close@4
_FSOUND_Stream_Create@20
_FSOUND_Stream_CreateDSP@16
_FSOUND_Stream_DeleteSyncPoint@4
_FSOUND_Stream_FindTagField@20
_FSOUND_Stream_GetLength@4
_FSOUND_Stream_GetLengthMs@4
_FSOUND_Stream_GetMode@4
_FSOUND_Stream_GetNumSubStreams@4
_FSOUND_Stream_GetNumSyncPoints@4
_FSOUND_Stream_GetNumTagFields@8
_FSOUND_Stream_GetOpenState@4
_FSOUND_Stream_GetPosition@4
_FSOUND_Stream_GetSample@4
_FSOUND_Stream_GetSyncPoint@8
_FSOUND_Stream_GetSyncPointInfo@8
_FSOUND_Stream_GetTagField@24
_FSOUND_Stream_GetTime@4
_FSOUND_Stream_Net_GetBufferProperties@12
_FSOUND_Stream_Net_GetLastServerStatus@0
_FSOUND_Stream_Net_GetStatus@20
_FSOUND_Stream_Net_SetBufferProperties@12
_FSOUND_Stream_Net_SetMetadataCallback@12
_FSOUND_Stream_Net_SetNetDataCallback@8
_FSOUND_Stream_Net_SetProxy@4
_FSOUND_Stream_Open@16
_FSOUND_Stream_Play@8
_FSOUND_Stream_PlayEx@16
_FSOUND_Stream_SetBufferSize@4
_FSOUND_Stream_SetEndCallback@12
_FSOUND_Stream_SetLoopCount@8
_FSOUND_Stream_SetLoopPoints@12
_FSOUND_Stream_SetMode@8
_FSOUND_Stream_SetPCM@8
_FSOUND_Stream_SetPosition@8
_FSOUND_Stream_SetSubStream@8
_FSOUND_Stream_SetSubStreamSentence@12
_FSOUND_Stream_SetSyncCallback@12
_FSOUND_Stream_SetTime@8
_FSOUND_Stream_Stop@4
_FSOUND_Update@0

Sections

UPX0
Size: - Virtual size: 436KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 146KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
jpeg.dll
.dll windows:4 windows x86 arch:x86

74e324eccfe70a297c0ff15f8230baf4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_iob
exit
ferror
fflush
fprintf
fread
free
fwrite
getenv
malloc
memcpy
memset
sprintf
sscanf

Exports

Exports

jcopy_block_row
jcopy_sample_rows
jdiv_round_up
jinit_1pass_quantizer
jinit_2pass_quantizer
jinit_c_coef_controller
jinit_c_main_controller
jinit_c_master_control
jinit_c_prep_controller
jinit_color_converter
jinit_color_deconverter
jinit_compress_master
jinit_d_coef_controller
jinit_d_main_controller
jinit_d_post_controller
jinit_downsampler
jinit_forward_dct
jinit_huff_decoder
jinit_huff_encoder
jinit_input_controller
jinit_inverse_dct
jinit_marker_reader
jinit_marker_writer
jinit_master_decompress
jinit_memory_mgr
jinit_merged_upsampler
jinit_phuff_decoder
jinit_phuff_encoder
jinit_upsampler
jpeg_CreateCompress
jpeg_CreateDecompress
jpeg_abort
jpeg_abort_compress
jpeg_abort_decompress
jpeg_add_quant_table
jpeg_alloc_huff_table
jpeg_alloc_quant_table
jpeg_calc_output_dimensions
jpeg_consume_input
jpeg_copy_critical_parameters
jpeg_default_colorspace
jpeg_destroy
jpeg_destroy_compress
jpeg_destroy_decompress
jpeg_fdct_float
jpeg_fdct_ifast
jpeg_fdct_islow
jpeg_fill_bit_buffer
jpeg_finish_compress
jpeg_finish_decompress
jpeg_finish_output
jpeg_free_large
jpeg_free_small
jpeg_gen_optimal_table
jpeg_get_large
jpeg_get_small
jpeg_has_multiple_scans
jpeg_huff_decode
jpeg_idct_1x1
jpeg_idct_2x2
jpeg_idct_4x4
jpeg_idct_float
jpeg_idct_ifast
jpeg_idct_islow
jpeg_input_complete
jpeg_make_c_derived_tbl
jpeg_make_d_derived_tbl
jpeg_mem_available
jpeg_mem_init
jpeg_mem_term
jpeg_new_colormap
jpeg_open_backing_store
jpeg_quality_scaling
jpeg_read_coefficients
jpeg_read_header
jpeg_read_raw_data
jpeg_read_scanlines
jpeg_resync_to_restart
jpeg_save_markers
jpeg_set_colorspace
jpeg_set_defaults
jpeg_set_linear_quality
jpeg_set_marker_processor
jpeg_set_quality
jpeg_simple_progression
jpeg_start_compress
jpeg_start_decompress
jpeg_start_output
jpeg_std_error
jpeg_stdio_dest
jpeg_stdio_src
jpeg_suppress_tables
jpeg_write_coefficients
jpeg_write_m_byte
jpeg_write_m_header
jpeg_write_marker
jpeg_write_raw_data
jpeg_write_scanlines
jpeg_write_tables
jround_up
jzero_far

Sections

.text
Size: 123KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stab
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stabstr
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libpng13.dll
.dll windows:4 windows x86 arch:x86

c44d1e29f03195f89662f06d6bd14fb5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

zlib1

deflateReset
deflateInit2_
deflateEnd
deflate
inflateEnd
inflateInit_
inflate
inflateReset
crc32

msvcrt

_adjust_fdiv
_initterm
gmtime
fflush
fwrite
sprintf
strncpy
longjmp
malloc
free
abort
_setjmp3
fread
_ftol
_CIpow
strtod

kernel32

DisableThreadLibraryCalls

Exports

Exports

png_access_version_number
png_build_grayscale_palette
png_check_sig
png_chunk_error
png_chunk_warning
png_convert_from_struct_tm
png_convert_from_time_t
png_convert_to_rfc1123
png_create_info_struct
png_create_read_struct
png_create_read_struct_2
png_create_write_struct
png_create_write_struct_2
png_data_freer
png_destroy_info_struct
png_destroy_read_struct
png_destroy_struct
png_destroy_struct_2
png_destroy_write_struct
png_error
png_free
png_free_data
png_free_default
png_get_IHDR
png_get_PLTE
png_get_asm_flagmask
png_get_asm_flags
png_get_bKGD
png_get_bit_depth
png_get_cHRM
png_get_cHRM_fixed
png_get_channels
png_get_color_type
png_get_compression_buffer_size
png_get_compression_type
png_get_copyright
png_get_error_ptr
png_get_filter_type
png_get_gAMA
png_get_gAMA_fixed
png_get_hIST
png_get_header_ver
png_get_header_version
png_get_iCCP
png_get_image_height
png_get_image_width
png_get_interlace_type
png_get_io_ptr
png_get_libpng_ver
png_get_mmx_bitdepth_threshold
png_get_mmx_flagmask
png_get_mmx_rowbytes_threshold
png_get_oFFs
png_get_pCAL
png_get_pHYs
png_get_pixel_aspect_ratio
png_get_pixels_per_meter
png_get_progressive_ptr
png_get_rgb_to_gray_status
png_get_rowbytes
png_get_rows
png_get_sBIT
png_get_sCAL
png_get_sPLT
png_get_sRGB
png_get_signature
png_get_tIME
png_get_tRNS
png_get_text
png_get_unknown_chunks
png_get_user_chunk_ptr
png_get_user_height_max
png_get_user_transform_ptr
png_get_user_width_max
png_get_valid
png_get_x_offset_microns
png_get_x_offset_pixels
png_get_x_pixels_per_meter
png_get_y_offset_microns
png_get_y_offset_pixels
png_get_y_pixels_per_meter
png_handle_as_unknown
png_info_init
png_info_init_3
png_init_io
png_init_mmx_flags
png_malloc
png_malloc_default
png_malloc_warn
png_memcpy_check
png_memset_check
png_mmx_support
png_permit_empty_plte
png_permit_mng_features
png_process_data
png_progressive_combine_row
png_read_end
png_read_image
png_read_info
png_read_init
png_read_init_2
png_read_init_3
png_read_png
png_read_row
png_read_rows
png_read_update_info
png_reset_zstream
png_set_IHDR
png_set_PLTE
png_set_add_alpha
png_set_asm_flags
png_set_bKGD
png_set_background
png_set_bgr
png_set_cHRM
png_set_cHRM_fixed
png_set_compression_buffer_size
png_set_compression_level
png_set_compression_mem_level
png_set_compression_method
png_set_compression_strategy
png_set_compression_window_bits
png_set_crc_action
png_set_dither
png_set_error_fn
png_set_expand
png_set_filler
png_set_filter
png_set_filter_heuristics
png_set_flush
png_set_gAMA
png_set_gAMA_fixed
png_set_gamma
png_set_gray_1_2_4_to_8
png_set_gray_to_rgb
png_set_hIST
png_set_iCCP
png_set_interlace_handling
png_set_invalid
png_set_invert_alpha
png_set_invert_mono
png_set_keep_unknown_chunks
png_set_oFFs
png_set_pCAL
png_set_pHYs
png_set_packing
png_set_packswap
png_set_palette_to_rgb
png_set_progressive_read_fn
png_set_read_fn
png_set_read_status_fn
png_set_read_user_chunk_fn
png_set_read_user_transform_fn
png_set_rgb_to_gray
png_set_rgb_to_gray_fixed
png_set_rows
png_set_sBIT
png_set_sCAL
png_set_sPLT
png_set_sRGB
png_set_sRGB_gAMA_and_cHRM
png_set_shift
png_set_sig_bytes
png_set_strip_16
png_set_strip_alpha
png_set_strip_error_numbers
png_set_swap
png_set_swap_alpha
png_set_tIME
png_set_tRNS
png_set_tRNS_to_alpha
png_set_text
png_set_unknown_chunk_location
png_set_unknown_chunks
png_set_user_limits
png_set_user_transform_info
png_set_write_fn
png_set_write_status_fn
png_set_write_user_transform_fn
png_sig_cmp
png_start_read_image
png_warning
png_write_chunk
png_write_chunk_data
png_write_chunk_end
png_write_chunk_start
png_write_end
png_write_flush
png_write_image
png_write_info
png_write_info_before_PLTE
png_write_init
png_write_init_2
png_write_init_3
png_write_png
png_write_row
png_write_rows

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
license.txt
properties/partner.xml
properties/partner.xml.sig
readme.html
.html
uninst.exe
.exe windows:4 windows x86 arch:x86

1c042238f43557c055fca8642de8a074

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
MulDiv
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetAsyncKeyState
IsDlgButtonChecked
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
RegisterClassA
OpenClipboard
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
wvsprintfA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
ShowWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
EmptyClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
SetForegroundWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
zlib1.dll
.dll windows:4 windows x86 arch:x86

2d3ee679b3fa7146dcc780f76415ad2e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_errno
fclose
free
_vsnprintf
fflush
fseek
fputc
malloc
clearerr
fread
fprintf
_fdopen
fopen
sprintf
_initterm
_adjust_fdiv
ftell
fwrite

kernel32

DisableThreadLibraryCalls

Exports

Exports

adler32
compress
compress2
compressBound
crc32
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePrime
deflateReset
deflateSetDictionary
get_crc_table
gzclearerr
gzclose
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzungetc
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCopy
inflateEnd
inflateInit2_
inflateInit_
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c042238f43557c055fca8642de8a074

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 3KB - Virtual size: 112KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 139KB - Virtual size: 138KB

135de77644e2add2fd9dd8176740e7e0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

Exports

Exports

Sections

.text Size: 1024B - Virtual size: 992B

.rdata Size: 1024B - Virtual size: 839B

.data Size: 512B - Virtual size: 336B

.reloc Size: 512B - Virtual size: 220B

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1KB - Virtual size: 1KB

f8c5b595548b7104775e97bca43caf5b

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5Certificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2Certificate

Extended Key Usages

Key Usages

3c:61:df:38:d5:bb:38:36:a8:b4:4b:98:5c:50:44:79Certificate

Extended Key Usages

Key Usages

Signer

Headers

File Characteristics

PDB Paths

Imports

fmod

sdl

sdl_image

kernel32

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 3KB - Virtual size: 112KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 139KB - Virtual size: 138KB

.text
Size: 1024B - Virtual size: 992B

.rdata
Size: 1024B - Virtual size: 839B

.data
Size: 512B - Virtual size: 336B

.reloc
Size: 512B - Virtual size: 220B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1KB - Virtual size: 1KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

3c:61:df:38:d5:bb:38:36:a8:b4:4b:98:5c:50:44:79
Certificate

.text
Size: 344KB - Virtual size: 340KB

.rdata
Size: 60KB - Virtual size: 56KB

.data
Size: 64KB - Virtual size: 116KB

.rsrc
Size: 164KB - Virtual size: 163KB

.text
Size: 224KB - Virtual size: 220KB

.rdata
Size: 48KB - Virtual size: 47KB

.data
Size: 8KB - Virtual size: 69KB

.rsrc
Size: 4KB - Virtual size: 792B

.reloc
Size: 16KB - Virtual size: 12KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 67KB

.rsrc
Size: 4KB - Virtual size: 824B

.reloc
Size: 4KB - Virtual size: 1KB

UPX0
Size: - Virtual size: 436KB

UPX1
Size: 146KB - Virtual size: 148KB

.rsrc
Size: 10KB - Virtual size: 12KB

.text
Size: 123KB - Virtual size: 123KB

.data
Size: 512B - Virtual size: 24B

.edata
Size: 3KB - Virtual size: 2KB

.idata
Size: 512B - Virtual size: 388B

.reloc
Size: 1KB - Virtual size: 1KB

.stab
Size: 1KB - Virtual size: 1KB

.stabstr
Size: 5KB - Virtual size: 4KB