ZHMModSDK-Debug[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

ZHMModSDK-Debug.zip
Size

30.9MB
MD5

0958db8bc23ef950cd86d0acd2cbe74d
SHA1

bf714a4f709060d740b1e6dc99108bffa3942583
SHA256

89ab905ec6ff71dad5cb54e0ae359f611d2d61a4acb1eba9cb5119f3232b35bf
SHA512

1b2f9a71610caeae83f3ca98a48f709d6a232fc420fa9f4ebf69592e1d7b989948240f752d19f85f37f57601d9054410a5a8fb8dac1fab4456ce07dff33fe080
SSDEEP

786432:OjPzcR/Sw4kDPjUK+uoQt7hDTaMa3+41u7mxvfLjaaJpI+3ju6XXB:OjPzeS92PRbo+hDOvO4hl12+31

Score

3^/10

Malware Config

Signatures

Embeds OpenSSL 1 IoCs

Embeds OpenSSL, may be used to circumvent TLS interception.

resource	yara_rule
static1/unpack001/mods/Hitmen.dll	embeds_openssl

Unsigned PE 17 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ResourceLib_HM3.dll
unpack001/ZHMModSDK.dll
unpack001/dinput8.dll
unpack001/mods/AdvancedRating.dll
unpack001/mods/CertPinBypass.dll
unpack001/mods/Clumsy.dll
unpack001/mods/DebugCheckKeyEntityEnabler.dll
unpack001/mods/DebugMod.dll
unpack001/mods/DiscordRichPresence.dll
unpack001/mods/Editor.dll
unpack001/mods/FreeCam.dll
unpack001/mods/Hitmen.dll
unpack001/mods/MaxPatchLevel.dll
unpack001/mods/NoPause.dll
unpack001/mods/Noclip.dll
unpack001/mods/SkipIntro.dll
unpack001/mods/WakingUpNpcs.dll

Files

ZHMModSDK-Debug.zip
.zip
LICENSE
ResourceLib_HM3.dll
.dll windows:6 windows x64 arch:x64

3f0724b64ccc814ddacead8403923c8e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\ResourceLib_HM3.pdb

Imports

kernel32

ReleaseSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockExclusive
AcquireSRWLockShared
TryAcquireSRWLockExclusive
TryAcquireSRWLockShared
Sleep
FormatMessageA
WideCharToMultiByte
LocalFree
GetLocaleInfoEx
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetFileAttributesW
GetFileAttributesExW
GetFileInformationByHandle
GetFinalPathNameByHandleW
GetFullPathNameW
SetFileAttributesW
SetFileInformationByHandle
SetFileTime
GetTempPathW
AreFileApisANSI
CloseHandle
GetLastError
DeviceIoControl
GetModuleHandleW
GetProcAddress
CreateDirectoryExW
CopyFileW
MoveFileExW
CreateHardLinkW
GetFileInformationByHandleEx
CreateSymbolicLinkW
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
CompareStringEx
GetCPInfo
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
RaiseException
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStdHandle
GetFileType
GetModuleHandleExW
WriteConsoleW
HeapSize
HeapValidate
GetSystemInfo
ReadFile
ExitProcess
GetCurrentThread
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapReAlloc
HeapQueryInformation
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
GetFileSizeEx
SetFilePointerEx
ReadConsoleW
GetTimeZoneInformation
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
SetEndOfFile
RtlUnwind

Exports

Exports

HM3_FreeJsonString
HM3_FreeSupportedResourceTypes
HM3_GameStructToJson
HM3_GetConverterForResource
HM3_GetGeneratorForResource
HM3_GetPropertyName
HM3_GetSupportedResourceTypes
HM3_IsResourceTypeSupported
HM3_JsonToGameStruct

Sections

.text
Size: 6.9MB - Virtual size: 6.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 500KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 777B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ZHMModSDK.dll
.dll windows:6 windows x64 arch:x64

162be017028b899b03b31aa1ae8ba970

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\ZHMModSDK\ZHMModSDK.pdb

Imports

ws2_32

htons
gethostname
gethostbyname
socket
setsockopt
sendto
recvfrom
getsockopt
getsockname
ioctlsocket
closesocket
bind
ntohs
inet_ntoa
inet_addr
htonl

winhttp

WinHttpOpen
WinHttpQueryHeaders
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpOpenRequest
WinHttpQueryDataAvailable
WinHttpReadData
WinHttpConnect
WinHttpCloseHandle

comctl32

ord345

kernel32

IsValidCodePage
ReadConsoleW
SetFilePointerEx
GetFileSizeEx
GetConsoleOutputCP
FlushFileBuffers
GetTimeZoneInformation
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
FlsFree
FlsSetValue
FlsGetValue
GetACP
GetOEMCP
GetStdHandle
GetCurrentProcessId
AllocConsole
FreeConsole
AttachConsole
SetConsoleOutputCP
WriteConsoleInputA
SetConsoleTitleA
InitializeSRWLock
ReleaseSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockExclusive
AcquireSRWLockShared
GetCurrentThreadId
GetLastError
GetProcAddress
LoadLibraryA
GetFileAttributesA
WriteFile
IsDebuggerPresent
OutputDebugStringA
Sleep
GetDynamicTimeZoneInformation
GetConsoleMode
WriteConsoleA
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
CreateThread
FreeLibrary
GetModuleFileNameA
WaitForSingleObject
VirtualProtect
VirtualFree
GetModuleHandleA
MultiByteToWideChar
DebugBreak
CloseHandle
GetCommandLineA
lstrlenA
CreateEventA
QueryPerformanceCounter
QueryPerformanceFrequency
SetThreadPriority
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
GetCurrentProcess
OpenThread
SuspendThread
ResumeThread
GetThreadContext
SetThreadContext
FlushInstructionCache
GetModuleHandleW
CreateToolhelp32Snapshot
Thread32First
Thread32Next
GetSystemInfo
VirtualAlloc
VirtualQuery
GetProcessHeap
CreateEventExW
ReadFile
CreateFile2
GetFileInformationByHandleEx
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
WideCharToMultiByte
RaiseException
LoadLibraryExA
WriteConsoleW
FlsAlloc
SetConsoleCtrlHandler
OutputDebugStringW
HeapQueryInformation
GetCurrentThread
ExitProcess
SetStdHandle
GetFileType
DuplicateHandle
FreeLibraryAndExitThread
ExitThread
HeapValidate
HeapSize
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
SetLastError
LoadLibraryExW
GetModuleFileNameW
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetEndOfFile
RtlUnwind
CreateEventW
WaitForSingleObjectEx
SwitchToThread
GetExitCodeThread
GetNativeSystemInfo
FormatMessageA
TryAcquireSRWLockExclusive
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetFileAttributesW
GetFileAttributesExW
GetFileInformationByHandle
GetFinalPathNameByHandleW
GetFullPathNameW
SetFileAttributesW
SetFileInformationByHandle
SetFileTime
GetTempPathW
AreFileApisANSI
DeviceIoControl
CreateDirectoryExW
CopyFileW
MoveFileExW
CreateHardLinkW
CreateSymbolicLinkW
LocalFree
GetLocaleInfoEx
TryAcquireSRWLockShared
RtlPcToFileHeader
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
InitOnceBeginInitialize
InitOnceComplete
FreeLibraryWhenCallbackReturns
CreateThreadpoolWork
SubmitThreadpoolWork
CloseThreadpoolWork
GetModuleHandleExW
RtlCaptureStackBackTrace
IsProcessorFeaturePresent
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
EncodePointer
DecodePointer
LCMapStringEx
InitOnceExecuteOnce
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetStringTypeW
CompareStringEx
GetCPInfo
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
InitializeSListHead
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList

user32

EmptyClipboard
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
ScreenToClient
GetCursorPos
MapVirtualKeyA
ReleaseCapture
SetCapture
GetCapture
GetKeyState
IsChild
DefWindowProcW
GetClientRect
MessageBoxA
GetForegroundWindow

shell32

ShellExecuteA

d3dcompiler_47

D3DCompile

imm32

ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionWindow
ImmGetContext

Exports

Exports

??1ZString@@QEAA@XZ
??4Events@@QEAAAEAV0@$$QEAV0@@Z
??4Events@@QEAAAEAV0@AEBV0@@Z
??4Functions@@QEAAAEAV0@$$QEAV0@@Z
??4Functions@@QEAAAEAV0@AEBV0@@Z
??4Globals@@QEAAAEAV0@$$QEAV0@@Z
??4Globals@@QEAAAEAV0@AEBV0@@Z
??4Hooks@@QEAAAEAV0@$$QEAV0@@Z
??4Hooks@@QEAAAEAV0@AEBV0@@Z
?ActorManager@Globals@@2PEAVZActorManager@@EA
?Allocate@ZString@@AEAAXPEBD_K@Z
?ApplicationEngineWin32@Globals@@2PEAPEAVZApplicationEngineWin32@@EA
?BehaviorService@Globals@@2PEAVZBehaviorService@@EA
?CameraManager@Globals@@2PEAVZCameraManager@@EA
?Check_SSL_Cert@Hooks@@2PEAV?$Hook@$$A6A_NPEAX0@Z@@EA
?CollisionManager@Globals@@2PEAPEAVZCollisionManager@@EA
?ContentKitManager@Globals@@2PEAVZContentKitManager@@EA
?CreateDXGIFactory1@Hooks@@2PEAV?$Hook@$$A6AJAEBU_GUID@@PEAPEAX@Z@@EA
?D3D12CreateDevice@Hooks@@2PEAV?$Hook@$$A6AJPEAUIUnknown@@W4D3D_FEATURE_LEVEL@@AEBU_GUID@@PEAPEAX@Z@@EA
?EOS_Platform_Create@Hooks@@2PEAV?$Hook@$$A6APEAUEOS_PlatformHandle@@PEAUEOS_Platform_Options@@@Z@@EA
?EngineMode@Globals@@2PEAPEAVIEngineMode@@EA
?Engine_Init@Hooks@@2PEAV?$Hook@$$A6A_NPEAX0@Z@@EA
?EntityManager@Globals@@2PEAVZEntityManager@@EA
?GameContext@Globals@@2PEAVZGameContext@@EA
?GameLoopManager@Globals@@2PEAVZGameLoopManager@@EA
?GameMode@Globals@@2PEAPEAVIGameMode@@EA
?GameStatsManager@Globals@@2PEAVZGameStatsManager@@EA
?GameTimeManager@Globals@@2PEAPEAVZGameTimeManager@@EA
?GameUIManager@Globals@@2PEAVZGameUIManager@@EA
?GetApplicationOptionBool@Hooks@@2PEAV?$Hook@$$A6A_NAEBVZString@@_N@Z@@EA
?GetCurrentCamera@Functions@@2PEAV?$EngineFunction@$$A6APEAVZCameraEntity@@XZ@@EA
?GetLoggers@@YA?AULoggerList@@XZ
?HM5ActionManager@Globals@@2PEAVZHM5ActionManager@@EA
?Hitman5Module@Globals@@2PEAVZHitman5Module@@EA
?Http_WinHttpCallback@Hooks@@2PEAV?$Hook@$$A6AXPEAX00H0H@Z@@EA
?InputActionManager@Globals@@2PEAVZInputActionManager@@EA
?InputActionManager_BindMem@Globals@@2PEAHEA
?InputActionManager_Seq@Globals@@2PEAHEA
?InputManager@Globals@@2PEAVZHM5InputManager@@EA
?MemoryManager@Globals@@2PEAPEAVZMemoryManager@@EA
?NextActorId@Globals@@2PEAGEA
?OnConsoleCommand@Events@@2PEAV?$EventDispatcher@X@@EA
?PlayerRegistry@Globals@@2PEAVZPlayerRegistry@@EA
?PrimitiveBufferData@Globals@@2PEAVSPrimitiveBufferData@@EA
?RenderManager@Globals@@2PEAVZRenderManager@@EA
?ResourceContainer@Globals@@2PEAPEAVZResourceContainer@@EA
?ResourceManager@Globals@@2PEAVZResourceManager@@EA
?SDK@@YAPEAVIModSDK@@XZ
?Selections@Globals@@2PEAV?$TArray@V?$TEntityRef@VZSelectionForFreeCameraEditorStyleEntity@@@@@@EA
?SetPropertyValue@Hooks@@2PEAV?$Hook@$$A6A_NVZEntityRef@@IAEBVZObjectRef@@_N@Z@@EA
?SignalInputPin@Hooks@@2PEAV?$Hook@$$A6A_NVZEntityRef@@IAEBVZObjectRef@@@Z@@EA
?SignalOutputPin@Hooks@@2PEAV?$Hook@$$A6A_NVZEntityRef@@IAEBVZObjectRef@@@Z@@EA
?TypeRegistry@Globals@@2PEAPEAVZTypeRegistry@@EA
?ZAchievementManagerSimple_OnEventReceived@Hooks@@2PEAV?$Hook@$$A6AXPEAVZAchievementManagerSimple@@AEBVSOnlineEvent@@@Z@@EA
?ZAchievementManagerSimple_OnEventSent@Hooks@@2PEAV?$Hook@$$A6AXPEAVZAchievementManagerSimple@@IAEBVZDynamicObject@@@Z@@EA
?ZActor_KillActor@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZActor@@V?$TEntityRef@VIItem@@@@V?$TEntityRef@VZSetpieceEntity@@@@W4EDamageEvent@@W4EDeathBehavior@@@Z@@EA
?ZActor_OnOutfitChanged@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZActor@@@Z@@EA
?ZActor_ReviveActor@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZActor@@@Z@@EA
?ZActor_SetOutfit@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZActor@@V?$TEntityRef@VZGlobalOutfitKit@@@@HH_N@Z@@EA
?ZActor_ZActor@Hooks@@2PEAV?$Hook@$$A6AXPEAVZActor@@PEAVZComponentCreateInfo@@@Z@@EA
?ZApplicationEngineWin32_MainWindowProc@Hooks@@2PEAV?$Hook@$$A6A_JPEAVZApplicationEngineWin32@@PEAUHWND__@@I_K_J@Z@@EA
?ZApplicationEngineWin32_OnDebugInfo@Hooks@@2PEAV?$Hook@$$A6AXPEAVZApplicationEngineWin32@@AEBVZString@@1@Z@@EA
?ZApplicationEngineWin32_OnMainWindowActivated@Hooks@@2PEAV?$Hook@$$A6AXPEAVZApplicationEngineWin32@@_N@Z@@EA
?ZCameraManager_GetActiveRenderDestinationEntity@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VIRenderDestinationEntity@@@@PEAVZCameraManager@@PEAV1@@Z@@EA
?ZCharacterSubcontrollerInventory_AddDynamicItemToInventory@Functions@@2PEAV?$EngineFunction@$$A6A_KPEAVZCharacterSubcontrollerInventory@@AEBVZRepositoryID@@AEBVZString@@PEAXI@Z@@EA
?ZDynamicObject_ToString@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZDynamicObject@@PEAVZString@@@Z@@EA
?ZDynamicPageController_Expand@Hooks@@2PEAV?$Hook@$$A6AXPEAVZDynamicPageController@@AEAVZDynamicObject@@PEAX22@Z@@EA
?ZDynamicPageController_HandleActionObject2@Hooks@@2PEAV?$Hook@$$A6AXPEAVZDynamicPageController@@AEAVZDynamicObject@@PEAX@Z@@EA
?ZEngineAppCommon_CreateFreeCamera@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZEngineAppCommon@@@Z@@EA
?ZEntityManager_ActivateEntity@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntityManager@@PEAVZEntityRef@@PEAX@Z@@EA
?ZEntityManager_DeleteEntities@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntityManager@@AEBV?$TFixedArray@VZEntityRef@@@@AEAV?$THashMap@VZRuntimeResourceID@@VZEntityRef@@U?$TDefaultHashMapPolicy@VZRuntimeResourceID@@@@@@@Z@@EA
?ZEntityManager_NewEntity@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZEntityManager@@AEAVZEntityRef@@AEBVZString@@PEAVIEntityFactory@@AEBV2@PEAX_J@Z@@EA
?ZEntitySceneContext_ClearScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@_N@Z@@EA
?ZEntitySceneContext_LoadScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@AEAVZSceneData@@@Z@@EA
?ZGameLoopManager_ReleasePause@Hooks@@2PEAV?$Hook@$$A6AXPEAVZGameLoopManager@@AEBVZString@@@Z@@EA
?ZGameStatsManager_SendAISignals01@Hooks@@2PEAV?$Hook@$$A6AXPEAVZGameStatsManager@@@Z@@EA
?ZGameStatsManager_SendAISignals02@Hooks@@2PEAV?$Hook@$$A6AXPEAVZGameStatsManager@@@Z@@EA
?ZGameUIManagerEntity_TryOpenMenu@Hooks@@2PEAV?$Hook@$$A6A_NPEAVZGameUIManagerEntity@@W4EGameUIMenu@@_N@Z@@EA
?ZHM5Animator_ActivateRagdollToAnimationBlend@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHM5Animator@@PEAM@Z@@EA
?ZHM5BaseCharacter_ActivatePoweredRagdoll@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHM5BaseCharacter@@M_N1M1@Z@@EA
?ZHM5BaseCharacter_ActivateRagdoll@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHM5BaseCharacter@@_N@Z@@EA
?ZHM5BaseCharacter_DeactivateRagdoll@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHM5BaseCharacter@@@Z@@EA
?ZHM5BaseCharacter_SendRequestToChildNetworks@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHM5BaseCharacter@@AEBVZString@@@Z@@EA
?ZHM5InputManager_GetInputControlForLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAVZHM5InputControl@@PEAVZHM5InputManager@@@Z@@EA
?ZHitman5_SetOutfit@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHitman5@@V?$TEntityRef@VZGlobalOutfitKit@@@@HH_N2@Z@@EA
?ZHttpResultDynamicObject_OnBufferReady@Hooks@@2PEAV?$Hook@$$A6AXPEAVZHttpResultDynamicObject@@@Z@@EA
?ZInputActionManager_ParseAsignment@Functions@@2PEAV?$EngineFunction@$$A6A_NPEAVZInputActionManager@@PEAVZInputTokenStream@@@Z@@EA
?ZInputAction_Analog@Functions@@2PEAV?$EngineFunction@$$A6ANPEAVZInputAction@@H@Z@@EA
?ZInputAction_Analog@Hooks@@2PEAV?$Hook@$$A6ANPEAVZInputAction@@H@Z@@EA
?ZInputAction_Digital@Functions@@2PEAV?$EngineFunction@$$A6A_NPEAVZInputAction@@H@Z@@EA
?ZInputAction_Digital@Hooks@@2PEAV?$Hook@$$A6A_NPEAVZInputAction@@H@Z@@EA
?ZInputTokenStream_ParseToken@Functions@@2PEAV?$EngineFunction@$$A6APEAVZTokenData@ZInputTokenStream@@PEAV2@PEAV12@@Z@@EA
?ZItemSpawner_RequestContentLoad@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZItemSpawner@@@Z@@EA
?ZKeyboardWindows_Update@Hooks@@2PEAV?$Hook@$$A6AXPEAVZKeyboardWindows@@_N@Z@@EA
?ZKnowledge_SetGameTension@Hooks@@2PEAV?$Hook@$$A6AXPEAVZKnowledge@@W4EGameTension@@@Z@@EA
?ZLevelManagerStateCondition_ZLevelManagerStateCondition@Hooks@@2PEAV?$Hook@$$A6APEAXPEAX0@Z@@EA
?ZLoadingScreenVideo_ActivateLoadingScreen@Hooks@@2PEAV?$Hook@$$A6APEAXPEAX0@Z@@EA
?ZLoadingScreenVideo_StartNewVideo@Hooks@@2PEAV?$Hook@$$A6A_NPEAX0@Z@@EA
?ZPackageManagerPackage_ZPackageManagerPackage@Hooks@@2PEAV?$Hook@$$A6APEAXPEAVZPackageManagerPackage@@PEAXAEBVZString@@HH@Z@@EA
?ZPlayerRegistry_GetLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VZHitman5@@@@PEAVZPlayerRegistry@@PEAV1@@Z@@EA
?ZPlayerRegistry_GetLocalPlayer@Hooks@@2PEAV?$Hook@$$A6APEAV?$TEntityRef@VZHitman5@@@@PEAVZPlayerRegistry@@PEAV1@@Z@@EA
?ZRagdollHandler_ApplyImpulseOnRagdoll@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZRagdollHandler@@AEBUfloat4@@1I_N@Z@@EA
?ZResourceContainer_GetResourceReferences@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZResourceContainer@@VZResourceIndex@@AEAV?$TArray@VZResourceIndex@@@@AEAV?$TArray@E@@@Z@@EA
?ZResourceManager_UninstallResource@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZResourceManager@@H@Z@@EA
?ZSpatialEntity_UnknownTransformUpdate@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@@Z@@EA
?ZSpatialEntity_WorldTransform@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@PEAUSMatrix@@@Z@@EA
?ZTemplateEntityBlueprintFactory_ZTemplateEntityBlueprintFactory@Hooks@@2PEAV?$Hook@$$A6APEAVZTemplateEntityBlueprintFactory@@PEAV1@PEAVSTemplateEntityBlueprint@@AEAVZResourcePending@@@Z@@EA
?ZTemplateEntityBlueprintFactory_vtbl@Globals@@2PEAXEA
?ZUpdateEventContainer_AddDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZUpdateEventContainer_RemoveDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
SDKVersion
Unload

Sections

.text
Size: 5.2MB - Virtual size: 5.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 319KB - Virtual size: 319KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 1024B - Virtual size: 825B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ZHMModSDK.pdb
dinput8.dll
.dll windows:6 windows x64 arch:x64

9f0c05c2ecf7a7ce0a6fbcd1db62dd65

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\DirectInputProxy\dinput8.pdb

Imports

kernel32

CloseHandle
SetEvent
ResetEvent
WaitForSingleObject
CreateEventA
OpenEventA
GetCurrentProcessId
GetCurrentThreadId
OpenThread
SuspendThread
ResumeThread
GetSystemDirectoryW
FreeLibrary
GetModuleFileNameW
GetProcAddress
LoadLibraryA
LoadLibraryW
CreateToolhelp32Snapshot
Thread32First
Thread32Next
ReadConsoleW
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetFileAttributesW
GetFileAttributesExW
GetFileInformationByHandle
GetFinalPathNameByHandleW
GetFullPathNameW
SetFileAttributesW
SetFileInformationByHandle
SetFileTime
GetTempPathW
AreFileApisANSI
GetLastError
DeviceIoControl
GetModuleHandleW
CreateDirectoryExW
CopyFileW
MoveFileExW
CreateHardLinkW
GetFileInformationByHandleEx
CreateSymbolicLinkW
MultiByteToWideChar
WideCharToMultiByte
LocalFree
FormatMessageA
GetLocaleInfoEx
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
WaitForSingleObjectEx
Sleep
SwitchToThread
GetExitCodeThread
GetNativeSystemInfo
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
QueryPerformanceCounter
QueryPerformanceFrequency
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
RaiseException
GetCurrentProcess
TerminateProcess
InitializeSListHead
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
LoadLibraryExW
SetLastError
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetCPInfo
HeapSize
HeapValidate
GetSystemInfo
ExitProcess
GetCurrentThread
GetStdHandle
GetFileType
WriteFile
OutputDebugStringW
WriteConsoleW
SetConsoleCtrlHandler
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetStringTypeW
HeapReAlloc
HeapQueryInformation
GetFileSizeEx
SetFilePointerEx
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
SetStdHandle
ReadFile
RtlUnwind

Exports

Exports

DirectInput8Create

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 243KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 777B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
licenses/7zip.txt
licenses/GameNetworkingSockets.txt
licenses/IconFontCppHeaders.txt
licenses/ZHMTools.txt
licenses/cista.txt
licenses/directx-dxc.txt
licenses/directx-headers.txt
licenses/directxmath.txt
licenses/directxtk12.txt
licenses/fmt.txt
licenses/imgui.txt
licenses/imguizmo.txt
licenses/libuv.txt
licenses/lz4.txt
licenses/mINI.txt
licenses/minhook.txt
licenses/neargye-semver.txt
licenses/openssl.txt
licenses/protobuf.txt
licenses/simdjson.txt
licenses/spdlog.txt
licenses/usockets.txt
licenses/uwebsockets.txt
licenses/vcpkg-cmake-config.txt
licenses/vcpkg-cmake-get-vars.txt
licenses/vcpkg-cmake.txt
licenses/winsock2.txt
licenses/zlib.txt
mods/AdvancedRating.dll
.dll windows:6 windows x64 arch:x64

bfa69dc662234a60f54bc8609ce9dfd7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\AdvancedRating\AdvancedRating.pdb

Imports

zhmmodsdk

??1ZString@@QEAA@XZ
?ZDynamicObject_ToString@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZDynamicObject@@PEAVZString@@@Z@@EA
?ZAchievementManagerSimple_OnEventSent@Hooks@@2PEAV?$Hook@$$A6AXPEAVZAchievementManagerSimple@@IAEBVZDynamicObject@@@Z@@EA
?ZGameStatsManager_SendAISignals02@Hooks@@2PEAV?$Hook@$$A6AXPEAVZGameStatsManager@@@Z@@EA
?ZGameStatsManager_SendAISignals01@Hooks@@2PEAV?$Hook@$$A6AXPEAVZGameStatsManager@@@Z@@EA
?GetLoggers@@YA?AULoggerList@@XZ
?SDK@@YAPEAVIModSDK@@XZ

kernel32

GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
InitializeSRWLock
ReleaseSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockExclusive
AcquireSRWLockShared
GetCurrentThreadId
WriteConsoleW
GlobalAlloc
FreeEnvironmentStringsW
GlobalLock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
ReadConsoleW
SetEnvironmentVariableW
CreateFileW
SetEndOfFile
GlobalUnlock
SetUnhandledExceptionFilter
QueryPerformanceCounter
QueryPerformanceFrequency
TryAcquireSRWLockExclusive
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SetFileInformationByHandle
GetTempPathW
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetModuleHandleW
GetProcAddress
GetFileInformationByHandleEx
CreateSymbolicLinkW
LocalFree
GetLocaleInfoEx
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
CompareStringEx
GetCPInfo
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
RtlUnwind
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetCurrentProcessId
InitializeSListHead
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
GetStdHandle
GetFileType
HeapSize
HeapValidate
GetSystemInfo
SetStdHandle
ReadFile
ExitProcess
GetCurrentThread
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
GetTimeZoneInformation
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
GetFileSizeEx
SetFilePointerEx
HeapReAlloc
HeapQueryInformation
CloseHandle

user32

GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
EmptyClipboard

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 840KB - Virtual size: 839KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/CertPinBypass.dll
.dll windows:6 windows x64 arch:x64

7eb96fc748cb2e299ad8be1538119b18

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\CertPinBypass\CertPinBypass.pdb

Imports

zhmmodsdk

?Check_SSL_Cert@Hooks@@2PEAV?$Hook@$$A6A_NPEAX0@Z@@EA
?SDK@@YAPEAVIModSDK@@XZ

kernel32

GlobalLock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
CreateFileW
GlobalUnlock
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GlobalAlloc
GetStringTypeW
SetEndOfFile
SetStdHandle
InitializeCriticalSectionAndSpinCount
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RaiseException
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
GetProcAddress
RtlUnwindEx
RtlPcToFileHeader
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
RtlUnwind
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStdHandle
GetFileType
GetModuleHandleExW
WriteConsoleW
ReadFile
HeapSize
HeapValidate
GetSystemInfo
ExitProcess
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
GetTempPathW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
CloseHandle
GetCurrentThread
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetFileSizeEx
HeapReAlloc
HeapQueryInformation
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo

user32

GetClipboardData
SetClipboardData
CloseClipboard
EmptyClipboard
OpenClipboard

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 609KB - Virtual size: 609KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/Clumsy.dll
.dll windows:6 windows x64 arch:x64

4e8ea7fc149ec50a53c9c8de468a9a66

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\Clumsy\Clumsy.pdb

Imports

zhmmodsdk

?GetLoggers@@YA?AULoggerList@@XZ
?SDK@@YAPEAVIModSDK@@XZ
?ZUpdateEventContainer_AddDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZEntitySceneContext_ClearScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@_N@Z@@EA
?ZUpdateEventContainer_RemoveDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZRagdollHandler_ApplyImpulseOnRagdoll@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZRagdollHandler@@AEBUfloat4@@1I_N@Z@@EA
?ZHM5BaseCharacter_ActivatePoweredRagdoll@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHM5BaseCharacter@@M_N1M1@Z@@EA
?ZHM5Animator_ActivateRagdollToAnimationBlend@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHM5Animator@@PEAM@Z@@EA
?ZSpatialEntity_UnknownTransformUpdate@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@@Z@@EA
?ZPlayerRegistry_GetLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VZHitman5@@@@PEAVZPlayerRegistry@@PEAV1@@Z@@EA
?ZInputAction_Digital@Functions@@2PEAV?$EngineFunction@$$A6A_NPEAVZInputAction@@H@Z@@EA
?ZHM5BaseCharacter_DeactivateRagdoll@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHM5BaseCharacter@@@Z@@EA
?ZHM5BaseCharacter_ActivateRagdoll@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHM5BaseCharacter@@_N@Z@@EA
?PlayerRegistry@Globals@@2PEAVZPlayerRegistry@@EA
?NextActorId@Globals@@2PEAGEA
?ActorManager@Globals@@2PEAVZActorManager@@EA
?Hitman5Module@Globals@@2PEAVZHitman5Module@@EA
?TypeRegistry@Globals@@2PEAPEAVZTypeRegistry@@EA
?GameLoopManager@Globals@@2PEAVZGameLoopManager@@EA
?SignalInputPin@Hooks@@2PEAV?$Hook@$$A6A_NVZEntityRef@@IAEBVZObjectRef@@@Z@@EA
??1ZString@@QEAA@XZ

kernel32

GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
ReadConsoleW
HeapQueryInformation
HeapReAlloc
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
GetTimeZoneInformation
SetConsoleCtrlHandler
OutputDebugStringW
WriteFile
GetCurrentThreadId
OutputDebugStringA
CloseHandle
GetLastError
SetEvent
WaitForMultipleObjectsEx
CreateEventExW
GetProcAddress
LoadLibraryExW
ReadFile
CreateFile2
GetEnvironmentStringsW
CancelIoEx
GetOverlappedResultEx
VirtualAlloc
VirtualFree
WaitForSingleObjectEx
WriteConsoleW
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
GetCurrentThread
ExitProcess
SetStdHandle
GetSystemInfo
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetEndOfFile
GetFileInformationByHandleEx
CreateHardLinkW
LocalFree
FormatMessageA
GetLocaleInfoEx
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetFileAttributesW
GetFileAttributesExW
GetFileInformationByHandle
GetFinalPathNameByHandleW
GetFullPathNameW
SetFileAttributesW
SetFileInformationByHandle
SetFileTime
GetTempPathW
AreFileApisANSI
DeviceIoControl
GetModuleHandleW
CreateDirectoryExW
CopyFileW
MoveFileExW
RtlUnwind
CreateSymbolicLinkW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
InitOnceExecuteOnce
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
CompareStringEx
GetCPInfo
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetCurrentProcessId
InitializeSListHead
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
GetStdHandle
GetFileType
HeapSize
HeapValidate

user32

EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
GetClipboardData

ole32

CoTaskMemFree
PropVariantClear
CoCreateInstance

xaudio2_9

ord4
ord6
ord5
ord2

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 867KB - Virtual size: 866KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/DebugCheckKeyEntityEnabler.dll
.dll windows:6 windows x64 arch:x64

2ced65e346ef83623f73b8d719a28e45

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\DebugCheckKeyEntityEnabler\DebugCheckKeyEntityEnabler.pdb

Imports

zhmmodsdk

?GetLoggers@@YA?AULoggerList@@XZ
?SDK@@YAPEAVIModSDK@@XZ

kernel32

GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
WriteConsoleW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
GetCurrentThreadId
CreateFileW
SetEndOfFile
SetEnvironmentVariableW
IsDebuggerPresent
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SetFileInformationByHandle
GetTempPathW
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetModuleHandleW
GetProcAddress
GetFileInformationByHandleEx
CreateSymbolicLinkW
LocalFree
GetLocaleInfoEx
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
CompareStringEx
GetCPInfo
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
RtlUnwind
GetStartupInfoW
RaiseException
GetCurrentProcessId
InitializeSListHead
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
HeapSize
HeapValidate
GetSystemInfo
SetStdHandle
GetFileType
GetStdHandle
ReadFile
ExitProcess
GetCurrentThread
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
GetTimeZoneInformation
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
GetFileSizeEx
SetFilePointerEx
HeapReAlloc
HeapQueryInformation
CloseHandle
ReadConsoleW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage

user32

GetClipboardData
SetClipboardData
CloseClipboard
EmptyClipboard
OpenClipboard

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 773KB - Virtual size: 773KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/DebugMod.dll
.dll windows:6 windows x64 arch:x64

d077c251593dd729bed85978e0f6498e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\DebugMod\DebugMod.pdb

Imports

zhmmodsdk

?ZPlayerRegistry_GetLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VZHitman5@@@@PEAVZPlayerRegistry@@PEAV1@@Z@@EA
?Allocate@ZString@@AEAAXPEBD_K@Z
?SDK@@YAPEAVIModSDK@@XZ
?ZHM5InputManager_GetInputControlForLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAVZHM5InputControl@@PEAVZHM5InputManager@@@Z@@EA
?ZCameraManager_GetActiveRenderDestinationEntity@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VIRenderDestinationEntity@@@@PEAVZCameraManager@@PEAV1@@Z@@EA
?InputManager@Globals@@2PEAVZHM5InputManager@@EA
?CameraManager@Globals@@2PEAVZCameraManager@@EA
?HM5ActionManager@Globals@@2PEAVZHM5ActionManager@@EA
?ContentKitManager@Globals@@2PEAVZContentKitManager@@EA
?ZResourceContainer_GetResourceReferences@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZResourceContainer@@VZResourceIndex@@AEAV?$TArray@VZResourceIndex@@@@AEAV?$TArray@E@@@Z@@EA
?ZCharacterSubcontrollerInventory_AddDynamicItemToInventory@Functions@@2PEAV?$EngineFunction@$$A6A_KPEAVZCharacterSubcontrollerInventory@@AEBVZRepositoryID@@AEBVZString@@PEAXI@Z@@EA
?ZItemSpawner_RequestContentLoad@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZItemSpawner@@@Z@@EA
?ZActor_SetOutfit@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZActor@@V?$TEntityRef@VZGlobalOutfitKit@@@@HH_N@Z@@EA
?ZHitman5_SetOutfit@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZHitman5@@V?$TEntityRef@VZGlobalOutfitKit@@@@HH_N2@Z@@EA
?ZSpatialEntity_UnknownTransformUpdate@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@@Z@@EA
?ZEntityManager_NewEntity@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZEntityManager@@AEAVZEntityRef@@AEBVZString@@PEAVIEntityFactory@@AEBV2@PEAX_J@Z@@EA
?ZResourceManager_UninstallResource@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZResourceManager@@H@Z@@EA
??1ZString@@QEAA@XZ
?ZEngineAppCommon_CreateFreeCamera@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZEngineAppCommon@@@Z@@EA
?ZSpatialEntity_WorldTransform@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@PEAUSMatrix@@@Z@@EA
?GetCurrentCamera@Functions@@2PEAV?$EngineFunction@$$A6APEAVZCameraEntity@@XZ@@EA
?CollisionManager@Globals@@2PEAPEAVZCollisionManager@@EA
?ResourceManager@Globals@@2PEAVZResourceManager@@EA
?ResourceContainer@Globals@@2PEAPEAVZResourceContainer@@EA
?PlayerRegistry@Globals@@2PEAVZPlayerRegistry@@EA
?EntityManager@Globals@@2PEAVZEntityManager@@EA
?ApplicationEngineWin32@Globals@@2PEAPEAVZApplicationEngineWin32@@EA
?MemoryManager@Globals@@2PEAPEAVZMemoryManager@@EA
?NextActorId@Globals@@2PEAGEA
?ActorManager@Globals@@2PEAVZActorManager@@EA
?Hitman5Module@Globals@@2PEAVZHitman5Module@@EA
?TypeRegistry@Globals@@2PEAPEAVZTypeRegistry@@EA
?GameLoopManager@Globals@@2PEAVZGameLoopManager@@EA
?SetPropertyValue@Hooks@@2PEAV?$Hook@$$A6A_NVZEntityRef@@IAEBVZObjectRef@@_N@Z@@EA
?ZUpdateEventContainer_RemoveDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZUpdateEventContainer_AddDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZEntitySceneContext_ClearScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@_N@Z@@EA
?GetLoggers@@YA?AULoggerList@@XZ

kernel32

GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
ReadConsoleW
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
GetTimeZoneInformation
SetConsoleCtrlHandler
GetEnvironmentStringsW
WriteFile
HeapQueryInformation
HeapReAlloc
GetCurrentThread
ExitProcess
ReadFile
SetStdHandle
GetFileType
GetCurrentThreadId
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
WriteConsoleW
MultiByteToWideChar
WideCharToMultiByte
GetStdHandle
FreeLibraryAndExitThread
ResumeThread
ExitThread
CreateThread
GetModuleHandleExW
GetSystemInfo
HeapValidate
HeapSize
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetEndOfFile
OutputDebugStringW
CreateSymbolicLinkW
QueryPerformanceCounter
QueryPerformanceFrequency
CloseHandle
WaitForSingleObjectEx
Sleep
SwitchToThread
GetExitCodeThread
GetNativeSystemInfo
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockShared
TryAcquireSRWLockShared
LocalFree
FormatMessageA
GetLocaleInfoEx
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetFileAttributesW
GetFileAttributesExW
GetFileInformationByHandle
GetFinalPathNameByHandleW
GetFullPathNameW
SetFileAttributesW
SetFileInformationByHandle
SetFileTime
GetTempPathW
AreFileApisANSI
GetLastError
DeviceIoControl
GetModuleHandleW
GetProcAddress
CreateDirectoryExW
CopyFileW
MoveFileExW
CreateHardLinkW
GetFileInformationByHandleEx
RtlUnwind
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
CompareStringEx
GetCPInfo
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetCurrentProcessId
InitializeSListHead
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree

user32

OpenClipboard
CloseClipboard
GetClipboardData
EmptyClipboard
SetClipboardData

urlmon

URLDownloadToFileA

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/DiscordRichPresence.dll
.dll windows:6 windows x64 arch:x64

633ed9273cc926a8d69e6c8fc6533db9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\DiscordRichPresence\DiscordRichPresence.pdb

Imports

zhmmodsdk

?Allocate@ZString@@AEAAXPEBD_K@Z
?SDK@@YAPEAVIModSDK@@XZ
??1ZString@@QEAA@XZ
?GameLoopManager@Globals@@2PEAVZGameLoopManager@@EA
?ZUpdateEventContainer_RemoveDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZUpdateEventContainer_AddDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZEntitySceneContext_LoadScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@AEAVZSceneData@@@Z@@EA
?GetLoggers@@YA?AULoggerList@@XZ

discord_game_sdk

DiscordCreate

kernel32

GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
GetCurrentThreadId
WriteConsoleW
GlobalAlloc
GlobalUnlock
FreeEnvironmentStringsW
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
FindNextFileW
FindFirstFileExW
FindClose
ReadConsoleW
CloseHandle
SetFilePointerEx
GetFileSizeEx
SetEnvironmentVariableW
CreateFileW
SetEndOfFile
GlobalLock
SetUnhandledExceptionFilter
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SetFileInformationByHandle
GetTempPathW
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetModuleHandleW
GetProcAddress
GetFileInformationByHandleEx
CreateSymbolicLinkW
EncodePointer
DecodePointer
CompareStringEx
GetCPInfo
LCMapStringEx
LocalFree
GetLocaleInfoEx
GetStringTypeW
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
RtlUnwind
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetCurrentProcessId
InitializeSListHead
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
HeapSize
HeapValidate
GetSystemInfo
GetModuleHandleExW
GetStdHandle
GetFileType
SetStdHandle
ReadFile
ExitProcess
GetCurrentThread
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
HeapReAlloc
HeapQueryInformation
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
GetTimeZoneInformation
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode

user32

GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
EmptyClipboard

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 852KB - Virtual size: 851KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/Editor.dll
.dll windows:6 windows x64 arch:x64

aaee056dd78c6677debfe4cdd97ed157

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\Editor\Editor.pdb

Imports

zhmmodsdk

?GameLoopManager@Globals@@2PEAVZGameLoopManager@@EA
?ZTemplateEntityBlueprintFactory_ZTemplateEntityBlueprintFactory@Hooks@@2PEAV?$Hook@$$A6APEAVZTemplateEntityBlueprintFactory@@PEAV1@PEAVSTemplateEntityBlueprint@@AEAVZResourcePending@@@Z@@EA
?SignalInputPin@Hooks@@2PEAV?$Hook@$$A6A_NVZEntityRef@@IAEBVZObjectRef@@@Z@@EA
?SignalOutputPin@Hooks@@2PEAV?$Hook@$$A6A_NVZEntityRef@@IAEBVZObjectRef@@@Z@@EA
?ZUpdateEventContainer_RemoveDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZUpdateEventContainer_AddDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZEntitySceneContext_ClearScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@_N@Z@@EA
?ZEntitySceneContext_LoadScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@AEAVZSceneData@@@Z@@EA
?Selections@Globals@@2PEAV?$TArray@V?$TEntityRef@VZSelectionForFreeCameraEditorStyleEntity@@@@@@EA
?ZTemplateEntityBlueprintFactory_vtbl@Globals@@2PEAXEA
?GetLoggers@@YA?AULoggerList@@XZ
?ZPlayerRegistry_GetLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VZHitman5@@@@PEAVZPlayerRegistry@@PEAV1@@Z@@EA
?ResourceContainer@Globals@@2PEAPEAVZResourceContainer@@EA
?PlayerRegistry@Globals@@2PEAVZPlayerRegistry@@EA
?EntityManager@Globals@@2PEAVZEntityManager@@EA
?SDK@@YAPEAVIModSDK@@XZ
?Allocate@ZString@@AEAAXPEBD_K@Z
?ZSpatialEntity_UnknownTransformUpdate@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@@Z@@EA
?ZSpatialEntity_WorldTransform@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@PEAUSMatrix@@@Z@@EA
?GetCurrentCamera@Functions@@2PEAV?$EngineFunction@$$A6APEAVZCameraEntity@@XZ@@EA
?RenderManager@Globals@@2PEAVZRenderManager@@EA
?SetPropertyValue@Hooks@@2PEAV?$Hook@$$A6A_NVZEntityRef@@IAEBVZObjectRef@@_N@Z@@EA
?MemoryManager@Globals@@2PEAPEAVZMemoryManager@@EA
?TypeRegistry@Globals@@2PEAPEAVZTypeRegistry@@EA
?ResourceManager@Globals@@2PEAVZResourceManager@@EA
?CollisionManager@Globals@@2PEAPEAVZCollisionManager@@EA
?ZCameraManager_GetActiveRenderDestinationEntity@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VIRenderDestinationEntity@@@@PEAVZCameraManager@@PEAV1@@Z@@EA
?ZResourceManager_UninstallResource@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZResourceManager@@H@Z@@EA
?ZEntityManager_NewEntity@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZEntityManager@@AEAVZEntityRef@@AEBVZString@@PEAVIEntityFactory@@AEBV2@PEAX_J@Z@@EA
??1ZString@@QEAA@XZ
?Hitman5Module@Globals@@2PEAVZHitman5Module@@EA
?CameraManager@Globals@@2PEAVZCameraManager@@EA

ws2_32

listen
getsockname
getpeername
connect
ntohs
recv
bind
accept
recvfrom
send
sendto
setsockopt
shutdown
getaddrinfo
freeaddrinfo
WSASendTo
WSADuplicateSocketW
WSAGetOverlappedResult
WSASend
WSASetLastError
htonl
WSAGetLastError
WSAStartup
socket
inet_addr
htons
WSASocketW
WSARecvFrom
WSAIoctl
select
getsockopt
closesocket
ioctlsocket
WSARecv

resourcelib_hm3

HM3_GetPropertyName
HM3_GameStructToJson
HM3_FreeJsonString
HM3_JsonToGameStruct

user32

GetSystemMetrics
MapVirtualKeyW
DispatchMessageA
TranslateMessage
GetMessageA
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
GetClipboardData

kernel32

GetExitCodeProcess
WriteConsoleInputW
SetConsoleTextAttribute
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
SetConsoleCursorInfo
GetConsoleCursorInfo
FillConsoleOutputAttribute
FillConsoleOutputCharacterW
ReadConsoleInputW
GetNumberOfConsoleInputEvents
SetConsoleMode
ResetEvent
GetNamedPipeServerProcessId
GetNamedPipeClientProcessId
GetNamedPipeHandleStateA
CreateNamedPipeA
CancelSynchronousIo
WaitNamedPipeW
CreateNamedPipeW
PeekNamedPipe
SetNamedPipeHandleState
ConnectNamedPipe
CreateFileA
DebugBreak
UnregisterWait
RegisterWaitForSingleObject
CancelIo
CancelIoEx
CreateSemaphoreA
CreateProcessW
GetCurrentThreadId
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
WriteConsoleW
MultiByteToWideChar
WideCharToMultiByte
GetProcessAffinityMask
GetProcessId
UnregisterWaitEx
CreateJobObjectW
AssignProcessToJobObject
SetInformationJobObject
WaitForSingleObject
ReleaseSemaphore
SetEvent
SleepConditionVariableCS
InitializeConditionVariable
TryEnterCriticalSection
InitializeSRWLock
DuplicateHandle
Process32Next
Process32First
CreateToolhelp32Snapshot
K32GetProcessMemoryInfo
SetConsoleTitleW
GetConsoleTitleW
FileTimeToSystemTime
GetProcessIoCounters
GetSystemTimePreciseAsFileTime
GetVersionExW
GlobalMemoryStatusEx
OpenProcess
GetPriorityClass
K32GetModuleBaseNameW
GetDiskFreeSpaceW
RemoveDirectoryW
MapViewOfFile
FlushViewOfFile
UnmapViewOfFile
CreateFileMappingA
ReOpenFile
GetLongPathNameW
GetShortPathNameW
ReadDirectoryChangesW
GetModuleHandleA
LoadLibraryExA
SetThreadAffinityMask
LCMapStringEx
SetPriorityClass
GetProcessTimes
InitializeCriticalSection
GetEnvironmentVariableW
SetFileCompletionNotificationModes
QueueUserWorkItem
CreateEventA
SetHandleInformation
ReleaseSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockExclusive
AcquireSRWLockShared
TryAcquireSRWLockExclusive
TryAcquireSRWLockShared
Sleep
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetFileAttributesW
GetFileAttributesExW
GetFileInformationByHandle
GetFinalPathNameByHandleW
GetFullPathNameW
SetFileAttributesW
SetFileInformationByHandle
SetFileTime
GetTempPathW
AreFileApisANSI
CloseHandle
GetLastError
DeviceIoControl
GetModuleHandleW
GetProcAddress
CreateDirectoryExW
CopyFileW
MoveFileExW
CreateHardLinkW
GetFileInformationByHandleEx
CreateSymbolicLinkW
QueryPerformanceCounter
QueryPerformanceFrequency
WakeAllConditionVariable
SleepConditionVariableSRW
IsProcessorFeaturePresent
GetTickCount64
WaitForSingleObjectEx
SwitchToThread
GetExitCodeThread
GetNativeSystemInfo
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
EncodePointer
DecodePointer
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
WakeConditionVariable
LocalFree
GetLocaleInfoEx
RtlUnwind
GetStringTypeW
CompareStringEx
GetCPInfo
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
RaiseException
GetStartupInfoW
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
GetCurrentProcessId
InitializeSListHead
RtlPcToFileHeader
RtlUnwindEx
GetModuleFileNameW
LoadLibraryExW
InterlockedPushEntrySList
InterlockedFlushSList
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
GetStdHandle
GetFileType
HeapSize
HeapValidate
GetSystemInfo
CreateThread
ExitThread
ResumeThread
FreeLibraryAndExitThread
SetStdHandle
ReadFile
ExitProcess
GetCurrentThread
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
OutputDebugStringW
SetConsoleCtrlHandler
HeapReAlloc
HeapQueryInformation
GetTimeZoneInformation
DeleteFileW
GetFileSizeEx
SetFilePointerEx
ReadConsoleW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetEndOfFile
SetErrorMode
CreateIoCompletionPort
GetQueuedCompletionStatus
PostQueuedCompletionStatus

imm32

ImmGetContext
ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionWindow

advapi32

RegQueryValueExW
GetUserNameW
SetSecurityInfo
GetSecurityInfo
SetEntriesInAclA
FreeSid
AllocateAndInitializeSid
SystemFunction036
RegGetValueW
RegCloseKey
RegOpenKeyExW
OpenProcessToken

iphlpapi

GetAdaptersAddresses

userenv

GetUserProfileDirectoryW

dbghelp

SymGetOptions
MiniDumpWriteDump
SymSetOptions

ole32

CoTaskMemFree

shell32

SHGetKnownFolderPath

Exports

Exports

GetPluginInterface

Sections

.text
Size: 4.9MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 163KB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 229KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/FreeCam.dll
.dll windows:6 windows x64 arch:x64

e57a0395d8a1637a7403dd830344a54c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\FreeCam\FreeCam.pdb

Imports

zhmmodsdk

?SDK@@YAPEAVIModSDK@@XZ
?ZActor_KillActor@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZActor@@V?$TEntityRef@VIItem@@@@V?$TEntityRef@VZSetpieceEntity@@@@W4EDamageEvent@@W4EDeathBehavior@@@Z@@EA
?ZInputActionManager_ParseAsignment@Functions@@2PEAV?$EngineFunction@$$A6A_NPEAVZInputActionManager@@PEAVZInputTokenStream@@@Z@@EA
?ZInputTokenStream_ParseToken@Functions@@2PEAV?$EngineFunction@$$A6APEAVZTokenData@ZInputTokenStream@@PEAV2@PEAV12@@Z@@EA
?ZSpatialEntity_UnknownTransformUpdate@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@@Z@@EA
?ZHM5InputManager_GetInputControlForLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAVZHM5InputControl@@PEAVZHM5InputManager@@@Z@@EA
?ZPlayerRegistry_GetLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VZHitman5@@@@PEAVZPlayerRegistry@@PEAV1@@Z@@EA
?ZInputAction_Digital@Functions@@2PEAV?$EngineFunction@$$A6A_NPEAVZInputAction@@H@Z@@EA
?ZCameraManager_GetActiveRenderDestinationEntity@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VIRenderDestinationEntity@@@@PEAVZCameraManager@@PEAV1@@Z@@EA
?ZEngineAppCommon_CreateFreeCamera@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZEngineAppCommon@@@Z@@EA
?GetCurrentCamera@Functions@@2PEAV?$EngineFunction@$$A6APEAVZCameraEntity@@XZ@@EA
?InputActionManager_Seq@Globals@@2PEAHEA
?InputActionManager_BindMem@Globals@@2PEAHEA
?InputActionManager@Globals@@2PEAVZInputActionManager@@EA
?CollisionManager@Globals@@2PEAPEAVZCollisionManager@@EA
?InputManager@Globals@@2PEAVZHM5InputManager@@EA
?PlayerRegistry@Globals@@2PEAVZPlayerRegistry@@EA
?CameraManager@Globals@@2PEAVZCameraManager@@EA
?ApplicationEngineWin32@Globals@@2PEAPEAVZApplicationEngineWin32@@EA
?TypeRegistry@Globals@@2PEAPEAVZTypeRegistry@@EA
?GameLoopManager@Globals@@2PEAVZGameLoopManager@@EA
?ZInputAction_Digital@Hooks@@2PEAV?$Hook@$$A6A_NPEAVZInputAction@@H@Z@@EA
?ZUpdateEventContainer_RemoveDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZUpdateEventContainer_AddDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZEntitySceneContext_ClearScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@_N@Z@@EA
?ZEntitySceneContext_LoadScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@AEAVZSceneData@@@Z@@EA
?GetLoggers@@YA?AULoggerList@@XZ
??1ZString@@QEAA@XZ

kernel32

GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
ReadConsoleW
CloseHandle
HeapQueryInformation
HeapReAlloc
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
GetTimeZoneInformation
FreeEnvironmentStringsW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
GetCurrentThreadId
WriteConsoleW
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
CompareStringW
GetTimeFormatW
GetDateFormatW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
SetEnvironmentVariableW
CreateFileW
SetEndOfFile
EnumSystemLocalesW
GetStringTypeW
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SetFileInformationByHandle
GetTempPathW
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetModuleHandleW
GetProcAddress
GetFileInformationByHandleEx
CreateSymbolicLinkW
LocalFree
GetLocaleInfoEx
EncodePointer
DecodePointer
LCMapStringEx
RtlUnwind
CompareStringEx
GetCPInfo
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetCurrentProcessId
InitializeSListHead
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
GetStdHandle
GetFileType
HeapSize
HeapValidate
GetSystemInfo
SetStdHandle
ReadFile
ExitProcess
GetCurrentThread
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler

user32

GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
EmptyClipboard

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 788KB - Virtual size: 788KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/Hitmen.dll
.dll windows:6 windows x64 arch:x64

48814b0ba45bc530968c7520695970ea

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\Hitmen\Hitmen.pdb

Imports

zhmmodsdk

?Allocate@ZString@@AEAAXPEBD_K@Z
?ZSpatialEntity_UnknownTransformUpdate@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@@Z@@EA
?ZPlayerRegistry_GetLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VZHitman5@@@@PEAVZPlayerRegistry@@PEAV1@@Z@@EA
?PlayerRegistry@Globals@@2PEAVZPlayerRegistry@@EA
?ApplicationEngineWin32@Globals@@2PEAPEAVZApplicationEngineWin32@@EA
?MemoryManager@Globals@@2PEAPEAVZMemoryManager@@EA
?NextActorId@Globals@@2PEAGEA
?ActorManager@Globals@@2PEAVZActorManager@@EA
?Hitman5Module@Globals@@2PEAVZHitman5Module@@EA
?TypeRegistry@Globals@@2PEAPEAVZTypeRegistry@@EA
?GameLoopManager@Globals@@2PEAVZGameLoopManager@@EA
?ZPlayerRegistry_GetLocalPlayer@Hooks@@2PEAV?$Hook@$$A6APEAV?$TEntityRef@VZHitman5@@@@PEAVZPlayerRegistry@@PEAV1@@Z@@EA
?SetPropertyValue@Hooks@@2PEAV?$Hook@$$A6A_NVZEntityRef@@IAEBVZObjectRef@@_N@Z@@EA
?ZUpdateEventContainer_RemoveDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZUpdateEventContainer_AddDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZEntitySceneContext_ClearScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@_N@Z@@EA
?ZEntitySceneContext_LoadScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@AEAVZSceneData@@@Z@@EA
?GetLoggers@@YA?AULoggerList@@XZ
?SDK@@YAPEAVIModSDK@@XZ
??1ZString@@QEAA@XZ

ws2_32

htonl
sendto
getpeername
shutdown
listen
connect
accept
send
recv
WSASetLastError
getservbyname
getservbyport
gethostbyaddr
inet_ntoa
inet_addr
htons
gethostbyname
select
ntohs
getsockopt
freeaddrinfo
getaddrinfo
WSASendTo
WSAEventSelect
WSAEnumNetworkEvents
WSAGetLastError
WSACleanup
WSAStartup
socket
setsockopt
recvfrom
getsockname
ioctlsocket
closesocket
bind
ntohl

crypt32

CertEnumCertificatesInStore
CertCloseStore
CertFindCertificateInStore
CertOpenStore
CertDuplicateCertificateContext
CertFreeCertificateContext
CertOpenSystemStoreW
CertGetCertificateContextProperty

winmm

timeEndPeriod
timeBeginPeriod

iphlpapi

GetAdaptersAddresses

kernel32

SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileInformationByHandle
GetDriveTypeW
CreateFileW
GetFileAttributesExW
CreateDirectoryW
SetCurrentDirectoryW
SetEnvironmentVariableW
ReadFile
SetStdHandle
HeapValidate
HeapSize
FreeLibraryAndExitThread
ResumeThread
ExitThread
CreateThread
InitializeCriticalSectionAndSpinCount
FileTimeToSystemTime
GetModuleFileNameW
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwindEx
RtlPcToFileHeader
VirtualQuery
GetConsoleOutputCP
ExitProcess
SetConsoleCtrlHandler
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
GetProcessHeap
HeapFree
HeapAlloc
LoadLibraryExW
DuplicateHandle
GetCurrentThreadId
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
CloseHandle
RaiseException
GetLastError
SetEvent
WaitForSingleObject
CreateEventA
GetCurrentThread
SetThreadPriority
GetProcAddress
LoadLibraryA
LocalFree
FormatMessageA
QueryPerformanceCounter
QueryPerformanceFrequency
CompareStringW
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
GetCurrentDirectoryW
FindClose
FindFirstFileW
FindNextFileW
SetLastError
GetStdHandle
GetFileType
WriteFile
OutputDebugStringW
GetModuleHandleW
RtlVirtualUnwind
InitializeSRWLock
ReleaseSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockExclusive
AcquireSRWLockShared
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentVariableW
GetSystemInfo
VirtualAlloc
VirtualProtect
VirtualFree
VirtualLock
GetACP
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
ReleaseSemaphore
GetExitCodeThread
CreateSemaphoreA
Sleep
GetSystemDirectoryA
FreeLibrary
SwitchToFiber
DeleteFiber
CreateFiberEx
LoadLibraryW
RtlUnwind
SystemTimeToFileTime
ConvertFiberToThread
ConvertThreadToFiberEx
GetConsoleMode
SetConsoleMode
ReadConsoleA
ReadConsoleW
InitializeSListHead
GetStartupInfoW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlLookupFunctionEntry
RtlCaptureContext
GetCPInfo
CompareStringEx
LCMapStringEx
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetTimeZoneInformation
FlushFileBuffers
HeapReAlloc
HeapQueryInformation
GetFileSizeEx
SetFilePointerEx
SetEndOfFile
GetFullPathNameW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
WriteConsoleW
GetSystemTime
TryAcquireSRWLockExclusive
WaitForSingleObjectEx
SwitchToThread
GetNativeSystemInfo
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
InitOnceBeginInitialize
InitOnceComplete
GetStringTypeW
InitializeCriticalSectionEx
SetFileInformationByHandle
GetTempPathW
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetFileInformationByHandleEx
CreateSymbolicLinkW
GetLocaleInfoEx
EncodePointer
DecodePointer

user32

MessageBoxW
GetUserObjectInformationW
GetProcessWindowStation
EmptyClipboard
GetClipboardData
OpenClipboard
CloseClipboard
SetClipboardData

advapi32

CryptGenRandom
RegisterEventSourceW
ReportEventW
CryptAcquireContextW
CryptReleaseContext
CryptEnumProvidersW
CryptSignHashW
CryptDestroyHash
CryptCreateHash
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
DeregisterEventSource

imm32

ImmGetContext
ImmReleaseContext
ImmSetCompositionWindow
ImmSetCandidateWindow

Exports

Exports

GameNetworkingSockets_Init
GameNetworkingSockets_Kill
GetPluginInterface
SteamNetworkingIPAddr_GetFakeIPType
SteamNetworkingIPAddr_ParseString
SteamNetworkingIPAddr_ToString
SteamNetworkingIdentity_ParseString
SteamNetworkingIdentity_ToString
SteamNetworkingMessages_LibV2
SteamNetworkingSockets_DefaultPreFormatDebugOutputHandler
SteamNetworkingSockets_LibV12
SteamNetworkingSockets_Poll
SteamNetworkingSockets_SetLockAcquiredCallback
SteamNetworkingSockets_SetLockHeldCallback
SteamNetworkingSockets_SetLockWaitWarningThreshold
SteamNetworkingSockets_SetManualPollMode
SteamNetworkingSockets_SetPreFormatDebugOutputHandler
SteamNetworkingUtils_LibV4

Sections

.text
Size: 12.3MB - Virtual size: 12.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 608KB - Virtual size: 607KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/MaxPatchLevel.dll
.dll windows:6 windows x64 arch:x64

d57fd0b69d40cd264e545a08ffc000a9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\MaxPatchLevel\MaxPatchLevel.pdb

Imports

zhmmodsdk

?ZPackageManagerPackage_ZPackageManagerPackage@Hooks@@2PEAV?$Hook@$$A6APEAXPEAVZPackageManagerPackage@@PEAXAEBVZString@@HH@Z@@EA
?GetLoggers@@YA?AULoggerList@@XZ
?SDK@@YAPEAVIModSDK@@XZ

kernel32

WriteConsoleW
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
GetCurrentThreadId
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
SetEnvironmentVariableW
CreateFileW
SetEndOfFile
WideCharToMultiByte
IsProcessorFeaturePresent
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SetFileInformationByHandle
GetTempPathW
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetModuleHandleW
GetProcAddress
GetFileInformationByHandleEx
CreateSymbolicLinkW
LocalFree
GetLocaleInfoEx
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
CompareStringEx
GetCPInfo
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetCurrentProcessId
InitializeSListHead
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
GetStdHandle
GetFileType
HeapSize
HeapValidate
GetSystemInfo
SetStdHandle
ReadFile
ExitProcess
GetCurrentThread
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
GetTimeZoneInformation
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
GetFileSizeEx
SetFilePointerEx
HeapReAlloc
HeapQueryInformation
CloseHandle
ReadConsoleW
FindClose
FindFirstFileExW
FindNextFileW

user32

GetClipboardData
SetClipboardData
CloseClipboard
EmptyClipboard
OpenClipboard

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 773KB - Virtual size: 772KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/NoPause.dll
.dll windows:6 windows x64 arch:x64

05d200bff68bea9e0f775d77eaf232d7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\NoPause\NoPause.pdb

Imports

zhmmodsdk

?ZApplicationEngineWin32_MainWindowProc@Hooks@@2PEAV?$Hook@$$A6A_JPEAVZApplicationEngineWin32@@PEAUHWND__@@I_K_J@Z@@EA
?GetApplicationOptionBool@Hooks@@2PEAV?$Hook@$$A6A_NAEBVZString@@_N@Z@@EA
?SDK@@YAPEAVIModSDK@@XZ
??1ZString@@QEAA@XZ

kernel32

GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
CreateFileW
GetStringTypeW
SetEndOfFile
SetEnvironmentVariableW
DeleteCriticalSection
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RaiseException
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
GetProcAddress
RtlUnwindEx
RtlPcToFileHeader
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStdHandle
GetFileType
GetModuleHandleExW
WriteConsoleW
ReadFile
HeapSize
HeapValidate
GetSystemInfo
ExitProcess
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
GetTempPathW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
CloseHandle
GetCurrentThread
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetFileSizeEx
HeapReAlloc
HeapQueryInformation
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage

user32

GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
EmptyClipboard
DefWindowProcW

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 609KB - Virtual size: 609KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/Noclip.dll
.dll windows:6 windows x64 arch:x64

059e3540debe2bfb130cdb67e00e4c18

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\Noclip\Noclip.pdb

Imports

zhmmodsdk

?SDK@@YAPEAVIModSDK@@XZ
?ZSpatialEntity_UnknownTransformUpdate@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZSpatialEntity@@@Z@@EA
?ZPlayerRegistry_GetLocalPlayer@Functions@@2PEAV?$EngineFunction@$$A6APEAV?$TEntityRef@VZHitman5@@@@PEAVZPlayerRegistry@@PEAV1@@Z@@EA
?GetCurrentCamera@Functions@@2PEAV?$EngineFunction@$$A6APEAVZCameraEntity@@XZ@@EA
?PlayerRegistry@Globals@@2PEAVZPlayerRegistry@@EA
?TypeRegistry@Globals@@2PEAPEAVZTypeRegistry@@EA
?GameLoopManager@Globals@@2PEAVZGameLoopManager@@EA
?ZUpdateEventContainer_RemoveDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZUpdateEventContainer_AddDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZEntitySceneContext_ClearScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@_N@Z@@EA
??1ZString@@QEAA@XZ

kernel32

SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GlobalAlloc
GlobalUnlock
GlobalLock
GetStringTypeW
MultiByteToWideChar
WideCharToMultiByte
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
HeapQueryInformation
HeapReAlloc
GetFileSizeEx
SetStdHandle
CreateFileW
SetEndOfFile
GlobalFree
SetLastError
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
RaiseException
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
GetModuleHandleW
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
GetProcAddress
RtlUnwindEx
RtlPcToFileHeader
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
RtlUnwind
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStdHandle
GetFileType
GetModuleHandleExW
WriteConsoleW
ReadFile
HeapSize
HeapValidate
GetSystemInfo
ExitProcess
GetCurrentThread
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
GetTempPathW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
CloseHandle
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx

user32

GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
GetAsyncKeyState
EmptyClipboard

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 611KB - Virtual size: 610KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/SkipIntro.dll
.dll windows:6 windows x64 arch:x64

82d3c45201a5b6d192736ab68ae0e250

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\SkipIntro\SkipIntro.pdb

Imports

zhmmodsdk

?ZEntitySceneContext_LoadScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@AEAVZSceneData@@@Z@@EA
?GetLoggers@@YA?AULoggerList@@XZ
?SDK@@YAPEAVIModSDK@@XZ
??1ZString@@QEAA@XZ

kernel32

GetCurrentThreadId
WriteConsoleW
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
SetEnvironmentVariableW
CreateFileW
SetEndOfFile
WideCharToMultiByte
IsProcessorFeaturePresent
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SetFileInformationByHandle
GetTempPathW
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetModuleHandleW
GetProcAddress
GetFileInformationByHandleEx
CreateSymbolicLinkW
LocalFree
GetLocaleInfoEx
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
CompareStringEx
GetCPInfo
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetCurrentProcessId
InitializeSListHead
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
HeapSize
HeapValidate
GetSystemInfo
SetStdHandle
GetFileType
GetStdHandle
ReadFile
ExitProcess
GetCurrentThread
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
GetTimeZoneInformation
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
GetFileSizeEx
SetFilePointerEx
HeapReAlloc
HeapQueryInformation
CloseHandle
ReadConsoleW
FindClose
FindFirstFileExW

user32

GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
EmptyClipboard

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 773KB - Virtual size: 773KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 123KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mods/WakingUpNpcs.dll
.dll windows:6 windows x64 arch:x64

197cd971bdca10854f16f58b5b3f55ae

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\x\_work\ZHMModSDK\ZHMModSDK\_build\x64-Debug\Mods\WakingUpNpcs\WakingUpNpcs.pdb

Imports

zhmmodsdk

?GetLoggers@@YA?AULoggerList@@XZ
?ZActor_ReviveActor@Functions@@2PEAV?$EngineFunction@$$A6AXPEAVZActor@@@Z@@EA
?NextActorId@Globals@@2PEAGEA
?ActorManager@Globals@@2PEAVZActorManager@@EA
?GameLoopManager@Globals@@2PEAVZGameLoopManager@@EA
?ZUpdateEventContainer_RemoveDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZUpdateEventContainer_AddDelegate@Hooks@@2PEAV?$Hook@$$A6AXPEAVZUpdateEventContainer@@AEBV?$ZDelegate@$$A6AXAEBVSGameUpdateEvent@@@Z@@HW4EUpdateMode@@@Z@@EA
?ZEntitySceneContext_ClearScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@_N@Z@@EA
?ZEntitySceneContext_LoadScene@Hooks@@2PEAV?$Hook@$$A6AXPEAVZEntitySceneContext@@AEAVZSceneData@@@Z@@EA
?SDK@@YAPEAVIModSDK@@XZ

kernel32

GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
GetCurrentThreadId
WriteConsoleW
GlobalAlloc
GlobalUnlock
FreeEnvironmentStringsW
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
FindNextFileW
FindFirstFileExW
FindClose
ReadConsoleW
CloseHandle
HeapQueryInformation
HeapReAlloc
SetEnvironmentVariableW
CreateFileW
SetEndOfFile
GlobalLock
SetUnhandledExceptionFilter
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
FormatMessageA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
SetFileInformationByHandle
GetTempPathW
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreExW
FlushProcessWriteBuffers
GetCurrentProcessorNumber
GetSystemTimeAsFileTime
GetTickCount64
FreeLibraryWhenCallbackReturns
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetModuleHandleW
GetProcAddress
GetFileInformationByHandleEx
CreateSymbolicLinkW
LocalFree
GetLocaleInfoEx
EncodePointer
DecodePointer
LCMapStringEx
GetStringTypeW
CompareStringEx
GetCPInfo
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
RtlUnwind
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
RaiseException
GetCurrentProcessId
InitializeSListHead
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
RtlPcToFileHeader
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleFileNameW
LoadLibraryExW
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
GetStdHandle
GetFileType
HeapSize
HeapValidate
GetSystemInfo
SetStdHandle
ReadFile
ExitProcess
GetCurrentThread
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
WriteFile
OutputDebugStringW
SetConsoleCtrlHandler
GetTimeZoneInformation
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
GetFileSizeEx
SetFilePointerEx

user32

GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
EmptyClipboard

imm32

ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow

Exports

Exports

GetPluginInterface

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 782KB - Virtual size: 782KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 799B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f0724b64ccc814ddacead8403923c8e

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 6.9MB - Virtual size: 6.9MB

.rdata Size: 3.7MB - Virtual size: 3.7MB

.data Size: 13KB - Virtual size: 115KB

.pdata Size: 500KB - Virtual size: 500KB

.idata Size: 6KB - Virtual size: 5KB

.tls Size: 1024B - Virtual size: 777B

.00cfg Size: 512B - Virtual size: 373B

_RDATA Size: 1024B - Virtual size: 863B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 53KB - Virtual size: 52KB

162be017028b899b03b31aa1ae8ba970

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

winhttp

comctl32

kernel32

user32

shell32

d3dcompiler_47

imm32

Exports

Exports

Sections

.text Size: 5.2MB - Virtual size: 5.2MB

.rdata Size: 3.1MB - Virtual size: 3.1MB

.data Size: 49KB - Virtual size: 92KB

.pdata Size: 319KB - Virtual size: 319KB

.idata Size: 12KB - Virtual size: 11KB

.didat Size: 1024B - Virtual size: 825B

.tls Size: 1024B - Virtual size: 799B

.00cfg Size: 512B - Virtual size: 373B

_RDATA Size: 1024B - Virtual size: 863B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 47KB - Virtual size: 47KB

9f0c05c2ecf7a7ce0a6fbcd1db62dd65

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.rdata Size: 243KB - Virtual size: 243KB

.data Size: 5KB - Virtual size: 34KB

.pdata Size: 48KB - Virtual size: 48KB

.idata Size: 7KB - Virtual size: 6KB

.tls Size: 1024B - Virtual size: 777B

.00cfg Size: 512B - Virtual size: 373B

_RDATA Size: 1024B - Virtual size: 863B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 7KB - Virtual size: 6KB

bfa69dc662234a60f54bc8609ce9dfd7

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

zhmmodsdk

.text
Size: 6.9MB - Virtual size: 6.9MB

.rdata
Size: 3.7MB - Virtual size: 3.7MB

.data
Size: 13KB - Virtual size: 115KB

.pdata
Size: 500KB - Virtual size: 500KB

.idata
Size: 6KB - Virtual size: 5KB

.tls
Size: 1024B - Virtual size: 777B

.00cfg
Size: 512B - Virtual size: 373B

_RDATA
Size: 1024B - Virtual size: 863B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 53KB - Virtual size: 52KB

.text
Size: 5.2MB - Virtual size: 5.2MB

.rdata
Size: 3.1MB - Virtual size: 3.1MB

.data
Size: 49KB - Virtual size: 92KB

.pdata
Size: 319KB - Virtual size: 319KB

.idata
Size: 12KB - Virtual size: 11KB

.didat
Size: 1024B - Virtual size: 825B

.tls
Size: 1024B - Virtual size: 799B

.00cfg
Size: 512B - Virtual size: 373B

_RDATA
Size: 1024B - Virtual size: 863B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 47KB - Virtual size: 47KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.rdata
Size: 243KB - Virtual size: 243KB

.data
Size: 5KB - Virtual size: 34KB

.pdata
Size: 48KB - Virtual size: 48KB

.idata
Size: 7KB - Virtual size: 6KB

.tls
Size: 1024B - Virtual size: 777B

.00cfg
Size: 512B - Virtual size: 373B

_RDATA
Size: 1024B - Virtual size: 863B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 7KB - Virtual size: 6KB

.text
Size: 3.2MB - Virtual size: 3.2MB

.rdata
Size: 840KB - Virtual size: 839KB

.data
Size: 12KB - Virtual size: 48KB

.pdata
Size: 143KB - Virtual size: 143KB

.idata
Size: 7KB - Virtual size: 7KB

.tls
Size: 1024B - Virtual size: 799B

.00cfg
Size: 512B - Virtual size: 373B

_RDATA
Size: 1024B - Virtual size: 863B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 21KB - Virtual size: 21KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 609KB - Virtual size: 609KB

.data
Size: 5KB - Virtual size: 39KB

.pdata
Size: 77KB - Virtual size: 76KB

.idata
Size: 5KB - Virtual size: 5KB

.00cfg
Size: 512B - Virtual size: 373B

_RDATA
Size: 1024B - Virtual size: 863B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 13KB - Virtual size: 13KB

.text
Size: 3.2MB - Virtual size: 3.2MB

.rdata
Size: 867KB - Virtual size: 866KB

.data
Size: 13KB - Virtual size: 49KB

.pdata
Size: 141KB - Virtual size: 141KB

.idata
Size: 11KB - Virtual size: 10KB

.tls
Size: 1024B - Virtual size: 799B

.00cfg
Size: 512B - Virtual size: 373B

_RDATA
Size: 1024B - Virtual size: 863B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 22KB - Virtual size: 21KB